last executing test programs: 830.708421ms ago: executing program 4 (id=412): r0 = socket$kcm(0x2, 0x200000000000001, 0x106) inotify_add_watch(0xffffffffffffffff, &(0x7f0000000240)='.\x00', 0x60000726) r1 = syz_io_uring_setup(0x10f, &(0x7f0000000140)={0x0, 0x3333, 0x800, 0x3, 0x16c}, &(0x7f0000000040)=0x0, &(0x7f0000000300)=0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0) write$UHID_CREATE2(r4, &(0x7f00000001c0)=ANY=[@ANYBLOB="06"], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r4, 0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, 0x0, 0x60, 0x185100}) io_uring_enter(r1, 0x7277, 0x0, 0x28, 0x0, 0x0) sendmsg$inet(r0, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x34004000) 817.463848ms ago: executing program 4 (id=416): r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r3 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x2}}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000600)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r4, {0x1, 0x5}, {}, {0x7, 0xb}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x4000048, 0x8, 0x5, 0xa, 0x3}, 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x4084080}, 0x24000850) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r5) socket$netlink(0x10, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r6, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000140)='\r', 0x1}], 0x1}, 0x4) 682.496731ms ago: executing program 1 (id=422): open_tree(0xffffffffffffff9c, &(0x7f0000000d80)='\x00', 0x89901) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x804000, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}}) 682.116844ms ago: executing program 3 (id=423): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0}, 0x50) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xf, &(0x7f00000000c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8f, 0x0, 0x0, 0x0, 0xfffffdfd}, {{0x18, 0x1, 0x1, 0x0, r0}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xfffc}, {0x85, 0x0, 0x0, 0xad}}, {{0x5, 0x0, 0x5, 0x9, 0x0, 0x1, 0x200000}}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x2a}}}, &(0x7f0000000440)='syzkaller\x00', 0x1, 0x0, 0x0, 0x41000, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94) 681.551168ms ago: executing program 4 (id=425): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee6, 0x8031, 0xffffffffffffffff, 0xf6d0e000) mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1, 0x0, 0x0, 0x2) 664.142021ms ago: executing program 1 (id=426): syz_io_uring_setup(0x2501, &(0x7f0000000300)={0x0, 0x58cd, 0x80, 0x3, 0x3ffff9}, &(0x7f0000000100), &(0x7f00000002c0)) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00') preadv(r0, &(0x7f00000005c0)=[{&(0x7f0000001340)=""/196, 0xc4}], 0x1, 0x8, 0xffffffff) 663.782605ms ago: executing program 3 (id=427): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x70bd2d, 0x0, {{@in6=@empty, @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x2, 0xc, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x407ffffffffffe, 0x800000000000002}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in6=@empty, 0xfffffffc, 0x3c}, 0x2, @in=@local, 0x6, 0x4, 0x3, 0x0, 0x401}]}]}, 0xfc}}, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2000000000000022, &(0x7f0000000080)=0x1, 0x4) sendto$inet6(r2, &(0x7f0000000240), 0x0, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @rand_addr, 0x5}, 0x1c) 631.154429ms ago: executing program 3 (id=430): r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f0000000240)={0x0, @l2={0x1f, 0x2, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x0, 0x1}, @rc={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x6}, @tipc=@nameseq={0x1e, 0x1, 0x1, {0x40, 0x2, 0x4}}, 0x9, 0x0, 0x0, 0x0, 0x4, 0x0, 0x6, 0x2, 0x5a6}) 630.573322ms ago: executing program 1 (id=431): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}) writev(r0, &(0x7f0000000240)=[{&(0x7f0000000080)="2e9b5b0007e03dd65193dfb6c575963f86dd6067", 0x14}, {&(0x7f0000000100)="b70000000000", 0x6}, {0x0}, {&(0x7f0000000280)="3de496b26cb156fc17de651bb0059979575c10b71057fbfd852720c6e5", 0x1d}], 0x4) 556.979332ms ago: executing program 3 (id=434): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x7a, &(0x7f0000000340)={r1, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84) sendmmsg$inet(r0, &(0x7f0000007980)=[{{&(0x7f0000000000)={0x2, 0x4e21, @loopback}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000080)="ea", 0x1}], 0x1}}, {{&(0x7f0000000680)={0x2, 0x4e23, @rand_addr=0x64010100}, 0x10, &(0x7f0000000c00)=[{&(0x7f00000006c0)='GA', 0x2}], 0x1}}], 0x2, 0x5) 528.437489ms ago: executing program 3 (id=436): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=@newsa={0x154, 0x10, 0x713, 0x0, 0x25dfdbfc, {{@in6=@private1={0xfc, 0x1, '\x00', 0x1}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0xce21, 0x2, 0x2, 0x0, 0x0, 0x21}, {@in6=@private1, 0xfe, 0x32}, @in6=@empty, {0x100000001, 0x0, 0xfffffffffffffffd, 0x8, 0x41, 0x9, 0x7fffffff, 0x543}, {0x4, 0x7fffffffffffffff}, {0x81, 0x0, 0x3}, 0x70bd2c, 0x3500, 0xa, 0x1, 0x0, 0x50}, [@algo_aead={0x61, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0xa8, 0x60, "210466d3850000c538c7cb7a735fc8d12a0469e316"}}]}, 0x154}, 0x1, 0x0, 0x0, 0x880}, 0x0) 464.83572ms ago: executing program 3 (id=439): r0 = syz_usbip_server_init(0x4) gettid() fcntl$setownex(r0, 0xf, 0x0) fcntl$getownex(r0, 0x10, &(0x7f0000000040)) 464.611543ms ago: executing program 2 (id=440): unshare(0x22020400) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4) connect$inet6(r0, &(0x7f0000000440)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000540), 0x3c) setsockopt$inet6_tcp_int(r0, 0x11a, 0x1e, 0x0, 0x0) 413.107024ms ago: executing program 0 (id=441): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x70bd2d, 0x0, {{@in6=@empty, @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x2, 0xc, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x407ffffffffffe, 0x800000000000002}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in6=@empty, 0xfffffffc, 0x3c}, 0x2, @in=@local, 0x6, 0x4, 0x3, 0x0, 0x401}]}]}, 0xfc}}, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2000000000000022, &(0x7f0000000080)=0x1, 0x4) sendto$inet6(r2, &(0x7f0000000240), 0x0, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @rand_addr, 0x5}, 0x1c) 404.974247ms ago: executing program 2 (id=442): socket$netlink(0x10, 0x3, 0x0) bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$packet(0x11, 0x2, 0x300) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000073"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0x5c, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000180)=r1, 0x4) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x5, 0x0, 0x0, 0x0, 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0) sendmsg$nl_route(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=@ipv4_getaddr={0x18, 0x16, 0x100, 0x70bd25, 0x25dfdbfd, {0x2, 0x10, 0x20}}, 0x18}, 0x1, 0x0, 0x0, 0x2000c81c}, 0x4000080) 363.045866ms ago: executing program 0 (id=443): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, 0x0) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd24, 0x7ffc, {0x0, 0x0, 0x0, r3, {0x8, 0x7}, {}, {0xa, 0xfff3}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x10, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0xc, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x2}]}]}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x22044068}, 0x20004000) 327.574771ms ago: executing program 2 (id=444): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0x20000040}, 0x0) set_mempolicy(0x6, &(0x7f00000003c0)=0x8000000000000001, 0xe0) r1 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$CAN_RAW_FILTER(r1, 0x65, 0x1, &(0x7f00000000c0), 0xf00) syz_pidfd_open(0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000b00)={{{@in6=@local, @in6=@initdev}}, {{@in6=@empty}, 0x0, @in6=@initdev}}, &(0x7f00000002c0)=0xffffffffffffff0c) r2 = socket(0x10, 0x3, 0x0) getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0) setregid(0xffffffffffffffff, 0x0) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000800)) newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x6000) setresuid(0xee01, 0x0, 0x0) r3 = socket(0x10, 0x3, 0x0) getsockopt$sock_cred(r3, 0x1, 0x11, 0x0, &(0x7f0000cab000)) setgroups(0x0, &(0x7f0000000000)) setregid(0xffffffffffffffff, 0x0) dup3(r0, r0, 0x80000) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94) r4 = syz_io_uring_setup(0x14d2, &(0x7f0000000340)={0x0, 0x6bf6, 0x100, 0x5, 0x12}, &(0x7f00000000c0)=0x0, &(0x7f0000000300)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x50, 0x0, 0x0, 0x0, 0x1}) io_uring_enter(r4, 0x47bc, 0x0, 0x0, 0x0, 0x0) 326.2805ms ago: executing program 1 (id=445): syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x200812, &(0x7f0000000180)={[{@dioread_nolock}, {@norecovery}, {@resgid}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@errors_remount}, {@grpid}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@grpid}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}], [{@subj_user={'subj_user', 0x3d, '('}}, {@euid_eq}, {@uid_gt}, {@appraise_type}]}, 0xfd, 0x588, &(0x7f0000000680)="$eJzs3d9rW1UcAPDvTZP96rQdjKE+yGAPTsbStfXHBGHzUXQ40PcZ2qyMpsto0rHWgduDe/FFhiDiQPwDfN/j8B/wrxi4wZBR9EGFyk1vuq7Nj7bLTF0+H8h2Ts5Nzv3m3u/NOfcmTQAD62j6Ty7i1Yj4JokYWdeWj6zx6Opyy4+vT6W3JFZWPv09iTMbnivJ/h/OKq9ExC9fRZzIbe63trg0W6pUyvNZfaw+d2Wstrh08tJcaaY8U748MTl5+u3Jiffefadnsb55/s/vP7n34emvjy1/9/PDQ7eTOBsHs7Y0rh50cWN95Wjpn6xUiLMbFhzvQWe7SdLvFWBHhrI8L0R6DBiJoSzrgRfflxGxAgyoRP7DgGqOA5pz+x7Ng/83Hn2wOgHaHH9+9dxI7GvMjQ4sJ0/NjNL57mgP+k/7GH1w5/bdB3duR+fzEPu71AG25cbNiDiVz28+/iXZ8W/nTjVOHne2sY9Be/+BfrqXjn+SGxGb8j+3Nv6JFuOf4Ra5uxPd8z/3sAfdtJWO/95vOf5dO3SNDmW1lxpjvkJy8VKlfCoiXo6I41HYm9Y7Xc85vXx/pV1bGv/dbPyX3tL+m2PBbD0e5vc+/ZjpUr30LDGv9+hmxGstx7/J2vZPWmz/9PU4v8U+jpTvvN6urXv8z9fKTxFvtNz+T65oJZ2vT4419oex5l6x2R+3jvzarv9+x59u/wOd4x9N1l+vrW2/jx/3/VVu17bT/X9P8lmjvCe771qpXp8fj9iTfJwf3nj/xJPHNuvN5dP4jx9rnf+d9v908vX5FuO/dfhW20W7xv/3ukn6U25usffO0vint7X9t1+4/9EXP+w4/sb2f6tROp7ds5Xj31ZX8FleOwAAAAAAANhtchFxMJJcca2cyxWLhUbb4TiQq1Rr9RMXqwuXp6PxXdnRKOSaV7pH1n0eYjz7PGyzPrGhPhkRhyLi26H9jXpxqlqZ7nfwAAAAAAAAAAAAAAAAAAAAsEsMt/z+/2rbb0P9XjvguWv8sMHefq8F0A9df/K/F7/0BOxKXfMfeGFtP/+dGYAXhfd/GFzyHwaX/IfBtdX8L4w85xUB/nPe/2FwyX8AAAAAAAAAAAAAAAAAAAAAAAAAAADoqfPnzqW3leXH16fS+vTVxYXZ6tWT0+XabHFuYao4VZ2/UpypVmcq5eJUda7b81Wq1SvjE7FwbaxertXHaotLF+aqC5frFy7NlWbKF8oFf2wYAAAAAAAAAAAAAAAAAAAANqktLs2WKpXyvELbwpno5RMmu++VP5Ot0o4ent8tUSj0tNDHgxIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAbPBvAAAA///YBDOu") syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x2901401, 0x0, 0x0, 0x0, &(0x7f000009de00)) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000000000)='./bus/file0\x00', 0x0) renameat2(r0, 0x0, r0, &(0x7f00000001c0)='./file0\x00', 0x2) 273.871743ms ago: executing program 4 (id=446): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)) r0 = syz_io_uring_setup(0x22f, &(0x7f0000000080)={0x0, 0x5325, 0x10000, 0x0, 0x100002cf}, &(0x7f0000000000)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r1, r2, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xffffffffffffff31}) io_uring_enter(r0, 0x7a98, 0x0, 0x0, 0x0, 0x0) 272.809204ms ago: executing program 0 (id=447): r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x80082, 0x0) write$vga_arbiter(r0, &(0x7f0000000700)=ANY=[@ANYBLOB='unlock m'], 0xe) 245.324005ms ago: executing program 4 (id=448): r0 = socket$inet(0x2, 0x3, 0x2) setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @local, @remote}, 0xc) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f00000001c0)={0x40, {{0x2, 0x4e24, @multicast1}}}, 0x88) syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x64, 0x0, 0x4, 0x2, 0x0, @empty, @multicast2}, @timestamp_reply={0x11, 0x0, 0x0, 0xe000, 0x2, 0x10001}}}}}, 0x0) 233.77276ms ago: executing program 1 (id=449): fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x40) syz_open_dev$usbfs(0x0, 0x1ff, 0xa401) syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb87, &(0x7f00000017c0)="$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") r0 = open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0xdc) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r0, 0x5000) fallocate(r0, 0x0, 0x0, 0x8800000) r1 = io_uring_setup(0x1faa, &(0x7f0000000000)={0x0, 0xe37d, 0x40, 0x8003, 0x221}) io_uring_register$IORING_REGISTER_RING_FDS(r1, 0x13, &(0x7f0000001bc0), 0x2) 153.057858ms ago: executing program 0 (id=450): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000540), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)={0x48, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_TAGLST={0x24, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x2}, {0x5, 0x3, 0x2}, {0x5}, {0x5, 0x3, 0x2}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x48}}, 0x0) 152.42178ms ago: executing program 4 (id=451): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) close(0x3) r1 = socket(0x2, 0x80805, 0x0) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) close(0x3) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r2, 0x84, 0x7a, &(0x7f0000000340)={r3, @in6={{0xa, 0x3, 0x6a, @dev={0xfe, 0x80, '\x00', 0xf}, 0x8}}}, &(0x7f0000000040)=0x84) sendmmsg$inet_sctp(r1, &(0x7f00000032c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="30000000000000008400000001000000000000017c"], 0x30}], 0x1, 0x0) getsockopt$bt_hci(r0, 0x84, 0x80, &(0x7f00000010c0)=""/4111, &(0x7f0000000000)=0x100f) 140.335272ms ago: executing program 2 (id=452): r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) sendmmsg(r0, &(0x7f00000057c0)=[{{&(0x7f0000000240)=@qipcrtr={0x2a, 0x4, 0x7ffe}, 0x80, 0x0}}, {{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000005900)="c2759a00a3594bf0dab52a5217bb886a4c3e826e14949baa26f7e961a01a6a889b1a7f91b0d22ab5535941385c83012b86192bfbf215e5c120699db53419b7f5cde31205603b774509be9a4ccf28acf298ef9950dbed97d680faf073b39397e7596aec951fe39bc42aeda2ac7a046203c6e6d420a33d2e75ba2eb461dba9b23db798d2f3ab5a92af12f416f9ea44dc2915b19ef64b750ba317122d78111d2c499543b64307f051fd54473492e4ac348b018031c36a36b977cf09115d95e24de1fef41db777a3c0f728fd0d4693acf966385204418aac507bca4192d0c8e53caad96828eb30debf88516267cffcf59ba37808f666669053c193b2e92245ac4eebe4ab50b245031f0825f6a614f574784a1adbc1ac67cacf5d52cc9df9a769b3b121d979a0f8a91ee2d94b4c6e7a99a21f69640db71e27a969ba8dfe56712ae5bbf467ebcb3fb651498914f8242868c6b8d8aff52e028a669ba0e0bb5baa0d2ae1ff74a4773fded82b45716c0b3374aabc7ef4962d661daa57b7e7fe7c273a05973e4da6a4ceba991f215f0dec8a143c3e9762d98f791da56b7af1e98ba3d8f66c4c424604d033700354d9d3978d5ffceb484d84f7042e631464810945252a9e27a66a63fdb05b211bf64977331491705b8dbe71f814cfc8f739c1282d6fbc2bd78f10b89978d9ea32687b8b68bc6d1e67a2dcc4e3d5bc402d76544ea81f1bda36c44328585d4f4b2e0e1ff1ee9e82a5434ea1e75929379c52b9b36f6b15355149ac46ec3f20e4cb9c5736d2888605696f5df0fa2e34e3f3e6a5047a07362c8dc278303c615319296f61ad03d40f010c5314f69dab748dd0698dc8b5744a7681892d73af99884d7a4050cb32d3173277762081e2b90cdb88ff232fd20d259dfc45d7fe85460090d2fdb1f91f5bff29658bb0694999b9b37bb988be144205410a0922aa683acaf062ae29153eb8b450ca8e5ce59221f26709f0fd454c862b2547565635e2a3db9ff38d02072d8449872e640e7b8a073adfd0dc4aaaab52ddc7cf27f460b11c52a67edaeb4fba12714ce541892e06040f847d014495f39d85e9b6b4ab5920ccd327b99575abe7325554a6dbb6f606928e16c71a37207d86d1ec64a3376c595ffdea2ec550c6f903180f9c8a9bb08876ec715f96dee9069a6ec3af42d885dc2b0df36b44490dd377fdd2cf05cb6f96a3f1a6dbbd224ad049805eedf0ff65a9e3af9495f65f33ddaae9c3c09b64ee1f176357abcd0cedc4da3ccae399509921db622bbd624b6f9e4da6c8bd66aae5b5a46ea9fa8d8baf509185e4e55af39b3588500afd04cd81e23cabccf9e2b917d86ac4318c038ee471e8c5de32c902005dd2ffcb924e616a517ffbd5e1c54aec6348c085f7ab74008355be4e1e6cb2b41f59c1d4fef13c5796356719056789cdef2b39f711f9cbd5db5eea67b93283cf32d7377f88d2da182c81fd81d4ff022f5124fa363c1e167ef00c5df47c4d461af4b6eeb032bd64ae5391174147f161a9646d2fc5e1678678f369bf44e72b9a544a0050d6a3c7116951c3078c2a521f9c68b1e74e21e29998b6f392d7099449f3c7f4f33dd4eadc13386fcc25a23b91e6bed31a4ce74ea9cf9ff2e03a0c6de2512d40fc2ff30203de764bdfa63a418a4ac856bf55126266c677d579348b3697e64608be97195b3b8f8360929138f9519047aa1620738acc83f52db32c55275669b060b73f71dccec1b7881b3d55524ae5ba6aad88cab67e3478761df71bb9c3d03364d99383a8a4945c837e24dacfd6fb4ed80d3d8d87b050999c7671232711f208ba1c9ba63b0f098d8fafb4f6151716f1243e406f8618279f58a644d72b34e4d32cc4edc43e26430339938b588ac9d0212f96be8d7c670f013158e7693b5213c5b713aea0cdb7408a65b5a5857059a1585a84ced8e85d0507d6acbe41d5ac3f683cd8a1e3978d80cb0c4738b3bf8a4f85560aba580c0a599a0a5c30c9d9a8eb46bcbd48113715a3d2b8027cc5a81d6ac81ab25cc5d1ec0978e40e8fe912c66675d54a2b995c703a3d74a8493a56a52d8937ae99543ca60bd904be7f82375ffa74f73eab16d3bea92edff073c8b915768113b8630c7dca929bf453ffd7a5ec6cc11c956aea15261c811f3fdb5ec69e7974a10ed3200e58f425e268647ecd6b0b849ee30a415b08938d45687054dc3fea5ccdeba89e341f80f2536ee17ef91675e8f1efd18fd1f069a79a2d880a2217982d94b2bb98383ea998c288b2f80a3fe829e30394b0c9d4fe44684a5e4ef309413effaf25a86ca3929f74cd6fd709408c7890d90d80bd4305fd64627314bffa167d8d2800c386f9da7f0673063d77bcbb5eebb24ca3222b830d5875829fb098af090c92fce9a85ffc686b18f05523d63b3dcc807139e209ae2f185d246b0d33f4272dcf4bb1dd83496d227c7583833150df7ba52a60bb141e1ece8f4325fac0a25e9c0e1afde1ab0b43b77d42ac65105c41de7a9b8d4062f0b4c28171a8cd51dc9df2fa54ca11f5ace4813238272f5b9edb54b874a05ed05eb3b59abe57950edefec14172bd97ab45ef4b140c5c856df5d7090d91c433c9dfd0df967aba870e0569dfc4924941cef24afc062736643dcd9b2d17e66382ce058dc13720901c611a6e9abbda6e855fe512fb5a9a5560b77630214e29c384ef1f32b1b6d04993b8d99fe22d4830acf228d82a28503753e53e19b721b4584e4fc9fcae9d3293badfccbc8f4399b5df743e48c56c24226d67d9396ec237825a010155c2f0e6c83e80db4214793eb30f8e49176cf1fe08039bb3bf337508ff7168d3cfc32d37cd8f8d8beae9d7d6f33a64ff64da8bd8555c0f6375179e8bdfa5ff16d35e69d9087e521ad425ec0a84a007c865890dac0b043e8b19119a438e20b623361c30cc8d64d56777e01338f6d7bdcad3aaf445d52b54b80ddeb2b53a77ad21c603037719da500091cc5c0d68691f35a1ec740065d0ad2b86881e9ff00fe04767eb0ada4845bc32f27d957b6530edda8a2ca54162ec24f5a7b3022c2e4ac54a42dfe602398a80376883902fa8bd9a640824a088601b8421803a10b65353c38b556ddde4e970918fd7db40d3ad638e38f3dfb132e35d8edd1124daa1e8a9e9b57c477491cc8f10fa78ae3b310f8b9b8e79e59cfd877b3f0b62476dfafcf6148cad79e006bd02191941e833398ef84be7da43ca6aae8a4aeb769d357bf81ebd7258da5c2b88ed0c1870081387343fa26782ec4ebffddeba8fe7549726ec8d4e37e0c2ae79ba3ef865b8e85d4b2112692445b391b34fbfb4b4e31c0a74f40af5db9962ee193f95cdb3551cf8af96e682f1d84446b0dd2a3691de0b67ea4dca59d3f8225e1cceb6ac4a1d81dce8b1e6bcc4c89a243209a4e39887abf135d9358fa08f24ebfdd671ca23b6e925c0c3da90b49556ec4287a780574076145463719d6b439e9f5b0f6e20ed0145cc5af821450d885c941448263d2dbceec1a3567b691bf92b00424e4577fd77ccff4827488ffbb0d7e2c9f28305401bc7d8ffb6ffabcd3f30b6e6904055dfed8f909ea6ef1eedb7d6ca1759a34032d0629d8c87dec2479677765e248d56077bb937eb5b6d5c0637c4fe7e98f0c64587334096e23540f72afd7ebafda460934a357bd765a3d2c0b67c55f2b8982ef05cbc89e539e773ea5e43dd4a9f9dbaf2fdaf58095ab5243a43764ff943caf3a8d75595fd564f411e4e2f2f440ab7cb16ec8a5593bf5d05ce6a210c41c55cb7c56b09680af3e0f966b296de0b5a789ae3e70d9700624a8469c0282b2ad801689e603771fb57b799ce061cd8a711249c837dbe82a73f58b89f042bbc99a77620e5bc69d868adf99236dd5905582faa526a26d34355f3489e6c632e733a1fb07af82e93ec92d1db97da1c5372bb6ec4acf680bd5163b4f2e0b816011562d619fd46e3f1697a745b95bab387ea32170d11364aef1516b62748a959bbb36b672c555b1f944423d94eab56ca0ea8ea3ff4c2644f227dc4baddc7705a923d891d44125a8f414a0884df83d87eb8956e34a0cb677f540871bf7cb1dd99e88ec8c03dd236eb1c6dcb6134124fc23182676a4bde7bdc16f7fc7f429e011b2de9bf2b5f4ef1037ad98c74820b7e89a91971faaeb902e67d738c50a672adb5714b93ef77820fd8f2037299c4389ea956f6de7ff4f9183447ba62d39cfe49ab305269861d8c87d1481856a061b7d56ebad707b628530996a3269d31471dc53f813c9edfdb9b88445c63e3e517339c43d4f996f008d63abc0824a12728c7d962c4d3cafce4d9015af25abca753913bc8852202631ce5573e04377702d0efa903d9c417ef06cfb48cc6583110e1278bf89e32b0e234", 0xc10}, {&(0x7f0000000080)}, {&(0x7f0000001940)}, {0x0}], 0x4, &(0x7f0000001540)=[{0x40, 0x6, 0x18000, "e5f32156634d8e44f215198e8c9b086f97a1e76a63f23cc010e2814055f37e1d55c7ea50716bfb7a1c2401d897a669e9"}, {0xb8, 0x10f, 0x6, "c38131d27bdf819e79d11c45f2ec16c809fa3caa23dcec7dc9bea3e4229ac74dbc0f1d4a0ad9bb11cec028f650765e4b7af3c734ab3947512bf8a147574fd84ff124db9a5c80a8cf7dbfd7e2e218394976b40159db57e51e128be9268eec12017c4d02a7d16f703ef297183d2dd62b805f6e870fdf91785300e7be53f9235a157880285b027e150f77a2e4177b0f321e5a721dbea5a7e2dd22e2b0690ca63e11d182ea"}, {0xd8, 0x111, 0x3, "8e7b45c587aa39cdcba7fc734be5b13066991fe87cee51eda7a6c4e8c7dc7795da5794c37fd0e99ca020bd19ad555569e1f82eb039db15441cf05d11f6e99d16f51693d842a1c66593f717cd7bd2ecd34cbc55d6fd9100c78906d05aee168666923a19728bfbf34699e70c090a4f0a87b49b8af6b1ecfbbd9d9fda9152e591c1c3d64a8faa48c259508a362e5e6638e42a81a1eed4ac08f29c561f057534d87c0ba4a82e54f944935cb951a7ae78fd91d7d683f4d23796f942cbed55e1a6953c6a099675cd23"}, {0x40, 0x111, 0x2e4d, "f470b152e5f3f030e13d5e857c296a3ca6498ee9ce41b15a99a9f1527da48aa281a1729b3dab9497bd3009"}], 0x210}}], 0x2, 0x30000010) 118.895245ms ago: executing program 2 (id=453): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff6}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c3"], 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000700)={{r0}, &(0x7f0000000180), &(0x7f00000006c0)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r1}, 0xc) 61.207756ms ago: executing program 0 (id=454): syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000000940)={[{@jqfmt_vfsold}, {@debug}, {@noblock_validity}, {@noload}, {@nombcache}, {@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x2}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}]}, 0xfa, 0x47c, &(0x7f0000001f80)="$eJzs3M1vFOUfAPDvTLulwI9fK+ILCFJFI/GlpeVFDl40mnDQxEQPGE+1LaRSqKE1EUK0esCjIfFu/C+MJ70Y9aKJV70bEmK4gHpZMzsztLS77ZZud4H9fJLZfZ6Z2X2e78w8O8/Ms7sBdK2h7CGJ+F9E/B4RA3n29hWG8qeb1y9N/H390kQS1epbfyW19W5cvzRRrlq+bnueqVaL/JY65V5+N2J8ZmbqfJEfmT/7wcjchYsvTJ8dPz11eurc2PHjRw7v6zs2drQlcWZx3djz8eze3SfeufLGxMkr7/2UpJHHHcviaJWhfOvW9XSrC+uwHUvSSW/22F/k9v+yuKTekUAn9UREtrsqtfY/ED2x9daygXjts45WDthU1Wq1usqn8kIVuI8l0ekaAJ1Rnuiz699yalPX465w7eX8AiiL+2Yx5Ut6I80T+yvLrm9baSgiTi7881U2xSbdhwAAWOq7rP/zfL3+XxoP54m+7OH/xRjKYEQ8EBE7I+LBiNgVEQ9F1NZ9JCIeXWf5y0dIVvZ/0qt3HFwTsv7fS8XY1u39v7RcZbCnyO2oxV9JTk3PTB0qtsnBqGw5NZ1Mja5Sxvev/vZFo2VL+3/ZlJVf9gWLelztXXaDbnJ8fnwjMS917dOIPb314k9q4wJRjOvtjog9d1jG9LO9DZetHf8qGr9t06pfRzyT7/+FWBZ/KWk4Pjn64rGxoyP9MTN1aKQ8Klb6+dfLbzYqf0Pxt0C2/7fVPf5vxT+Y9EfMXbh4pjZeO7f+Mi7/8XnDa5p1Hv8ndhTHf1/ydm1GX7Hgo/H5+fOjEX3J6yvnjy2+W5kv18/iP3igfvvfGYtb4rGI2BsR+yLi8eyisKj7ExHxZEQcWCX+H1956v31x9+esdIs/sm19n8s3f/rT/Sc+eHbtePvj4hG+/9ILXWwmNPM51+zFdzItgMAAIB7Rf4d+CQdXkwnw8P5d/h3xbZ0ZnZu/rlTsx+em8y/Kz8YlbS80zWw5H7oaHFvuMyPLcsfLu4bf9mztZYfnpidmex08NDltq9o/2matf/Mnz2drh2w6Vowjgbco7R/6F7aP3SnZM32X2lbXYD2c/6H7lWv/X/ScO3hbza1MkBbOf9D92qi/S/kT417BcC9yfkfupf2D12p4W/j0w395L/tiX+L/zO8W+pz/ycivSuqcf8nepv+M4tGicrKtlwdyNt/NmdL3Vd1+pMJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACgNf4LAAD///R05PQ=") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90) getdents64(r0, 0x0, 0x0) getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000) 52.945418ms ago: executing program 1 (id=455): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}) writev(r0, &(0x7f0000000240)=[{&(0x7f0000000080)="2e9b5b0007e03dd65193dfb6c575963f86dd6067", 0x14}, {&(0x7f0000000100)="b70000000000", 0x6}, {0x0}, {&(0x7f0000000280)="3de496b26cb156fc17de651bb0059979575c10b71057fbfd852720c6e5", 0x1d}], 0x4) 42.947952ms ago: executing program 2 (id=456): bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x15, 0xf, &(0x7f0000000100)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xbda}, {{}, {}, {0x7, 0x0, 0xb, 0x6}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x579, &(0x7f0000000a40)="$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") setxattr$incfs_metadata(&(0x7f0000000240)='./file1\x00', &(0x7f0000000280), &(0x7f00000002c0)="30573472b621739991c336124406e8a5c812ca847e3bf9b837c91d46ab", 0x1d, 0x1) lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f0000000000)=ANY=[], 0x361, 0x0) lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000000)=ANY=[], 0xfe37, 0x0) 0s ago: executing program 0 (id=457): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000340)={@in={{0x2, 0x4e22, @local}}, 0x0, 0x0, 0x33, 0x0, "cebd7ceedb7b0ad952e966bbe242b92b746b023df2cb59e32e10366456deac64e782206bd4aee372005a52a40b7161161a8b2749fe184fb0d08bc63f90010a1ed2bf603d2c3fcc250c30136f9ef2ef8b"}, 0xd8) sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x11) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.125' (ED25519) to the list of known hosts. [ 31.683708][ T6559] cgroup: Unknown subsys name 'net' [ 31.793483][ T6559] cgroup: Unknown subsys name 'cpuset' [ 31.795523][ T6559] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 31.980753][ T6559] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS [ 34.367137][ T6573] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 34.390051][ T6581] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 34.391886][ T54] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 34.393645][ T6585] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 34.394245][ T6586] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 34.394362][ T6586] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 34.394652][ T6586] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 34.395035][ T6586] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 34.395195][ T6586] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 34.395394][ T6586] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 34.395813][ T6586] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 34.397115][ T6585] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 34.397168][ T6586] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 34.397447][ T6586] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 34.397611][ T6586] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 34.400774][ T6586] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 34.403943][ T54] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 34.405090][ T6586] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 34.413296][ T54] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 34.417618][ T6576] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 34.421904][ T6581] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 34.425830][ T6581] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 34.429627][ T6581] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 34.431254][ T6581] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 34.434864][ T6581] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 34.575269][ T6577] chnl_net:caif_netlink_parms(): no params data found [ 34.584942][ T6578] chnl_net:caif_netlink_parms(): no params data found [ 34.644849][ T6571] chnl_net:caif_netlink_parms(): no params data found [ 34.658991][ T6578] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.659531][ T6578] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.659627][ T6578] bridge_slave_0: entered allmulticast mode [ 34.660127][ T6578] bridge_slave_0: entered promiscuous mode [ 34.676701][ T6578] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.678386][ T6578] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.679923][ T6578] bridge_slave_1: entered allmulticast mode [ 34.681605][ T6578] bridge_slave_1: entered promiscuous mode [ 34.690422][ T6577] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.690896][ T6577] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.690963][ T6577] bridge_slave_0: entered allmulticast mode [ 34.691401][ T6577] bridge_slave_0: entered promiscuous mode [ 34.700694][ T6578] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 34.702795][ T6577] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.703037][ T6577] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.703137][ T6577] bridge_slave_1: entered allmulticast mode [ 34.703555][ T6577] bridge_slave_1: entered promiscuous mode [ 34.709498][ T6578] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 34.713666][ T6572] chnl_net:caif_netlink_parms(): no params data found [ 34.736780][ T6577] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 34.739191][ T6578] team0: Port device team_slave_0 added [ 34.739404][ T6579] chnl_net:caif_netlink_parms(): no params data found [ 34.742816][ T6578] team0: Port device team_slave_1 added [ 34.756485][ T6577] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 34.760547][ T6578] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 34.761852][ T6578] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 34.766365][ T6578] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 34.767666][ T6571] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.767739][ T6571] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.767826][ T6571] bridge_slave_0: entered allmulticast mode [ 34.768237][ T6571] bridge_slave_0: entered promiscuous mode [ 34.783415][ T6578] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 34.784650][ T6578] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 34.788957][ T6578] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 34.790999][ T6571] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.791066][ T6571] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.791137][ T6571] bridge_slave_1: entered allmulticast mode [ 34.791566][ T6571] bridge_slave_1: entered promiscuous mode [ 34.804711][ T6577] team0: Port device team_slave_0 added [ 34.805846][ T6572] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.805893][ T6572] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.805954][ T6572] bridge_slave_0: entered allmulticast mode [ 34.806391][ T6572] bridge_slave_0: entered promiscuous mode [ 34.816850][ T6571] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 34.818763][ T6572] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.819938][ T6572] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.821341][ T6572] bridge_slave_1: entered allmulticast mode [ 34.823085][ T6572] bridge_slave_1: entered promiscuous mode [ 34.825709][ T6577] team0: Port device team_slave_1 added [ 34.830804][ T6571] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 34.853841][ T6579] bridge0: port 1(bridge_slave_0) entered blocking state [ 34.853952][ T6579] bridge0: port 1(bridge_slave_0) entered disabled state [ 34.854015][ T6579] bridge_slave_0: entered allmulticast mode [ 34.854446][ T6579] bridge_slave_0: entered promiscuous mode [ 34.857923][ T6579] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.857945][ T6579] bridge0: port 2(bridge_slave_1) entered disabled state [ 34.858009][ T6579] bridge_slave_1: entered allmulticast mode [ 34.858407][ T6579] bridge_slave_1: entered promiscuous mode [ 34.866541][ T6571] team0: Port device team_slave_0 added [ 34.867592][ T6572] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 34.869499][ T6572] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 34.869769][ T6577] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 34.869777][ T6577] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 34.869790][ T6577] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 34.875253][ T6578] hsr_slave_0: entered promiscuous mode [ 34.875585][ T6578] hsr_slave_1: entered promiscuous mode [ 34.879166][ T6572] team0: Port device team_slave_0 added [ 34.879810][ T6572] team0: Port device team_slave_1 added [ 34.886453][ T6571] team0: Port device team_slave_1 added [ 34.888270][ T6579] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 34.890036][ T6577] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 34.890293][ T6577] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 34.890313][ T6577] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 34.895621][ T6579] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 34.910260][ T6572] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 34.911517][ T6572] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 34.912295][ T6572] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 34.919599][ T6571] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 34.919859][ T6571] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 34.919881][ T6571] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 34.921022][ T6572] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 34.921034][ T6572] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 34.921048][ T6572] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 34.927129][ T6579] team0: Port device team_slave_0 added [ 34.929755][ T6571] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 34.929767][ T6571] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 34.929778][ T6571] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 34.938165][ T6579] team0: Port device team_slave_1 added [ 34.955776][ T6577] hsr_slave_0: entered promiscuous mode [ 34.956108][ T6577] hsr_slave_1: entered promiscuous mode [ 34.956340][ T6577] debugfs: 'hsr0' already exists in 'hsr' [ 34.956384][ T6577] Cannot create hsr debugfs directory [ 34.970808][ T6571] hsr_slave_0: entered promiscuous mode [ 34.971145][ T6571] hsr_slave_1: entered promiscuous mode [ 34.971349][ T6571] debugfs: 'hsr0' already exists in 'hsr' [ 34.971358][ T6571] Cannot create hsr debugfs directory [ 34.974105][ T6579] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 34.974114][ T6579] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 34.974128][ T6579] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 34.983356][ T6579] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 34.983387][ T6579] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 34.983403][ T6579] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 34.988068][ T6572] hsr_slave_0: entered promiscuous mode [ 34.988379][ T6572] hsr_slave_1: entered promiscuous mode [ 34.988582][ T6572] debugfs: 'hsr0' already exists in 'hsr' [ 34.988591][ T6572] Cannot create hsr debugfs directory [ 35.048656][ T6579] hsr_slave_0: entered promiscuous mode [ 35.048984][ T6579] hsr_slave_1: entered promiscuous mode [ 35.049186][ T6579] debugfs: 'hsr0' already exists in 'hsr' [ 35.049196][ T6579] Cannot create hsr debugfs directory [ 35.141542][ T6578] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 35.148189][ T6578] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 35.154653][ T6578] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 35.159168][ T6578] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 35.177394][ T6578] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.177441][ T6578] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.177628][ T6578] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.177656][ T6578] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.183807][ T6577] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 35.186673][ T6577] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 35.190038][ T6577] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 35.195737][ T6577] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 35.223049][ T6571] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 35.225818][ T6571] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 35.232740][ T6571] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 35.235531][ T6577] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.235581][ T6577] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.235664][ T6577] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.235695][ T6577] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.240134][ T6571] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 35.259467][ T6572] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 35.266346][ T6572] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 35.275041][ T6572] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 35.283306][ T6572] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 35.291726][ T6578] 8021q: adding VLAN 0 to HW filter on device bond0 [ 35.299831][ T6571] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.299877][ T6571] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.299965][ T6571] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.299996][ T6571] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.314011][ T6572] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.314058][ T6572] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.314125][ T6572] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.314148][ T6572] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.315185][ T6579] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 35.319734][ T6578] 8021q: adding VLAN 0 to HW filter on device team0 [ 35.324272][ T6579] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 35.328038][ T6066] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.329410][ T6066] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.330710][ T6066] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.334142][ T6066] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.335485][ T6066] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.336768][ T6066] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.338801][ T6066] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.351686][ T6579] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 35.357205][ T6579] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 35.360968][ T5130] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.361020][ T5130] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.376176][ T6577] 8021q: adding VLAN 0 to HW filter on device bond0 [ 35.381516][ T6577] 8021q: adding VLAN 0 to HW filter on device team0 [ 35.413583][ T4759] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.413630][ T4759] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.421387][ T5130] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.421437][ T5130] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.451705][ T6571] 8021q: adding VLAN 0 to HW filter on device bond0 [ 35.459706][ T6572] 8021q: adding VLAN 0 to HW filter on device bond0 [ 35.470553][ T6579] 8021q: adding VLAN 0 to HW filter on device bond0 [ 35.489135][ T6572] 8021q: adding VLAN 0 to HW filter on device team0 [ 35.491991][ T6571] 8021q: adding VLAN 0 to HW filter on device team0 [ 35.504955][ T41] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.504995][ T41] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.508045][ T41] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.508084][ T41] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.516851][ T6579] 8021q: adding VLAN 0 to HW filter on device team0 [ 35.519382][ T41] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.519421][ T41] bridge0: port 1(bridge_slave_0) entered forwarding state [ 35.530381][ T41] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.530418][ T41] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.534946][ T41] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.534982][ T41] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.540518][ T6578] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 35.550996][ T41] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.551036][ T41] bridge0: port 2(bridge_slave_1) entered forwarding state [ 35.564760][ T6572] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 35.564794][ T6572] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 35.624583][ T6577] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 35.631853][ T6577] veth0_vlan: entered promiscuous mode [ 35.638955][ T6578] veth0_vlan: entered promiscuous mode [ 35.646545][ T6578] veth1_vlan: entered promiscuous mode [ 35.669297][ T6577] veth1_vlan: entered promiscuous mode [ 35.671377][ T6571] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 35.687055][ T6578] veth0_macvtap: entered promiscuous mode [ 35.690344][ T6572] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 35.696230][ T6577] veth0_macvtap: entered promiscuous mode [ 35.698988][ T6577] veth1_macvtap: entered promiscuous mode [ 35.711558][ T6578] veth1_macvtap: entered promiscuous mode [ 35.714999][ T6577] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 35.717287][ T6577] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 35.724590][ T2246] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.729343][ T6578] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 35.737474][ T2246] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.739257][ T2246] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.740726][ T2246] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.746113][ T6578] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 35.761052][ T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.761337][ T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.761358][ T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.761373][ T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.790418][ T6579] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 35.811724][ T6572] veth0_vlan: entered promiscuous mode [ 35.826469][ T2246] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 35.826505][ T2246] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 35.844324][ T6572] veth1_vlan: entered promiscuous mode [ 35.846485][ T4759] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 35.846509][ T4759] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 35.854808][ T6571] veth0_vlan: entered promiscuous mode [ 35.861641][ T2246] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 35.861675][ T2246] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 35.868736][ T6571] veth1_vlan: entered promiscuous mode [ 35.891267][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 35.891298][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 35.895176][ T6579] veth0_vlan: entered promiscuous mode [ 35.905869][ T6571] veth0_macvtap: entered promiscuous mode [ 35.912438][ T6571] veth1_macvtap: entered promiscuous mode [ 35.916347][ T6572] veth0_macvtap: entered promiscuous mode [ 35.918406][ T6579] veth1_vlan: entered promiscuous mode [ 35.923880][ T6578] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 35.928144][ T6572] veth1_macvtap: entered promiscuous mode [ 35.961234][ T6579] veth0_macvtap: entered promiscuous mode [ 35.970882][ T6571] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 35.974014][ T6579] veth1_macvtap: entered promiscuous mode [ 35.979338][ T6689] loop1: detected capacity change from 0 to 1024 [ 35.979806][ T6579] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 35.980722][ T6579] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 35.982125][ T480] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.982148][ T480] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.982166][ T480] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.982181][ T480] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 35.992825][ T6689] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 36.001017][ T6571] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 36.004777][ T6572] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 36.005815][ T6572] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 36.007894][ T413] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.007951][ T413] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.008058][ T413] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.008144][ T413] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.017247][ T6687] syzkaller1: entered promiscuous mode [ 36.017307][ T6687] syzkaller1: entered allmulticast mode [ 36.030258][ T6689] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 36.051017][ T41] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.051141][ T41] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.051161][ T41] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.051176][ T41] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.122397][ T6577] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 36.126538][ T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.126876][ T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.151424][ T480] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.153880][ T480] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.165776][ T413] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.167261][ T413] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.181397][ T480] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.183326][ T480] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.233424][ T5130] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.233456][ T5130] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.239427][ T6699] loop1: detected capacity change from 0 to 1024 [ 36.246768][ T6699] ======================================================= [ 36.246768][ T6699] WARNING: The mand mount option has been deprecated and [ 36.246768][ T6699] and is ignored by this kernel. Remove the mand [ 36.246768][ T6699] option from the mount to silence this warning. [ 36.246768][ T6699] ======================================================= [ 36.267592][ T6699] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 36.281876][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 36.284017][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 36.324305][ T6707] loop3: detected capacity change from 0 to 512 [ 36.340059][ T6577] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 36.357724][ T6709] support for cryptoloop has been removed. Use dm-crypt instead. [ 36.363145][ T6707] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 36.389253][ T6707] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.4: Allocating blocks 41-42 which overlap fs metadata [ 36.398579][ T6707] Quota error (device loop3): write_blk: dquota write failed [ 36.398616][ T6707] Quota error (device loop3): find_free_dqentry: Can't write quota data block 5 [ 36.398663][ T6707] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4215: comm syz.3.4: Allocating blocks 41-42 which overlap fs metadata [ 36.399108][ T6707] Quota error (device loop3): write_blk: dquota write failed [ 36.399151][ T6707] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 36.399172][ T6707] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.4: Failed to acquire dquot type 1 [ 36.406814][ T6707] EXT4-fs error (device loop3): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt. [ 36.407504][ T6707] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.4: corrupted inode contents [ 36.407970][ T6707] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #12: comm syz.3.4: mark_inode_dirty error [ 36.408100][ T6707] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.4: corrupted inode contents [ 36.408551][ T6707] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #12: comm syz.3.4: mark_inode_dirty error [ 36.408803][ T6707] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.4: corrupted inode contents [ 36.411200][ T6707] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem [ 36.411388][ T6707] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #12: comm syz.3.4: corrupted inode contents [ 36.423835][ T6576] Bluetooth: hci3: command tx timeout [ 36.423927][ T6707] EXT4-fs error (device loop3): ext4_truncate:4635: inode #12: comm syz.3.4: mark_inode_dirty error [ 36.432459][ T6707] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem [ 36.433015][ T6707] EXT4-fs (loop3): 1 truncate cleaned up [ 36.433475][ T6707] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 36.439166][ T6718] loop2: detected capacity change from 0 to 1024 [ 36.439562][ T6718] EXT4-fs: Ignoring removed nomblk_io_submit option [ 36.459070][ T6707] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 36.474630][ T6579] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 36.479739][ T6718] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 36.492857][ T6576] Bluetooth: hci4: command tx timeout [ 36.493091][ T6573] Bluetooth: hci1: command tx timeout [ 36.493214][ T6573] Bluetooth: hci0: command tx timeout [ 36.493280][ T6573] Bluetooth: hci2: command tx timeout [ 36.509651][ T6578] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 36.513511][ T6724] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 36.623739][ T6735] loop0: detected capacity change from 0 to 512 [ 36.627989][ T6735] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 36.629951][ T6735] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 not in group (block 2)! [ 36.632017][ T6735] EXT4-fs (loop0): group descriptors corrupted! [ 36.810289][ T6748] loop2: detected capacity change from 0 to 128 [ 36.878972][ T6755] loop3: detected capacity change from 0 to 256 [ 36.897899][ T6755] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 37.018240][ T6774] loop1: detected capacity change from 0 to 128 [ 37.151777][ T6790] loop1: detected capacity change from 0 to 512 [ 37.156440][ T6790] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 37.181023][ T6790] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #3: comm syz.1.45: corrupted inode contents [ 37.183282][ T6790] EXT4-fs error (device loop1): ext4_dirty_inode:6502: inode #3: comm syz.1.45: mark_inode_dirty error [ 37.189317][ T6790] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #3: comm syz.1.45: corrupted inode contents [ 37.198292][ T6790] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #3: comm syz.1.45: mark_inode_dirty error [ 37.208456][ T6790] Quota error (device loop1): write_blk: dquota write failed [ 37.208540][ T6790] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 37.208563][ T6790] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.45: Failed to acquire dquot type 0 [ 37.220221][ T6790] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #16: comm syz.1.45: corrupted inode contents [ 37.227371][ T6790] EXT4-fs error (device loop1): ext4_dirty_inode:6502: inode #16: comm syz.1.45: mark_inode_dirty error [ 37.229460][ T6790] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #16: comm syz.1.45: corrupted inode contents [ 37.233622][ T6790] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #16: comm syz.1.45: mark_inode_dirty error [ 37.235794][ T6790] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #16: comm syz.1.45: corrupted inode contents [ 37.248274][ T6790] EXT4-fs error (device loop1) in ext4_orphan_del:303: Corrupt filesystem [ 37.249913][ T6790] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #16: comm syz.1.45: corrupted inode contents [ 37.262814][ T6790] EXT4-fs error (device loop1): ext4_truncate:4635: inode #16: comm syz.1.45: mark_inode_dirty error [ 37.263031][ T6790] EXT4-fs error (device loop1) in ext4_process_orphan:345: Corrupt filesystem [ 37.269774][ T6790] EXT4-fs (loop1): 1 truncate cleaned up [ 37.270635][ T6790] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 37.325561][ T6577] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 37.362737][ T6804] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2 [ 37.393990][ T6809] loop2: detected capacity change from 0 to 4096 [ 37.410519][ T6809] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 37.439647][ T6806] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 37.455221][ T6816] EXT4-fs: Ignoring removed i_version option [ 37.455260][ T6816] EXT4-fs: Ignoring removed bh option [ 37.472855][ T6578] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 37.481571][ T6816] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 37.529890][ T6579] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 37.559174][ T6821] syz.2.57 uses obsolete (PF_INET,SOCK_PACKET) [ 37.599759][ T6830] netlink: 'syz.3.61': attribute type 5 has an invalid length. [ 37.632908][ T6828] syzkaller1: entered promiscuous mode [ 37.632945][ T6828] syzkaller1: entered allmulticast mode [ 37.971061][ T6868] syzkaller1: entered promiscuous mode [ 37.971096][ T6868] syzkaller1: entered allmulticast mode [ 38.107917][ T6876] netlink: 4 bytes leftover after parsing attributes in process `syz.3.83'. [ 38.217126][ T6884] netlink: 28 bytes leftover after parsing attributes in process `syz.0.87'. [ 38.268881][ T6886] FAT-fs (loop0): Directory bread(block 32) failed [ 38.270225][ T6886] FAT-fs (loop0): Directory bread(block 33) failed [ 38.271629][ T6886] FAT-fs (loop0): Directory bread(block 34) failed [ 38.274068][ T6886] FAT-fs (loop0): Directory bread(block 35) failed [ 38.275366][ T6886] FAT-fs (loop0): Directory bread(block 36) failed [ 38.275435][ T6886] FAT-fs (loop0): Directory bread(block 37) failed [ 38.275471][ T6886] FAT-fs (loop0): Directory bread(block 38) failed [ 38.275489][ T6886] FAT-fs (loop0): Directory bread(block 39) failed [ 38.275545][ T6886] FAT-fs (loop0): Directory bread(block 40) failed [ 38.275560][ T6886] FAT-fs (loop0): Directory bread(block 41) failed [ 38.469819][ T6897] syzkaller1: entered promiscuous mode [ 38.470988][ T6897] syzkaller1: entered allmulticast mode [ 38.493536][ T6576] Bluetooth: hci3: command tx timeout [ 38.572213][ T6581] Bluetooth: hci4: command tx timeout [ 38.582486][ T6581] Bluetooth: hci2: command tx timeout [ 38.583160][ T6163] Bluetooth: hci1: command tx timeout [ 38.583248][ T6573] Bluetooth: hci0: command tx timeout [ 38.674857][ T6909] netlink: 328 bytes leftover after parsing attributes in process `syz.1.99'. [ 39.151193][ T6933] sctp: [Deprecated]: syz.4.110 (pid 6933) Use of struct sctp_assoc_value in delayed_ack socket option. [ 39.151193][ T6933] Use struct sctp_sack_info instead [ 39.280814][ T6939] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 39.288928][ T31] audit: type=1326 audit(39.260:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6941 comm="syz.3.114" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff87f78fa8 code=0x7ffc0000 [ 39.292778][ T31] audit: type=1326 audit(39.260:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6941 comm="syz.3.114" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=434 compat=0 ip=0xffff87f78fa8 code=0x7ffc0000 [ 39.296148][ T31] audit: type=1326 audit(39.260:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6941 comm="syz.3.114" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff87f78fa8 code=0x7ffc0000 [ 39.299505][ T31] audit: type=1326 audit(39.260:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6941 comm="syz.3.114" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff87f78fa8 code=0x7ffc0000 [ 39.323171][ T6571] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 39.419916][ T6954] netlink: 20 bytes leftover after parsing attributes in process `syz.4.120'. [ 39.507680][ T6965] netlink: 'syz.4.125': attribute type 14 has an invalid length. [ 39.509561][ T6965] netlink: 16 bytes leftover after parsing attributes in process `syz.4.125'. [ 39.893747][ T6989] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 39.912006][ T6989] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2857: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 39.912572][ T6989] EXT4-fs (loop0): 1 truncate cleaned up [ 39.913471][ T6989] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 39.961098][ T6572] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 40.096714][ T6997] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 40.098619][ T6997] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 40.139704][ T6572] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 40.300038][ T7014] IPv6: sit1: Disabled Multicast RS [ 40.349012][ T7016] EXT4-fs: Ignoring removed nobh option [ 40.349046][ T7016] EXT4-fs: inline encryption not supported [ 40.380760][ T7016] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 40.403367][ T6579] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 40.461540][ T7026] syzkaller0: entered promiscuous mode [ 40.462737][ T7026] syzkaller0: entered allmulticast mode [ 40.573084][ T6573] Bluetooth: hci3: command tx timeout [ 40.573156][ T6581] Bluetooth: hci5: command 0x1003 tx timeout [ 40.573789][ T6576] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 40.654961][ T6581] Bluetooth: hci1: command tx timeout [ 40.655025][ T6576] Bluetooth: hci0: command tx timeout [ 40.662217][ T6581] Bluetooth: hci4: command tx timeout [ 40.662315][ T6576] Bluetooth: hci2: command tx timeout [ 40.713956][ T7050] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 40.750473][ T7062] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 40.750730][ T6571] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 40.783660][ T7062] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 40.811468][ T6563] udevd[6563]: symlink '../../loop1' '/dev/disk/by-diskseq/92.tmp-b7:1' failed: Read-only file system [ 40.820935][ T6564] udevd[6564]: symlink '../../loop4' '/dev/disk/by-diskseq/91.tmp-b7:4' failed: Read-only file system [ 40.821431][ T6564] udevd[6564]: symlink '../../loop4' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system [ 40.836086][ T6577] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 40.847070][ T6563] udevd[6563]: symlink '../../loop1' '/dev/disk/by-label/syzkaller.tmp-b7:1' failed: Read-only file system [ 40.867618][ T6564] udevd[6564]: symlink '../../loop1' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system [ 40.869916][ T6564] udevd[6564]: symlink '../../loop4' '/dev/disk/by-diskseq/91.tmp-b7:4' failed: Read-only file system [ 40.883969][ T6564] udevd[6564]: symlink '../../loop4' '/dev/disk/by-diskseq/91.tmp-b7:4' failed: Read-only file system [ 40.908365][ T6708] udevd[6708]: symlink '../../loop1' '/dev/disk/by-diskseq/92.tmp-b7:1' failed: Read-only file system [ 40.923178][ T6564] udevd[6564]: symlink '../../loop4' '/dev/disk/by-diskseq/91.tmp-b7:4' failed: Read-only file system [ 40.923298][ T7087] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 40.927485][ T7087] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 40.969698][ T6708] udevd[6708]: symlink '../../loop1' '/dev/disk/by-diskseq/92.tmp-b7:1' failed: Read-only file system [ 41.037396][ T7101] netlink: 16 bytes leftover after parsing attributes in process `syz.3.182'. [ 41.158992][ T7111] set_capacity_and_notify: 12 callbacks suppressed [ 41.159356][ T7111] loop0: detected capacity change from 0 to 1024 [ 41.169731][ T7111] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 41.176489][ T7111] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.187: bg 0: block 112: padding at end of block bitmap is not set [ 41.193116][ T6572] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 41.803786][ T7120] capability: warning: `syz.4.190' uses deprecated v2 capabilities in a way that may be insecure [ 41.941524][ T7130] loop1: detected capacity change from 0 to 512 [ 41.956089][ T7130] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 41.973382][ T7130] EXT4-fs (loop1): 1 truncate cleaned up [ 41.976592][ T7130] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 42.008439][ T6577] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 42.238874][ T7148] loop4: detected capacity change from 0 to 256 [ 42.267111][ T7148] vfat: Bad value for 'uni_xlate' [ 42.366303][ T7157] loop2: detected capacity change from 0 to 8192 [ 42.383470][ T6565] loop2: p2 p4 [ 42.389193][ T6565] loop2: p2 size 9435648 extends beyond EOD, truncated [ 42.391539][ T6565] loop2: p4 size 50331904 extends beyond EOD, truncated [ 42.414106][ T7157] loop2: p2 p4 [ 42.414956][ T7157] loop2: p2 size 9435648 extends beyond EOD, truncated [ 42.417428][ T7157] loop2: p4 size 50331904 extends beyond EOD, truncated [ 42.440645][ T7167] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3) [ 42.440672][ T7167] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 42.444061][ T7167] vhci_hcd vhci_hcd.0: Device attached [ 42.453410][ T7168] vhci_hcd: connection closed [ 42.462174][ T5130] vhci_hcd vhci_hcd.4: stop threads [ 42.464545][ T5130] vhci_hcd vhci_hcd.4: release socket [ 42.465471][ T5130] vhci_hcd vhci_hcd.4: disconnect device [ 42.475292][ T7172] loop3: detected capacity change from 0 to 512 [ 42.485700][ T7172] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 42.527227][ T7179] netlink: 'syz.1.217': attribute type 1 has an invalid length. [ 42.652106][ T6576] Bluetooth: hci3: command tx timeout [ 42.660629][ T6579] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 42.732287][ T6576] Bluetooth: hci2: command tx timeout [ 42.733504][ T6576] Bluetooth: hci0: command tx timeout [ 42.733537][ T6576] Bluetooth: hci1: command tx timeout [ 42.733614][ T6581] Bluetooth: hci4: command tx timeout [ 43.076925][ T7212] loop3: detected capacity change from 0 to 2048 [ 43.104493][ T6708] loop3: p1 < > p4 [ 43.104977][ T6708] loop3: p4 size 8388608 extends beyond EOD, truncated [ 43.113667][ T7212] loop3: p1 < > p4 [ 43.134594][ T7212] loop3: p4 size 8388608 extends beyond EOD, truncated [ 43.296018][ T7228] Zero length message leads to an empty skb [ 43.361916][ T7233] loop2: detected capacity change from 0 to 512 [ 43.370191][ T7233] EXT4-fs: Ignoring removed orlov option [ 43.381203][ T7233] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 43.419426][ T7233] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 43.421444][ T7233] EXT4-fs error (device loop2): ext4_iget_extra_inode:5073: inode #15: comm syz.2.240: corrupted in-inode xattr: e_value size too large [ 43.425810][ T7233] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.240: couldn't read orphan inode 15 (err -117) [ 43.430255][ T7233] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 43.505309][ T6578] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 43.523182][ T7244] loop1: detected capacity change from 0 to 512 [ 43.524686][ T7244] EXT4-fs: Ignoring removed bh option [ 43.525699][ T7244] EXT4-fs: Ignoring removed oldalloc option [ 43.527799][ T7244] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 43.544205][ T7244] EXT4-fs (loop1): 1 truncate cleaned up [ 43.545816][ T7244] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 43.609361][ T6577] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 43.691608][ T7255] loop0: detected capacity change from 0 to 1024 [ 43.707822][ T7255] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 43.798232][ T6572] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 43.917998][ T7274] loop0: detected capacity change from 0 to 8192 [ 44.208208][ T7286] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.208652][ T7286] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.216330][ T7286] bridge0: entered allmulticast mode [ 44.222492][ T31] kauditd_printk_skb: 3 callbacks suppressed [ 44.224922][ T31] audit: type=1326 audit(44.200:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7288 comm="syz.4.260" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff89178fa8 code=0x7ffc0000 [ 44.228179][ T31] audit: type=1326 audit(44.200:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7288 comm="syz.4.260" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff89178fa8 code=0x7ffc0000 [ 44.231594][ T31] audit: type=1326 audit(44.200:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7288 comm="syz.4.260" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff89178fa8 code=0x7ffc0000 [ 44.231613][ T31] audit: type=1326 audit(44.200:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7288 comm="syz.4.260" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=221 compat=0 ip=0xffff89178fa8 code=0x7ffc0000 [ 44.231627][ T31] audit: type=1326 audit(44.200:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7288 comm="syz.4.260" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff89178fa8 code=0x7ffc0000 [ 44.231640][ T31] audit: type=1326 audit(44.200:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7288 comm="syz.4.260" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff89178fa8 code=0x7ffc0000 [ 44.231652][ T31] audit: type=1326 audit(44.200:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7288 comm="syz.4.260" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff89178fa8 code=0x7ffc0000 [ 44.231664][ T31] audit: type=1326 audit(44.200:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7288 comm="syz.4.260" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=436 compat=0 ip=0xffff89178fa8 code=0x7ffc0000 [ 44.231675][ T31] audit: type=1326 audit(44.200:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7288 comm="syz.4.260" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=94 compat=0 ip=0xffff89178fa8 code=0x7ffc0000 [ 44.262498][ T7286] bridge_slave_1: left allmulticast mode [ 44.264878][ T7286] bridge_slave_1: left promiscuous mode [ 44.266513][ T7286] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.278816][ T7286] bridge_slave_0: left allmulticast mode [ 44.280066][ T7286] bridge_slave_0: left promiscuous mode [ 44.281664][ T7286] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.296331][ T7292] netlink: 'syz.4.264': attribute type 1 has an invalid length. [ 44.395036][ T7292] 8021q: adding VLAN 0 to HW filter on device bond1 [ 44.424045][ T7302] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 44.424064][ T7302] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 44.427024][ T7302] vhci_hcd vhci_hcd.0: Device attached [ 44.428218][ T7295] vlan2: entered promiscuous mode [ 44.429144][ T7295] bond1: entered promiscuous mode [ 44.429754][ T7303] vhci_hcd: connection closed [ 44.430239][ T12] vhci_hcd vhci_hcd.2: stop threads [ 44.431716][ T12] vhci_hcd vhci_hcd.2: release socket [ 44.432706][ T12] vhci_hcd vhci_hcd.2: disconnect device [ 44.433819][ T7295] vlan2: entered allmulticast mode [ 44.434904][ T7295] bond1: entered allmulticast mode [ 44.473629][ T7292] netlink: 8 bytes leftover after parsing attributes in process `syz.4.264'. [ 44.516836][ T7292] bond1: (slave bridge1): making interface the new active one [ 44.520484][ T7292] bridge1: entered promiscuous mode [ 44.522339][ T7292] bridge1: entered allmulticast mode [ 44.523979][ T7292] bond1: (slave bridge1): Enslaving as an active interface with an up link [ 44.729570][ T7317] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 44.755750][ T7317] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 44.799230][ T6579] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.945470][ T7333] syzkaller0: entered promiscuous mode [ 44.946833][ T7333] syzkaller0: entered allmulticast mode [ 44.950385][ T7333] netlink: 24 bytes leftover after parsing attributes in process `syz.3.280'. [ 44.952892][ T7333] netlink: 24 bytes leftover after parsing attributes in process `syz.3.280'. [ 44.955465][ T7333] 0: reclassify loop, rule prio 0, protocol 800 [ 45.005169][ T7342] EXT4-fs: Ignoring removed nomblk_io_submit option [ 45.005212][ T7342] EXT4-fs: Ignoring removed nomblk_io_submit option [ 45.005221][ T7342] ext4: Unknown parameter 'rootcontext' [ 45.067834][ T7348] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 45.069682][ T7348] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 45.109190][ T6579] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.177387][ T7358] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 45.177408][ T7358] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 45.180924][ T7358] vhci_hcd vhci_hcd.0: Device attached [ 45.183835][ T7359] vhci_hcd: connection closed [ 45.184259][ T351] vhci_hcd vhci_hcd.3: stop threads [ 45.184288][ T351] vhci_hcd vhci_hcd.3: release socket [ 45.185216][ T351] vhci_hcd vhci_hcd.3: disconnect device [ 45.315391][ T7366] veth0: entered promiscuous mode [ 45.315717][ T7366] veth0: left promiscuous mode [ 45.396281][ T1748] cfg80211: failed to load regulatory.db [ 45.476507][ T7380] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 45.487493][ T7380] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 45.536467][ T6571] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.831496][ T6564] udevd[6564]: symlink '../../loop3' '/dev/disk/by-diskseq/122.tmp-b7:3' failed: Read-only file system [ 45.913124][ T6564] udevd[6564]: symlink '../../loop3' '/dev/disk/by-diskseq/122.tmp-b7:3' failed: Read-only file system [ 45.922682][ T7400] Illegal XDP return value 4294967274 on prog (id 8) dev syz_tun, expect packet loss! [ 45.971259][ T6564] udevd[6564]: symlink '../../loop0' '/dev/disk/by-diskseq/120.tmp-b7:0' failed: Read-only file system [ 46.014635][ T6564] udevd[6564]: symlink '../../loop3' '/dev/disk/by-diskseq/122.tmp-b7:3' failed: Read-only file system [ 46.036995][ T6564] udevd[6564]: symlink '../../loop0' '/dev/disk/by-diskseq/120.tmp-b7:0' failed: Read-only file system [ 46.073275][ T6564] udevd[6564]: symlink '../../loop0' '/dev/disk/by-diskseq/120.tmp-b7:0' failed: Read-only file system [ 46.082969][ T6564] udevd[6564]: symlink '../../loop3' '/dev/disk/by-diskseq/122.tmp-b7:3' failed: Read-only file system [ 46.095984][ T6564] udevd[6564]: symlink '../../loop4' '/dev/disk/by-diskseq/124.tmp-b7:4' failed: Read-only file system [ 46.123804][ T7414] netlink: 24 bytes leftover after parsing attributes in process `syz.3.315'. [ 46.143772][ T6564] udevd[6564]: symlink '../../loop3' '/dev/disk/by-diskseq/122.tmp-b7:3' failed: Read-only file system [ 46.153431][ T6708] udevd[6708]: symlink '../../loop4' '/dev/disk/by-diskseq/124.tmp-b7:4' failed: Read-only file system [ 46.187718][ T7422] set_capacity_and_notify: 4 callbacks suppressed [ 46.187764][ T7422] loop4: detected capacity change from 0 to 512 [ 46.223532][ T7422] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 46.226460][ T7422] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.316: bg 0: block 104: invalid block bitmap [ 46.226926][ T7422] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6689: Corrupt filesystem [ 46.227095][ T7422] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.316: invalid indirect mapped block 1 (level 1) [ 46.227331][ T7422] EXT4-fs (loop4): 1 truncate cleaned up [ 46.227818][ T7422] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 46.343270][ T7439] netlink: 4 bytes leftover after parsing attributes in process `syz.1.325'. [ 46.359508][ T7441] loop0: detected capacity change from 0 to 1024 [ 46.359879][ T7441] EXT4-fs: Ignoring removed oldalloc option [ 46.359906][ T7441] EXT4-fs: Ignoring removed bh option [ 46.387071][ T7441] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 46.428183][ T7447] loop1: detected capacity change from 0 to 256 [ 46.490455][ T7441] EXT4-fs error (device loop0): mb_free_blocks:2037: group 0, inode 15: block 241:freeing already freed block (bit 15); block bitmap corrupt. [ 46.555113][ T6572] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.983849][ T6571] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.021935][ T7477] loop4: detected capacity change from 0 to 128 [ 47.026076][ T7477] FAT-fs (loop4): Directory bread(block 32) failed [ 47.026110][ T7477] FAT-fs (loop4): Directory bread(block 33) failed [ 47.026147][ T7477] FAT-fs (loop4): Directory bread(block 34) failed [ 47.026157][ T7477] FAT-fs (loop4): Directory bread(block 35) failed [ 47.026177][ T7477] FAT-fs (loop4): Directory bread(block 36) failed [ 47.026187][ T7477] FAT-fs (loop4): Directory bread(block 37) failed [ 47.026205][ T7477] FAT-fs (loop4): Directory bread(block 38) failed [ 47.026214][ T7477] FAT-fs (loop4): Directory bread(block 39) failed [ 47.026232][ T7477] FAT-fs (loop4): Directory bread(block 40) failed [ 47.026241][ T7477] FAT-fs (loop4): Directory bread(block 41) failed [ 47.109587][ T7483] netlink: 20 bytes leftover after parsing attributes in process `syz.1.343'. [ 47.574468][ T7525] 9p: Bad value for 'rfdno' [ 47.768408][ T7551] geneve2: entered promiscuous mode [ 47.909977][ T7562] netlink: 20 bytes leftover after parsing attributes in process `syz.3.378'. [ 47.937150][ T7564] loop3: detected capacity change from 0 to 512 [ 47.938772][ T7564] EXT4-fs: Ignoring removed orlov option [ 47.940771][ T7564] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 47.948380][ T7564] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 47.950514][ T7564] EXT4-fs error (device loop3): ext4_iget_extra_inode:5073: inode #15: comm syz.3.379: corrupted in-inode xattr: e_value size too large [ 47.951647][ T7564] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.379: couldn't read orphan inode 15 (err -117) [ 47.953352][ T7564] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 47.984497][ T6579] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.042275][ T7574] loop1: detected capacity change from 0 to 512 [ 48.159832][ T7591] loop4: detected capacity change from 0 to 512 [ 48.161969][ T7591] EXT4-fs: Ignoring removed orlov option [ 48.166302][ T7591] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 48.179196][ T7591] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 48.179561][ T7591] EXT4-fs error (device loop4): ext4_iget_extra_inode:5073: inode #15: comm syz.4.391: corrupted in-inode xattr: e_value size too large [ 48.179713][ T7591] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.391: couldn't read orphan inode 15 (err -117) [ 48.180946][ T7591] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 48.203676][ T6571] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.237590][ T7601] loop4: detected capacity change from 0 to 1024 [ 48.241210][ T7603] netdevsim netdevsim1 netdevsim0: entered promiscuous mode [ 48.259404][ T7601] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 48.268664][ T7607] 9p: Bad value for 'wfdno' [ 48.301018][ T6571] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.677327][ T24] kernel read not supported for file /newroot/87 (pid: 24 comm: kworker/1:0) [ 48.747264][ T7671] loop2: detected capacity change from 0 to 1024 [ 48.766961][ T7671] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 48.823890][ T6578] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.886847][ T7688] loop0: detected capacity change from 0 to 512 [ 48.899066][ T7688] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 48.920716][ T7688] EXT4-fs (loop0): orphan cleanup on readonly fs [ 48.921139][ T7688] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:517: comm syz.0.437: Block bitmap for bg 0 marked uninitialized [ 48.925781][ T7688] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6689: Corrupt filesystem [ 48.927625][ T7688] EXT4-fs (loop0): 1 orphan inode deleted [ 48.928277][ T7688] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 48.932518][ T7697] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 48.932543][ T7697] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 48.934986][ T7697] vhci_hcd vhci_hcd.0: Device attached [ 48.937137][ T7698] vhci_hcd: connection closed [ 48.941108][ T12] vhci_hcd vhci_hcd.3: stop threads [ 48.941144][ T12] vhci_hcd vhci_hcd.3: release socket [ 48.941161][ T12] vhci_hcd vhci_hcd.3: disconnect device [ 48.968571][ T6572] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.105285][ T7713] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 49.161945][ T6577] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.269995][ T7724] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 49.320855][ T6577] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.332982][ T7733] EXT4-fs: Ignoring removed orlov option [ 49.333282][ T7733] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 49.346369][ T7733] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 49.351402][ T7733] EXT4-fs error (device loop0): ext4_iget_extra_inode:5073: inode #15: comm syz.0.454: corrupted in-inode xattr: e_value size too large [ 49.354457][ T7733] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.454: couldn't read orphan inode 15 (err -117) [ 49.363526][ T7733] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 49.380956][ T6572] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.410004][ T7737] ================================================================== [ 49.410019][ T7737] BUG: KASAN: slab-out-of-bounds in ext4_xattr_set_entry+0xfe8/0x15c0 [ 49.410035][ T7737] Read of size 12404 at addr ffff0000fb3e9400 by task syz.2.456/7737 [ 49.410043][ T7737] [ 49.410047][ T7737] CPU: 0 UID: 0 PID: 7737 Comm: syz.2.456 Not tainted syzkaller #0 PREEMPT [ 49.410054][ T7737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 49.410059][ T7737] Call trace: [ 49.410061][ T7737] show_stack+0x2c/0x3c (C) [ 49.410071][ T7737] __dump_stack+0x30/0x40 [ 49.410079][ T7737] dump_stack_lvl+0xd8/0x12c [ 49.410085][ T7737] print_address_description+0xa8/0x238 [ 49.410092][ T7737] print_report+0x68/0x84 [ 49.410098][ T7737] kasan_report+0xb0/0x110 [ 49.410105][ T7737] kasan_check_range+0x264/0x2a4 [ 49.410111][ T7737] __asan_memmove+0x3c/0x84 [ 49.410119][ T7737] ext4_xattr_set_entry+0xfe8/0x15c0 [ 49.410124][ T7737] ext4_xattr_block_set+0x5fc/0x24bc [ 49.410130][ T7737] ext4_xattr_set_handle+0xde8/0x1260 [ 49.410136][ T7737] ext4_xattr_set+0x1e4/0x2b8 [ 49.410141][ T7737] ext4_xattr_trusted_set+0x4c/0x64 [ 49.410148][ T7737] __vfs_setxattr+0x3d8/0x400 [ 49.410154][ T7737] __vfs_setxattr_noperm+0x120/0x5c4 [ 49.410161][ T7737] __vfs_setxattr_locked+0x1e8/0x214 [ 49.410167][ T7737] vfs_setxattr+0x158/0x2a8 [ 49.410176][ T7737] filename_setxattr+0x20c/0x4f8 [ 49.410182][ T7737] path_setxattrat+0x2e8/0x320 [ 49.410190][ T7737] __arm64_sys_lsetxattr+0xc0/0xdc [ 49.410197][ T7737] invoke_syscall+0x98/0x254 [ 49.410205][ T7737] el0_svc_common+0xe8/0x23c [ 49.410212][ T7737] do_el0_svc+0x48/0x58 [ 49.410218][ T7737] el0_svc+0x5c/0x26c [ 49.410227][ T7737] el0t_64_sync_handler+0x84/0x12c [ 49.410235][ T7737] el0t_64_sync+0x198/0x19c [ 49.410241][ T7737] [ 49.410243][ T7737] Allocated by task 7737: [ 49.410246][ T7737] kasan_save_track+0x40/0x78 [ 49.410251][ T7737] kasan_save_alloc_info+0x44/0x54 [ 49.410258][ T7737] __kasan_kmalloc+0x9c/0xb4 [ 49.410263][ T7737] __kmalloc_node_track_caller_noprof+0x510/0x778 [ 49.410269][ T7737] kmemdup_noprof+0x44/0x8c [ 49.410276][ T7737] ext4_xattr_block_set+0x544/0x24bc [ 49.410280][ T7737] ext4_xattr_set_handle+0xde8/0x1260 [ 49.410285][ T7737] ext4_xattr_set+0x1e4/0x2b8 [ 49.410295][ T7737] ext4_xattr_trusted_set+0x4c/0x64 [ 49.410300][ T7737] __vfs_setxattr+0x3d8/0x400 [ 49.410305][ T7737] __vfs_setxattr_noperm+0x120/0x5c4 [ 49.410311][ T7737] __vfs_setxattr_locked+0x1e8/0x214 [ 49.410316][ T7737] vfs_setxattr+0x158/0x2a8 [ 49.410321][ T7737] filename_setxattr+0x20c/0x4f8 [ 49.410327][ T7737] path_setxattrat+0x2e8/0x320 [ 49.410333][ T7737] __arm64_sys_lsetxattr+0xc0/0xdc [ 49.410338][ T7737] invoke_syscall+0x98/0x254 [ 49.410344][ T7737] el0_svc_common+0xe8/0x23c [ 49.410350][ T7737] do_el0_svc+0x48/0x58 [ 49.410356][ T7737] el0_svc+0x5c/0x26c [ 49.410362][ T7737] el0t_64_sync_handler+0x84/0x12c [ 49.410369][ T7737] el0t_64_sync+0x198/0x19c [ 49.410373][ T7737] [ 49.410375][ T7737] The buggy address belongs to the object at ffff0000fb3e9000 [ 49.410375][ T7737] which belongs to the cache kmalloc-1k of size 1024 [ 49.410379][ T7737] The buggy address is located 0 bytes to the right of [ 49.410379][ T7737] allocated 1024-byte region [ffff0000fb3e9000, ffff0000fb3e9400) [ 49.410386][ T7737] [ 49.410388][ T7737] The buggy address belongs to the physical page: [ 49.410391][ T7737] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x13b3e8 [ 49.410397][ T7737] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 49.410401][ T7737] flags: 0x5ffc00000000040(head|node=0|zone=2|lastcpupid=0x7ff) [ 49.410407][ T7737] page_type: f5(slab) [ 49.410413][ T7737] raw: 05ffc00000000040 ffff0000c0001dc0 fffffdffc3e4a800 dead000000000002 [ 49.410418][ T7737] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 49.410424][ T7737] head: 05ffc00000000040 ffff0000c0001dc0 fffffdffc3e4a800 dead000000000002 [ 49.410429][ T7737] head: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000 [ 49.410434][ T7737] head: 05ffc00000000003 fffffdffc3ecfa01 00000000ffffffff 00000000ffffffff [ 49.410439][ T7737] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008 [ 49.410442][ T7737] page dumped because: kasan: bad access detected [ 49.410445][ T7737] [ 49.410446][ T7737] Memory state around the buggy address: [ 49.410449][ T7737] ffff0000fb3e9300: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 49.410453][ T7737] ffff0000fb3e9380: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 49.410457][ T7737] >ffff0000fb3e9400: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 49.410460][ T7737] ^ [ 49.410463][ T7737] ffff0000fb3e9480: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 49.410467][ T7737] ffff0000fb3e9500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 49.410470][ T7737] ================================================================== [ 49.442547][ T7737] Disabling lock debugging due to kernel taint [ 49.442941][ C0] ------------[ cut here ]------------ [ 49.442947][ C0] ODEBUG: active_state not available (active state 0) object: 00000000f76680fc object type: rcu_head hint: 0x0 [ 49.443096][ C0] WARNING: lib/debugobjects.c:615 at debug_object_active_state+0x28c/0x350, CPU#0: pr/ttyAMA-1/43 [ 49.450106][ T7741] Unable to handle kernel paging request at virtual address dfff800000000003 [ 49.450116][ T7741] KASAN: null-ptr-deref in range [0x0000000000000018-0x000000000000001f] [ 49.450123][ T7741] Mem abort info: [ 49.450126][ T7741] ESR = 0x0000000096000005 [ 49.450130][ T7741] EC = 0x25: DABT (current EL), IL = 32 bits [ 49.450135][ T7741] SET = 0, FnV = 0 [ 49.450138][ T7741] EA = 0, S1PTW = 0 [ 49.450140][ T7741] FSC = 0x05: level 1 translation fault [ 49.450143][ T7741] Data abort info: [ 49.450145][ T7741] ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000 [ 49.450147][ T7741] CM = 0, WnR = 0, TnD = 0, TagAccess = 0 [ 49.450150][ T7741] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0 [ 49.450154][ T7741] [dfff800000000003] address between user and kernel address ranges [ 49.450158][ T7741] Internal error: Oops: 0000000096000005 [#1] SMP [ 49.450164][ T7741] Modules linked in: [ 49.450173][ T7741] CPU: 1 UID: 0 PID: 7741 Comm: syz.0.457 Tainted: G B syzkaller #0 PREEMPT [ 49.450181][ T7741] Tainted: [B]=BAD_PAGE [ 49.450183][ T7741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 49.450186][ T7741] pstate: 034000c5 (nzcv daIF +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 49.450192][ T7741] pc : __free_object+0x1cc/0x720 [ 49.450201][ T7741] lr : __free_object+0x44/0x720 [ 49.450205][ T7741] sp : ffff8000a1b278c0 [ 49.450208][ T7741] x29: ffff8000a1b278c0 x28: ffff700014364f38 x27: ffff0000c5fce1c0 [ 49.450217][ T7741] x26: 1fffe00033784671 x25: dfff800000000000 x24: 0000000000000000 [ 49.450224][ T7741] x23: 1fffe00033784670 x22: 0000000000000018 x21: ffff0000c5fce1c0 [ 49.450232][ T7741] x20: ffff00019bc23388 x19: ffff00019bc23380 x18: 0000000000000000 [ 49.450239][ T7741] x17: 0000000000000000 x16: ffff800082e5e714 x15: 0000000000000001 [ 49.450246][ T7741] x14: 1ffff00012f0bf57 x13: 0000000000000000 x12: 0000000000000000 [ 49.450253][ T7741] x11: ffff700012f0bf58 x10: 0000000000ff0100 x9 : 0000000000000000 [ 49.450260][ T7741] x8 : 0000000000000003 x7 : 0000000000000000 x6 : ffff800082e5fd40 [ 49.450267][ T7741] x5 : 0000000000000000 x4 : 0000000000000001 x3 : 0000000000000010 [ 49.450274][ T7741] x2 : ffff8000a1b278c0 x1 : 0000000000000080 x0 : 0000000000000001 [ 49.450282][ T7741] Call trace: [ 49.450284][ T7741] __free_object+0x1cc/0x720 (P) [ 49.450291][ T7741] debug_object_free+0x298/0x3e4 [ 49.450296][ T7741] destroy_hrtimer_on_stack+0x28/0x38 [ 49.450318][ T7741] futex_wait+0x248/0x3e8 [ 49.450325][ T7741] do_futex+0x304/0x35c [ 49.450329][ T7741] __arm64_sys_futex+0x378/0x3f0 [ 49.450334][ T7741] invoke_syscall+0x98/0x254 [ 49.450342][ T7741] el0_svc_common+0xe8/0x23c [ 49.450348][ T7741] do_el0_svc+0x48/0x58 [ 49.450353][ T7741] el0_svc+0x5c/0x26c [ 49.450361][ T7741] el0t_64_sync_handler+0x84/0x12c [ 49.450367][ T7741] el0t_64_sync+0x198/0x19c [ 49.450375][ T7741] Code: 97791a93 f9400268 91006116 d343fec8 (38796908) [ 49.450380][ T7741] ---[ end trace 0000000000000000 ]--- [ 49.530595][ C0] Modules linked in: [ 49.531240][ C0] CPU: 0 UID: 0 PID: 43 Comm: pr/ttyAMA-1 Tainted: G B D syzkaller #0 PREEMPT [ 49.532834][ C0] Tainted: [B]=BAD_PAGE, [D]=DIE [ 49.533549][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 49.535068][ C0] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 49.536265][ C0] pc : debug_object_active_state+0x28c/0x350 [ 49.537142][ C0] lr : debug_object_active_state+0x28c/0x350 [ 49.538042][ C0] sp : ffff800097bc7cb0 [ 49.538633][ C0] x29: ffff800097bc7cc0 x28: ffff80008f871000 x27: dfff800000000000 [ 49.539780][ C0] x26: 0000000000000005 x25: 0000000000000001 x24: 0000000000000000 [ 49.540960][ C0] x23: 0000000000000000 x22: ffff80008b068240 x21: ffff80008b5aa820 [ 49.542137][ C0] x20: 0000000000000000 x19: ffff00010f22f460 x18: 1fffe0003377d090 [ 49.543295][ C0] x17: 30303030203a7463 x16: ffff800082e5e68c x15: 0000000000000001 [ 49.544467][ C0] x14: 1fffe0003377d0fa x13: 0000000000000000 x12: 0000000000000000 [ 49.545646][ C0] x11: ffff60003377d0fb x10: 0000000000ff0100 x9 : c07f92b416f17d00 [ 49.546882][ C0] x8 : c07f92b416f17d00 x7 : 0000000000000001 x6 : ffff8000805761f8 [ 49.548067][ C0] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff8000807f1034 [ 49.549199][ C0] x2 : 0000000000000001 x1 : 0000000100000101 x0 : 0000000000000000 [ 49.550386][ C0] Call trace: [ 49.550918][ C0] debug_object_active_state+0x28c/0x350 (P) [ 49.551824][ C0] rcu_core+0x7f4/0x1774 [ 49.552437][ C0] rcu_core_si+0x10/0x1c [ 49.553087][ C0] handle_softirqs+0x31c/0xc88 [ 49.553803][ C0] __do_softirq+0x14/0x20 [ 49.554441][ C0] ____do_softirq+0x14/0x20 [ 49.555161][ C0] call_on_irq_stack+0x30/0x48 [ 49.555948][ C0] do_softirq_own_stack+0x20/0x2c [ 49.556739][ C0] __irq_exit_rcu+0x1b0/0x478 [ 49.557476][ C0] irq_exit_rcu+0x14/0x84 [ 49.558175][ C0] el1_interrupt+0x40/0x60 [ 49.558872][ C0] el1h_64_irq_handler+0x18/0x24 [ 49.559646][ C0] el1h_64_irq+0x6c/0x70 [ 49.560269][ C0] _raw_spin_unlock_irqrestore+0x44/0x98 (P) [ 49.561175][ C0] pl011_console_device_unlock+0x90/0xc8 [ 49.562011][ C0] nbcon_kthread_func+0x600/0x768 [ 49.562814][ C0] kthread+0x5fc/0x75c [ 49.563385][ C0] ret_from_fork+0x10/0x20 [ 49.564055][ C0] irq event stamp: 44440 [ 49.564702][ C0] hardirqs last enabled at (44439): [] finish_lock_switch+0xb0/0x1c0 [ 49.566190][ C0] hardirqs last disabled at (44440): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 49.567593][ C0] softirqs last enabled at (44400): [] handle_softirqs+0xaf8/0xc88 [ 49.569035][ C0] softirqs last disabled at (44381): [] __do_softirq+0x14/0x20 [ 49.570437][ C0] ---[ end trace 0000000000000000 ]--- [ 49.571339][ C0] ------------[ cut here ]------------ [ 49.571343][ C0] ODEBUG: deactivate not available (active state 0) object: 00000000f76680fc object type: rcu_head hint: 0x0 [ 49.571481][ C0] WARNING: lib/debugobjects.c:615 at debug_object_deactivate+0x284/0x330, CPU#0: pr/ttyAMA-1/43 [ 49.575479][ C0] Modules linked in: [ 49.576064][ C0] CPU: 0 UID: 0 PID: 43 Comm: pr/ttyAMA-1 Tainted: G B D W syzkaller #0 PREEMPT [ 49.577630][ C0] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 49.578458][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 49.579929][ C0] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 49.581080][ C0] pc : debug_object_deactivate+0x284/0x330 [ 49.581929][ C0] lr : debug_object_deactivate+0x284/0x330 [ 49.582856][ C0] sp : ffff800097bc7cc0 [ 49.583454][ C0] x29: ffff800097bc7cc0 x28: ffff80008fa5b800 x27: 0000000000000005 [ 49.584633][ C0] x26: ffff80008f871000 x25: dfff800000000000 x24: ffff80009792b000 [ 49.585864][ C0] x23: 0000000000000000 x22: ffff80008b068240 x21: ffff00010f22f460 [ 49.587165][ C0] x20: ffff80008b5aa820 x19: 0000000000000000 x18: 1fffe0003377d090 [ 49.588437][ C0] x17: 303030303030203a x16: ffff800082e5e68c x15: 0000000000000001 [ 49.589594][ C0] x14: 1ffff00012f78ed0 x13: 0000000000000000 x12: 0000000000000000 [ 49.590765][ C0] x11: 0000000000000e04 x10: 0000000000ff0100 x9 : c07f92b416f17d00 [ 49.591871][ C0] x8 : c07f92b416f17d00 x7 : 0000000000000001 x6 : ffff8000805761f8 [ 49.593038][ C0] x5 : 0000000000000000 x4 : 0000000000000000 x3 : 0000000000000002 [ 49.594222][ C0] x2 : 0000000000000001 x1 : 0000000000000101 x0 : 0000000000000000 [ 49.595437][ C0] Call trace: [ 49.595925][ C0] debug_object_deactivate+0x284/0x330 (P) [ 49.596816][ C0] rcu_core+0x800/0x1774 [ 49.597464][ C0] rcu_core_si+0x10/0x1c [ 49.598108][ C0] handle_softirqs+0x31c/0xc88 [ 49.598866][ C0] __do_softirq+0x14/0x20 [ 49.599471][ C0] ____do_softirq+0x14/0x20 [ 49.600192][ C0] call_on_irq_stack+0x30/0x48 [ 49.600931][ C0] do_softirq_own_stack+0x20/0x2c [ 49.601712][ C0] __irq_exit_rcu+0x1b0/0x478 [ 49.602409][ C0] irq_exit_rcu+0x14/0x84 [ 49.603056][ C0] el1_interrupt+0x40/0x60 [ 49.603736][ C0] el1h_64_irq_handler+0x18/0x24 [ 49.604483][ C0] el1h_64_irq+0x6c/0x70 [ 49.605130][ C0] _raw_spin_unlock_irqrestore+0x44/0x98 (P) [ 49.606016][ C0] pl011_console_device_unlock+0x90/0xc8 [ 49.606914][ C0] nbcon_kthread_func+0x600/0x768 [ 49.607931][ C0] kthread+0x5fc/0x75c [ 49.608555][ C0] ret_from_fork+0x10/0x20 [ 49.609252][ C0] irq event stamp: 44440 [ 49.609872][ C0] hardirqs last enabled at (44439): [] finish_lock_switch+0xb0/0x1c0 [ 49.611222][ C0] hardirqs last disabled at (44440): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 49.612642][ C0] softirqs last enabled at (44400): [] handle_softirqs+0xaf8/0xc88 [ 49.614002][ C0] softirqs last disabled at (44381): [] __do_softirq+0x14/0x20 [ 49.615298][ C0] ---[ end trace 0000000000000000 ]--- [ 49.616139][ C0] ------------[ cut here ]------------ [ 49.616147][ C0] ODEBUG: active_state not available (active state 0) object: 0000000084647976 object type: rcu_head hint: 0x0 [ 49.616291][ C0] WARNING: lib/debugobjects.c:615 at debug_object_active_state+0x28c/0x350, CPU#0: pr/ttyAMA-1/43 [ 49.620177][ C0] Modules linked in: [ 49.620734][ C0] CPU: 0 UID: 0 PID: 43 Comm: pr/ttyAMA-1 Tainted: G B D W syzkaller #0 PREEMPT [ 49.622194][ C0] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 49.623013][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 49.624478][ C0] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 49.625534][ C0] pc : debug_object_active_state+0x28c/0x350 [ 49.626361][ C0] lr : debug_object_active_state+0x28c/0x350 [ 49.627207][ C0] sp : ffff800097bc7cb0 [ 49.627857][ C0] x29: ffff800097bc7cc0 x28: ffff80008f871000 x27: dfff800000000000 [ 49.629003][ C0] x26: 0000000000000005 x25: 0000000000000001 x24: 0000000000000000 [ 49.630242][ C0] x23: 0000000000000000 x22: ffff80008b068240 x21: ffff80008b5aa820 [ 49.631482][ C0] x20: 0000000000000000 x19: ffff00010f22f370 x18: 1fffe0003377d090 [ 49.632675][ C0] x17: 30303030203a7463 x16: ffff800082e5e68c x15: 0000000000000001 [ 49.633897][ C0] x14: 1ffff00012f78ecc x13: 0000000000000000 x12: 0000000000000000 [ 49.635001][ C0] x11: 0000000000000e52 x10: 0000000000ff0100 x9 : c07f92b416f17d00 [ 49.636207][ C0] x8 : c07f92b416f17d00 x7 : 0000000000000001 x6 : ffff8000805761f8 [ 49.637387][ C0] x5 : 0000000000000000 x4 : 0000000000000000 x3 : 0000000000000002 [ 49.638623][ C0] x2 : 0000000000000001 x1 : 0000000000000101 x0 : 0000000000000000 [ 49.639867][ C0] Call trace: [ 49.640337][ C0] debug_object_active_state+0x28c/0x350 (P) [ 49.641217][ C0] rcu_core+0x7f4/0x1774 [ 49.641873][ C0] rcu_core_si+0x10/0x1c [ 49.642469][ C0] handle_softirqs+0x31c/0xc88 [ 49.643151][ C0] __do_softirq+0x14/0x20 [ 49.643742][ C0] ____do_softirq+0x14/0x20 [ 49.644352][ C0] call_on_irq_stack+0x30/0x48 [ 49.645003][ C0] do_softirq_own_stack+0x20/0x2c [ 49.645717][ C0] __irq_exit_rcu+0x1b0/0x478 [ 49.646410][ C0] irq_exit_rcu+0x14/0x84 [ 49.647037][ C0] el1_interrupt+0x40/0x60 [ 49.647694][ C0] el1h_64_irq_handler+0x18/0x24 [ 49.648396][ C0] el1h_64_irq+0x6c/0x70 [ 49.649018][ C0] _raw_spin_unlock_irqrestore+0x44/0x98 (P) [ 49.649900][ C0] pl011_console_device_unlock+0x90/0xc8 [ 49.650691][ C0] nbcon_kthread_func+0x600/0x768 [ 49.651361][ C0] kthread+0x5fc/0x75c [ 49.651899][ C0] ret_from_fork+0x10/0x20 [ 49.652490][ C0] irq event stamp: 44440 [ 49.653039][ C0] hardirqs last enabled at (44439): [] finish_lock_switch+0xb0/0x1c0 [ 49.654443][ C0] hardirqs last disabled at (44440): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 49.655853][ C0] softirqs last enabled at (44400): [] handle_softirqs+0xaf8/0xc88 [ 49.657280][ C0] softirqs last disabled at (44381): [] __do_softirq+0x14/0x20 [ 49.658573][ C0] ---[ end trace 0000000000000000 ]--- [ 49.659398][ C0] ------------[ cut here ]------------ [ 49.659408][ C0] ODEBUG: deactivate not available (active state 0) object: 0000000084647976 object type: rcu_head hint: 0x0 [ 49.659547][ C0] WARNING: lib/debugobjects.c:615 at debug_object_deactivate+0x284/0x330, CPU#0: pr/ttyAMA-1/43 [ 49.663334][ C0] Modules linked in: [ 49.663886][ C0] CPU: 0 UID: 0 PID: 43 Comm: pr/ttyAMA-1 Tainted: G B D W syzkaller #0 PREEMPT [ 49.665393][ C0] Tainted: [B]=BAD_PAGE, [D]=DIE, [W]=WARN [ 49.666205][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/03/2025 [ 49.667670][ C0] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 49.668785][ C0] pc : debug_object_deactivate+0x284/0x330 [ 49.669579][ C0] lr : debug_object_deactivate+0x284/0x330 [ 49.670398][ C0] sp : ffff800097bc7cc0 [ 49.670990][ C0] x29: ffff800097bc7cc0 x28: ffff80008fa5b800 x27: 0000000000000005 [ 49.672096][ C0] x26: ffff80008f871000 x25: dfff800000000000 x24: ffff80009792b000 [ 49.673266][ C0] x23: 0000000000000000 x22: ffff80008b068240 x21: ffff00010f22f370 [ 49.674383][ C0] x20: ffff80008b5aa820 x19: 0000000000000000 x18: 1fffe0003377d090 [ 49.675544][ C0] x17: 303030303030203a x16: ffff800082e5e68c x15: 0000000000000001 [ 49.676682][ C0] x14: 1ffff00012f78ed0 x13: 0000000000000000 x12: 0000000000000000 [ 49.677769][ C0] x11: 0000000000000ea0 x10: 0000000000ff0100 x9 : c07f92b416f17d00 [ 49.678833][ C0] x8 : c07f92b416f17d00 x7 : 0000000000000001 x6 : ffff8000805761f8 [ 49.679951][ C0] x5 : 0000000000000000 x4 : 0000000000000000 x3 : 0000000000000002 [ 49.681100][ C0] x2 : 0000000000000001 x1 : 0000000000000101 x0 : 0000000000000000 [ 49.682303][ C0] Call trace: [ 49.682743][ C0] debug_object_deactivate+0x284/0x330 (P) [ 49.683527][ C0] rcu_core+0x800/0x1774 [ 49.684138][ C0] rcu_core_si+0x10/0x1c [ 49.684739][ C0] handle_softirqs+0x31c/0xc88 [ 49.685469][ C0] __do_softirq+0x14/0x20 [ 49.686089][ C0] ____do_softirq+0x14/0x20 [ 49.686758][ C0] call_on_irq_stack+0x30/0x48 [ 49.687449][ C0] do_softirq_own_stack+0x20/0x2c [ 49.688196][ C0] __irq_exit_rcu+0x1b0/0x478 [ 49.688900][ C0] irq_exit_rcu+0x14/0x84 [ 49.689474][ C0] el1_interrupt+0x40/0x60 [ 49.690091][ C0] el1h_64_irq_handler+0x18/0x24 [ 49.690787][ C0] el1h_64_irq+0x6c/0x70 [ 49.691352][ C0] _raw_spin_unlock_irqrestore+0x44/0x98 (P) [ 49.692217][ C0] pl011_console_device_unlock+0x90/0xc8 [ 49.692986][ C0] nbcon_kthread_func+0x600/0x768 [ 49.693740][ C0] kthread+0x5fc/0x75c [ 49.694309][ C0] ret_from_fork+0x10/0x20 [ 49.694932][ C0] irq event stamp: 44440 [ 49.695539][ C0] hardirqs last enabled at (44439): [] finish_lock_switch+0xb0/0x1c0 [ 49.696900][ C0] hardirqs last disabled at (44440): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 49.698384][ C0] softirqs last enabled at (44400): [] handle_softirqs+0xaf8/0xc88 [ 49.699786][ C0] softirqs last disabled at (44381): [] __do_softirq+0x14/0x20 [ 49.701084][ C0] ---[ end trace 0000000000000000 ]--- ** replaying previous printk message ** [ 49.701084][ C0] ---[ end trace 0000000000000000 ]--- [ 49.701304][ T7741] Kernel panic - not syncing: Oops: Fatal exception [ 49.703976][ T7741] SMP: stopping secondary CPUs [ 49.704634][ T7741] Kernel Offset: disabled [ 49.705239][ T7741] CPU features: 0x400000,00078001,04e04501,5427fea7 [ 49.706114][ T7741] Memory Limit: none [ 49.942069][ T7741] Rebooting in 86400 seconds..