last executing test programs: 3.64612844s ago: executing program 1 (id=6543): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000580)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94) r1 = syz_usb_connect(0x3, 0x1c, 0x0, 0x0) syz_usb_control_io(r1, &(0x7f0000000900)={0x2c, &(0x7f0000000280)={0x40, 0x21, 0x84, {0x84, 0xc, "3bcdba4c0bec28101724095ff0ec48a7bf0493f2e82a19c764490f05d57e1d194eeec03c21bfe927458492171cd3b818143e4e05276fd92ee7258d001f5a0bb081d22b9af37f4fdd9471ce2957b96b30b430959642e9135f557696c46133ef858c4e9d804175cd6be0e012eeb5a1c5524e66ec8f3cc7081e575d0f3e567551702510"}}, &(0x7f0000000640)={0x0, 0x3, 0x89, @string={0x89, 0x3, "a9dd6820b6d6bb68e23a80e3137040a97e121e33c17b26ba7f1b60e219c555a6e0fd656d10d1bf50fc26949f2020fb244291310fe9f218ee62b10e580bbc9a0bb6e33b7488756d05bf6639c4a39a83bc3c02c79d43035873d5869a3b8ae335ce6a007a513a4311e0c986736b9666a6594991890167dcf9074ae3a048f25bab4c4874476519cc58"}}, &(0x7f0000000700)={0x0, 0xf, 0x5, {0x5, 0xf, 0x5}}, &(0x7f0000000380)={0x20, 0x29, 0xf, {0xf, 0x29, 0x6, 0x18, 0x2, 0x6, 'raK7', "582275cf"}}, &(0x7f0000000580)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x5, 0x2, 0xb, 0x8, 0xb, 0x9}}}, &(0x7f0000000d80)={0x84, 0x0, 0x0, &(0x7f0000000a00)={0x0, 0x8, 0x1, 0x8}, &(0x7f0000000a40)={0x20, 0x0, 0x4, {0x2, 0x1}}, &(0x7f0000000a80)={0x20, 0x0, 0x8, {0x160, 0x9, [0xf000]}}, &(0x7f0000000ac0)={0x40, 0x7, 0x2, 0x10}, &(0x7f0000000b00)={0x40, 0x9, 0x1, 0x4}, &(0x7f0000000b40)={0x40, 0xb, 0x2, "fc50"}, &(0x7f0000000b80)={0x40, 0xf, 0x2, 0xc2}, &(0x7f0000000bc0)={0x40, 0x13, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, &(0x7f0000000c00)={0x40, 0x17, 0x6, @link_local}, &(0x7f0000000c40)={0x40, 0x19, 0x2, "b688"}, &(0x7f0000000c80)={0x40, 0x1a, 0x2, 0x7}, &(0x7f0000000cc0)={0x40, 0x1c, 0x1, 0x7}, &(0x7f0000000d00)={0x40, 0x1e, 0x1, 0xa}, &(0x7f0000000d40)={0x40, 0x21, 0x1, 0x3}}) r2 = socket(0x1d, 0x2, 0x6) r3 = bpf$MAP_CREATE(0x0, 0x0, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x37e2f4aba9289b81, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vxcan0\x00', 0x0}) bind$can_j1939(r2, &(0x7f0000000100)={0x1d, r4, 0x2, {0x3}}, 0x18) socket$inet_udp(0x2, 0x2, 0x0) r5 = dup(0xffffffffffffffff) timerfd_gettime(r5, 0x0) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r5, 0x6, 0x16, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) sendmsg$ETHTOOL_MSG_LINKINFO_SET(r2, &(0x7f0000000f00)={&(0x7f0000000e40)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000ec0)={&(0x7f0000000e80)={0x2c, 0x0, 0x300, 0x70bd29, 0x25dfdbff, {}, [@ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0x2c}, @ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0xb9}, @ETHTOOL_A_LINKINFO_PORT={0x5, 0x2, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24040088}, 0x40) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r6 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r6, &(0x7f0000000080)={0x0, 0x12, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="380000000314010029bd7000ffdbdf250900020073797a310000000008004100736977001400330076657468305f746f5f627269646765002f5654b7bf64541498ec9df007ebbc379bd150c6d65fd280302023cc42e6f0"], 0x38}, 0x1, 0x0, 0x0, 0x8081}, 0x20000010) syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), r2) sendmsg$NFT_MSG_GETOBJ(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x100}, 0x1, 0x0, 0x0, 0xc4}, 0x20004009) openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r0}, 0x18) 3.517641483s ago: executing program 0 (id=6546): bpf$MAP_CREATE(0x0, 0x0, 0x50) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000007c0)={0x54, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x11}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'hash:ip,mac\x00'}]}, 0x54}}, 0x84000) 2.510108362s ago: executing program 1 (id=6548): r0 = syz_io_uring_setup(0x3544, &(0x7f0000000680)={0x0, 0xdab1, 0x8, 0x1000, 0x372}, &(0x7f0000000300)=0x0, &(0x7f0000000100)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0xc, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x81800, 0x1}) io_uring_enter(r0, 0x749f, 0x4, 0x0, 0x0, 0xfffffffffffffef5) 1.876070975s ago: executing program 1 (id=6555): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0) madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17) 1.762658576s ago: executing program 2 (id=6556): r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x89a0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x200) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000100)={0x0, 0x2, 0x6}, 0x10) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r0, 0x8008f513, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000340)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e6400"], 0x3c}}, 0x0) r3 = socket(0x10, 0x803, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', 0x0}) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000f00)='kfree\x00', r6}, 0x18) sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newtfilter={0x138, 0x2c, 0xd2b, 0x70bd2b, 0x35dfdbfb, {0x0, 0x0, 0x0, r5, {0xf, 0x3}, {}, {0xfff1, 0xfff2}}, [@filter_kind_options=@f_u32={{0x8}, {0x10c, 0x2, [@TCA_U32_SEL={0xf4, 0x5, {0x10, 0x9, 0xe, 0x10da, 0xa760, 0x0, 0x10, 0xfc, [{0xffff8001, 0xf073, 0x4010000, 0x8000}, {0x40, 0x80000001, 0xfffffffe, 0xffffffff}, {0x2, 0x9, 0x2}, {0x2008, 0x80000000, 0x1e0a}, {0xffffffff, 0x9, 0x800, 0x100}, {0x5e3, 0x4, 0x8e, 0x3}, {0x2, 0xffffffff, 0x5, 0x1ad}, {0x3ff, 0xb, 0x3, 0xa6d}, {0x1, 0x5, 0x5127, 0x800}, {0x6, 0x1, 0x2, 0x1}, {0x40, 0x40, 0x3, 0x5}, {0x2, 0x8, 0x6, 0x201}, {0x5, 0x406, 0x2, 0xfffffeff}, {0x94b0, 0x81, 0x80000001, 0xfffffffc}]}}, @TCA_U32_INDEV={0x14, 0x8, 'gre0\x00'}]}}]}, 0x138}, 0x1, 0x0, 0x0, 0x48001}, 0x4000) 1.535391189s ago: executing program 2 (id=6557): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x18, 0x5, &(0x7f0000000080)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x2f, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='freezer.self_freezing\x00', 0x275a, 0x0) r2 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x82) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r2, 0x0) ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x20020009, 0x0, &(0x7f0000000240)={0x20, 0x0, 0xfffc, 0x360, 0x7}, 0x1a, 0x7, 0x60000000, 0x0, 0x4, 0x101, 0x0}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0) close(r2) 1.3146212s ago: executing program 0 (id=6560): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000001d40)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f00000018c0), r2) sendmsg$IPVS_CMD_NEW_DAEMON(r2, &(0x7f0000001ac0)={0x0, 0xfeff, &(0x7f0000001a80)={&(0x7f00000004c0)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002abd7000ffdbdf25090000006400038008000100010000000800030004000000140002007665744e315f6d616376746170000000060004000200000008000500e0000000140002006970766c616e31"], 0x78}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) 1.310208531s ago: executing program 2 (id=6561): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) 1.190405822s ago: executing program 1 (id=6562): openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000200), 0x42082) r0 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x804000, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}}) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1) mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000080)='configfs\x00', 0x1000810, 0x0) 1.189988573s ago: executing program 3 (id=6563): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000008c0)=ANY=[@ANYBLOB="54000000000801010000ffffe00000000a000000050003002f0000000600024000000000240004800800024000000000080001400000fcff07000140800000010800014080000001090001"], 0x54}, 0x1, 0x0, 0x0, 0x4004}, 0x28040000) 1.181217773s ago: executing program 2 (id=6565): r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r2, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=@newqdisc={0x3c, 0x24, 0xe0b, 0xfefffffc, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x9}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_WASH={0x8, 0xd, 0x1}]}}]}, 0x3c}}, 0x0) sendto$packet(r0, &(0x7f00000002c0)="44c394f305916c4516999da286dd", 0xe, 0x0, &(0x7f0000000340)={0x11, 0x1a, r2, 0x1, 0x0, 0x6, @random="fb76f11b713b"}, 0x14) 1.109738671s ago: executing program 1 (id=6566): r0 = syz_io_uring_setup(0x3544, &(0x7f0000000680)={0x0, 0xdab1, 0x8, 0x1000, 0x372}, &(0x7f0000000300)=0x0, &(0x7f0000000100)=0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000000c0)={0x1, &(0x7f0000000200)=[{0x4030, 0x4, 0x0, 0x2}]}, 0x10) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0xc, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x81800, 0x1}) io_uring_enter(r0, 0x749f, 0x4, 0x0, 0x0, 0xfffffffffffffef5) 1.058580676s ago: executing program 0 (id=6567): socket$nl_route(0x10, 0x3, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x8, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000440)='kfree\x00', r1, 0x0, 0x5}, 0x18) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_io_uring_setup(0x4b5, 0x0, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f0000000800)={[{@acl}, {@block_validity}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x6}}, {}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@resuid}, {@nodelalloc}, {@acl}, {@noinit_itable}]}, 0xfc, 0x587, &(0x7f0000000f80)="$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") renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, &(0x7f0000000140)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) r3 = socket$kcm(0x10, 0x2, 0x0) r4 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10) socket$inet6(0xa, 0x800000000000002, 0x0) sendmsg$kcm(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000001900)="2e00000011008188040900000000000000a1810031000000000f000000048002002d1f00000000000000e2000000", 0x2e}], 0x1}, 0x20000000) socket$tipc(0x1e, 0x2, 0x0) socket$tipc(0x1e, 0x5, 0x0) 1.058289716s ago: executing program 3 (id=6568): getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x84, &(0x7f00000003c0)={0x0, @in6={{0xa, 0x4e24, 0x7fffffef, @private2, 0x3fd}}, 0x7, 0x400}, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x8c, 0x200) unshare(0x6020400) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f00000003c0)={0x20, 0x0, 0x0}) 967.244664ms ago: executing program 2 (id=6569): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @multicast2}, 0x10) connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @loopback}, 0x10) sendmmsg$inet(r0, &(0x7f0000006040)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f00000003c0)="0f", 0x1}], 0x1}}], 0x1, 0x608d850) close_range(r0, 0xffffffffffffffff, 0x0) 883.455923ms ago: executing program 1 (id=6570): bpf$MAP_CREATE(0x0, 0x0, 0x50) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000007c0)={0x54, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x11}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'hash:ip,mac\x00'}]}, 0x54}}, 0x84000) 522.773659ms ago: executing program 0 (id=6571): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x18, 0x5, &(0x7f0000000080)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x2f, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='freezer.self_freezing\x00', 0x275a, 0x0) r2 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x82) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r2, 0x0) ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x20020009, 0x0, &(0x7f0000000240)={0x20, 0x0, 0xfffc, 0x360, 0x7}, 0x1a, 0x7, 0x60000000, 0x0, 0x4, 0x101, 0x0}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0) close(r2) 522.476548ms ago: executing program 3 (id=6572): socket$inet(0x2, 0xa, 0x5) bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x50) bpf$MAP_CREATE(0x0, 0x0, 0x50) syz_emit_ethernet(0x6e, &(0x7f0000000400)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000086dd6000000200383a00fe8000000000000000000000000000bbfe8000000000000000000000000000aa08029078000000006000081000002f000000000000000200"/99], 0x0) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x4101030, 0xffffffffffffffff, 0x0) mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x0, 0x0, 0x0, 0x2) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x4000005) socket$nl_rdma(0x10, 0x3, 0x14) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) r2 = socket$inet_sctp(0x2, 0x5, 0x84) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffffb) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0) socket$netlink(0x10, 0x3, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000640)=ANY=[@ANYBLOB="840000000906110200000000000000000300000050000880100007800c0014800800014000000000100007800c00168008000140ac1414bb100007800c00194000000000000000040c0007800800094000000004100007800c00018008000140e00000010500010007000000180007000000abfae2ec0140ffffffff05000300030000007339a391f2ccd8f54add3447183f93af5acc9b62847af61823f3e03ec8e171b8df4b43d6ba2b8fb0f2e5727ae224b66ebc15db19bb1eafdd7bc548f31ec2b52ebe08004c5f99696cfdfd3b163c55019cc9d8c4d4dcccd5742c37ddfbbb77b1ec92efd3a7e725c703c5ba9f17addf9680c48db5960ae32e7a4e9020cd8e1556967f07b87d90c9cfbaee5494c7fe461eb0c8b290cdb3931e9c03b3b2b8abb2bbd8678e1af93f759394c89580d2a1f83f9faff653884dc5c552b3bdd40b4455f72b52997009c95642176638fc6ec7ab97d514750d47b6"], 0x84}, 0x1, 0x0, 0x0, 0xd24f4d5778665d46}, 0x4) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$ETHTOOL_MSG_WOL_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002abd7000000000001b0000000c00018008000100", @ANYRES32=r4, @ANYBLOB="a46033fb894f7f6cab72c72c5e431e1c96377ba5466750bd"], 0x20}}, 0x0) 442.742636ms ago: executing program 3 (id=6573): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18) getpriority(0x3, 0x0) 323.824818ms ago: executing program 0 (id=6574): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000005c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x45, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) r2 = socket$inet(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bond0\x00', 0x0}) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x94, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r3, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x64, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x5, 0x4, 0x22, 0x1, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x8, 0x2, 0x0, 0x1, [{0x4}]}]}}]}, 0x94}}, 0x0) 266.853134ms ago: executing program 3 (id=6575): sendmsg$key(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000240)='./file0\x00', 0x482, &(0x7f00000001c0)=ANY=[], 0x1, 0x1bf, &(0x7f0000000440)="$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") renameat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file0\x00', 0xffffffffffffff9c, &(0x7f0000001240)='./file1\x00', 0x2) 139.937746ms ago: executing program 0 (id=6576): bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff000075ea50eaeedcd08e9b5400bfa10000000010e88e35b127341bffffb702000000000000b7030000000000008500000072000000850000000f00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x561, &(0x7f0000000f80)="$eJzs3U1rG0cfAPD/ylbenycOhNCWUgw9NCWNHNt9SaGH9NyGBtp7KuyNCZajYMkhdgNNDs25hF5KA6X30nOPoV+gh36GQBsIJZj20IvLyivFL5ItJ7KtVL8frJnZXWl2NPsfz2gkFMDAGs3+FCJejoivk4jjEZHkx4YjPzi6et7yk1tT2ZbEysqnfyaN87J887majzuaZ16KiF++ijhT2FxubXFptlyppPN5fqw+d32strh09upceSadSa9NTE6ef2dy4v333u1ZXd+89Pe3nzwYynMn7iVxIY7lubX1eA6312ZGYzR/TYpxYcOJ4z0orJ8kbff+tOfXwc4M5XFejKwPOB5DedQD/31fRsQKMKCSHcf/b8XduRJgbzXHAc25fY/mwS+Mxx+uToA213949b2RONSYGx1ZTtbNjLL57kgPys/K+PmP+/eyLXr3PgTAtm7fiYhzw8Ob+78k7/+e3bkuztlYhv4P9s6DbPzzVrvxT6E1/ok245+jbWL3WWwf/4VHPSimo2z890Hb8W9r0WpkKM/9rzHmKyZXrlbSrG/7f0ScjuLBLL/Ves755YcrnY6tHf9lW1Z+cyyYX8ej4YPrHzNdrpefp85rPb4T8Urb8W/Sav+kTftnr8elLss4ld5/rdOx7eu/u1Z+iHijbfs/XdFKtl6fHGvcD2PNu2Kzv+6e+rVT+ftd/6z9j2xd/5Fk7XptbedlfH/onzRa68nrrat/dH//H0g+a6QP5Ptuluv1+fGIA8nHrf2F5v6Jp49t5pvnZ/U//frW/V+7+/9wRHzeZf3vnvzx1U7H+qH9p9u2f2t2u6H9d554+NEX33Uqv7v+7+1G6nS+p5v+r9sLfJ7XDgAAAAAAAPpNISKORVIotdKFQqm0+vmOk3GkUKnW6meuVBeuTUfju7IjUSw0V7qPr/k8xHi+YtjMT2zIT0bEiYj4ZuhwI1+aqlam97vyAAAAAAAAAAAAAAAAAAAA0CeOdvj+f+b3of2+OmDX+clvGFzbxn8vfukJ6Ev+/8PgEv8wuMQ/DC7xD4NL/MPgEv8wuMQ/DC7xDwAAAAAAAAAAAAAAAAAAAAAAAAAAAD116eLFbFtZfnJrKstP31hcmK3eODud1mZLcwtTpanq/PXSTLU6U0lLU9W57Z6vUq1eH5+IhZtj9bRWH6stLl2eqy5cq1++OleeSS+nxT2pFQAAAAAAAAAAAAAAAAAAALxYaotLs+VKJZ2XkHimxHB/XIZEjxP73TMBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwFP/BgAA//9q6zMB") setxattr$incfs_metadata(&(0x7f0000000240)='./file1\x00', &(0x7f0000000280), &(0x7f00000002c0)="30573472b621739991c336124406e8a5c812ca847e3bf9b837c91d46ab", 0x1d, 0x1) mount$cgroup(0x0, &(0x7f0000000080)='.\x00', 0x0, 0x2008000, 0x0) lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f0000000800)=ANY=[], 0x361, 0x0) lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000480)=ANY=[], 0xfe37, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) sendmsg$kcm(0xffffffffffffffff, 0x0, 0x40) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0) sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x8d0) bpf$MAP_CREATE(0x0, 0x0, 0x50) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) 86.499331ms ago: executing program 3 (id=6577): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r2, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=@newqdisc={0x3c, 0x24, 0xe0b, 0xfefffffc, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x9}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_WASH={0x8, 0xd, 0x1}]}}]}, 0x3c}}, 0x0) sendto$packet(0xffffffffffffffff, &(0x7f00000002c0)="44c394f305916c4516999da286dd", 0xe, 0x0, &(0x7f0000000340)={0x11, 0x1a, r2, 0x1, 0x0, 0x6, @random="fb76f11b713b"}, 0x14) 0s ago: executing program 2 (id=6578): r0 = syz_io_uring_setup(0x3544, &(0x7f0000000680)={0x0, 0xdab1, 0x8, 0x1000, 0x372}, &(0x7f0000000300)=0x0, &(0x7f0000000100)=0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000000c0)={0x1, &(0x7f0000000200)=[{0x4030, 0x4, 0x0, 0x2}]}, 0x10) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0xc, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x81800, 0x1}) io_uring_enter(r0, 0x749f, 0x4, 0x0, 0x0, 0xfffffffffffffef5) kernel console output (not intermixed with test programs): .3.5192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 697.463801][ T28] audit: type=1326 audit(1760478277.445:4474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19202 comm="syz.3.5192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 697.489356][ T28] audit: type=1326 audit(1760478277.455:4475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19202 comm="syz.3.5192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 697.521053][ T28] audit: type=1326 audit(1760478277.455:4476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19202 comm="syz.3.5192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 697.551266][ T28] audit: type=1326 audit(1760478277.455:4477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19202 comm="syz.3.5192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 697.595304][ T28] audit: type=1326 audit(1760478277.465:4478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19202 comm="syz.3.5192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 697.618172][ T28] audit: type=1326 audit(1760478277.465:4479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19202 comm="syz.3.5192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 697.665291][ T28] audit: type=1326 audit(1760478277.475:4480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19202 comm="syz.3.5192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 697.721837][ T28] audit: type=1326 audit(1760478277.475:4481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19202 comm="syz.3.5192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 697.841418][T19216] loop3: detected capacity change from 0 to 1024 [ 697.850483][T19216] EXT4-fs: Ignoring removed bh option [ 697.859917][T19216] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 697.893449][T19216] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 698.170058][T18436] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 698.298168][T19227] loop2: detected capacity change from 0 to 164 [ 698.333646][T19227] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 698.997521][T19257] loop3: detected capacity change from 0 to 164 [ 699.011097][T19257] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 699.118320][T19239] bridge0: port 2(bridge_slave_1) entered disabled state [ 699.126009][T19239] bridge0: port 1(bridge_slave_0) entered disabled state [ 699.237802][T19262] loop3: detected capacity change from 0 to 1024 [ 699.246561][T19262] EXT4-fs: Ignoring removed oldalloc option [ 699.252716][T19262] EXT4-fs: Ignoring removed bh option [ 699.259116][T19262] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 699.295917][T19262] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 699.416992][T18436] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 699.645677][T19273] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5220'. [ 700.014449][T19239] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 700.088279][T19239] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 700.098070][T19288] syz.3.5223[19288] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 700.098216][T19288] syz.3.5223[19288] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 700.174689][ T28] kauditd_printk_skb: 33 callbacks suppressed [ 700.174704][ T28] audit: type=1326 audit(1760478280.175:4515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19289 comm="syz.3.5223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe2e83c1785 code=0x7ffc0000 [ 700.248740][T19291] loop3: detected capacity change from 0 to 164 [ 700.260096][T19291] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 700.327661][ T28] audit: type=1326 audit(1760478280.325:4516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19289 comm="syz.3.5223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 700.716212][T19239] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 700.725526][T19239] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 700.736239][T19239] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 700.746564][T19239] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 700.869462][T19252] pim6reg: entered allmulticast mode [ 700.877217][T19254] pim6reg: left allmulticast mode [ 701.010290][T19299] netlink: 'syz.1.5228': attribute type 5 has an invalid length. [ 701.080081][ T28] audit: type=1326 audit(1760478281.075:4517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19304 comm="syz.3.5230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 701.116278][ T28] audit: type=1326 audit(1760478281.075:4518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19304 comm="syz.3.5230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 701.139068][ T28] audit: type=1326 audit(1760478281.105:4519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19304 comm="syz.3.5230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 701.181464][T19302] loop2: detected capacity change from 0 to 2048 [ 701.208042][ T28] audit: type=1326 audit(1760478281.105:4520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19304 comm="syz.3.5230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 701.240513][ T28] audit: type=1326 audit(1760478281.105:4521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19304 comm="syz.3.5230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 701.294158][ T28] audit: type=1326 audit(1760478281.105:4522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19304 comm="syz.3.5230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=36 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 701.330125][T19302] loop2: p2 p3 p7 [ 701.368386][ T28] audit: type=1326 audit(1760478281.105:4523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19304 comm="syz.3.5230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 701.453901][ T28] audit: type=1326 audit(1760478281.105:4524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19304 comm="syz.3.5230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 701.692575][T19319] netlink: 92 bytes leftover after parsing attributes in process `syz.2.5237'. [ 702.086359][T19330] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5242'. [ 702.104131][T19330] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5242'. [ 702.133423][T19330] netlink: 'syz.1.5242': attribute type 11 has an invalid length. [ 702.293747][T19334] loop2: detected capacity change from 0 to 2048 [ 702.362431][T19334] loop2: p2 p3 p7 [ 702.517838][T19341] loop2: detected capacity change from 0 to 1024 [ 702.527857][T19341] EXT4-fs: Ignoring removed bh option [ 702.534760][T19341] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 702.560701][T19341] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 702.605094][ T7883] usb 2-1: new full-speed USB device number 5 using dummy_hcd [ 702.629003][T19348] loop3: detected capacity change from 0 to 1024 [ 702.637296][T19348] EXT4-fs: inline encryption not supported [ 702.639327][T18615] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 702.674562][T19348] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 702.760417][T18436] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 702.778233][T19354] veth2: entered promiscuous mode [ 702.783497][T19354] veth2: entered allmulticast mode [ 702.819704][ T7883] usb 2-1: unable to read config index 0 descriptor/start: -71 [ 702.835182][ T7883] usb 2-1: can't read configurations, error -71 [ 702.869379][T19356] pim6reg: entered allmulticast mode [ 702.878116][T19356] pim6reg: left allmulticast mode [ 703.176581][T19370] loop3: detected capacity change from 0 to 512 [ 703.187402][T19370] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 703.200715][T19370] EXT4-fs (loop3): orphan cleanup on readonly fs [ 703.210946][T19370] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:512: comm syz.3.5259: Block bitmap for bg 0 marked uninitialized [ 703.233800][T19370] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 703.243709][T19370] EXT4-fs (loop3): 1 orphan inode deleted [ 703.253423][T19370] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 703.279822][T19370] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 703.292545][T19370] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 703.306449][ T5789] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 703.424371][T19377] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5263'. [ 703.449936][T18436] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 704.751368][T19430] pim6reg: entered allmulticast mode [ 704.761769][T19430] pim6reg: left allmulticast mode [ 705.228233][T19448] syz.2.5294[19448] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 705.228376][T19448] syz.2.5294[19448] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 705.698540][T19461] netlink: 'syz.0.5299': attribute type 1 has an invalid length. [ 705.727165][T19461] netlink: 'syz.0.5299': attribute type 2 has an invalid length. [ 705.765176][T19463] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5300'. [ 705.983278][ T28] kauditd_printk_skb: 55 callbacks suppressed [ 705.983295][ T28] audit: type=1326 audit(1760478285.975:4580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19470 comm="syz.2.5304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 706.047117][T19447] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 706.054181][ T28] audit: type=1326 audit(1760478285.975:4581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19470 comm="syz.2.5304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 706.089989][ T28] audit: type=1326 audit(1760478285.975:4582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19470 comm="syz.2.5304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 706.136072][ T28] audit: type=1326 audit(1760478285.975:4583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19470 comm="syz.2.5304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 706.161223][ T28] audit: type=1326 audit(1760478285.975:4584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19470 comm="syz.2.5304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 706.189007][ T28] audit: type=1326 audit(1760478285.975:4585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19470 comm="syz.2.5304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 706.261607][ T28] audit: type=1326 audit(1760478285.975:4586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19470 comm="syz.2.5304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 706.300843][ T28] audit: type=1326 audit(1760478285.975:4587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19470 comm="syz.2.5304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 706.324704][ T28] audit: type=1326 audit(1760478285.975:4588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19470 comm="syz.2.5304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 706.348427][ T28] audit: type=1326 audit(1760478285.975:4589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19470 comm="syz.2.5304" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 707.175525][T19484] netlink: 'syz.1.5309': attribute type 13 has an invalid length. [ 707.455727][T19496] loop2: detected capacity change from 0 to 512 [ 707.479145][T19496] ext4: Unknown parameter 'seclabel' [ 707.496451][T19498] loop3: detected capacity change from 0 to 164 [ 707.520081][T19498] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 707.553061][T19498] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 707.781250][T19507] loop3: detected capacity change from 0 to 512 [ 707.811631][T19507] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.5320: casefold flag without casefold feature [ 707.850142][T19507] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.5320: couldn't read orphan inode 15 (err -117) [ 707.877885][T19507] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 708.968686][T18436] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 709.092647][T19517] loop2: detected capacity change from 0 to 256 [ 709.122864][T19520] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5323'. [ 709.133285][T19520] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5323'. [ 710.469085][T19532] loop2: detected capacity change from 0 to 136 [ 710.492240][T19532] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5329'. [ 714.258499][T19584] netlink: 19 bytes leftover after parsing attributes in process `syz.3.5349'. [ 716.239469][T19500] warn_alloc: 3 callbacks suppressed [ 716.239489][T19500] syz.1.5317: vmalloc error: size 536870912, failed to allocated page array size 1048576, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 716.346519][T19500] CPU: 1 PID: 19500 Comm: syz.1.5317 Not tainted syzkaller #0 [ 716.354059][T19500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 716.364157][T19500] Call Trace: [ 716.367493][T19500] [ 716.370452][T19500] dump_stack_lvl+0x16c/0x230 [ 716.375176][T19500] ? show_regs_print_info+0x20/0x20 [ 716.380412][T19500] ? load_image+0x3b0/0x3b0 [ 716.384954][T19500] ? cpuset_print_current_mems_allowed+0x1f/0x360 [ 716.391410][T19500] ? cpuset_print_current_mems_allowed+0x2e3/0x360 [ 716.397949][T19500] warn_alloc+0x210/0x300 [ 716.402327][T19500] ? zone_watermark_ok_safe+0x230/0x230 [ 716.407925][T19500] ? _raw_spin_unlock+0x28/0x40 [ 716.412810][T19500] ? __kmem_cache_free+0xba/0x1f0 [ 716.417883][T19500] __vmalloc_node_range+0x662/0x1320 [ 716.423245][T19500] ? free_vm_area+0x50/0x50 [ 716.427790][T19500] ? kvmalloc_node+0x70/0x180 [ 716.432582][T19500] ? rcu_is_watching+0x15/0xb0 [ 716.437390][T19500] ? kvmalloc_node+0x70/0x180 [ 716.442101][T19500] ? trace_kmalloc+0x1f/0xa0 [ 716.446745][T19500] kvmalloc_node+0x13f/0x180 [ 716.451374][T19500] ? translate_table+0x19c/0x2020 [ 716.456433][T19500] translate_table+0x19c/0x2020 [ 716.461429][T19500] ? ip6t_register_table+0x7b0/0x7b0 [ 716.467015][T19500] ? __might_fault+0xaa/0x120 [ 716.471724][T19500] ? __lock_acquire+0x7c80/0x7c80 [ 716.476788][T19500] ? __virt_addr_valid+0x18c/0x540 [ 716.481973][T19500] ? __might_fault+0xaa/0x120 [ 716.486679][T19500] ? __might_fault+0xc6/0x120 [ 716.491379][T19500] ? __might_fault+0xaa/0x120 [ 716.496099][T19500] do_ip6t_set_ctl+0x969/0xcd0 [ 716.500924][T19500] ? ip6t_unregister_table_exit+0x230/0x230 [ 716.506868][T19500] ? __lock_acquire+0x7c80/0x7c80 [ 716.511936][T19500] ? rcu_is_watching+0x15/0xb0 [ 716.516755][T19500] ? trace_contention_end+0x39/0xe0 [ 716.522006][T19500] ? __mutex_unlock_slowpath+0x1a2/0x6a0 [ 716.527693][T19500] ? mutex_unlock+0x10/0x10 [ 716.532232][T19500] ? aa_sk_perm+0x7fc/0x930 [ 716.536792][T19500] ? aa_af_perm+0x2b0/0x2b0 [ 716.541341][T19500] ? __sys_connect+0xea/0x420 [ 716.546152][T19500] nf_setsockopt+0x263/0x280 [ 716.550776][T19500] ? sock_common_recvmsg+0x1b0/0x1b0 [ 716.556114][T19500] do_sock_setsockopt+0x175/0x1a0 [ 716.561200][T19500] ? __fdget+0x180/0x210 [ 716.565486][T19500] __x64_sys_setsockopt+0x184/0x200 [ 716.570754][T19500] do_syscall_64+0x55/0xb0 [ 716.575208][T19500] ? clear_bhb_loop+0x40/0x90 [ 716.580007][T19500] ? clear_bhb_loop+0x40/0x90 [ 716.584724][T19500] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 716.590672][T19500] RIP: 0033:0x7fde69f8eec9 [ 716.595126][T19500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 716.614766][T19500] RSP: 002b:00007fde6ada4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 716.623393][T19500] RAX: ffffffffffffffda RBX: 00007fde6a1e5fa0 RCX: 00007fde69f8eec9 [ 716.631398][T19500] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000003 [ 716.639401][T19500] RBP: 00007fde6a011f91 R08: 00000000000002f0 R09: 0000000000000000 [ 716.647410][T19500] R10: 0000200000000e40 R11: 0000000000000246 R12: 0000000000000000 [ 716.655409][T19500] R13: 00007fde6a1e6038 R14: 00007fde6a1e5fa0 R15: 00007ffee310b9a8 [ 716.663427][T19500] [ 716.749780][T19594] loop3: detected capacity change from 0 to 2048 [ 716.845691][T19597] loop2: detected capacity change from 0 to 164 [ 716.900338][T19597] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 716.912146][T19597] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 716.969931][T19500] Mem-Info: [ 716.973120][T19500] active_anon:26475 inactive_anon:0 isolated_anon:0 [ 716.973120][T19500] active_file:18063 inactive_file:40172 isolated_file:0 [ 716.973120][T19500] unevictable:768 dirty:150 writeback:0 [ 716.973120][T19500] slab_reclaimable:11461 slab_unreclaimable:105108 [ 716.973120][T19500] mapped:24096 shmem:20576 pagetables:453 [ 716.973120][T19500] sec_pagetables:0 bounce:0 [ 716.973120][T19500] kernel_misc_reclaimable:0 [ 716.973120][T19500] free:1286658 free_pcp:11855 free_cma:0 [ 717.012683][T19594] loop3: p2 p3 p7 [ 717.019575][T19500] Node 0 active_anon:105900kB inactive_anon:0kB active_file:72252kB inactive_file:160584kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:96384kB dirty:600kB writeback:0kB shmem:80768kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11324kB pagetables:1812kB sec_pagetables:0kB all_unreclaimable? no [ 717.077972][T19500] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 717.120454][T19500] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 717.150406][T19500] lowmem_reserve[]: 0 2525 2526 2526 2526 [ 717.156435][T19500] Node 0 DMA32 free:1236616kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:106052kB inactive_anon:0kB active_file:72252kB inactive_file:159152kB unevictable:1536kB writepending:600kB present:3129332kB managed:2589604kB mlocked:0kB bounce:0kB free_pcp:23672kB local_pcp:5696kB free_cma:0kB [ 717.198260][T19500] lowmem_reserve[]: 0 0 1 1 1 [ 717.206775][T19500] Node 0 Normal free:4kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1332kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 717.207768][T19601] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5356'. [ 717.244560][T19500] lowmem_reserve[]: 0 0 0 0 0 [ 717.267157][T19500] Node 1 Normal free:3894528kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:24124kB local_pcp:9808kB free_cma:0kB [ 717.300030][T19500] lowmem_reserve[]: 0 0 0 0 0 [ 717.305099][T19500] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 717.318249][T19500] Node 0 DMA32: 2*4kB (UE) 34*8kB (UME) 87*16kB (UME) 191*32kB (ME) 309*64kB (UME) 198*128kB (UME) 311*256kB (UM) 168*512kB (UM) 100*1024kB (UME) 33*2048kB (UME) 207*4096kB (UM) = 1236392kB [ 717.347621][T19500] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB [ 717.361780][T19500] Node 1 Normal: 250*4kB (UME) 43*8kB (UME) 36*16kB (UME) 90*32kB (UME) 21*64kB (UE) 6*128kB (UME) 2*256kB (ME) 2*512kB (UE) 1*1024kB (U) 1*2048kB (E) 948*4096kB (M) = 3894528kB [ 717.385646][T19500] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 717.403559][T19500] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 717.426146][T19603] pim6reg: entered allmulticast mode [ 717.447114][T19603] pim6reg: left allmulticast mode [ 717.487539][T19500] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 717.500321][T19500] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 717.537207][T19500] 80139 total pagecache pages [ 717.542095][T19500] 0 pages in swap cache [ 717.548197][T19500] Free swap = 124408kB [ 717.552525][T19500] Total swap = 124996kB [ 717.558053][T19500] 2097051 pages RAM [ 717.562019][T19500] 0 pages HighMem/MovableOnly [ 717.571320][T19500] 416136 pages reserved [ 717.577031][T19500] 0 pages cma reserved [ 718.859687][T19620] loop3: detected capacity change from 0 to 512 [ 718.988903][T19620] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 719.014187][T19620] ext4 filesystem being mounted at /109/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 719.118372][T18436] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 719.272730][T19632] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 719.281014][T19632] IPv6: NLM_F_CREATE should be set when creating new route [ 719.288423][T19632] IPv6: NLM_F_CREATE should be set when creating new route [ 719.321892][T19632] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 719.847675][T19655] loop3: detected capacity change from 0 to 136 [ 720.232961][T19655] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5377'. [ 720.963168][T19669] IPVS: set_ctl: invalid protocol: 46 100.1.1.2:20001 [ 721.154406][ T6306] IPVS: starting estimator thread 0... [ 721.179281][T19674] IPVS: fo: FWM 3 0x00000003 - no destination available [ 721.211855][T19680] netlink: 1 bytes leftover after parsing attributes in process `syz.0.5387'. [ 721.222773][T19680] xt_policy: neither incoming nor outgoing policy selected [ 721.257045][T19677] IPVS: using max 17 ests per chain, 40800 per kthread [ 721.516922][T19693] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5391'. [ 721.919517][T19708] netlink: 96 bytes leftover after parsing attributes in process `syz.1.5400'. [ 722.044179][ T28] kauditd_printk_skb: 39 callbacks suppressed [ 722.044194][ T28] audit: type=1326 audit(1760478302.035:4629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19715 comm="syz.3.5407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 722.116440][ T28] audit: type=1326 audit(1760478302.075:4630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19715 comm="syz.3.5407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 722.159630][ T28] audit: type=1326 audit(1760478302.085:4631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19715 comm="syz.3.5407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 722.200286][ T28] audit: type=1326 audit(1760478302.085:4632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19715 comm="syz.3.5407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 722.225479][ T28] audit: type=1326 audit(1760478302.085:4633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19715 comm="syz.3.5407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 722.248296][ T28] audit: type=1326 audit(1760478302.085:4634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19715 comm="syz.3.5407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 722.301844][ T28] audit: type=1326 audit(1760478302.085:4635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19715 comm="syz.3.5407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 722.325954][ T28] audit: type=1326 audit(1760478302.085:4636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19715 comm="syz.3.5407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 722.349867][ T28] audit: type=1326 audit(1760478302.085:4637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19715 comm="syz.3.5407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 722.383112][ T28] audit: type=1326 audit(1760478302.085:4638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19715 comm="syz.3.5407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 723.319998][T19744] loop3: detected capacity change from 0 to 1024 [ 723.331189][T19744] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 723.392586][T19744] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:478: comm syz.3.5415: Invalid block bitmap block 0 in block_group 0 [ 723.416909][T19744] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.5415: Failed to acquire dquot type 0 [ 723.436685][T19744] EXT4-fs error (device loop3): ext4_free_blocks:6676: comm syz.3.5415: Freeing blocks not in datazone - block = 0, count = 4096 [ 723.472907][T19744] EXT4-fs error (device loop3): ext4_read_inode_bitmap:140: comm syz.3.5415: Invalid inode bitmap blk 0 in block_group 0 [ 723.492948][T12232] EXT4-fs error (device loop3): ext4_release_dquot:6976: comm kworker/u4:11: Failed to release dquot type 0 [ 723.498275][T19744] EXT4-fs error (device loop3) in ext4_free_inode:363: Corrupt filesystem [ 723.530484][T19744] EXT4-fs (loop3): 1 orphan inode deleted [ 723.550217][T19744] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 723.641673][T18436] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 723.716274][T19754] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5419'. [ 723.734764][T19754] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5419'. [ 723.779567][T19756] geneve0: entered allmulticast mode [ 724.110566][T19774] pim6reg: entered allmulticast mode [ 724.140509][T19774] pim6reg: left allmulticast mode [ 724.375552][T19787] loop3: detected capacity change from 0 to 164 [ 724.396351][T19787] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 724.423602][T19787] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 724.604200][T19798] netlink: 64 bytes leftover after parsing attributes in process `syz.3.5440'. [ 724.822353][T19808] pim6reg: entered allmulticast mode [ 724.845983][T19808] pim6reg: left allmulticast mode [ 726.546603][T19840] pim6reg: entered allmulticast mode [ 726.571188][T19840] pim6reg: left allmulticast mode [ 726.763247][T19846] loop2: detected capacity change from 0 to 164 [ 726.793892][T19846] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 726.841936][T19846] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 728.624457][ T28] kauditd_printk_skb: 94 callbacks suppressed [ 728.624471][ T28] audit: type=1326 audit(1760478308.625:4730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19857 comm="syz.3.5466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 728.706295][ T28] audit: type=1326 audit(1760478308.695:4731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19857 comm="syz.3.5466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 728.761858][ T28] audit: type=1326 audit(1760478308.695:4732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19857 comm="syz.3.5466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 728.820689][T19864] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5468'. [ 728.829686][ T28] audit: type=1326 audit(1760478308.695:4733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19857 comm="syz.3.5466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 728.829760][ T28] audit: type=1326 audit(1760478308.805:4734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19863 comm="syz.3.5468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 728.830036][ T28] audit: type=1326 audit(1760478308.805:4735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19863 comm="syz.3.5468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 728.830085][ T28] audit: type=1326 audit(1760478308.815:4736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19863 comm="syz.3.5468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 728.830133][ T28] audit: type=1326 audit(1760478308.815:4737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19863 comm="syz.3.5468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 728.946732][ T28] audit: type=1326 audit(1760478308.815:4738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19863 comm="syz.3.5468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 728.983935][ T28] audit: type=1326 audit(1760478308.815:4739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19863 comm="syz.3.5468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 729.085046][T19871] loop3: detected capacity change from 0 to 1024 [ 729.092487][T19871] EXT4-fs: Ignoring removed orlov option [ 729.151720][T19877] loop2: detected capacity change from 0 to 164 [ 729.162326][T19877] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 729.176843][T19877] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 729.219499][T19871] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 729.360020][T18436] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 729.678512][T19890] IPVS: fo: FWM 3 0x00000003 - no destination available [ 730.318275][T19915] loop2: detected capacity change from 0 to 1024 [ 730.329501][T19915] EXT4-fs: Ignoring removed oldalloc option [ 730.340127][T19915] EXT4-fs: Ignoring removed bh option [ 730.350896][T19915] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 730.390414][T19915] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 731.259248][T18615] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 731.407233][T19933] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5497'. [ 731.424452][T19933] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5497'. [ 731.442050][T19934] pim6reg: entered allmulticast mode [ 731.470016][T19934] pim6reg: left allmulticast mode [ 731.628864][T19943] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5500'. [ 731.640421][T19943] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5500'. [ 732.510944][T19967] pim6reg: entered allmulticast mode [ 732.537158][T19967] pim6reg: left allmulticast mode [ 732.848985][T19970] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5512'. [ 732.886374][T19970] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5512'. [ 733.862932][T19983] netlink: 'syz.0.5518': attribute type 142 has an invalid length. [ 736.057733][T20006] loop2: detected capacity change from 0 to 164 [ 736.082031][T20006] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 736.115312][T20006] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 736.345282][T20018] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5529'. [ 736.357637][T20018] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5529'. [ 737.467102][T20031] 9p: Unknown access argument ¿: -22 [ 737.758713][T20037] loop2: detected capacity change from 0 to 164 [ 737.794714][T20037] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 737.836422][T20037] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 738.000409][T20044] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5541'. [ 738.014587][T20044] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5541'. [ 738.521558][T20063] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5549'. [ 738.578047][T20066] loop2: detected capacity change from 0 to 164 [ 738.587887][T20066] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 738.602125][T20066] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 738.802759][T20074] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5553'. [ 738.827775][T20074] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5553'. [ 739.132777][ T28] kauditd_printk_skb: 99 callbacks suppressed [ 739.132794][ T28] audit: type=1326 audit(1760478319.125:4839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20087 comm="syz.2.5558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 739.252346][ T28] audit: type=1326 audit(1760478319.155:4840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20087 comm="syz.2.5558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 740.106289][ T28] audit: type=1326 audit(1760478319.185:4841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20087 comm="syz.2.5558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 740.228866][ T28] audit: type=1326 audit(1760478319.185:4842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20087 comm="syz.2.5558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 740.351883][ T28] audit: type=1326 audit(1760478319.185:4843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20087 comm="syz.2.5558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 740.457878][ T28] audit: type=1326 audit(1760478319.185:4844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20087 comm="syz.2.5558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 740.547996][ T28] audit: type=1326 audit(1760478319.185:4845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20087 comm="syz.2.5558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 740.638668][ T28] audit: type=1326 audit(1760478319.185:4846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20087 comm="syz.2.5558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 740.730453][ T28] audit: type=1326 audit(1760478319.185:4847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20087 comm="syz.2.5558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 740.821968][ T28] audit: type=1326 audit(1760478319.185:4848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20087 comm="syz.2.5558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 741.328242][T20109] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5566'. [ 741.364902][T20109] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5566'. [ 741.462716][T20111] loop2: detected capacity change from 0 to 512 [ 741.484403][T20111] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 741.515775][T20111] ext4 filesystem being mounted at /136/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 741.698170][T18615] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 741.742140][T20121] loop3: detected capacity change from 0 to 164 [ 741.777398][T20121] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 741.890488][T20130] serio: Serial port ptm0 [ 741.933232][T20131] IPVS: set_ctl: invalid protocol: 46 100.1.1.2:20001 [ 743.275692][T20144] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5578'. [ 743.375664][T20144] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5578'. [ 743.970523][T20151] loop2: detected capacity change from 0 to 2048 [ 744.093323][T20151] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 744.211010][T18615] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 744.443590][ T28] kauditd_printk_skb: 148 callbacks suppressed [ 744.443606][ T28] audit: type=1326 audit(1760478324.435:4997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20160 comm="syz.2.5584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 744.572474][ T28] audit: type=1326 audit(1760478324.475:4998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20160 comm="syz.2.5584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 744.690160][ T28] audit: type=1326 audit(1760478324.475:4999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20160 comm="syz.2.5584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 744.783266][ T28] audit: type=1326 audit(1760478324.475:5000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20160 comm="syz.2.5584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 744.861191][ T28] audit: type=1326 audit(1760478324.485:5001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20160 comm="syz.2.5584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 744.944110][ T28] audit: type=1326 audit(1760478324.485:5002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20160 comm="syz.2.5584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 745.042064][ T28] audit: type=1326 audit(1760478324.485:5003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20160 comm="syz.2.5584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 745.084598][ T28] audit: type=1326 audit(1760478324.485:5004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20160 comm="syz.2.5584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 745.107255][ T28] audit: type=1326 audit(1760478324.485:5005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20160 comm="syz.2.5584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 745.209586][ T28] audit: type=1326 audit(1760478324.495:5006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20160 comm="syz.2.5584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 745.241072][T20162] loop2: detected capacity change from 0 to 512 [ 745.273062][T20162] EXT4-fs: Ignoring removed nobh option [ 745.296541][T20170] IPVS: set_ctl: invalid protocol: 46 100.1.1.2:20001 [ 745.318070][T20162] EXT4-fs warning (device loop2): read_mmp_block:115: Error -117 while reading MMP block 8 [ 745.665987][T20182] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5592'. [ 746.662512][T20182] team0 (unregistering): Port device team_slave_0 removed [ 746.741072][T20182] team0 (unregistering): Port device team_slave_1 removed [ 746.812321][T20196] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5597'. [ 747.002532][T20203] pim6reg: entered allmulticast mode [ 747.029035][T20203] pim6reg: left allmulticast mode [ 747.093919][T20211] IPVS: set_ctl: invalid protocol: 46 100.1.1.2:20001 [ 747.433508][T20223] netlink: 'syz.0.5610': attribute type 7 has an invalid length. [ 747.875242][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.883378][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 748.496439][T20240] pim6reg: entered allmulticast mode [ 748.502149][T20242] IPv6: NLM_F_CREATE should be specified when creating new route [ 748.512431][T20240] pim6reg: left allmulticast mode [ 749.823739][ T28] kauditd_printk_skb: 76 callbacks suppressed [ 749.823755][ T28] audit: type=1326 audit(1760478329.815:5083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20267 comm="syz.0.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 749.883023][ T28] audit: type=1326 audit(1760478329.855:5084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20267 comm="syz.0.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 749.908467][ T28] audit: type=1326 audit(1760478329.855:5085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20267 comm="syz.0.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 749.938668][ T28] audit: type=1326 audit(1760478329.855:5086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20267 comm="syz.0.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 749.968872][ T28] audit: type=1326 audit(1760478329.855:5087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20267 comm="syz.0.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 749.996208][T20277] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5633'. [ 750.014210][T20277] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5633'. [ 750.024454][ T28] audit: type=1326 audit(1760478329.855:5088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20267 comm="syz.0.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 750.034309][T20277] netlink: 'syz.2.5633': attribute type 11 has an invalid length. [ 750.069806][T20280] loop3: detected capacity change from 0 to 128 [ 750.079167][ T28] audit: type=1326 audit(1760478329.855:5089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20267 comm="syz.0.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 750.123628][ T28] audit: type=1326 audit(1760478329.855:5090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20267 comm="syz.0.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 750.187533][ T28] audit: type=1326 audit(1760478329.855:5091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20267 comm="syz.0.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 750.230820][ T28] audit: type=1326 audit(1760478329.855:5092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20267 comm="syz.0.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 750.401640][T20288] syzkaller0: entered promiscuous mode [ 750.407505][T20288] syzkaller0: entered allmulticast mode [ 753.463820][T20319] syz.0.5649[20319] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 753.464226][T20319] syz.0.5649[20319] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 753.504281][T20321] IPVS: set_ctl: invalid protocol: 46 100.1.1.2:20001 [ 754.949326][T20340] netlink: 'syz.2.5659': attribute type 4 has an invalid length. [ 755.002405][T20340] netlink: 'syz.2.5659': attribute type 4 has an invalid length. [ 755.040004][T20340] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5659'. [ 755.232346][T20340] bridge0: port 2(bridge_slave_1) entered disabled state [ 755.240429][T20340] bridge0: port 1(bridge_slave_0) entered disabled state [ 755.662429][T20340] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 755.742274][T20340] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 756.540399][T20340] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 756.564034][T20340] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 756.573078][T20340] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 756.582113][T20340] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 756.928109][ T28] kauditd_printk_skb: 33 callbacks suppressed [ 756.928125][ T28] audit: type=1326 audit(1760478336.925:5126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20378 comm="syz.1.5673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 757.016215][ T28] audit: type=1326 audit(1760478336.955:5127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20378 comm="syz.1.5673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 757.087685][T20385] pim6reg: entered allmulticast mode [ 757.159006][T20388] pim6reg: left allmulticast mode [ 757.180017][ T28] audit: type=1326 audit(1760478336.965:5128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20378 comm="syz.1.5673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 757.231615][ T28] audit: type=1326 audit(1760478336.975:5129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20378 comm="syz.1.5673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 757.255071][ T28] audit: type=1326 audit(1760478336.975:5130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20378 comm="syz.1.5673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 757.278050][ T28] audit: type=1326 audit(1760478336.975:5131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20378 comm="syz.1.5673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 757.300661][ T28] audit: type=1326 audit(1760478336.975:5132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20378 comm="syz.1.5673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 757.323911][ T28] audit: type=1326 audit(1760478336.975:5133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20378 comm="syz.1.5673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 757.350272][ T28] audit: type=1326 audit(1760478336.975:5134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20378 comm="syz.1.5673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 757.387537][ T28] audit: type=1326 audit(1760478336.975:5135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20378 comm="syz.1.5673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 758.897127][T20413] loop3: detected capacity change from 0 to 128 [ 759.122545][T20413] syz.3.5685: attempt to access beyond end of device [ 759.122545][T20413] loop3: rw=34817, sector=121, nr_sectors = 120 limit=128 [ 759.219764][T12232] kworker/u4:11: attempt to access beyond end of device [ 759.219764][T12232] loop3: rw=1, sector=241, nr_sectors = 800 limit=128 [ 759.945076][T20429] pim6reg: entered allmulticast mode [ 759.958279][T20429] pim6reg: left allmulticast mode [ 760.131292][T20433] loop3: detected capacity change from 0 to 128 [ 760.158147][T20433] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 760.201037][T20433] ext4 filesystem being mounted at /183/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 760.359449][T18436] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 762.152400][T20467] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5704'. [ 764.787381][ T28] kauditd_printk_skb: 56 callbacks suppressed [ 764.787396][ T28] audit: type=1326 audit(1760478344.785:5192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20492 comm="syz.0.5714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 764.846471][ T28] audit: type=1326 audit(1760478344.815:5193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20492 comm="syz.0.5714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 764.916130][ T28] audit: type=1326 audit(1760478344.815:5194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20492 comm="syz.0.5714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 765.047845][ T28] audit: type=1326 audit(1760478344.815:5195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20492 comm="syz.0.5714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 765.088229][ T28] audit: type=1326 audit(1760478344.815:5196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20492 comm="syz.0.5714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 765.114138][ T28] audit: type=1326 audit(1760478344.825:5197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20492 comm="syz.0.5714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 765.185299][ T28] audit: type=1326 audit(1760478344.825:5198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20492 comm="syz.0.5714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 765.425344][ T28] audit: type=1326 audit(1760478344.825:5199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20492 comm="syz.0.5714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 765.448094][ T28] audit: type=1326 audit(1760478344.825:5200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20492 comm="syz.0.5714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 765.471655][ T28] audit: type=1326 audit(1760478344.825:5201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20492 comm="syz.0.5714" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 765.736596][T20511] tipc: Started in network mode [ 765.819288][T20511] tipc: Node identity 56a737836c91, cluster identity 4711 [ 766.043700][T20511] tipc: Enabled bearer , priority 0 [ 766.106360][T20502] tipc: Disabling bearer [ 766.385875][T20524] ÿÿÿÿÿÿ: renamed from vlan1 [ 766.467202][T20526] sch_tbf: burst 6 is lower than device ip6gre0 mtu (1448) ! [ 768.114237][T20556] tipc: Started in network mode [ 768.119189][T20556] tipc: Node identity 36e245e6c7e8, cluster identity 4711 [ 768.169389][T20556] tipc: Enabled bearer , priority 0 [ 768.237356][T20547] tipc: Resetting bearer [ 769.264402][ T8] tipc: Node number set to 4043982310 [ 770.415669][T20602] IPVS: set_ctl: invalid protocol: 46 100.1.1.2:20001 [ 773.232620][T20547] tipc: Disabling bearer [ 773.305589][ T28] kauditd_printk_skb: 14 callbacks suppressed [ 773.305606][ T28] audit: type=1326 audit(1760478353.305:5216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20606 comm="syz.3.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 773.349368][ T28] audit: type=1326 audit(1760478353.335:5217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20606 comm="syz.3.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 773.395211][ T28] audit: type=1326 audit(1760478353.335:5218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20606 comm="syz.3.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 773.429689][ T28] audit: type=1326 audit(1760478353.335:5219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20606 comm="syz.3.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 773.466517][ T28] audit: type=1326 audit(1760478353.335:5220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20606 comm="syz.3.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 773.521429][ T28] audit: type=1326 audit(1760478353.335:5221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20606 comm="syz.3.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 773.564082][ T28] audit: type=1326 audit(1760478353.335:5222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20606 comm="syz.3.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 773.606533][ T28] audit: type=1326 audit(1760478353.335:5223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20606 comm="syz.3.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 773.644741][ T28] audit: type=1326 audit(1760478353.335:5224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20606 comm="syz.3.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 773.669125][ T28] audit: type=1326 audit(1760478353.335:5225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20606 comm="syz.3.5760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 773.699052][T20618] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5765'. [ 774.580254][T20633] IPVS: set_ctl: invalid protocol: 46 100.1.1.2:20001 [ 775.095057][T20644] sch_tbf: burst 2976 is lower than device lo mtu (11337746) ! [ 775.120025][T20644] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 775.120025][T20644] program syz.2.5776 not setting count and/or reply_len properly [ 775.266084][T20646] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5777'. [ 775.281348][T20646] netlink: 108 bytes leftover after parsing attributes in process `syz.2.5777'. [ 775.300889][T20646] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5777'. [ 775.312709][T20646] netlink: 108 bytes leftover after parsing attributes in process `syz.2.5777'. [ 775.324931][T20646] netlink: 84 bytes leftover after parsing attributes in process `syz.2.5777'. [ 776.788772][T20676] loop3: detected capacity change from 0 to 512 [ 776.810852][T20676] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x05417272 (sector = 1) [ 776.830976][T20676] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 776.909329][T20676] FAT-fs (loop3): FAT read failed (blocknr 128) [ 777.536852][T20685] loop3: detected capacity change from 0 to 1024 [ 777.583631][T20685] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 777.836970][T18436] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 778.529374][T20705] tipc: Enabled bearer , priority 0 [ 778.545365][T20705] syzkaller0: entered promiscuous mode [ 778.554081][T20705] syzkaller0: entered allmulticast mode [ 778.617879][T20705] tipc: Resetting bearer [ 778.636121][T20704] tipc: Resetting bearer [ 778.663423][T20707] IPVS: set_ctl: invalid protocol: 46 100.1.1.2:20001 [ 778.671330][T20704] tipc: Disabling bearer [ 780.232209][T20734] loop3: detected capacity change from 0 to 128 [ 780.252931][T20734] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 780.304638][T20734] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 780.469007][ T3472] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 780.589517][T20745] IPVS: set_ctl: invalid protocol: 46 100.1.1.2:20001 [ 780.852392][T20751] loop3: detected capacity change from 0 to 1024 [ 780.861495][T20751] EXT4-fs: Ignoring removed orlov option [ 780.885918][T20751] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 780.950853][T18436] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 781.044962][T20758] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5825'. [ 781.054639][T20758] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5825'. [ 781.589683][T20770] IPVS: set_ctl: invalid protocol: 46 100.1.1.2:20001 [ 781.804058][ T28] kauditd_printk_skb: 40 callbacks suppressed [ 781.804075][ T28] audit: type=1326 audit(1760478361.785:5266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20776 comm="syz.0.5833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x50000 [ 781.894048][ T28] audit: type=1326 audit(1760478361.825:5267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20776 comm="syz.0.5833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x50000 [ 781.942667][ T28] audit: type=1326 audit(1760478361.825:5268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20776 comm="syz.0.5833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x50000 [ 781.996361][ T28] audit: type=1326 audit(1760478361.825:5269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20776 comm="syz.0.5833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x50000 [ 782.097533][ T28] audit: type=1326 audit(1760478361.825:5270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20776 comm="syz.0.5833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x50000 [ 782.147517][ T28] audit: type=1326 audit(1760478361.825:5271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20776 comm="syz.0.5833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x50000 [ 782.204118][ T28] audit: type=1326 audit(1760478361.825:5272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20776 comm="syz.0.5833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x50000 [ 782.267549][ T28] audit: type=1326 audit(1760478361.825:5273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20776 comm="syz.0.5833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x50000 [ 782.334111][ T28] audit: type=1326 audit(1760478361.825:5274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20776 comm="syz.0.5833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x50000 [ 782.397573][ T28] audit: type=1326 audit(1760478361.825:5275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20776 comm="syz.0.5833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x50000 [ 783.327604][T20799] IPVS: set_ctl: invalid protocol: 46 100.1.1.2:20001 [ 783.561380][T20806] loop3: detected capacity change from 0 to 128 [ 783.582120][T20806] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 783.614625][T20806] ext4 filesystem being mounted at /230/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 783.811935][T18436] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 784.058601][T20823] IPVS: set_ctl: invalid protocol: 46 100.1.1.2:20001 [ 784.240668][T20833] netlink: 48 bytes leftover after parsing attributes in process `syz.1.5857'. [ 784.872196][T20857] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5866'. [ 784.994940][T20861] tmpfs: Bad value for 'mpol' [ 785.281322][T20878] IPVS: set_ctl: invalid protocol: 46 100.1.1.2:20001 [ 785.705638][ T5785] Bluetooth: hci2: command 0x0406 tx timeout [ 787.822458][T20908] netlink: 14 bytes leftover after parsing attributes in process `syz.2.5887'. [ 788.092758][T20908] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 788.116026][T20908] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 788.127551][T20908] bond0 (unregistering): Released all slaves [ 788.201376][T20916] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5891'. [ 788.233060][T20916] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5891'. [ 788.265753][T20920] tipc: Started in network mode [ 788.297843][T20920] tipc: Node identity 46aafe5f4259, cluster identity 4711 [ 788.324418][T20920] tipc: Enabled bearer , priority 0 [ 788.335132][T20923] syzkaller0: entered promiscuous mode [ 788.340688][T20923] syzkaller0: entered allmulticast mode [ 788.385197][T20918] tipc: Resetting bearer [ 788.434294][T20913] tipc: Resetting bearer [ 788.505053][T20913] tipc: Disabling bearer [ 788.834635][T20942] netlink: 32 bytes leftover after parsing attributes in process `syz.0.5900'. [ 790.898070][T20955] pim6reg: entered allmulticast mode [ 790.944342][T20955] pim6reg: left allmulticast mode [ 791.349366][T20964] tipc: Enabled bearer , priority 0 [ 791.383567][T20962] tipc: Resetting bearer [ 791.555232][T20972] sd 0:0:1:0: device reset [ 792.848794][ T27] tipc: Node number set to 83099231 [ 793.282187][ T28] kauditd_printk_skb: 45 callbacks suppressed [ 793.282204][ T28] audit: type=1326 audit(1760478373.275:5321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20998 comm="syz.1.5924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 793.340988][ T28] audit: type=1326 audit(1760478373.305:5322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20998 comm="syz.1.5924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 793.393244][ T28] audit: type=1326 audit(1760478373.305:5323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20998 comm="syz.1.5924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 793.429952][ T28] audit: type=1326 audit(1760478373.305:5324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20998 comm="syz.1.5924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 793.490745][T21006] loop3: detected capacity change from 0 to 1024 [ 793.608070][ T28] audit: type=1326 audit(1760478373.305:5325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20998 comm="syz.1.5924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 793.636186][T21006] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 793.656189][ T28] audit: type=1326 audit(1760478373.305:5326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20998 comm="syz.1.5924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 793.679439][ T28] audit: type=1326 audit(1760478373.305:5327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20998 comm="syz.1.5924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 793.702957][ T28] audit: type=1326 audit(1760478373.305:5328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20998 comm="syz.1.5924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=158 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 793.726005][ T28] audit: type=1326 audit(1760478373.305:5329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20998 comm="syz.1.5924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 793.751640][T21006] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 794.410827][T18436] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 794.833850][T21019] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5930'. [ 795.954082][ T5785] Bluetooth: hci1: command 0x0406 tx timeout [ 798.816702][T20962] tipc: Disabling bearer [ 798.836693][T21057] pim6reg: entered allmulticast mode [ 798.848972][T21060] pim6reg: left allmulticast mode [ 798.944266][T21066] tipc: Enabling of bearer rejected, failed to enable media [ 800.140397][T21096] tipc: Enabled bearer , priority 0 [ 800.170850][T21096] syzkaller0: entered promiscuous mode [ 800.186749][T21096] syzkaller0: entered allmulticast mode [ 800.241119][T21096] tipc: Resetting bearer [ 800.270095][T21092] tipc: Resetting bearer [ 800.345210][T21092] tipc: Disabling bearer [ 800.705920][T21114] pim6reg: entered allmulticast mode [ 800.714970][T21114] pim6reg: left allmulticast mode [ 802.211403][T21150] tipc: Enabled bearer , priority 0 [ 802.228720][T21150] syzkaller0: entered promiscuous mode [ 802.240326][T21150] syzkaller0: entered allmulticast mode [ 802.277727][T21150] tipc: Resetting bearer [ 802.317226][T21148] tipc: Resetting bearer [ 802.353177][T21148] tipc: Disabling bearer [ 802.534431][ T28] audit: type=1326 audit(1760478382.535:5330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21153 comm="syz.1.5984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7fc00000 [ 802.634260][T21161] block device autoloading is deprecated and will be removed. [ 803.018385][T21176] sch_tbf: burst 2 is lower than device syzkaller0 mtu (1514) ! [ 803.075111][T21183] tipc: Enabled bearer , priority 0 [ 803.082848][T21183] syzkaller0: entered promiscuous mode [ 803.088685][T21183] syzkaller0: entered allmulticast mode [ 803.129021][T21183] tipc: Resetting bearer [ 803.167561][T21182] tipc: Resetting bearer [ 803.210882][ T28] audit: type=1326 audit(1760478383.195:5331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21153 comm="syz.1.5984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7fc00000 [ 803.272972][T21182] tipc: Disabling bearer [ 803.708492][T21206] netlink: 96 bytes leftover after parsing attributes in process `syz.0.6006'. [ 803.874668][T21211] tipc: Enabling of bearer rejected, failed to enable media [ 804.537622][T21231] loop0: detected capacity change from 0 to 1024 [ 804.597733][T21231] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 804.619582][ T28] audit: type=1800 audit(1760478384.615:5332): pid=21231 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.6019" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 804.728592][ T28] audit: type=1326 audit(1760478384.715:5333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21239 comm="syz.1.6022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 804.739019][T21238] tipc: Enabled bearer , priority 0 [ 804.786117][T17923] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 804.786465][ T28] audit: type=1326 audit(1760478384.715:5334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21239 comm="syz.1.6022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 804.828913][T21238] syzkaller0: entered promiscuous mode [ 804.846691][T21238] syzkaller0: entered allmulticast mode [ 804.846892][ T28] audit: type=1326 audit(1760478384.715:5335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21239 comm="syz.1.6022" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 804.889620][T21238] tipc: Resetting bearer [ 804.909287][T21237] tipc: Resetting bearer [ 804.943143][T21237] tipc: Disabling bearer [ 805.156762][ T6300] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 805.196368][ T6300] hid-generic 0000:0000:0000.000F: hidraw0: HID v0.00 Device [syz1] on syz0 [ 805.405776][T21265] pim6reg: entered allmulticast mode [ 805.437627][T21265] pim6reg: left allmulticast mode [ 805.605374][T21256] hid-generic 0000:0000:0000.000F: pid 21256 passed too large report [ 806.209409][ T5789] Bluetooth: hci3: command 0x0406 tx timeout [ 807.039594][T21297] pim6reg: entered allmulticast mode [ 807.072055][T21297] pim6reg: left allmulticast mode [ 808.098040][T21317] block device autoloading is deprecated and will be removed. [ 808.116487][ T28] audit: type=1326 audit(1760478388.105:5336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21316 comm="syz.1.6056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 808.174070][ T28] audit: type=1326 audit(1760478388.105:5337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21316 comm="syz.1.6056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 808.261127][ T28] audit: type=1326 audit(1760478388.125:5338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21316 comm="syz.1.6056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 808.331507][ T28] audit: type=1326 audit(1760478388.125:5339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21316 comm="syz.1.6056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 808.362292][T21320] wg2: entered promiscuous mode [ 808.373326][T21320] wg2: entered allmulticast mode [ 808.396296][ T28] audit: type=1326 audit(1760478388.125:5340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21316 comm="syz.1.6056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 808.455270][ T28] audit: type=1326 audit(1760478388.145:5341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21316 comm="syz.1.6056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 808.505527][ T28] audit: type=1326 audit(1760478388.145:5342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21316 comm="syz.1.6056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 808.556606][ T28] audit: type=1326 audit(1760478388.145:5343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21316 comm="syz.1.6056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 808.610065][ T28] audit: type=1326 audit(1760478388.155:5344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21316 comm="syz.1.6056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 808.683382][T21330] pim6reg: entered allmulticast mode [ 808.701708][ T28] audit: type=1326 audit(1760478388.155:5345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21316 comm="syz.1.6056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 808.725384][T21332] IPVS: set_ctl: invalid protocol: 46 100.1.1.2:20001 [ 808.744737][T21333] pim6reg: left allmulticast mode [ 809.230853][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 809.237433][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 809.715240][T21346] tipc: Enabled bearer , priority 0 [ 809.722373][T21348] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.6068' sets config #1 [ 809.735493][T21346] syzkaller0: entered promiscuous mode [ 809.747716][T21346] syzkaller0: entered allmulticast mode [ 809.780871][T21346] tipc: Resetting bearer [ 809.820000][T21345] tipc: Resetting bearer [ 809.939955][T21345] tipc: Disabling bearer [ 810.452322][T21361] pim6reg: entered allmulticast mode [ 810.485657][T21361] pim6reg: left allmulticast mode [ 811.078050][T21370] netlink: 48 bytes leftover after parsing attributes in process `syz.1.6077'. [ 811.243471][T21377] tipc: Enabled bearer , priority 0 [ 811.256537][T21377] syzkaller0: entered promiscuous mode [ 811.262263][T21377] syzkaller0: entered allmulticast mode [ 811.282753][T21377] tipc: Resetting bearer [ 811.300628][T21376] tipc: Resetting bearer [ 811.310675][T21381] netlink: 56 bytes leftover after parsing attributes in process `syz.1.6082'. [ 811.366306][T21376] tipc: Disabling bearer [ 812.211396][T21397] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6088'. [ 812.260260][T21397] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6088'. [ 813.250589][T21404] pim6reg: entered allmulticast mode [ 813.262416][T21404] pim6reg: left allmulticast mode [ 813.562162][T21414] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 813.570224][T21414] IPv6: NLM_F_CREATE should be set when creating new route [ 813.577536][T21414] IPv6: NLM_F_CREATE should be set when creating new route [ 813.590430][T21416] IPVS: set_ctl: invalid protocol: 46 100.1.1.2:20001 [ 813.597874][T21414] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 813.629898][T21421] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6097'. [ 813.639007][T21421] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6097'. [ 813.833535][T21426] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6098'. [ 814.372281][T21441] pim6reg: entered allmulticast mode [ 814.382241][T21441] pim6reg: left allmulticast mode [ 814.481689][T21443] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6106'. [ 814.491395][T21443] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6106'. [ 814.531846][ T28] kauditd_printk_skb: 46 callbacks suppressed [ 814.531861][ T28] audit: type=1326 audit(1760478394.525:5392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21445 comm="syz.1.6108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 814.606411][ T28] audit: type=1326 audit(1760478394.555:5393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21445 comm="syz.1.6108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 814.654267][ T28] audit: type=1326 audit(1760478394.565:5394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21445 comm="syz.1.6108" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 814.678444][ T28] audit: type=1326 audit(1760478394.565:5395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21445 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 814.703960][ T28] audit: type=1326 audit(1760478394.565:5396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21445 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 814.730096][ T28] audit: type=1326 audit(1760478394.565:5397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21445 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 814.770619][T21453] tipc: Enabled bearer , priority 0 [ 814.779283][T21453] syzkaller0: entered promiscuous mode [ 814.780765][ T28] audit: type=1326 audit(1760478394.565:5398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21445 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 814.790612][T21453] syzkaller0: entered allmulticast mode [ 814.839397][ T28] audit: type=1326 audit(1760478394.575:5399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21445 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 814.873364][ T28] audit: type=1326 audit(1760478394.575:5400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21445 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 814.931037][ T28] audit: type=1326 audit(1760478394.575:5401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21445 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 814.968654][T21452] tipc: Resetting bearer [ 815.023690][T21461] IPVS: set_ctl: invalid protocol: 46 100.1.1.2:20001 [ 815.037659][T21452] tipc: Disabling bearer [ 815.359952][T21475] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6119'. [ 815.883339][T21483] netlink: 'syz.3.6122': attribute type 9 has an invalid length. [ 815.977947][T21489] tipc: Enabling of bearer rejected, failed to enable media [ 816.173657][T21498] __nla_validate_parse: 4 callbacks suppressed [ 816.173675][T21498] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6128'. [ 816.189934][T21498] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6128'. [ 816.530166][T21506] IPVS: set_ctl: invalid protocol: 46 100.1.1.2:20001 [ 816.752570][T21514] tipc: Enabling of bearer rejected, failed to enable media [ 818.494203][T21525] netlink: 24 bytes leftover after parsing attributes in process `syz.3.6136'. [ 818.973883][T21529] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6137'. [ 819.001355][T21529] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6137'. [ 819.832981][T21550] tipc: Enabling of bearer rejected, failed to enable media [ 819.862526][T21553] IPVS: set_ctl: invalid protocol: 46 100.1.1.2:20001 [ 821.300960][ T28] kauditd_printk_skb: 20 callbacks suppressed [ 821.300981][ T28] audit: type=1326 audit(1760478401.295:5422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21566 comm="syz.3.6150" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x0 [ 821.417521][T21568] loop3: detected capacity change from 0 to 128 [ 821.452675][T21568] FAT-fs (loop3): Directory bread(block 414) failed [ 821.474244][T21568] FAT-fs (loop3): Directory bread(block 415) failed [ 821.501406][T21568] FAT-fs (loop3): Directory bread(block 416) failed [ 821.513839][T21570] pim6reg: entered allmulticast mode [ 821.521707][T21568] FAT-fs (loop3): Directory bread(block 417) failed [ 821.539583][T21569] pim6reg: left allmulticast mode [ 821.551296][T21568] FAT-fs (loop3): Directory bread(block 418) failed [ 821.567692][T21572] syz.2.6152[21572] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 821.567836][T21572] syz.2.6152[21572] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 821.581983][T21568] FAT-fs (loop3): Directory bread(block 419) failed [ 821.628579][T21568] FAT-fs (loop3): Directory bread(block 420) failed [ 821.640340][T21568] FAT-fs (loop3): Directory bread(block 421) failed [ 821.668240][T21568] FAT-fs (loop3): Directory bread(block 414) failed [ 821.679844][T21568] FAT-fs (loop3): Directory bread(block 415) failed [ 821.887549][ T28] audit: type=1326 audit(1760478401.885:5423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21575 comm="syz.1.6154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 821.939848][ T28] audit: type=1326 audit(1760478401.905:5424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21575 comm="syz.1.6154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 821.995007][ T28] audit: type=1326 audit(1760478401.915:5425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21575 comm="syz.1.6154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 822.045021][T21578] tipc: Enabling of bearer rejected, failed to enable media [ 822.057301][ T28] audit: type=1326 audit(1760478401.915:5426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21575 comm="syz.1.6154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 822.100923][ T28] audit: type=1326 audit(1760478401.915:5427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21575 comm="syz.1.6154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 822.187928][ T28] audit: type=1326 audit(1760478401.915:5428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21575 comm="syz.1.6154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 822.191159][T21581] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6152'. [ 822.228302][ T28] audit: type=1326 audit(1760478401.915:5429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21575 comm="syz.1.6154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 822.327332][ T28] audit: type=1326 audit(1760478401.915:5430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21575 comm="syz.1.6154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 822.433029][ T28] audit: type=1326 audit(1760478401.915:5431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21575 comm="syz.1.6154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fde69f8eec9 code=0x7ffc0000 [ 822.779083][T21589] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6158'. [ 822.788360][T21589] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6158'. [ 823.140854][T21601] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6163'. [ 823.260693][T21601] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6163'. [ 824.110450][T21616] pim6reg: entered allmulticast mode [ 824.122914][T21614] pim6reg: left allmulticast mode [ 824.345863][T21621] ieee802154 phy0 wpan0: encryption failed: -22 [ 826.391224][T21643] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6177'. [ 826.400476][T21643] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6177'. [ 826.813867][T21653] lo speed is unknown, defaulting to 1000 [ 826.832302][T21653] lo speed is unknown, defaulting to 1000 [ 826.841761][T21653] lo speed is unknown, defaulting to 1000 [ 826.943824][T21653] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 827.036695][T21653] lo speed is unknown, defaulting to 1000 [ 827.038186][T21653] lo speed is unknown, defaulting to 1000 [ 827.043180][T21653] lo speed is unknown, defaulting to 1000 [ 827.057021][T21653] lo speed is unknown, defaulting to 1000 [ 828.486168][T21678] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6187'. [ 828.524248][T21678] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6187'. [ 829.558508][ T28] kauditd_printk_skb: 43 callbacks suppressed [ 829.558523][ T28] audit: type=1326 audit(1760478409.555:5475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21694 comm="syz.0.6194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 829.624487][ T28] audit: type=1326 audit(1760478409.555:5476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21694 comm="syz.0.6194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 829.670190][ T28] audit: type=1326 audit(1760478409.555:5477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21694 comm="syz.0.6194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 829.787520][T21697] x_tables: ip_tables: ipcomp match: only valid for protocol 108 [ 829.798672][ T28] audit: type=1326 audit(1760478409.555:5478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21694 comm="syz.0.6194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 829.872279][ T28] audit: type=1326 audit(1760478409.555:5479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21694 comm="syz.0.6194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 829.918524][ T28] audit: type=1326 audit(1760478409.555:5480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21694 comm="syz.0.6194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 829.987317][ T28] audit: type=1326 audit(1760478409.555:5481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21694 comm="syz.0.6194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 830.054828][ T28] audit: type=1326 audit(1760478409.585:5482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21694 comm="syz.0.6194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 830.302257][T21706] syzkaller0: entered promiscuous mode [ 830.336580][T21706] syzkaller0: entered allmulticast mode [ 830.571965][T21709] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6200'. [ 830.604227][T21709] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6200'. [ 832.297420][ T28] audit: type=1326 audit(1760478412.295:5483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21722 comm="syz.2.6205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 832.340034][ T28] audit: type=1326 audit(1760478412.295:5484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21722 comm="syz.2.6205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 833.951029][T21750] syzkaller0: entered promiscuous mode [ 833.974812][T21750] syzkaller0: entered allmulticast mode [ 835.059210][T21762] netlink: 36 bytes leftover after parsing attributes in process `syz.0.6217'. [ 835.295022][ T28] kauditd_printk_skb: 48 callbacks suppressed [ 835.295038][ T28] audit: type=1326 audit(1760478415.295:5533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21770 comm="syz.2.6221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 835.324915][ T28] audit: type=1326 audit(1760478415.325:5534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21770 comm="syz.2.6221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=207 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 835.444034][ T28] audit: type=1326 audit(1760478415.435:5535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21770 comm="syz.2.6221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 835.552757][ T28] audit: type=1326 audit(1760478415.435:5536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21770 comm="syz.2.6221" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 835.913623][T21778] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6224'. [ 835.922696][T21778] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6224'. [ 836.057773][ T28] audit: type=1326 audit(1760478416.055:5537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21781 comm="syz.2.6226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 836.104406][ T28] audit: type=1326 audit(1760478416.075:5538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21781 comm="syz.2.6226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 836.166085][ T28] audit: type=1326 audit(1760478416.095:5539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21781 comm="syz.2.6226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 836.194810][ T28] audit: type=1326 audit(1760478416.095:5540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21781 comm="syz.2.6226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 836.251940][ T28] audit: type=1326 audit(1760478416.095:5541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21781 comm="syz.2.6226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 836.298619][ T28] audit: type=1326 audit(1760478416.095:5542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21781 comm="syz.2.6226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 837.196778][T21793] netlink: 36 bytes leftover after parsing attributes in process `syz.2.6229'. [ 837.626227][T21807] loop3: detected capacity change from 0 to 128 [ 837.637696][T21807] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 837.650465][T21807] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 837.743173][T12232] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 837.907820][ T9] hid-generic 0003:0003:0000.0010: unknown main item tag 0x0 [ 837.936040][ T9] hid-generic 0003:0003:0000.0010: unknown main item tag 0x0 [ 837.943522][ T9] hid-generic 0003:0003:0000.0010: unknown main item tag 0x0 [ 837.972582][ T9] hid-generic 0003:0003:0000.0010: unknown main item tag 0x0 [ 837.995343][ T9] hid-generic 0003:0003:0000.0010: unknown main item tag 0x0 [ 838.016788][ T9] hid-generic 0003:0003:0000.0010: unknown main item tag 0x0 [ 838.034154][ T9] hid-generic 0003:0003:0000.0010: unknown main item tag 0x0 [ 838.051957][ T9] hid-generic 0003:0003:0000.0010: unknown main item tag 0x0 [ 838.072209][ T9] hid-generic 0003:0003:0000.0010: unknown main item tag 0x0 [ 838.086798][ T9] hid-generic 0003:0003:0000.0010: unknown main item tag 0x0 [ 838.104051][ T9] hid-generic 0003:0003:0000.0010: unknown main item tag 0x0 [ 838.121745][ T9] hid-generic 0003:0003:0000.0010: unknown main item tag 0x0 [ 838.143807][ T9] hid-generic 0003:0003:0000.0010: unknown main item tag 0x0 [ 838.163450][ T9] hid-generic 0003:0003:0000.0010: unknown main item tag 0x0 [ 838.179666][ T9] hid-generic 0003:0003:0000.0010: unknown main item tag 0x0 [ 838.197698][ T9] hid-generic 0003:0003:0000.0010: unknown main item tag 0x0 [ 838.264225][ T9] hid-generic 0003:0003:0000.0010: unknown main item tag 0x0 [ 838.271704][ T9] hid-generic 0003:0003:0000.0010: unknown main item tag 0x0 [ 838.288746][ T9] hid-generic 0003:0003:0000.0010: hidraw0: USB HID v0.00 Device [syz0] on syz1 [ 839.907749][ T27] IPVS: starting estimator thread 0... [ 839.913412][T21830] IPVS: ip_vs_edit_dest(): server weight less than zero [ 840.004063][T21831] IPVS: using max 17 ests per chain, 40800 per kthread [ 840.060195][T21836] macsec1: entered promiscuous mode [ 840.070838][T21836] bridge0: entered promiscuous mode [ 840.081746][T21836] bridge0: port 3(macsec1) entered blocking state [ 840.097048][T21836] bridge0: port 3(macsec1) entered disabled state [ 840.114104][T21836] macsec1: entered allmulticast mode [ 840.124078][T21836] bridge0: entered allmulticast mode [ 840.136312][T21836] macsec1: left allmulticast mode [ 840.144038][T21836] bridge0: left allmulticast mode [ 840.155804][T21836] bridge0: left promiscuous mode [ 840.419123][ T28] kauditd_printk_skb: 10 callbacks suppressed [ 840.419140][ T28] audit: type=1326 audit(1760478420.415:5553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21840 comm="syz.2.6246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 840.486361][ T28] audit: type=1326 audit(1760478420.415:5554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21840 comm="syz.2.6246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 840.558335][ T28] audit: type=1326 audit(1760478420.445:5555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21840 comm="syz.2.6246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 840.593299][T21843] syz.2.6247[21843] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 840.593446][T21843] syz.2.6247[21843] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 840.632160][ T28] audit: type=1326 audit(1760478420.445:5556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21840 comm="syz.2.6246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 840.866393][T21845] syzkaller0: entered promiscuous mode [ 840.871947][T21845] syzkaller0: entered allmulticast mode [ 842.991796][T21768] Set syz1 is full, maxelem 65536 reached [ 843.775932][ T28] audit: type=1326 audit(1760478423.775:5557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21875 comm="syz.2.6258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 843.808641][ T28] audit: type=1326 audit(1760478423.795:5558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21875 comm="syz.2.6258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 843.857087][ T28] audit: type=1326 audit(1760478423.795:5559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21875 comm="syz.2.6258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 843.904117][ T28] audit: type=1326 audit(1760478423.795:5560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21875 comm=5E8ECF5D exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 843.943743][ T28] audit: type=1326 audit(1760478423.795:5561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21875 comm=5E8ECF5D exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 843.975166][ T28] audit: type=1326 audit(1760478423.795:5562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21875 comm=5E8ECF5D exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 844.006117][T21880] loop3: detected capacity change from 0 to 128 [ 844.040093][T21880] syz.3.6260: attempt to access beyond end of device [ 844.040093][T21880] loop3: rw=2049, sector=145, nr_sectors = 95 limit=128 [ 844.276787][T21884] loop3: detected capacity change from 0 to 2048 [ 844.316697][T21884] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 845.056648][T21898] lo speed is unknown, defaulting to 1000 [ 845.660996][T21899] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 845.678340][T21899] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 384 with error 28 [ 845.690932][T21899] EXT4-fs (loop3): This should not happen!! Data will be lost [ 845.690932][T21899] [ 845.701060][T21899] EXT4-fs (loop3): Total free blocks count 0 [ 845.707248][T21899] EXT4-fs (loop3): Free/Dirty block details [ 845.713270][T21899] EXT4-fs (loop3): free_blocks=2415919504 [ 845.719235][T21899] EXT4-fs (loop3): dirty_blocks=400 [ 845.724578][T21899] EXT4-fs (loop3): Block reservation details [ 845.730737][T21899] EXT4-fs (loop3): i_reserved_data_blocks=25 [ 847.149588][T21906] loop0: detected capacity change from 0 to 1024 [ 847.225926][T21906] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 847.463036][ T12] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 1 with error 28 [ 847.532798][T17923] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 847.708252][T21916] loop3: detected capacity change from 0 to 164 [ 847.740218][T21916] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 848.035908][ T28] kauditd_printk_skb: 8 callbacks suppressed [ 848.035923][ T28] audit: type=1326 audit(1760478428.035:5571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21930 comm="syz.3.6279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 848.114800][ T28] audit: type=1326 audit(1760478428.035:5572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21930 comm="syz.3.6279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 848.164032][ T28] audit: type=1326 audit(1760478428.035:5573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21930 comm="syz.3.6279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 848.220802][ T28] audit: type=1326 audit(1760478428.035:5574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21930 comm="syz.3.6279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 848.304176][ T28] audit: type=1326 audit(1760478428.035:5575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21930 comm="syz.3.6279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 848.344024][ T28] audit: type=1326 audit(1760478428.035:5576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21930 comm="syz.3.6279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 848.394851][ T28] audit: type=1326 audit(1760478428.035:5577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21930 comm="syz.3.6279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 848.461585][ T28] audit: type=1326 audit(1760478428.035:5578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21930 comm="syz.3.6279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 848.463009][T21942] tipc: Enabled bearer , priority 0 [ 848.534000][ T28] audit: type=1326 audit(1760478428.035:5579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21930 comm="syz.3.6279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 848.604236][ T28] audit: type=1326 audit(1760478428.035:5580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21930 comm="syz.3.6279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=440 compat=0 ip=0x7fe2e838eec9 code=0x7ffc0000 [ 848.636397][T21942] tipc: Resetting bearer [ 848.727066][T21941] tipc: Disabling bearer [ 848.922782][T21950] loop0: detected capacity change from 0 to 164 [ 849.003406][T21950] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 849.049179][T21950] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 849.093429][T21950] Symlink component flag not implemented [ 849.128118][T21950] Symlink component flag not implemented [ 849.154759][T21950] Symlink component flag not implemented (7) [ 849.172737][T21950] Symlink component flag not implemented (116) [ 849.528296][T21958] loop3: detected capacity change from 0 to 1024 [ 849.557207][T21958] EXT4-fs: inline encryption not supported [ 849.586970][T21958] EXT4-fs: Ignoring removed nobh option [ 849.592843][T21958] EXT4-fs: Ignoring removed bh option [ 849.627706][T21958] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 849.677072][T21958] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 849.763107][T21958] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4031: comm syz.3.6289: Allocating blocks 385-513 which overlap fs metadata [ 849.809851][T21962] netlink: 48 bytes leftover after parsing attributes in process `syz.2.6291'. [ 849.827278][T21957] EXT4-fs (loop3): pa ffff888076d16488: logic 16, phys. 129, len 24 [ 849.836108][T21957] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 8 [ 849.927302][T18436] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 850.362717][T21976] xt_connbytes: Forcing CT accounting to be enabled [ 850.609039][T21979] loop0: detected capacity change from 0 to 128 [ 850.673504][T21979] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 850.724150][T21979] ext4 filesystem being mounted at /397/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 850.900634][T17923] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 850.937656][T21984] blktrace: Concurrent blktraces are not allowed on loop4 [ 851.232764][T21992] netlink: 48 bytes leftover after parsing attributes in process `syz.0.6302'. [ 851.495785][T21994] loop0: detected capacity change from 0 to 512 [ 851.544136][T21994] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #15: comm syz.0.6303: iget: bad i_size value: 38620345925642 [ 851.675263][T21994] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.6303: couldn't read orphan inode 15 (err -117) [ 851.701678][T21994] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 851.776858][T21994] EXT4-fs error (device loop0): ext4_find_dest_de:2115: inode #12: block 7: comm syz.0.6303: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4278190093, rec_len=255, size=56 fake=0 [ 851.938906][T17923] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 852.266109][T22003] tipc: Enabled bearer , priority 0 [ 852.286201][T22003] tipc: Resetting bearer [ 852.340539][T22002] tipc: Disabling bearer [ 852.402599][T22009] loop0: detected capacity change from 0 to 128 [ 852.532153][T22013] netlink: 48 bytes leftover after parsing attributes in process `syz.3.6311'. [ 852.760640][T22028] loop0: detected capacity change from 0 to 512 [ 852.778541][T22027] tipc: Enabling of bearer rejected, failed to enable media [ 852.796734][T22028] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #15: comm syz.0.6316: corrupted inode contents [ 852.838221][T22028] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem [ 852.861832][T22028] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #15: comm syz.0.6316: corrupted inode contents [ 852.998171][T22028] EXT4-fs error (device loop0): ext4_evict_inode:300: inode #15: comm syz.0.6316: mark_inode_dirty error [ 853.042834][T22028] EXT4-fs (loop0): 1 orphan inode deleted [ 853.065403][T22028] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 853.153312][T17923] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 855.111499][T22065] syz.2.6330[22065] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 855.111638][T22065] syz.2.6330[22065] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 856.020752][T22073] tipc: Enabling of bearer rejected, failed to enable media [ 856.676542][T22091] loop3: detected capacity change from 0 to 256 [ 856.709667][T22091] FAT-fs (loop3): Directory bread(block 1285) failed [ 856.731495][T22091] FAT-fs (loop3): Directory bread(block 1285) failed [ 856.738660][T22091] FAT-fs (loop3): Directory bread(block 1285) failed [ 856.757785][T22091] FAT-fs (loop3): Directory bread(block 1285) failed [ 857.557844][T22098] netlink: 148 bytes leftover after parsing attributes in process `syz.1.6340'. [ 857.914398][T22111] tipc: Enabling of bearer rejected, failed to enable media [ 857.937804][T22112] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6347'. [ 859.072094][T22137] wireguard0: entered promiscuous mode [ 859.080222][T22137] wireguard0: entered allmulticast mode [ 859.487709][ T5876] kernel write not supported for file /input/event2 (pid: 5876 comm: kworker/1:4) [ 859.526789][T22150] loop3: detected capacity change from 0 to 1024 [ 859.549888][T22150] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 859.560336][ T28] kauditd_printk_skb: 2 callbacks suppressed [ 859.560354][ T28] audit: type=1326 audit(1760478439.545:5583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22155 comm="syz.2.6357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 859.594275][ T28] audit: type=1326 audit(1760478439.585:5584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22155 comm="syz.2.6357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 859.617245][ T28] audit: type=1326 audit(1760478439.595:5585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22155 comm="syz.2.6357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 859.640561][ T28] audit: type=1326 audit(1760478439.595:5586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22155 comm="syz.2.6357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 859.663596][ T28] audit: type=1326 audit(1760478439.595:5587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22155 comm="syz.2.6357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 859.686570][ T28] audit: type=1326 audit(1760478439.615:5588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22155 comm="syz.2.6357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 859.709544][ T28] audit: type=1326 audit(1760478439.615:5589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22155 comm="syz.2.6357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 859.733108][ T28] audit: type=1326 audit(1760478439.615:5590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22155 comm="syz.2.6357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 859.757499][T18436] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 859.767582][ T28] audit: type=1326 audit(1760478439.765:5591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22155 comm="syz.2.6357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 859.791325][ T28] audit: type=1326 audit(1760478439.765:5592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22155 comm="syz.2.6357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=437 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 859.958512][T22162] tipc: Enabling of bearer rejected, failed to enable media [ 861.099705][T22177] lo speed is unknown, defaulting to 1000 [ 861.232366][T22185] netlink: 48 bytes leftover after parsing attributes in process `syz.2.6365'. [ 861.420022][T22191] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6368'. [ 861.474080][T22175] netlink: 64 bytes leftover after parsing attributes in process `syz.0.6361'. [ 862.983117][T22213] netlink: 48 bytes leftover after parsing attributes in process `syz.2.6376'. [ 863.131310][T22224] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6380'. [ 863.310214][T22228] loop3: detected capacity change from 0 to 1024 [ 863.408803][T22228] loop3: detected capacity change from 0 to 512 [ 863.418244][T22228] ext4: Unknown parameter 'oldalloc"data' [ 863.546426][T22228] netlink: 'syz.3.6382': attribute type 1 has an invalid length. [ 863.568936][T22228] netlink: 224 bytes leftover after parsing attributes in process `syz.3.6382'. [ 864.602905][T22250] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6392'. [ 866.461476][T22274] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6402'. [ 867.313018][T22281] netlink: 'syz.0.6404': attribute type 7 has an invalid length. [ 867.322513][T22281] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6404'. [ 867.421930][T22283] netlink: 60 bytes leftover after parsing attributes in process `syz.2.6412'. [ 867.488715][T22283] netlink: 60 bytes leftover after parsing attributes in process `syz.2.6412'. [ 867.635904][T22283] netlink: 60 bytes leftover after parsing attributes in process `syz.2.6412'. [ 867.648163][T22301] syzkaller1: entered promiscuous mode [ 867.653754][T22301] syzkaller1: entered allmulticast mode [ 867.763838][T22304] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6413'. [ 868.785748][T22311] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 868.814438][T22311] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 868.834054][T22311] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 868.854565][T22311] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 868.860615][T22311] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 868.890140][T22311] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 868.926920][T22311] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 869.137641][T22323] tipc: Enabling of bearer rejected, failed to enable media [ 869.880754][T22350] tipc: Enabling of bearer rejected, failed to enable media [ 870.611408][T22355] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.6434' sets config #-1 [ 870.633673][T22358] tipc: Enabling of bearer rejected, failed to enable media [ 870.669932][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 870.678524][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 870.986483][ T5789] Bluetooth: hci3: command 0x0406 tx timeout [ 870.993017][ T5789] Bluetooth: hci1: command 0x0406 tx timeout [ 870.999486][ T5789] Bluetooth: hci2: command 0x0406 tx timeout [ 872.583288][T22392] tipc: Enabling of bearer rejected, failed to enable media [ 873.065571][ T5785] Bluetooth: hci2: command 0x0406 tx timeout [ 873.071774][ T5785] Bluetooth: hci1: command 0x0406 tx timeout [ 873.078393][ T5785] Bluetooth: hci3: command 0x0406 tx timeout [ 873.584299][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 874.679308][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 874.752604][T22439] tipc: Enabling of bearer rejected, failed to enable media [ 875.414637][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 876.500128][T22475] netlink: 'syz.1.6471': attribute type 21 has an invalid length. [ 877.062102][T22483] cgroup: noprefix used incorrectly [ 878.264726][T22484] lo speed is unknown, defaulting to 1000 [ 878.516852][T22488] tipc: Enabling of bearer rejected, failed to enable media [ 878.996544][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 879.483431][T22506] __nla_validate_parse: 2 callbacks suppressed [ 879.483454][T22506] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6480'. [ 879.961893][T22512] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 880.078214][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 880.176411][T22516] netlink: 24 bytes leftover after parsing attributes in process `syz.0.6482'. [ 880.224676][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 880.318123][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 880.719357][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 880.911620][T22529] loop0: detected capacity change from 0 to 512 [ 880.935922][T22529] EXT4-fs: Ignoring removed nobh option [ 880.969854][T22531] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6489'. [ 881.140417][T22529] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 881.163166][T22529] ext4 filesystem being mounted at /438/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 881.979543][T22529] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6488'. [ 882.024007][T22529] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6488'. [ 882.033272][T22529] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6488'. [ 882.054084][T22540] SET target dimension over the limit! [ 882.106480][T22529] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6488'. [ 882.124411][T22529] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6488'. [ 882.143778][T22529] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6488'. [ 882.155151][T22529] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6488'. [ 882.285003][T22548] syz.2.6493[22548] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 882.285148][T22548] syz.2.6493[22548] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 882.433724][T17923] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 882.991792][T22555] cgroup: noprefix used incorrectly [ 885.294928][ T28] kauditd_printk_skb: 41 callbacks suppressed [ 885.294945][ T28] audit: type=1326 audit(1760478465.295:5634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22582 comm="syz.2.6512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 885.393374][ T28] audit: type=1326 audit(1760478465.295:5635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22582 comm="syz.2.6512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 885.474453][ T28] audit: type=1326 audit(1760478465.325:5636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22582 comm="syz.2.6512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 885.524183][ T28] audit: type=1326 audit(1760478465.325:5637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22582 comm="syz.2.6512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 885.583456][ T28] audit: type=1326 audit(1760478465.325:5638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22582 comm="syz.2.6512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 885.634472][ T28] audit: type=1326 audit(1760478465.325:5639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22582 comm="syz.2.6512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 885.694129][ T28] audit: type=1326 audit(1760478465.325:5640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22582 comm="syz.2.6512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 885.721813][T22589] siw: device registration error -23 [ 885.743997][ T28] audit: type=1326 audit(1760478465.325:5641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22582 comm="syz.2.6512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 885.776084][ T28] audit: type=1326 audit(1760478465.335:5642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22582 comm="syz.2.6512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 885.799690][ T28] audit: type=1326 audit(1760478465.335:5643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22582 comm="syz.2.6512" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4958eec9 code=0x7ffc0000 [ 886.356914][T22598] cgroup: noprefix used incorrectly [ 887.104141][T22600] netlink: 'syz.2.6508': attribute type 10 has an invalid length. [ 887.112032][T22600] __nla_validate_parse: 15 callbacks suppressed [ 887.112046][T22600] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6508'. [ 887.170840][T22600] batadv0: entered promiscuous mode [ 887.177200][T22600] batadv0: entered allmulticast mode [ 887.206633][T22600] bridge0: port 3(batadv0) entered blocking state [ 887.213328][T22600] bridge0: port 3(batadv0) entered disabled state [ 887.353611][T22129] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 887.364076][T22129] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 888.408259][T22624] syzkaller0: entered promiscuous mode [ 888.438834][T22624] syzkaller0: entered allmulticast mode [ 888.908903][T22633] Falling back ldisc for ttyS3. [ 889.289884][T22646] siw: device registration error -23 [ 890.597645][T22662] syzkaller0: entered promiscuous mode [ 890.603204][T22662] syzkaller0: entered allmulticast mode [ 890.705439][T22669] netlink: 'syz.0.6536': attribute type 10 has an invalid length. [ 890.907944][T22669] team0 (unregistering): Port device team_slave_0 removed [ 890.918607][T22669] team0 (unregistering): Port device team_slave_1 removed [ 890.999512][T22665] lo speed is unknown, defaulting to 1000 [ 891.498443][T22685] siw: device registration error -23 [ 891.515889][T22685] can-isotp: isotp_sendmsg: can_send_ret -ENETDOWN [ 891.766725][T22695] syzkaller0: entered promiscuous mode [ 891.843744][T22695] syzkaller0: entered allmulticast mode [ 893.080533][ T28] kauditd_printk_skb: 4 callbacks suppressed [ 893.080550][ T28] audit: type=1107 audit(1760478473.075:5648): pid=22709 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 893.835411][T22730] netlink: 24 bytes leftover after parsing attributes in process `syz.0.6560'. [ 893.866657][T22730] IPVS: Error connecting to the multicast addr [ 893.885492][T22732] 9pnet_fd: Insufficient options for proto=fd [ 893.919968][T22734] netlink: 'syz.3.6563': attribute type 1 has an invalid length. [ 894.027891][ T28] audit: type=1326 audit(1760478474.015:5649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22739 comm="syz.0.6567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 894.046203][T22740] loop0: detected capacity change from 0 to 1024 [ 894.051722][ T28] audit: type=1326 audit(1760478474.015:5650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22739 comm="syz.0.6567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 894.105889][ T28] audit: type=1326 audit(1760478474.025:5651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22739 comm="syz.0.6567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 894.116111][T22740] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 894.131505][ T28] audit: type=1326 audit(1760478474.025:5652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22739 comm="syz.0.6567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 894.224501][ T28] audit: type=1326 audit(1760478474.025:5653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22739 comm="syz.0.6567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 894.253157][ T28] audit: type=1326 audit(1760478474.025:5654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22739 comm="syz.0.6567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 894.275971][ T28] audit: type=1326 audit(1760478474.025:5655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22739 comm="syz.0.6567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f73de38eec9 code=0x7ffc0000 [ 894.298636][ T28] audit: type=1326 audit(1760478474.025:5656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22739 comm="syz.0.6567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f73de38ef03 code=0x7ffc0000 [ 894.322131][ T28] audit: type=1326 audit(1760478474.025:5657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22739 comm="syz.0.6567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f73de38d97f code=0x7ffc0000 [ 894.346424][T22751] netlink: 14 bytes leftover after parsing attributes in process `syz.0.6567'. [ 894.357932][T22751] hsr_slave_0: left promiscuous mode [ 894.368213][T22751] hsr_slave_1: left promiscuous mode [ 894.483666][T17923] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 894.853090][T22763] loop3: detected capacity change from 0 to 128 [ 894.993291][T22765] loop0: detected capacity change from 0 to 1024 [ 895.033667][T22765] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 895.082165][T22769] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6577'. [ 895.178640][T22773] ================================================================== [ 895.186782][T22773] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x94b/0x1e90 [ 895.194531][T22773] Read of size 18446744073709551588 at addr ffff88805e532040 by task syz.0.6576/22773 [ 895.204096][T22773] [ 895.206429][T22773] CPU: 1 PID: 22773 Comm: syz.0.6576 Not tainted syzkaller #0 [ 895.213907][T22773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 895.223989][T22773] Call Trace: [ 895.227285][T22773] [ 895.230266][T22773] dump_stack_lvl+0x16c/0x230 [ 895.234974][T22773] ? read_lock_is_recursive+0x20/0x20 [ 895.240373][T22773] ? show_regs_print_info+0x20/0x20 [ 895.245589][T22773] ? load_image+0x3b0/0x3b0 [ 895.250105][T22773] ? _raw_spin_lock_irqsave+0xb4/0xf0 [ 895.255535][T22773] ? __virt_addr_valid+0x18c/0x540 [ 895.260667][T22773] ? __virt_addr_valid+0x469/0x540 [ 895.265809][T22773] print_report+0xac/0x220 [ 895.270244][T22773] ? ext4_xattr_set_entry+0x94b/0x1e90 [ 895.275726][T22773] kasan_report+0x117/0x150 [ 895.280261][T22773] ? ext4_xattr_set_entry+0x94b/0x1e90 [ 895.285827][T22773] ? ext4_xattr_set_entry+0x94b/0x1e90 [ 895.291297][T22773] kasan_check_range+0x288/0x290 [ 895.296250][T22773] ? ext4_xattr_set_entry+0x94b/0x1e90 [ 895.301721][T22773] __asan_memmove+0x29/0x70 [ 895.306238][T22773] ext4_xattr_set_entry+0x94b/0x1e90 [ 895.311589][T22773] ext4_xattr_block_set+0xae3/0x32a0 [ 895.316896][T22773] ? ext4_destroy_inode+0xe8/0x1b0 [ 895.322038][T22773] ? ext4_destroy_inode+0x1b0/0x1b0 [ 895.327262][T22773] ? proc_nr_inodes+0x230/0x230 [ 895.332225][T22773] ? do_raw_spin_unlock+0x121/0x230 [ 895.337447][T22773] ? _raw_spin_unlock+0x28/0x40 [ 895.342317][T22773] ? ext4_xattr_block_find+0x350/0x350 [ 895.348058][T22773] ? ext4_xattr_ibody_set+0x50d/0x6a0 [ 895.353455][T22773] ext4_xattr_set_handle+0x10a1/0x1290 [ 895.358941][T22773] ? ext4_xattr_inode_free_quota+0x1b0/0x1b0 [ 895.364945][T22773] ? __ext4_journal_start_sb+0x259/0x570 [ 895.370609][T22773] ext4_xattr_set+0x22d/0x320 [ 895.375302][T22773] ? end_current_label_crit_section+0x170/0x170 [ 895.381588][T22773] ? ext4_xattr_set_credits+0x2f0/0x2f0 [ 895.387176][T22773] ? posix_xattr_acl+0x93/0xb0 [ 895.391955][T22773] ? evm_protect_xattr+0x36d/0x7a0 [ 895.397084][T22773] ? ext4_xattr_trusted_get+0x40/0x40 [ 895.402478][T22773] __vfs_setxattr+0x431/0x470 [ 895.407176][T22773] __vfs_setxattr_noperm+0x12d/0x5e0 [ 895.412477][T22773] vfs_setxattr+0x16c/0x2f0 [ 895.416999][T22773] ? xattr_permission+0x470/0x470 [ 895.422031][T22773] ? __mnt_want_write+0x223/0x2a0 [ 895.427187][T22773] ? path_setxattr+0x314/0x550 [ 895.431964][T22773] path_setxattr+0x362/0x550 [ 895.436586][T22773] ? simple_xattrs_free+0x150/0x150 [ 895.441822][T22773] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 895.447823][T22773] ? lock_chain_count+0x20/0x20 [ 895.452682][T22773] ? lock_chain_count+0x20/0x20 [ 895.457546][T22773] __x64_sys_lsetxattr+0xb8/0xd0 [ 895.462498][T22773] do_syscall_64+0x55/0xb0 [ 895.466932][T22773] ? clear_bhb_loop+0x40/0x90 [ 895.471621][T22773] ? clear_bhb_loop+0x40/0x90 [ 895.476312][T22773] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 895.482213][T22773] RIP: 0033:0x7f73de38eec9 [ 895.486641][T22773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 895.506274][T22773] RSP: 002b:00007f73df15a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd [ 895.514708][T22773] RAX: ffffffffffffffda RBX: 00007f73de5e6090 RCX: 00007f73de38eec9 [ 895.522697][T22773] RDX: 0000200000000800 RSI: 0000200000000180 RDI: 00002000000001c0 [ 895.530676][T22773] RBP: 00007f73de411f91 R08: 0000000000000000 R09: 0000000000000000 [ 895.538660][T22773] R10: 0000000000000361 R11: 0000000000000246 R12: 0000000000000000 [ 895.546640][T22773] R13: 00007f73de5e6128 R14: 00007f73de5e6090 R15: 00007fffd9900b28 [ 895.554628][T22773] [ 895.557653][T22773] [ 895.559990][T22773] Allocated by task 22773: [ 895.564404][T22773] kasan_set_track+0x4e/0x70 [ 895.569012][T22773] __kasan_kmalloc+0x8f/0xa0 [ 895.573618][T22773] __kmalloc_node_track_caller+0xb2/0x230 [ 895.579358][T22773] kmemdup+0x2b/0x70 [ 895.583263][T22773] ext4_xattr_block_set+0x9e5/0x32a0 [ 895.588565][T22773] ext4_xattr_set_handle+0x10a1/0x1290 [ 895.594036][T22773] ext4_xattr_set+0x22d/0x320 [ 895.598730][T22773] __vfs_setxattr+0x431/0x470 [ 895.603441][T22773] __vfs_setxattr_noperm+0x12d/0x5e0 [ 895.608743][T22773] vfs_setxattr+0x16c/0x2f0 [ 895.613254][T22773] path_setxattr+0x362/0x550 [ 895.617851][T22773] __x64_sys_lsetxattr+0xb8/0xd0 [ 895.622803][T22773] do_syscall_64+0x55/0xb0 [ 895.627248][T22773] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 895.633168][T22773] [ 895.635503][T22773] Last potentially related work creation: [ 895.641219][T22773] kasan_save_stack+0x3e/0x60 [ 895.645906][T22773] __kasan_record_aux_stack+0xaf/0xc0 [ 895.651302][T22773] call_rcu+0x158/0x930 [ 895.655469][T22773] dev_shutdown+0x34f/0x440 [ 895.659993][T22773] unregister_netdevice_many_notify+0x8d2/0x1810 [ 895.666346][T22773] unregister_netdevice_queue+0x324/0x360 [ 895.672080][T22773] nsim_destroy+0x4d/0x180 [ 895.676517][T22773] __nsim_dev_port_del+0x14d/0x1b0 [ 895.681632][T22773] nsim_dev_reload_destroy+0x283/0x480 [ 895.687103][T22773] nsim_dev_reload_down+0x8a/0xc0 [ 895.692163][T22773] devlink_reload+0x137/0x600 [ 895.696855][T22773] devlink_pernet_pre_exit+0x18a/0x340 [ 895.702340][T22773] cleanup_net+0x57f/0xb90 [ 895.706771][T22773] process_scheduled_works+0xa45/0x15b0 [ 895.712330][T22773] worker_thread+0xa55/0xfc0 [ 895.716931][T22773] kthread+0x2fa/0x390 [ 895.721092][T22773] ret_from_fork+0x48/0x80 [ 895.725551][T22773] ret_from_fork_asm+0x11/0x20 [ 895.730764][T22773] [ 895.733093][T22773] Second to last potentially related work creation: [ 895.739767][T22773] kasan_save_stack+0x3e/0x60 [ 895.744457][T22773] __kasan_record_aux_stack+0xaf/0xc0 [ 895.749845][T22773] kvfree_call_rcu+0xee/0x780 [ 895.754537][T22773] neigh_flush_dev+0x177/0xa80 [ 895.759314][T22773] __neigh_ifdown+0x3d/0x460 [ 895.763921][T22773] neigh_ifdown+0x1f/0x30 [ 895.768301][T22773] rt6_disable_ip+0x730/0x7a0 [ 895.772987][T22773] addrconf_ifdown+0x15e/0x1880 [ 895.777858][T22773] addrconf_notify+0x6c6/0x1010 [ 895.782737][T22773] notifier_call_chain+0x197/0x390 [ 895.787958][T22773] __dev_notify_flags+0x18e/0x2e0 [ 895.793001][T22773] dev_change_flags+0xe8/0x1a0 [ 895.797790][T22773] do_setlink+0xc74/0x3fb0 [ 895.802222][T22773] rtnl_newlink+0x10af/0x2020 [ 895.806915][T22773] rtnetlink_rcv_msg+0x7c7/0xf10 [ 895.811872][T22773] netlink_rcv_skb+0x216/0x480 [ 895.816653][T22773] netlink_unicast+0x751/0x8d0 [ 895.821446][T22773] netlink_sendmsg+0x8c1/0xbe0 [ 895.826225][T22773] ____sys_sendmsg+0x5bf/0x950 [ 895.831004][T22773] ___sys_sendmsg+0x220/0x290 [ 895.835709][T22773] __se_sys_sendmsg+0x1a5/0x270 [ 895.840640][T22773] do_syscall_64+0x55/0xb0 [ 895.845068][T22773] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 895.850970][T22773] [ 895.853298][T22773] The buggy address belongs to the object at ffff88805e532000 [ 895.853298][T22773] which belongs to the cache kmalloc-1k of size 1024 [ 895.867358][T22773] The buggy address is located 64 bytes inside of [ 895.867358][T22773] 1024-byte region [ffff88805e532000, ffff88805e532400) [ 895.880640][T22773] [ 895.882981][T22773] The buggy address belongs to the physical page: [ 895.889409][T22773] page:ffffea0001794c00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5e530 [ 895.899573][T22773] head:ffffea0001794c00 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 895.908512][T22773] flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff) [ 895.916498][T22773] page_type: 0xffffffff() [ 895.920831][T22773] raw: 00fff00000000840 ffff888017841dc0 ffffea0001f5c200 dead000000000002 [ 895.929417][T22773] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000 [ 895.938003][T22773] page dumped because: kasan: bad access detected [ 895.944415][T22773] page_owner tracks the page as allocated [ 895.950217][T22773] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5783, tgid 5783 (syz-executor), ts 91464177546, free_ts 28256540398 [ 895.971069][T22773] post_alloc_hook+0x1cd/0x210 [ 895.975853][T22773] get_page_from_freelist+0x195c/0x19f0 [ 895.981414][T22773] __alloc_pages+0x1e3/0x460 [ 895.986020][T22773] alloc_slab_page+0x5d/0x170 [ 895.990715][T22773] new_slab+0x87/0x2e0 [ 895.994827][T22773] ___slab_alloc+0xc6d/0x1300 [ 895.999520][T22773] __kmem_cache_alloc_node+0x1a2/0x260 [ 896.005012][T22773] __kmalloc_node_track_caller+0xa2/0x230 [ 896.010745][T22773] kmalloc_reserve+0x117/0x260 [ 896.015524][T22773] __alloc_skb+0x138/0x2c0 [ 896.019953][T22773] inet6_rt_notify+0xb4/0x240 [ 896.024734][T22773] fib6_add+0x1d9a/0x3d20 [ 896.029076][T22773] ip6_route_add+0x8a/0x130 [ 896.033584][T22773] addrconf_add_dev+0x257/0x340 [ 896.038449][T22773] addrconf_init_auto_addrs+0x5cc/0xaa0 [ 896.044185][T22773] addrconf_notify+0xb62/0x1010 [ 896.049050][T22773] page last free stack trace: [ 896.053736][T22773] free_unref_page_prepare+0x7ce/0x8e0 [ 896.059229][T22773] free_unref_page+0x32/0x2e0 [ 896.063936][T22773] free_contig_range+0xa1/0x160 [ 896.068803][T22773] destroy_args+0x80/0x850 [ 896.073328][T22773] debug_vm_pgtable+0x3cc/0x410 [ 896.078189][T22773] do_one_initcall+0x1fd/0x750 [ 896.082986][T22773] do_initcall_level+0x137/0x1f0 [ 896.087938][T22773] do_initcalls+0x69/0xd0 [ 896.092278][T22773] kernel_init_freeable+0x3d2/0x570 [ 896.097492][T22773] kernel_init+0x1d/0x1c0 [ 896.101835][T22773] ret_from_fork+0x48/0x80 [ 896.106299][T22773] ret_from_fork_asm+0x11/0x20 [ 896.111078][T22773] [ 896.113409][T22773] Memory state around the buggy address: [ 896.119068][T22773] ffff88805e531f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 896.127846][T22773] ffff88805e531f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 896.135915][T22773] >ffff88805e532000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 896.143982][T22773] ^ [ 896.150143][T22773] ffff88805e532080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 896.158210][T22773] ffff88805e532100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 896.166277][T22773] ================================================================== [ 896.195655][T22773] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 896.202913][T22773] CPU: 0 PID: 22773 Comm: syz.0.6576 Not tainted syzkaller #0 [ 896.210836][T22773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 896.220924][T22773] Call Trace: [ 896.224230][T22773] [ 896.227192][T22773] dump_stack_lvl+0x16c/0x230 [ 896.231905][T22773] ? show_regs_print_info+0x20/0x20 [ 896.237223][T22773] ? load_image+0x3b0/0x3b0 [ 896.241768][T22773] panic+0x2c0/0x710 [ 896.245694][T22773] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 896.251889][T22773] ? bpf_jit_dump+0xd0/0xd0 [ 896.256423][T22773] ? _raw_spin_unlock_irqrestore+0xfa/0x110 [ 896.262335][T22773] ? _raw_spin_unlock+0x40/0x40 [ 896.267207][T22773] ? ext4_xattr_set_entry+0x94b/0x1e90 [ 896.272690][T22773] check_panic_on_warn+0x84/0xa0 [ 896.277646][T22773] ? ext4_xattr_set_entry+0x94b/0x1e90 [ 896.283123][T22773] end_report+0x6f/0x140 [ 896.287389][T22773] kasan_report+0x128/0x150 [ 896.291925][T22773] ? ext4_xattr_set_entry+0x94b/0x1e90 [ 896.297427][T22773] ? ext4_xattr_set_entry+0x94b/0x1e90 [ 896.303004][T22773] kasan_check_range+0x288/0x290 [ 896.307965][T22773] ? ext4_xattr_set_entry+0x94b/0x1e90 [ 896.313446][T22773] __asan_memmove+0x29/0x70 [ 896.317968][T22773] ext4_xattr_set_entry+0x94b/0x1e90 [ 896.323285][T22773] ext4_xattr_block_set+0xae3/0x32a0 [ 896.328586][T22773] ? ext4_destroy_inode+0xe8/0x1b0 [ 896.333714][T22773] ? ext4_destroy_inode+0x1b0/0x1b0 [ 896.338923][T22773] ? proc_nr_inodes+0x230/0x230 [ 896.343792][T22773] ? do_raw_spin_unlock+0x121/0x230 [ 896.349002][T22773] ? _raw_spin_unlock+0x28/0x40 [ 896.353861][T22773] ? ext4_xattr_block_find+0x350/0x350 [ 896.359432][T22773] ? ext4_xattr_ibody_set+0x50d/0x6a0 [ 896.364820][T22773] ext4_xattr_set_handle+0x10a1/0x1290 [ 896.370474][T22773] ? ext4_xattr_inode_free_quota+0x1b0/0x1b0 [ 896.376476][T22773] ? __ext4_journal_start_sb+0x259/0x570 [ 896.382126][T22773] ext4_xattr_set+0x22d/0x320 [ 896.386834][T22773] ? end_current_label_crit_section+0x170/0x170 [ 896.393094][T22773] ? ext4_xattr_set_credits+0x2f0/0x2f0 [ 896.398747][T22773] ? posix_xattr_acl+0x93/0xb0 [ 896.403528][T22773] ? evm_protect_xattr+0x36d/0x7a0 [ 896.408656][T22773] ? ext4_xattr_trusted_get+0x40/0x40 [ 896.414050][T22773] __vfs_setxattr+0x431/0x470 [ 896.418744][T22773] __vfs_setxattr_noperm+0x12d/0x5e0 [ 896.424045][T22773] vfs_setxattr+0x16c/0x2f0 [ 896.429172][T22773] ? xattr_permission+0x470/0x470 [ 896.434224][T22773] ? __mnt_want_write+0x223/0x2a0 [ 896.439265][T22773] ? path_setxattr+0x314/0x550 [ 896.444042][T22773] path_setxattr+0x362/0x550 [ 896.448648][T22773] ? simple_xattrs_free+0x150/0x150 [ 896.453873][T22773] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 896.459878][T22773] ? lock_chain_count+0x20/0x20 [ 896.464738][T22773] ? lock_chain_count+0x20/0x20 [ 896.469601][T22773] __x64_sys_lsetxattr+0xb8/0xd0 [ 896.474553][T22773] do_syscall_64+0x55/0xb0 [ 896.478982][T22773] ? clear_bhb_loop+0x40/0x90 [ 896.483664][T22773] ? clear_bhb_loop+0x40/0x90 [ 896.488359][T22773] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 896.494273][T22773] RIP: 0033:0x7f73de38eec9 [ 896.498698][T22773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 896.518326][T22773] RSP: 002b:00007f73df15a038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd [ 896.526756][T22773] RAX: ffffffffffffffda RBX: 00007f73de5e6090 RCX: 00007f73de38eec9 [ 896.534910][T22773] RDX: 0000200000000800 RSI: 0000200000000180 RDI: 00002000000001c0 [ 896.542890][T22773] RBP: 00007f73de411f91 R08: 0000000000000000 R09: 0000000000000000 [ 896.550871][T22773] R10: 0000000000000361 R11: 0000000000000246 R12: 0000000000000000 [ 896.559202][T22773] R13: 00007f73de5e6128 R14: 00007f73de5e6090 R15: 00007fffd9900b28 [ 896.567280][T22773] [ 896.570545][T22773] Kernel Offset: disabled [ 896.574876][T22773] Rebooting in 86400 seconds..