last executing test programs: 5.077551526s ago: executing program 0 (id=316): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f00000000c0)=[{0x20, 0x5, 0x2, 0xfffff010}, {0x28, 0x7, 0x0, 0xa56e}, {0x6, 0x0, 0x0, 0xa1a}]}, 0x10) sendmmsg(r0, &(0x7f0000000180), 0x4000190, 0x0) 4.884828901s ago: executing program 0 (id=318): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x7}, 0x18) socket$inet6_sctp(0xa, 0x1, 0x84) prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) capset(0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x2, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000040)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, 0x0, 0x0) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r4 = inotify_init1(0x80800) inotify_add_watch(r4, &(0x7f0000000400)='.\x00', 0xa4000021) unshare(0x62040200) 4.873580519s ago: executing program 2 (id=320): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000c80)={0x5c, 0x9, 0x6, 0x801, 0x0, 0x0, {0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x34, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @remote}}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0xe1f}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x88}, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e22}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x10000042}, 0x90) 3.965433056s ago: executing program 2 (id=321): r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000008600850000001b000000b70000000000000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000800030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0xc4}, 0x890) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NFT_BATCH(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=ANY=[@ANYBLOB="14000000100001e456b8aa00000000000000000a3c000000120a09000000000000000000020000000900020073797a310000000008000440080000000900010073797a300000000008000340000000011400000011"], 0x64}}, 0x4004000) 3.77132246s ago: executing program 3 (id=323): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000780)={0x0, 0x0}) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x4b301, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r2, &(0x7f0000000000)={0x30000011}) close_range(r1, 0xffffffffffffffff, 0x0) 3.609668187s ago: executing program 4 (id=324): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000480)={[{@resgid}, {}, {@data_err_ignore}, {@nobarrier}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@nombcache}, {@stripe={'stripe', 0x3d, 0x2}}]}, 0x3, 0x572, &(0x7f0000000c40)="$eJzs3c9rHFUcAPDvbJL+1qZQinqQQA9WajdN4o8KQutRtFjQe12SaSjZdEt2U5pYaHuwIF6kCCIWxD/Au8fiH6B/RUELRUrQg5fIbGbbbZLNJunWbJ3PB6Z9b2ayb96++b79zs4uG0BhjWT/lCJejoivk4iDbdsGI984srLf0sNrk9mSxPLyJ38mkeTrWvsn+f/788pLEfHLFxHHS2vbrS8szlSq1XQur482Zi+P1hcWT1ycrUyn0+ml8YmJU29NjL/7zts96+vr5/7+7uO7H5z66ujStz/dP3Q7iTNxIN/W3o+ncKO9MhIj+XMyFGdW7TjWg8b6SbLTB8C2DORxPhTZHHAwBvKoB/7/rkfEMlBQifiHgmrlAa1r+x5dBz83Hry/cgG0tv+DK++NxJ7mtdG+peSJK6Psene4B+1nbfz8x53b2RJd3oe43oP2AFpu3IyIk4ODa+e/JJ//tu9k883jja1uo2ivP7CT7mb5zxvr5T+lR/lPrJP/7F8ndreje/yX7vegmY6y/O+9dfPfR1PX8EBee6GZ8w0lFy5W05MR8WJEHIuh3Vl9o/s5p5buLXfa1p7/ZUvWfisXzI/j/uDuJ/9mqtKoPE2f2z24GfHK4/w3iTXz/55mrrt6/LPn41xW+PXLrm0cSe+82mlb9/63630GvPxjxGvrjv/jO1rJxvcnR5vnw2jrrFjrr1tHfuvU/tb633vZ+O/buP/DSfv92vrW2/hhzz9pp23bPf93JZ82y7vydVcrjcbcWMSu5KO168cf/22r3to/6/+xoxvPf+ud/3sj4rNN9v/W4Vsdd+2H8Z/a0vhvvXDvw8+/79T+5sb/zWbpWL5mM/PfZg/waZ47AAAAAAAA6DeliDgQSan8qFwqlcsrn+84HPtK1Vq9cfxCbf7SVDS/KzscQ6XWne6DbZ+HGMs/D9uqj6+qT0TEoYj4ZmBvs16erFWndrrzAAAAAAAAAAAAAAAAAAAA0Cf2d/j+f+b3gZ0+OuCZ85PfUFxd478Xv/QE9CWv/1Bc4h+KS/xDcYl/KC7xD8Ul/qG4xD8Ul/gHAAAAAAAAAAAAAAAAAAAAAAAAAACAnjp39my2LC89vDaZ1aeuLMzP1K6cmErrM+XZ+cnyZG3ucnm6VpuupuXJ2my3x6vWapfHxmP+6mgjrTdG6wuL52dr85ca5y/OVqbT8+nQf9IrAAAAAAAAAAAAAAAAAAAAeL7UFxZnKtVqOqfQsXA6+uIwtl1Iuo3y6fxk2NIjR14Y3PkOKjyDwg5PTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQ5t8AAAD//8nLNLM=") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x104) fallocate(r0, 0x0, 0x3, 0x800000) r1 = openat(0xffffffffffffff9c, 0x0, 0x101042, 0x1b6) pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xfecc) 3.555803092s ago: executing program 1 (id=325): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb904}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x8000}, 0x18) r1 = gettid() timer_create(0x0, &(0x7f00000003c0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000000380)) r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=0x0) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r5) sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="010028bd7000fedbdf250200000008000100", @ANYRES32=r3, @ANYBLOB="9817ee5bbf086ae97a89fd90b8633b801cbad218a83d358fc84f81540ee7eca8d7c19dd1400939bcb9c80d565bdf074d048fff37c7ae65fad81347436447d9562c8247805f84c51a9b5cab8d44f9cbca"], 0x1c}, 0x1, 0x0, 0x0, 0x40089}, 0x8004) write$nci(r2, &(0x7f0000000140)=ANY=[@ANYRES32=r4], 0x4) socket$nl_netfilter(0x10, 0x3, 0xc) 3.488933936s ago: executing program 3 (id=326): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) set_mempolicy(0x8006, &(0x7f0000000380)=0x20007, 0x5) setsockopt(r0, 0x84, 0x81, &(0x7f00000002c0)="1ae96d0103010000", 0x8) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10) socket$netlink(0x10, 0x3, 0x10) socket$netlink(0x10, 0x3, 0x10) syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) 3.366027402s ago: executing program 2 (id=327): bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="030000000400000004000000b5"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x4, 0x8, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000000000000000000000000000018020000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000000d000000b70000000000000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r1, 0x0, 0xe, 0x0, &(0x7f0000000180)="c1dfb080cd21d308098ee68886dd", 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 3.223142806s ago: executing program 2 (id=328): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) pipe2(&(0x7f0000000000)={0x0, 0x0}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r2, 0x0, r4, 0x0, 0x8000f28, 0x8) splice(r3, 0x0, r1, 0x0, 0x6, 0xa) close_range(r1, 0xffffffffffffffff, 0x0) 3.085554192s ago: executing program 4 (id=329): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94) ioctl$sock_TIOCINQ(r0, 0x541b, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) openat$pfkey(0xffffffffffffff9c, &(0x7f00000007c0), 0x204000, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000c00)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x20007, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x2}, 0x50) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x3) mkdirat(0xffffffffffffff9c, 0x0, 0x0) listxattr(&(0x7f0000000180)='./file1\x00', 0x0, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xe, 0xb}, {0x0, 0x1}, {0x0, 0xa}}}, 0x24}}, 0x800) 2.997537259s ago: executing program 2 (id=330): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000780), 0x11, 0x553, &(0x7f0000001080)="$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") r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x1c, 0x7, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x1c}}, 0x0) read(r0, &(0x7f00000000c0)=""/81, 0x51) 2.893462194s ago: executing program 4 (id=331): unshare(0x40600) socketpair$unix(0x1, 0x2, 0x0, 0x0) poll(&(0x7f0000002040)=[{0xffffffffffffffff, 0x8040}], 0x1, 0xbf8) 2.725520234s ago: executing program 2 (id=332): syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000940)=[{&(0x7f0000000600)}], 0x1, 0x0, 0x480}, 0x0, 0x50, 0x1}) r0 = syz_io_uring_setup(0x221d, &(0x7f0000000100)={0x0, 0x6e7f, 0x800, 0x2, 0x5cc}, &(0x7f0000000280)=0x0, &(0x7f00000005c0)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffa, 0x0, 0x4) io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000740)=[{&(0x7f00000003c0)=""/201, 0xc9}], 0x1) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000000c0)={0x1, &(0x7f0000000200)=[{0x30, 0x4, 0x0, 0x2}]}, 0xffffffffffffff0e) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x1, 0x0, 0xffffffffffffffff, 0x0, r0}) io_uring_enter(r0, 0x66ae, 0x4, 0x2, 0x0, 0x0) 2.719313015s ago: executing program 0 (id=333): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000003c0), 0x4804, &(0x7f0000000840)={[{@redirect_dir_off}, {@xino_on}]}) syz_mount_image$ext4(&(0x7f0000000140)='ext2\x00', &(0x7f0000000080)='./file0\x00', 0xa00401, &(0x7f0000000380), 0x8, 0x48d, &(0x7f0000001340)="$eJzs3M1vVFUbAPDnTqfl+21fxA8QBUUj0djSgsrCBRhNWGhi1AUua1sIUiih1QghWl3g0pAYt8aFCxP/Ale6McrKxK3uDQkxbEDdXHNn7i23Q2ectlPGOr9fMsw592POebjnzJxzT2cC6Fl7s3+SiK0R8UtEDNaziw/YW3+6dePSxB83Lk0kkaav/57Ujrt549JEcWhx3pYiM794e9nshYunx6enp87n+ZG5M+dGZi9cfPrUmfGTUyenzo4dPnzo4Ohzz44905E4szrd3PX+zO6dx9688srE8Stv/fh1UsS/KI53O1Je6aXL+orE450q5V9iWymdVOvPr3WrMrQta5DZ5eqv9f/B6Ivqwr7BeOmjrlYOWFNpmqYbmu+eT4H/sCS6XQOgO/LP+SRifiKbA5fn873g+tH6BCiL+1b+qO+pRiU/pr9hfttJ2Wzr+Pyfn2ePaLifAgCwFr49Wn8uxn63xx+Vavm4I/na0FBE/D8itkfEPRGxIyLujYj7IuL+iHhg4Yz+tspfvEiSjbgaxz+VaysMrS3Z+O/5fG1r8fivGP3FUF+e21aLvz85cWp66kBE/C8i9kf/hiw/2qKM7178+ZNm+/aWxn/ZIyu/GAvm9bhWbbhBNzk+N76amMuufxixq7pU/MnCSkASETsjYteelZVx6smvdjfb98/xt1BdWX3K0i8inqhf//loiL+QtF6fHNkY01MHRopWcaerP11+tVn5q4q/A7Lrv3nJ9r8Q/1BSXq+dXX4Zl3/9uOmcps32P1A+J2v/A8kbtXSx473xubnzoxEDycv59iP59sXl1Y4bu318Fv/+fUv3/+1x+3/iwYjIGvFDEfFwROzJ6/5IRDwaEftaxP/DC4+9vYz4j50rlbvWsvgnl3X9myaKte07dvWd/v6b0qWqf4g0iz+JJa7/oVpqf76lnfe/ljU9v5rWDAAAAOtPJSK2RlIZXkhXKsPD9b+X3xGbK9Mzs3NPnZh55+xk/TsCQ9FfKe50DS7cD4350XxaX9wfHWvIH8zvG3+6YVMtPzwxMz3Z7eChx21p0v8zv/V1u3bAmuvAOhqwTq20/6dp+kGHqwLcZT7/oXfp/9C7luj/mxryLX4jAFjPsv6/sWGbiT30BuN/6F36P/Qu/R96l/4PPSn/Jny1lrgaEe19bb6ziez9564XuopEmnap9IGOvWCarPZ1otK1SxDdbgDLTPyV/9hmtuWzu1r6lys/vdvvTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJ3xdwAAAP//KxjgDg==") 2.473495753s ago: executing program 3 (id=334): r0 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000400)={'vxcan1\x00', 0x0}) bind$can_raw(r0, &(0x7f0000000000), 0x10) ioctl$SIOCGSTAMP(r0, 0x8906, 0x0) recvmsg$unix(r0, 0x0, 0x100) sendmsg$can_raw(r0, &(0x7f0000000240)={&(0x7f0000000780)={0x1d, r1}, 0x10, &(0x7f0000000200)={&(0x7f0000000140)=@can={{0x3, 0x0, 0x1, 0x1}, 0x0, 0x0, 0x0, 0x0, "e5631d6f20af6daa"}, 0x10}}, 0x0) 2.381158613s ago: executing program 1 (id=335): mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRESHEX]) r0 = socket$inet6(0xa, 0x2, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'wlan0\x00', &(0x7f0000000000)=@ethtool_stats={0x11}}) socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r4 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0xfffffffd, @empty}, 0x1c) r5 = dup(r4) r6 = open(&(0x7f00000000c0)='./file0\x00', 0x1298c2, 0x0) ftruncate(r6, 0x200004) sendfile(r5, r6, 0x0, 0x80001d00c0d1) 2.2814854s ago: executing program 3 (id=336): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) syz_mount_image$udf(&(0x7f0000000040), &(0x7f0000000c80)='./file1\x00', 0x800010, &(0x7f0000000740)={[{@umask={'umask', 0x3d, 0xffff}}, {@nostrict}, {@uid}, {@nostrict}, {@volume={'volume', 0x3d, 0x4}}, {@rootdir={'rootdir', 0x3d, 0xf}}, {@unhide}, {@nostrict}, {@uid_forget}, {@volume={'volume', 0x3d, 0xfffffffffffffffe}}]}, 0x1, 0xc29, &(0x7f0000001940)="$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") kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, 0xffffffffffffffff, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff, 0x10001}) ptrace$peeksig(0x4209, 0x0, 0x0, 0x0) syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000040)='./bus\x00', 0x2029c1b, 0x0, 0x1, 0x0, &(0x7f00000000c0)) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000340)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1e, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x3000000, 0x0, 0x0, 0x0, 0x2}, {{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1c}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x4}, {0x3, 0x0, 0x3, 0xa, 0x2}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x0, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x4, 0x0, 0xc}, {0x18, 0x2, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @sk_lookup=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 1.299833223s ago: executing program 0 (id=337): socket$nl_netfilter(0x10, 0x3, 0xc) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000005c0)={{0x14}, [@NFT_MSG_DELCHAIN={0x20, 0x5, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x8}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x48}, 0x1, 0x0, 0x0, 0x8001}, 0x0) 984.051264ms ago: executing program 4 (id=338): munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000540), 0x1) write$sndseq(r1, &(0x7f0000000100)=[{0x5, 0x3, 0x0, 0xfd, @time, {}, {0xfd, 0x3}, @result={0x2, 0x63e}}], 0x1c) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b00)={0x11, 0x5, &(0x7f0000000380)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x801}, 0x94) socket$inet6_sctp(0xa, 0x5, 0x84) fstat(0xffffffffffffffff, &(0x7f0000000440)) openat$tun(0xffffffffffffff9c, 0x0, 0x1c1842, 0x0) r2 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r3 = mq_open(&(0x7f0000000080)='$@\x00', 0x40, 0xb4, 0x0) fcntl$setlease(r3, 0x400, 0x0) mq_open(&(0x7f0000000140)='$@\x00', 0x1, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 852.395998ms ago: executing program 3 (id=339): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]}) r0 = socket$can_bcm(0x1d, 0x2, 0x2) r1 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(0xffffffffffffffff, &(0x7f00000000c0), 0x10) dup3(r1, r0, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000500)=@ipv4_newroute={0x24, 0x18, 0x1, 0x3, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@RTA_GATEWAY={0x8, 0x5, @local}]}, 0x24}}, 0x40080) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000100)={'vcan0\x00'}) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x17, 0x2000000000000242, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==") bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x47, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r5 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0) ftruncate(r5, 0x2007ffc) sendfile(r5, r5, 0x0, 0x800000009) 752.371105ms ago: executing program 1 (id=340): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = syz_io_uring_setup(0x10d2, &(0x7f0000000480)={0x0, 0x804525, 0x1000, 0x2, 0x12d}, &(0x7f0000000440)=0x0, &(0x7f0000000640)=0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x0, 0x0, &(0x7f00000001c0)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x46, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8200}, 0x94) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffff8, 0x0, 0x4) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2f, 0x28, 0x0, 0x9}]}, 0x10) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_MSG_RING={0x28, 0x20, 0x0, r2, 0x0, 0x0, 0x0, 0x2, 0x1}) io_uring_enter(r2, 0x22d0, 0x20, 0x0, 0x0, 0x0) 675.965229ms ago: executing program 4 (id=341): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) sendmsg$NFQNL_MSG_VERDICT(0xffffffffffffffff, 0x0, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r2 = socket(0x400000000010, 0x3, 0x0) r3 = socket$unix(0x1, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_skbprio={{0xc}, {0x8, 0x2, 0x7fff}}]}, 0x38}}, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0x1, 0x3}, {}, {0x8, 0xfff1}}}, 0x24}}, 0x0) 525.716879ms ago: executing program 1 (id=342): syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff) r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$SMC_PNETID_ADD(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000145}, 0x0) 487.734295ms ago: executing program 0 (id=343): bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="030000000400000004000000b5"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x4, 0x8, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000000000000000000000000000018020000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000000d000000b70000000000000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r1, 0x0, 0xe, 0x0, &(0x7f0000000180)="c1dfb080cd21d308098ee68886dd", 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 395.937042ms ago: executing program 1 (id=344): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) set_mempolicy(0x8006, &(0x7f0000000380)=0x20007, 0x5) setsockopt(r0, 0x84, 0x81, &(0x7f00000002c0)="1ae96d0103010000", 0x8) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10) socket$netlink(0x10, 0x3, 0x10) syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) 147.57049ms ago: executing program 1 (id=345): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x81, 0x4bc, &(0x7f0000000a40)="$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") openat(0xffffffffffffff9c, 0x0, 0x191342, 0x141) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_mreq(r3, 0x29, 0x14, &(0x7f0000000080)={@empty}, 0x61) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) r4 = openat$cgroup_devices(0xffffffffffffffff, &(0x7f00000000c0)='devices.deny\x00', 0x2, 0x0) write$cgroup_devices(r4, &(0x7f0000000240)={'a', ' *:* ', 'r\x00'}, 0x8) r5 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r5, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6, 0x0, 0x0, 0x81}, 0x1c) mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r5, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) mkdir(0x0, 0x184) openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x84042, 0x1fb) 106.837677ms ago: executing program 4 (id=346): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb904}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0, 0x0, 0x8000}, 0x18) r1 = gettid() timer_create(0x0, &(0x7f00000003c0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000000380)) r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=0x0) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r5) sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="010028bd7000fedbdf250200000008000100", @ANYRES32=r3, @ANYBLOB="9817ee5bbf086ae97a89fd90b8633b801cbad218a83d358fc84f81540ee7eca8d7c19dd1400939bcb9c80d565bdf074d048fff37c7ae65fad81347436447d9562c8247805f84c51a9b5cab8d44f9cbca"], 0x1c}, 0x1, 0x0, 0x0, 0x40089}, 0x8004) write$nci(r2, &(0x7f0000000140)=ANY=[@ANYRES32=r4], 0x4) socket$nl_netfilter(0x10, 0x3, 0xc) 1.787542ms ago: executing program 3 (id=347): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./bus\x00', 0x1001a, &(0x7f0000000380)={[{@min_batch_time={'min_batch_time', 0x3d, 0x7}}, {@discard}, {@inlinecrypt}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nojournal_checksum}, {@jqfmt_vfsv1}]}, 0x1, 0x42e, &(0x7f0000001980)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r1}, 0x10) write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b) 0s ago: executing program 0 (id=348): r0 = socket$alg(0x26, 0x5, 0x0) r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0) listen(r1, 0x0) ioctl$SIOCX25SFACILITIES(r1, 0x89e3, &(0x7f0000000000)={0x67, 0x1, 0x4, 0x5, 0x7f, 0x81}) bind$alg(r0, &(0x7f0000000100)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_hmac_sha256\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000340), 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x94) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, 0x0, 0x4000840) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x9, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, 0x94) accept4(0xffffffffffffffff, &(0x7f0000000000)=@tipc=@name, &(0x7f0000000080)=0x80, 0x80800) openat$ppp(0xffffffffffffff9c, &(0x7f0000000240), 0x709843, 0x0) unshare(0x2c020400) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000180000002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000004c0)={r3, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x8}, 0x50) syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)=ANY=[@ANYBLOB="440000001000010400000000ffdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="00000000000000001400030076657468305f746f5f626f6e6400000008003a"], 0x44}}, 0x0) sendmsg$nl_xfrm(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[], 0xb8}, 0x1, 0x0, 0x0, 0x40009c0}, 0x80) r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0200000004000000180000000100000080000000b9ab4ce3e3194b70790c243ff14710c7ff00d0f17665c76b8dcc0ff1e75264f87b50995d392fb817", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48) r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b000040f38ea6af1ddcceb547ed76340000000000000000ecffffff00000000fb14c39def12c30758806eef57f9b21481c2feb37b0487cae99f79b3562bae05ca4e5c527e4771ab28ba594d8ac64006b139fa71962205eaaf9f2e0beb82085201cf950be8cedd04101405d481e5dadd3541d4038dfec8725bb373e93ff7be9891f006ed211de25ee8e5c2fb9a3c79eda14a810b12930836da4b322456", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48) r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_int(r7, 0x0, 0xb, &(0x7f00000000c0)=0x3, 0x4) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x7, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd}, {{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfff0}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x0, 0x6, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x2, 0x2, 0x0, r5, 0x0, 0x0, 0x0, 0x2}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8, 0x0, 0x0, 0x2}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6b, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r8 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000001480)=ANY=[@ANYBLOB="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"], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.154' (ED25519) to the list of known hosts. [ 74.511709][ T5814] cgroup: Unknown subsys name 'net' [ 74.622309][ T5814] cgroup: Unknown subsys name 'cpuset' [ 74.632886][ T5814] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 75.992616][ T5814] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 79.799188][ T5827] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 79.807533][ T5827] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 79.816580][ T5827] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 79.824474][ T5827] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 79.834849][ T5829] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 79.842739][ T5829] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 79.862599][ T5837] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 79.873893][ T5837] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 79.881379][ T5842] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 79.882008][ T5837] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 79.897357][ T5837] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 79.899267][ T5842] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 79.904722][ T5837] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 79.912437][ T5842] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 79.919468][ T5844] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 79.946058][ T5844] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 79.953264][ T5843] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 79.962130][ T5844] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 79.969422][ T5844] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 79.978125][ T5843] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 79.978719][ T5827] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 79.985930][ T5843] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 79.994040][ T5827] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 80.007079][ T5827] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 80.019024][ T5829] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 80.647171][ T5826] chnl_net:caif_netlink_parms(): no params data found [ 80.766120][ T5824] chnl_net:caif_netlink_parms(): no params data found [ 80.839932][ T5831] chnl_net:caif_netlink_parms(): no params data found [ 80.963630][ T5825] chnl_net:caif_netlink_parms(): no params data found [ 80.987319][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.994583][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.002316][ T5826] bridge_slave_0: entered allmulticast mode [ 81.009792][ T5826] bridge_slave_0: entered promiscuous mode [ 81.067339][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.074882][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.082272][ T5826] bridge_slave_1: entered allmulticast mode [ 81.089466][ T5826] bridge_slave_1: entered promiscuous mode [ 81.097201][ T5835] chnl_net:caif_netlink_parms(): no params data found [ 81.188775][ T5824] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.196109][ T5824] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.203505][ T5824] bridge_slave_0: entered allmulticast mode [ 81.211121][ T5824] bridge_slave_0: entered promiscuous mode [ 81.239884][ T5831] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.247052][ T5831] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.254338][ T5831] bridge_slave_0: entered allmulticast mode [ 81.261974][ T5831] bridge_slave_0: entered promiscuous mode [ 81.282558][ T5824] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.291645][ T5824] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.299167][ T5824] bridge_slave_1: entered allmulticast mode [ 81.306449][ T5824] bridge_slave_1: entered promiscuous mode [ 81.336621][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 81.357324][ T5831] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.364717][ T5831] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.373819][ T5831] bridge_slave_1: entered allmulticast mode [ 81.381005][ T5831] bridge_slave_1: entered promiscuous mode [ 81.422298][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 81.448173][ T5825] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.455843][ T5825] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.463215][ T5825] bridge_slave_0: entered allmulticast mode [ 81.470341][ T5825] bridge_slave_0: entered promiscuous mode [ 81.481411][ T5824] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 81.523300][ T5831] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 81.532739][ T5825] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.540359][ T5825] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.547644][ T5825] bridge_slave_1: entered allmulticast mode [ 81.555287][ T5825] bridge_slave_1: entered promiscuous mode [ 81.565400][ T5824] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 81.595522][ T5831] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 81.629330][ T5826] team0: Port device team_slave_0 added [ 81.689532][ T5826] team0: Port device team_slave_1 added [ 81.727613][ T5825] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 81.740382][ T5824] team0: Port device team_slave_0 added [ 81.758067][ T5835] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.766178][ T5835] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.776111][ T5835] bridge_slave_0: entered allmulticast mode [ 81.784441][ T5835] bridge_slave_0: entered promiscuous mode [ 81.796730][ T5831] team0: Port device team_slave_0 added [ 81.805276][ T5825] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 81.845856][ T5824] team0: Port device team_slave_1 added [ 81.884383][ T5835] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.893477][ T5835] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.901615][ T5835] bridge_slave_1: entered allmulticast mode [ 81.914696][ T5835] bridge_slave_1: entered promiscuous mode [ 81.925471][ T5831] team0: Port device team_slave_1 added [ 81.952130][ T5825] team0: Port device team_slave_0 added [ 81.977280][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 81.984796][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 82.013449][ T5827] Bluetooth: hci0: command tx timeout [ 82.019470][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 82.034422][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 82.041982][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 82.068239][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 82.078988][ T5827] Bluetooth: hci4: command tx timeout [ 82.088759][ T5827] Bluetooth: hci1: command tx timeout [ 82.088781][ T5148] Bluetooth: hci3: command tx timeout [ 82.089051][ T5148] Bluetooth: hci2: command tx timeout [ 82.128038][ T5825] team0: Port device team_slave_1 added [ 82.135010][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 82.143019][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 82.169722][ T5824] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 82.224096][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 82.231429][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 82.257992][ T5824] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 82.281348][ T5835] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 82.291528][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 82.298915][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 82.325507][ T5831] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 82.348960][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 82.355918][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 82.382328][ T5825] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 82.395715][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 82.402988][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 82.429806][ T5825] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 82.451187][ T5835] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 82.461347][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 82.468317][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 82.494740][ T5831] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 82.584178][ T5826] hsr_slave_0: entered promiscuous mode [ 82.590997][ T5826] hsr_slave_1: entered promiscuous mode [ 82.620468][ T5824] hsr_slave_0: entered promiscuous mode [ 82.626958][ T5824] hsr_slave_1: entered promiscuous mode [ 82.633552][ T5824] debugfs: 'hsr0' already exists in 'hsr' [ 82.639448][ T5824] Cannot create hsr debugfs directory [ 82.680976][ T5825] hsr_slave_0: entered promiscuous mode [ 82.687297][ T5825] hsr_slave_1: entered promiscuous mode [ 82.694001][ T5825] debugfs: 'hsr0' already exists in 'hsr' [ 82.700154][ T5825] Cannot create hsr debugfs directory [ 82.707620][ T5835] team0: Port device team_slave_0 added [ 82.759148][ T5835] team0: Port device team_slave_1 added [ 82.790181][ T5831] hsr_slave_0: entered promiscuous mode [ 82.796533][ T5831] hsr_slave_1: entered promiscuous mode [ 82.803106][ T5831] debugfs: 'hsr0' already exists in 'hsr' [ 82.808918][ T5831] Cannot create hsr debugfs directory [ 82.934189][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 82.941558][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 82.969058][ T5835] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 83.007071][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 83.014262][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 83.040751][ T5835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 83.294271][ T5835] hsr_slave_0: entered promiscuous mode [ 83.301586][ T5835] hsr_slave_1: entered promiscuous mode [ 83.307873][ T5835] debugfs: 'hsr0' already exists in 'hsr' [ 83.313900][ T5835] Cannot create hsr debugfs directory [ 83.573123][ T5824] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 83.586877][ T5824] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 83.611447][ T5824] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 83.621827][ T5824] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 83.695436][ T5831] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 83.719511][ T5831] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 83.743302][ T5831] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 83.753834][ T5831] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 83.831603][ T5826] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 83.855874][ T5826] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 83.879034][ T5826] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 83.893354][ T5826] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 83.966599][ T5825] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 83.987151][ T5825] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 83.998040][ T5825] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 84.010624][ T5825] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 84.080212][ T5148] Bluetooth: hci0: command tx timeout [ 84.106288][ T5835] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 84.127373][ T5835] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 84.146285][ T5835] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 84.158822][ T5148] Bluetooth: hci1: command tx timeout [ 84.159405][ T5829] Bluetooth: hci3: command tx timeout [ 84.164562][ T5843] Bluetooth: hci2: command tx timeout [ 84.175598][ T5827] Bluetooth: hci4: command tx timeout [ 84.175857][ T5824] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.207117][ T5835] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 84.306335][ T5831] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.317700][ T5824] 8021q: adding VLAN 0 to HW filter on device team0 [ 84.346112][ T3514] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.353512][ T3514] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.391151][ T3514] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.398571][ T3514] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.423765][ T5831] 8021q: adding VLAN 0 to HW filter on device team0 [ 84.467708][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.474889][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.499183][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.514120][ T50] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.521426][ T50] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.594915][ T5826] 8021q: adding VLAN 0 to HW filter on device team0 [ 84.630957][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.638116][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.656511][ T5825] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.703829][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.711225][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.740385][ T5825] 8021q: adding VLAN 0 to HW filter on device team0 [ 84.808147][ T3477] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.815391][ T3477] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.871983][ T3495] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.879258][ T3495] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.928209][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0 [ 85.037428][ T5835] 8021q: adding VLAN 0 to HW filter on device team0 [ 85.086641][ T5824] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 85.130824][ T3514] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.138096][ T3514] bridge0: port 1(bridge_slave_0) entered forwarding state [ 85.190511][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 85.209400][ T3495] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.216594][ T3495] bridge0: port 2(bridge_slave_1) entered forwarding state [ 85.407461][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 85.447318][ T5824] veth0_vlan: entered promiscuous mode [ 85.462362][ T5831] veth0_vlan: entered promiscuous mode [ 85.505746][ T5831] veth1_vlan: entered promiscuous mode [ 85.530945][ T5824] veth1_vlan: entered promiscuous mode [ 85.617452][ T5825] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 85.653406][ T5826] veth0_vlan: entered promiscuous mode [ 85.707800][ T5824] veth0_macvtap: entered promiscuous mode [ 85.732857][ T5826] veth1_vlan: entered promiscuous mode [ 85.745461][ T5824] veth1_macvtap: entered promiscuous mode [ 85.775881][ T5831] veth0_macvtap: entered promiscuous mode [ 85.788382][ T5831] veth1_macvtap: entered promiscuous mode [ 85.853476][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 85.866503][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 85.878307][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 85.909674][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 85.935621][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 85.944161][ T50] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.993125][ T5826] veth0_macvtap: entered promiscuous mode [ 86.002653][ T50] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.021409][ T50] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.039987][ T50] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.049863][ T50] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.075241][ T5826] veth1_macvtap: entered promiscuous mode [ 86.083929][ T50] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.094931][ T50] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.105429][ T50] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.160660][ T5843] Bluetooth: hci0: command tx timeout [ 86.197752][ T5835] veth0_vlan: entered promiscuous mode [ 86.241257][ T5827] Bluetooth: hci1: command tx timeout [ 86.241267][ T5829] Bluetooth: hci4: command tx timeout [ 86.250154][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 86.252412][ T5148] Bluetooth: hci2: command tx timeout [ 86.260503][ T5843] Bluetooth: hci3: command tx timeout [ 86.284409][ T5825] veth0_vlan: entered promiscuous mode [ 86.303182][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.306102][ T5835] veth1_vlan: entered promiscuous mode [ 86.313569][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.344448][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 86.389859][ T3514] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.397800][ T3514] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.401751][ T5835] veth0_macvtap: entered promiscuous mode [ 86.424189][ T5825] veth1_vlan: entered promiscuous mode [ 86.442438][ T5835] veth1_macvtap: entered promiscuous mode [ 86.470840][ T3495] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.480912][ T3477] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.517227][ T3477] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.526312][ T3477] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.549177][ T3477] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.557178][ T3514] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.560069][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 86.573100][ T3477] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.585556][ T3514] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.591201][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 86.633261][ T3495] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.671500][ T3495] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.685658][ T3495] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.706385][ T5831] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 86.729724][ T3495] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.741161][ T5825] veth0_macvtap: entered promiscuous mode [ 86.792305][ T5825] veth1_macvtap: entered promiscuous mode [ 86.894313][ T10] cfg80211: failed to load regulatory.db [ 86.904417][ T30] audit: type=1326 audit(1762889924.355:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5946 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f319538f6c9 code=0x7ffc0000 [ 86.944437][ T3477] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.964645][ T30] audit: type=1326 audit(1762889924.385:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5946 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f319538f6c9 code=0x7ffc0000 [ 86.988251][ T3477] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.004167][ T30] audit: type=1326 audit(1762889924.385:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5946 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=158 compat=0 ip=0x7f319538f6c9 code=0x7ffc0000 [ 87.057641][ T30] audit: type=1326 audit(1762889924.385:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5946 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f319538f6c9 code=0x7ffc0000 [ 87.110947][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 87.148287][ T30] audit: type=1326 audit(1762889924.385:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5946 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f319538f6c9 code=0x7ffc0000 [ 87.179824][ T5955] netlink: 'syz.1.7': attribute type 1 has an invalid length. [ 87.187025][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 87.195530][ T50] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.205593][ T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.221974][ T50] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.248048][ T5955] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7'. [ 87.265352][ T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.297316][ T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.307476][ T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 87.344124][ T30] audit: type=1326 audit(1762889924.795:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5958 comm="syz.2.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f319538f6c9 code=0x7ffc0000 [ 87.377666][ T30] audit: type=1326 audit(1762889924.795:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5958 comm="syz.2.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f319538f6c9 code=0x7ffc0000 [ 87.409937][ T50] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.423799][ T50] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.454676][ T50] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.470622][ T30] audit: type=1326 audit(1762889924.795:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5958 comm="syz.2.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7f319538f6c9 code=0x7ffc0000 [ 87.509241][ T50] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.526893][ T30] audit: type=1326 audit(1762889924.795:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5958 comm="syz.2.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f319538f6c9 code=0x7ffc0000 [ 87.565099][ T30] audit: type=1326 audit(1762889924.795:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5958 comm="syz.2.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f319538f6c9 code=0x7ffc0000 [ 87.746150][ T3477] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.808589][ T3477] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.886968][ T3477] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 87.901978][ T3477] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 87.946829][ T5968] loop2: detected capacity change from 0 to 1024 [ 88.022683][ T5968] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 88.111334][ T5968] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 88.175509][ T5975] loop3: detected capacity change from 0 to 2048 [ 88.196648][ T5975] udf: Bad value for 'volume' [ 88.236976][ T5968] JBD2: no valid journal superblock found [ 88.243693][ T5843] Bluetooth: hci0: command tx timeout [ 88.338682][ T5843] Bluetooth: hci2: command tx timeout [ 88.344377][ T5843] Bluetooth: hci3: command tx timeout [ 88.350570][ T5843] Bluetooth: hci1: command tx timeout [ 88.356182][ T5843] Bluetooth: hci4: command tx timeout [ 88.447332][ T5968] EXT4-fs (loop2): Could not load journal inode [ 88.710690][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 88.861417][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 88.871796][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 88.881006][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 89.068743][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 89.102291][ T5993] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5) [ 89.109047][ T5993] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 89.137378][ T5993] vhci_hcd vhci_hcd.0: Device attached [ 89.167092][ T5995] 9p: Bad value for 'wfdno' [ 89.178599][ T5991] loop1: detected capacity change from 0 to 1024 [ 89.473265][ T5996] vhci_hcd: connection closed [ 89.487070][ T3495] vhci_hcd vhci_hcd.0: stop threads [ 89.511649][ T3495] vhci_hcd vhci_hcd.0: release socket [ 89.519242][ T3495] vhci_hcd vhci_hcd.0: disconnect device [ 89.538582][ T10] usb 34-1: enqueue for inactive port 0 [ 89.594487][ T6002] loop2: detected capacity change from 0 to 512 [ 89.610345][ T5991] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 89.673295][ T6002] EXT4-fs: Ignoring removed nobh option [ 89.695316][ T5991] ext4 filesystem being mounted at /5/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 89.755781][ T6002] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 89.858832][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 89.867666][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 89.952569][ T6002] EXT4-fs error (device loop2): ext4_do_update_inode:5636: inode #3: comm syz.2.20: corrupted inode contents [ 90.030634][ T10] usb usb34-port1: attempt power cycle [ 90.060155][ T6002] EXT4-fs (loop2): Remounting filesystem read-only [ 90.095576][ T5990] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 90.129537][ T6002] EXT4-fs (loop2): 1 truncate cleaned up [ 90.201822][ T6002] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 90.240090][ T6002] ext4 filesystem being mounted at /6/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 90.307744][ T6002] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 90.325415][ T6013] loop1: detected capacity change from 0 to 512 [ 90.375711][ T6015] netlink: 4 bytes leftover after parsing attributes in process `syz.4.23'. [ 90.487341][ T6015] netlink: 4 bytes leftover after parsing attributes in process `syz.4.23'. [ 90.520424][ T6013] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.24: bad orphan inode 11862016 [ 90.696503][ T6021] loop3: detected capacity change from 0 to 512 [ 90.766983][ T6013] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 90.786615][ T6021] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 90.844473][ T6021] EXT4-fs (loop3): orphan cleanup on readonly fs [ 90.866350][ T6021] EXT4-fs error (device loop3): mb_free_blocks:2017: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 90.882975][ T6021] EXT4-fs error (device loop3): ext4_do_update_inode:5636: inode #11: comm syz.3.25: corrupted inode contents [ 90.915557][ T6021] EXT4-fs error (device loop3): ext4_dirty_inode:6521: inode #11: comm syz.3.25: mark_inode_dirty error [ 90.977474][ T6021] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.25: invalid indirect mapped block 327680 (level 0) [ 90.994604][ T6021] EXT4-fs error (device loop3): ext4_do_update_inode:5636: inode #11: comm syz.3.25: corrupted inode contents [ 91.013364][ T6021] EXT4-fs error (device loop3) in ext4_orphan_del:301: Corrupt filesystem [ 91.024692][ T6021] EXT4-fs error (device loop3): ext4_do_update_inode:5636: inode #11: comm syz.3.25: corrupted inode contents [ 91.052865][ T6021] EXT4-fs error (device loop3): ext4_truncate:4641: inode #11: comm syz.3.25: mark_inode_dirty error [ 91.074184][ T6021] EXT4-fs error (device loop3) in ext4_process_orphan:343: Corrupt filesystem [ 91.088079][ T6021] EXT4-fs (loop3): 1 truncate cleaned up [ 91.105926][ T6021] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 91.259647][ T10] usb usb34-port1: unable to enumerate USB device [ 91.290372][ T6013] ext4 filesystem being mounted at /6/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 91.345262][ T6026] loop2: detected capacity change from 0 to 512 [ 91.357597][ T6013] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 91.408321][ T6026] ======================================================= [ 91.408321][ T6026] WARNING: The mand mount option has been deprecated and [ 91.408321][ T6026] and is ignored by this kernel. Remove the mand [ 91.408321][ T6026] option from the mount to silence this warning. [ 91.408321][ T6026] ======================================================= [ 91.462730][ T5826] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 91.747590][ T6034] loop3: detected capacity change from 0 to 512 [ 91.789576][ T6034] EXT4-fs: Ignoring removed nobh option [ 91.843965][ T6034] EXT4-fs error (device loop3): ext4_do_update_inode:5636: inode #3: comm syz.3.28: corrupted inode contents [ 91.917170][ T6034] EXT4-fs (loop3): Remounting filesystem read-only [ 91.951646][ T6040] loop4: detected capacity change from 0 to 1024 [ 91.975100][ T6034] __quota_error: 29 callbacks suppressed [ 91.975116][ T6034] Quota error (device loop3): write_blk: dquota write failed [ 92.018678][ T6034] Quota error (device loop3): qtree_write_dquot: Error -30 occurred while creating quota [ 92.028350][ T5831] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 92.098713][ T6034] EXT4-fs (loop3): 1 truncate cleaned up [ 92.110798][ T6034] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 92.124667][ T6034] ext4 filesystem being mounted at /4/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 92.145367][ T6034] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 92.190334][ T6040] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 92.349188][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 92.413602][ T6046] loop1: detected capacity change from 0 to 1024 [ 92.479653][ T6048] netlink: 4 bytes leftover after parsing attributes in process `syz.3.34'. [ 92.499426][ T6046] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 92.601841][ T30] audit: type=1800 audit(1762889930.055:39): pid=6046 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.32" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 92.674673][ T6053] loop4: detected capacity change from 0 to 2048 [ 92.747974][ T6053] udf: Bad value for 'volume' [ 93.022340][ T6046] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4193: comm syz.1.32: Allocating blocks 497-513 which overlap fs metadata [ 93.098502][ T6045] EXT4-fs (loop1): pa ffff888056704570: logic 32, phys. 161, len 22 [ 93.106698][ T6045] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 1 [ 93.263594][ T5831] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 93.437935][ T6068] loop1: detected capacity change from 0 to 512 [ 93.527715][ T6068] EXT4-fs (loop1): 1 truncate cleaned up [ 93.589348][ T6068] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 93.639689][ T6073] loop3: detected capacity change from 0 to 512 [ 93.646320][ T6072] Zero length message leads to an empty skb [ 93.724013][ T6073] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 93.796608][ T5831] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 93.799910][ T6073] EXT4-fs (loop3): 1 truncate cleaned up [ 93.826297][ T6073] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 94.025613][ T5826] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 94.043511][ T6076] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.163448][ T6082] loop0: detected capacity change from 0 to 1024 [ 94.193654][ T6082] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 94.251974][ T6082] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 94.267436][ T6076] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.282944][ T6082] EXT4-fs (loop0): orphan cleanup on readonly fs [ 94.315061][ T6082] EXT4-fs error (device loop0): ext4_free_blocks:6706: comm syz.0.47: Freeing blocks not in datazone - block = 0, count = 4096 [ 94.372738][ T6076] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.393467][ T6082] EXT4-fs (loop0): 1 orphan inode deleted [ 94.464705][ T6082] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 94.511184][ T6076] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.559804][ T6082] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.47: bg 0: block 10: padding at end of block bitmap is not set [ 94.647179][ T6088] loop3: detected capacity change from 0 to 512 [ 94.681454][ T5835] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 94.699889][ T1008] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.702383][ T6088] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 94.742518][ T6088] ext4 filesystem being mounted at /10/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 94.793684][ T1008] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.934840][ T1008] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.948832][ T13] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.090210][ T6104] loop4: detected capacity change from 0 to 512 [ 95.097347][ T6104] EXT4-fs: Ignoring removed i_version option [ 95.142669][ T6104] EXT4-fs: Ignoring removed bh option [ 95.172113][ T6099] netlink: 8 bytes leftover after parsing attributes in process `syz.1.51'. [ 95.211192][ T6104] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 95.284895][ T6104] ext4 filesystem being mounted at /10/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 95.303061][ T6112] netlink: 'syz.1.51': attribute type 1 has an invalid length. [ 95.348678][ T6112] netlink: 224 bytes leftover after parsing attributes in process `syz.1.51'. [ 95.405057][ T6114] netlink: 31 bytes leftover after parsing attributes in process `syz.0.55'. [ 95.556806][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 95.686726][ T6087] infiniband syz!: set active [ 95.713418][ T6087] infiniband syz!: added team_slave_0 [ 95.731290][ T6087] workqueue: Failed to create a rescuer kthread for wq "ib_mad1": -EINTR [ 95.752210][ T6087] infiniband syz!: Couldn't open port 1 [ 95.819574][ T30] audit: type=1326 audit(1762889933.265:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6124 comm="syz.1.59" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f5258f6c9 code=0x7ffc0000 [ 95.845865][ T6087] RDS/IB: syz!: added [ 95.860547][ T6126] netlink: 12 bytes leftover after parsing attributes in process `syz.4.57'. [ 95.860638][ T30] audit: type=1326 audit(1762889933.265:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6124 comm="syz.1.59" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f5258f6c9 code=0x7ffc0000 [ 95.879149][ T6087] smc: adding ib device syz! with port count 1 [ 95.899093][ T30] audit: type=1326 audit(1762889933.295:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6124 comm="syz.1.59" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0f5258f6c9 code=0x7ffc0000 [ 95.917108][ T6087] smc: ib device syz! port 1 has no pnetid [ 95.957425][ T30] audit: type=1326 audit(1762889933.295:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6124 comm="syz.1.59" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f5258f6c9 code=0x7ffc0000 [ 95.981341][ T30] audit: type=1326 audit(1762889933.305:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6124 comm="syz.1.59" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0f5258f6c9 code=0x7ffc0000 [ 96.007867][ T30] audit: type=1326 audit(1762889933.305:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6124 comm="syz.1.59" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f5258f6c9 code=0x7ffc0000 [ 96.055342][ T30] audit: type=1326 audit(1762889933.305:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6124 comm="syz.1.59" exe="/root/syz-executor" sig=0 arch=c000003e syscall=140 compat=0 ip=0x7f0f5258f6c9 code=0x7ffc0000 [ 96.707415][ T6143] netlink: 'syz.4.66': attribute type 39 has an invalid length. [ 96.762767][ T6145] netlink: 176 bytes leftover after parsing attributes in process `syz.4.66'. [ 96.881353][ T6146] loop0: detected capacity change from 0 to 512 [ 97.130890][ T6146] EXT4-fs error (device loop0): ext4_orphan_get:1418: comm syz.0.67: bad orphan inode 11862016 [ 97.275151][ T6146] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 97.321988][ T6146] ext4 filesystem being mounted at /11/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 97.395404][ T30] kauditd_printk_skb: 1 callbacks suppressed [ 97.395421][ T30] audit: type=1800 audit(1762889934.845:48): pid=6144 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.67" name="file1" dev="loop0" ino=18 res=0 errno=0 [ 97.408865][ T6144] capability: warning: `syz.0.67' uses deprecated v2 capabilities in a way that may be insecure [ 97.476837][ T6154] netlink: 4 bytes leftover after parsing attributes in process `syz.1.68'. [ 98.162438][ T30] audit: type=1326 audit(1762889935.615:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6155 comm="syz.4.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ff758f6c9 code=0x7ffc0000 [ 98.254062][ T30] audit: type=1326 audit(1762889935.635:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6155 comm="syz.4.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2ff758f6c9 code=0x7ffc0000 [ 98.287399][ T30] audit: type=1326 audit(1762889935.635:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6155 comm="syz.4.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ff758f6c9 code=0x7ffc0000 [ 98.314197][ T30] audit: type=1326 audit(1762889935.635:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6155 comm="syz.4.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2ff758f6c9 code=0x7ffc0000 [ 98.336834][ T30] audit: type=1326 audit(1762889935.635:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6155 comm="syz.4.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ff758f6c9 code=0x7ffc0000 [ 98.359234][ T30] audit: type=1326 audit(1762889935.635:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6155 comm="syz.4.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2ff758f6c9 code=0x7ffc0000 [ 98.451575][ T30] audit: type=1326 audit(1762889935.675:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6155 comm="syz.4.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ff758f6c9 code=0x7ffc0000 [ 98.473945][ T30] audit: type=1326 audit(1762889935.675:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6155 comm="syz.4.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ff758f6c9 code=0x7ffc0000 [ 98.541662][ T5835] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 98.630828][ T6164] netlink: 19 bytes leftover after parsing attributes in process `syz.2.73'. [ 98.632052][ T30] audit: type=1326 audit(1762889936.075:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6163 comm="syz.2.73" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f319538f6c9 code=0x7ffc0000 [ 99.533193][ T6177] netlink: 'syz.2.76': attribute type 10 has an invalid length. [ 99.597648][ T6177] team0: Failed to send options change via netlink (err -105) [ 99.621559][ T6185] netlink: 'syz.2.76': attribute type 10 has an invalid length. [ 99.633981][ T6177] team0: Port device dummy0 added [ 99.656823][ T6185] team0: Failed to send port change of device dummy0 via netlink (err -105) [ 99.699875][ T6185] team0: Failed to send options change via netlink (err -105) [ 99.713689][ T6185] team0: Failed to send port change of device dummy0 via netlink (err -105) [ 99.747967][ T6185] team0: Port device dummy0 removed [ 99.795412][ T6185] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 99.933644][ T6185] loop2: detected capacity change from 0 to 1024 [ 99.956330][ T6194] syzkaller0: entered promiscuous mode [ 99.967142][ T6194] syzkaller0: entered allmulticast mode [ 99.975284][ T6195] netlink: 'syz.4.81': attribute type 1 has an invalid length. [ 100.013716][ T6185] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 100.057884][ T6195] loop4: detected capacity change from 0 to 512 [ 100.129700][ T6195] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.81: bg 0: block 248: padding at end of block bitmap is not set [ 100.173492][ T6195] EXT4-fs error (device loop4): ext4_acquire_dquot:6946: comm syz.4.81: Failed to acquire dquot type 1 [ 100.217785][ T6195] EXT4-fs (loop4): 1 truncate cleaned up [ 100.260507][ T6195] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 100.280340][ T6195] ext4 filesystem being mounted at /19/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 100.294203][ T6203] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: comm syz.2.76: inode #2283012096: comm syz.2.76: iget: illegal inode # [ 100.351406][ T6203] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.76: error while reading EA inode 2283012096 err=-117 [ 100.486821][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.504243][ T5826] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.698692][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.826687][ T6211] loop1: detected capacity change from 0 to 512 [ 101.004353][ T6211] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.87: bg 0: block 248: padding at end of block bitmap is not set [ 101.024178][ T6211] EXT4-fs error (device loop1): ext4_acquire_dquot:6946: comm syz.1.87: Failed to acquire dquot type 1 [ 101.049551][ T6211] EXT4-fs (loop1): 1 truncate cleaned up [ 101.064819][ T6211] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 101.082615][ T6211] ext4 filesystem being mounted at /18/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 101.165504][ T5831] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.434296][ T6228] loop2: detected capacity change from 0 to 164 [ 101.476646][ T6230] loop1: detected capacity change from 0 to 128 [ 101.495332][ T6230] vfat: Unknown parameter '' [ 101.957431][ T6242] loop1: detected capacity change from 0 to 128 [ 103.290699][ T30] kauditd_printk_skb: 55 callbacks suppressed [ 103.290716][ T30] audit: type=1326 audit(1762889940.745:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.4.99" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ff758f6c9 code=0x7ffc0000 [ 103.385853][ T30] audit: type=1326 audit(1762889940.775:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.4.99" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ff758f6c9 code=0x7ffc0000 [ 103.420663][ T30] audit: type=1326 audit(1762889940.775:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.4.99" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ff758f6c9 code=0x7ffc0000 [ 103.445970][ T30] audit: type=1326 audit(1762889940.775:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.4.99" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f2ff758f6c9 code=0x7ffc0000 [ 103.468967][ T30] audit: type=1326 audit(1762889940.775:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.4.99" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ff758f6c9 code=0x7ffc0000 [ 103.491594][ T30] audit: type=1326 audit(1762889940.785:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.4.99" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ff758f6c9 code=0x7ffc0000 [ 103.522062][ T30] audit: type=1326 audit(1762889940.785:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.4.99" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f2ff758f6c9 code=0x7ffc0000 [ 103.557562][ T30] audit: type=1326 audit(1762889940.785:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.4.99" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f2ff758f6c9 code=0x7ffc0000 [ 104.060875][ T6269] netlink: 180 bytes leftover after parsing attributes in process `syz.0.105'. [ 104.102391][ T6269] netlink: 180 bytes leftover after parsing attributes in process `syz.0.105'. [ 104.146858][ T6273] No such timeout policy "syz1" [ 104.329219][ T6277] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 104.407997][ T6286] netlink: 4 bytes leftover after parsing attributes in process `syz.3.108'. [ 104.443912][ T30] audit: type=1326 audit(1762889941.895:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6282 comm="syz.4.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ff758f6c9 code=0x7ffc0000 [ 104.543312][ T30] audit: type=1326 audit(1762889941.895:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6282 comm="syz.4.111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2ff758f6c9 code=0x7ffc0000 [ 104.698854][ T5910] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 104.700670][ T6294] loop4: detected capacity change from 0 to 512 [ 104.777162][ T6294] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 104.828333][ T6294] ext4 filesystem being mounted at /25/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 104.878562][ T5910] usb 4-1: Using ep0 maxpacket: 16 [ 104.915508][ T5910] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 104.950731][ T5910] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 104.972061][ T5910] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 104.984441][ T5910] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 104.998593][ T5910] usb 4-1: Product: syz [ 105.006408][ T5910] usb 4-1: Manufacturer: syz [ 105.015711][ T5910] usb 4-1: SerialNumber: syz [ 105.082958][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.218825][ T6307] syzkaller0: entered promiscuous mode [ 105.238602][ T6307] syzkaller0: entered allmulticast mode [ 105.273508][ T5910] usb 4-1: 0:2 : does not exist [ 105.377341][ T5910] usb 4-1: USB disconnect, device number 2 [ 105.391367][ T5897] kernel write not supported for file bpf-map (pid: 5897 comm: kworker/0:5) [ 106.099357][ T6326] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 106.253064][ T6326] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 106.332903][ T6326] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 106.461619][ T6326] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 106.491002][ T6337] netlink: 'syz.3.135': attribute type 39 has an invalid length. [ 106.494345][ T6335] netlink: 8 bytes leftover after parsing attributes in process `syz.4.134'. [ 106.562174][ T6340] netlink: 176 bytes leftover after parsing attributes in process `syz.3.135'. [ 106.594745][ T6335] netlink: 'syz.4.134': attribute type 1 has an invalid length. [ 106.622192][ T6335] netlink: 224 bytes leftover after parsing attributes in process `syz.4.134'. [ 106.797034][ T12] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 106.833214][ T12] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.369035][ T3495] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.404420][ T3495] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.657849][ T6351] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3) [ 107.664423][ T6351] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 107.749784][ T6358] netlink: 4 bytes leftover after parsing attributes in process `syz.2.140'. [ 107.753738][ T6351] vhci_hcd vhci_hcd.0: Device attached [ 107.825944][ T6353] vhci_hcd: connection closed [ 107.827178][ T13] vhci_hcd vhci_hcd.4: stop threads [ 107.864766][ T13] vhci_hcd vhci_hcd.4: release socket [ 107.890607][ T13] vhci_hcd vhci_hcd.4: disconnect device [ 107.923216][ T6364] netlink: 4 bytes leftover after parsing attributes in process `syz.3.144'. [ 107.937348][ T6364] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 107.938765][ T24] vhci_hcd vhci_hcd.4: vhci_device speed not set [ 107.955026][ T6364] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 107.991021][ T6364] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 108.030966][ T6364] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 108.069295][ T6373] syz.0.147 uses obsolete (PF_INET,SOCK_PACKET) [ 108.166627][ T6375] netlink: 268 bytes leftover after parsing attributes in process `syz.2.148'. [ 108.987762][ T6384] team0: Port device vlan2 added [ 109.340108][ T30] kauditd_printk_skb: 31 callbacks suppressed [ 109.340125][ T30] audit: type=1326 audit(1762889946.785:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6397 comm="syz.3.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 109.414762][ T6402] ip6t_srh: unknown srh match flags 4000 [ 109.426896][ T6401] loop1: detected capacity change from 0 to 2048 [ 109.490260][ T6401] udf: Bad value for 'volume' [ 109.505954][ T30] audit: type=1326 audit(1762889946.785:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6397 comm="syz.3.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 109.618818][ T30] audit: type=1326 audit(1762889946.825:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6397 comm="syz.3.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 109.659604][ T6406] netlink: 32 bytes leftover after parsing attributes in process `syz.0.161'. [ 109.711264][ T30] audit: type=1326 audit(1762889946.825:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6397 comm="syz.3.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 109.830716][ T30] audit: type=1326 audit(1762889946.825:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6397 comm="syz.3.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 109.908779][ T30] audit: type=1326 audit(1762889946.825:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6397 comm="syz.3.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 110.009341][ T30] audit: type=1326 audit(1762889946.865:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6397 comm="syz.3.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 110.059692][ T30] audit: type=1326 audit(1762889946.865:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6397 comm="syz.3.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 110.066980][ T6415] loop0: detected capacity change from 0 to 1024 [ 110.132925][ T6415] journal_path: Non-blockdev passed as './file1' [ 110.146765][ T30] audit: type=1326 audit(1762889946.865:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6397 comm="syz.3.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 110.179388][ T5918] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 110.191460][ T6415] EXT4-fs: error: could not find journal device path [ 110.215873][ T30] audit: type=1326 audit(1762889946.865:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6397 comm="syz.3.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 110.260251][ T6415] loop0: detected capacity change from 0 to 128 [ 110.297804][ T6415] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 110.321955][ T6415] ext4 filesystem being mounted at /35/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 110.368633][ T5918] usb 4-1: Using ep0 maxpacket: 32 [ 110.400949][ T5918] usb 4-1: config 0 has an invalid interface number: 151 but max is 0 [ 110.405235][ T6424] netlink: 12 bytes leftover after parsing attributes in process `syz.2.167'. [ 110.412114][ T5918] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 110.526858][ T5835] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 110.822861][ T5918] usb 4-1: config 0 has no interface number 0 [ 110.830237][ T5918] usb 4-1: config 0 interface 151 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 110.845941][ T5918] usb 4-1: New USB device found, idVendor=0499, idProduct=6bb7, bcdDevice=68.2f [ 110.903342][ T5918] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 110.924427][ T5918] usb 4-1: Product: syz [ 110.932082][ T5918] usb 4-1: Manufacturer: syz [ 110.936913][ T5918] usb 4-1: SerialNumber: syz [ 111.003468][ T5918] usb 4-1: config 0 descriptor?? [ 111.020034][ T6432] process 'syz.0.168' launched './file1' with NULL argv: empty string added [ 112.004475][ T5889] udevd[5889]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.151/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 112.084657][ T5918] usb 4-1: USB disconnect, device number 3 [ 112.227504][ T6462] netlink: 4 bytes leftover after parsing attributes in process `syz.1.179'. [ 112.751223][ T5918] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 112.938699][ T5918] usb 3-1: Using ep0 maxpacket: 8 [ 112.946439][ T5918] usb 3-1: config 0 has an invalid interface number: 52 but max is 0 [ 112.958999][ T5918] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 113.008552][ T5918] usb 3-1: config 0 has no interface number 0 [ 113.023922][ T5918] usb 3-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 7 [ 113.067917][ T5918] usb 3-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0 [ 113.099709][ T5918] usb 3-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 113.158013][ T5918] usb 3-1: config 0 interface 52 has no altsetting 0 [ 113.189275][ T5918] usb 3-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00 [ 113.223863][ T5918] usb 3-1: New USB device strings: Mfr=22, Product=0, SerialNumber=0 [ 113.257648][ T5918] usb 3-1: Manufacturer: syz [ 113.276060][ T5918] usb 3-1: config 0 descriptor?? [ 113.313192][ T5918] hub 3-1:0.52: bad descriptor, ignoring hub [ 113.328506][ T5918] hub 3-1:0.52: probe with driver hub failed with error -5 [ 113.511740][ T5918] synaptics_usb 3-1:0.52: synusb_open - usb_submit_urb failed, error: -90 [ 113.547386][ T5918] synaptics_usb 3-1:0.52: probe with driver synaptics_usb failed with error -5 [ 113.809576][ T24] usb 3-1: USB disconnect, device number 2 [ 114.892231][ T6507] netlink: 16 bytes leftover after parsing attributes in process `syz.1.194'. [ 115.042014][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 115.988951][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 116.405018][ T30] kauditd_printk_skb: 60 callbacks suppressed [ 116.405036][ T30] audit: type=1326 audit(1762889953.855:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6512 comm="syz.1.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f5258f6c9 code=0x7ffc0000 [ 116.466778][ T6511] loop0: detected capacity change from 0 to 512 [ 116.470780][ T30] audit: type=1326 audit(1762889953.895:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6512 comm="syz.1.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f5258f6c9 code=0x7ffc0000 [ 116.513679][ T6511] FAT-fs (loop0): Invalid FSINFO signature: 0x00000001, 0x61417272 (sector = 1) [ 116.579568][ T6513] syz.1.196 (6513) used greatest stack depth: 17160 bytes left [ 116.632488][ T30] audit: type=1326 audit(1762889953.965:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6512 comm="syz.1.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0f5258f6c9 code=0x7ffc0000 [ 116.716660][ T30] audit: type=1326 audit(1762889953.965:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6512 comm="syz.1.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f5258f6c9 code=0x7ffc0000 [ 116.825052][ T30] audit: type=1326 audit(1762889953.965:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6512 comm="syz.1.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0f5258f6c9 code=0x7ffc0000 [ 116.864620][ T6524] loop2: detected capacity change from 0 to 1024 [ 116.885650][ T6526] loop1: detected capacity change from 0 to 256 [ 116.899493][ T6524] EXT4-fs: Ignoring removed orlov option [ 116.916582][ T30] audit: type=1326 audit(1762889953.965:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6512 comm="syz.1.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0f525915e7 code=0x7ffc0000 [ 116.951447][ T6526] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 117.030261][ T6524] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 117.060146][ T30] audit: type=1326 audit(1762889953.965:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6512 comm="syz.1.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f0f5259155c code=0x7ffc0000 [ 117.092996][ T30] audit: type=1326 audit(1762889953.965:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6512 comm="syz.1.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f0f52591494 code=0x7ffc0000 [ 117.115479][ T30] audit: type=1326 audit(1762889953.965:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6512 comm="syz.1.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f0f52591494 code=0x7ffc0000 [ 117.137819][ T30] audit: type=1326 audit(1762889953.965:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6512 comm="syz.1.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f0f5258e32a code=0x7ffc0000 [ 117.190118][ T6526] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 117.239407][ T6526] FAT-fs (loop1): Filesystem has been set read-only [ 117.271631][ T6526] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 117.305607][ T6526] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 117.337924][ T6526] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 117.368140][ T6526] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 117.429716][ T6526] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 117.446716][ T6526] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 117.456296][ T6526] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 117.735321][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 117.943404][ T6550] loop1: detected capacity change from 0 to 2048 [ 117.959829][ T6550] udf: Bad value for 'volume' [ 118.018684][ T5896] usb 1-1: new full-speed USB device number 2 using dummy_hcd [ 118.138607][ T43] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 118.201403][ T5896] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 118.222132][ T5896] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 4 [ 118.250002][ T5896] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 118.280098][ T5896] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40 [ 118.298499][ T5896] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 118.308898][ T5896] usb 1-1: SerialNumber: syz [ 118.318982][ T43] usb 3-1: Using ep0 maxpacket: 32 [ 118.335764][ T43] usb 3-1: config 0 has an invalid interface number: 151 but max is 0 [ 118.355499][ T43] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 118.358820][ T5896] cdc_ether 1-1:1.0: probe with driver cdc_ether failed with error -22 [ 118.383866][ T43] usb 3-1: config 0 has no interface number 0 [ 118.408697][ T43] usb 3-1: config 0 interface 151 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 118.438980][ T5896] usb-storage 1-1:1.0: USB Mass Storage device detected [ 118.441633][ T43] usb 3-1: New USB device found, idVendor=0499, idProduct=6bb7, bcdDevice=68.2f [ 118.483775][ T5896] usb-storage 1-1:1.0: Quirks match for vid 0525 pid a4a5: 10000 [ 118.485261][ T43] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 118.705085][ T43] usb 3-1: Product: syz [ 118.710001][ T43] usb 3-1: Manufacturer: syz [ 118.715173][ T43] usb 3-1: SerialNumber: syz [ 118.735299][ T43] usb 3-1: config 0 descriptor?? [ 118.740931][ T5896] usb 1-1: USB disconnect, device number 2 [ 119.421065][ T5910] usb 3-1: USB disconnect, device number 3 [ 119.509559][ T5889] udevd[5889]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.151/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 119.809392][ T6591] netlink: 4 bytes leftover after parsing attributes in process `syz.4.213'. [ 119.839795][ T6591] netlink: 4 bytes leftover after parsing attributes in process `syz.4.213'. [ 120.710379][ T6608] serio: Serial port ttyS3 [ 120.931473][ T6626] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096 [ 121.132723][ T6637] netlink: 4 bytes leftover after parsing attributes in process `syz.1.233'. [ 121.533592][ T6645] netlink: 'syz.1.234': attribute type 10 has an invalid length. [ 121.613066][ T6645] macvlan1: entered allmulticast mode [ 121.678245][ T6645] veth1_vlan: entered allmulticast mode [ 121.719846][ T6645] team0: Device macvlan1 is up. Set it down before adding it as a team port [ 121.880469][ T6649] netlink: 'syz.4.235': attribute type 4 has an invalid length. [ 123.119451][ T6664] loop3: detected capacity change from 0 to 2048 [ 123.213138][ T6664] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 123.273279][ T6664] ext4 filesystem being mounted at /34/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 123.709774][ T6680] netlink: 4 bytes leftover after parsing attributes in process `syz.0.245'. [ 123.719843][ T6680] netlink: 4 bytes leftover after parsing attributes in process `syz.0.245'. [ 123.850075][ T36] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm kworker/u8:2: bg 0: block 345: padding at end of block bitmap is not set [ 123.870071][ T36] EXT4-fs (loop3): Remounting filesystem read-only [ 123.980863][ T5826] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 124.132343][ T30] kauditd_printk_skb: 35 callbacks suppressed [ 124.132359][ T30] audit: type=1326 audit(1762889961.585:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6688 comm="syz.0.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f362118f6c9 code=0x7ffc0000 [ 124.165853][ T30] audit: type=1326 audit(1762889961.585:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6688 comm="syz.0.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f362118f6c9 code=0x7ffc0000 [ 124.196687][ T30] audit: type=1326 audit(1762889961.585:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6688 comm="syz.0.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f362118f6c9 code=0x7ffc0000 [ 124.223090][ T30] audit: type=1326 audit(1762889961.585:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6688 comm="syz.0.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f362118f6c9 code=0x7ffc0000 [ 124.305534][ T30] audit: type=1326 audit(1762889961.615:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6688 comm="syz.0.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7f362118f6c9 code=0x7ffc0000 [ 124.332381][ T30] audit: type=1326 audit(1762889961.615:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6688 comm="syz.0.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f362118f6c9 code=0x7ffc0000 [ 124.354866][ T30] audit: type=1326 audit(1762889961.615:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6688 comm="syz.0.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f362118f6c9 code=0x7ffc0000 [ 124.395177][ T30] audit: type=1326 audit(1762889961.615:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6688 comm="syz.0.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f362118f6c9 code=0x7ffc0000 [ 124.417904][ T30] audit: type=1326 audit(1762889961.615:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6688 comm="syz.0.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f362118f6c9 code=0x7ffc0000 [ 124.455878][ T30] audit: type=1326 audit(1762889961.615:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6688 comm="syz.0.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f362118f6c9 code=0x7ffc0000 [ 124.645031][ T6703] loop3: detected capacity change from 0 to 164 [ 124.693652][ T6703] syz.3.257: attempt to access beyond end of device [ 124.693652][ T6703] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 124.719693][ T6706] loop1: detected capacity change from 0 to 128 [ 124.739100][ T6703] syz.3.257: attempt to access beyond end of device [ 124.739100][ T6703] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 124.974225][ T6714] loop1: detected capacity change from 0 to 512 [ 125.013178][ T6714] EXT4-fs error (device loop1): ext4_acquire_dquot:6946: comm syz.1.261: Failed to acquire dquot type 1 [ 125.026424][ T6714] EXT4-fs (loop1): 1 truncate cleaned up [ 125.034854][ T6714] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 125.048375][ T6714] ext4 filesystem being mounted at /56/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 125.075785][ T6719] netlink: 'syz.0.262': attribute type 29 has an invalid length. [ 125.190127][ T6722] netlink: 'syz.0.262': attribute type 29 has an invalid length. [ 125.205314][ T6719] netlink: 500 bytes leftover after parsing attributes in process `syz.0.262'. [ 125.226813][ T6719] unsupported nla_type 58 [ 125.497071][ T6731] loop0: detected capacity change from 0 to 164 [ 125.546764][ T6729] syz.0.264: attempt to access beyond end of device [ 125.546764][ T6729] loop0: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 125.574548][ T6729] syz.0.264: attempt to access beyond end of device [ 125.574548][ T6729] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 125.823126][ T6734] loop0: detected capacity change from 0 to 512 [ 125.897577][ T6734] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 125.917823][ T6734] ext4 filesystem being mounted at /62/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 126.160080][ T5835] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 126.354968][ T6745] loop0: detected capacity change from 0 to 512 [ 126.371589][ T6745] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 126.397221][ T6745] EXT4-fs (loop0): 1 truncate cleaned up [ 126.420874][ T6745] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 126.570542][ T5835] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 126.749410][ T6628] Set syz1 is full, maxelem 65536 reached [ 127.144008][ T6755] loop3: detected capacity change from 0 to 764 [ 127.156870][ T5831] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 127.228741][ T6757] netlink: 4 bytes leftover after parsing attributes in process `syz.2.273'. [ 127.261996][ T6757] netlink: 4 bytes leftover after parsing attributes in process `syz.2.273'. [ 127.272204][ T6755] Symlink component flag not implemented [ 127.281117][ T6755] Symlink component flag not implemented [ 127.287756][ T6755] Symlink component flag not implemented (129) [ 127.333845][ T6755] Symlink component flag not implemented (6) [ 127.376239][ T6755] rock: directory entry would overflow storage [ 127.393003][ T6755] rock: sig=0x4f50, size=4, remaining=3 [ 127.446646][ T6755] iso9660: Corrupted directory entry in block 6 of inode 1792 [ 127.965081][ T6772] loop3: detected capacity change from 0 to 1024 [ 128.011125][ T6772] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 128.163937][ T5826] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 128.207888][ T6778] xt_hashlimit: max too large, truncated to 1048576 [ 128.291281][ T6778] xt_CT: You must specify a L4 protocol and not use inversions on it [ 128.355533][ T6774] loop0: detected capacity change from 0 to 8192 [ 128.467339][ T6788] netlink: 4 bytes leftover after parsing attributes in process `syz.3.286'. [ 128.491995][ T6790] loop4: detected capacity change from 0 to 512 [ 128.513438][ T6788] netlink: 4 bytes leftover after parsing attributes in process `syz.3.286'. [ 128.544687][ T5835] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000e1b1) [ 128.575486][ T5835] FAT-fs (loop0): Filesystem has been set read-only [ 128.599030][ T6790] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 128.648602][ T6790] ext4 filesystem being mounted at /52/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 128.953802][ T6807] netlink: 'syz.0.288': attribute type 1 has an invalid length. [ 129.500989][ T30] kauditd_printk_skb: 64 callbacks suppressed [ 129.501007][ T30] audit: type=1326 audit(1762889966.955:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.2.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f319538f757 code=0x7ffc0000 [ 129.546106][ T30] audit: type=1326 audit(1762889966.995:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.2.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f319538df10 code=0x7ffc0000 [ 129.568792][ T30] audit: type=1326 audit(1762889966.995:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.2.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f319538f2cb code=0x7ffc0000 [ 129.629143][ T6802] loop2: detected capacity change from 0 to 8192 [ 129.675291][ T30] audit: type=1326 audit(1762889967.115:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.2.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f319538e32a code=0x7ffc0000 [ 129.702525][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 129.721475][ T6802] loop2: p1 p2 p3 p4 [ 129.721475][ T6802] p1: [ 129.730511][ T6802] loop2: p1 size 196608 extends beyond EOD, truncated [ 129.750238][ T6802] loop2: p2 start 164919041 is beyond EOD, truncated [ 129.778893][ T6802] loop2: p3 size 66846464 extends beyond EOD, truncated [ 129.788742][ T30] audit: type=1326 audit(1762889967.115:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.2.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f319538f2cb code=0x7ffc0000 [ 129.838578][ T30] audit: type=1326 audit(1762889967.115:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.2.291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f319538f2cb code=0x7ffc0000 [ 129.863819][ T6802] loop2: p4 size 37048832 extends beyond EOD, truncated [ 129.909030][ T6802] loop2: p5 size 196608 extends beyond EOD, truncated [ 130.022805][ T6822] af_packet: tpacket_rcv: packet too big, clamped from 70 to 4294967286. macoff=82 [ 130.301734][ T6826] netlink: 'syz.0.298': attribute type 39 has an invalid length. [ 130.417792][ T6831] netlink: 176 bytes leftover after parsing attributes in process `syz.0.298'. [ 130.773234][ T6837] netlink: 596 bytes leftover after parsing attributes in process `syz.0.302'. [ 130.836807][ T6842] serio: Serial port ttyS3 [ 130.942960][ T6840] netlink: 'syz.3.303': attribute type 10 has an invalid length. [ 131.069721][ T6852] loop0: detected capacity change from 0 to 1024 [ 131.086558][ T6852] EXT4-fs: inline encryption not supported [ 131.094257][ T6852] EXT4-fs: Ignoring removed orlov option [ 131.101706][ T6852] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 131.161713][ T6852] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 131.187085][ T6860] loop3: detected capacity change from 0 to 512 [ 131.212157][ T6860] Quota error (device loop3): v2_read_file_info: Free block number 1 out of range (1, 6). [ 131.223640][ T6860] EXT4-fs warning (device loop3): ext4_enable_quotas:7181: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 131.243855][ T6860] EXT4-fs (loop3): mount failed [ 131.247158][ T5835] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 131.307049][ T6860] syz!: rxe_newlink: already configured on team_slave_0 [ 131.317947][ T6860] loop3: detected capacity change from 0 to 128 [ 131.510333][ T6874] netlink: 'syz.2.313': attribute type 39 has an invalid length. [ 131.703996][ T6878] netlink: 24 bytes leftover after parsing attributes in process `syz.3.312'. [ 132.372020][ T6887] loop1: detected capacity change from 0 to 2048 [ 132.443555][ T6887] udf: Bad value for 'volume' [ 132.542882][ T6893] serio: Serial port ttyS3 [ 133.268291][ T30] audit: type=1326 audit(1762889970.715:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6888 comm="syz.3.317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 133.291167][ T1299] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.302523][ T30] audit: type=1326 audit(1762889970.715:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6888 comm="syz.3.317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 133.553008][ T6901] netlink: 4 bytes leftover after parsing attributes in process `syz.2.321'. [ 133.595201][ T6901] netlink: 4 bytes leftover after parsing attributes in process `syz.2.321'. [ 133.913887][ T6908] loop4: detected capacity change from 0 to 1024 [ 133.933398][ T6908] EXT4-fs: Ignoring removed orlov option [ 133.967304][ T6908] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 134.097505][ T6908] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 134.190514][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 134.367212][ T6927] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 134.383206][ T6927] netlink: 4 bytes leftover after parsing attributes in process `syz.4.329'. [ 134.428919][ T6929] loop2: detected capacity change from 0 to 1024 [ 134.487637][ T6929] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 134.553724][ T5824] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 134.690117][ T6938] loop0: detected capacity change from 0 to 512 [ 134.699377][ T6938] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 134.727636][ T6938] EXT4-fs (loop0): orphan cleanup on readonly fs [ 134.737758][ T6938] EXT4-fs error (device loop0): mb_free_blocks:2017: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 134.752433][ T6938] EXT4-fs error (device loop0): ext4_do_update_inode:5636: inode #11: comm syz.0.333: corrupted inode contents [ 134.769317][ T6938] EXT4-fs error (device loop0): ext4_dirty_inode:6521: inode #11: comm syz.0.333: mark_inode_dirty error [ 134.788042][ T6938] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.333: invalid indirect mapped block 327680 (level 0) [ 134.804290][ T6938] EXT4-fs error (device loop0): ext4_do_update_inode:5636: inode #11: comm syz.0.333: corrupted inode contents [ 134.817466][ T6938] EXT4-fs error (device loop0) in ext4_orphan_del:301: Corrupt filesystem [ 134.827515][ T6938] EXT4-fs error (device loop0): ext4_do_update_inode:5636: inode #11: comm syz.0.333: corrupted inode contents [ 134.840344][ T6938] EXT4-fs error (device loop0): ext4_truncate:4641: inode #11: comm syz.0.333: mark_inode_dirty error [ 134.852610][ T6938] EXT4-fs error (device loop0) in ext4_process_orphan:343: Corrupt filesystem [ 134.865498][ T6938] EXT4-fs (loop0): 1 truncate cleaned up [ 134.874131][ T6938] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 135.067442][ T6945] loop3: detected capacity change from 0 to 2048 [ 135.084552][ T6945] udf: Bad value for 'volume' [ 136.333292][ T5835] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 136.527193][ T30] audit: type=1326 audit(1762889973.975:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6952 comm="syz.3.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 136.641983][ T6953] loop3: detected capacity change from 0 to 1024 [ 136.649470][ T30] audit: type=1326 audit(1762889974.055:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6952 comm="syz.3.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 136.701071][ T6953] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 136.717443][ T30] audit: type=1326 audit(1762889974.055:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6952 comm="syz.3.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 136.740575][ T30] audit: type=1326 audit(1762889974.055:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6952 comm="syz.3.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 136.764450][ T30] audit: type=1326 audit(1762889974.055:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6952 comm="syz.3.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 136.786915][ T30] audit: type=1326 audit(1762889974.055:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6952 comm="syz.3.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 136.812411][ T30] audit: type=1326 audit(1762889974.055:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6952 comm="syz.3.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 136.835015][ T30] audit: type=1326 audit(1762889974.055:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6952 comm="syz.3.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 136.869661][ T30] audit: type=1326 audit(1762889974.055:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6952 comm="syz.3.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 136.971477][ T30] audit: type=1326 audit(1762889974.055:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6952 comm="syz.3.339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa55d8f6c9 code=0x7ffc0000 [ 137.086476][ T6953] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4193: comm syz.3.339: Allocating blocks 497-513 which overlap fs metadata [ 137.143886][ T6952] EXT4-fs (loop3): pa ffff88802fe13000: logic 32, phys. 161, len 22 [ 137.152043][ T6952] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 1 [ 137.285846][ T6974] loop1: detected capacity change from 0 to 512 [ 137.315984][ T5826] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.370298][ T6974] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 137.394896][ T6974] ext4 filesystem being mounted at /70/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 137.496445][ T6986] loop3: detected capacity change from 0 to 512 [ 137.541119][ T6986] EXT4-fs: inline encryption not supported [ 137.565594][ T6986] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 137.596121][ T6986] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2853: Unable to expand inode 11. Delete some EAs or run e2fsck. [ 137.613817][ T6987] netlink: 8 bytes leftover after parsing attributes in process `syz.0.348'. [ 137.628115][ T6987] netlink: 8 bytes leftover after parsing attributes in process `syz.0.348'. [ 137.648309][ T6986] EXT4-fs (loop3): 1 truncate cleaned up [ 137.686019][ T6986] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 137.722336][ T6986] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI [ 137.734293][ T6986] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 137.742838][ T6986] CPU: 0 UID: 0 PID: 6986 Comm: syz.3.347 Not tainted syzkaller #0 PREEMPT(full) [ 137.752310][ T6986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 137.762407][ T6986] RIP: 0010:bio_seg_gap+0x1c6/0x7d0 [ 137.767670][ T6986] Code: fd 48 ba 00 00 00 00 00 fc ff df 49 8b 06 48 89 5c 24 20 49 89 de 49 c1 e6 04 48 89 44 24 08 4a 8d 2c 30 48 89 e8 48 c1 e8 03 <80> 3c 10 00 74 12 48 89 ef e8 7c 04 b9 fd 48 ba 00 00 00 00 00 fc [ 137.787370][ T6986] RSP: 0018:ffffc90004c9ed40 EFLAGS: 00010246 [ 137.793451][ T6986] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000080000 [ 137.801447][ T6986] RDX: dffffc0000000000 RSI: 00000000000039eb RDI: ffff888050cc22b0 [ 137.809431][ T6986] RBP: 0000000000000000 R08: ffff888141b86c17 R09: 1ffff11028370d82 [ 137.817426][ T6986] R10: dffffc0000000000 R11: ffffed1028370d83 R12: 0000000000000c00 [ 137.825584][ T6986] R13: 0000000000000000 R14: 0000000000000000 R15: ffff888050cc2280 [ 137.833574][ T6986] FS: 00007faa56b896c0(0000) GS:ffff888125ecc000(0000) knlGS:0000000000000000 [ 137.842516][ T6986] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 137.849199][ T6986] CR2: 0000200000002000 CR3: 0000000022720000 CR4: 00000000003526f0 [ 137.857216][ T6986] Call Trace: [ 137.860507][ T6986] [ 137.863461][ T6986] bio_attempt_back_merge+0x4ae/0x930 [ 137.868860][ T6986] ? blk_attempt_bio_merge+0x273/0x4c0 [ 137.874340][ T6986] blk_attempt_plug_merge+0x145/0x1d0 [ 137.879739][ T6986] blk_mq_submit_bio+0x1aad/0x26e0 [ 137.884959][ T6986] ? blk_mq_submit_bio+0x46a/0x26e0 [ 137.890283][ T6986] ? __pfx_blk_mq_submit_bio+0x10/0x10 [ 137.895778][ T6986] ? blk_mq_submit_bio+0xd5b/0x26e0 [ 137.901082][ T6986] ? blk_mq_submit_bio+0x46a/0x26e0 [ 137.906317][ T6986] __submit_bio+0x207/0x5a0 [ 137.910837][ T6986] ? __pfx___submit_bio+0x10/0x10 [ 137.915961][ T6986] ? blk_cgroup_bio_start+0x59d/0x640 [ 137.921439][ T6986] ? __submit_bio+0x22e/0x5a0 [ 137.926231][ T6986] submit_bio_noacct_nocheck+0x2eb/0xa50 [ 137.931884][ T6986] ? __pfx_submit_bio_noacct_nocheck+0x10/0x10 [ 137.938069][ T6986] ? submit_bio_noacct+0xdfc/0x1b80 [ 137.943292][ T6986] submit_bio_wait+0x104/0x200 [ 137.948081][ T6986] ? __pfx_submit_bio_wait+0x10/0x10 [ 137.953393][ T6986] ? blk_alloc_discard_bio+0x243/0x2c0 [ 137.958890][ T6986] blkdev_issue_discard+0x113/0x1b0 [ 137.964109][ T6986] ? __pfx_blkdev_issue_discard+0x10/0x10 [ 137.969909][ T6986] ? rcu_is_watching+0x15/0xb0 [ 137.974706][ T6986] ? ext4_issue_discard+0x293/0x540 [ 137.980030][ T6986] ext4_free_blocks+0xcc2/0x1c00 [ 137.984989][ T6986] ? __pfx_ext4_free_blocks+0x10/0x10 [ 137.990549][ T6986] ? ext4_ind_truncate_ensure_credits+0x29a/0x750 [ 137.996993][ T6986] ext4_clear_blocks+0x372/0x3f0 [ 138.001954][ T6986] ext4_ind_truncate+0x701/0xb30 [ 138.006911][ T6986] ? ext4_discard_preallocations+0x5b2/0xec0 [ 138.012923][ T6986] ? __pfx_ext4_ind_truncate+0x10/0x10 [ 138.018408][ T6986] ? ext4_discard_preallocations+0xc7d/0xec0 [ 138.024422][ T6986] ? __pfx_ext4_discard_preallocations+0x10/0x10 [ 138.030780][ T6986] ext4_truncate+0xb14/0x12f0 [ 138.035481][ T6986] ? __pfx_ext4_truncate+0x10/0x10 [ 138.040609][ T6986] ? down_write+0x162/0x1f0 [ 138.045129][ T6986] ? __pfx_down_write+0x10/0x10 [ 138.049998][ T6986] ext4_write_end+0x75e/0xa00 [ 138.054747][ T6986] generic_perform_write+0x62a/0x900 [ 138.060069][ T6986] ? __pfx_generic_perform_write+0x10/0x10 [ 138.065895][ T6986] ? file_modified_flags+0x4bb/0x560 [ 138.071376][ T6986] ? ext4_write_checks+0x24b/0x2c0 [ 138.076518][ T6986] ext4_buffered_write_iter+0xce/0x3a0 [ 138.082005][ T6986] ext4_file_write_iter+0x292/0x1bc0 [ 138.087417][ T6986] ? __pfx_ext4_file_write_iter+0x10/0x10 [ 138.093186][ T6986] vfs_write+0x5c9/0xb30 [ 138.097450][ T6986] ? __pfx_ext4_file_write_iter+0x10/0x10 [ 138.103227][ T6986] ? __pfx_vfs_write+0x10/0x10 [ 138.108024][ T6986] ? __fget_files+0x2a/0x420 [ 138.112643][ T6986] ksys_write+0x145/0x250 [ 138.116989][ T6986] ? __pfx_ksys_write+0x10/0x10 [ 138.121925][ T6986] ? do_syscall_64+0xbe/0xfa0 [ 138.126715][ T6986] do_syscall_64+0xfa/0xfa0 [ 138.131241][ T6986] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 138.137325][ T6986] ? clear_bhb_loop+0x60/0xb0 [ 138.142022][ T6986] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 138.148151][ T6986] RIP: 0033:0x7faa55d8f6c9 [ 138.152679][ T6986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 138.172382][ T6986] RSP: 002b:00007faa56b89038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 138.180811][ T6986] RAX: ffffffffffffffda RBX: 00007faa55fe5fa0 RCX: 00007faa55d8f6c9 [ 138.188881][ T6986] RDX: 000000000208e24b RSI: 0000200000000000 RDI: 0000000000000004 [ 138.196944][ T6986] RBP: 00007faa55e11f91 R08: 0000000000000000 R09: 0000000000000000 [ 138.204926][ T6986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 138.212909][ T6986] R13: 00007faa55fe6038 R14: 00007faa55fe5fa0 R15: 00007fff04cfeef8 [ 138.220898][ T6986] [ 138.223926][ T6986] Modules linked in: [ 138.228904][ T6986] ---[ end trace 0000000000000000 ]--- [ 138.278266][ T6986] RIP: 0010:bio_seg_gap+0x1c6/0x7d0 [ 138.515302][ T6987] netlink: 'syz.0.348': attribute type 1 has an invalid length. [ 138.554297][ T6987] netlink: 224 bytes leftover after parsing attributes in process `syz.0.348'. [ 138.576928][ T6986] Code: fd 48 ba 00 00 00 00 00 fc ff df 49 8b 06 48 89 5c 24 20 49 89 de 49 c1 e6 04 48 89 44 24 08 4a 8d 2c 30 48 89 e8 48 c1 e8 03 <80> 3c 10 00 74 12 48 89 ef e8 7c 04 b9 fd 48 ba 00 00 00 00 00 fc [ 138.711799][ T6986] RSP: 0018:ffffc90004c9ed40 EFLAGS: 00010246 [ 138.729982][ T6986] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000080000 [ 138.815147][ T6986] RDX: dffffc0000000000 RSI: 00000000000039eb RDI: ffff888050cc22b0 [ 138.819305][ T6992] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.839564][ T6986] RBP: 0000000000000000 R08: ffff888141b86c17 R09: 1ffff11028370d82 [ 138.847619][ T6986] R10: dffffc0000000000 R11: ffffed1028370d83 R12: 0000000000000c00 [ 138.855762][ T6986] R13: 0000000000000000 R14: 0000000000000000 R15: ffff888050cc2280 [ 138.864627][ T6986] FS: 00007faa56b896c0(0000) GS:ffff888125ecc000(0000) knlGS:0000000000000000 [ 138.873941][ T6986] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 138.880659][ T6986] CR2: 00007f36213b3ad8 CR3: 0000000022720000 CR4: 00000000003526f0 [ 138.889431][ T6986] Kernel panic - not syncing: Fatal exception [ 138.895766][ T6986] Kernel Offset: disabled [ 138.900075][ T6986] Rebooting in 86400 seconds..