last executing test programs: 3.359864439s ago: executing program 0 (id=813): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000008000000005"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xd, &(0x7f0000001a00)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401) ioctl$USBDEVFS_FREE_STREAMS(r2, 0x8008551d, &(0x7f0000000140)=ANY=[@ANYBLOB="0000000001"]) 2.532693622s ago: executing program 4 (id=817): r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000000000)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x80002, 0x25dfdbfe, {0x0, 0x0, 0x0, r1, {0x0, 0xf}, {0xffff, 0xffff}, {0x0, 0xa}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002, [@TCA_FQ_PIE_QUANTUM={0x8, 0x7, 0x2}]}}]}, 0x3c}}, 0x2000400c) 2.479886012s ago: executing program 0 (id=818): bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='block_bio_remap\x00', r1}, 0x10) quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0) 2.352448734s ago: executing program 1 (id=820): r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00') ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000083c0)={{0x1}}) readv(r0, &(0x7f0000000240)=[{&(0x7f0000002580)=""/4096, 0x1000}], 0x1) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2) 2.247375116s ago: executing program 4 (id=821): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10) r2 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) r3 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) flock(r3, 0x1) close_range(r2, 0xffffffffffffffff, 0x0) 2.246475546s ago: executing program 0 (id=822): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00'}, 0x10) r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) syz_usbip_server_init(0x4) syz_usbip_server_init(0x1) syz_usbip_server_init(0x0) syz_usbip_server_init(0x4) syz_usbip_server_init(0x2) syz_usbip_server_init(0x0) syz_usbip_server_init(0x0) syz_usbip_server_init(0x3) bind$802154_raw(r0, &(0x7f0000000040)={0x24, @long={0x3, 0xffff, {0xaaaaaaaaaaaa0002}}}, 0x14) write(r0, &(0x7f0000000080)="6a63a288b13aa2ccfd6d7635273d5cb28dbdeefc74c20cbfdf8de260d2e687b7d273de976902a1f34e7707198fbfd04a7fa67d62bee27f9cdc2ba7c499", 0x3d) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000040)) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000030000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0xd, 0x4, 0x4, 0x40000009, 0x0, r1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) 2.091780658s ago: executing program 2 (id=823): symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00') r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x9, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r2, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x8fff5], 0x0, 0x0, 0x1f, 0x1}}, 0x3c) 2.091265768s ago: executing program 1 (id=824): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10) sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x2c, r1, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20048881}, 0x2000c800) 2.090885288s ago: executing program 3 (id=825): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x8000}, 0x18) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x14) close(r1) 2.090275908s ago: executing program 4 (id=826): setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x5}]}, 0xfe6c) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000200000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0xc59675d6409bfaec, 0x50, '\x00', 0x0, @fallback=0x9bb4de75d30699c4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='kmem_cache_free\x00', r2}, 0x18) mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x44000) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000004, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r5}, 0x10) sendto$inet6(r3, &(0x7f0000000500)="a4", 0x34000, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) syz_io_uring_setup(0x234, &(0x7f0000000580)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=0x0, &(0x7f0000000100)) syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x6296, 0x8, 0x0, 0x334}, &(0x7f00000002c0)=0x0, &(0x7f0000000080)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r8, r9, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc}) r10 = syz_open_dev$vcsu(&(0x7f0000000000), 0x2985c00, 0x109000) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r7, r9, &(0x7f0000000280)=@IORING_OP_SYMLINKAT={0x26, 0x69, 0x0, r10, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, {0x0, r11}}) r12 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0xaf}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r12}, 0x10) r13 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYRES64=r6], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r13}, 0x10) r14 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r14, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x3, 0x0, 0x3, 0xc, 0x0, 0x700, 0x0, [@sadb_key={0x2, 0x9, 0x8, 0x0, "e9"}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @private}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0xd}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev}}]}, 0x60}, 0x1, 0x7}, 0x0) 1.872425322s ago: executing program 2 (id=827): socket$nl_netfilter(0x10, 0x3, 0xc) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000000000500150004000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r2}, &(0x7f0000000000), &(0x7f00000005c0)=r3}, 0x20) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000010c0)='/proc/bus/input/devices\x00', 0x0, 0x0) preadv(r4, &(0x7f0000000000)=[{&(0x7f0000000080)=""/4094, 0xbd}], 0x1, 0x33, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffe}, 0x18) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_DESTROY(r5, &(0x7f0000000240)={0x0, 0xffac, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="28000000030605000000000000000000000000000500010007"], 0x28}}, 0x0) 1.842755842s ago: executing program 1 (id=828): bpf$MAP_CREATE(0x0, 0x0, 0x48) socket$nl_netfilter(0x10, 0x3, 0xc) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) socket$netlink(0x10, 0x3, 0x15) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r0}, 0x10) ioctl$TIOCSCTTY(0xffffffffffffffff, 0x540e, 0xcb) r4 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0202000311000000000000000000000005000500000000000a00000000000000fe8000000000000000000000000000bb000000000000000002000100000007000000000b000000000200090000000000000000000000000005000600000000000a00000000000000fe8800000000000000000000000000010000000000000000010018"], 0x88}}, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000080)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x7}}, {@noload}, {@acl}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x783, &(0x7f0000001000)="$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") chdir(&(0x7f0000000240)='./file0\x00') syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x802053, 0x0, 0xfc, 0x0, &(0x7f00000000c0)) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00'}, 0x10) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0) 1.795954373s ago: executing program 3 (id=829): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]}) acct(0xfffffffffffffffe) 1.594641606s ago: executing program 2 (id=830): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000300)=ANY=[@ANYBLOB="340000001900150000000000fedbdf250a0000003b0020c0e3c600001800098014"], 0x34}], 0x1}, 0x0) 1.486459247s ago: executing program 3 (id=831): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x70, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0xffffffe1, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3e, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x7e06}, 0x18) pivot_root(&(0x7f0000000280)='.\x00', &(0x7f00000002c0)='./file0\x00') 674.64279ms ago: executing program 1 (id=832): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000001fc0)='./file0\x00', &(0x7f0000002000)='devtmpfs\x00', 0x0, &(0x7f0000002040)='dirsync') 607.693361ms ago: executing program 4 (id=833): bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='block_bio_remap\x00', r1}, 0x10) quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0) 607.139501ms ago: executing program 0 (id=834): r0 = socket$inet_sctp(0x2, 0x5, 0x84) sendmsg$inet_sctp(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000040)="6894e6", 0x3}], 0x1, &(0x7f0000000380)=[@sndinfo={0x20, 0x84, 0x2, {0x3ff, 0x20a, 0x0, 0x1}}], 0x20, 0x40000}, 0x8000) 595.695701ms ago: executing program 2 (id=835): socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000042c0)="86", 0x1}], 0x1}, 0x0) sendmsg$tipc(r1, &(0x7f0000002700)={0x0, 0x0, 0x0}, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10) recvmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1}, 0x0) 580.475261ms ago: executing program 3 (id=836): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = syz_open_dev$usbfs(&(0x7f0000000000), 0x200, 0x102) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, r1, 0x10000000) 444.347973ms ago: executing program 0 (id=837): r0 = syz_io_uring_setup(0x24f9, &(0x7f00000004c0)={0x0, 0xee6d, 0x10000, 0x1, 0xfffefffe}, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bf"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}) io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0) 367.828864ms ago: executing program 2 (id=838): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0) write$UHID_INPUT(r0, &(0x7f0000000940)={0x8, {"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", 0x1000}}, 0xc34) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x7c}}, 0x4004110) 367.367804ms ago: executing program 4 (id=839): prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='w\xde\xa3\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98<\xc8\x18E/\x8c\x1a\xe3\xbd') r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x4e, &(0x7f0000000040)=0x75, 0x4) r1 = dup(r0) bind$unix(r1, &(0x7f00000001c0)=@abs={0xa, 0x2}, 0x6e) getsockname$packet(r1, 0x0, &(0x7f0000000680)) 299.419526ms ago: executing program 3 (id=840): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='setgroups\x00') r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x2}, 0x1c) close_range(r0, 0xffffffffffffffff, 0x0) 298.908886ms ago: executing program 1 (id=841): socket$nl_netfilter(0x10, 0x3, 0xc) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000000000500150004000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r2}, &(0x7f0000000000), &(0x7f00000005c0)=r3}, 0x20) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000010c0)='/proc/bus/input/devices\x00', 0x0, 0x0) preadv(r4, &(0x7f0000000000)=[{&(0x7f0000000080)=""/4094, 0xbd}], 0x1, 0x33, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffe}, 0x18) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_DESTROY(r5, &(0x7f0000000240)={0x0, 0xffac, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="28000000030605000000000000000000000000000500010007"], 0x28}}, 0x0) 244.965126ms ago: executing program 0 (id=842): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r1}, 0x10) r2 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0x45c, 0x24, 0xd0f, 0x70bd2d, 0xfffffffd, {0x60, 0x0, 0x0, r3, {0x0, 0x7}, {0xffff, 0xffff}, {0xfff3, 0xc}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_RTAB={0x404, 0x2, [0x9, 0x45, 0x3ff, 0x10000, 0x3, 0x8, 0x4, 0xa0002, 0x5, 0x36, 0x59bc9fd6, 0x2, 0x2, 0x8000, 0x8, 0x4, 0x8, 0x2, 0x114b5ffc, 0xfffffffb, 0x2a70, 0xffff73d0, 0x81, 0x5, 0x0, 0xa, 0x45, 0x0, 0x8, 0x5, 0xba44, 0x3, 0x60b, 0x80000000, 0x7, 0x4, 0x5, 0x3, 0xffff, 0x3, 0xfffffff8, 0x4, 0x6, 0x1a0055ee, 0x1, 0x1, 0xffff4226, 0x6, 0x0, 0x5, 0x101, 0x4, 0x1, 0x2, 0x800, 0xf9, 0x400, 0x9, 0x2, 0x8, 0x2f, 0xfffffff8, 0x0, 0x101, 0x9, 0x7, 0x0, 0x5, 0x5, 0x0, 0x6, 0x2, 0x5, 0x5, 0x2, 0x9b58, 0x5, 0xb, 0x4be, 0xe, 0xef, 0xa, 0x7, 0x9fa7, 0xfffeffff, 0x38, 0x400004, 0x0, 0x9, 0x44d, 0x6, 0x200, 0x8, 0xfffffff5, 0x7, 0x45, 0x3, 0x9, 0x0, 0x7, 0x6, 0x9, 0x3, 0x7, 0x4, 0x6, 0x7, 0x8002, 0x7, 0x7, 0x7, 0xc3c, 0x3, 0x28000000, 0x8, 0x30c7, 0xfad, 0x7, 0x8, 0x2, 0x5, 0x10, 0x401, 0xa97, 0x3, 0x422dd3f4, 0x4, 0x8, 0x200, 0x8, 0x10000, 0x8c1, 0x0, 0x45ba, 0x9, 0x864b, 0x0, 0x7, 0x9, 0x1, 0x0, 0x81, 0x3, 0x800, 0x1ff, 0xffffff80, 0x41, 0xc22, 0x1, 0x6, 0x9, 0x9, 0x7fffffff, 0x2, 0xfff, 0x6, 0xfffffffd, 0x7c1, 0x136, 0x6, 0x5, 0x9, 0x3ff, 0x4, 0xb, 0xfffffffe, 0x10001, 0x0, 0x5, 0x3, 0x404, 0x101, 0xffffffff, 0x1b, 0xd589, 0xffffff81, 0xffff0001, 0x4, 0x0, 0x300, 0x8, 0x60000000, 0xd39, 0x0, 0xfffffffe, 0x0, 0x4, 0x2, 0x400055, 0x4000004, 0xbc6, 0x2, 0x8, 0x28e6a54, 0x1ff, 0xb, 0x7fff, 0x9, 0x2e4c20b9, 0xb, 0x4, 0x9, 0x7, 0x4, 0x8, 0x3, 0x2, 0x180000, 0x3, 0x7, 0x4, 0x9, 0x8, 0xfffffffa, 0x76e8e800, 0x800, 0x400, 0x6, 0x0, 0xcc6, 0xfffffffb, 0x8000, 0xffffff00, 0x894, 0x7, 0xe, 0x6, 0x4, 0x2, 0x6, 0x10001, 0x9, 0x4, 0x8, 0x5c, 0x1000000, 0x7, 0x1, 0x8, 0x7ffffffd, 0x384, 0x9, 0x58a, 0x80000000, 0xe08, 0x0, 0x1, 0x2c821159, 0x0, 0x9, 0x7, 0x0, 0x6, 0x0, 0x7f]}, @TCA_TBF_PARMS={0x28, 0x1, {{0x6, 0x0, 0x2, 0x8, 0x0, 0xc}, {0xfe, 0x1, 0x6, 0x5, 0x5e1d, 0x8}, 0x3ff, 0xa0, 0x99}}]}}]}, 0x45c}, 0x1, 0x0, 0x0, 0x4000050}, 0x20008840) 192.289387ms ago: executing program 4 (id=843): bpf$MAP_CREATE(0x0, 0x0, 0x48) socket$nl_netfilter(0x10, 0x3, 0xc) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) socket$netlink(0x10, 0x3, 0x15) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r0}, 0x10) ioctl$TIOCSCTTY(0xffffffffffffffff, 0x540e, 0xcb) r4 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0202000311000000000000000000000005000500000000000a00000000000000fe8000000000000000000000000000bb000000000000000002000100000007000000000b000000000200090000000000000000000000000005000600000000000a00000000000000fe8800000000000000000000000000010000000000000000010018"], 0x88}}, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000080)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x7}}, {@noload}, {@acl}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x783, &(0x7f0000001000)="$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") chdir(&(0x7f0000000240)='./file0\x00') syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x802053, 0x0, 0xfc, 0x0, &(0x7f00000000c0)) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00'}, 0x10) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x0) 111.845288ms ago: executing program 2 (id=844): r0 = socket$kcm(0x2b, 0x1, 0x0) close(r0) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) sendmmsg$inet6(r1, &(0x7f0000000b40)=[{{&(0x7f00000000c0)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c, &(0x7f0000001900)=[{&(0x7f0000000240)="ad", 0x1}], 0x1}}], 0x1, 0x4000000) r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r3}, 0x10) close(r0) 91.753199ms ago: executing program 3 (id=845): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) socket$igmp(0x2, 0x3, 0x2) io_uring_enter(0xffffffffffffffff, 0x47f6, 0x0, 0x0, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, 0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000680)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10) r3 = socket$tipc(0x1e, 0x5, 0x0) setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10) r4 = socket$tipc(0x1e, 0x5, 0x0) socket$inet_udp(0x2, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10) sendmsg$tipc(r4, &(0x7f0000000280)={&(0x7f0000000040), 0x10, 0x0}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) 0s ago: executing program 1 (id=846): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="6000000002060103000000000000000000000004050001000700000013000300686173683a6e65742c696661636500000900020073797a30000000000500040000000000050005000a00000014000780050015000000000008001240"], 0x60}}, 0x0) sendmsg$IPSET_CMD_DESTROY(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000000030601c59cc3bf57b43db300000000000500010007"], 0x1c}}, 0x0) kernel console output (not intermixed with test programs): mode [ 67.224206][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 67.243560][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 67.252051][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 67.261684][ T4256] device veth0_vlan entered promiscuous mode [ 67.275865][ T4257] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 67.298426][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 67.311632][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 67.328280][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 67.337827][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 67.355380][ T4257] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 67.376457][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 67.385720][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 67.395052][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 67.418402][ T4256] device veth1_vlan entered promiscuous mode [ 67.434160][ T4257] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.449213][ T4257] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.461814][ T4257] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.476916][ T4257] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.491561][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 67.502043][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 67.509877][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 67.521323][ T4263] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 67.559860][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 67.569942][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 67.580333][ T4267] device veth0_macvtap entered promiscuous mode [ 67.626234][ T4267] device veth1_macvtap entered promiscuous mode [ 67.646681][ T4256] device veth0_macvtap entered promiscuous mode [ 67.654568][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 67.663029][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 67.671686][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 67.680546][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 67.690750][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 67.699593][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 67.708738][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 67.717387][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 67.725815][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 67.734624][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 67.743763][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 67.752215][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 67.760216][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 67.769074][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 67.794083][ T4262] device veth0_vlan entered promiscuous mode [ 67.816669][ T4262] device veth1_vlan entered promiscuous mode [ 67.826197][ T4256] device veth1_macvtap entered promiscuous mode [ 67.845467][ T4267] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 67.858644][ T4267] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 67.870091][ T4267] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 67.880718][ T4267] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 67.891668][ T4267] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 67.905193][ T4267] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 67.926792][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 67.936108][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 67.945176][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 67.954034][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 67.962371][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 67.971681][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 67.980418][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 67.988706][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 68.004731][ T4256] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 68.017198][ T4256] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.027621][ T4256] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 68.038824][ T4256] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.050638][ T4256] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 68.059256][ T4267] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.068434][ T4267] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.077321][ T4267] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.087403][ T4267] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.103894][ T4321] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.111982][ T4321] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.119391][ T4263] device veth0_vlan entered promiscuous mode [ 68.132437][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 68.143459][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 68.152138][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 68.162289][ T4256] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 68.174547][ T4256] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.185307][ T4256] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 68.195777][ T4256] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.207587][ T4256] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 68.231182][ T4263] device veth1_vlan entered promiscuous mode [ 68.241237][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 68.249020][ T48] Bluetooth: hci2: command 0x040f tx timeout [ 68.249056][ T48] Bluetooth: hci4: command 0x040f tx timeout [ 68.249085][ T48] Bluetooth: hci0: command 0x040f tx timeout [ 68.253596][ T4275] Bluetooth: hci1: command 0x040f tx timeout [ 68.256571][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 68.261248][ T4275] Bluetooth: hci3: command 0x040f tx timeout [ 68.268071][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 68.296904][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 68.305893][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 68.317304][ T4256] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.328363][ T4256] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.337551][ T4256] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.346470][ T4256] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.358534][ T4262] device veth0_macvtap entered promiscuous mode [ 68.390349][ T4262] device veth1_macvtap entered promiscuous mode [ 68.417663][ T4321] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.428611][ T4321] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.457898][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 68.467406][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 68.481127][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 68.489835][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 68.506895][ T4262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 68.519507][ T4262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.530228][ T4262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 68.540756][ T4262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.550716][ T4262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 68.561230][ T4262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.575019][ T4262] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 68.593776][ T4262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 68.605054][ T4262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.615910][ T4262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 68.626566][ T4262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.636968][ T4262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 68.648555][ T4262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.665310][ T4262] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 68.686670][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 68.700183][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 68.709774][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 68.718731][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 68.728993][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 68.737860][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 68.753136][ T4262] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.761857][ T4262] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.770764][ T4262] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.779691][ T4262] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.800580][ T4263] device veth0_macvtap entered promiscuous mode [ 68.811538][ T4263] device veth1_macvtap entered promiscuous mode [ 68.874476][ T4310] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.882479][ T4310] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.907701][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 68.916691][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 68.998448][ T4263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 69.018287][ T4263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.030542][ T4263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 69.042448][ T4263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.053403][ T4263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 69.075519][ T4263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.085732][ T4263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 69.096519][ T4263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.108048][ T4263] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 69.120780][ T4310] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.123065][ T4263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 69.145533][ T4310] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.154839][ T4263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.165289][ T4263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 69.177180][ T4263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.187526][ T4263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 69.199467][ T4263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.211930][ T4263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 69.222742][ T4263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.234635][ T4263] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 69.256762][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 69.266476][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 69.275379][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 69.290844][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 69.300902][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 69.335329][ T4263] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.346250][ T4321] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.352937][ T4263] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.355452][ T4321] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.373177][ T4263] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.381929][ T4263] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.417745][ T4321] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 69.452701][ T4289] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.468610][ T4289] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.511537][ T4321] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.521751][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 69.530520][ T4321] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.570361][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.589144][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.620129][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 69.633520][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 69.668233][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.683994][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.713778][ T4289] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 69.745715][ T4349] loop3: detected capacity change from 0 to 512 [ 69.771957][ T4289] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.808615][ T4289] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.837334][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 69.875277][ T4349] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 69.884498][ T4349] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 69.931775][ T4358] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 69.966455][ T4358] infiniband s9z1: RDMA CMA: cma_listen_on_dev, error -98 [ 70.015636][ T4359] EXT4-fs (loop3): shut down requested (0) [ 70.049380][ T4361] netlink: 1196 bytes leftover after parsing attributes in process `syz.0.1'. [ 70.257149][ T4365] netlink: 4 bytes leftover after parsing attributes in process `syz.2.9'. [ 70.284617][ T4365] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 70.293809][ T4365] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 70.303143][ T4365] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 70.311618][ T4365] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 70.324887][ T4275] Bluetooth: hci3: command 0x0419 tx timeout [ 70.330970][ T4275] Bluetooth: hci1: command 0x0419 tx timeout [ 70.332934][ T48] Bluetooth: hci4: command 0x0419 tx timeout [ 70.338345][ T4275] Bluetooth: hci2: command 0x0419 tx timeout [ 70.567233][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 70.693576][ T4375] loop4: detected capacity change from 0 to 512 [ 70.709567][ T4375] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 70.736233][ T4375] EXT4-fs (loop4): invalid journal inode [ 70.754443][ T4375] EXT4-fs (loop4): can't get journal size [ 70.774709][ T4380] loop3: detected capacity change from 0 to 1024 [ 70.789644][ T4380] ======================================================= [ 70.789644][ T4380] WARNING: The mand mount option has been deprecated and [ 70.789644][ T4380] and is ignored by this kernel. Remove the mand [ 70.789644][ T4380] option from the mount to silence this warning. [ 70.789644][ T4380] ======================================================= [ 70.834431][ T4380] EXT4-fs: Ignoring removed nobh option [ 70.838511][ T4375] EXT4-fs (loop4): 1 truncate cleaned up [ 70.840017][ T4380] EXT4-fs: Ignoring removed bh option [ 70.840636][ T4380] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 70.867291][ T4375] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 70.928757][ T4380] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 70.948258][ T4378] infiniband syz0: set active [ 70.954511][ T4378] infiniband syz0: added bond0 [ 71.127029][ T1271] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.134522][ T1271] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.144804][ T4367] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 71.159690][ T4389] 9pnet_fd: Insufficient options for proto=fd [ 71.162022][ T4378] RDS/IB: syz0: added [ 71.173486][ T4378] smc: adding ib device syz0 with port count 1 [ 71.179842][ T4378] smc: ib device syz0 port 1 has pnetid [ 71.262767][ T4307] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 71.427497][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 71.465636][ T4395] netlink: 1196 bytes leftover after parsing attributes in process `syz.2.19'. [ 71.472936][ T4307] usb 4-1: device descriptor read/64, error -71 [ 71.524963][ T4396] loop1: detected capacity change from 0 to 128 [ 71.742956][ T4307] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 71.836066][ T4406] loop4: detected capacity change from 0 to 512 [ 71.906792][ T4307] usb 4-1: device descriptor read/64, error -71 [ 72.014202][ T4406] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 72.036897][ T4406] ext4 filesystem being mounted at /4/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 72.052952][ T4307] usb usb4-port1: attempt power cycle [ 72.181306][ T4415] loop2: detected capacity change from 0 to 2048 [ 72.283442][ T4416] EXT4-fs (loop4): shut down requested (0) [ 72.339551][ T4415] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 72.353086][ T4415] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 72.472864][ T4307] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 72.514088][ T4307] usb 4-1: device descriptor read/8, error -71 [ 72.701053][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 72.757867][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 72.832888][ T4307] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 72.875319][ T4307] usb 4-1: device descriptor read/8, error -71 [ 72.913454][ T4431] netlink: 4 bytes leftover after parsing attributes in process `syz.1.27'. [ 72.922800][ T4431] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 72.930823][ T4431] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 72.944097][ T4431] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 72.951844][ T4431] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 72.999889][ T4435] device ip6gretap0 entered promiscuous mode [ 73.006304][ T4435] device vlan2 entered promiscuous mode [ 73.013354][ T4307] usb usb4-port1: unable to enumerate USB device [ 73.020481][ T4435] device ip6gretap0 left promiscuous mode [ 73.197980][ T4438] loop2: detected capacity change from 0 to 512 [ 73.214146][ T4438] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 73.244635][ T4438] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e12c, mo2=0002] [ 73.254051][ T4438] EXT4-fs (loop2): orphan cleanup on readonly fs [ 73.261637][ T4438] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.30: bg 0: block 361: padding at end of block bitmap is not set [ 73.290715][ T4438] EXT4-fs (loop2): Remounting filesystem read-only [ 73.302997][ T4438] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 73.314824][ T4438] EXT4-fs (loop2): Remounting filesystem read-only [ 73.321529][ T4438] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #11: comm syz.2.30: attempt to clear invalid blocks 33619980 len 1 [ 73.335542][ T4438] EXT4-fs (loop2): Remounting filesystem read-only [ 73.347739][ T4438] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.30: invalid indirect mapped block 1811939328 (level 0) [ 73.362372][ T4438] EXT4-fs (loop2): Remounting filesystem read-only [ 73.374736][ T4438] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.30: invalid indirect mapped block 2185560079 (level 1) [ 73.394912][ T4438] EXT4-fs (loop2): Remounting filesystem read-only [ 73.414942][ T4446] netlink: 1196 bytes leftover after parsing attributes in process `syz.1.33'. [ 73.418310][ T4438] EXT4-fs (loop2): 1 truncate cleaned up [ 73.434939][ T4438] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 73.512223][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 73.733904][ T4433] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 73.865428][ T4460] capability: warning: `syz.1.39' uses deprecated v2 capabilities in a way that may be insecure [ 73.890812][ T4460] loop1: detected capacity change from 0 to 512 [ 74.158815][ T4462] loop0: detected capacity change from 0 to 2048 [ 74.296370][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 74.472569][ T4462] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 74.512732][ T4462] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 74.761615][ T4476] loop2: detected capacity change from 0 to 512 [ 74.799177][ T4263] EXT4-fs (loop0): unmounting filesystem. [ 74.862531][ T4476] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 74.906973][ T4487] netlink: 4 bytes leftover after parsing attributes in process `syz.0.43'. [ 74.915938][ T4487] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 74.925489][ T4487] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 74.934092][ T4476] ext4 filesystem being mounted at /8/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 74.945861][ T4487] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 74.983033][ T4487] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 75.096849][ T4492] loop3: detected capacity change from 0 to 164 [ 75.108917][ T4492] Unable to read rock-ridge attributes [ 75.407603][ T4494] EXT4-fs (loop2): shut down requested (0) [ 75.805131][ T4492] Unable to read rock-ridge attributes [ 75.942779][ T4492] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 76.074757][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 76.503579][ T4521] loop0: detected capacity change from 0 to 512 [ 76.583924][ T4521] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 76.605154][ T4521] ext4 filesystem being mounted at /10/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 76.739203][ T4529] EXT4-fs (loop0): shut down requested (0) [ 77.283598][ T4520] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 77.328807][ T4263] EXT4-fs (loop0): unmounting filesystem. [ 77.377766][ T4532] rdma_rxe: rxe_register_device failed with error -23 [ 77.399165][ T4532] rdma_rxe: failed to add bond0 [ 77.441659][ T4532] loop1: detected capacity change from 0 to 1024 [ 77.495667][ T4532] EXT4-fs: Ignoring removed nobh option [ 77.513386][ T4532] EXT4-fs: Ignoring removed bh option [ 77.537258][ T4537] loop0: detected capacity change from 0 to 2048 [ 77.557524][ T4532] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 77.586691][ T4532] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 77.646730][ T4537] Alternate GPT is invalid, using primary GPT. [ 77.653417][ T4537] loop0: p1 p2 p3 [ 77.904607][ T4546] loop2: detected capacity change from 0 to 2048 [ 78.002927][ T4307] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 78.202960][ T4307] usb 2-1: device descriptor read/64, error -71 [ 78.482814][ T4307] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 78.514815][ T4546] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 78.533753][ T4542] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 78.568728][ T26] audit: type=1326 audit(1742677874.734:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4551 comm="syz.0.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 78.647652][ T4250] udevd[4250]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory [ 78.659780][ T4248] udevd[4248]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory [ 78.666356][ T4503] udevd[4503]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 78.669756][ T4307] usb 2-1: device descriptor read/64, error -71 [ 78.685851][ T26] audit: type=1326 audit(1742677874.764:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4551 comm="syz.0.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 78.787837][ T26] audit: type=1326 audit(1742677874.764:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4551 comm="syz.0.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 78.831473][ T26] audit: type=1326 audit(1742677874.764:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4551 comm="syz.0.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 78.832461][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 78.864506][ T4307] usb usb2-port1: attempt power cycle [ 78.872171][ T26] audit: type=1326 audit(1742677874.764:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4551 comm="syz.0.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 78.902144][ T4250] udevd[4250]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory [ 78.915184][ T4248] udevd[4248]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory [ 78.922134][ T26] audit: type=1326 audit(1742677874.764:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4551 comm="syz.0.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 78.934548][ T4503] udevd[4503]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 79.017615][ T26] audit: type=1326 audit(1742677874.764:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4551 comm="syz.0.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 79.117716][ T4562] netlink: 64 bytes leftover after parsing attributes in process `syz.4.60'. [ 79.124025][ T26] audit: type=1326 audit(1742677874.764:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4551 comm="syz.0.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 79.190701][ T4568] loop3: detected capacity change from 0 to 512 [ 79.200313][ T26] audit: type=1326 audit(1742677874.764:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4551 comm="syz.0.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 79.233869][ T4568] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 79.263281][ T26] audit: type=1326 audit(1742677874.764:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4551 comm="syz.0.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 79.285970][ T4568] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 79.328924][ T4568] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2809: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 79.344849][ T4307] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 79.359327][ T4568] EXT4-fs (loop3): 1 truncate cleaned up [ 79.365676][ T4568] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 79.383324][ T4307] usb 2-1: device descriptor read/8, error -71 [ 79.470127][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 79.545635][ T4579] Cannot find add_set index 0 as target [ 79.662744][ T4307] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 79.704465][ T4307] usb 2-1: device descriptor read/8, error -71 [ 80.018100][ T4592] loop3: detected capacity change from 0 to 2048 [ 80.442984][ T4307] usb usb2-port1: unable to enumerate USB device [ 80.473405][ T4592] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 80.491403][ T4588] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 80.567689][ T4256] EXT4-fs (loop1): unmounting filesystem. [ 80.741010][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 80.744523][ T4603] loop1: detected capacity change from 0 to 512 [ 80.782510][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.791461][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.799335][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.807232][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.812387][ T4603] EXT4-fs (loop1): failed to initialize system zone (-117) [ 80.815019][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.830454][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.838267][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.840450][ T4603] EXT4-fs (loop1): mount failed [ 80.846162][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.846189][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.846212][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.846234][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.882899][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.890667][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.898489][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.906265][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.914065][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.921812][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.929622][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.937383][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.945386][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.953211][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.961675][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.969950][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.977758][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.985575][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 80.993361][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.001104][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.019154][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.027068][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.037769][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.046488][ T4608] loop0: detected capacity change from 0 to 128 [ 81.053560][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.061418][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.075457][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.085574][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.087995][ T4608] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 81.093446][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.093471][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.093493][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.093514][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.093535][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.134548][ T4608] ext4 filesystem being mounted at /19/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 81.141148][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.141174][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.175365][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.184494][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.192250][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.200123][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.207909][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.215710][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.223503][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.231244][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.239026][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.239808][ T4613] loop4: detected capacity change from 0 to 164 [ 81.246773][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.246799][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.246819][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.276687][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.285486][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.295412][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.303873][ T4613] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 81.304159][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.321001][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.327298][ T4613] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 81.329880][ T4247] hid-generic 0000:0000:20000003.0001: unknown main item tag 0x0 [ 81.344503][ T4263] EXT4-fs (loop0): unmounting filesystem. [ 81.365733][ T14] cfg80211: failed to load regulatory.db [ 81.375459][ T4247] hid-generic 0000:0000:20000003.0001: hidraw0: HID v0.01 Device [syz1] on syz1 [ 81.580850][ T4620] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5) [ 81.587631][ T4620] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 81.625804][ T4620] vhci_hcd vhci_hcd.0: Device attached [ 81.646390][ T4625] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 81.682967][ T4630] rdma_rxe: rxe_register_device failed with error -23 [ 81.693317][ T4630] rdma_rxe: failed to add bond0 [ 81.709774][ T4630] loop0: detected capacity change from 0 to 1024 [ 81.720298][ T4622] vhci_hcd: connection closed [ 81.722230][ T75] vhci_hcd: stop threads [ 81.728157][ T4630] EXT4-fs: Ignoring removed nobh option [ 81.736276][ T75] vhci_hcd: release socket [ 81.745753][ T4630] EXT4-fs: Ignoring removed bh option [ 81.752141][ T4630] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 81.756876][ T75] vhci_hcd: disconnect device [ 81.808526][ T4630] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 81.824782][ T4247] vhci_hcd: vhci_device speed not set [ 82.122750][ T126] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 82.273353][ T126] usb 1-1: device descriptor read/64, error -71 [ 82.347783][ T4641] loop2: detected capacity change from 0 to 2048 [ 82.373332][ T4641] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 82.429972][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 82.512102][ T4645] loop2: detected capacity change from 0 to 256 [ 82.542770][ T126] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 82.702754][ T126] usb 1-1: device descriptor read/64, error -71 [ 82.792368][ T4657] netlink: 12 bytes leftover after parsing attributes in process `syz.3.93'. [ 82.833252][ T126] usb usb1-port1: attempt power cycle [ 82.982316][ T4658] tipc: Started in network mode [ 82.987613][ T4658] tipc: Node identity 1af491cf152f, cluster identity 4711 [ 83.015650][ T4658] tipc: Enabled bearer , priority 0 [ 83.049787][ T4654] tipc: Resetting bearer [ 83.182091][ T4672] siw: device registration error -23 [ 83.189053][ T4668] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 83.198996][ T4668] FAT-fs (loop7): unable to read boot sector [ 83.404135][ T126] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 83.444982][ T126] usb 1-1: device descriptor read/8, error -71 [ 83.715216][ T126] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 83.759667][ T126] usb 1-1: device descriptor read/8, error -71 [ 83.886152][ T126] usb usb1-port1: unable to enumerate USB device [ 84.059139][ T4679] loop3: detected capacity change from 0 to 2048 [ 84.101880][ T4679] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 84.118541][ T4679] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 84.134428][ T4307] tipc: Node number set to 266047951 [ 84.252100][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 84.729054][ T4263] EXT4-fs (loop0): unmounting filesystem. [ 84.813969][ T4654] tipc: Disabling bearer [ 85.046886][ T4696] netlink: 12 bytes leftover after parsing attributes in process `syz.1.105'. [ 85.246003][ T4705] siw: device registration error -23 [ 85.400713][ T4710] rdma_rxe: rxe_register_device failed with error -23 [ 85.408067][ T4710] rdma_rxe: failed to add bond0 [ 85.430824][ T4710] loop2: detected capacity change from 0 to 1024 [ 85.461330][ T4710] EXT4-fs: Ignoring removed nobh option [ 85.486199][ T4710] EXT4-fs: Ignoring removed bh option [ 85.508922][ T4710] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 85.544174][ T4710] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 85.555423][ T4711] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 85.564923][ T4711] FAT-fs (loop3): unable to read boot sector [ 85.697940][ T4712] loop3: detected capacity change from 0 to 2048 [ 85.725739][ T4712] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 85.737615][ T4712] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 85.843516][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 85.982717][ T4307] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 86.067792][ T4727] tipc: Started in network mode [ 86.073376][ T4727] tipc: Node identity 5207d9abb50a, cluster identity 4711 [ 86.080592][ T4727] tipc: Enabled bearer , priority 0 [ 86.095960][ T4725] tipc: Resetting bearer [ 86.166306][ T4734] netlink: 12 bytes leftover after parsing attributes in process `syz.4.120'. [ 86.227207][ T4307] usb 3-1: device descriptor read/64, error -71 [ 86.516986][ T4307] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 86.676768][ T4307] usb 3-1: device descriptor read/64, error -71 [ 86.810127][ T4307] usb usb3-port1: attempt power cycle [ 87.075146][ T14] tipc: Node number set to 3876444587 [ 87.244308][ T4307] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 87.434283][ T4307] usb 3-1: device descriptor read/8, error -71 [ 87.476811][ T4753] loop4: detected capacity change from 0 to 2048 [ 87.509861][ T4753] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 87.521555][ T4753] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 87.649961][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 87.712716][ T4307] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 87.758956][ T4307] usb 3-1: device descriptor read/8, error -71 [ 87.851199][ T4725] tipc: Disabling bearer [ 87.883247][ T4758] netlink: 52 bytes leftover after parsing attributes in process `syz.4.127'. [ 87.887801][ T4307] usb usb3-port1: unable to enumerate USB device [ 88.011024][ T4764] netlink: 12 bytes leftover after parsing attributes in process `syz.4.131'. [ 88.054524][ T26] kauditd_printk_skb: 69 callbacks suppressed [ 88.054538][ T26] audit: type=1326 audit(1742677884.224:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4766 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 88.101286][ T26] audit: type=1326 audit(1742677884.224:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4766 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 88.124583][ T26] audit: type=1326 audit(1742677884.264:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4766 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 88.148347][ T26] audit: type=1326 audit(1742677884.264:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4766 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 88.177712][ T26] audit: type=1326 audit(1742677884.264:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4766 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 88.277863][ T26] audit: type=1326 audit(1742677884.264:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4766 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 88.304299][ T26] audit: type=1326 audit(1742677884.264:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4766 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 88.336047][ T26] audit: type=1326 audit(1742677884.264:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4766 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 88.371144][ T26] audit: type=1326 audit(1742677884.264:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4766 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 88.411274][ T26] audit: type=1326 audit(1742677884.264:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4766 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 88.555528][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 89.325145][ T4792] netlink: 52 bytes leftover after parsing attributes in process `syz.3.141'. [ 89.351283][ T4794] loop2: detected capacity change from 0 to 512 [ 89.359550][ T4789] loop0: detected capacity change from 0 to 2048 [ 89.409328][ T4789] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 89.409950][ T4794] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 89.431809][ T4789] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 89.501140][ T4794] EXT4-fs (loop2): 1 truncate cleaned up [ 89.505896][ T4263] EXT4-fs (loop0): unmounting filesystem. [ 89.512785][ T4794] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 89.574134][ T4794] EXT4-fs (loop2): re-mounted. Quota mode: writeback. [ 89.584308][ T4803] netlink: 12 bytes leftover after parsing attributes in process `syz.3.143'. [ 89.718975][ T4806] tipc: Started in network mode [ 89.742191][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 89.763481][ T4806] tipc: Node identity b25bb6579292, cluster identity 4711 [ 89.783794][ T4806] tipc: Enabled bearer , priority 0 [ 89.801314][ T4800] tipc: Resetting bearer [ 90.088397][ T4812] loop0: detected capacity change from 0 to 512 [ 90.099947][ T4812] EXT4-fs: Ignoring removed mblk_io_submit option [ 90.388991][ T4812] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 90.399396][ T4812] EXT4-fs (loop0): orphan cleanup on readonly fs [ 90.409677][ T4812] EXT4-fs warning (device loop0): ext4_enable_quotas:7030: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 90.424358][ T4812] EXT4-fs (loop0): Cannot turn on quotas: error -117 [ 90.447140][ T4812] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm +}[@: bg 0: block 40: padding at end of block bitmap is not set [ 90.473084][ T4812] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 90.496795][ T4812] EXT4-fs (loop0): 1 truncate cleaned up [ 90.502485][ T4812] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 90.552070][ T4818] loop2: detected capacity change from 0 to 512 [ 90.611890][ T4818] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 90.621189][ T4818] ext4 filesystem being mounted at /26/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 90.730002][ T4818] EXT4-fs error (device loop2): ext4_get_first_dir_block:3591: inode #12: block 32: comm syz.2.145: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 90.826654][ T4818] EXT4-fs error (device loop2): ext4_get_first_dir_block:3594: inode #12: comm syz.2.145: directory missing '.' [ 90.920280][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 90.927615][ T4716] tipc: Node number set to 550090327 [ 91.992893][ T4842] random: crng reseeded on system resumption [ 92.425613][ T4846] loop2: detected capacity change from 0 to 2048 [ 92.487843][ T4846] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 92.504383][ T4846] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 92.552535][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 92.905208][ T4854] netlink: 12 bytes leftover after parsing attributes in process `syz.3.157'. [ 93.170985][ T4800] tipc: Disabling bearer [ 93.187425][ T4840] netlink: 52 bytes leftover after parsing attributes in process `syz.1.153'. [ 93.268858][ T4851] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 93.350131][ T4263] EXT4-fs (loop0): unmounting filesystem. [ 93.490112][ T4851] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 93.553758][ T4862] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 93.695470][ T4851] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.440812][ T4862] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.560652][ T4851] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.630522][ T4862] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.654956][ T4874] syz.0.164[4874] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 94.655078][ T4874] syz.0.164[4874] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 94.686452][ T4851] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.734400][ T4862] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.751791][ T4851] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.767988][ T4851] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.791953][ T4851] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.899831][ T4883] netlink: 12 bytes leftover after parsing attributes in process `syz.0.168'. [ 94.912335][ T4862] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.953432][ T4881] loop3: detected capacity change from 0 to 2048 [ 94.980161][ T4862] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.015026][ T4862] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.034670][ T4881] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 95.046004][ T4881] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 95.074745][ T4889] netlink: 52 bytes leftover after parsing attributes in process `syz.1.169'. [ 95.105702][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 95.225992][ T4862] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.360766][ T26] kauditd_printk_skb: 24 callbacks suppressed [ 95.360781][ T26] audit: type=1326 audit(1742677891.524:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4904 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 95.396006][ T4895] tipc: Enabled bearer , priority 0 [ 95.404035][ T26] audit: type=1326 audit(1742677891.524:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4904 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 95.427216][ T4888] tipc: Resetting bearer [ 95.468445][ T26] audit: type=1326 audit(1742677891.574:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4904 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 95.521784][ T26] audit: type=1326 audit(1742677891.574:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4904 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 95.549412][ T26] audit: type=1326 audit(1742677891.574:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4904 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 95.775175][ T26] audit: type=1326 audit(1742677891.574:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4904 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 95.804450][ T26] audit: type=1326 audit(1742677891.574:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4904 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 95.832052][ T26] audit: type=1326 audit(1742677891.574:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4904 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 95.859366][ T26] audit: type=1326 audit(1742677891.574:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4904 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 95.955153][ T26] audit: type=1326 audit(1742677891.574:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4904 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 96.465018][ T4916] syz.0.178 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 96.619764][ T4924] netlink: 12 bytes leftover after parsing attributes in process `syz.1.181'. [ 96.915672][ T4935] netlink: 100 bytes leftover after parsing attributes in process `syz.1.185'. [ 97.234057][ T4940] loop0: detected capacity change from 0 to 2048 [ 97.333375][ T4940] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 97.420901][ T4940] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 98.224735][ T4263] EXT4-fs (loop0): unmounting filesystem. [ 99.423074][ T3622] udevd[3622]: worker [4503] terminated by signal 33 (Unknown signal 33) [ 99.449080][ T3622] udevd[3622]: worker [4503] failed while handling '/devices/virtual/block/loop0' [ 99.470276][ T4969] random: crng reseeded on system resumption [ 99.696932][ T4888] tipc: Disabling bearer [ 99.706054][ T4931] netlink: 52 bytes leftover after parsing attributes in process `syz.3.183'. [ 99.754263][ T4975] netlink: 12 bytes leftover after parsing attributes in process `syz.4.196'. [ 100.485771][ T5003] netlink: 52 bytes leftover after parsing attributes in process `syz.0.207'. [ 101.240146][ T4999] loop2: detected capacity change from 0 to 2048 [ 101.424841][ T4999] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 101.459132][ T5017] netlink: 48 bytes leftover after parsing attributes in process `syz.1.211'. [ 101.468249][ T5017] netlink: 48 bytes leftover after parsing attributes in process `syz.1.211'. [ 101.478987][ T5017] xt_hashlimit: max too large, truncated to 1048576 [ 101.498855][ T5017] siw: device registration error -23 [ 101.522565][ T5016] netlink: 12 bytes leftover after parsing attributes in process `syz.0.209'. [ 101.544716][ T4999] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 101.676181][ T5012] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 101.745771][ T5020] tipc: Enabled bearer , priority 0 [ 101.766007][ T5019] tipc: Resetting bearer [ 102.520483][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 104.135070][ T5019] tipc: Disabling bearer [ 104.163155][ T5012] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 104.176358][ T5052] netlink: 8 bytes leftover after parsing attributes in process `syz.2.220'. [ 104.277292][ T5012] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 104.302291][ T5064] syz.2.223[5064] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 104.302408][ T5064] syz.2.223[5064] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 104.328910][ T5063] netlink: 12 bytes leftover after parsing attributes in process `syz.0.224'. [ 104.361967][ T26] kauditd_printk_skb: 45 callbacks suppressed [ 104.361982][ T26] audit: type=1326 audit(1742677900.524:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5062 comm="syz.2.223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 104.394071][ T26] audit: type=1326 audit(1742677900.524:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5062 comm="syz.2.223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 104.440560][ T26] audit: type=1326 audit(1742677900.564:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5062 comm="syz.2.223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 104.474910][ T5012] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 104.494718][ T26] audit: type=1326 audit(1742677900.564:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5062 comm="syz.2.223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 104.530398][ T26] audit: type=1326 audit(1742677900.564:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5062 comm="syz.2.223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 104.530957][ T5069] netlink: 4 bytes leftover after parsing attributes in process `syz.4.226'. [ 104.683685][ T5012] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.705394][ T5079] loop1: detected capacity change from 0 to 2048 [ 104.730256][ T5012] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.764125][ T5012] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.807018][ T5012] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.851812][ T5079] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 105.000237][ T26] audit: type=1326 audit(1742677901.164:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5078 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 105.082749][ T26] audit: type=1326 audit(1742677901.194:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5078 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 105.122880][ T126] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 105.154196][ T5088] loop0: detected capacity change from 0 to 2048 [ 105.194720][ T26] audit: type=1326 audit(1742677901.194:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5078 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 105.282703][ T126] usb 5-1: device descriptor read/64, error -71 [ 105.594503][ T26] audit: type=1326 audit(1742677901.214:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5078 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 105.618048][ T126] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 105.767880][ T26] audit: type=1326 audit(1742677901.214:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5078 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 105.853613][ T126] usb 5-1: device descriptor read/64, error -71 [ 105.896465][ T5088] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 105.904211][ T5101] netlink: 8 bytes leftover after parsing attributes in process `syz.3.233'. [ 105.919560][ T4256] EXT4-fs (loop1): unmounting filesystem. [ 105.975175][ T126] usb usb5-port1: attempt power cycle [ 105.992049][ T5088] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 106.219210][ T22] hid-generic 0000:0004:0000.0002: unknown main item tag 0x0 [ 106.237948][ T22] hid-generic 0000:0004:0000.0002: unknown main item tag 0x0 [ 106.249896][ T22] hid-generic 0000:0004:0000.0002: unknown main item tag 0x0 [ 106.260660][ T22] hid-generic 0000:0004:0000.0002: hidraw0: HID v0.00 Device [syz0] on syz1 [ 106.289668][ T5111] netlink: 12 bytes leftover after parsing attributes in process `syz.3.238'. [ 106.392689][ T126] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 106.433599][ T126] usb 5-1: device descriptor read/8, error -71 [ 106.498193][ T5120] netlink: 20 bytes leftover after parsing attributes in process `syz.1.240'. [ 106.511150][ T5120] netlink: 40 bytes leftover after parsing attributes in process `syz.1.240'. [ 106.532819][ T5120] netlink: 40 bytes leftover after parsing attributes in process `syz.1.240'. [ 106.554791][ T5120] netlink: 4 bytes leftover after parsing attributes in process `syz.1.240'. [ 106.868970][ T126] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 106.905488][ T126] usb 5-1: device descriptor read/8, error -71 [ 106.927390][ T4263] EXT4-fs (loop0): unmounting filesystem. [ 107.043795][ T126] usb usb5-port1: unable to enumerate USB device [ 107.740974][ T5134] netlink: 8 bytes leftover after parsing attributes in process `syz.0.245'. [ 107.840258][ T5138] syz.4.247[5138] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 107.840364][ T5138] syz.4.247[5138] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 108.108300][ T5151] netlink: 12 bytes leftover after parsing attributes in process `syz.0.252'. [ 108.402110][ T5165] netlink: 4 bytes leftover after parsing attributes in process `syz.1.258'. [ 108.431796][ T5165] bridge0: port 2(bridge_slave_1) entered disabled state [ 108.510650][ T5165] device bridge_slave_1 left promiscuous mode [ 108.561775][ T5165] bridge0: port 2(bridge_slave_1) entered disabled state [ 109.366632][ T5174] loop2: detected capacity change from 0 to 2048 [ 109.449047][ T5170] device bridge0 entered promiscuous mode [ 109.457455][ T5170] bridge0: port 2(macsec1) entered blocking state [ 109.464162][ T5170] bridge0: port 2(macsec1) entered disabled state [ 109.481300][ T5170] device bridge0 left promiscuous mode [ 109.543090][ T5177] netlink: 8 bytes leftover after parsing attributes in process `syz.3.260'. [ 109.545422][ T5174] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 109.615843][ T26] kauditd_printk_skb: 33 callbacks suppressed [ 109.615858][ T26] audit: type=1326 audit(1742677905.784:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5185 comm="syz.4.261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 109.696133][ T5190] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 109.713003][ T26] audit: type=1326 audit(1742677905.814:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5185 comm="syz.4.261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 109.740694][ T26] audit: type=1326 audit(1742677905.814:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5185 comm="syz.4.261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 109.857053][ T26] audit: type=1326 audit(1742677905.814:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5185 comm="syz.4.261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 109.932707][ T26] audit: type=1326 audit(1742677905.814:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5185 comm="syz.4.261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 110.087531][ T5203] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 110.097604][ T5203] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 110.121287][ T5203] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 110.146325][ T5203] device bridge_slave_0 left promiscuous mode [ 110.163028][ T5203] bridge0: port 1(bridge_slave_0) entered disabled state [ 110.183670][ T5203] bond0: (slave bond_slave_0): Releasing backup interface [ 110.235878][ T5203] bond0: (slave bond_slave_1): Releasing backup interface [ 110.328008][ T5203] team0: Port device team_slave_0 removed [ 110.359854][ T5203] team0: Port device team_slave_1 removed [ 110.438531][ T5203] syz.1.268 (5203) used greatest stack depth: 19960 bytes left [ 111.240694][ T26] audit: type=1326 audit(1742677907.404:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5224 comm="syz.1.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 111.379015][ T26] audit: type=1326 audit(1742677907.454:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5224 comm="syz.1.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 111.428211][ T26] audit: type=1326 audit(1742677907.464:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5224 comm="syz.1.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 111.491087][ T26] audit: type=1326 audit(1742677907.464:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5224 comm="syz.1.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 111.532708][ T26] audit: type=1326 audit(1742677907.464:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5224 comm="syz.1.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 111.830322][ T5240] __nla_validate_parse: 2 callbacks suppressed [ 111.830339][ T5240] netlink: 12 bytes leftover after parsing attributes in process `syz.0.281'. [ 112.076797][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 112.460360][ T5250] netlink: 8 bytes leftover after parsing attributes in process `syz.3.285'. [ 113.254054][ T5265] netlink: 16 bytes leftover after parsing attributes in process `syz.3.289'. [ 113.536669][ T5274] netlink: 4 bytes leftover after parsing attributes in process `syz.2.293'. [ 113.558303][ T5276] netlink: 12 bytes leftover after parsing attributes in process `syz.3.294'. [ 113.573686][ T5274] netlink: 12 bytes leftover after parsing attributes in process `syz.2.293'. [ 113.937834][ T5297] netlink: 8 bytes leftover after parsing attributes in process `syz.3.300'. [ 113.986613][ T5296] loop0: detected capacity change from 0 to 2048 [ 114.040748][ T5296] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 114.062093][ T5296] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 114.393231][ T5305] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 114.402869][ T5305] FAT-fs (loop7): unable to read boot sector [ 115.308380][ T5317] loop1: detected capacity change from 0 to 512 [ 115.321639][ T5318] netlink: 12 bytes leftover after parsing attributes in process `syz.2.308'. [ 115.352814][ T5317] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 115.415835][ T5317] EXT4-fs (loop1): 1 truncate cleaned up [ 115.421534][ T5317] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 115.548078][ T26] kauditd_printk_skb: 23 callbacks suppressed [ 115.548093][ T26] audit: type=1800 audit(1742677911.714:245): pid=5317 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.307" name="file1" dev="loop1" ino=16 res=0 errno=0 [ 115.640186][ T5327] netlink: 8 bytes leftover after parsing attributes in process `syz.2.312'. [ 115.717140][ T4256] EXT4-fs (loop1): unmounting filesystem. [ 116.157585][ T5344] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 116.167262][ T5344] FAT-fs (loop3): unable to read boot sector [ 116.793479][ T4263] EXT4-fs (loop0): unmounting filesystem. [ 116.907526][ T5352] loop0: detected capacity change from 0 to 1024 [ 116.950885][ T5352] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 117.000284][ T4263] EXT4-fs (loop0): unmounting filesystem. [ 117.033569][ T5357] netlink: 12 bytes leftover after parsing attributes in process `syz.1.321'. [ 117.074051][ T5359] syz.2.323[5359] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 117.074151][ T5359] syz.2.323[5359] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 117.307838][ T5367] netlink: 8 bytes leftover after parsing attributes in process `syz.1.326'. [ 117.351723][ T26] audit: type=1326 audit(1742677913.514:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5372 comm="syz.2.327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 117.379127][ T26] audit: type=1326 audit(1742677913.514:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5372 comm="syz.2.327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 117.475662][ T26] audit: type=1326 audit(1742677913.544:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5372 comm="syz.2.327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 117.608344][ T26] audit: type=1326 audit(1742677913.544:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5372 comm="syz.2.327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 117.763079][ T26] audit: type=1326 audit(1742677913.544:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5372 comm="syz.2.327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 117.852885][ T26] audit: type=1326 audit(1742677913.544:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5372 comm="syz.2.327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 117.876017][ T26] audit: type=1326 audit(1742677913.544:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5372 comm="syz.2.327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 117.955391][ T5391] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 117.964821][ T5391] FAT-fs (loop3): unable to read boot sector [ 118.296485][ T26] audit: type=1326 audit(1742677913.544:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5372 comm="syz.2.327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 118.520236][ T26] audit: type=1326 audit(1742677913.544:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5372 comm="syz.2.327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 118.694993][ T5390] loop4: detected capacity change from 0 to 2048 [ 118.788403][ T5395] netlink: 12 bytes leftover after parsing attributes in process `syz.1.336'. [ 118.819185][ T5390] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 118.945496][ T5390] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 119.362171][ T5415] sg_write: data in/out 49115/14 bytes for SCSI command 0x0-- guessing data in; [ 119.362171][ T5415] program syz.1.343 not setting count and/or reply_len properly [ 119.568116][ T5419] netlink: 1196 bytes leftover after parsing attributes in process `syz.1.345'. [ 120.077629][ T5430] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 120.087651][ T5430] FAT-fs (loop3): unable to read boot sector [ 120.769510][ T5433] netlink: 12 bytes leftover after parsing attributes in process `syz.3.350'. [ 120.780297][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 121.815779][ T5472] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 121.825180][ T5472] FAT-fs (loop1): unable to read boot sector [ 122.586619][ T5474] netlink: 12 bytes leftover after parsing attributes in process `syz.1.367'. [ 122.815460][ T5483] loop4: detected capacity change from 0 to 2048 [ 122.883485][ T5483] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 122.899368][ T5483] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 123.149845][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 123.296434][ T5495] syz.4.372[5495] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 123.296536][ T5495] syz.4.372[5495] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 124.103834][ T5526] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 124.113248][ T5526] FAT-fs (loop9): unable to read boot sector [ 124.444896][ T5524] netlink: 12 bytes leftover after parsing attributes in process `syz.0.382'. [ 124.873694][ T5532] netlink: 68 bytes leftover after parsing attributes in process `syz.4.386'. [ 124.914627][ T5534] netlink: 96 bytes leftover after parsing attributes in process `syz.1.385'. [ 125.543211][ T26] kauditd_printk_skb: 5 callbacks suppressed [ 125.543446][ T26] audit: type=1326 audit(1742677921.654:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5544 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 125.629594][ T5546] syz.1.391[5546] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 125.642504][ T5546] syz.1.391[5546] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 125.821128][ T26] audit: type=1326 audit(1742677921.664:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5544 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 125.862150][ T26] audit: type=1326 audit(1742677921.764:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5544 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 125.884359][ T26] audit: type=1326 audit(1742677921.764:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5544 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 125.906592][ T26] audit: type=1326 audit(1742677922.024:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5544 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 125.921627][ T5527] loop2: detected capacity change from 0 to 2048 [ 126.059301][ T26] audit: type=1326 audit(1742677922.224:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5551 comm="syz.0.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 126.093746][ T5527] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 126.119678][ T5527] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 126.152668][ T26] audit: type=1326 audit(1742677922.254:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5551 comm="syz.0.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 126.207713][ T5560] netlink: 'syz.1.395': attribute type 29 has an invalid length. [ 126.267683][ T26] audit: type=1326 audit(1742677922.254:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5551 comm="syz.0.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=200 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 126.363795][ T26] audit: type=1326 audit(1742677922.254:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5551 comm="syz.0.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 126.450200][ T5566] netlink: 12 bytes leftover after parsing attributes in process `syz.1.398'. [ 126.515807][ T26] audit: type=1326 audit(1742677922.254:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5551 comm="syz.0.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 126.706458][ T5570] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 126.715814][ T5570] FAT-fs (loop9): unable to read boot sector [ 127.146112][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 127.410672][ T5572] loop2: detected capacity change from 0 to 256 [ 127.604533][ T5572] loop2: detected capacity change from 0 to 4096 [ 127.623634][ T5572] journal_path: Lookup failure for './file1' [ 127.629658][ T5572] EXT4-fs: error: could not find journal device path [ 127.829397][ T5591] netlink: 80 bytes leftover after parsing attributes in process `syz.0.409'. [ 127.985921][ T5599] netlink: 12 bytes leftover after parsing attributes in process `syz.0.412'. [ 128.042670][ T4305] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 128.247888][ T4305] usb 5-1: config 0 has an invalid interface number: 11 but max is 0 [ 128.266355][ T4305] usb 5-1: config 0 has no interface number 0 [ 128.289996][ T4305] usb 5-1: config 0 interface 11 has no altsetting 0 [ 128.314007][ T4305] usb 5-1: New USB device found, idVendor=1871, idProduct=0306, bcdDevice=1a.d2 [ 128.340037][ T4305] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 128.428606][ T5610] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 128.437995][ T5610] FAT-fs (loop5): unable to read boot sector [ 129.156732][ T4305] usb 5-1: config 0 descriptor?? [ 129.268077][ T5617] loop1: detected capacity change from 0 to 2048 [ 129.314759][ T5617] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 129.326756][ T5617] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 129.373199][ T4305] usb 5-1: string descriptor 0 read error: -71 [ 129.399528][ T4305] usb 5-1: Found UVC 0.00 device (1871:0306) [ 129.480535][ T4305] usb 5-1: No valid video chain found. [ 129.521560][ T4305] usb 5-1: USB disconnect, device number 6 [ 130.113488][ T5641] netlink: 12 bytes leftover after parsing attributes in process `syz.2.425'. [ 130.708815][ T5652] netlink: 4 bytes leftover after parsing attributes in process `syz.0.430'. [ 130.839073][ T5654] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 130.848860][ T5654] FAT-fs (loop5): unable to read boot sector [ 131.136275][ T26] kauditd_printk_skb: 68 callbacks suppressed [ 131.136311][ T26] audit: type=1326 audit(1742677927.294:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.4.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 131.431279][ T4256] EXT4-fs (loop1): unmounting filesystem. [ 131.498820][ T26] audit: type=1326 audit(1742677927.344:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.4.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 131.543153][ T26] audit: type=1326 audit(1742677927.594:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.4.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 131.612980][ T26] audit: type=1326 audit(1742677927.594:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.4.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 131.693813][ T26] audit: type=1326 audit(1742677927.594:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.4.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 131.756137][ T5662] netlink: 8 bytes leftover after parsing attributes in process `syz.2.434'. [ 131.784291][ T26] audit: type=1326 audit(1742677927.594:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.4.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=306 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 131.873261][ T26] audit: type=1326 audit(1742677927.594:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.4.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 131.955034][ T26] audit: type=1326 audit(1742677927.594:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5638 comm="syz.4.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 132.073737][ T5672] netlink: 12 bytes leftover after parsing attributes in process `syz.0.439'. [ 132.130129][ T5675] netlink: 28 bytes leftover after parsing attributes in process `syz.1.441'. [ 132.162858][ T5675] netlink: 28 bytes leftover after parsing attributes in process `syz.1.441'. [ 132.191112][ T5678] netlink: 4 bytes leftover after parsing attributes in process `syz.4.443'. [ 132.575462][ T1271] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.582785][ T1271] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.605058][ T5692] loop1: detected capacity change from 0 to 1024 [ 132.685652][ T5694] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 132.695077][ T5694] FAT-fs (loop9): unable to read boot sector [ 132.965247][ T5692] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 133.339258][ T26] audit: type=1800 audit(1742677929.474:346): pid=5692 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.449" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 133.451340][ T5702] netlink: 100 bytes leftover after parsing attributes in process `syz.4.451'. [ 133.508778][ T5692] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3841: comm syz.1.449: Allocating blocks 497-513 which overlap fs metadata [ 133.617203][ T5692] EXT4-fs (loop1): pa ffff8880671bb700: logic 256, phys. 385, len 8 [ 133.625656][ T5692] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 1 [ 133.773121][ T4256] EXT4-fs (loop1): unmounting filesystem. [ 133.905157][ T5712] netlink: 12 bytes leftover after parsing attributes in process `syz.3.455'. [ 133.919093][ T5714] netlink: 4 bytes leftover after parsing attributes in process `syz.1.456'. [ 133.992907][ T5710] loop0: detected capacity change from 0 to 2048 [ 134.085626][ T5710] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 134.242965][ T5710] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 134.538020][ T5729] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 134.545761][ T5729] IPv6: NLM_F_CREATE should be set when creating new route [ 134.684210][ T5735] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 134.693591][ T5735] FAT-fs (loop3): unable to read boot sector [ 135.489762][ T5742] loop1: detected capacity change from 0 to 512 [ 135.514414][ T5742] journal_path: Lookup failure for './bus' [ 135.536778][ T5742] EXT4-fs: error: could not find journal device path [ 135.623789][ T5744] xt_TPROXY: Can be used only with -p tcp or -p udp [ 135.922502][ T5751] 9pnet: p9_errstr2errno: server reported unknown error [ 135.945368][ T5754] netlink: 12 bytes leftover after parsing attributes in process `syz.3.472'. [ 136.322036][ T5765] netlink: 'syz.3.475': attribute type 5 has an invalid length. [ 136.339462][ T4263] EXT4-fs (loop0): unmounting filesystem. [ 136.644276][ T5774] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 136.653677][ T5774] FAT-fs (loop3): unable to read boot sector [ 137.393543][ T5765] loop3: detected capacity change from 0 to 128 [ 137.673051][ T5791] netlink: 12 bytes leftover after parsing attributes in process `syz.4.485'. [ 137.722305][ T5793] netlink: 12 bytes leftover after parsing attributes in process `syz.0.486'. [ 137.998261][ T26] audit: type=1326 audit(1742677934.164:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5798 comm="syz.4.491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 138.102111][ T26] audit: type=1326 audit(1742677934.164:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5798 comm="syz.4.491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 138.182319][ T26] audit: type=1326 audit(1742677934.164:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5798 comm="syz.4.491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 138.268869][ T26] audit: type=1326 audit(1742677934.164:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5798 comm="syz.4.491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 138.379694][ T26] audit: type=1326 audit(1742677934.164:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5798 comm="syz.4.491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 138.492650][ T26] audit: type=1326 audit(1742677934.184:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5798 comm="syz.4.491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 138.559840][ T5818] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 138.569289][ T5818] FAT-fs (loop9): unable to read boot sector [ 138.899952][ T26] audit: type=1326 audit(1742677934.184:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5798 comm="syz.4.491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 139.322685][ T26] audit: type=1326 audit(1742677934.184:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5798 comm="syz.4.491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 139.397388][ T26] audit: type=1326 audit(1742677934.184:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5798 comm="syz.4.491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 139.503103][ T26] audit: type=1326 audit(1742677934.184:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5798 comm="syz.4.491" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 139.671430][ T5829] netlink: 12 bytes leftover after parsing attributes in process `syz.4.499'. [ 139.971855][ T5836] netlink: 4 bytes leftover after parsing attributes in process `syz.4.502'. [ 140.283020][ T5803] loop2: detected capacity change from 0 to 2048 [ 140.476606][ T5803] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 140.803149][ T5868] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 140.812542][ T5868] FAT-fs (loop3): unable to read boot sector [ 141.470333][ T5870] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 141.572552][ T5874] loop3: detected capacity change from 0 to 128 [ 141.670570][ T5878] netlink: 12 bytes leftover after parsing attributes in process `syz.0.513'. [ 142.150826][ T5897] loop4: detected capacity change from 0 to 2048 [ 142.203486][ T5897] EXT4-fs: Ignoring removed mblk_io_submit option [ 142.299710][ T5897] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 142.308596][ T5897] ext4 filesystem being mounted at /97/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 142.418230][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 142.732424][ T5918] mmap: syz.4.528 (5918) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 142.774557][ T5917] netlink: 12 bytes leftover after parsing attributes in process `syz.0.530'. [ 142.814661][ T5919] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 142.824819][ T5919] FAT-fs (loop7): unable to read boot sector [ 143.311124][ T26] kauditd_printk_skb: 44 callbacks suppressed [ 143.311139][ T26] audit: type=1326 audit(1742677939.474:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5915 comm="syz.4.528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff092b8d169 code=0x7ffc0000 [ 143.634265][ T5923] 9pnet_fd: Insufficient options for proto=fd [ 143.706120][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 143.845833][ T26] audit: type=1326 audit(1742677940.014:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5932 comm="syz.2.536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 143.922284][ T26] audit: type=1326 audit(1742677940.044:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5932 comm="syz.2.536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 144.001153][ T26] audit: type=1326 audit(1742677940.044:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5932 comm="syz.2.536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 144.075168][ T26] audit: type=1326 audit(1742677940.044:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5932 comm="syz.2.536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 144.130448][ T26] audit: type=1326 audit(1742677940.054:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5932 comm="syz.2.536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 144.188954][ T26] audit: type=1326 audit(1742677940.064:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5932 comm="syz.2.536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 144.226693][ T26] audit: type=1326 audit(1742677940.064:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5932 comm="syz.2.536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 144.250790][ T26] audit: type=1326 audit(1742677940.064:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5932 comm="syz.2.536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 144.274802][ T26] audit: type=1326 audit(1742677940.064:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5932 comm="syz.2.536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 144.355965][ T5949] netlink: 12 bytes leftover after parsing attributes in process `syz.0.544'. [ 144.535845][ T5952] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 144.545086][ T5952] FAT-fs (loop9): unable to read boot sector [ 144.949160][ T5970] netlink: 52 bytes leftover after parsing attributes in process `syz.0.552'. [ 145.375295][ T5982] loop2: detected capacity change from 0 to 2048 [ 145.475361][ T5995] netlink: 12 bytes leftover after parsing attributes in process `syz.1.559'. [ 145.476134][ T5982] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 145.591618][ T5982] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 145.839323][ T6008] netlink: 52 bytes leftover after parsing attributes in process `syz.1.565'. [ 146.256338][ T6016] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 146.265695][ T6016] FAT-fs (loop3): unable to read boot sector [ 147.015893][ T6025] loop4: detected capacity change from 0 to 512 [ 147.024000][ T6025] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 147.065971][ T6025] EXT4-fs (loop4): 1 truncate cleaned up [ 147.071724][ T6025] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 147.093503][ T6025] EXT4-fs error (device loop4): mb_free_blocks:1815: group 0, inode 16: block 33:freeing already freed block (bit 32); block bitmap corrupt. [ 147.111813][ T6031] netlink: 12 bytes leftover after parsing attributes in process `syz.3.572'. [ 147.201216][ T6025] EXT4-fs (loop4): Remounting filesystem read-only [ 147.349813][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 147.366451][ T6040] netlink: 52 bytes leftover after parsing attributes in process `syz.0.576'. [ 147.467155][ T6044] netlink: 8 bytes leftover after parsing attributes in process `syz.4.578'. [ 147.540135][ T6046] serio: Serial port ttyS3 [ 147.936365][ T6062] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 147.946366][ T6062] FAT-fs (loop9): unable to read boot sector [ 148.673650][ T6065] syz.0.584 (6065): /proc/6064/oom_adj is deprecated, please use /proc/6064/oom_score_adj instead. [ 148.687578][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 148.822873][ T26] kauditd_printk_skb: 35 callbacks suppressed [ 148.822889][ T26] audit: type=1326 audit(1742677944.994:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6072 comm="syz.0.590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 148.900906][ T26] audit: type=1326 audit(1742677945.024:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6072 comm="syz.0.590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 148.924774][ T6078] netlink: 12 bytes leftover after parsing attributes in process `syz.2.585'. [ 148.973571][ T6080] netlink: 52 bytes leftover after parsing attributes in process `syz.3.591'. [ 148.989888][ T26] audit: type=1326 audit(1742677945.024:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6072 comm="syz.0.590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 149.076375][ T26] audit: type=1326 audit(1742677945.024:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6072 comm="syz.0.590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 149.158556][ T26] audit: type=1326 audit(1742677945.024:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6072 comm="syz.0.590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 149.238671][ T26] audit: type=1326 audit(1742677945.024:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6072 comm="syz.0.590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 149.287748][ T26] audit: type=1326 audit(1742677945.024:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6072 comm="syz.0.590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 149.326917][ T26] audit: type=1326 audit(1742677945.024:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6072 comm="syz.0.590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 149.375197][ T26] audit: type=1326 audit(1742677945.024:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6072 comm="syz.0.590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 149.467379][ T26] audit: type=1326 audit(1742677945.024:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6072 comm="syz.0.590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7efdb178d169 code=0x7ffc0000 [ 149.613307][ T6101] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 149.622491][ T6101] FAT-fs (loop1): unable to read boot sector [ 150.859959][ T6103] loop2: detected capacity change from 0 to 2048 [ 151.315944][ T6103] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 151.335626][ T6102] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 151.561120][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 151.685626][ T6118] team0: Device ipvlan2 failed to register rx_handler [ 151.784007][ T6122] netlink: 12 bytes leftover after parsing attributes in process `syz.2.605'. [ 151.863445][ T6125] netlink: 52 bytes leftover after parsing attributes in process `syz.4.607'. [ 152.099519][ T6133] loop4: detected capacity change from 0 to 512 [ 152.116921][ T6133] ext2: Unknown parameter 'discard"inlinecrypt' [ 152.431293][ T6142] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 152.440726][ T6142] FAT-fs (loop3): unable to read boot sector [ 153.464504][ T6156] loop1: detected capacity change from 0 to 1024 [ 153.658309][ T6161] loop2: detected capacity change from 0 to 2048 [ 153.755672][ T6156] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 153.951994][ T6161] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 153.996032][ T6161] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 154.132474][ T6156] EXT4-fs (loop1): shut down requested (0) [ 154.281991][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 154.307848][ T6171] netlink: 52 bytes leftover after parsing attributes in process `syz.0.622'. [ 154.392737][ T4256] EXT4-fs (loop1): unmounting filesystem. [ 154.435093][ T6174] netlink: 12 bytes leftover after parsing attributes in process `syz.3.621'. [ 155.087154][ T6197] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 155.096527][ T6197] FAT-fs (loop7): unable to read boot sector [ 155.833837][ T26] kauditd_printk_skb: 31 callbacks suppressed [ 155.833854][ T26] audit: type=1326 audit(1742677952.004:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6199 comm="syz.1.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 155.925393][ T26] audit: type=1326 audit(1742677952.044:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6199 comm="syz.1.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 155.965770][ T26] audit: type=1326 audit(1742677952.044:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6199 comm="syz.1.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 156.109742][ T6205] loop4: detected capacity change from 0 to 2048 [ 156.413098][ T6205] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 156.458042][ T6205] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 156.578328][ T6208] netlink: 52 bytes leftover after parsing attributes in process `syz.3.636'. [ 156.581908][ T26] audit: type=1326 audit(1742677952.044:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6199 comm="syz.1.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 156.622146][ T26] audit: type=1326 audit(1742677952.054:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6199 comm="syz.1.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 156.644932][ T26] audit: type=1326 audit(1742677952.054:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6199 comm="syz.1.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 156.667516][ T26] audit: type=1326 audit(1742677952.054:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6199 comm="syz.1.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 156.689945][ T26] audit: type=1326 audit(1742677952.054:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6199 comm="syz.1.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 156.712026][ T26] audit: type=1326 audit(1742677952.054:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6199 comm="syz.1.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 156.742956][ T26] audit: type=1326 audit(1742677952.054:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6199 comm="syz.1.633" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 156.894358][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 156.959626][ T6218] netlink: 12 bytes leftover after parsing attributes in process `syz.3.640'. [ 157.000650][ T6217] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 157.444780][ T6243] netlink: 52 bytes leftover after parsing attributes in process `syz.1.651'. [ 157.927466][ T6247] loop1: detected capacity change from 0 to 2048 [ 158.127221][ T6247] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 158.156181][ T6247] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 158.605638][ T4256] EXT4-fs (loop1): unmounting filesystem. [ 158.717484][ T6253] loop4: detected capacity change from 0 to 512 [ 158.744193][ T6253] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 158.758706][ T6255] netlink: 12 bytes leftover after parsing attributes in process `syz.2.655'. [ 158.808592][ T6253] EXT4-fs (loop4): 1 truncate cleaned up [ 158.821849][ T6253] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 158.836289][ T6253] netlink: 24 bytes leftover after parsing attributes in process `syz.4.654'. [ 158.930497][ T6265] loop1: detected capacity change from 0 to 1024 [ 158.959427][ T6253] netlink: 4 bytes leftover after parsing attributes in process `syz.4.654'. [ 159.025381][ T6273] netlink: 52 bytes leftover after parsing attributes in process `syz.2.663'. [ 159.047670][ T6265] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 159.080352][ T6265] EXT4-fs error (device loop1): ext4_expand_extra_isize_ea:2739: inode #12: comm syz.1.656: corrupted in-inode xattr [ 159.131020][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 159.174570][ T4256] EXT4-fs (loop1): unmounting filesystem. [ 159.469643][ T6289] sctp: [Deprecated]: syz.4.665 (pid 6289) Use of int in max_burst socket option. [ 159.469643][ T6289] Use struct sctp_assoc_value instead [ 159.641295][ T6290] loop1: detected capacity change from 0 to 2048 [ 160.284679][ T6290] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 160.302205][ T6287] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 160.421371][ T6304] netlink: 12 bytes leftover after parsing attributes in process `syz.0.671'. [ 160.554882][ T4256] EXT4-fs (loop1): unmounting filesystem. [ 160.684579][ T6310] netlink: 52 bytes leftover after parsing attributes in process `syz.3.677'. [ 160.717537][ T6314] loop0: detected capacity change from 0 to 1024 [ 160.734051][ T6314] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 160.772759][ T6314] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 160.827327][ T6314] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #2: comm syz.0.678: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0) [ 160.886883][ T6321] netlink: 24 bytes leftover after parsing attributes in process `syz.3.681'. [ 160.889168][ T6314] EXT4-fs (loop0): no journal found [ 160.923559][ T6323] loop1: detected capacity change from 0 to 512 [ 160.959409][ T6323] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 160.992815][ T6323] ext4 filesystem being mounted at /165/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 161.087327][ T6329] loop9: detected capacity change from 0 to 7 [ 161.097513][ T6329] Dev loop9: unable to read RDB block 7 [ 161.113719][ T6329] loop9: unable to read partition table [ 161.119677][ T6329] loop9: partition table beyond EOD, truncated [ 161.126378][ T6329] loop_reread_partitions: partition scan of loop9 (被ڬdƤݡ [ 161.126378][ T6329] U) failed (rc=-5) [ 161.344179][ T4256] EXT4-fs (loop1): unmounting filesystem. [ 161.606288][ T6342] loop0: detected capacity change from 0 to 2048 [ 161.880338][ T6342] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 161.909555][ T6342] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 162.190511][ T6347] netlink: 12 bytes leftover after parsing attributes in process `syz.1.689'. [ 162.256475][ T4263] EXT4-fs (loop0): unmounting filesystem. [ 162.391005][ T6351] netlink: 52 bytes leftover after parsing attributes in process `syz.2.692'. [ 163.188420][ T6387] loop3: detected capacity change from 0 to 2048 [ 163.425477][ T6387] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 163.460600][ T6387] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 163.791572][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 163.879524][ T6394] netlink: 52 bytes leftover after parsing attributes in process `syz.3.709'. [ 163.890194][ T6393] loop0: detected capacity change from 0 to 512 [ 163.925674][ T6393] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.708: casefold flag without casefold feature [ 163.934533][ T6400] netlink: 12 bytes leftover after parsing attributes in process `syz.1.707'. [ 163.955468][ T6393] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.708: couldn't read orphan inode 15 (err -117) [ 163.983240][ T6393] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 164.086745][ T26] kauditd_printk_skb: 40 callbacks suppressed [ 164.086761][ T26] audit: type=1326 audit(1742677960.254:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.3.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 164.191223][ T6405] loop3: detected capacity change from 0 to 512 [ 164.197553][ T26] audit: type=1326 audit(1742677960.284:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.3.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 164.197592][ T26] audit: type=1326 audit(1742677960.284:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.3.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 164.197626][ T26] audit: type=1326 audit(1742677960.284:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.3.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 164.197661][ T26] audit: type=1326 audit(1742677960.284:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.3.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 164.197694][ T26] audit: type=1326 audit(1742677960.284:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.3.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 164.466038][ T6405] EXT4-fs (loop3): 1 orphan inode deleted [ 164.471830][ T6405] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 164.485694][ T4781] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 164.525553][ T4781] EXT4-fs error (device loop3): ext4_release_dquot:6818: comm kworker/u4:13: Failed to release dquot type 1 [ 164.533499][ T6405] ext4 filesystem being mounted at /142/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 164.590188][ T6420] IPv6: Can't replace route, no match found [ 164.648840][ T26] audit: type=1326 audit(1742677960.294:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.3.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fdac498d1a3 code=0x7ffc0000 [ 164.674916][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 164.694327][ T4263] EXT4-fs (loop0): unmounting filesystem. [ 164.707731][ T26] audit: type=1326 audit(1742677960.294:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.3.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fdac498d1a3 code=0x7ffc0000 [ 164.773159][ T26] audit: type=1326 audit(1742677960.294:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.3.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 165.206162][ T6437] loop2: detected capacity change from 0 to 2048 [ 165.473296][ T6437] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 165.510450][ T6437] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 165.957486][ T6448] netlink: 12 bytes leftover after parsing attributes in process `syz.0.724'. [ 166.082515][ T6451] loop1: detected capacity change from 0 to 128 [ 166.144008][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 166.236000][ T6457] loop3: detected capacity change from 0 to 1024 [ 166.242298][ T6461] loop2: detected capacity change from 0 to 164 [ 166.286583][ T6457] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 166.314790][ T6457] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 166.344265][ T6457] EXT4-fs error (device loop3): ext4_get_journal_inode:5723: inode #5: comm syz.3.730: unexpected bad inode w/o EXT4_IGET_BAD [ 166.388283][ T6457] EXT4-fs (loop3): no journal found [ 166.399238][ T6457] EXT4-fs (loop3): can't get journal size [ 166.415232][ T6457] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 166.489846][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 166.777125][ T6478] smc: net device bond0 applied user defined pnetid SYZ0 [ 166.789413][ T6478] smc: net device bond0 erased user defined pnetid SYZ0 [ 166.963810][ T6484] netlink: 4 bytes leftover after parsing attributes in process `syz.0.738'. [ 166.986400][ T6484] netlink: 4 bytes leftover after parsing attributes in process `syz.0.738'. [ 167.019705][ T6486] netlink: 12 bytes leftover after parsing attributes in process `syz.4.739'. [ 167.154026][ T6492] rdma_op ffff88807a1229f0 conn xmit_rdma 0000000000000000 [ 167.355001][ T6497] unsupported nla_type 52263 [ 167.529749][ T6498] loop0: detected capacity change from 0 to 2048 [ 167.862779][ T6498] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 167.913138][ T6498] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 168.158930][ T4263] EXT4-fs (loop0): unmounting filesystem. [ 168.538027][ T6524] netlink: 12 bytes leftover after parsing attributes in process `syz.1.754'. [ 168.552304][ T6526] netlink: 4 bytes leftover after parsing attributes in process `syz.0.755'. [ 168.596207][ T6526] bridge0: port 2(bridge_slave_1) entered disabled state [ 168.773177][ T6526] device bridge_slave_1 left promiscuous mode [ 168.792714][ T6526] bridge0: port 2(bridge_slave_1) entered disabled state [ 169.128842][ T6541] loop1: detected capacity change from 0 to 2048 [ 169.388316][ T6541] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 169.424531][ T6541] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 169.717935][ T26] kauditd_printk_skb: 74 callbacks suppressed [ 169.717951][ T26] audit: type=1326 audit(1742677965.884:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.2.761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 169.767500][ T4256] EXT4-fs (loop1): unmounting filesystem. [ 169.863416][ T26] audit: type=1326 audit(1742677965.924:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.2.761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 169.918868][ T26] audit: type=1326 audit(1742677965.924:622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.2.761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 169.949643][ T26] audit: type=1326 audit(1742677965.954:623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.2.761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 169.975032][ T26] audit: type=1326 audit(1742677965.954:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.2.761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 169.997334][ T26] audit: type=1326 audit(1742677965.954:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.2.761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 170.032120][ T6559] Zero length message leads to an empty skb [ 170.044998][ T6556] loop1: detected capacity change from 0 to 164 [ 170.056117][ T6556] process 'syz.1.763' launched '/dev/fd/3' with NULL argv: empty string added [ 170.082859][ T26] audit: type=1326 audit(1742677965.954:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.2.761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 170.127027][ T6556] syz.1.763: attempt to access beyond end of device [ 170.127027][ T6556] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 170.164929][ T26] audit: type=1326 audit(1742677965.954:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.2.761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 170.198039][ T6556] syz.1.763: attempt to access beyond end of device [ 170.198039][ T6556] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 170.232665][ T26] audit: type=1326 audit(1742677965.954:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.2.761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 170.304591][ T6562] netlink: 12 bytes leftover after parsing attributes in process `syz.4.768'. [ 170.325840][ T26] audit: type=1326 audit(1742677965.954:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.2.761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13c18d169 code=0x7ffc0000 [ 170.932038][ T6585] loop4: detected capacity change from 0 to 2048 [ 171.531672][ T6585] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 171.548072][ T6580] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 171.787415][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 171.899647][ T6601] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 171.914215][ T6601] infiniband syz0: set active [ 171.928067][ T6601] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 171.936380][ T6601] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 171.955640][ T6601] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 172.749984][ T6610] netlink: 12 bytes leftover after parsing attributes in process `syz.3.786'. [ 173.089022][ T6622] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 173.100129][ T6622] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 173.136583][ T6625] netlink: 'syz.3.792': attribute type 1 has an invalid length. [ 173.173495][ T6625] 8021q: adding VLAN 0 to HW filter on device bond1 [ 173.275761][ T6625] 8021q: adding VLAN 0 to HW filter on device bond1 [ 173.298143][ T6625] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address [ 173.314064][ T6625] bond1: (slave wireguard0): Error -95 calling set_mac_address [ 173.589637][ T6636] loop1: detected capacity change from 0 to 2048 [ 173.868027][ T6636] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 173.902722][ T6636] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 174.297920][ T4256] EXT4-fs (loop1): unmounting filesystem. [ 174.442443][ T6649] netlink: 12 bytes leftover after parsing attributes in process `syz.1.800'. [ 174.630386][ T6657] loop1: detected capacity change from 0 to 128 [ 174.815673][ T6661] netlink: 16 bytes leftover after parsing attributes in process `syz.1.806'. [ 174.941713][ T26] kauditd_printk_skb: 34 callbacks suppressed [ 174.941732][ T26] audit: type=1326 audit(1742677971.104:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6662 comm="syz.3.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 175.017625][ T26] audit: type=1326 audit(1742677971.124:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6662 comm="syz.3.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 175.060505][ T26] audit: type=1326 audit(1742677971.124:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6662 comm="syz.3.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 175.097489][ T26] audit: type=1326 audit(1742677971.124:667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6662 comm="syz.3.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 175.143213][ T26] audit: type=1326 audit(1742677971.124:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6662 comm="syz.3.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 175.185872][ T26] audit: type=1326 audit(1742677971.124:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6662 comm="syz.3.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 175.229598][ T26] audit: type=1326 audit(1742677971.124:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6662 comm="syz.3.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 175.269204][ T26] audit: type=1326 audit(1742677971.124:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6662 comm="syz.3.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 175.324350][ T26] audit: type=1326 audit(1742677971.124:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6662 comm="syz.3.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 175.371015][ T26] audit: type=1326 audit(1742677971.124:673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6662 comm="syz.3.807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdac498d169 code=0x7ffc0000 [ 175.737429][ T6683] netlink: 12 bytes leftover after parsing attributes in process `syz.2.815'. [ 175.916344][ T6685] loop4: detected capacity change from 0 to 2048 [ 176.176110][ T6685] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 176.220638][ T6685] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 176.481435][ T6679] loop3: detected capacity change from 0 to 1024 [ 176.517213][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 176.533513][ T6679] EXT4-fs: Ignoring removed nobh option [ 176.539096][ T6679] EXT4-fs: Ignoring removed bh option [ 176.563665][ T6679] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 176.603827][ T6692] loop2: detected capacity change from 0 to 512 [ 176.623264][ T6692] EXT4-fs error (device loop2): __ext4_fill_super:5390: inode #2: comm syz.2.816: casefold flag without casefold feature [ 176.643801][ T6679] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 176.672254][ T6692] EXT4-fs (loop2): get root inode failed [ 176.698684][ T6692] EXT4-fs (loop2): mount failed [ 176.726382][ T6679] netlink: 24 bytes leftover after parsing attributes in process `syz.3.814'. [ 176.940169][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 176.958698][ T6707] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 176.965244][ T6707] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 177.016854][ T6707] vhci_hcd vhci_hcd.0: Device attached [ 177.043425][ T6711] vhci_hcd vhci_hcd.0: pdev(0) rhport(1) sockfd(7) [ 177.049982][ T6711] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 177.099761][ T6707] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 177.121207][ T6711] vhci_hcd vhci_hcd.0: Device attached [ 177.173634][ T6722] vhci_hcd vhci_hcd.0: pdev(0) rhport(3) sockfd(11) [ 177.180255][ T6722] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 177.212811][ T4247] vhci_hcd: vhci_device speed not set [ 177.229557][ T6722] vhci_hcd vhci_hcd.0: Device attached [ 177.268886][ T6707] vhci_hcd vhci_hcd.0: pdev(0) rhport(4) sockfd(9) [ 177.275453][ T6707] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 177.292616][ T4247] usb 33-1: new full-speed USB device number 2 using vhci_hcd [ 177.323604][ T6711] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 177.329440][ T6729] netlink: 12 bytes leftover after parsing attributes in process `syz.2.827'. [ 177.342726][ T6707] vhci_hcd vhci_hcd.0: Device attached [ 177.358539][ T6711] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 177.455745][ T6711] ieee802154 phy0 wpan0: encryption failed: -22 [ 177.517739][ T6707] vhci_hcd vhci_hcd.0: pdev(0) rhport(7) sockfd(15) [ 177.524380][ T6707] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 177.551310][ T6707] vhci_hcd vhci_hcd.0: Device attached [ 177.558581][ T6725] vhci_hcd: connection closed [ 177.559598][ T6162] vhci_hcd: stop threads [ 177.569533][ T6723] vhci_hcd: connection closed [ 177.569670][ T6713] vhci_hcd: connection closed [ 177.575795][ T6708] vhci_hcd: connection reset by peer [ 177.587858][ T6162] vhci_hcd: release socket [ 177.594296][ T6162] vhci_hcd: disconnect device [ 177.600213][ T6162] vhci_hcd: stop threads [ 177.610081][ T6162] vhci_hcd: release socket [ 177.740851][ T6740] loop1: detected capacity change from 0 to 2048 [ 177.949554][ T6162] vhci_hcd: disconnect device [ 178.011851][ T6740] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 178.052897][ T6740] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 178.343015][ T6162] vhci_hcd: stop threads [ 178.347294][ T6162] vhci_hcd: release socket [ 178.390702][ T6735] vhci_hcd: connection closed [ 178.414199][ T4256] EXT4-fs (loop1): unmounting filesystem. [ 178.428728][ T6162] vhci_hcd: disconnect device [ 178.433954][ T6162] vhci_hcd: stop threads [ 178.445478][ T6162] vhci_hcd: release socket [ 178.451497][ T6162] vhci_hcd: disconnect device [ 178.485400][ T6162] vhci_hcd: stop threads [ 178.500500][ T6162] vhci_hcd: release socket [ 178.522106][ T6162] vhci_hcd: disconnect device [ 178.857817][ T6767] netlink: 12 bytes leftover after parsing attributes in process `syz.1.841'. [ 178.926326][ T6769] sch_tbf: peakrate 8 is lower than or equals to rate 12 ! [ 179.121567][ T6775] [ 179.123959][ T6775] ====================================================== [ 179.130986][ T6775] WARNING: possible circular locking dependency detected [ 179.138029][ T6775] 6.1.131-syzkaller #0 Not tainted [ 179.143150][ T6775] ------------------------------------------------------ [ 179.150176][ T6775] syz.3.845/6775 is trying to acquire lock: [ 179.156079][ T6775] ffff88813fffacd8 (&zone->lock){..-.}-{2:2}, at: get_page_from_freelist+0xa9f/0x38d0 [ 179.165723][ T6775] [ 179.165723][ T6775] but task is already holding lock: [ 179.173105][ T6775] ffff8880587faa38 (&trie->lock){-.-.}-{2:2}, at: trie_update_elem+0xc6/0xdc0 [ 179.182044][ T6775] [ 179.182044][ T6775] which lock already depends on the new lock. [ 179.182044][ T6775] [ 179.192459][ T6775] [ 179.192459][ T6775] the existing dependency chain (in reverse order) is: [ 179.201477][ T6775] [ 179.201477][ T6775] -> #1 (&trie->lock){-.-.}-{2:2}: [ 179.208836][ T6775] lock_acquire+0x1f8/0x5a0 [ 179.213882][ T6775] _raw_spin_lock_irqsave+0xd1/0x120 [ 179.219701][ T6775] trie_delete_elem+0x90/0x690 [ 179.225002][ T6775] bpf_prog_04da3e87137f0056+0x26/0x3c [ 179.231012][ T6775] bpf_trace_run2+0x1fd/0x410 [ 179.236224][ T6775] trace_contention_end+0x14c/0x190 [ 179.241961][ T6775] __pv_queued_spin_lock_slowpath+0x935/0xc50 [ 179.248587][ T6775] queued_spin_lock_slowpath+0x42/0x50 [ 179.254599][ T6775] do_raw_spin_lock+0x269/0x370 [ 179.255637][ T6783] loop0: detected capacity change from 0 to 2048 [ 179.259962][ T6775] _raw_spin_lock_irqsave+0xdd/0x120 [ 179.259990][ T6775] __free_pages_ok+0x622/0x1120 [ 179.277474][ T6775] free_large_kmalloc+0xfb/0x190 [ 179.282954][ T6775] skb_release_data+0x5de/0x7a0 [ 179.288356][ T6775] kfree_skb_reason+0x16f/0x390 [ 179.291208][ T6784] loop1: detected capacity change from 0 to 164 [ 179.293728][ T6775] tipc_recvstream+0x807/0xf70 [ 179.293757][ T6775] ____sys_recvmsg+0x285/0x530 [ 179.310536][ T6775] __sys_recvmsg+0x2e9/0x3d0 [ 179.315641][ T6775] do_syscall_64+0x3b/0xb0 [ 179.320572][ T6775] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 179.326985][ T6775] [ 179.326985][ T6775] -> #0 (&zone->lock){..-.}-{2:2}: [ 179.334282][ T6775] validate_chain+0x1661/0x5950 [ 179.339654][ T6775] __lock_acquire+0x125b/0x1f80 [ 179.345032][ T6775] lock_acquire+0x1f8/0x5a0 [ 179.350055][ T6775] _raw_spin_lock_irqsave+0xd1/0x120 [ 179.355849][ T6775] get_page_from_freelist+0xa9f/0x38d0 [ 179.361829][ T6775] __alloc_pages+0x28d/0x770 [ 179.366938][ T6775] __kmalloc_large_node+0x91/0x1d0 [ 179.372570][ T6775] __kmalloc_node+0x111/0x230 [ 179.377778][ T6775] bpf_map_kmalloc_node+0xce/0x1c0 [ 179.383405][ T6775] trie_update_elem+0x175/0xdc0 [ 179.388768][ T6775] bpf_map_update_value+0x5cf/0x6f0 [ 179.394482][ T6775] map_update_elem+0x503/0x680 [ 179.399751][ T6775] __sys_bpf+0x337/0x6c0 [ 179.404500][ T6775] __x64_sys_bpf+0x78/0x90 [ 179.409434][ T6775] do_syscall_64+0x3b/0xb0 [ 179.414364][ T6775] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 179.420772][ T6775] [ 179.420772][ T6775] other info that might help us debug this: [ 179.420772][ T6775] [ 179.430989][ T6775] Possible unsafe locking scenario: [ 179.430989][ T6775] [ 179.438423][ T6775] CPU0 CPU1 [ 179.443771][ T6775] ---- ---- [ 179.449121][ T6775] lock(&trie->lock); [ 179.453178][ T6775] lock(&zone->lock); [ 179.459755][ T6775] lock(&trie->lock); [ 179.466331][ T6775] lock(&zone->lock); [ 179.470386][ T6775] [ 179.470386][ T6775] *** DEADLOCK *** [ 179.470386][ T6775] [ 179.478598][ T6775] 2 locks held by syz.3.845/6775: [ 179.483606][ T6775] #0: ffffffff8d32e6c0 (rcu_read_lock){....}-{1:2}, at: bpf_map_update_value+0x207/0x6f0 [ 179.493526][ T6775] #1: ffff8880587faa38 (&trie->lock){-.-.}-{2:2}, at: trie_update_elem+0xc6/0xdc0 [ 179.502830][ T6775] [ 179.502830][ T6775] stack backtrace: [ 179.508720][ T6775] CPU: 1 PID: 6775 Comm: syz.3.845 Not tainted 6.1.131-syzkaller #0 [ 179.516696][ T6775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 179.526756][ T6775] Call Trace: [ 179.530028][ T6775] [ 179.532952][ T6775] dump_stack_lvl+0x1e3/0x2cb [ 179.537627][ T6775] ? nf_tcp_handle_invalid+0x647/0x647 [ 179.543078][ T6775] ? print_circular_bug+0x12b/0x1a0 [ 179.548280][ T6775] check_noncircular+0x2fa/0x3b0 [ 179.553213][ T6775] ? reacquire_held_locks+0x660/0x660 [ 179.558599][ T6775] ? add_chain_block+0x850/0x850 [ 179.563538][ T6775] ? lockdep_lock+0x11f/0x2a0 [ 179.568214][ T6775] ? reacquire_held_locks+0x660/0x660 [ 179.573577][ T6775] ? _find_first_zero_bit+0xd0/0x100 [ 179.578853][ T6775] validate_chain+0x1661/0x5950 [ 179.583700][ T6775] ? __lock_acquire+0x125b/0x1f80 [ 179.588749][ T6775] ? reacquire_held_locks+0x660/0x660 [ 179.594130][ T6775] ? mark_lock+0x9a/0x340 [ 179.598469][ T6775] ? mark_lock+0x9a/0x340 [ 179.602787][ T6775] __lock_acquire+0x125b/0x1f80 [ 179.607653][ T6775] lock_acquire+0x1f8/0x5a0 [ 179.612162][ T6775] ? get_page_from_freelist+0xa9f/0x38d0 [ 179.617798][ T6775] ? read_lock_is_recursive+0x10/0x10 [ 179.623165][ T6775] ? mark_lock+0x9a/0x340 [ 179.627487][ T6775] ? validate_chain+0x112/0x5950 [ 179.632422][ T6775] ? __lock_acquire+0x125b/0x1f80 [ 179.637452][ T6775] _raw_spin_lock_irqsave+0xd1/0x120 [ 179.642731][ T6775] ? get_page_from_freelist+0xa9f/0x38d0 [ 179.648389][ T6775] ? _raw_spin_lock+0x40/0x40 [ 179.653067][ T6775] get_page_from_freelist+0xa9f/0x38d0 [ 179.658540][ T6775] ? __alloc_pages+0x770/0x770 [ 179.663301][ T6775] ? prepare_alloc_pages+0x35b/0x5b0 [ 179.668591][ T6775] __alloc_pages+0x28d/0x770 [ 179.673179][ T6775] ? zone_statistics+0x160/0x160 [ 179.678113][ T6775] ? __lock_acquire+0x1f80/0x1f80 [ 179.683140][ T6775] __kmalloc_large_node+0x91/0x1d0 [ 179.688251][ T6775] ? bpf_map_kmalloc_node+0xce/0x1c0 [ 179.693535][ T6775] __kmalloc_node+0x111/0x230 [ 179.698213][ T6775] bpf_map_kmalloc_node+0xce/0x1c0 [ 179.703333][ T6775] trie_update_elem+0x175/0xdc0 [ 179.708179][ T6775] ? exc_page_fault+0x1c0/0x620 [ 179.713030][ T6775] ? asm_exc_page_fault+0x22/0x30 [ 179.718053][ T6775] bpf_map_update_value+0x5cf/0x6f0 [ 179.723256][ T6775] map_update_elem+0x503/0x680 [ 179.728020][ T6775] __sys_bpf+0x337/0x6c0 [ 179.732259][ T6775] ? bpf_link_show_fdinfo+0x300/0x300 [ 179.737633][ T6775] ? print_irqtrace_events+0x210/0x210 [ 179.743085][ T6775] ? print_irqtrace_events+0x210/0x210 [ 179.748561][ T6775] ? syscall_enter_from_user_mode+0x2e/0x230 [ 179.754538][ T6775] ? lockdep_hardirqs_on+0x94/0x130 [ 179.759730][ T6775] __x64_sys_bpf+0x78/0x90 [ 179.764146][ T6775] do_syscall_64+0x3b/0xb0 [ 179.768563][ T6775] ? clear_bhb_loop+0x45/0xa0 [ 179.773256][ T6775] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 179.779143][ T6775] RIP: 0033:0x7fdac498d169 [ 179.783560][ T6775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 179.803236][ T6775] RSP: 002b:00007fdac5799038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 179.811666][ T6775] RAX: ffffffffffffffda RBX: 00007fdac4ba5fa0 RCX: 00007fdac498d169 [ 179.819655][ T6775] RDX: 0000000000000020 RSI: 0000200000000000 RDI: 0000000000000002 [ 179.827646][ T6775] RBP: 00007fdac4a0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 179.835671][ T6775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 179.843656][ T6775] R13: 0000000000000000 R14: 00007fdac4ba5fa0 R15: 00007ffdad94d238 [ 179.851700][ T6775] [ 179.985778][ T6786] loop4: detected capacity change from 0 to 2048 [ 180.290455][ T26] kauditd_printk_skb: 46 callbacks suppressed [ 180.290470][ T26] audit: type=1326 audit(1742677976.454:720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6781 comm="syz.1.848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fef9158bad0 code=0x7ffc0000 [ 180.340328][ T26] audit: type=1326 audit(1742677976.454:721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6781 comm="syz.1.848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7fef9158beb7 code=0x7ffc0000 [ 180.364435][ T26] audit: type=1326 audit(1742677976.454:722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6781 comm="syz.1.848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fef9158bad0 code=0x7ffc0000 [ 180.387159][ T26] audit: type=1326 audit(1742677976.454:723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6781 comm="syz.1.848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fef9158cd6b code=0x7ffc0000 [ 180.387774][ T6786] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 180.416672][ T26] audit: type=1326 audit(1742677976.454:724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6781 comm="syz.1.848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fef9158bdca code=0x7ffc0000 [ 180.419714][ T4250] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 180.451766][ T6776] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 180.498003][ T6780] netlink: 8 bytes leftover after parsing attributes in process `syz.0.847'. [ 180.515782][ T6780] netlink: 16 bytes leftover after parsing attributes in process `syz.0.847'. [ 180.531315][ T26] audit: type=1326 audit(1742677976.454:725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6781 comm="syz.1.848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 180.553888][ T26] audit: type=1326 audit(1742677976.454:726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6781 comm="syz.1.848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 180.583695][ T26] audit: type=1326 audit(1742677976.464:727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6781 comm="syz.1.848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 180.671337][ T26] audit: type=1326 audit(1742677976.464:728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6781 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 180.671473][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 180.693242][ T26] audit: type=1326 audit(1742677976.464:729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6781 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef9158d169 code=0x7ffc0000 [ 180.823914][ T6780] loop0: detected capacity change from 0 to 512 [ 180.848414][ T6780] EXT4-fs (loop0): orphan cleanup on readonly fs [ 180.856061][ T6780] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.847: bg 0: block 248: padding at end of block bitmap is not set [ 180.879521][ T6780] EXT4-fs error (device loop0): ext4_acquire_dquot:6795: comm syz.0.847: Failed to acquire dquot type 1 [ 180.895363][ T6780] EXT4-fs (loop0): 1 truncate cleaned up [ 180.901379][ T6780] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 180.968483][ T6780] infiniband syz!: set active [ 180.973578][ T6780] infiniband syz!: added team_slave_0 [ 180.993179][ T6780] RDS/IB: syz!: added [ 180.998665][ T6780] smc: adding ib device syz! with port count 1 [ 181.005501][ T6780] smc: ib device syz! port 1 has pnetid [ 181.371638][ T4263] EXT4-fs (loop0): unmounting filesystem. [ 182.403353][ T4247] vhci_hcd: vhci_device speed not set [ 185.852710][ T4271] Bluetooth: hci1: command 0x0406 tx timeout [ 185.858776][ T4271] Bluetooth: hci3: command 0x0406 tx timeout [ 185.858798][ T4275] Bluetooth: hci4: command 0x0406 tx timeout [ 185.865073][ T48] Bluetooth: hci2: command 0x0406 tx timeout