last executing test programs: 17m43.946272999s ago: executing program 0 (id=97): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x0, &(0x7f0000000100)}) pipe(0x0) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="c00000000001010400000000000000000a00000004000180080007"], 0xc0}}, 0x200000b0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000500)=ANY=[], 0xa0}, 0x1, 0x0, 0x0, 0x4040}, 0x0) readv(0xffffffffffffffff, &(0x7f00000001c0)=[{&(0x7f0000000080)=""/45, 0x2d}], 0x1) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x20000000) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000440)={[0x0, 0x100000000, 0x0, 0x4000081, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0x7, 0x0, 0x7, 0x0, 0x2, 0xffffffffffffffff]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x4, 0x5, 0x6, 0x4004, 0x20000000000002, 0x4000004, 0xefffffffffffffff, 0x400000, 0xfffffffffffffffd, 0x2000000, 0x0, 0x1d, 0x0, 0xffffffffffffffff, 0x6]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 17m42.961719758s ago: executing program 0 (id=100): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x4c) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) pwrite64(r0, &(0x7f0000000140)='2', 0xff10, 0x8000c61) 17m42.834005801s ago: executing program 0 (id=101): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) syz_open_dev$video4linux(&(0x7f0000000000), 0xffffffff, 0x88a03) socket$inet_tcp(0x2, 0x1, 0x0) syz_open_procfs$namespace(0x0, &(0x7f0000000580)='ns/time\x00') syz_open_procfs$namespace(0x0, &(0x7f0000001f40)='ns/time_for_children\x00') 17m38.957349242s ago: executing program 0 (id=108): syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000140)={[{@acl}]}, 0x1, 0xb83, &(0x7f0000004580)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f00000000c0), 0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x28011, r0, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) bind$inet6(r1, &(0x7f0000000080)={0xa, 0x4e21, 0x5, @ipv4={'\x00', '\xff\xff', @empty}, 0x4}, 0x1c) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e21, 0x659, @empty, 0xff}, 0x1c) r2 = fcntl$dupfd(r1, 0x406, r1) write$cgroup_pid(r2, &(0x7f0000000240), 0x12) capset(0x0, 0x0) setsockopt$inet6_IPV6_ADDRFORM(r1, 0x29, 0x1, &(0x7f0000000180), 0x4) read$FUSE(r2, &(0x7f0000002540)={0x2020}, 0xfdef) creat(0x0, 0x90) 17m36.345547335s ago: executing program 0 (id=112): bpf$MAP_CREATE(0x0, 0x0, 0x48) mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000240)='./file0\x00', &(0x7f0000000340)='./file0/../file0\x00', 0x0, 0x3925099, 0x0) io_setup(0x4, &(0x7f00000014c0)=0x0) r1 = syz_open_procfs(0x0, &(0x7f00000002c0)='mounts\x00') io_submit(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0xfffe, r1, 0x0}]) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0xfffffffffffffeec) mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0) 17m33.702215121s ago: executing program 0 (id=117): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, 0x0, 0x0, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xcda\x9b\x11X\x0e\xa1\xcf\x1a\x98S7\xc9\x00'/47, 0x2) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCPKT(r5, 0x5420, &(0x7f0000000100)=0xcf5) ioctl$TCSETS(r5, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000008000000f7fffff700"}) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff7000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000068c000/0xc000)=nil, &(0x7f0000ff1000/0xc000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000003c0)=ANY=[@ANYBLOB="140100001f0001030000000048"], 0x114}], 0x1}, 0x24044010) recvmmsg(0xffffffffffffffff, &(0x7f0000000640)=[{{0x0, 0x0, 0x0}, 0x7ffffbff}], 0x1, 0x14022, 0x0) r6 = syz_open_pts(r5, 0x0) ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000280)=0x3) ftruncate(r4, 0xffff) 17m16.802331584s ago: executing program 32 (id=117): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, 0x0, 0x0, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r4 = memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xcda\x9b\x11X\x0e\xa1\xcf\x1a\x98S7\xc9\x00'/47, 0x2) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCPKT(r5, 0x5420, &(0x7f0000000100)=0xcf5) ioctl$TCSETS(r5, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000008000000f7fffff700"}) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff7000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000068c000/0xc000)=nil, &(0x7f0000ff1000/0xc000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000003c0)=ANY=[@ANYBLOB="140100001f0001030000000048"], 0x114}], 0x1}, 0x24044010) recvmmsg(0xffffffffffffffff, &(0x7f0000000640)=[{{0x0, 0x0, 0x0}, 0x7ffffbff}], 0x1, 0x14022, 0x0) r6 = syz_open_pts(r5, 0x0) ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000280)=0x3) ftruncate(r4, 0xffff) 10m46.350405373s ago: executing program 1 (id=712): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) socket$kcm(0x29, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001cc0)=ANY=[@ANYBLOB], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xd}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r3}, 0x18) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x82) r4 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r4, &(0x7f0000000400)={0x18, 0x0, {0x2, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, 'lo\x00'}}, 0x1e) connect$pppoe(0xffffffffffffffff, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e) r5 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r5, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="d8000000100081046881f782db44b9090000000b01000000e8fe55a1180015000600140000000012080004003e000000a80016000a00001c06000200036010fab94dcf5c0461c1a6ced67f6f94007134cf6ee08000a0e408e8d8ef52878516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d95322fe7c9ffeffffff16a4683f1aeb4edbb57a5025ccca9e02360db70100000040fad95667e006dcffff951f215ce3bb9ad809d5e1cace81c639df2d04c343eb7a9db9596bb727ed0bffece0b42a9ecbee5de6ccd4", 0xd8}], 0x1}, 0x20004880) 10m45.28861635s ago: executing program 1 (id=715): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) accept4(r0, 0x0, 0x0, 0x80800) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000001c0)={'vxcan0\x00'}) syz_usb_connect(0x2, 0x2d, &(0x7f0000000240)=ANY=[@ANYBLOB="120100000c9768405e0483020b9901e4020109021b000100000000090400fb0160291d00090509a9143c"], 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mkdirat(0xffffffffffffff9c, 0x0, 0x1c0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) request_key(0x0, &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0) mkdir(&(0x7f0000000100)='./control\x00', 0x184) r5 = syz_open_dev$audion(&(0x7f0000000000), 0x3, 0x1) ioctl$SNDCTL_DSP_SETFMT(r5, 0xc0045005, &(0x7f0000000200)=0x7fff) 10m40.578456365s ago: executing program 1 (id=721): r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50) socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff) sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x24048044) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xcc, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = getpid() sched_setscheduler(r2, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0) r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8) unshare(0x28000600) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x6, 0x1f, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000003000000000000000800000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b70300", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000820000009500000000000000bf91000000000000b7020000000000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000100)='syzkaller\x00', 0x7, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x2, 0x5}, 0x8, 0x10, &(0x7f0000000380)={0x2, 0x10, 0xfffffff5}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)=[r0], 0x0, 0x10, 0x5}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000680)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f00000006c0), &(0x7f0000000280)=r5}, 0x20) r7 = socket$alg(0x26, 0x5, 0x0) bind$alg(r7, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, &(0x7f0000000000)="adcd1a9a3fc36e961ed00fe41b0cd695", 0x20) r8 = accept4$alg(r7, 0x0, 0x0, 0x0) writev(r8, &(0x7f0000000140)=[{&(0x7f0000000100)="3be5902e693abe", 0x7}, {&(0x7f0000003340)="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", 0xfef}, {&(0x7f00000001c0)}], 0x3) read$alg(r8, &(0x7f0000002300)=""/4128, 0x1020) bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYRESOCT, @ANYRES32, @ANYBLOB="0000000000000000000004000000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYRESOCT=r1], 0x50) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000440)={r6, 0x0, 0x0}, 0x20) 10m36.827159473s ago: executing program 1 (id=725): mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={0x0, &(0x7f0000000f80)=""/4094, 0x50, 0xffe, 0x1}, 0x28) openat$ptmx(0xffffffffffffff9c, 0x0, 0x1022002, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) openat$udambuf(0xffffffffffffff9c, &(0x7f0000000080), 0x2) mlock2(&(0x7f0000072000/0x4000)=nil, 0x4000, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x8, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000140)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce) r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2, 0x0, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) r5 = fcntl$dupfd(0xffffffffffffffff, 0x0, r4) sendmsg$IPCTNL_MSG_CT_GET_DYING(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x14, 0x6, 0x1, 0x101, 0x0, 0x0, {0x0, 0x0, 0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x2404c031}, 0x20000000) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000010300)={&(0x7f00000102c0)={0x14, 0x5, 0x1, 0x801, 0x0, 0x0, {0xa, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x24000804}, 0x40) read$msr(r5, &(0x7f0000000500)=""/143, 0x8f) sendmsg$nl_xfrm(r3, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000100)=ANY=[@ANYRESDEC, @ANYRES32=r4, @ANYRES8=r5], 0x138}, 0x1, 0x0, 0x0, 0x4075}, 0x4800) 10m34.267775471s ago: executing program 1 (id=727): syz_open_dev$sndctrl(0x0, 0xbdd8, 0x701380) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x800001000088}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) r0 = getpgrp(0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5) prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x34feb000) r2 = syz_clone(0x80000, 0x0, 0x0, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) r4 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'bridge_slave_1\x00', 0x0}) sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000005e000100"/19, @ANYRES64=r5], 0x1c}, 0x1, 0x0, 0x0, 0x4804}, 0xc000) r6 = openat$rtc(0xffffffffffffff9c, 0x0, 0x101000, 0x0) ioctl$RTC_PIE_ON(r6, 0x7005) io_setup(0xff, 0x0) io_pgetevents(0x0, 0x4, 0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x989680}, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) 10m25.632357941s ago: executing program 1 (id=736): sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) socket$kcm(0x29, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001cc0)=ANY=[@ANYBLOB], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xd}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r3}, 0x18) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x82) r4 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r4, &(0x7f0000000400)={0x18, 0x0, {0x2, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, 'lo\x00'}}, 0x1e) connect$pppoe(0xffffffffffffffff, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e) r5 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r5, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="d8000000100081046881f782db44b9090000000b01000000e8fe55a1180015000600140000000012080004003e000000a80016000a00001c06000200036010fab94dcf5c0461c1a6ced67f6f94007134cf6ee08000a0e408e8d8ef52878516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d95322fe7c9ffeffffff16a4683f1aeb4edbb57a5025ccca9e02360db70100000040fad95667e006dcffff951f215ce3bb9ad809d5e1cace81c639df2d04c343eb7a9db9596bb727ed0bffece0b42a9ecbee5de6ccd4", 0xd8}], 0x1}, 0x20004880) 10m9.715982546s ago: executing program 33 (id=736): sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) socket$kcm(0x29, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001cc0)=ANY=[@ANYBLOB], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xd}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r3}, 0x18) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x82) r4 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r4, &(0x7f0000000400)={0x18, 0x0, {0x2, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, 'lo\x00'}}, 0x1e) connect$pppoe(0xffffffffffffffff, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e) r5 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r5, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="d8000000100081046881f782db44b9090000000b01000000e8fe55a1180015000600140000000012080004003e000000a80016000a00001c06000200036010fab94dcf5c0461c1a6ced67f6f94007134cf6ee08000a0e408e8d8ef52878516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d95322fe7c9ffeffffff16a4683f1aeb4edbb57a5025ccca9e02360db70100000040fad95667e006dcffff951f215ce3bb9ad809d5e1cace81c639df2d04c343eb7a9db9596bb727ed0bffece0b42a9ecbee5de6ccd4", 0xd8}], 0x1}, 0x20004880) 1m26.768117241s ago: executing program 3 (id=2519): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x3}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000bc00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000400850000003300000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 1m26.398245898s ago: executing program 3 (id=2520): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x7, 0x4, 0x8, 0x1}, 0x50) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000200000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000000000850000001b000000b7000000000000009500000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) unshare(0x40060480) pipe2$9p(&(0x7f0000001900)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x29) r7 = dup(r6) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r7}, 0x2c, {[], [], 0x6b}}) 1m23.024825644s ago: executing program 3 (id=2529): r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50) socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff) sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x24048044) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xcc, 0x80000100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = getpid() sched_setscheduler(r2, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0) r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8) unshare(0x28000600) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x6, 0x1f, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000003000000000000000800000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b70300", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000820000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095000000000000"], &(0x7f0000000100)='syzkaller\x00', 0x7, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x2, 0x5}, 0x8, 0x10, &(0x7f0000000380)={0x2, 0x10, 0xfffffff5}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000400)=[r0], 0x0, 0x10, 0x5}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000680)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f00000006c0), &(0x7f0000000280)=r5}, 0x20) r7 = socket$alg(0x26, 0x5, 0x0) bind$alg(r7, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, &(0x7f0000000000)="adcd1a9a3fc36e961ed00fe41b0cd695", 0x20) r8 = accept4$alg(r7, 0x0, 0x0, 0x0) writev(r8, &(0x7f0000000140)=[{&(0x7f0000000100)="3be5902e693abe", 0x7}, {&(0x7f0000003340)="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", 0xfef}, {&(0x7f00000001c0)}], 0x3) read$alg(r8, &(0x7f0000002300)=""/4128, 0x1020) r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYRESOCT, @ANYRES32, @ANYBLOB="0000000000000000000004000000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYRESOCT=r1], 0x50) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000140)={r9, 0x0, 0x0}, 0x20) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000440)={r6, 0x0, 0x0}, 0x20) 1m21.848999194s ago: executing program 3 (id=2532): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r0}, 0x10) syz_clone(0xc020500, 0x0, 0x0, 0x0, 0x0, 0x0) 1m21.559996124s ago: executing program 3 (id=2534): bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) close(r0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) close(r1) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc080003400000001408000c4000000e45400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d10300001400000011"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40000c0) sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a4c0000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a3100000000200003801c0000800c00018006000100000000000c000440000000000000000714000000110001"], 0x74}, 0x1, 0x0, 0x0, 0x4000811}, 0x40) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a480000001e0a010100000000000000000a0000060900020073797a31000000000900010073797a31000000001c000380180000800c000180060001"], 0x70}, 0x1, 0x0, 0x0, 0x4451099e661a63b1}, 0x0) 1m21.040730357s ago: executing program 3 (id=2536): r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r2}, 0x10) r3 = socket$netlink(0x10, 0x3, 0xf) bind$netlink(r3, &(0x7f0000000a40)={0x10, 0x0, 0x25dfdbfb, 0x2ffffffff}, 0xc) setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000000), 0x4) r4 = socket$netlink(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r5}, 0x4) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000400)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r6}, 0x18) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x20081e, &(0x7f0000000840)={[{@grpjquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xa30}}, {@grpquota}]}, 0x1, 0x52a, &(0x7f0000001440)="$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") r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./bus\x00', 0x4040, 0x0) r8 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0) sendfile(r8, r7, 0x0, 0x3ffff) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) get_mempolicy(&(0x7f0000000100), 0x0, 0x2000000000007, &(0x7f0000ffc000/0x3000)=nil, 0x0) move_pages(0x0, 0x20000000000000fe, &(0x7f0000000080)=[&(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil], 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0) fgetxattr(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x0, 0x0) sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000880)=ANY=[@ANYBLOB="4800000010001fff000000000100000000000000", @ANYRES32=0x0, @ANYBLOB="000000000400000028001280090001007665746800000000180002801400010000000000dc60dd0d2d51963d937481c603d5d9a053e21651dffcc2cb33bb5d70b32e21cdee8baeb5f3e7478c0de85ae6d08fd56b5f3082f4d1c9e96aacb62f6ac2f6b3db55272cbc099df8c1151f4206af874f39d74229a028d89ff0281802b8446cb8ad9654b598acb160df9d58ec5d5028f06b0ae6ec9abfda27cb65b6c8320054b8e9e922d9ff7b04c1c28bcb2227eeac13833120b3a1cab75ab41d2317890dc27fe7f17b0858d76cd4bc1d9f5d039d4edf2ffd5ac9d7e9d31aaf1af4f8924eaf872c16ce5c33cbeb6c4af9076b73206db8c5972b93ac2ae95a9b192b36cc8f36d8d3575210ffee4417d309a0f197093d01ca3874c6493f6a285dc9", @ANYRES32=0x0, @ANYBLOB="0003020000000000"], 0x48}}, 0x4040004) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='vegas', 0x5) connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10) 1m4.902709108s ago: executing program 34 (id=2536): r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r2}, 0x10) r3 = socket$netlink(0x10, 0x3, 0xf) bind$netlink(r3, &(0x7f0000000a40)={0x10, 0x0, 0x25dfdbfb, 0x2ffffffff}, 0xc) setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000000), 0x4) r4 = socket$netlink(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r5}, 0x4) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000400)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r6}, 0x18) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x20081e, &(0x7f0000000840)={[{@grpjquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xa30}}, {@grpquota}]}, 0x1, 0x52a, &(0x7f0000001440)="$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") r7 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./bus\x00', 0x4040, 0x0) r8 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0) sendfile(r8, r7, 0x0, 0x3ffff) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) get_mempolicy(&(0x7f0000000100), 0x0, 0x2000000000007, &(0x7f0000ffc000/0x3000)=nil, 0x0) move_pages(0x0, 0x20000000000000fe, &(0x7f0000000080)=[&(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil], 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0) fgetxattr(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0x0, 0x0) sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000880)=ANY=[@ANYBLOB="4800000010001fff000000000100000000000000", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="0003020000000000"], 0x48}}, 0x4040004) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='vegas', 0x5) connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10) 2.474010147s ago: executing program 6 (id=2852): open$dir(0x0, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0001}]}) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kmem_cache_free\x00', r1, 0x0, 0x100000000}, 0x18) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r2}, 0x38) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000001980)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRESOCT=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3, 0x0, 0x3}, 0x18) symlinkat(0x0, 0xffffffffffffff9c, 0x0) r4 = open(&(0x7f00009e1000)='./file0\x00', 0x149040, 0x10) sendmmsg(r4, &(0x7f0000001800)=[{{&(0x7f0000000380)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x2, 0x3, 0x1, 0x4, {0xa, 0x4e22, 0x7ff, @remote, 0xff}}}, 0x80, &(0x7f0000001780)=[{&(0x7f0000000580)="8252a3ca2de767a3b68022303fabdfa131b7e8833d4fa6056a3d69c07c6849fe2f949253f02af2ea4b66d1180134ba5bb10fa4493a7f8c0b43435fc005c5da5dae99702fd1968d1e1d26d187c7abbf662c708f902ec3f3e6df75782b700127a1f7bff9c0a47639a5ef496812c922cfd4914aba979af22e2d8d227f098068ce1325cafeca007f45b42b213f01ce7c1a95a32807638342099ad9dec9ef9ff2d0c53dd441a2d16221c5854737c63ff54a497b116f4779e40b19cfc5e19aebe284889cc2ec", 0xc3}, {&(0x7f00000001c0)="d27007b8db3667b9", 0x8}, {&(0x7f0000000680)="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", 0x1000}, {&(0x7f0000001680)="f606c8f6734ec733150fcde0e48d1fec929e1a976e81589665c4320f8f782f54aa3647304e3fb79ace1501f03d95be1729ce9123f7c0fec767e27e11fd329bc17659644c9253e7ba5896f434c9b810984b1a6136f30b49594cff476d185b79616360d1cba239caeb444455004cb233da9e65379d844dd659a765d68da6ba1dbf4810f59aeb5092301be780db6f9a95469198632c1997200a33ee04e87ec8fb743745e34c60314e4ca45794f789360899f76b71b806b85865b81c8bf62b36a9910799a2ac93cbe97d187fa6a5a2a926609c9fb3c442027cdc6a7a4674a4e9eb566f42837298e1efe8545d90cead4ec55cb6d01eaf2e", 0xf5}, {&(0x7f0000000300)="c0dd121bad111141a0fc903c7cb66d7a0fae35eed5de8e39eedbeea91938", 0x1e}, {&(0x7f0000000400)="1cefdc8419eb84602e6f134751bc69da73b7e45b16add60f90df6ee86630adb05335bda6c11e6d0f6c48914ed988f9a0f786a827930a816a0300769ce5cbfccaab8ba37dda884872e74b5d76608331a01aac3cbe238b94573c4507bb4d25e06cdc354f012cf7eb172486080a2067527406c088a0", 0x74}, {&(0x7f0000000480)="9bb2ec4d2bdd0b960b208734ef504e93", 0x10}, {&(0x7f0000001ec0)="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", 0xbe0}], 0x8}}], 0x1, 0x2004c849) r5 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x1) r6 = mq_open(&(0x7f0000000a00)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\x81W\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xf5#G\xce\xafUD\x9dA\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb\x00\x00\x00\x00\x00', 0x42, 0x1f0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f00000002c0)='kfree\x00', r7, 0x0, 0x2}, 0x18) mq_timedsend(r6, 0x0, 0x3, 0x8, 0x0) fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0) r8 = fsmount(r5, 0x0, 0x82) fchdir(r8) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) 2.290459315s ago: executing program 4 (id=2854): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00'}) sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x4000800}, 0x0) 2.224190822s ago: executing program 6 (id=2855): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000, 0x7, 0x0, 0xfffffffc}) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf) 2.143048151s ago: executing program 4 (id=2856): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000580)=ANY=[@ANYBLOB="54020000170001000000000000000000200100000000000000000000000000010000000000000000ac141400000000000000000000000000fc020000000000000003000000000000e000000200001000000000000000000000000000000000080a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="1242ffff040000000000000000000037660b6aff000000000000000000000000000000000000000002"], 0x254}}, 0x0) 1.935582332s ago: executing program 6 (id=2858): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000002c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x3000046, &(0x7f00000134c0)={[{@dioread_nolock}, {@noauto_da_alloc}, {@inlinecrypt}, {@sysvgroups}, {@data_err_ignore}, {@barrier_val={'barrier', 0x3d, 0x7f}}, {@data_err_ignore}, {@grpquota}, {@dioread_nolock}, {@nobarrier}, {@mblk_io_submit}, {@quota}]}, 0x2, 0x553, &(0x7f0000001080)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==") r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r1}, &(0x7f0000000200), &(0x7f0000000080)}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000740)='kfree\x00', r2, 0x0, 0x40008003}, 0x18) pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xfecc) 1.85054092s ago: executing program 4 (id=2859): r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x121c02, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000100)) ioctl$PPPIOCSACTIVE(r0, 0x40107446, &(0x7f00000003c0)={0x2, &(0x7f0000000080)=[{0x50, 0x1, 0x2, 0x6}, {0x6, 0x0, 0x3, 0xffffffff}]}) write$ppp(r0, &(0x7f0000000400)="6b27e58a", 0x4) 1.518471064s ago: executing program 4 (id=2861): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xf, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) unshare(0x2a020400) r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000004c0)={0xffffffffffffffff}) recvmsg$unix(r1, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x10002) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) 1.493744887s ago: executing program 5 (id=2862): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f000005"], 0x48) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000001980), r1) sendmsg$MPTCP_PM_CMD_GET_ADDR(r1, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000300)={0x28, r2, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x5}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x10000000}, 0x20008800) r3 = socket$nl_generic(0x10, 0x3, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$TIPC_NL_KEY_SET(r3, &(0x7f0000000100)={0x0, 0x2800, &(0x7f0000000080)={&(0x7f00000001c0)={0x54, r4, 0x1, 0x0, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xf}}}, {0x14, 0x2, @in={0x2, 0x0, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0) sendmsg$TIPC_NL_BEARER_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100280000000000000002000000200001800d0001007564703a73797a32"], 0x34}}, 0x0) openat$ttyS3(0xffffffffffffff9c, 0x0, 0x121602, 0x0) 1.234352554s ago: executing program 2 (id=2863): gettid() r0 = socket$tipc(0x1e, 0x2, 0x0) bind$tipc(r0, &(0x7f0000000840)=@nameseq={0x1e, 0x1, 0x1, {0x42, 0x0, 0x1}}, 0x10) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x200000, 0x3}, 0x10) r1 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x2, 0x1}, 0x10) sendmsg$tipc(r1, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000090}, 0x95) r2 = dup3(r0, r1, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10) write$RDMA_USER_CM_CMD_CREATE_ID(r2, 0x0, 0x0) setsockopt$TIPC_GROUP_LEAVE(r2, 0x10f, 0x88) 1.191097808s ago: executing program 6 (id=2864): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00'}) sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x4000800}, 0x0) 1.022320235s ago: executing program 5 (id=2865): mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0}, 0x68) io_uring_setup(0x9, &(0x7f0000000040)={0x0, 0x20c8a1, 0x1c881, 0x8, 0xd1}) 882.43657ms ago: executing program 2 (id=2866): preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r0 = socket$netlink(0x10, 0x3, 0xc) bind$netlink(r0, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x10) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002a20702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000280)='kfree\x00', r1}, 0x18) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWCHAIN={0x54, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x28, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_HOOK_DEV={0x14, 0x3, 'veth1_macvtap\x00'}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELCHAIN={0x4c, 0x5, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x2000}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x20, 0x4, 0x0, 0x1, [@NFTA_HOOK_DEV={0x14, 0x3, 'veth1_macvtap\x00'}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x5}]}]}], {0x14}}, 0xe8}}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) 784.691249ms ago: executing program 6 (id=2867): prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x18) r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0x10, &(0x7f0000000000)=@framed={{0x18, 0x6}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x90ff}, {}, {0x7, 0x0, 0xb, 0x7}}, @printk]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000680)={r1, 0x20, &(0x7f0000000640)={0x0, 0x0, 0x0, &(0x7f0000000540)=""/238, 0xee}}, 0x10) 749.555013ms ago: executing program 5 (id=2868): bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = creat(&(0x7f0000000280)='./file0\x00', 0x96ab9c7d55edd554) lsetxattr$security_capability(&(0x7f0000002580)='./file0\x00', &(0x7f00000025c0), 0x0, 0x0, 0x0) write$binfmt_elf32(r0, &(0x7f0000000540)=ANY=[], 0x78) close(r0) execve(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) 642.382834ms ago: executing program 2 (id=2869): r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x121c02, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000100)) ioctl$PPPIOCSACTIVE(r0, 0x40107446, &(0x7f00000003c0)={0x2, &(0x7f0000000080)=[{0x50, 0x1, 0x2, 0x6}, {0x6, 0x0, 0x3, 0xffffffff}]}) write$ppp(r0, &(0x7f0000000400)="6b27e58a", 0x4) 599.590948ms ago: executing program 6 (id=2870): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8d}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='tlb_flush\x00', r0}, 0x10) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000a, 0x8031, 0xffffffffffffffff, 0x28f43000) mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil) 406.315698ms ago: executing program 2 (id=2871): sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010000d0400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b0001006d616373656300"], 0x48}}, 0x0) r0 = socket$inet6(0x10, 0x3, 0x0) sendto$inet6(r0, &(0x7f0000000000)='z', 0x10a7a, 0x800, 0x0, 0x4b6ae4f95a5de35b) 354.906424ms ago: executing program 5 (id=2872): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x18) r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48) close(r0) socketpair$unix(0x1, 0x2, 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r1}, &(0x7f0000000000), &(0x7f0000000080)=r0}, 0x20) recvmsg$unix(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0x33fe0}], 0x1}, 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0) 290.49502ms ago: executing program 4 (id=2873): r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x82) ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x20020009, 0x0, &(0x7f0000000240)={0x20, 0x0, 0xfffc, 0x360, 0x7}, 0x1a, 0x7, 0x60000000, 0x0, 0x4, 0x101, 0x0}) 163.891373ms ago: executing program 2 (id=2874): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = fsopen(&(0x7f00000004c0)='mqueue\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000001d40)='\xd0\x9e^\xa0\xee\xc8\x17T\xb1GI\x90\xe2Q1\xb0\x8f\xe1\xa8\x95\xa0\xcd\fL\xaei\xb6\xb7\xc1Y\xd5YG\xf9\xc2\xf1\xa4\xdb$\xf6]\xab\x1a\xdaY\xfb\x03dhS\x97nZ\xf8\xc6\x1f\x03\x00\x00\x00\x00\x00\x00\x00\x9bg-D#g\x16\xf4\xd9\x00\x00\x00\x00\x00eA\x9f\xc3\x11\x18\xe6\xc5\x95\x9e!^W\xf6\xacE\xa3\xc8\xe7\xec\xd6\xbd\x1c+\n\xc7Q( \xba\xff\x17N\x1fB\x91\x15\x83\xec(B\xc5\x05\x9d\xd6\x02|6\xdc\xee$\xb5\x1deC\xfb\xa2\xaa\xe0#\xcb\xde;sA\xad\xa6\xb6P\xa3\xf7\xc3q\xd4\xb6\x95\x02\xd8*\xa8\xd2\x94\xa3\x89\xa9\xa0\xc5\xc9=\xa5^\x00\x00\x00\x00\x00\x00\x00\x00\x00\xef\xcd\xd3\t\x01A\xd5\x81\xc1;9\xeez\xba\x00\x00\x00\xdc\x94\xff)\xa4\xe6\xfb]\x90bG\x11\b\x98#\xaa99ez|\x8b5\x92\xa5\xba\x96\xb3\xb26I\xbb\xdeb\x95?\xc0\x81', &(0x7f0000000200)='sockfs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000040)='\x00', &(0x7f00000001c0)='dE\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r1, 0x1, &(0x7f0000000240)='\xd0\x9e^\xa0\xee\xc8\x17T\xb5GI\x90\xe2Q1\xb0\x8f\xe1\xa8\x95\xa0\xcd\fL\xf10xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00'}) sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x4000800}, 0x0) 86.342991ms ago: executing program 4 (id=2876): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000003b00)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000200)={'geneve0\x00', 0x0}) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="4400000010000100"/20, @ANYRES32=r3, @ANYBLOB="00000000000000001c0012800b00010067656e65766500000c0002"], 0x44}, 0x1, 0x2}, 0x40000) 43.346435ms ago: executing program 5 (id=2877): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000ac0)=@newtaction={0x14, 0x30, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x20004000}, 0x10000800) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x5) r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$SMC_PNETID_DEL(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x40030000000000}, 0x4000) 0s ago: executing program 2 (id=2878): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300001e880000850000007000000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000007c0)={[{@nodioread_nolock}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$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") kernel console output (not intermixed with test programs): omm="syz.5.1999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1008.032580][T12084] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2016'. [ 1010.255519][T12107] syz.5.2024[12107] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1010.255697][T12107] syz.5.2024[12107] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1012.472761][T12118] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2026'. [ 1012.750109][T12129] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2029'. [ 1013.883292][T12124] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2029'. [ 1014.261796][ T28] kauditd_printk_skb: 62 callbacks suppressed [ 1014.261811][ T28] audit: type=1326 audit(1768218323.910:891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12140 comm="syz.5.2033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1014.338058][ T28] audit: type=1326 audit(1768218323.938:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12140 comm="syz.5.2033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1014.504282][ T28] audit: type=1326 audit(1768218323.938:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12140 comm="syz.5.2033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1014.593929][ T28] audit: type=1326 audit(1768218323.938:894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12140 comm="syz.5.2033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1014.662106][ T28] audit: type=1326 audit(1768218323.938:895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12140 comm="syz.5.2033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1014.723237][ T28] audit: type=1326 audit(1768218323.947:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12140 comm="syz.5.2033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1014.790379][ T28] audit: type=1326 audit(1768218323.947:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12140 comm="syz.5.2033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1014.822183][ T28] audit: type=1326 audit(1768218323.947:898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12140 comm="syz.5.2033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1014.902866][ T28] audit: type=1326 audit(1768218323.947:899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12140 comm="syz.5.2033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1014.952435][ T28] audit: type=1326 audit(1768218323.947:900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12140 comm="syz.5.2033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1015.900464][T12170] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2044'. [ 1017.919030][T12179] ip6_vti0 speed is unknown, defaulting to 1000 [ 1020.145383][ T28] audit: type=1326 audit(1768218329.409:901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12219 comm="syz.5.2054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1020.192423][ T28] audit: type=1326 audit(1768218329.409:902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12219 comm="syz.5.2054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1020.235510][ T28] audit: type=1326 audit(1768218329.409:903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12219 comm="syz.5.2054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1020.290298][ T28] audit: type=1326 audit(1768218329.409:904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12219 comm="syz.5.2054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1020.327839][ T28] audit: type=1326 audit(1768218329.409:905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12219 comm="syz.5.2054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1020.369049][ T28] audit: type=1326 audit(1768218329.409:906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12219 comm="syz.5.2054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1020.398372][ T28] audit: type=1326 audit(1768218329.446:907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12219 comm="syz.5.2054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1020.425922][ T28] audit: type=1326 audit(1768218329.446:908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12219 comm="syz.5.2054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=216 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1020.463483][ T28] audit: type=1326 audit(1768218329.456:909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12219 comm="syz.5.2054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1021.505430][ T28] audit: type=1326 audit(1768218330.681:910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12238 comm="syz.2.2062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f311658f749 code=0x7ffc0000 [ 1025.996618][ T28] kauditd_printk_skb: 46 callbacks suppressed [ 1025.996635][ T28] audit: type=1326 audit(1768218334.880:957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12283 comm="syz.3.2080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1026.115437][T12285] ip6_vti0 speed is unknown, defaulting to 1000 [ 1026.212756][ T28] audit: type=1326 audit(1768218334.880:958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12283 comm="syz.3.2080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1026.439578][ T28] audit: type=1326 audit(1768218334.918:959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12283 comm="syz.3.2080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1026.632928][ T28] audit: type=1326 audit(1768218334.918:960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12283 comm="syz.3.2080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1026.746298][ T28] audit: type=1326 audit(1768218334.918:961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12283 comm="syz.3.2080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=92 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1026.799711][ T28] audit: type=1326 audit(1768218334.918:962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12283 comm="syz.3.2080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1026.828165][ T28] audit: type=1326 audit(1768218334.918:963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12283 comm="syz.3.2080" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1027.357445][T12297] netlink: 216 bytes leftover after parsing attributes in process `syz.3.2084'. [ 1030.384138][ T28] audit: type=1326 audit(1768218338.986:964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12322 comm="syz.3.2092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1030.536038][ T28] audit: type=1326 audit(1768218338.986:965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12322 comm="syz.3.2092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1030.672525][ T28] audit: type=1326 audit(1768218338.986:966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12322 comm="syz.3.2092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1035.257235][ T28] kauditd_printk_skb: 1 callbacks suppressed [ 1035.257252][ T28] audit: type=1326 audit(1768218343.540:968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12363 comm="syz.3.2104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1036.255435][ T28] audit: type=1326 audit(1768218343.540:969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12363 comm="syz.3.2104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1036.380169][ T28] audit: type=1326 audit(1768218343.550:970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12363 comm="syz.3.2104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1036.434029][ T28] audit: type=1326 audit(1768218343.550:971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12363 comm="syz.3.2104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1036.497680][ T28] audit: type=1326 audit(1768218343.578:972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12363 comm="syz.3.2104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1036.556909][ T28] audit: type=1326 audit(1768218343.578:973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12363 comm="syz.3.2104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1036.628521][ T28] audit: type=1326 audit(1768218343.671:974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12363 comm="syz.3.2104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1036.722325][ T28] audit: type=1326 audit(1768218343.671:975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12363 comm="syz.3.2104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fafcbf8f783 code=0x7ffc0000 [ 1036.811798][ T28] audit: type=1326 audit(1768218343.699:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12363 comm="syz.3.2104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7fafcbf8f807 code=0x7ffc0000 [ 1036.864644][ T28] audit: type=1326 audit(1768218343.709:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12363 comm="syz.3.2104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1038.082760][T12380] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2108'. [ 1038.134914][T12380] netlink: 'syz.4.2108': attribute type 13 has an invalid length. [ 1038.450491][T12377] ip6_vti0 speed is unknown, defaulting to 1000 [ 1038.899447][T12392] netlink: 4 bytes leftover after parsing attributes in process `wÞ£ÿ'. [ 1038.908370][T12392] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1038.917367][T12392] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1038.935971][T12392] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1038.956065][T12392] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1041.787944][T12418] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2116'. [ 1042.739863][T12420] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2118'. [ 1042.965433][T12423] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2119'. [ 1047.256101][T12459] syz.2.2131[12459] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1047.256247][T12459] syz.2.2131[12459] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1048.465246][ T28] kauditd_printk_skb: 200 callbacks suppressed [ 1048.465263][ T28] audit: type=1326 audit(1768218355.904:1178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12475 comm="syz.2.2139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f311658f749 code=0x7ffc0000 [ 1048.514087][ T28] audit: type=1326 audit(1768218355.904:1179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12475 comm="syz.2.2139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f311658f749 code=0x7ffc0000 [ 1048.613672][ T28] audit: type=1326 audit(1768218355.904:1180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12472 comm="syz.5.2138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1048.700138][ T28] audit: type=1326 audit(1768218355.904:1181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12475 comm="syz.2.2139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=316 compat=0 ip=0x7f311658f749 code=0x7ffc0000 [ 1048.787368][ T28] audit: type=1326 audit(1768218355.904:1182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12475 comm="syz.2.2139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f311658f749 code=0x7ffc0000 [ 1048.876594][ T28] audit: type=1326 audit(1768218355.904:1183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12472 comm="syz.5.2138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1048.939656][ T28] audit: type=1326 audit(1768218355.904:1184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12472 comm="syz.5.2138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1048.987350][ T28] audit: type=1326 audit(1768218355.904:1185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12472 comm="syz.5.2138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1049.035527][ T28] audit: type=1326 audit(1768218355.913:1186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12472 comm="syz.5.2138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1049.070672][ T28] audit: type=1326 audit(1768218355.913:1187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12472 comm="syz.5.2138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1049.139690][T12494] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2145'. [ 1049.160176][T12494] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2145'. [ 1049.210839][T12496] syz.4.2146[12496] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1049.211005][T12496] syz.4.2146[12496] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1049.225935][T12494] bridge1: entered promiscuous mode [ 1049.260237][T12494] bridge1: entered allmulticast mode [ 1049.273969][T12496] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2146'. [ 1050.440559][T12515] xt_hashlimit: max too large, truncated to 1048576 [ 1050.566994][T12515] xt_CT: No such helper "netbios-ns" [ 1050.747793][T12527] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2159'. [ 1052.085843][T12556] syz.2.2171[12556] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1052.085989][T12556] syz.2.2171[12556] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1052.125480][T12556] netlink: 'syz.2.2171': attribute type 4 has an invalid length. [ 1054.540224][T12614] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2195'. [ 1054.555910][T12614] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2195'. [ 1054.627090][T12614] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2195'. [ 1054.638117][T12614] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2195'. [ 1055.318777][T12644] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2205'. [ 1055.343170][T12644] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2205'. [ 1055.445546][T12644] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2205'. [ 1055.525219][T12649] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2204'. [ 1055.634370][T12644] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2205'. [ 1056.337247][T12660] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2212'. [ 1056.702527][ T28] kauditd_printk_skb: 37 callbacks suppressed [ 1056.702543][ T28] audit: type=1326 audit(1768218363.601:1225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12678 comm="syz.4.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d258f749 code=0x7ffc0000 [ 1056.759604][ T28] audit: type=1326 audit(1768218363.629:1226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12678 comm="syz.4.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d258f749 code=0x7ffc0000 [ 1056.812462][ T28] audit: type=1326 audit(1768218363.629:1227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12678 comm="syz.4.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f13d258f749 code=0x7ffc0000 [ 1056.855703][ T28] audit: type=1326 audit(1768218363.629:1228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12678 comm="syz.4.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d258f749 code=0x7ffc0000 [ 1056.886460][ T28] audit: type=1326 audit(1768218363.629:1229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12678 comm="syz.4.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f13d258f749 code=0x7ffc0000 [ 1056.933773][ T28] audit: type=1326 audit(1768218363.629:1230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12678 comm="syz.4.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d258f749 code=0x7ffc0000 [ 1056.990106][ T28] audit: type=1326 audit(1768218363.629:1231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12678 comm="syz.4.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d258f749 code=0x7ffc0000 [ 1057.020575][ T28] audit: type=1326 audit(1768218363.629:1232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12678 comm="syz.4.2220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f13d258f749 code=0x7ffc0000 [ 1057.047524][ T28] audit: type=1326 audit(1768218363.629:1233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12678 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d258f749 code=0x7ffc0000 [ 1057.079972][ T28] audit: type=1326 audit(1768218363.629:1234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12678 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f13d258f749 code=0x7ffc0000 [ 1057.117711][T12693] netlink: 'syz.2.2225': attribute type 29 has an invalid length. [ 1057.267175][T12695] ip6_vti0 speed is unknown, defaulting to 1000 [ 1057.685068][T12712] netlink: 'syz.4.2234': attribute type 14 has an invalid length. [ 1059.076670][T12737] (null): rxe_set_mtu: Set mtu to 256 [ 1059.093035][T12737] vcan0 speed is unknown, defaulting to 1000 [ 1059.120005][T12737] vcan0 speed is unknown, defaulting to 1000 [ 1059.141846][T12737] vcan0 speed is unknown, defaulting to 1000 [ 1059.506674][T12737] infiniband syz1: set active [ 1059.511711][T11921] vcan0 speed is unknown, defaulting to 1000 [ 1059.548647][T12737] infiniband syz1: added vcan0 [ 1059.567173][T12737] syz1: rxe_create_cq: returned err = -12 [ 1059.583613][T12737] infiniband syz1: Couldn't create ib_mad CQ [ 1059.600955][T12737] infiniband syz1: Couldn't open port 1 [ 1059.768234][T12737] RDS/IB: syz1: added [ 1059.790047][T12737] smc: adding ib device syz1 with port count 1 [ 1059.822080][T12737] smc: ib device syz1 port 1 has pnetid [ 1059.856185][T11948] vcan0 speed is unknown, defaulting to 1000 [ 1059.882204][T12737] vcan0 speed is unknown, defaulting to 1000 [ 1062.249000][T12737] vcan0 speed is unknown, defaulting to 1000 [ 1062.349701][T12779] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 1062.388806][T12779] SET target dimension over the limit! [ 1062.668136][T12737] vcan0 speed is unknown, defaulting to 1000 [ 1062.813790][ T28] kauditd_printk_skb: 596 callbacks suppressed [ 1062.813806][ T28] audit: type=1326 audit(1768218369.324:1831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12785 comm="syz.3.2262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1062.883077][ T28] audit: type=1326 audit(1768218369.352:1832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12785 comm="syz.3.2262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1062.923376][ T28] audit: type=1326 audit(1768218369.352:1833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12785 comm="syz.3.2262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1062.947906][ T28] audit: type=1326 audit(1768218369.352:1834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12785 comm="syz.3.2262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1063.003644][ T28] audit: type=1326 audit(1768218369.352:1835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12785 comm="syz.3.2262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1063.033016][ T28] audit: type=1326 audit(1768218369.352:1836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12785 comm="syz.3.2262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1063.090252][ T28] audit: type=1326 audit(1768218369.352:1837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12785 comm="syz.3.2262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1063.122038][T12737] vcan0 speed is unknown, defaulting to 1000 [ 1063.153439][ T28] audit: type=1326 audit(1768218369.352:1838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12785 comm="syz.3.2262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1063.315598][T12795] syz.4.2265[12795] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1063.315742][T12795] syz.4.2265[12795] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1063.359356][ T28] audit: type=1326 audit(1768218369.352:1839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12785 comm="syz.3.2262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1063.456054][ T28] audit: type=1326 audit(1768218369.352:1840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12785 comm="syz.3.2262" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fafcbf8f749 code=0x7ffc0000 [ 1064.770751][T12818] syz.3.2274[12818] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1064.770899][T12818] syz.3.2274[12818] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1065.593182][ T8383] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1065.639325][ T8383] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1065.649377][ T8383] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1065.659630][ T8383] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1065.671800][ T8383] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 1065.683168][ T8383] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1065.757750][T12828] ip6_vti0 speed is unknown, defaulting to 1000 [ 1065.931030][ T9946] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1065.952833][ T9946] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1066.126401][ T9946] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1066.180477][ T9946] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1066.223410][T12828] vcan0 speed is unknown, defaulting to 1000 [ 1066.296384][T12845] syz.5.2284[12845] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1066.296528][T12845] syz.5.2284[12845] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1066.316936][ T9946] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1066.343055][ T9946] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1066.463560][ T9946] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1066.486356][ T9946] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1066.947411][ T9946] bond1: (slave ip6gretap1): Releasing active interface [ 1066.989912][T12864] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2290'. [ 1067.281058][T12828] chnl_net:caif_netlink_parms(): no params data found [ 1068.059985][ T5774] Bluetooth: hci0: command tx timeout [ 1068.248691][T12828] bridge0: port 1(bridge_slave_0) entered blocking state [ 1068.259190][T12828] bridge0: port 1(bridge_slave_0) entered disabled state [ 1068.269805][T12828] bridge_slave_0: entered allmulticast mode [ 1068.278047][T12828] bridge_slave_0: entered promiscuous mode [ 1068.286421][T12828] bridge0: port 2(bridge_slave_1) entered blocking state [ 1068.301010][T12828] bridge0: port 2(bridge_slave_1) entered disabled state [ 1068.310496][T12828] bridge_slave_1: entered allmulticast mode [ 1068.317650][T12828] bridge_slave_1: entered promiscuous mode [ 1068.388328][T12828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1068.406534][T12828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1068.516639][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 1068.527956][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 1068.551664][T12897] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2302'. [ 1068.614297][T12902] netlink: 76 bytes leftover after parsing attributes in process `syz.2.2303'. [ 1068.646742][T12828] team0: Port device team_slave_0 added [ 1068.669064][T12828] team0: Port device team_slave_1 added [ 1068.760425][T12828] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1068.767499][T12828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1068.890977][T12828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1069.039537][T12828] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1069.067355][T12828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1069.119283][T12904] siw: device registration error -23 [ 1069.152544][T12904] smc: removing ib device syz2 [ 1069.167468][T12828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1069.670638][T12910] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2306'. [ 1069.771634][T12910] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2306'. [ 1069.938190][T12828] hsr_slave_0: entered promiscuous mode [ 1069.966833][T12828] hsr_slave_1: entered promiscuous mode [ 1070.005335][T12828] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1070.032483][T12828] Cannot create hsr debugfs directory [ 1070.047734][T12910] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2306'. [ 1070.059819][T12910] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2306'. [ 1070.228277][ T5774] Bluetooth: hci0: command tx timeout [ 1070.727825][T12919] syz.5.2310[12919] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1070.727965][T12919] syz.5.2310[12919] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1072.399833][ T9946] hsr_slave_0: left promiscuous mode [ 1072.455197][ T9946] hsr_slave_1: left promiscuous mode [ 1072.461173][ T5774] Bluetooth: hci0: command tx timeout [ 1072.513288][ T9946] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1072.525489][ T9946] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1072.584586][ T9946] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1072.617878][ T9946] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1072.663165][ T9946] bridge_slave_1: left allmulticast mode [ 1072.674625][ T9946] bridge_slave_1: left promiscuous mode [ 1072.715038][ T9946] bridge0: port 2(bridge_slave_1) entered disabled state [ 1072.831965][ T9946] bridge_slave_0: left allmulticast mode [ 1072.849424][ T9946] bridge_slave_0: left promiscuous mode [ 1072.868713][ T9946] bridge0: port 1(bridge_slave_0) entered disabled state [ 1073.514189][ T9946] veth1_macvtap: left promiscuous mode [ 1073.520064][ T9946] veth0_macvtap: left promiscuous mode [ 1073.542613][ T9946] veth1_vlan: left promiscuous mode [ 1073.569178][ T9946] veth0_vlan: left promiscuous mode [ 1074.670453][ T5774] Bluetooth: hci0: command tx timeout [ 1076.191366][ T9946] bond1 (unregistering): Released all slaves [ 1080.231043][ T9946] team0 (unregistering): Port device team_slave_1 removed [ 1080.331096][ T9946] team0 (unregistering): Port device team_slave_0 removed [ 1080.424502][ T9946] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1080.555173][ T9946] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1081.293730][ T9946] bond0 (unregistering): Released all slaves [ 1081.413709][T12931] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2315'. [ 1081.423146][T12931] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2315'. [ 1081.433188][T12969] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2328'. [ 1081.446686][T12969] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2328'. [ 1081.458593][T12969] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2328'. [ 1081.499799][T12969] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2328'. [ 1081.509066][T12969] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2328'. [ 1081.518609][T12969] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2328'. [ 1081.527732][T12969] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2328'. [ 1081.536970][T12969] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2328'. [ 1081.792924][T12974] pimreg: entered allmulticast mode [ 1081.826163][T12974] pimreg: left allmulticast mode [ 1081.949342][T12828] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 1081.991198][T12828] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 1082.006649][T12828] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 1082.029211][T12828] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 1082.185520][ T28] kauditd_printk_skb: 78 callbacks suppressed [ 1082.185538][ T28] audit: type=1326 audit(1768218387.430:1919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12988 comm="syz.5.2334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1082.239502][ T28] audit: type=1326 audit(1768218387.430:1920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12988 comm="syz.5.2334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1082.267115][ T28] audit: type=1326 audit(1768218387.486:1921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12988 comm="syz.5.2334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1082.320598][ T28] audit: type=1326 audit(1768218387.486:1922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12988 comm="syz.5.2334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1082.378358][ T28] audit: type=1326 audit(1768218387.486:1923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12988 comm="syz.5.2334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1082.425541][T12828] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1082.430138][ T28] audit: type=1326 audit(1768218387.486:1924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12988 comm="syz.5.2334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1082.477832][ T28] audit: type=1326 audit(1768218387.486:1925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12988 comm="syz.5.2334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1082.502257][T12828] 8021q: adding VLAN 0 to HW filter on device team0 [ 1082.518116][ T28] audit: type=1326 audit(1768218387.486:1926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12988 comm="syz.5.2334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1082.523886][ T6531] bridge0: port 1(bridge_slave_0) entered blocking state [ 1082.548007][ T6531] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1082.565158][ T28] audit: type=1326 audit(1768218387.514:1927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12988 comm="syz.5.2334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1082.602297][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 1082.603307][ T28] audit: type=1326 audit(1768218387.514:1928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12988 comm="syz.5.2334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1082.609630][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1083.059269][T12828] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1083.133654][T13008] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 1083.191327][T12828] veth0_vlan: entered promiscuous mode [ 1083.217995][T12828] veth1_vlan: entered promiscuous mode [ 1083.324740][T12828] veth0_macvtap: entered promiscuous mode [ 1083.345309][T12828] veth1_macvtap: entered promiscuous mode [ 1083.403799][T12828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1083.445236][T12828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1083.461477][T12828] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1083.483144][T12828] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1083.509416][T12828] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1083.529093][T12828] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1083.553801][T12828] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1083.598900][T12828] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1083.607813][T12828] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1083.634662][T12828] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1083.884256][T13032] 9pnet_fd: Insufficient options for proto=fd [ 1083.928835][ T6531] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1083.987336][ T6531] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1084.686464][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1084.721101][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1084.839350][T13043] loop3: detected capacity change from 0 to 2048 [ 1084.852455][T13043] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1084.878276][T13045] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1086.195152][T13058] loop3: detected capacity change from 0 to 512 [ 1086.247354][T13058] EXT4-fs (loop3): too many log groups per flexible block group [ 1086.278058][T13058] EXT4-fs (loop3): failed to initialize mballoc (-12) [ 1086.295376][T13058] EXT4-fs (loop3): mount failed [ 1086.700432][T13074] netlink: 'syz.4.2362': attribute type 25 has an invalid length. [ 1086.796933][T13076] __nla_validate_parse: 60 callbacks suppressed [ 1086.796953][T13076] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2364'. [ 1086.818695][T13076] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2364'. [ 1087.058842][T13076] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2364'. [ 1087.069752][T13082] Cannot find add_set index 0 as target [ 1087.077355][T13076] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2364'. [ 1087.544903][T13093] loop3: detected capacity change from 0 to 512 [ 1087.587403][T13093] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 1087.657282][T13093] EXT4-fs (loop3): 1 truncate cleaned up [ 1087.677881][T13093] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1087.892641][T13099] netlink: 6 bytes leftover after parsing attributes in process `syz.4.2373'. [ 1087.901392][T12828] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1088.292780][ T9812] usb 4-1: new full-speed USB device number 3 using dummy_hcd [ 1088.312900][T13109] SET target dimension over the limit! [ 1088.520314][ T9812] usb 4-1: config 0 interface 0 altsetting 251 endpoint 0x9 has an invalid bInterval 0, changing to 4 [ 1088.541661][ T9812] usb 4-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid maxpacket 15380, setting to 1023 [ 1088.593648][ T9812] usb 4-1: config 0 interface 0 has no altsetting 0 [ 1088.605920][ T9812] usb 4-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 1088.621157][ T9812] usb 4-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 1088.643485][ T9812] usb 4-1: Product: syz [ 1088.653409][ T9812] usb 4-1: Manufacturer: syz [ 1088.664225][ T9812] usb 4-1: SerialNumber: syz [ 1088.678783][ T9812] usb 4-1: config 0 descriptor?? [ 1088.692422][ T9812] usb 4-1: selecting invalid altsetting 0 [ 1090.282844][T13133] syz.4.2386[13133] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1090.282987][T13133] syz.4.2386[13133] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1091.143954][T13148] netlink: 48 bytes leftover after parsing attributes in process `syz.5.2393'. [ 1091.322994][ T9812] usb 4-1: USB disconnect, device number 3 [ 1091.797069][T13152] loop3: detected capacity change from 0 to 2048 [ 1091.815277][ T8383] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 1091.826823][ T8383] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 1091.837282][ T8383] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 1091.845978][ T8383] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 1091.853871][ T8383] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 1091.861335][ T8383] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 1091.870527][T13152] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1091.949679][T13155] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1092.014484][T13153] vcan0 speed is unknown, defaulting to 1000 [ 1093.319244][T13162] syz.3.2396[13162] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1093.319391][T13162] syz.3.2396[13162] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1093.366775][T13162] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2396'. [ 1093.591866][T13153] chnl_net:caif_netlink_parms(): no params data found [ 1093.872247][T13153] bridge0: port 1(bridge_slave_0) entered blocking state [ 1093.880885][T13153] bridge0: port 1(bridge_slave_0) entered disabled state [ 1093.888281][T13153] bridge_slave_0: entered allmulticast mode [ 1093.906865][T13153] bridge_slave_0: entered promiscuous mode [ 1093.932352][T13153] bridge0: port 2(bridge_slave_1) entered blocking state [ 1093.949736][T13153] bridge0: port 2(bridge_slave_1) entered disabled state [ 1093.965255][T13153] bridge_slave_1: entered allmulticast mode [ 1093.978937][T13153] bridge_slave_1: entered promiscuous mode [ 1094.120447][ T8383] Bluetooth: hci1: command tx timeout [ 1094.300896][T13153] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1094.706295][T13178] vcan0 speed is unknown, defaulting to 1000 [ 1095.138459][T13153] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1095.314525][T13153] team0: Port device team_slave_0 added [ 1095.335435][T13153] team0: Port device team_slave_1 added [ 1095.390282][T13153] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1095.398859][T13153] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1095.435416][T13153] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1095.494251][T13153] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1095.503763][T13153] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1095.543785][T13153] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1095.705176][T13153] hsr_slave_0: entered promiscuous mode [ 1095.723012][T13153] hsr_slave_1: entered promiscuous mode [ 1095.735946][T13153] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1095.754519][T13153] Cannot create hsr debugfs directory [ 1095.807719][T13187] syz.3.2404[13187] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1095.807863][T13187] syz.3.2404[13187] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1095.846570][T13187] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2404'. [ 1096.313029][ T8383] Bluetooth: hci1: command tx timeout [ 1096.383151][T13191] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2405'. [ 1097.583715][ T9946] hsr_slave_0: left promiscuous mode [ 1097.593590][ T9946] hsr_slave_1: left promiscuous mode [ 1097.616271][ T9946] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1097.628578][ T9946] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1097.648108][ T9946] bridge_slave_1: left allmulticast mode [ 1097.680910][ T9946] bridge_slave_1: left promiscuous mode [ 1097.686758][ T9946] bridge0: port 2(bridge_slave_1) entered disabled state [ 1097.754429][ T9946] bridge_slave_0: left allmulticast mode [ 1097.770848][ T9946] bridge_slave_0: left promiscuous mode [ 1097.776722][ T9946] bridge0: port 1(bridge_slave_0) entered disabled state [ 1097.796730][T13204] loop3: detected capacity change from 0 to 512 [ 1097.950689][T13208] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2413'. [ 1098.548182][ T8383] Bluetooth: hci1: command tx timeout [ 1098.566533][ T9946] team0 (unregistering): Port device team_slave_1 removed [ 1098.641842][ T9946] team0 (unregistering): Port device team_slave_0 removed [ 1098.710576][ T9946] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1098.781679][ T9946] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1099.529219][ T9946] bond0 (unregistering): Released all slaves [ 1099.658343][T13208] IPVS: Error connecting to the multicast addr [ 1099.793959][T13153] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 1099.818120][T13213] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2414'. [ 1099.838386][T13213] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2414'. [ 1099.865550][T13153] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 1099.891976][T13153] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 1099.933212][T13153] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 1099.964446][T13213] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2414'. [ 1100.000389][T13213] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2414'. [ 1100.230573][T13153] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1100.293344][T13153] 8021q: adding VLAN 0 to HW filter on device team0 [ 1100.728750][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 1100.736030][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1100.762319][ T8383] Bluetooth: hci1: command tx timeout [ 1100.799906][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 1100.808389][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1100.872517][T13240] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2423'. [ 1101.011968][T13240] team0: Port device team_slave_1 removed [ 1101.170175][T13153] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1101.560536][T13153] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1101.661115][ T28] kauditd_printk_skb: 243 callbacks suppressed [ 1101.661133][ T28] audit: type=1326 audit(1768218405.648:2172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13266 comm="syz.5.2431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1101.694945][ T28] audit: type=1326 audit(1768218405.686:2173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13266 comm="syz.5.2431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1101.722955][ T28] audit: type=1326 audit(1768218405.686:2174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13266 comm="syz.5.2431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1101.755195][ T28] audit: type=1326 audit(1768218405.686:2175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13266 comm="syz.5.2431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1101.793519][ T28] audit: type=1326 audit(1768218405.686:2176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13266 comm="syz.5.2431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1101.856646][ T28] audit: type=1326 audit(1768218405.686:2177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13266 comm="syz.5.2431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1101.979672][ T28] audit: type=1326 audit(1768218405.686:2178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13266 comm="syz.5.2431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1102.066388][ T28] audit: type=1326 audit(1768218405.686:2179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13266 comm="syz.5.2431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1102.259656][ T28] audit: type=1326 audit(1768218405.686:2180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13266 comm="syz.5.2431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1102.792436][ T28] audit: type=1326 audit(1768218405.686:2181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13266 comm="syz.5.2431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1103.013293][T13278] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2433'. [ 1103.048708][T13278] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2433'. [ 1103.238252][T13153] veth0_vlan: entered promiscuous mode [ 1103.259636][T13153] veth1_vlan: entered promiscuous mode [ 1103.400536][T13153] veth0_macvtap: entered promiscuous mode [ 1103.422101][T13153] veth1_macvtap: entered promiscuous mode [ 1103.487630][T13153] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1103.519109][T13153] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1103.533727][T13153] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1103.545759][T13153] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1103.581751][T13153] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1103.628933][T13153] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1103.661968][T13153] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1103.671992][T13153] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1103.683344][T13153] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1103.717621][T13153] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1104.165612][T13153] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1104.310852][T13153] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1104.348192][T13153] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1104.387873][T13153] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1104.715581][ T7294] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1104.724542][T13306] Cannot find add_set index 0 as target [ 1104.735573][ T7294] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1104.822111][ T1128] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1104.842223][ T1128] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1105.010841][T13315] lo speed is unknown, defaulting to 1000 [ 1105.021807][T13315] lo speed is unknown, defaulting to 1000 [ 1105.029546][T13315] lo speed is unknown, defaulting to 1000 [ 1105.049638][T13315] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 1105.091568][T13315] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 1105.152983][T13315] lo speed is unknown, defaulting to 1000 [ 1105.181317][T13321] loop3: detected capacity change from 0 to 128 [ 1105.188286][T13315] lo speed is unknown, defaulting to 1000 [ 1105.224115][T13315] lo speed is unknown, defaulting to 1000 [ 1105.248689][T13315] lo speed is unknown, defaulting to 1000 [ 1106.221288][T13329] Cannot find add_set index 0 as target [ 1106.396370][T13337] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2456'. [ 1107.374886][ T5774] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1107.390338][ T5774] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1107.399204][ T5774] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1107.407643][ T5774] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1107.417060][ T5774] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 1107.424640][ T5774] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1107.564576][T13344] vcan0 speed is unknown, defaulting to 1000 [ 1107.648627][ T28] kauditd_printk_skb: 56 callbacks suppressed [ 1107.648644][ T28] audit: type=1326 audit(1768218411.250:2238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13342 comm="syz.3.2458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e8f98f749 code=0x7ffc0000 [ 1107.704505][T13351] loop3: detected capacity change from 0 to 128 [ 1107.775805][ T28] audit: type=1326 audit(1768218411.278:2239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13342 comm="syz.3.2458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f2e8f98f749 code=0x7ffc0000 [ 1107.799041][ T28] audit: type=1326 audit(1768218411.278:2240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13342 comm="syz.3.2458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e8f98f749 code=0x7ffc0000 [ 1107.823170][ T28] audit: type=1326 audit(1768218411.278:2241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13342 comm="syz.3.2458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e8f98f749 code=0x7ffc0000 [ 1107.845761][ T28] audit: type=1326 audit(1768218411.278:2242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13342 comm="syz.3.2458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f2e8f98f749 code=0x7ffc0000 [ 1107.872321][ T28] audit: type=1326 audit(1768218411.278:2243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13342 comm="syz.3.2458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f2e8f98f783 code=0x7ffc0000 [ 1108.401914][ T28] audit: type=1326 audit(1768218411.278:2244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13342 comm="syz.3.2458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f2e8f98e1ff code=0x7ffc0000 [ 1108.569756][ T28] audit: type=1326 audit(1768218411.278:2245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13342 comm="syz.3.2458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f2e8f98f7d7 code=0x7ffc0000 [ 1108.667227][ T28] audit: type=1326 audit(1768218411.278:2246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13342 comm="syz.3.2458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2e8f98df90 code=0x7ffc0000 [ 1108.689993][ T28] audit: type=1326 audit(1768218411.278:2247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13342 comm="syz.3.2458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2e8f98f34b code=0x7ffc0000 [ 1108.864231][T13363] Cannot find add_set index 0 as target [ 1108.883964][T13344] lo speed is unknown, defaulting to 1000 [ 1108.883985][T13360] IPv6: NLM_F_CREATE should be specified when creating new route [ 1109.055916][ T32] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1109.067627][ T32] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1109.097983][T13367] netlink: 96 bytes leftover after parsing attributes in process `syz.5.2465'. [ 1109.699627][ T5774] Bluetooth: hci2: command tx timeout [ 1109.933829][ T32] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1109.944345][ T32] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1110.027035][T13374] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2468'. [ 1110.054990][T13374] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2468'. [ 1110.180361][ T32] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1110.190960][ T32] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1110.238325][T13374] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2468'. [ 1110.258427][T13374] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2468'. [ 1110.951461][ T32] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1111.013466][ T32] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1111.185286][T13392] Cannot find add_set index 0 as target [ 1111.307464][T13344] chnl_net:caif_netlink_parms(): no params data found [ 1111.527321][T13401] IPv6: Can't replace route, no match found [ 1111.881090][ T5774] Bluetooth: hci2: command tx timeout [ 1112.501825][T13344] bridge0: port 1(bridge_slave_0) entered blocking state [ 1112.509051][T13344] bridge0: port 1(bridge_slave_0) entered disabled state [ 1112.544594][T13344] bridge_slave_0: entered allmulticast mode [ 1112.556255][T13344] bridge_slave_0: entered promiscuous mode [ 1112.579808][T13344] bridge0: port 2(bridge_slave_1) entered blocking state [ 1112.598082][T13344] bridge0: port 2(bridge_slave_1) entered disabled state [ 1112.613380][T13344] bridge_slave_1: entered allmulticast mode [ 1112.623809][T13344] bridge_slave_1: entered promiscuous mode [ 1112.657900][T13419] syz.5.2484[13419] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1112.658056][T13419] syz.5.2484[13419] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1112.694325][T13421] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2484'. [ 1112.741047][T13420] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2483'. [ 1112.756213][T13420] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2483'. [ 1113.442911][T13344] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1113.473217][T13426] syz.5.2485[13426] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1113.473361][T13426] syz.5.2485[13426] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1113.495882][T13344] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1113.611241][T13420] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2483'. [ 1113.631436][T13420] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2483'. [ 1113.860562][T13436] Cannot find add_set index 0 as target [ 1113.904529][T13344] team0: Port device team_slave_0 added [ 1113.929138][T13344] team0: Port device team_slave_1 added [ 1114.148055][ T5774] Bluetooth: hci2: command tx timeout [ 1114.350872][ T28] kauditd_printk_skb: 50 callbacks suppressed [ 1114.350888][ T28] audit: type=1326 audit(1768218417.516:2298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13443 comm="syz.5.2493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1114.829162][ T28] audit: type=1326 audit(1768218417.516:2299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13443 comm="syz.5.2493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1114.897148][ T28] audit: type=1326 audit(1768218417.572:2300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13443 comm="syz.5.2493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1114.960392][ T28] audit: type=1326 audit(1768218417.572:2301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13443 comm="syz.5.2493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1114.994882][ T28] audit: type=1326 audit(1768218417.572:2302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13443 comm="syz.5.2493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1115.088680][ T28] audit: type=1326 audit(1768218417.582:2303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13443 comm="syz.5.2493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1115.165964][ T28] audit: type=1326 audit(1768218417.591:2304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13443 comm="syz.5.2493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fe962b8f783 code=0x7ffc0000 [ 1115.222048][T13344] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1115.229481][ T28] audit: type=1326 audit(1768218417.610:2305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13443 comm="syz.5.2493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fe962b8e1ff code=0x7ffc0000 [ 1115.249580][T13344] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1115.252280][ T28] audit: type=1326 audit(1768218417.629:2306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13443 comm="syz.5.2493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fe962b8f7d7 code=0x7ffc0000 [ 1115.388527][T13344] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1115.780187][ T28] audit: type=1326 audit(1768218417.638:2307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13443 comm="syz.5.2493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe962b8df90 code=0x7ffc0000 [ 1116.009141][T13344] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1116.016162][T13344] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1116.072422][T13344] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1116.090778][T13461] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2498'. [ 1116.123715][T13461] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2498'. [ 1116.211196][T13344] hsr_slave_0: entered promiscuous mode [ 1116.218562][T13344] hsr_slave_1: entered promiscuous mode [ 1116.233996][T13344] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1116.242156][T13344] Cannot create hsr debugfs directory [ 1116.337597][ T5774] Bluetooth: hci2: command tx timeout [ 1116.432612][T13468] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2499'. [ 1116.472675][T13461] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2498'. [ 1116.481998][T13461] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2498'. [ 1119.844637][T13484] vcan0 speed is unknown, defaulting to 1000 [ 1120.006869][T13484] lo speed is unknown, defaulting to 1000 [ 1121.021361][ T28] kauditd_printk_skb: 6 callbacks suppressed [ 1121.021377][ T28] audit: type=1326 audit(1768218423.754:2314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13493 comm="syz.3.2508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e8f98f749 code=0x7ffc0000 [ 1121.073430][ T28] audit: type=1326 audit(1768218423.754:2315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13493 comm="syz.3.2508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e8f98f749 code=0x7ffc0000 [ 1121.186755][ T28] audit: type=1326 audit(1768218423.764:2316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13493 comm="syz.3.2508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2e8f98f749 code=0x7ffc0000 [ 1121.273058][ T28] audit: type=1326 audit(1768218423.773:2317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13493 comm="syz.3.2508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e8f98f749 code=0x7ffc0000 [ 1121.373592][ T28] audit: type=1326 audit(1768218423.773:2318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13493 comm="syz.3.2508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2e8f98f749 code=0x7ffc0000 [ 1121.483021][ T28] audit: type=1326 audit(1768218423.773:2319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13493 comm="syz.3.2508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e8f98f749 code=0x7ffc0000 [ 1121.701120][ T28] audit: type=1326 audit(1768218423.773:2320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13493 comm="syz.3.2508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e8f98f749 code=0x7ffc0000 [ 1121.729092][ T32] hsr_slave_0: left promiscuous mode [ 1121.744807][ T32] hsr_slave_1: left promiscuous mode [ 1121.769004][ T32] bridge_slave_1: left allmulticast mode [ 1121.777257][ T32] bridge_slave_1: left promiscuous mode [ 1121.796056][ T32] bridge0: port 2(bridge_slave_1) entered disabled state [ 1121.817909][ T32] bridge_slave_0: left allmulticast mode [ 1121.825081][ T32] bridge_slave_0: left promiscuous mode [ 1121.831027][ T32] bridge0: port 1(bridge_slave_0) entered disabled state [ 1121.839566][ T28] audit: type=1326 audit(1768218423.773:2321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13493 comm="syz.3.2508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f2e8f98f749 code=0x7ffc0000 [ 1121.943957][ T28] audit: type=1326 audit(1768218423.773:2322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13493 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e8f98f749 code=0x7ffc0000 [ 1121.967879][ T32] veth1_macvtap: left promiscuous mode [ 1121.973497][ T32] veth1_vlan: left promiscuous mode [ 1121.996436][ T32] veth0_vlan: left promiscuous mode [ 1122.024740][ T28] audit: type=1326 audit(1768218423.773:2323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13493 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e8f98f749 code=0x7ffc0000 [ 1124.435796][T13518] loop4: detected capacity change from 0 to 2048 [ 1124.512882][T13518] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1124.561603][T13519] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1125.886622][ T32] team0 (unregistering): Port device team_slave_1 removed [ 1126.048722][ T32] team0 (unregistering): Port device team_slave_0 removed [ 1126.168092][ T32] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1126.287338][ T32] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1127.007030][ T32] bond0 (unregistering): Released all slaves [ 1127.738924][T13344] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 1127.768023][T13344] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 1127.808125][T13344] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 1127.852655][T13344] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 1129.352901][T13542] vcan0 speed is unknown, defaulting to 1000 [ 1129.628073][T13542] lo speed is unknown, defaulting to 1000 [ 1129.792873][T13344] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1129.999465][T13344] 8021q: adding VLAN 0 to HW filter on device team0 [ 1130.139418][ T32] bridge0: port 1(bridge_slave_0) entered blocking state [ 1130.146637][ T32] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1130.227032][ T32] bridge0: port 2(bridge_slave_1) entered blocking state [ 1130.234347][ T32] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1130.312171][T13551] vcan0 speed is unknown, defaulting to 1000 [ 1131.043297][T13551] lo speed is unknown, defaulting to 1000 [ 1131.410982][T13344] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1131.547757][T13344] veth0_vlan: entered promiscuous mode [ 1131.614896][T13344] veth1_vlan: entered promiscuous mode [ 1131.635423][T13568] __nla_validate_parse: 1 callbacks suppressed [ 1131.635437][T13568] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2528'. [ 1131.757164][T13344] veth0_macvtap: entered promiscuous mode [ 1132.049247][T13344] veth1_macvtap: entered promiscuous mode [ 1132.727050][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1132.763646][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1132.796124][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1132.827840][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1132.870280][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1132.924423][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1133.022429][T13344] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1133.117001][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1133.159568][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1133.218143][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1133.279674][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1133.331973][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1133.373377][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1133.428672][T13344] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1133.510143][T13344] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1133.576331][T13344] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1133.585116][T13344] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1133.642157][T13344] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1133.746774][T13590] loop3: detected capacity change from 0 to 512 [ 1133.795118][T13590] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1133.960842][T13590] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1133.983918][T13595] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2537'. [ 1134.060089][T13590] ext4 filesystem being mounted at /61/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1134.190991][ T28] kauditd_printk_skb: 19 callbacks suppressed [ 1134.191009][ T28] audit: type=1800 audit(1768218436.062:2343): pid=13590 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2536" name="bus" dev="loop3" ino=18 res=0 errno=0 [ 1134.229320][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 1134.235702][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 1134.284296][ T7294] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1134.357093][ T7294] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1134.368132][ T28] audit: type=1804 audit(1768218436.062:2344): pid=13590 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.2536" name="/newroot/61/bus/bus" dev="loop3" ino=18 res=1 errno=0 [ 1134.465125][ T28] audit: type=1326 audit(1768218436.146:2345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13589 comm="syz.3.2536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e8f98f749 code=0x7ffc0000 [ 1134.500839][ T28] audit: type=1326 audit(1768218436.146:2346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13589 comm="syz.3.2536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e8f98f749 code=0x7ffc0000 [ 1134.559763][ T28] audit: type=1326 audit(1768218436.174:2347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13589 comm="syz.3.2536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=279 compat=0 ip=0x7f2e8f98f749 code=0x7ffc0000 [ 1134.607116][ T28] audit: type=1326 audit(1768218436.445:2348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13599 comm="syz.5.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1134.684381][ T28] audit: type=1326 audit(1768218436.445:2349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13599 comm="syz.5.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1134.732631][ T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1134.755467][ T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1134.877838][ T28] audit: type=1326 audit(1768218436.454:2350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13599 comm="syz.5.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=71 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1134.998488][ T28] audit: type=1326 audit(1768218436.454:2351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13599 comm="syz.5.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1135.086127][ T28] audit: type=1326 audit(1768218436.454:2352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13599 comm="syz.5.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1135.384105][T13607] hub 2-0:1.0: USB hub found [ 1135.416163][T13607] hub 2-0:1.0: 1 port detected [ 1136.051021][T13620] loop2: detected capacity change from 0 to 128 [ 1136.130804][T13620] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1136.215575][T13620] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 1136.298733][T13623] –: renamed from vxcan1 (while UP) [ 1136.388798][T13620] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2545'. [ 1136.468155][T13620] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2545'. [ 1136.694585][T13631] sd 0:0:1:0: device reset [ 1137.203333][T13642] siw: device registration error -23 [ 1138.065782][T13662] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2557'. [ 1139.304390][T13675] loop2: detected capacity change from 0 to 2048 [ 1139.352023][T13675] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1139.439962][T13681] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1139.625437][T13683] siw: device registration error -23 [ 1141.024236][T13702] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2567'. [ 1141.132218][ T28] kauditd_printk_skb: 9 callbacks suppressed [ 1141.132233][ T28] audit: type=1326 audit(1768218442.561:2362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13705 comm="syz.4.2568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72d978f749 code=0x7ffc0000 [ 1141.192560][ T28] audit: type=1326 audit(1768218442.561:2363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13705 comm="syz.4.2568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72d978f749 code=0x7ffc0000 [ 1141.288352][ T28] audit: type=1326 audit(1768218442.589:2364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13705 comm="syz.4.2568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72d978f749 code=0x7ffc0000 [ 1141.310829][ C0] vkms_vblank_simulate: vblank timer overrun [ 1141.372427][ T28] audit: type=1326 audit(1768218442.589:2365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13705 comm="syz.4.2568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72d978f749 code=0x7ffc0000 [ 1141.456466][ T28] audit: type=1326 audit(1768218442.589:2366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13705 comm="syz.4.2568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72d978f749 code=0x7ffc0000 [ 1141.522256][ T28] audit: type=1326 audit(1768218442.599:2367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13705 comm="syz.4.2568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=35 compat=0 ip=0x7f72d978f749 code=0x7ffc0000 [ 1141.599700][ T28] audit: type=1326 audit(1768218442.599:2368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13705 comm="syz.4.2568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72d978f749 code=0x7ffc0000 [ 1141.689840][ T28] audit: type=1326 audit(1768218442.599:2369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13705 comm="syz.4.2568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72d978f749 code=0x7ffc0000 [ 1141.730418][ T28] audit: type=1326 audit(1768218442.954:2370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13718 comm="syz.5.2572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1141.761959][ T28] audit: type=1326 audit(1768218442.954:2371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13718 comm="syz.5.2572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1141.867784][T13724] Process accounting resumed [ 1142.232578][T13739] loop2: detected capacity change from 0 to 512 [ 1142.314702][T13739] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 1142.361238][T13739] ext4 filesystem being mounted at /9/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1142.711045][T13344] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 1142.727091][T13756] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2582'. [ 1144.993403][T13805] Cannot find add_set index 0 as target [ 1145.013129][T13803] netlink: 'syz.2.2597': attribute type 13 has an invalid length. [ 1145.071039][T13803] gretap0: refused to change device tx_queue_len [ 1145.083996][T13803] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 1145.312622][T13813] netlink: 'syz.2.2600': attribute type 7 has an invalid length. [ 1147.975808][T13837] vcan0 speed is unknown, defaulting to 1000 [ 1147.990285][T13846] Cannot find add_set index 0 as target [ 1148.040394][T13848] syz.5.2608[13848] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1148.040541][T13848] syz.5.2608[13848] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1148.655273][T13859] netlink: 'syz.5.2612': attribute type 29 has an invalid length. [ 1148.710608][T13837] lo speed is unknown, defaulting to 1000 [ 1149.834714][T13885] Cannot find add_set index 0 as target [ 1150.071327][T13892] loop4: detected capacity change from 0 to 512 [ 1150.129122][T13892] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 1150.217640][T13895] loop2: detected capacity change from 0 to 512 [ 1150.229367][T13892] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 1150.239684][T13895] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 1150.255918][T13892] EXT4-fs error (device loop4): ext4_get_branch:178: inode #13: block 1024: comm syz.4.2621: invalid block [ 1150.289506][T13892] EXT4-fs (loop4): Remounting filesystem read-only [ 1150.296804][T13892] EXT4-fs (loop4): 1 truncate cleaned up [ 1150.332820][T13892] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1150.388962][T13895] EXT4-fs (loop2): 1 truncate cleaned up [ 1150.421521][T13895] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1150.467981][T13892] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. [ 1150.610538][T13153] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1150.617294][T13344] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1150.903557][T13911] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 1150.919307][T13911] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 1150.934021][T13911] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 1150.950351][T13911] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 1150.961655][T13911] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 1150.970019][T13911] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 1150.987244][ T5774] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 1150.997968][ T5774] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 1151.009758][ T5774] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 1151.022395][ T5774] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 1151.032113][ T5774] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 1151.040881][ T5774] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 1151.149678][T13909] vcan0 speed is unknown, defaulting to 1000 [ 1151.181794][T13918] Cannot find add_set index 0 as target [ 1151.345867][T13924] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2630'. [ 1151.356951][T13590] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1151.488506][T13926] Invalid argument reading file caps for ./file0 [ 1151.609934][T13928] loop4: detected capacity change from 0 to 2048 [ 1151.619589][T13928] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1151.633444][T13909] lo speed is unknown, defaulting to 1000 [ 1151.674512][T13929] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1153.174722][T13909] chnl_net:caif_netlink_parms(): no params data found [ 1153.184684][T13945] Cannot find add_set index 0 as target [ 1153.314239][ T5774] Bluetooth: hci3: command tx timeout [ 1154.207300][ T64] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1154.233989][T13948] vcan0 speed is unknown, defaulting to 1000 [ 1154.234005][T13949] lo speed is unknown, defaulting to 1000 [ 1154.246020][T13949] lo speed is unknown, defaulting to 1000 [ 1154.252592][T13949] lo speed is unknown, defaulting to 1000 [ 1154.401599][T13948] lo speed is unknown, defaulting to 1000 [ 1154.469501][T13949] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 1154.508970][T13955] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2638'. [ 1154.789166][T13949] lo speed is unknown, defaulting to 1000 [ 1154.851136][ T64] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1154.867950][T13949] lo speed is unknown, defaulting to 1000 [ 1155.003158][T13949] lo speed is unknown, defaulting to 1000 [ 1155.507144][ T5774] Bluetooth: hci3: command tx timeout [ 1155.932050][ T64] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1155.959313][T13949] lo speed is unknown, defaulting to 1000 [ 1156.023968][T13949] lo speed is unknown, defaulting to 1000 [ 1156.060941][T13909] bridge0: port 1(bridge_slave_0) entered blocking state [ 1156.071496][T13909] bridge0: port 1(bridge_slave_0) entered disabled state [ 1156.084858][T13909] bridge_slave_0: entered allmulticast mode [ 1156.092746][T13909] bridge_slave_0: entered promiscuous mode [ 1156.260201][ T64] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1156.310379][T13949] lo speed is unknown, defaulting to 1000 [ 1156.327444][T13909] bridge0: port 2(bridge_slave_1) entered blocking state [ 1156.368314][T13909] bridge0: port 2(bridge_slave_1) entered disabled state [ 1156.554712][T13909] bridge_slave_1: entered allmulticast mode [ 1156.680629][T13909] bridge_slave_1: entered promiscuous mode [ 1157.068812][ T28] kauditd_printk_skb: 142 callbacks suppressed [ 1157.068852][ T28] audit: type=1326 audit(1768218457.469:2514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13978 comm="syz.4.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72d978f749 code=0x7ffc0000 [ 1157.128693][ T28] audit: type=1326 audit(1768218457.487:2515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13978 comm="syz.4.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72d978f749 code=0x7ffc0000 [ 1157.157147][ T28] audit: type=1326 audit(1768218457.506:2516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13978 comm="syz.4.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72d978f749 code=0x7ffc0000 [ 1157.185677][ T28] audit: type=1326 audit(1768218457.506:2517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13978 comm="syz.4.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72d978f749 code=0x7ffc0000 [ 1157.214465][ T28] audit: type=1326 audit(1768218457.506:2518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13978 comm="syz.4.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72d978f749 code=0x7ffc0000 [ 1157.246558][ T28] audit: type=1326 audit(1768218457.506:2519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13978 comm="syz.4.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72d978f749 code=0x7ffc0000 [ 1157.363592][ T28] audit: type=1326 audit(1768218457.506:2520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13978 comm="syz.4.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72d978f749 code=0x7ffc0000 [ 1157.410494][ T28] audit: type=1326 audit(1768218457.506:2521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13978 comm="syz.4.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72d978f749 code=0x7ffc0000 [ 1157.434204][T13981] Cannot find add_set index 0 as target [ 1157.445748][T13909] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1157.467654][T13909] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1157.485039][ T28] audit: type=1326 audit(1768218457.506:2522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13978 comm="syz.4.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72d978f749 code=0x7ffc0000 [ 1157.560180][ T28] audit: type=1326 audit(1768218457.506:2523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13978 comm="syz.4.2645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7f72d978f749 code=0x7ffc0000 [ 1157.652409][T13979] xt_hashlimit: size too large, truncated to 1048576 [ 1157.732061][ T5774] Bluetooth: hci3: command tx timeout [ 1157.793190][T13909] team0: Port device team_slave_0 added [ 1157.840172][T13909] team0: Port device team_slave_1 added [ 1158.092070][T13909] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1158.099327][T13909] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1158.167343][T13909] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1158.218754][T13909] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1158.253392][T13909] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1158.349177][T13909] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1158.478419][T13989] vcan0 speed is unknown, defaulting to 1000 [ 1158.719608][T13909] hsr_slave_0: entered promiscuous mode [ 1158.748344][T13909] hsr_slave_1: entered promiscuous mode [ 1159.339754][T13989] lo speed is unknown, defaulting to 1000 [ 1159.446337][T13989] lo speed is unknown, defaulting to 1000 [ 1159.907173][T13909] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 1159.922683][T13909] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 1159.943548][T13909] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 1159.955553][ T5774] Bluetooth: hci3: command tx timeout [ 1160.036629][T13909] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 1160.417926][T14001] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2649'. [ 1161.335038][T13909] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1161.343673][T14003] loop2: detected capacity change from 0 to 2048 [ 1161.389357][T14003] EXT4-fs (loop2): failed to initialize system zone (-117) [ 1161.420632][T14003] EXT4-fs (loop2): mount failed [ 1161.506654][T13909] 8021q: adding VLAN 0 to HW filter on device team0 [ 1161.550937][ T2958] bridge0: port 1(bridge_slave_0) entered blocking state [ 1161.558130][ T2958] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1161.579816][ T2958] bridge0: port 2(bridge_slave_1) entered blocking state [ 1161.587079][ T2958] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1161.731654][ T64] hsr_slave_0: left promiscuous mode [ 1161.744833][ T64] hsr_slave_1: left promiscuous mode [ 1161.762762][ T64] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1161.770367][ T64] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1161.782143][ T64] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1161.793015][ T64] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1161.808650][ T64] bridge_slave_1: left allmulticast mode [ 1161.814457][ T64] bridge_slave_1: left promiscuous mode [ 1161.822650][ T64] bridge0: port 2(bridge_slave_1) entered disabled state [ 1161.845619][ T64] bridge_slave_0: left allmulticast mode [ 1161.853811][ T64] bridge_slave_0: left promiscuous mode [ 1161.873152][ T64] bridge0: port 1(bridge_slave_0) entered disabled state [ 1161.941424][ T64] veth1_macvtap: left promiscuous mode [ 1161.949361][ T64] veth0_macvtap: left promiscuous mode [ 1161.959157][ T64] veth1_vlan: left promiscuous mode [ 1161.964815][ T64] veth0_vlan: left promiscuous mode [ 1163.065248][ T64] team0 (unregistering): Port device team_slave_0 removed [ 1163.139324][ T64] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1163.209945][ T64] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1163.884337][T14011] loop4: detected capacity change from 0 to 512 [ 1163.980207][T14011] EXT4-fs warning (device loop4): ext4_xattr_inode_get:560: inode #11: comm syz.4.2652: EA inode hash validation failed [ 1164.007044][T14011] EXT4-fs error (device loop4): ext4_do_update_inode:5248: inode #15: comm syz.4.2652: corrupted inode contents [ 1164.024117][T14011] EXT4-fs error (device loop4): ext4_dirty_inode:6124: inode #15: comm syz.4.2652: mark_inode_dirty error [ 1164.049668][T14011] EXT4-fs error (device loop4): ext4_do_update_inode:5248: inode #15: comm syz.4.2652: corrupted inode contents [ 1164.063500][T14011] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2997: inode #15: comm syz.4.2652: mark_inode_dirty error [ 1164.083095][T14011] EXT4-fs error (device loop4): ext4_xattr_delete_inode:3000: inode #15: comm syz.4.2652: mark inode dirty (error -117) [ 1164.105845][T14011] EXT4-fs warning (device loop4): ext4_evict_inode:272: xattr delete (err -117) [ 1164.131387][T14011] EXT4-fs (loop4): 1 orphan inode deleted [ 1164.141147][T14011] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1164.191407][T13153] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1164.266694][ T64] bond0 (unregistering): Released all slaves [ 1164.380631][T14007] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2651'. [ 1164.812720][T14027] loop4: detected capacity change from 0 to 2048 [ 1164.855983][ T28] kauditd_printk_skb: 147 callbacks suppressed [ 1164.856000][ T28] audit: type=1326 audit(1768218464.745:2671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14029 comm="syz.2.2659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49f8f8f749 code=0x7ffc0000 [ 1164.892210][T14027] EXT4-fs (loop4): failed to initialize system zone (-117) [ 1164.902319][T14027] EXT4-fs (loop4): mount failed [ 1164.918977][ T28] audit: type=1326 audit(1768218464.745:2672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14029 comm="syz.2.2659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49f8f8f749 code=0x7ffc0000 [ 1164.955924][ T28] audit: type=1326 audit(1768218464.745:2673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14029 comm="syz.2.2659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49f8f8f749 code=0x7ffc0000 [ 1164.992175][ T28] audit: type=1326 audit(1768218464.745:2674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14029 comm="syz.2.2659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49f8f8f749 code=0x7ffc0000 [ 1165.016492][ T28] audit: type=1326 audit(1768218464.745:2675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14029 comm="syz.2.2659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f49f8f8f749 code=0x7ffc0000 [ 1165.050792][ T28] audit: type=1326 audit(1768218464.745:2676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14029 comm="syz.2.2659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49f8f8f749 code=0x7ffc0000 [ 1165.176408][ T28] audit: type=1326 audit(1768218464.745:2677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14029 comm="syz.2.2659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49f8f8f749 code=0x7ffc0000 [ 1165.208159][T13909] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1165.222635][ T28] audit: type=1326 audit(1768218464.745:2678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14029 comm="syz.2.2659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49f8f8f749 code=0x7ffc0000 [ 1165.269633][ T28] audit: type=1326 audit(1768218464.745:2679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14029 comm="syz.2.2659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7f49f8f8f749 code=0x7ffc0000 [ 1165.312069][ T28] audit: type=1326 audit(1768218464.745:2680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14029 comm="syz.2.2659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49f8f8f749 code=0x7ffc0000 [ 1165.348296][T14043] Invalid argument reading file caps for ./file0 [ 1165.361795][T14030] xt_hashlimit: size too large, truncated to 1048576 [ 1165.972998][T14062] netlink: 'syz.5.2667': attribute type 4 has an invalid length. [ 1166.091945][T13909] veth0_vlan: entered promiscuous mode [ 1166.141324][T13909] veth1_vlan: entered promiscuous mode [ 1166.230805][T13909] veth0_macvtap: entered promiscuous mode [ 1166.255721][T13909] veth1_macvtap: entered promiscuous mode [ 1166.294191][T13909] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1166.304875][T13909] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1166.314960][T13909] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1166.325760][T13909] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1166.335699][T13909] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1166.346350][T13909] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1166.374574][T13909] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1166.417385][T13909] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1166.472958][T13909] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1166.542403][T13909] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1166.553138][T13909] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1166.562997][T13909] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1166.573767][T13909] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1166.587540][T13909] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1166.979728][T14071] netlink: 36 bytes leftover after parsing attributes in process `syz.5.2670'. [ 1167.417933][T13909] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1167.455137][T13909] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1167.465354][T13909] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1167.476170][T13909] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1167.701224][ T9946] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1167.722309][ T9946] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1167.772227][ T32] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1167.814127][ T32] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1168.141479][T14088] syzkaller0: entered promiscuous mode [ 1168.167861][T14088] syzkaller0: entered allmulticast mode [ 1168.175496][T14090] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2678'. [ 1168.185189][T14090] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2678'. [ 1168.667146][ T23] usb 7-1: new full-speed USB device number 2 using dummy_hcd [ 1168.926576][ T23] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0x9 has an invalid bInterval 0, changing to 4 [ 1168.957942][ T23] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid maxpacket 15380, setting to 1023 [ 1168.970258][ T23] usb 7-1: config 0 interface 0 has no altsetting 0 [ 1169.005087][ T23] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 1169.015591][ T23] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 1169.037665][ T23] usb 7-1: Product: syz [ 1169.041912][ T23] usb 7-1: Manufacturer: syz [ 1169.059627][ T23] usb 7-1: SerialNumber: syz [ 1169.080191][ T23] usb 7-1: config 0 descriptor?? [ 1169.091074][ T23] usb 7-1: selecting invalid altsetting 0 [ 1172.204215][ T23] usb 7-1: USB disconnect, device number 2 [ 1173.718926][T14116] process '/newroot/6/file0' started with executable stack [ 1174.138786][T14090] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2678'. [ 1174.154792][T14090] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2678'. [ 1174.311397][ T28] kauditd_printk_skb: 197 callbacks suppressed [ 1174.311413][ T28] audit: type=1326 audit(1768218473.592:2878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14124 comm="syz.5.2690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1174.366586][ T28] audit: type=1326 audit(1768218473.592:2879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14124 comm="syz.5.2690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1174.395461][ T28] audit: type=1326 audit(1768218473.620:2880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14124 comm="syz.5.2690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1174.427524][ T28] audit: type=1326 audit(1768218473.620:2881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14124 comm="syz.5.2690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1174.453197][ T28] audit: type=1326 audit(1768218473.620:2882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14124 comm="syz.5.2690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1174.508986][ T28] audit: type=1326 audit(1768218473.620:2883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14124 comm="syz.5.2690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1174.575323][ T28] audit: type=1326 audit(1768218473.620:2884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14124 comm="syz.5.2690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1174.764861][ T28] audit: type=1326 audit(1768218473.620:2885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14124 comm="syz.5.2690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1174.842889][ T28] audit: type=1326 audit(1768218473.620:2886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14124 comm="syz.5.2690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1174.931205][ T28] audit: type=1326 audit(1768218473.620:2887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14124 comm="syz.5.2690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1175.039391][T14126] –: renamed from vxcan1 (while UP) [ 1175.125679][T14130] siw: device registration error -23 [ 1175.515736][ T23] usb 3-1: new full-speed USB device number 15 using dummy_hcd [ 1175.768570][ T23] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x9 has an invalid bInterval 0, changing to 4 [ 1175.779819][ T23] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid maxpacket 15380, setting to 1023 [ 1175.791353][ T23] usb 3-1: config 0 interface 0 has no altsetting 0 [ 1175.838017][ T23] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 1175.847283][ T23] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 1175.855801][ T23] usb 3-1: Product: syz [ 1175.860099][ T23] usb 3-1: Manufacturer: syz [ 1175.864830][ T23] usb 3-1: SerialNumber: syz [ 1175.891124][ T23] usb 3-1: config 0 descriptor?? [ 1175.949359][ T23] usb 3-1: selecting invalid altsetting 0 [ 1176.453759][T11921] usb 3-1: USB disconnect, device number 15 [ 1176.883388][T14152] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2700'. [ 1177.343688][T14157] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2702'. [ 1177.534706][T14161] siw: device registration error -23 [ 1178.159261][T14174] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2709'. [ 1178.625115][ T27] usb 3-1: new full-speed USB device number 16 using dummy_hcd [ 1178.892343][ T27] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x9 has an invalid bInterval 0, changing to 4 [ 1178.967336][ T27] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid maxpacket 15380, setting to 1023 [ 1179.046456][ T27] usb 3-1: config 0 interface 0 has no altsetting 0 [ 1179.089678][ T27] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 1179.107533][ T27] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 1179.148359][ T27] usb 3-1: Product: syz [ 1179.180776][ T27] usb 3-1: Manufacturer: syz [ 1179.185503][ T27] usb 3-1: SerialNumber: syz [ 1179.214079][ T27] usb 3-1: config 0 descriptor?? [ 1179.239005][ T27] usb 3-1: selecting invalid altsetting 0 [ 1179.678133][T11921] usb 3-1: USB disconnect, device number 16 [ 1180.064658][T14195] loop6: detected capacity change from 0 to 2048 [ 1180.165587][T14195] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1180.356320][T14202] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2720'. [ 1180.389890][T14202] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2720'. [ 1180.437836][T14195] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 1180.471862][T14202] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2720'. [ 1180.509114][T14202] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2720'. [ 1180.519778][T14195] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 30 with max blocks 1 with error 28 [ 1180.754321][T14195] EXT4-fs (loop6): This should not happen!! Data will be lost [ 1180.754321][T14195] [ 1180.819511][T14195] EXT4-fs (loop6): Total free blocks count 0 [ 1180.861875][T14195] EXT4-fs (loop6): Free/Dirty block details [ 1180.867838][T14195] EXT4-fs (loop6): free_blocks=2415919104 [ 1181.005562][T14195] EXT4-fs (loop6): dirty_blocks=32 [ 1181.014570][T14195] EXT4-fs (loop6): Block reservation details [ 1181.041592][T14195] EXT4-fs (loop6): i_reserved_data_blocks=2 [ 1181.178607][ T12] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 1182.378575][T14227] netlink: 'syz.6.2729': attribute type 7 has an invalid length. [ 1182.662691][T14229] xt_AUDIT: Audit type out of range (valid range: 0..2) [ 1182.764110][ T28] kauditd_printk_skb: 115 callbacks suppressed [ 1182.764126][ T28] audit: type=1326 audit(1768218481.504:3003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14228 comm="syz.5.2730" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe962b8f749 code=0x0 [ 1182.889611][T14234] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2730'. [ 1182.966948][T14235] ipt_ECN: cannot use operation on non-tcp rule [ 1183.769920][T14234] hsr_slave_1 (unregistering): left promiscuous mode [ 1183.848453][T14241] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2734'. [ 1184.522259][ T28] audit: type=1326 audit(1768218483.140:3004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14248 comm="syz.6.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1184.677158][ T28] audit: type=1326 audit(1768218483.140:3005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14248 comm="syz.6.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1184.721661][T14249] loop6: detected capacity change from 0 to 1024 [ 1184.729106][T14249] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1184.863675][T14249] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1185.052942][ T28] audit: type=1326 audit(1768218483.150:3006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14248 comm="syz.6.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1185.922008][T14249] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e015c01c, mo2=0002] [ 1185.986877][ T28] audit: type=1326 audit(1768218483.150:3007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14248 comm="syz.6.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1185.998109][T14249] System zones: 0-1, 3-36 [ 1186.128337][T14249] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1186.146525][ T28] audit: type=1326 audit(1768218483.159:3008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14248 comm="syz.6.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1186.271070][T14259] netlink: 'syz.5.2740': attribute type 7 has an invalid length. [ 1186.345148][ T28] audit: type=1326 audit(1768218483.168:3009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14248 comm="syz.6.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1186.559027][ T28] audit: type=1326 audit(1768218483.168:3010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14248 comm="syz.6.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1186.699549][T13909] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1186.720807][ T28] audit: type=1326 audit(1768218483.178:3011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14248 comm="syz.6.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1186.756168][T14268] netlink: 256 bytes leftover after parsing attributes in process `syz.4.2743'. [ 1186.808797][ T28] audit: type=1326 audit(1768218483.178:3012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14248 comm="syz.6.2737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1188.456846][T14289] netlink: 'syz.4.2752': attribute type 7 has an invalid length. [ 1188.609403][ T28] kauditd_printk_skb: 74 callbacks suppressed [ 1188.609420][ T28] audit: type=1326 audit(1768218486.965:3087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14291 comm="syz.5.2754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1188.708838][T14293] siw: device registration error -23 [ 1188.755961][ T28] audit: type=1326 audit(1768218487.003:3088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14291 comm="syz.5.2754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1188.908832][ T28] audit: type=1326 audit(1768218487.031:3089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14291 comm="syz.5.2754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1189.061106][ T28] audit: type=1326 audit(1768218487.031:3090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14291 comm="syz.5.2754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1189.167608][ T28] audit: type=1326 audit(1768218487.031:3091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14291 comm="syz.5.2754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1189.242958][T14301] IPv6: NLM_F_CREATE should be specified when creating new route [ 1189.284013][ T28] audit: type=1326 audit(1768218487.040:3092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14291 comm="syz.5.2754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1189.429691][ T28] audit: type=1326 audit(1768218487.040:3093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14291 comm="syz.5.2754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1189.771701][ T28] audit: type=1326 audit(1768218487.040:3094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14291 comm="syz.5.2754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1190.282695][ T28] audit: type=1326 audit(1768218487.059:3095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14291 comm="syz.5.2754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1190.654258][ T28] audit: type=1326 audit(1768218487.059:3096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14291 comm="syz.5.2754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1191.358803][T14330] netlink: 'syz.5.2769': attribute type 13 has an invalid length. [ 1192.865698][T14349] Cannot find add_set index 0 as target [ 1192.913620][T14347] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2777'. [ 1193.977379][T14330] bridge0: port 2(bridge_slave_1) entered disabled state [ 1193.984800][T14330] bridge0: port 1(bridge_slave_0) entered disabled state [ 1194.077603][T14361] loop4: detected capacity change from 0 to 512 [ 1194.236791][T14361] EXT4-fs (loop4): 1 truncate cleaned up [ 1194.280505][T14361] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1194.334397][T14330] infiniband syz1: set down [ 1194.748562][T14361] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.2783: bg 0: block 465: padding at end of block bitmap is not set [ 1194.890736][T14361] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 712 with error 117 [ 1195.134040][T14361] EXT4-fs (loop4): This should not happen!! Data will be lost [ 1195.134040][T14361] [ 1196.332547][T14378] Cannot find add_set index 0 as target [ 1196.746806][ T28] kauditd_printk_skb: 16 callbacks suppressed [ 1196.746818][ T28] audit: type=1326 audit(1768218494.568:3113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14379 comm="syz.6.2789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1196.920487][ T28] audit: type=1326 audit(1768218494.568:3114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14379 comm="syz.6.2789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1197.011382][ T28] audit: type=1326 audit(1768218494.568:3115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14379 comm="syz.6.2789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1197.168025][ T28] audit: type=1326 audit(1768218494.606:3116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14379 comm="syz.6.2789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1197.305394][ T28] audit: type=1326 audit(1768218494.606:3117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14379 comm="syz.6.2789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1197.400008][ T28] audit: type=1326 audit(1768218494.606:3118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14379 comm="syz.6.2789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1197.520240][ T28] audit: type=1326 audit(1768218494.643:3119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14379 comm="syz.6.2789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1197.711538][ T28] audit: type=1326 audit(1768218494.643:3120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14379 comm="syz.6.2789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1197.839808][ T28] audit: type=1326 audit(1768218494.643:3121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14379 comm="syz.6.2789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1197.979105][ T28] audit: type=1326 audit(1768218494.643:3122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14379 comm="syz.6.2789" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1199.430485][T14330] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1199.765507][T14330] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1199.909894][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 1199.916421][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 1201.607647][T14330] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1201.616661][T14330] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1201.625763][T14330] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1201.635835][T14330] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1201.905272][T14330] netdevsim netdevsim5 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 1201.914284][T14330] netdevsim netdevsim5 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 1201.923208][T14330] netdevsim netdevsim5 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 1201.932215][T14330] netdevsim netdevsim5 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 1202.182979][ T9812] vcan0 speed is unknown, defaulting to 1000 [ 1202.183000][T14365] netlink: 'syz.2.2785': attribute type 7 has an invalid length. [ 1202.210987][T14368] netlink: 'syz.4.2783': attribute type 1 has an invalid length. [ 1202.223066][T14368] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR [ 1202.244588][T14399] all: renamed from bridge_slave_0 (while UP) [ 1202.330768][T11926] vcan0 speed is unknown, defaulting to 1000 [ 1202.355744][T13153] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1202.570390][ T28] kauditd_printk_skb: 77 callbacks suppressed [ 1202.570404][ T28] audit: type=1326 audit(1768218500.021:3200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14407 comm="syz.6.2798" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd723f8f749 code=0x0 [ 1202.795536][T14413] Cannot find add_set index 0 as target [ 1203.320988][T14424] netlink: 'syz.4.2804': attribute type 7 has an invalid length. [ 1203.659254][T14431] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2807'. [ 1203.677350][T14434] Cannot find add_set index 0 as target [ 1203.922577][ T28] audit: type=1326 audit(1768218501.283:3201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14437 comm="syz.6.2811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1204.031055][ T28] audit: type=1326 audit(1768218501.321:3202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14437 comm="syz.6.2811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1204.114271][ T28] audit: type=1326 audit(1768218501.321:3203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14437 comm="syz.6.2811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1204.232116][ T28] audit: type=1326 audit(1768218501.321:3204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14437 comm="syz.6.2811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1205.207129][ T28] audit: type=1326 audit(1768218501.321:3205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14437 comm="syz.6.2811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1205.278485][T14446] syz.4.2812 (14446) used greatest stack depth: 16592 bytes left [ 1205.356851][ T28] audit: type=1326 audit(1768218501.321:3206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14437 comm="syz.6.2811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1205.442970][ T28] audit: type=1326 audit(1768218501.321:3207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14437 comm="syz.6.2811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1205.641555][ T28] audit: type=1326 audit(1768218501.321:3208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14437 comm="syz.6.2811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1205.675008][ T28] audit: type=1326 audit(1768218501.321:3209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14437 comm="syz.6.2811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7fd723f8f749 code=0x7ffc0000 [ 1206.346416][T14459] netlink: 'syz.5.2815': attribute type 7 has an invalid length. [ 1206.693637][T14464] Cannot find add_set index 0 as target [ 1206.922172][T14470] 9pnet_fd: Insufficient options for proto=fd [ 1207.510227][T14478] loop6: detected capacity change from 0 to 1024 [ 1207.551252][T14478] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 1208.429272][T14478] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=8801e019, mo2=0000] [ 1208.632675][T14478] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #3: block 2: comm syz.6.2825: lblock 2 mapped to illegal pblock 2 (length 1) [ 1208.712898][T14478] __quota_error: 81 callbacks suppressed [ 1208.712918][T14478] Quota error (device loop6): qtree_write_dquot: dquota write failed [ 1208.772123][T14478] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #3: block 48: comm syz.6.2825: lblock 0 mapped to illegal pblock 48 (length 1) [ 1208.872379][T14478] Quota error (device loop6): v2_write_file_info: Can't write info structure [ 1208.943222][T14478] EXT4-fs error (device loop6): ext4_acquire_dquot:6949: comm syz.6.2825: Failed to acquire dquot type 0 [ 1208.998123][T14478] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5920: Corrupt filesystem [ 1209.056741][T14478] EXT4-fs error (device loop6): ext4_evict_inode:252: inode #11: comm syz.6.2825: mark_inode_dirty error [ 1209.111491][T14478] EXT4-fs warning (device loop6): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 1209.183663][T14478] EXT4-fs (loop6): 1 orphan inode deleted [ 1209.200660][ T7294] EXT4-fs error (device loop6): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:13: lblock 1 mapped to illegal pblock 1 (length 1) [ 1209.239538][T14478] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1209.274149][ T7294] Quota error (device loop6): remove_tree: Can't read quota data block 1 [ 1209.329902][ T7294] EXT4-fs error (device loop6): ext4_release_dquot:6985: comm kworker/u4:13: Failed to release dquot type 0 [ 1209.540991][T13909] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1209.623800][T13909] EXT4-fs error (device loop6): __ext4_get_inode_loc:4489: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 1209.671325][T13909] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5920: Corrupt filesystem [ 1209.708107][T13909] EXT4-fs error (device loop6): ext4_quota_off:7233: inode #3: comm syz-executor: mark_inode_dirty error [ 1211.586487][ T28] audit: type=1326 audit(1768218508.456:3291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14534 comm="syz.5.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1211.641154][ T28] audit: type=1326 audit(1768218508.475:3292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14534 comm="syz.5.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1211.670962][ T28] audit: type=1326 audit(1768218508.484:3293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14534 comm="syz.5.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1211.709970][ T28] audit: type=1326 audit(1768218508.503:3294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14534 comm="syz.5.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1211.759642][ T28] audit: type=1326 audit(1768218508.503:3295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14534 comm="syz.5.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1211.782549][ T28] audit: type=1326 audit(1768218508.503:3296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14534 comm="syz.5.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1211.955382][ T28] audit: type=1326 audit(1768218508.512:3297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14534 comm="syz.5.2847" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe962b8f749 code=0x7ffc0000 [ 1212.362002][T14547] syz.2.2853[14547] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1212.362140][T14547] syz.2.2853[14547] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1212.645076][T14554] netlink: 300 bytes leftover after parsing attributes in process `syz.4.2856'. [ 1212.878406][T14559] loop6: detected capacity change from 0 to 1024 [ 1212.896640][T14559] EXT4-fs: inline encryption not supported [ 1212.902563][T14559] EXT4-fs: Ignoring removed mblk_io_submit option [ 1212.940237][T14559] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 1213.069569][T14559] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1213.373213][T14572] tipc: Started in network mode [ 1213.400941][T14572] tipc: Node identity ac14140f, cluster identity 4711 [ 1213.436751][T14572] tipc: New replicast peer: 255.255.255.255 [ 1213.474330][T13909] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1213.506177][T14572] tipc: Enabled bearer , priority 10 [ 1213.513925][T14573] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2862'. [ 1213.527747][T14573] tipc: Disabling bearer [ 1214.385863][T14595] netlink: 70 bytes leftover after parsing attributes in process `syz.2.2871'. [ 1214.409802][T14595] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2871'. [ 1214.611984][T14604] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2876'. [ 1214.638497][T14604] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2876'. [ 1214.694986][T14607] loop2: detected capacity change from 0 to 512 [ 1214.711828][T14607] [ 1214.714230][T14607] ====================================================== [ 1214.721285][T14607] WARNING: possible circular locking dependency detected [ 1214.728359][T14607] syzkaller #0 Not tainted [ 1214.732828][T14607] ------------------------------------------------------ [ 1214.739883][T14607] syz.2.2878/14607 is trying to acquire lock: [ 1214.746080][T14607] ffff888079f0cbd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x170/0x2f0 [ 1214.756196][T14607] [ 1214.756196][T14607] but task is already holding lock: [ 1214.763587][T14607] ffff88804a151ec8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0 [ 1214.773509][T14607] [ 1214.773509][T14607] which lock already depends on the new lock. [ 1214.773509][T14607] [ 1214.783948][T14607] [ 1214.783948][T14607] the existing dependency chain (in reverse order) is: [ 1214.793007][T14607] [ 1214.793007][T14607] -> #1 (&ei->xattr_sem){++++}-{3:3}: [ 1214.800629][T14607] down_write+0x97/0x1f0 [ 1214.805530][T14607] ext4_destroy_inline_data+0x28/0xe0 [ 1214.811490][T14607] ext4_do_writepages+0x4c2/0x38d0 [ 1214.817181][T14607] ext4_writepages+0x1a8/0x2f0 [ 1214.822522][T14607] do_writepages+0x3a2/0x600 [ 1214.827689][T14607] filemap_fdatawrite_wbc+0x122/0x180 [ 1214.833637][T14607] file_write_and_wait_range+0x171/0x240 [ 1214.839852][T14607] generic_buffers_fsync_noflush+0x6f/0x160 [ 1214.846336][T14607] ext4_sync_file+0x454/0xc10 [ 1214.851582][T14607] ext4_buffered_write_iter+0x2c0/0x350 [ 1214.857698][T14607] ext4_file_write_iter+0x1d9/0x1870 [ 1214.863553][T14607] vfs_write+0x43b/0x940 [ 1214.868375][T14607] __x64_sys_pwrite64+0x195/0x220 [ 1214.873979][T14607] do_syscall_64+0x55/0xb0 [ 1214.878990][T14607] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1214.885525][T14607] [ 1214.885525][T14607] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}: [ 1214.894107][T14607] __lock_acquire+0x2ddb/0x7c80 [ 1214.899537][T14607] lock_acquire+0x197/0x410 [ 1214.904620][T14607] percpu_down_read+0x44/0x1a0 [ 1214.909961][T14607] ext4_writepages+0x170/0x2f0 [ 1214.915315][T14607] do_writepages+0x3a2/0x600 [ 1214.920495][T14607] __writeback_single_inode+0x153/0xee0 [ 1214.926614][T14607] writeback_single_inode+0x211/0x720 [ 1214.932555][T14607] write_inode_now+0x161/0x1e0 [ 1214.937896][T14607] iput+0x5b2/0x920 [ 1214.942700][T14607] ext4_xattr_block_set+0x273a/0x32a0 [ 1214.948664][T14607] ext4_expand_extra_isize_ea+0x12d0/0x1e90 [ 1214.955130][T14607] __ext4_expand_extra_isize+0x306/0x400 [ 1214.961345][T14607] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 1214.967375][T14607] ext4_evict_inode+0x7ed/0xea0 [ 1214.972802][T14607] evict+0x486/0x870 [ 1214.977290][T14607] ext4_orphan_cleanup+0xbd4/0x1400 [ 1214.983110][T14607] ext4_fill_super+0x5e29/0x66f0 [ 1214.988614][T14607] get_tree_bdev+0x3e4/0x510 [ 1214.993764][T14607] vfs_get_tree+0x8c/0x280 [ 1214.998847][T14607] do_new_mount+0x24b/0xa40 [ 1215.003905][T14607] __se_sys_mount+0x2da/0x3c0 [ 1215.009141][T14607] do_syscall_64+0x55/0xb0 [ 1215.014112][T14607] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1215.020576][T14607] [ 1215.020576][T14607] other info that might help us debug this: [ 1215.020576][T14607] [ 1215.030837][T14607] Possible unsafe locking scenario: [ 1215.030837][T14607] [ 1215.038325][T14607] CPU0 CPU1 [ 1215.043732][T14607] ---- ---- [ 1215.049137][T14607] lock(&ei->xattr_sem); [ 1215.053508][T14607] lock(&sbi->s_writepages_rwsem); [ 1215.061269][T14607] lock(&ei->xattr_sem); [ 1215.068162][T14607] rlock(&sbi->s_writepages_rwsem); [ 1215.073501][T14607] [ 1215.073501][T14607] *** DEADLOCK *** [ 1215.073501][T14607] [ 1215.081681][T14607] 3 locks held by syz.2.2878/14607: [ 1215.086913][T14607] #0: ffff888079f0e0e0 (&type->s_umount_key#32){++++}-{3:3}, at: get_tree_bdev+0x344/0x510 [ 1215.097085][T14607] #1: ffff888079f0e608 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2b9/0xea0 [ 1215.106656][T14607] #2: ffff88804a151ec8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0 [ 1215.117095][T14607] [ 1215.117095][T14607] stack backtrace: [ 1215.123031][T14607] CPU: 0 PID: 14607 Comm: syz.2.2878 Not tainted syzkaller #0 [ 1215.130540][T14607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1215.140664][T14607] Call Trace: [ 1215.144074][T14607] [ 1215.147037][T14607] dump_stack_lvl+0x16c/0x230 [ 1215.151785][T14607] ? load_image+0x3b0/0x3b0 [ 1215.156374][T14607] ? show_regs_print_info+0x20/0x20 [ 1215.161637][T14607] ? print_circular_bug+0x12b/0x1a0 [ 1215.166900][T14607] check_noncircular+0x2bd/0x3c0 [ 1215.171881][T14607] ? look_up_lock_class+0x75/0x140 [ 1215.177054][T14607] ? print_deadlock_bug+0x5d0/0x5d0 [ 1215.182297][T14607] ? lockdep_lock+0xe0/0x220 [ 1215.186938][T14607] ? _find_first_zero_bit+0xd3/0x100 [ 1215.192299][T14607] __lock_acquire+0x2ddb/0x7c80 [ 1215.197209][T14607] ? mark_lock+0x94/0x320 [ 1215.201599][T14607] ? verify_lock_unused+0x140/0x140 [ 1215.206847][T14607] ? __lock_acquire+0x1334/0x7c80 [ 1215.211919][T14607] ? verify_lock_unused+0x140/0x140 [ 1215.217173][T14607] lock_acquire+0x197/0x410 [ 1215.221731][T14607] ? ext4_writepages+0x170/0x2f0 [ 1215.226743][T14607] ? __might_sleep+0xe0/0xe0 [ 1215.231380][T14607] ? mark_lock+0x94/0x320 [ 1215.235757][T14607] ? read_lock_is_recursive+0x20/0x20 [ 1215.241191][T14607] ? __lock_acquire+0x1334/0x7c80 [ 1215.246315][T14607] percpu_down_read+0x44/0x1a0 [ 1215.251134][T14607] ? ext4_writepages+0x170/0x2f0 [ 1215.256129][T14607] ext4_writepages+0x170/0x2f0 [ 1215.260945][T14607] ? ext4_read_folio+0x2f0/0x2f0 [ 1215.265934][T14607] ? __rwlock_init+0x150/0x150 [ 1215.270752][T14607] ? _raw_spin_unlock_irqrestore+0x86/0x110 [ 1215.276688][T14607] ? do_raw_spin_unlock+0x121/0x230 [ 1215.281943][T14607] ? ext4_read_folio+0x2f0/0x2f0 [ 1215.287060][T14607] do_writepages+0x3a2/0x600 [ 1215.291709][T14607] ? folio_clear_dirty_for_io+0xc30/0xc30 [ 1215.297488][T14607] ? writeback_single_inode+0x206/0x720 [ 1215.303169][T14607] ? __lock_acquire+0x7c80/0x7c80 [ 1215.308233][T14607] ? do_raw_spin_lock+0x121/0x2c0 [ 1215.313307][T14607] ? get_tree_bdev+0x3e4/0x510 [ 1215.318374][T14607] __writeback_single_inode+0x153/0xee0 [ 1215.323980][T14607] writeback_single_inode+0x211/0x720 [ 1215.329404][T14607] ? write_inode_now+0x1e0/0x1e0 [ 1215.334403][T14607] write_inode_now+0x161/0x1e0 [ 1215.339211][T14607] ? bdi_split_work_to_wbs+0x890/0x890 [ 1215.344740][T14607] ? do_raw_spin_unlock+0x121/0x230 [ 1215.349992][T14607] iput+0x5b2/0x920 [ 1215.353900][T14607] ext4_xattr_block_set+0x273a/0x32a0 [ 1215.359333][T14607] ? __might_sleep+0xe0/0xe0 [ 1215.364085][T14607] ? ext4_xattr_block_find+0x350/0x350 [ 1215.369601][T14607] ? ext4_xattr_block_find+0x2d4/0x350 [ 1215.375116][T14607] ext4_expand_extra_isize_ea+0x12d0/0x1e90 [ 1215.381067][T14607] __ext4_expand_extra_isize+0x306/0x400 [ 1215.386732][T14607] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 1215.392261][T14607] ext4_evict_inode+0x7ed/0xea0 [ 1215.397140][T14607] ? _raw_spin_unlock+0x28/0x40 [ 1215.402008][T14607] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 1215.407935][T14607] ? do_raw_spin_unlock+0x121/0x230 [ 1215.413325][T14607] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 1215.419263][T14607] evict+0x486/0x870 [ 1215.423170][T14607] ? __lock_acquire+0x7c80/0x7c80 [ 1215.428207][T14607] ? proc_nr_inodes+0x230/0x230 [ 1215.433084][T14607] ? do_raw_spin_unlock+0x121/0x230 [ 1215.438339][T14607] ? _raw_spin_unlock+0x28/0x40 [ 1215.443244][T14607] ? iput+0x70a/0x920 [ 1215.447244][T14607] ext4_orphan_cleanup+0xbd4/0x1400 [ 1215.452495][T14607] ? ext4_orphan_del+0xba0/0xba0 [ 1215.457519][T14607] ? ext4_register_li_request+0x183/0x940 [ 1215.463279][T14607] ? errseq_check_and_advance+0x66/0x120 [ 1215.468934][T14607] ext4_fill_super+0x5e29/0x66f0 [ 1215.473909][T14607] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 1215.480210][T14607] ? __might_sleep+0xe0/0xe0 [ 1215.484821][T14607] ? read_lock_is_recursive+0x20/0x20 [ 1215.490203][T14607] ? snprintf+0xdb/0x120 [ 1215.494499][T14607] ? vscnprintf+0x80/0x80 [ 1215.498956][T14607] ? down_read_killable+0x340/0x340 [ 1215.504195][T14607] ? setup_bdev_super+0x56b/0x660 [ 1215.509275][T14607] get_tree_bdev+0x3e4/0x510 [ 1215.513914][T14607] ? vfs_parse_fs_string+0x160/0x160 [ 1215.519232][T14607] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 1215.525594][T14607] ? setup_bdev_super+0x660/0x660 [ 1215.530679][T14607] ? apparmor_capable+0x137/0x1a0 [ 1215.535728][T14607] ? bpf_lsm_capable+0x9/0x10 [ 1215.540419][T14607] ? security_capable+0x89/0xb0 [ 1215.545284][T14607] vfs_get_tree+0x8c/0x280 [ 1215.549729][T14607] do_new_mount+0x24b/0xa40 [ 1215.554271][T14607] __se_sys_mount+0x2da/0x3c0 [ 1215.558990][T14607] ? __x64_sys_mount+0xc0/0xc0 [ 1215.563795][T14607] ? lockdep_hardirqs_on+0x98/0x150 [ 1215.569035][T14607] ? __x64_sys_mount+0x20/0xc0 [ 1215.573830][T14607] do_syscall_64+0x55/0xb0 [ 1215.578260][T14607] ? clear_bhb_loop+0x40/0x90 [ 1215.582956][T14607] ? clear_bhb_loop+0x40/0x90 [ 1215.587679][T14607] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1215.593643][T14607] RIP: 0033:0x7f49f8f90eea [ 1215.598086][T14607] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1215.617703][T14607] RSP: 002b:00007f49f9d67e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1215.626131][T14607] RAX: ffffffffffffffda RBX: 00007f49f9d67ef0 RCX: 00007f49f8f90eea [ 1215.634126][T14607] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f49f9d67eb0 [ 1215.642120][T14607] RBP: 0000200000000180 R08: 00007f49f9d67ef0 R09: 0000000000800700 [ 1215.650118][T14607] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 1215.658099][T14607] R13: 00007f49f9d67eb0 R14: 000000000000046f R15: 000000000000002c [ 1215.666107][T14607] [ 1215.672780][T14607] ------------[ cut here ]------------ [ 1215.678525][T14607] EA inode 11 i_nlink=2 [ 1215.679240][T14607] WARNING: CPU: 0 PID: 14607 at fs/ext4/xattr.c:1058 ext4_xattr_inode_update_ref+0x4fb/0x550 [ 1215.693717][T14607] Modules linked in: [ 1215.697688][T14607] CPU: 0 PID: 14607 Comm: syz.2.2878 Not tainted syzkaller #0 [ 1215.705185][T14607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1215.715297][T14607] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550 [ 1215.721932][T14607] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 f6 20 9a ff 49 8b 37 48 c7 c7 60 c7 be 8a 89 da e8 c5 12 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 0f 0c 25 08 [ 1215.741605][T14607] RSP: 0018:ffffc9000c1cf1a0 EFLAGS: 00010246 [ 1215.747775][T14607] RAX: 8600f98865424200 RBX: 0000000000000002 RCX: 0000000000080000 [ 1215.755794][T14607] RDX: ffffc9000d19a000 RSI: 000000000007ffff RDI: 0000000000080000 [ 1215.763824][T14607] RBP: ffffc9000c1cf290 R08: ffffc9000c1ceda7 R09: 1ffff92001839db4 [ 1215.772018][T14607] R10: dffffc0000000000 R11: fffff52001839db5 R12: dffffc0000000000 [ 1215.780047][T14607] R13: ffff88802e5e40a8 R14: ffff88802e5e3eb0 R15: ffff88802e5e3f00 [ 1215.788256][T14607] FS: 00007f49f9d686c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 1215.797273][T14607] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1215.803951][T14607] CR2: 000000000000881e CR3: 0000000067e28000 CR4: 00000000003506f0 [ 1215.811978][T14607] Call Trace: [ 1215.815332][T14607] [ 1215.818298][T14607] ? _raw_spin_unlock+0x28/0x40 [ 1215.823195][T14607] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 1215.828894][T14607] ? ext4_xattr_inode_iget+0x3df/0x600 [ 1215.834390][T14607] ? __might_sleep+0xe0/0xe0 [ 1215.839059][T14607] ext4_xattr_set_entry+0xcda/0x1e90 [ 1215.844430][T14607] ext4_xattr_ibody_set+0x254/0x6a0 [ 1215.849683][T14607] ext4_expand_extra_isize_ea+0x13a3/0x1e90 [ 1215.855653][T14607] __ext4_expand_extra_isize+0x306/0x400 [ 1215.861351][T14607] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 1215.866859][T14607] ext4_evict_inode+0x7ed/0xea0 [ 1215.871760][T14607] ? _raw_spin_unlock+0x28/0x40 [ 1215.876649][T14607] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 1215.882604][T14607] ? do_raw_spin_unlock+0x121/0x230 [ 1215.887838][T14607] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 1215.893893][T14607] evict+0x486/0x870 [ 1215.897995][T14607] ? __lock_acquire+0x7c80/0x7c80 [ 1215.903174][T14607] ? proc_nr_inodes+0x230/0x230 [ 1215.908077][T14607] ? do_raw_spin_unlock+0x121/0x230 [ 1215.913371][T14607] ? _raw_spin_unlock+0x28/0x40 [ 1215.918295][T14607] ? iput+0x70a/0x920 [ 1215.922338][T14607] ext4_orphan_cleanup+0xbd4/0x1400 [ 1215.927603][T14607] ? ext4_orphan_del+0xba0/0xba0 [ 1215.932698][T14607] ? ext4_register_li_request+0x183/0x940 [ 1215.938478][T14607] ? errseq_check_and_advance+0x66/0x120 [ 1215.944208][T14607] ext4_fill_super+0x5e29/0x66f0 [ 1215.949221][T14607] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 1215.955541][T14607] ? __might_sleep+0xe0/0xe0 [ 1215.960149][T14607] ? read_lock_is_recursive+0x20/0x20 [ 1215.965575][T14607] ? snprintf+0xdb/0x120 [ 1215.969862][T14607] ? vscnprintf+0x80/0x80 [ 1215.974233][T14607] ? down_read_killable+0x340/0x340 [ 1215.979474][T14607] ? setup_bdev_super+0x56b/0x660 [ 1215.984512][T14607] get_tree_bdev+0x3e4/0x510 [ 1215.989468][T14607] ? vfs_parse_fs_string+0x160/0x160 [ 1215.994793][T14607] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 1216.001267][T14607] ? setup_bdev_super+0x660/0x660 [ 1216.006315][T14607] ? apparmor_capable+0x137/0x1a0 [ 1216.011378][T14607] ? bpf_lsm_capable+0x9/0x10 [ 1216.016078][T14607] ? security_capable+0x89/0xb0 [ 1216.021019][T14607] vfs_get_tree+0x8c/0x280 [ 1216.025450][T14607] do_new_mount+0x24b/0xa40 [ 1216.030010][T14607] __se_sys_mount+0x2da/0x3c0 [ 1216.034735][T14607] ? __x64_sys_mount+0xc0/0xc0 [ 1216.039586][T14607] ? lockdep_hardirqs_on+0x98/0x150 [ 1216.044823][T14607] ? __x64_sys_mount+0x20/0xc0 [ 1216.049664][T14607] do_syscall_64+0x55/0xb0 [ 1216.054110][T14607] ? clear_bhb_loop+0x40/0x90 [ 1216.058799][T14607] ? clear_bhb_loop+0x40/0x90 [ 1216.063519][T14607] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1216.069444][T14607] RIP: 0033:0x7f49f8f90eea [ 1216.073910][T14607] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1216.093610][T14607] RSP: 002b:00007f49f9d67e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1216.102087][T14607] RAX: ffffffffffffffda RBX: 00007f49f9d67ef0 RCX: 00007f49f8f90eea [ 1216.110238][T14607] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f49f9d67eb0 [ 1216.118305][T14607] RBP: 0000200000000180 R08: 00007f49f9d67ef0 R09: 0000000000800700 [ 1216.126379][T14607] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 1216.134519][T14607] R13: 00007f49f9d67eb0 R14: 000000000000046f R15: 000000000000002c [ 1216.142616][T14607] [ 1216.145722][T14607] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1216.153032][T14607] CPU: 0 PID: 14607 Comm: syz.2.2878 Not tainted syzkaller #0 [ 1216.160512][T14607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1216.170636][T14607] Call Trace: [ 1216.173929][T14607] [ 1216.176867][T14607] dump_stack_lvl+0x16c/0x230 [ 1216.181580][T14607] ? show_regs_print_info+0x20/0x20 [ 1216.186817][T14607] ? load_image+0x3b0/0x3b0 [ 1216.191516][T14607] panic+0x2c0/0x710 [ 1216.195451][T14607] ? bpf_jit_dump+0xd0/0xd0 [ 1216.200088][T14607] __warn+0x2e0/0x470 [ 1216.204162][T14607] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 1216.210191][T14607] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 1216.216223][T14607] report_bug+0x2be/0x4f0 [ 1216.220728][T14607] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 1216.226748][T14607] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 1216.232747][T14607] ? ext4_xattr_inode_update_ref+0x4fd/0x550 [ 1216.238772][T14607] handle_bug+0xcf/0x120 [ 1216.243049][T14607] exc_invalid_op+0x1a/0x50 [ 1216.247598][T14607] asm_exc_invalid_op+0x1a/0x20 [ 1216.252482][T14607] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550 [ 1216.259212][T14607] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 f6 20 9a ff 49 8b 37 48 c7 c7 60 c7 be 8a 89 da e8 c5 12 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 0f 0c 25 08 [ 1216.278851][T14607] RSP: 0018:ffffc9000c1cf1a0 EFLAGS: 00010246 [ 1216.284987][T14607] RAX: 8600f98865424200 RBX: 0000000000000002 RCX: 0000000000080000 [ 1216.292981][T14607] RDX: ffffc9000d19a000 RSI: 000000000007ffff RDI: 0000000000080000 [ 1216.300990][T14607] RBP: ffffc9000c1cf290 R08: ffffc9000c1ceda7 R09: 1ffff92001839db4 [ 1216.308999][T14607] R10: dffffc0000000000 R11: fffff52001839db5 R12: dffffc0000000000 [ 1216.317012][T14607] R13: ffff88802e5e40a8 R14: ffff88802e5e3eb0 R15: ffff88802e5e3f00 [ 1216.325030][T14607] ? _raw_spin_unlock+0x28/0x40 [ 1216.329939][T14607] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 1216.335613][T14607] ? ext4_xattr_inode_iget+0x3df/0x600 [ 1216.341102][T14607] ? __might_sleep+0xe0/0xe0 [ 1216.345727][T14607] ext4_xattr_set_entry+0xcda/0x1e90 [ 1216.351052][T14607] ext4_xattr_ibody_set+0x254/0x6a0 [ 1216.356280][T14607] ext4_expand_extra_isize_ea+0x13a3/0x1e90 [ 1216.362223][T14607] __ext4_expand_extra_isize+0x306/0x400 [ 1216.367897][T14607] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 1216.373405][T14607] ext4_evict_inode+0x7ed/0xea0 [ 1216.378292][T14607] ? _raw_spin_unlock+0x28/0x40 [ 1216.383176][T14607] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 1216.389100][T14607] ? do_raw_spin_unlock+0x121/0x230 [ 1216.394328][T14607] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 1216.400247][T14607] evict+0x486/0x870 [ 1216.404166][T14607] ? __lock_acquire+0x7c80/0x7c80 [ 1216.409228][T14607] ? proc_nr_inodes+0x230/0x230 [ 1216.414103][T14607] ? do_raw_spin_unlock+0x121/0x230 [ 1216.419333][T14607] ? _raw_spin_unlock+0x28/0x40 [ 1216.424210][T14607] ? iput+0x70a/0x920 [ 1216.428215][T14607] ext4_orphan_cleanup+0xbd4/0x1400 [ 1216.433455][T14607] ? ext4_orphan_del+0xba0/0xba0 [ 1216.438457][T14607] ? ext4_register_li_request+0x183/0x940 [ 1216.444215][T14607] ? errseq_check_and_advance+0x66/0x120 [ 1216.449880][T14607] ext4_fill_super+0x5e29/0x66f0 [ 1216.454856][T14607] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 1216.461120][T14607] ? __might_sleep+0xe0/0xe0 [ 1216.465731][T14607] ? read_lock_is_recursive+0x20/0x20 [ 1216.471125][T14607] ? snprintf+0xdb/0x120 [ 1216.475402][T14607] ? vscnprintf+0x80/0x80 [ 1216.479759][T14607] ? down_read_killable+0x340/0x340 [ 1216.485070][T14607] ? setup_bdev_super+0x56b/0x660 [ 1216.490124][T14607] get_tree_bdev+0x3e4/0x510 [ 1216.494746][T14607] ? vfs_parse_fs_string+0x160/0x160 [ 1216.500059][T14607] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 1216.506342][T14607] ? setup_bdev_super+0x660/0x660 [ 1216.511400][T14607] ? apparmor_capable+0x137/0x1a0 [ 1216.516446][T14607] ? bpf_lsm_capable+0x9/0x10 [ 1216.521151][T14607] ? security_capable+0x89/0xb0 [ 1216.526033][T14607] vfs_get_tree+0x8c/0x280 [ 1216.530478][T14607] do_new_mount+0x24b/0xa40 [ 1216.535009][T14607] __se_sys_mount+0x2da/0x3c0 [ 1216.539712][T14607] ? __x64_sys_mount+0xc0/0xc0 [ 1216.544517][T14607] ? lockdep_hardirqs_on+0x98/0x150 [ 1216.549797][T14607] ? __x64_sys_mount+0x20/0xc0 [ 1216.554589][T14607] do_syscall_64+0x55/0xb0 [ 1216.559051][T14607] ? clear_bhb_loop+0x40/0x90 [ 1216.563752][T14607] ? clear_bhb_loop+0x40/0x90 [ 1216.568463][T14607] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1216.574399][T14607] RIP: 0033:0x7f49f8f90eea [ 1216.578838][T14607] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1216.598559][T14607] RSP: 002b:00007f49f9d67e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1216.606998][T14607] RAX: ffffffffffffffda RBX: 00007f49f9d67ef0 RCX: 00007f49f8f90eea [ 1216.615004][T14607] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f49f9d67eb0 [ 1216.623005][T14607] RBP: 0000200000000180 R08: 00007f49f9d67ef0 R09: 0000000000800700 [ 1216.631001][T14607] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 1216.638998][T14607] R13: 00007f49f9d67eb0 R14: 000000000000046f R15: 000000000000002c [ 1216.646998][T14607] [ 1216.650603][T14607] Kernel Offset: disabled [ 1216.654949][T14607] Rebooting in 86400 seconds..