last executing test programs: 2.002915783s ago: executing program 0 (id=1653): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000240)=0x9, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0xe22, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r1, &(0x7f0000000180)=[{&(0x7f00000001c0)="580000001500add427323b472545b45602117fffffff81000e22d991000000000000a80013007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee000000deff0000000200000000", 0x58}], 0x1) 1.790677503s ago: executing program 0 (id=1657): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000100)={0x0, 0x1c, &(0x7f00000001c0)=[@in6={0xa, 0x0, 0x0, @private0}]}, &(0x7f0000000180)=0x10) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r2, 0x84, 0x7d, &(0x7f0000000040)={r1, 0x0, 0x0, 0x4}, &(0x7f00000003c0)=0x18) 1.787272362s ago: executing program 0 (id=1658): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a44000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40000000010800034000000014480000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a31000000001c0003801800008008000340000000020c0004260000000000000c7f14000000110001"], 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_MSG_GETSETELEM(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x2c, 0xd, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000) 1.743951834s ago: executing program 0 (id=1659): r0 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x1, 0x9) r2 = openat(r1, &(0x7f0000000040)='.\x00', 0x0, 0x0) utimensat(r2, 0x0, 0x0, 0x0) 1.680472411s ago: executing program 0 (id=1662): timer_create(0x7, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000280)=0x0) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r0, 0x1, &(0x7f0000000040), 0x0) get_mempolicy(0x0, 0x0, 0x9, &(0x7f0000008000/0x1000)=nil, 0x3) 1.639157704s ago: executing program 0 (id=1665): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f00000001c0)={0x1f, 0xffff}, 0x6) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf) ioctl$TCFLSH(r1, 0x400455c8, 0x0) 794.862842ms ago: executing program 3 (id=1691): r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x6, 0x4d0fb, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x3, 0x6, 0x2, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x1) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0xb446edcd875b863c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x28182, 0x0) ioctl$AUTOFS_IOC_FAIL(r2, 0x4c81, 0xffffffffffffffb6) 628.127391ms ago: executing program 3 (id=1694): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_sys\x00', 0x275a, 0x0) fcntl$lock(r0, 0x26, &(0x7f0000000080)={0x1, 0x0, 0x2007, 0x1fd}) fcntl$lock(r0, 0x7, &(0x7f0000000280)={0x1, 0x0, 0x2f, 0x9}) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00') preadv(r1, &(0x7f0000000400)=[{&(0x7f0000000040)=""/196, 0xc4}], 0x1, 0x5, 0xfffffbff) 587.730403ms ago: executing program 3 (id=1696): r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000240), 0x40900, 0x0) r1 = syz_io_uring_setup(0x494, &(0x7f0000000180)={0x0, 0x191d, 0x8, 0x8000, 0x40000250}, &(0x7f0000000080)=0x0, &(0x7f0000000400)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x0, @fd=r0, 0x8006, &(0x7f0000000300)=""/210, 0xd2, 0x2, 0x1}) io_uring_enter(r1, 0x4be7, 0x4c3, 0x43, 0x0, 0x0) 543.570284ms ago: executing program 4 (id=1699): r0 = socket$tipc(0x1e, 0x2, 0x0) r1 = syz_io_uring_setup(0xed0, &(0x7f0000000400)={0x0, 0x6e2, 0x10300, 0x2}, &(0x7f0000000100)=0x0, &(0x7f0000000080)=0x0) syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) io_uring_enter(r1, 0xa3d, 0x0, 0x0, 0x0, 0xff39) setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000540)=0xfffffff8, 0x4) 522.07965ms ago: executing program 4 (id=1700): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000d80)={'veth0_to_bond\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}}, 0x20040084) sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000001280)={&(0x7f0000000180)=@newqdisc={0x2c, 0x28, 0x1, 0x4003, 0xfffffdf8, {0x0, 0x0, 0x0, r2, {0x2, 0xfff1}, {0xffff, 0xffff}, {0xc, 0x1}}, [@TCA_INGRESS_BLOCK={0x8, 0xd, 0x3}]}, 0x2c}}, 0x4000080) 500.663616ms ago: executing program 4 (id=1701): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x0, &(0x7f0000000300)={[{@grpquota}, {@quota}, {@quota}, {}, {@dioread_lock}]}, 0xff, 0x4fa, &(0x7f00000005c0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSFUCdEjSG1I3CiKHUexU5rQQ3rmikQlTnDkD+DcE3cuCG5cygGJHxGoQeLg1YwnqZvaTdQkdhR/PtJo3ps39fe9pvNe/U3iF8DQuhoRuxExFhF3I2I6u57LjvisfST3Pdt7uLS/93ApF63W7X/l0vbkWnT8mcSV7DWLEfGj70X8NPdy3Mb2ztpitVrZzOqzzdrGbGN758ZqbXGlslJZL5cX5hfmPrn5cfnMxvpebSwrffXpH3e/9fOkW1PZlc5xnKX20AuHcRKjEfGD8wg2ACPZeMYG3RFeSz4i3o6I99PnfzpG0q8mAHCZtVrT0ZrurAMAl10+zYHl8qUsFzAV+Xyp1M7hvROT+Wq90bx+r761vtzOlc1EIX9vtVqZy3KFM1HIJfX5tPy8Xj5SvxkRb0XEL8cn0nppqV5dHuR/fABgiF05sv7/d7y9/gMAl1xx0B0AAPrO+g8Aw8f6DwDDx/oPAMOnvf5PDLobAEAfef8PAMPH+g8AQ+WHt24lR2s/+/zr5fvbW2v1+zeWK421Um1rqbRU39wordTrK+ln9tSOe71qvb4x/1FsPZj59kajOdvY3rlTq2+tN++kn+t9p1JI79rtw8gAgF7eeu/JX3LJivzpRHpEx14OhYH2DDhv+UF3ABiYkUF3ABgYu33B8DrFe3zpAbgkumzR+4Jit18QarVarfPrEnDOrn1J/h+GVUf+308Bw5CR/4fhJf8Pw6vVyp10z/846Y0AwMUmxw/0+P7/29n5d9k3B36yfPSOx+fZKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYDvb/LWV7gU9FPl8qRbwRETNRyN1brVbmIuLNiPjzeGE8qc8PuM8AwGnl/57L9v+6Nv3h1AtN7145LI5FxM9+fftXDxabzc0/RYzl/j1+cL35OLte7n/vAYDjHazT6bnjjfyzvYdLB0c/+/OP70ZEsR1/f28s9g/jj8Zoei5GISIm/5PL6m25jtzFaew+iogvdht/LqbSHEh759Oj8ZPYb/Q1fv6F+Pm0rX1O/i6+cAZ9gWHzJJl/Puv2/OXjanru/vwX0xnq9LL5L3mppf10Dnwe/2D+G+kx/109aYyP/vD9dmni5bZHEV8ejTiIvd8x/xzEz/WI/+EJ4//1K+++36ut9ZuIa9E9fmes2WZtY7axvXNjtba4UlmprJfLC/MLc5/c/Lg8m+aoZ3uvBv/89PqbvdqS8U/2iF88ZvxfP+H4f/v/uz/+2ivif/ODbvHz8c4r4idr4jdOGH9x8vfFXm1J/OUe4z/u63/9hPGf/m3npW3DAYDBaWzvrC1Wq5VNBYWLX0j+yV6AbnQtfKdfscaie9MvPmg/00eaWq3XitVrxjiLrBtwERw+9BHxv0F3BgAAAAAAAAAAAAAA6Kofv7E06DECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABweX0eAAD//19xzyM=") r0 = creat(&(0x7f0000000e40)='./file1\x00', 0x18) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) syslog(0x9, 0x0, 0x0) fallocate(r0, 0x20, 0xbf5, 0x84) 500.218276ms ago: executing program 3 (id=1702): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r1, 0x0, 0x0}, 0x10) 431.401143ms ago: executing program 3 (id=1705): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x3000046, &(0x7f0000000640)={[{@dioread_nolock}, {@data_err_abort}, {@inlinecrypt}, {@noauto_da_alloc}, {@data_err_ignore}, {@discard}, {@data_err_ignore}, {@grpquota}, {@noblock_validity}, {@lazytime}, {@bh}, {@errors_remount}]}, 0x1, 0x553, &(0x7f00000009c0)="$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") creat(&(0x7f0000000040)='./bus\x00', 0x0) mount(&(0x7f0000000480)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x801400, 0x0) r0 = open(&(0x7f0000000080)='./bus\x00', 0x4600, 0xe898d2275f586838) preadv2(r0, &(0x7f0000000980)=[{&(0x7f0000001200)=""/4096, 0xffffffa4}], 0x1, 0x7ffff, 0x9, 0x1b) 358.833599ms ago: executing program 1 (id=1708): sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x20, 0x0, 0x1, 0xffffff80, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0x4}]}, 0x20}}, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2400000070000100000000000000000007000000", @ANYRES32=r2, @ANYBLOB="0c000280"], 0x24}}, 0x0) 358.295659ms ago: executing program 2 (id=1709): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0) r1 = socket$kcm(0xa, 0x5, 0x0) setsockopt$sock_attach_bpf(r1, 0x29, 0x46, 0x0, 0x0) sendmsg$kcm(r1, &(0x7f0000002dc0)={&(0x7f0000001640)=@l2tp6={0xa, 0x0, 0x0, @local, 0x3}, 0x80, &(0x7f0000000000)=[{&(0x7f00000002c0)='\t', 0x1}], 0x1}, 0x41) 343.071146ms ago: executing program 4 (id=1710): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x1408801, &(0x7f0000000080)={[{@abort}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x36}}, {@barrier_val={'barrier', 0x3d, 0xffffffffffff7f2c}}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x5, 0x46b, &(0x7f0000000bc0)="$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") r0 = inotify_init1(0x800) inotify_add_watch(r0, &(0x7f0000005780)='./file0\x00', 0x9400002f) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='fdinfo/3\x00') preadv(r1, &(0x7f0000000640)=[{&(0x7f0000000140)=""/134, 0x86}], 0x1, 0x0, 0x0) 302.796248ms ago: executing program 2 (id=1711): socket$inet6(0xa, 0x3, 0x7) capset(0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x4) r0 = syz_open_dev$evdev(&(0x7f0000000240), 0x20000, 0x0) ioctl$EVIOCGLED(r0, 0x40284504, &(0x7f0000000040)=""/51) 278.884584ms ago: executing program 1 (id=1712): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003d00000095"], &(0x7f00000000c0)='GPL\x00', 0x1}, 0x94) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=@base={0x12, 0x4, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x400000}, 0x50) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000100)={r0, r1, 0x7, 0x0, @val=@tcx={@void, @value=r0}}, 0x1c) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]}) close_range(r2, 0xffffffffffffffff, 0x200000000000000) 278.518244ms ago: executing program 2 (id=1713): semop(0x0, &(0x7f00000000c0)=[{0x4}], 0x1) r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x80044940, &(0x7f00000000c0)) readv(r0, &(0x7f00000008c0)=[{&(0x7f00000002c0)=""/99, 0x63}], 0x1) close(0x3) 249.260988ms ago: executing program 3 (id=1714): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000140)={0x0, 0x10, &(0x7f0000000100)=[@in={0x2, 0x4e24, @private=0xa010101}]}, &(0x7f0000000180)=0x10) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000200)={0x1, [0x0]}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000180)={r2}, 0x8) 248.880788ms ago: executing program 2 (id=1715): perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0xcf, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc093, 0x2, @perf_config_ext={0xffffffff, 0x1}, 0x1004, 0x0, 0x10000, 0x3, 0x40000002, 0x0, 0x0, 0x0, 0x0, 0x0, 0xbf}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) r0 = socket$nl_route(0x10, 0x3, 0x0) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)}, 0x0) setsockopt$inet_sctp_SCTP_SET_PEER_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x5, &(0x7f0000000080)={0x0, @in6={{0xa, 0x4e23, 0x8, @mcast1, 0x7}}}, 0x84) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@ipv4_delroute={0x40, 0x19, 0x901, 0x0, 0x0, {0x2, 0x18, 0x0, 0x0, 0x0, 0x0, 0xfd, 0x1}, [@RTA_DST={0x8, 0x1, @dev}, @RTA_GATEWAY={0x8, 0x5, @private=0xa010102}, @RTA_ENCAP={0xc, 0x16, 0x0, 0x1, @LWTUNNEL_IP_TTL={0x5, 0x4, 0x1}}, @RTA_ENCAP_TYPE={0x6, 0x15, 0x6}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) 200.666729ms ago: executing program 1 (id=1716): setreuid(0x0, 0xee00) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, 0x0, 0x0) 200.140299ms ago: executing program 4 (id=1717): perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x9}, 0x106200, 0x10004, 0x20da, 0x5, 0xa, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=@gettaction={0x18, 0x32, 0xe72c5f922f23cad9, 0x70bd28, 0x25dfdbf7, {}, [@action_gd=@TCA_ACT_TAB={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0xc1920335b598980a}, 0x4000000) sendmsg$kcm(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000100)=@pptp={0x18, 0x2, {0x3, @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x80, 0x0}, 0x80) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a32000000002c0003800800014000000000180003801400010076657468315f00005f626f6e64000000080002400000000064000000160a0101000b000000000000010000000900020073797a32000000000900010073797a3000000000300003802c00038014"], 0x104}, 0x1, 0x0, 0x0, 0x10004000}, 0x20004080) 122.757214ms ago: executing program 1 (id=1718): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x8000000b, 0x42758, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0xd07, 0x4}, 0x8040, 0x6, 0x0, 0x1, 0xb, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f00000004c0), &(0x7f00000000c0)=0x8) 107.569781ms ago: executing program 1 (id=1719): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000240)={{r0, 0xffffffffffffffff}, &(0x7f0000000180), &(0x7f00000001c0)='%pB \x00'}, 0x20) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000280)={r1}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x11, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000000000000000000040000850000002f000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r2, 0x18000000000002a0, 0xe, 0x0, &(0x7f00000002c0)="b9ff03076003008cb89e08f086dd", 0x0, 0xfe6, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 65.149373ms ago: executing program 4 (id=1720): syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000001240)='./file0\x00', 0x2004000, &(0x7f0000000180)=ANY=[@ANYRES64=0x0], 0xfe, 0x122e, &(0x7f0000001280)="$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") r0 = open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0xdc) fallocate(r0, 0x0, 0x0, 0x8800000) r1 = open(&(0x7f0000000140)='./file1\x00', 0x66842, 0x21) pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x1600, 0x0, 0x3) 19.003594ms ago: executing program 1 (id=1721): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) ptrace(0x10, r0) ptrace$peeksig(0x4212, r0, &(0x7f0000000140)={0x0, 0x0, 0x4}, &(0x7f0000001500)) 18.619654ms ago: executing program 2 (id=1722): pipe(&(0x7f0000000080)) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000003c0)={r0, &(0x7f0000000080), &(0x7f00000008c0)=""/177}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000400008500000001000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f00000000c0)={r1}, 0xc) 0s ago: executing program 2 (id=1723): r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x10, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x0, @perf_bp={0x0}, 0x3e96564ea7a9e37e, 0x30, 0x43a1bd56, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x4}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) r2 = perf_event_open(&(0x7f0000000fc0)={0x2, 0x80, 0x82, 0x1, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x550, 0xfffffffffffffc75}, 0x0, 0x0, 0x8000003, 0x4, 0x0, 0x40d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000180)='cpu<=-||!') kernel console output (not intermixed with test programs): 33.045008][ T3589] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 33.058099][ T3593] syz.2.43 uses obsolete (PF_INET,SOCK_PACKET) [ 33.064929][ T3589] ext4 filesystem being mounted at /1/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 33.088066][ T3595] netlink: 20 bytes leftover after parsing attributes in process `syz.3.44'. [ 33.131641][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 33.141940][ T3598] loop3: detected capacity change from 0 to 512 [ 33.152145][ T3598] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 33.223110][ T3600] loop2: detected capacity change from 0 to 1764 [ 33.244100][ T3598] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 33.261133][ T3598] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2858: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 33.262568][ T3600] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 33.286068][ T3598] EXT4-fs (loop3): 1 truncate cleaned up [ 33.296415][ T3598] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 33.472000][ T3616] netlink: 'syz.2.52': attribute type 30 has an invalid length. [ 33.506070][ T3619] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 33.623085][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 33.752082][ T3645] netlink: 20 bytes leftover after parsing attributes in process `syz.2.65'. [ 33.770963][ T35] tipc: Node number set to 477989875 [ 34.219207][ T3671] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=5129 sclass=netlink_audit_socket pid=3671 comm=syz.4.77 [ 34.437748][ T3680] loop7: detected capacity change from 0 to 7 [ 34.459741][ T3678] loop4: detected capacity change from 0 to 8192 [ 34.478827][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 34.488443][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 34.499159][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 34.508844][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 34.517525][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 34.518879][ T3680] loop7: unable to read partition table [ 34.558647][ T3296] loop4: p1 p2 p3 [ 34.563997][ T3296] loop4: p1 start 17825536 is beyond EOD, truncated [ 34.580679][ T3680] loop_reread_partitions: partition scan of loop7 (úùƒå¡™‰ü¾CêjÌ–ã¢P=ý?ã}X‹ºÐ œëÜ%õ«`ÉæÖ€ù…ˆ{í©Ö˜Èµ4FLQkÝŠ) failed (rc=-5) [ 34.594791][ T3296] loop4: p3 size 100663552 extends beyond EOD, truncated [ 34.605538][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 34.615222][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 34.623253][ T3678] loop4: p1 p2 p3 [ 34.623556][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 34.627627][ T3678] loop4: p1 start 17825536 is beyond EOD, [ 34.636877][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 34.651221][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 34.660812][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 34.669133][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 34.679092][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 34.687321][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 34.696915][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 34.697246][ T3678] truncated [ 34.743059][ T3678] loop4: p3 size 100663552 extends beyond EOD, truncated [ 34.766603][ T3693] netlink: 'syz.1.86': attribute type 10 has an invalid length. [ 34.780736][ T3693] netlink: 65015 bytes leftover after parsing attributes in process `syz.1.86'. [ 34.869362][ T3698] netlink: 8 bytes leftover after parsing attributes in process `syz.1.88'. [ 34.899502][ T3700] loop4: detected capacity change from 0 to 512 [ 34.900292][ T3698] netlink: 'syz.1.88': attribute type 30 has an invalid length. [ 34.920990][ T3303] udevd[3303]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 34.932222][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory [ 34.944347][ T3700] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 34.953760][ T1882] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 34.975791][ T3303] udevd[3303]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 34.978091][ T3698] netlink: 8 bytes leftover after parsing attributes in process `syz.1.88'. [ 34.986692][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory [ 34.996278][ C1] hrtimer: interrupt took 8017 ns [ 35.004185][ T1882] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 35.019388][ T1882] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 35.028572][ T3700] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended [ 35.032862][ T3698] netlink: 'syz.1.88': attribute type 30 has an invalid length. [ 35.055579][ T1882] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 35.064835][ T3700] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 35.100255][ T3698] Zero length message leads to an empty skb [ 35.111089][ T3700] System zones: 0-2, 18-18, 34-35 [ 35.113230][ T3708] xt_hashlimit: size too large, truncated to 1048576 [ 35.116793][ T3700] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 35.208366][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 35.640141][ T3740] serio: Serial port ptm0 [ 36.059657][ T3758] Process accounting resumed [ 36.226333][ T28] kauditd_printk_skb: 1829 callbacks suppressed [ 36.226454][ T28] audit: type=1400 audit(1772156190.832:1929): avc: denied { create } for pid=3770 comm="syz.1.112" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 36.276729][ T28] audit: type=1326 audit(1772156190.882:1930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3763 comm="syz.3.110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a2d5c799 code=0x7fc00000 [ 36.316223][ T28] audit: type=1400 audit(1772156190.922:1931): avc: denied { connect } for pid=3774 comm="syz.1.114" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 36.351448][ T3777] loop4: detected capacity change from 0 to 128 [ 36.370191][ T3777] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 36.384024][ T3777] ext4 filesystem being mounted at /22/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 36.420156][ T28] audit: type=1400 audit(1772156191.022:1932): avc: denied { read write open } for pid=3776 comm="syz.4.115" path="/22/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file1" dev="loop4" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 36.467456][ T28] audit: type=1400 audit(1772156191.072:1933): avc: denied { setattr } for pid=3776 comm="syz.4.115" path="/22/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file1" dev="loop4" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 36.519765][ T28] audit: type=1400 audit(1772156191.122:1934): avc: denied { create } for pid=3783 comm="syz.1.118" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 36.539485][ T28] audit: type=1400 audit(1772156191.122:1935): avc: denied { ioctl } for pid=3776 comm="syz.4.115" path="/22/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file1" dev="loop4" ino=12 ioctlcmd=0x6609 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 36.588324][ T3320] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 36.588428][ T28] audit: type=1400 audit(1772156191.152:1936): avc: denied { write } for pid=3783 comm="syz.1.118" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 36.660409][ T28] audit: type=1400 audit(1772156191.262:1937): avc: denied { read } for pid=3788 comm="syz.1.122" path="socket:[5432]" dev="sockfs" ino=5432 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 36.694408][ T3793] netlink: 'syz.4.119': attribute type 3 has an invalid length. [ 36.702870][ T3793] netlink: 'syz.4.119': attribute type 3 has an invalid length. [ 36.796857][ T3806] team_slave_0: entered promiscuous mode [ 36.802642][ T3806] team_slave_1: entered promiscuous mode [ 36.814825][ T3806] macvtap1: entered promiscuous mode [ 36.820204][ T3806] team0: entered promiscuous mode [ 36.826538][ T3806] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 36.834055][ T3806] team0: Device macvtap1 is already an upper device of the team interface [ 36.843339][ T3806] team0: left promiscuous mode [ 36.848787][ T3806] team_slave_0: left promiscuous mode [ 36.854253][ T3806] team_slave_1: left promiscuous mode [ 36.875242][ T28] audit: type=1400 audit(1772156191.482:1938): avc: denied { mount } for pid=3811 comm="syz.4.130" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 36.919211][ T3814] serio: Serial port ptm0 [ 36.946445][ T3816] Invalid logical block size (5) [ 37.051708][ T3825] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 37.063357][ T3825] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 37.074192][ T3825] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 37.084957][ T3825] EXT4-fs error (device loop3): ext4_get_journal_inode:5863: inode #32: comm syz.3.136: iget: special inode unallocated [ 37.098632][ T3825] loop3: lost file I/O error report for ino 32 type 5 pos 0x0 len 0x0 error -117 [ 37.099877][ T3825] EXT4-fs (loop3): no journal found [ 37.109026][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 37.109042][ C0] EXT4-fs (loop3): initial error at time 1772156191: ext4_get_journal_inode:5863: inode 32 [ 37.109072][ C0] EXT4-fs (loop3): last error at time 1772156191: ext4_get_journal_inode:5863: inode 32 [ 37.141538][ T3825] EXT4-fs (loop3): can't get journal size [ 37.148121][ T3825] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 37.166764][ T3825] EXT4-fs error (device loop3): ext4_inlinedir_to_tree:1324: inode #12: block 16: comm syz.3.136: path /11/file0/file0: bad entry in directory: rec_len is too small for name_len - offset=20, inode=13, rec_len=16, size=60 fake=0 [ 37.199936][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 37.657444][ T3841] xt_hashlimit: size too large, truncated to 1048576 [ 37.747340][ T3847] Invalid logical block size (5) [ 37.878511][ T3860] set_capacity_and_notify: 1 callbacks suppressed [ 37.878533][ T3860] loop0: detected capacity change from 0 to 512 [ 37.916428][ T3860] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 37.951757][ T3860] EXT4-fs (loop0): 1 truncate cleaned up [ 37.965513][ T3860] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 38.113736][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 38.329077][ T3874] team_slave_0: entered promiscuous mode [ 38.334798][ T3874] team_slave_1: entered promiscuous mode [ 38.350878][ T3874] macvtap1: entered promiscuous mode [ 38.356307][ T3874] team0: entered promiscuous mode [ 38.363065][ T3874] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 38.370960][ T3874] team0: Device macvtap1 is already an upper device of the team interface [ 38.380900][ T3874] team0: left promiscuous mode [ 38.386103][ T3874] team_slave_0: left promiscuous mode [ 38.391518][ T3874] team_slave_1: left promiscuous mode [ 38.561967][ T3888] loop0: detected capacity change from 0 to 128 [ 38.579527][ T3888] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 38.594068][ T3888] ext4 filesystem being mounted at /33/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 38.638384][ T3312] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 38.983987][ T3914] team_slave_0: entered promiscuous mode [ 38.989661][ T3914] team_slave_1: entered promiscuous mode [ 39.020787][ T3914] macvtap1: entered promiscuous mode [ 39.026174][ T3914] team0: entered promiscuous mode [ 39.041896][ T3914] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 39.061163][ T3914] team0: Device macvtap1 is already an upper device of the team interface [ 39.661709][ T3920] loop1: detected capacity change from 0 to 164 [ 41.720109][ T28] kauditd_printk_skb: 7446 callbacks suppressed [ 41.720134][ T28] audit: type=1326 audit(1772156196.322:9385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3909 comm="syz.2.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f6da4f9c799 code=0x7ffc0000 [ 41.753036][ T3914] team0: left promiscuous mode [ 41.758030][ T3914] team_slave_0: left promiscuous mode [ 41.763531][ T3914] team_slave_1: left promiscuous mode [ 41.819209][ T3930] loop3: detected capacity change from 0 to 128 [ 41.827610][ T3928] loop2: detected capacity change from 0 to 512 [ 41.841156][ T3930] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 41.867474][ T3928] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 41.884551][ T3930] ext4 filesystem being mounted at /17/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 41.918721][ T3928] ext4 filesystem being mounted at /52/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 41.958295][ T28] audit: type=1400 audit(1772156196.542:9386): avc: denied { create } for pid=3938 comm="syz.4.179" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 41.979149][ T3327] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 41.993569][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 42.005098][ T28] audit: type=1400 audit(1772156196.542:9387): avc: denied { lock } for pid=3927 comm="syz.2.176" path="/52/file1/file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 42.030247][ T28] audit: type=1400 audit(1772156196.542:9388): avc: denied { remove_name } for pid=3927 comm="syz.2.176" name="file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 42.075870][ T28] audit: type=1400 audit(1772156196.542:9389): avc: denied { unlink } for pid=3927 comm="syz.2.176" name="file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 42.127953][ T28] audit: type=1400 audit(1772156196.542:9390): avc: denied { connect } for pid=3938 comm="syz.4.179" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 42.148560][ T28] audit: type=1400 audit(1772156196.542:9391): avc: denied { bind } for pid=3938 comm="syz.4.179" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 42.191591][ T28] audit: type=1400 audit(1772156196.542:9392): avc: denied { write } for pid=3938 comm="syz.4.179" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 42.223728][ T3956] loop0: detected capacity change from 0 to 512 [ 42.257827][ T3956] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 42.268761][ T28] audit: type=1400 audit(1772156196.542:9393): avc: denied { getopt } for pid=3938 comm="syz.4.179" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 42.297097][ T3956] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 42.327481][ T3956] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz.0.185: bad orphan inode 4 [ 42.350682][ T3956] loop0: lost filesystem error report for type 5 error -117 [ 42.350753][ T28] audit: type=1400 audit(1772156196.882:9394): avc: denied { map } for pid=3958 comm="syz.3.187" path="/dev/bus/usb/006/001" dev="devtmpfs" ino=162 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 42.370815][ T3956] EXT4-fs (loop0): 1 orphan inode deleted [ 42.385455][ C0] EXT4-fs (loop0): error count since last fsck: 1 [ 42.397890][ C0] EXT4-fs (loop0): initial error at time 1772156196: ext4_orphan_get:1417 [ 42.406524][ C0] EXT4-fs (loop0): last error at time 1772156196: ext4_orphan_get:1417 [ 42.421127][ T3956] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 42.468417][ T3972] loop4: detected capacity change from 0 to 512 [ 42.506680][ T3972] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 42.525999][ T3972] ext4 filesystem being mounted at /38/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 42.568807][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 42.588501][ T3978] syzkaller1: entered promiscuous mode [ 42.596111][ T3978] syzkaller1: entered allmulticast mode [ 42.602582][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 42.646788][ T3980] bridge1: entered promiscuous mode [ 42.658534][ T3980] bridge1: entered allmulticast mode [ 42.667374][ T3980] team0: Port device bridge1 added [ 42.677699][ T3988] bridge0: port 3(team0) entered blocking state [ 42.684798][ T3988] bridge0: port 3(team0) entered disabled state [ 42.691561][ T3988] team0: entered allmulticast mode [ 42.696926][ T3988] team_slave_0: entered allmulticast mode [ 42.702868][ T3988] team_slave_1: entered allmulticast mode [ 42.710233][ T3988] team0: entered promiscuous mode [ 42.719078][ T3988] team_slave_0: entered promiscuous mode [ 42.724859][ T3988] team_slave_1: entered promiscuous mode [ 42.739808][ T3988] bridge0: port 3(team0) entered blocking state [ 42.746129][ T3988] bridge0: port 3(team0) entered forwarding state [ 42.823142][ T3995] xt_hashlimit: size too large, truncated to 1048576 [ 42.878001][ T4001] loop4: detected capacity change from 0 to 128 [ 42.916026][ T3390] Process accounting resumed [ 43.140153][ T4018] netlink: 8 bytes leftover after parsing attributes in process `syz.3.211'. [ 43.150139][ T4018] netlink: 12 bytes leftover after parsing attributes in process `syz.3.211'. [ 43.159711][ T4018] netlink: 16 bytes leftover after parsing attributes in process `syz.3.211'. [ 43.237657][ T4026] loop4: detected capacity change from 0 to 128 [ 43.254326][ T4026] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 43.281064][ T4026] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 43.311281][ T1882] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 43.481688][ T4046] loop0: detected capacity change from 0 to 512 [ 43.521932][ T4046] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 43.568459][ T4046] ext4 filesystem being mounted at /42/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 43.605561][ T4060] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=4060 comm=syz.1.228 [ 43.620627][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 43.716796][ T3393] kernel write not supported for file bpf-prog (pid: 3393 comm: kworker/0:3) [ 43.735117][ T4076] loop0: detected capacity change from 0 to 4096 [ 43.752738][ T4076] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 43.771894][ T4079] loop3: detected capacity change from 0 to 512 [ 43.780531][ T4079] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 43.793948][ T4079] ext4 filesystem being mounted at /36/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 43.843233][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.048577][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.142108][ T4103] loop1: detected capacity change from 0 to 2048 [ 44.150325][ T4105] loop0: detected capacity change from 0 to 512 [ 44.174675][ T4105] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 44.187998][ T4105] ext4 filesystem being mounted at /49/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 44.203744][ T3303] Alternate GPT is invalid, using primary GPT. [ 44.212051][ T4105] EXT4-fs error (device loop0): ext4_do_update_inode:5569: inode #2: comm syz.0.249: corrupted inode contents [ 44.225649][ T3303] loop1: p1 p2 p3 [ 44.229665][ T3303] loop1: partition table partially beyond EOD, truncated [ 44.259291][ T4103] Alternate GPT is invalid, using primary GPT. [ 44.272019][ T4105] EXT4-fs error (device loop0): ext4_dirty_inode:6450: inode #2: comm syz.0.249: mark_inode_dirty error [ 44.285701][ T4103] loop1: p1 p2 p3 [ 44.289500][ T4103] loop1: partition table partially beyond EOD, truncated [ 44.296755][ T4112] loop4: detected capacity change from 0 to 1024 [ 44.298990][ T4105] EXT4-fs error (device loop0): ext4_do_update_inode:5569: inode #2: comm syz.0.249: corrupted inode contents [ 44.324002][ T4112] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 44.341357][ T4105] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.249: mark_inode_dirty error [ 44.378632][ T4110] EXT4-fs warning (device loop0): ext4_es_cache_extent:1082: inode #2: comm syz.0.249: ES cache extent failed: add [0,1,22,0x1] conflict with existing [0,8,576460752303423487,0x18] [ 44.378632][ T4110] [ 44.416363][ T3303] udevd[3303]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 44.419883][ T4119] udevd[4119]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory [ 44.449869][ T4120] udevd[4120]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory [ 44.466464][ T4124] loop2: detected capacity change from 0 to 512 [ 44.501892][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.532600][ T3303] udevd[3303]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory [ 44.533520][ T4120] udevd[4120]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory [ 44.542789][ T4124] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 44.566105][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 44.640833][ T4124] ext4 filesystem being mounted at /63/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 44.774937][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.786006][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.186408][ T4168] netlink: 'syz.0.273': attribute type 64 has an invalid length. [ 45.192507][ T4170] loop3: detected capacity change from 0 to 128 [ 45.226315][ T4168] netlink: 16 bytes leftover after parsing attributes in process `syz.0.273'. [ 45.238864][ T4172] team_slave_0: entered promiscuous mode [ 45.244833][ T4172] team_slave_1: entered promiscuous mode [ 45.256654][ T4172] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 45.277130][ T4175] netlink: 'syz.0.273': attribute type 64 has an invalid length. [ 45.285407][ T4175] netlink: 16 bytes leftover after parsing attributes in process `syz.0.273'. [ 45.322580][ T4172] 8021q: adding VLAN 0 to HW filter on device macvlan3 [ 45.347580][ T4179] capability: warning: `syz.4.278' uses deprecated v2 capabilities in a way that may be insecure [ 45.384188][ T4183] IPv6: NLM_F_CREATE should be specified when creating new route [ 45.568040][ T4203] vcan0: tx drop: invalid sa for name 0x0000000000000001 [ 45.657887][ T4179] mmap: syz.4.278 (4179) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 45.706894][ T4185] netlink: 277 bytes leftover after parsing attributes in process `syz.1.281'. [ 45.738017][ T4220] loop3: detected capacity change from 0 to 4096 [ 45.796766][ T4220] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 45.871055][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.966258][ T4239] EXT4-fs error (device loop0): ext4_xattr_inode_iget:441: inode #11: comm syz.0.306: iget: bad extra_isize 90 (inode size 256) [ 46.045499][ T4239] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 46.050269][ T4239] EXT4-fs (loop0): Remounting filesystem read-only [ 46.059455][ C0] EXT4-fs (loop0): error count since last fsck: 1 [ 46.059475][ C0] EXT4-fs (loop0): initial error at time 1772156200: ext4_xattr_inode_iget:441: inode 11 [ 46.059529][ C0] EXT4-fs (loop0): last error at time 1772156200: ext4_xattr_inode_iget:441: inode 11 [ 46.111264][ T4239] EXT4-fs warning (device loop0): ext4_evict_inode:258: couldn't mark inode dirty (err -30) [ 46.111694][ T4253] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 46.145828][ T4239] EXT4-fs (loop0): 1 orphan inode deleted [ 46.163527][ T4239] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 46.178459][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.250290][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.358806][ T4279] netlink: 12 bytes leftover after parsing attributes in process `syz.1.321'. [ 46.368748][ T4279] netlink: 75 bytes leftover after parsing attributes in process `syz.1.321'. [ 46.473125][ T4291] xt_CT: No such helper "snmp_trap" [ 46.721285][ T28] kauditd_printk_skb: 65 callbacks suppressed [ 46.721300][ T28] audit: type=1400 audit(1772156201.332:9460): avc: denied { ioctl } for pid=4316 comm="syz.2.337" path="socket:[7039]" dev="sockfs" ino=7039 ioctlcmd=0x48ca scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 46.815095][ T9] kernel write not supported for file bpf-prog (pid: 9 comm: kworker/0:0) [ 46.878824][ T4326] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 46.926898][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.996280][ T4337] sctp: [Deprecated]: syz.3.345 (pid 4337) Use of struct sctp_assoc_value in delayed_ack socket option. [ 46.996280][ T4337] Use struct sctp_sack_info instead [ 47.057890][ T4336] netlink: 88 bytes leftover after parsing attributes in process `syz.2.343'. [ 47.230636][ T28] audit: type=1400 audit(1772156201.832:9461): avc: denied { setopt } for pid=4348 comm="syz.2.351" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 47.369560][ T28] audit: type=1400 audit(1772156201.832:9462): avc: denied { write } for pid=4348 comm="syz.2.351" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 47.402555][ T28] audit: type=1400 audit(1772156201.832:9463): avc: denied { connect } for pid=4348 comm="syz.2.351" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 47.465700][ T28] audit: type=1400 audit(1772156202.072:9464): avc: denied { create } for pid=4353 comm="syz.4.353" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 47.514185][ T28] audit: type=1400 audit(1772156202.102:9465): avc: denied { write } for pid=4353 comm="syz.4.353" name="file0" dev="tmpfs" ino=373 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 47.553984][ T4356] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 47.563863][ T28] audit: type=1400 audit(1772156202.102:9466): avc: denied { open } for pid=4353 comm="syz.4.353" path="/68/file0" dev="tmpfs" ino=373 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 47.591676][ T4356] ext4 filesystem being mounted at /69/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 47.596891][ T28] audit: type=1400 audit(1772156202.102:9467): avc: denied { ioctl } for pid=4353 comm="syz.4.353" path="/68/file0" dev="tmpfs" ino=373 ioctlcmd=0x1269 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 47.604475][ T4363] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 47.627875][ T28] audit: type=1400 audit(1772156202.112:9468): avc: denied { unlink } for pid=3320 comm="syz-executor" name="file0" dev="tmpfs" ino=373 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 47.663501][ T4363] ext4 filesystem being mounted at /70/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 47.713504][ T28] audit: type=1400 audit(1772156202.282:9469): avc: denied { link } for pid=4355 comm="syz.1.354" name="file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 48.148521][ T3320] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 48.172995][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.314167][ T4395] set_capacity_and_notify: 5 callbacks suppressed [ 48.327573][ T4395] loop3: detected capacity change from 0 to 1024 [ 48.375410][ T4395] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 48.483512][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.502728][ T4412] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=4412 comm=syz.4.378 [ 48.766800][ T4441] loop3: detected capacity change from 0 to 1024 [ 48.774010][ T4441] EXT4-fs: Ignoring removed orlov option [ 48.812936][ T4441] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 48.838462][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.975177][ T50] Bluetooth: hci0: Frame reassembly failed (-84) [ 49.000858][ T1106] kernel read not supported for file /usbmon6 (pid: 1106 comm: kworker/1:2) [ 49.581539][ T4487] loop0: detected capacity change from 0 to 128 [ 49.619165][ T4487] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 49.661292][ T4487] ext4 filesystem being mounted at /75/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 49.686202][ T3312] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 49.782220][ T4494] sctp: [Deprecated]: syz.4.413 (pid 4494) Use of struct sctp_assoc_value in delayed_ack socket option. [ 49.782220][ T4494] Use struct sctp_sack_info instead [ 50.005785][ T4513] netlink: 12 bytes leftover after parsing attributes in process `syz.2.421'. [ 50.092266][ T4520] serio: Serial port ttyS3 [ 50.458733][ T4553] loop1: detected capacity change from 0 to 256 [ 50.668426][ T4568] loop2: detected capacity change from 0 to 128 [ 50.697396][ T4568] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 50.740026][ T4568] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 50.788899][ T3316] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 50.843863][ T4583] loop2: detected capacity change from 0 to 1024 [ 50.895667][ T4583] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback. [ 50.908275][ T4583] ext4 filesystem being mounted at /112/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 50.932772][ T4583] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.449: bg 0: block 112: padding at end of block bitmap is not set [ 50.949843][ T4583] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 63 with max blocks 65 with error 117 [ 50.971350][ T4583] EXT4-fs (loop2): This should not happen!! Data will be lost [ 50.971350][ T4583] [ 51.030750][ T4462] Bluetooth: hci0: command 0x1003 tx timeout [ 51.036783][ T4207] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 51.288128][ T4608] netlink: 7 bytes leftover after parsing attributes in process `syz.1.463'. [ 51.297253][ T4608] netlink: 28 bytes leftover after parsing attributes in process `syz.1.463'. [ 51.307048][ T4608] netlink: 28 bytes leftover after parsing attributes in process `syz.1.463'. [ 51.974254][ T4460] Bluetooth: hci0: Opcode 0x080f failed: -4 [ 52.146002][ T4616] syzkaller1: entered promiscuous mode [ 52.151783][ T4616] syzkaller1: entered allmulticast mode [ 52.719027][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 53.052657][ T4636] loop3: detected capacity change from 0 to 8192 [ 53.129318][ T28] kauditd_printk_skb: 46 callbacks suppressed [ 53.129358][ T28] audit: type=1400 audit(1772156207.731:9516): avc: denied { create } for pid=4648 comm="syz.1.491" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 53.161918][ T28] audit: type=1400 audit(1772156207.771:9517): avc: denied { bind } for pid=4648 comm="syz.1.491" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 53.195058][ T28] audit: type=1400 audit(1772156207.771:9518): avc: denied { write } for pid=4650 comm="syz.4.482" name="rtc0" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 53.226263][ T28] audit: type=1400 audit(1772156207.771:9519): avc: denied { ioctl } for pid=4650 comm="syz.4.482" path="/dev/rtc0" dev="devtmpfs" ino=245 ioctlcmd=0x7005 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 53.261171][ T28] audit: type=1400 audit(1772156207.801:9520): avc: denied { setopt } for pid=4648 comm="syz.1.491" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 53.294186][ T28] audit: type=1400 audit(1772156207.801:9521): avc: denied { write } for pid=4648 comm="syz.1.491" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 53.496584][ T28] audit: type=1400 audit(1772156208.101:9522): avc: denied { read write } for pid=4679 comm="syz.3.494" name="event0" dev="devtmpfs" ino=242 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 53.613600][ T28] audit: type=1400 audit(1772156208.101:9523): avc: denied { open } for pid=4679 comm="syz.3.494" path="/dev/input/event0" dev="devtmpfs" ino=242 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 53.663377][ T28] audit: type=1400 audit(1772156208.101:9524): avc: denied { ioctl } for pid=4679 comm="syz.3.494" path="/dev/input/event0" dev="devtmpfs" ino=242 ioctlcmd=0x4592 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 53.746253][ T28] audit: type=1400 audit(1772156208.131:9525): avc: denied { mount } for pid=4682 comm="syz.1.495" name="/" dev="configfs" ino=2043 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1 [ 53.831806][ T4697] netlink: 24 bytes leftover after parsing attributes in process `syz.3.501'. [ 53.992746][ T4710] serio: Serial port ptm0 [ 54.060558][ T4715] loop4: detected capacity change from 0 to 512 [ 54.093835][ T4715] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 54.160765][ T4715] ext4 filesystem being mounted at /96/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 54.174329][ T4715] EXT4-fs error (device loop4): ext4_do_update_inode:5569: inode #2: comm syz.4.510: corrupted inode contents [ 54.186993][ T4715] EXT4-fs error (device loop4): ext4_dirty_inode:6450: inode #2: comm syz.4.510: mark_inode_dirty error [ 54.198476][ T4715] EXT4-fs error (device loop4): ext4_do_update_inode:5569: inode #2: comm syz.4.510: corrupted inode contents [ 54.220515][ T4715] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #2: comm syz.4.510: mark_inode_dirty error [ 54.240999][ T4719] EXT4-fs warning (device loop4): ext4_es_cache_extent:1082: inode #2: comm syz.4.510: ES cache extent failed: add [0,1,22,0x1] conflict with existing [0,8,576460752303423487,0x18] [ 54.240999][ T4719] [ 54.303916][ T4723] loop2: detected capacity change from 0 to 512 [ 54.328254][ T4723] EXT4-fs: Ignoring removed orlov option [ 54.367432][ T4723] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 54.387609][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 54.397805][ T4723] EXT4-fs (loop2): orphan cleanup on readonly fs [ 54.406194][ T4723] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.512: bg 0: block 248: padding at end of block bitmap is not set [ 54.477853][ T4723] loop2: lost filesystem error report for type 5 error -117 [ 54.478152][ T4723] EXT4-fs error (device loop2): ext4_acquire_dquot:7001: comm syz.2.512: Failed to acquire dquot type 1 [ 54.485516][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 54.485535][ C0] EXT4-fs (loop2): last error at time 1772156209: ext4_validate_block_bitmap:441 [ 54.550785][ T4723] loop2: lost filesystem error report for type 5 error -117 [ 54.551172][ T4723] EXT4-fs (loop2): 1 truncate cleaned up [ 54.590496][ T4723] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 54.628567][ T4723] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended [ 54.664043][ T4723] EXT4-fs error (device loop2): __ext4_remount:6804: comm syz.2.512: Abort forced by user [ 54.677506][ T4723] EXT4-fs (loop2): Remounting filesystem read-only [ 54.688250][ T4723] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 54.701840][ T4723] ext4 filesystem being remounted at /119/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 54.738911][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 54.776258][ T4749] loop2: detected capacity change from 0 to 512 [ 54.803608][ T4749] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #15: comm syz.2.522: inode has both inline data and extents flags [ 54.898307][ T4749] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 54.898447][ T4749] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.522: couldn't read orphan inode 15 (err -117) [ 54.907716][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 54.907736][ C0] EXT4-fs (loop2): initial error at time 1772156209: ext4_orphan_get:1391: inode 15 [ 54.907767][ C0] EXT4-fs (loop2): last error at time 1772156209: ext4_orphan_get:1391: inode 15 [ 54.994780][ T4749] loop2: lost filesystem error report for type 5 error -117 [ 55.033487][ T4749] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 55.102513][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 55.122095][ T4756] loop2: detected capacity change from 0 to 512 [ 55.145212][ T4756] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #15: comm syz.2.525: inode has both inline data and extents flags [ 55.166353][ T4756] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 55.166521][ T4756] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.525: couldn't read orphan inode 15 (err -117) [ 55.176462][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 55.176477][ C1] EXT4-fs (loop2): initial error at time 1772156209: ext4_orphan_get:1391: inode 15 [ 55.176500][ C1] EXT4-fs (loop2): last error at time 1772156209: ext4_orphan_get:1391: inode 15 [ 55.215265][ T4756] loop2: lost filesystem error report for type 5 error -117 [ 55.215666][ T4756] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 55.274941][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 55.563481][ T4773] loop2: detected capacity change from 0 to 512 [ 55.604312][ T4773] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 55.636177][ T4773] EXT4-fs (loop2): orphan cleanup on readonly fs [ 55.643466][ T4773] EXT4-fs error (device loop2): ext4_quota_enable:7188: comm syz.2.533: Bad quota inum: 2, type: 2 [ 55.654524][ T4773] loop2: lost filesystem error report for type 5 error -117 [ 55.660630][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 55.670722][ T4773] EXT4-fs warning (device loop2): ext4_enable_quotas:7236: Failed to enable quota tracking (type=2, err=-117, ino=2). Please run e2fsck to fix. [ 55.674424][ C1] EXT4-fs (loop2): last error at time 1772156210: ext4_quota_enable:7188 [ 55.751567][ T4784] loop4: detected capacity change from 0 to 1024 [ 55.800715][ T4773] EXT4-fs (loop2): Cannot turn on quotas: error -117 [ 55.807707][ T4773] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 55.821584][ T4784] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 55.860297][ T4784] EXT4-fs error (device loop4): ext4_xattr_inode_iget:441: comm syz.4.538: inode #5: comm syz.4.538: iget: illegal inode # [ 55.883881][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 55.909959][ T4784] EXT4-fs error (device loop4): ext4_xattr_inode_iget:446: comm syz.4.538: error while reading EA inode 5 err=-117 [ 56.047874][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 56.277695][ T4821] loop0: detected capacity change from 0 to 512 [ 56.286860][ T4821] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 56.299878][ T4821] EXT4-fs (loop0): 1 truncate cleaned up [ 56.306815][ T4821] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 56.341080][ T4821] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 56.392104][ T4827] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 56.652849][ T4843] netlink: 'syz.4.562': attribute type 3 has an invalid length. [ 56.660574][ T4843] netlink: 'syz.4.562': attribute type 4 has an invalid length. [ 56.670448][ T4843] netlink: 9067 bytes leftover after parsing attributes in process `syz.4.562'. [ 56.765380][ T4847] loop0: detected capacity change from 0 to 1024 [ 56.776721][ T4847] EXT4-fs: Ignoring removed oldalloc option [ 56.804516][ T4847] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities [ 57.010798][ T4858] loop3: detected capacity change from 0 to 2048 [ 57.058418][ T4866] loop2: detected capacity change from 0 to 512 [ 57.071094][ T4858] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 57.116168][ T4868] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 57.135500][ T4858] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 242 with error 28 [ 57.144573][ T4866] ext4 filesystem being mounted at /130/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 57.160655][ T4868] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.573: bad orphan inode 131083 [ 57.162861][ T4858] EXT4-fs (loop3): This should not happen!! Data will be lost [ 57.162861][ T4858] [ 57.180842][ T4858] EXT4-fs (loop3): Total free blocks count 0 [ 57.186876][ T4858] EXT4-fs (loop3): Free/Dirty block details [ 57.202590][ T4868] loop1: lost filesystem error report for type 5 error -117 [ 57.260941][ T4858] EXT4-fs (loop3): free_blocks=2415919504 [ 57.281508][ T4858] EXT4-fs (loop3): dirty_blocks=256 [ 57.287278][ T4858] EXT4-fs (loop3): Block reservation details [ 57.293512][ T4858] EXT4-fs (loop3): i_reserved_data_blocks=16 [ 57.345005][ T30] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 57.360435][ T30] EXT4-fs (loop3): This should not happen!! Data will be lost [ 57.360435][ T30] [ 57.387871][ T4888] EXT4-fs: Ignoring removed mblk_io_submit option [ 57.451543][ T4888] EXT4-fs error (device loop4): ext4_xattr_inode_iget:441: comm syz.4.583: inode #65079: comm syz.4.583: iget: illegal inode # [ 57.496572][ T4888] EXT4-fs error (device loop4): ext4_xattr_inode_iget:446: comm syz.4.583: error while reading EA inode 65079 err=-117 [ 57.676965][ T4912] FAT-fs (loop4): error, corrupted file size (i_pos 196, 2097152) [ 57.705126][ T4912] FAT-fs (loop4): Filesystem has been set read-only [ 57.803368][ T4927] netlink: 'syz.4.599': attribute type 21 has an invalid length. [ 57.815758][ T4927] IPv6: NLM_F_CREATE should be specified when creating new route [ 57.824369][ T4927] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 57.831588][ T4927] IPv6: NLM_F_CREATE should be set when creating new route [ 57.838842][ T4927] IPv6: NLM_F_CREATE should be set when creating new route [ 57.845761][ T4930] syzkaller1: entered promiscuous mode [ 57.846069][ T4927] IPv6: NLM_F_CREATE should be set when creating new route [ 57.852294][ T4930] syzkaller1: entered allmulticast mode [ 57.900312][ T4932] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 57.913893][ T4932] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 57.939939][ T309] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 58.126216][ T1507] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 58.138016][ T4948] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 58.148020][ T1507] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 58.174396][ T4948] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 58.212788][ T4953] fido_id[4953]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 58.234638][ T28] kauditd_printk_skb: 60 callbacks suppressed [ 58.234652][ T28] audit: type=1400 audit(1772156468.839:9584): avc: denied { create } for pid=4957 comm="syz.0.611" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 58.267626][ T28] audit: type=1400 audit(1772156468.869:9585): avc: denied { firmware_load } for pid=4957 comm="syz.0.611" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1 [ 58.386067][ T4965] netlink: 'syz.0.615': attribute type 3 has an invalid length. [ 58.435498][ T28] audit: type=1400 audit(1772156469.039:9586): avc: denied { write } for pid=4966 comm="syz.0.616" name="mcfilter" dev="proc" ino=4026532771 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1 [ 58.486266][ T4969] ext4 filesystem being mounted at /126/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 58.498624][ T28] audit: type=1400 audit(1772156469.099:9587): avc: denied { create } for pid=4968 comm="syz.0.617" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=blk_file permissive=1 [ 58.511009][ T4969] EXT4-fs error (device loop0): ext4_do_update_inode:5569: inode #2: comm syz.0.617: corrupted inode contents [ 58.532588][ T4969] EXT4-fs error (device loop0): ext4_dirty_inode:6450: inode #2: comm syz.0.617: mark_inode_dirty error [ 58.544115][ T4969] EXT4-fs error (device loop0): ext4_do_update_inode:5569: inode #2: comm syz.0.617: corrupted inode contents [ 58.558408][ T4969] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.617: mark_inode_dirty error [ 58.571422][ T4972] EXT4-fs warning (device loop0): ext4_es_cache_extent:1082: inode #2: comm syz.0.617: ES cache extent failed: add [0,1,21,0x1] conflict with existing [0,8,576460752303423487,0x18] [ 58.571422][ T4972] [ 58.617205][ T28] audit: type=1400 audit(1772156469.219:9588): avc: denied { add_name } for pid=4968 comm="syz.0.617" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 58.638477][ T28] audit: type=1400 audit(1772156469.249:9589): avc: denied { remove_name } for pid=4968 comm="syz.0.617" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 58.824171][ T28] audit: type=1400 audit(1772156469.429:9590): avc: denied { allowed } for pid=4994 comm="syz.0.626" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 58.886463][ T28] audit: type=1400 audit(1772156469.489:9591): avc: denied { setopt } for pid=4997 comm="syz.0.627" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 58.908382][ T5000] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 58.908382][ T5000] The task syz.2.625 (5000) triggered the difference, watch for misbehavior. [ 58.933153][ T5001] veth1_macvtap: left promiscuous mode [ 58.943005][ T5001] macsec0: entered promiscuous mode [ 58.982705][ T5001] veth1_macvtap: entered promiscuous mode [ 58.988608][ T5001] macsec0: entered allmulticast mode [ 58.997787][ T5001] veth1_macvtap: entered allmulticast mode [ 59.007187][ T28] audit: type=1400 audit(1772156469.619:9592): avc: denied { write } for pid=5006 comm="syz.4.631" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 59.057707][ T5011] netlink: 68 bytes leftover after parsing attributes in process `syz.4.633'. [ 59.068295][ T28] audit: type=1400 audit(1772156469.679:9593): avc: denied { create } for pid=5010 comm="syz.4.633" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 59.146868][ T5019] pim6reg1: entered promiscuous mode [ 59.155020][ T5019] pim6reg1: entered allmulticast mode [ 59.388630][ T5032] set_capacity_and_notify: 6 callbacks suppressed [ 59.388642][ T5032] loop4: detected capacity change from 0 to 512 [ 59.409801][ T5032] EXT4-fs (loop4): 1 truncate cleaned up [ 59.611488][ T5050] loop3: detected capacity change from 0 to 512 [ 59.619925][ T5050] vfat: Unknown parameter 'ÿÿÿÿÿÿÿÿ0xffffffffffffffff' [ 59.701731][ T5050] loop3: detected capacity change from 0 to 8192 [ 59.786241][ T5067] ieee802154 phy0 wpan0: encryption failed: -22 [ 59.871242][ T5071] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 59.878259][ T9] IPVS: starting estimator thread 0... [ 59.970816][ T5077] IPVS: using max 2976 ests per chain, 148800 per kthread [ 59.977138][ T5092] loop2: detected capacity change from 0 to 1024 [ 59.989032][ T5092] EXT4-fs: inline encryption not supported [ 60.001825][ T5092] EXT4-fs: Ignoring removed i_version option [ 60.052018][ T5092] EXT4-fs error (device loop2): mb_free_blocks:2047: group 0, inode 18: block 241:freeing already freed block (bit 15); block bitmap corrupt. [ 60.138043][ T5104] process 'syz.4.670' launched './file0' with NULL argv: empty string added [ 60.155091][ T5104] Invalid argument reading file caps for ./file0 [ 60.289905][ T5119] serio: Serial port ptm0 [ 60.402235][ T5124] Driver unsupported XDP return value 0 on prog (id 97) dev N/A, expect packet loss! [ 60.559485][ T5135] loop4: detected capacity change from 0 to 1024 [ 60.581233][ T5135] EXT4-fs: Ignoring removed bh option [ 60.587618][ T5137] netlink: 4 bytes leftover after parsing attributes in process `syz.2.683'. [ 60.601025][ T5135] EXT4-fs: Ignoring removed nomblk_io_submit option [ 60.612893][ T5135] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e841c01c, mo2=0003] [ 60.633861][ T5135] System zones: 0-1, 3-36 [ 60.680118][ T5142] loop4: detected capacity change from 0 to 128 [ 61.105794][ T5159] netlink: 'syz.1.692': attribute type 12 has an invalid length. [ 61.121790][ T5159] netlink: 'syz.1.692': attribute type 29 has an invalid length. [ 61.133130][ T5159] netlink: 148 bytes leftover after parsing attributes in process `syz.1.692'. [ 61.333872][ T5167] netlink: 44 bytes leftover after parsing attributes in process `syz.2.695'. [ 61.382795][ T5167] bridge0: port 3(team0) entered disabled state [ 61.389164][ T5167] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.396472][ T5167] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.408100][ T1106] IPVS: starting estimator thread 0... [ 61.418370][ T5169] IPVS: wlc: UDP 224.0.0.2:0 - no destination available [ 61.427063][ T5172] netlink: 44 bytes leftover after parsing attributes in process `syz.2.695'. [ 61.439858][ T5176] loop0: detected capacity change from 0 to 512 [ 61.492333][ T5179] loop1: detected capacity change from 0 to 128 [ 61.500677][ T5174] IPVS: using max 2352 ests per chain, 117600 per kthread [ 61.512754][ T1106] kernel write not supported for file /timer_list (pid: 1106 comm: kworker/1:2) [ 61.558278][ T5179] syz.1.699: attempt to access beyond end of device [ 61.558278][ T5179] loop1: rw=2049, sector=138, nr_sectors = 112 limit=128 [ 61.578437][ T5182] IPv6: Can't replace route, no match found [ 61.685880][ T5190] loop3: detected capacity change from 0 to 1024 [ 61.746297][ T5190] EXT4-fs error (device loop3): ext4_xattr_inode_iget:446: comm syz.3.705: error while reading EA inode 24 err=-116 [ 61.786577][ T5194] loop0: detected capacity change from 0 to 1024 [ 61.847926][ T5194] EXT4-fs error (device loop0): ext4_xattr_inode_iget:441: comm syz.0.706: inode #5: comm syz.0.706: iget: illegal inode # [ 61.864119][ T5190] EXT4-fs error (device loop3): ext4_xattr_block_find:1879: inode #15: comm syz.3.705: corrupted xattr block 113: invalid header [ 61.880767][ T5144] syz.4.686 (5144) used greatest stack depth: 7328 bytes left [ 61.902930][ T5194] EXT4-fs error (device loop0): ext4_xattr_inode_iget:446: comm syz.0.706: error while reading EA inode 5 err=-117 [ 61.928128][ T5204] EXT4-fs error (device loop1): ext4_xattr_inode_iget:441: comm syz.1.709: inode #3204449282: comm syz.1.709: iget: illegal inode # [ 61.975303][ T5204] EXT4-fs error (device loop1): ext4_xattr_inode_iget:446: comm syz.1.709: error while reading EA inode 3204449282 err=-117 [ 62.009160][ T5208] vhci_hcd vhci_hcd.4: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 62.137437][ T5227] EXT4-fs: Ignoring removed bh option [ 62.240748][ T5227] EXT4-fs: inline encryption not supported [ 62.259871][ T5227] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 62.328423][ T5227] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1142: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 62.452611][ T5227] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.717: bg 0: block 248: padding at end of block bitmap is not set [ 62.495045][ T5227] loop3: lost filesystem error report for type 5 error -117 [ 62.495275][ T5227] EXT4-fs error (device loop3): ext4_acquire_dquot:7001: comm syz.3.717: Failed to acquire dquot type 1 [ 62.502623][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 62.502644][ C0] EXT4-fs (loop3): last error at time 1772156473: ext4_validate_block_bitmap:441 [ 62.670978][ T5227] loop3: lost filesystem error report for type 5 error -117 [ 62.671726][ T5227] EXT4-fs (loop3): 1 truncate cleaned up [ 62.804476][ T5267] EXT4-fs error (device loop4): ext4_iget_extra_inode:5025: inode #12: comm syz.4.737: corrupted in-inode xattr: bad e_name length [ 62.838456][ T5267] loop4: lost file I/O error report for ino 12 type 5 pos 0x0 len 0x0 error -117 [ 62.851933][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 62.867665][ C1] EXT4-fs (loop4): initial error at time 1772156473: ext4_iget_extra_inode:5025: inode 12 [ 62.877708][ C1] EXT4-fs (loop4): last error at time 1772156473: ext4_iget_extra_inode:5025: inode 12 [ 62.890589][ T5267] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.737: couldn't read orphan inode 12 (err -117) [ 62.902693][ T5267] loop4: lost filesystem error report for type 5 error -117 [ 62.994033][ T5278] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 63.355808][ T28] kauditd_printk_skb: 62 callbacks suppressed [ 63.355824][ T28] audit: type=1400 audit(1772156473.959:9654): avc: denied { execute } for pid=5299 comm="syz.1.752" path=2F6D656D66643AFF202864656C6574656429 dev="hugetlbfs" ino=10023 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 63.407466][ T5304] netlink: 8 bytes leftover after parsing attributes in process `syz.0.754'. [ 63.440675][ T5304] netlink: 12 bytes leftover after parsing attributes in process `syz.0.754'. [ 63.487465][ T5237] syz.2.725 (5237) used greatest stack depth: 7152 bytes left [ 63.629469][ T5327] EXT4-fs: inline encryption not supported [ 63.657148][ T5327] EXT4-fs: Ignoring removed i_version option [ 63.739681][ T5325] netlink: 20 bytes leftover after parsing attributes in process `syz.2.765'. [ 63.772173][ T5327] EXT4-fs error (device loop4): mb_free_blocks:2047: group 0, inode 18: block 241:freeing already freed block (bit 15); block bitmap corrupt. [ 63.984515][ T28] audit: type=1400 audit(1772156730.599:9655): avc: denied { mounton } for pid=5353 comm="syz.4.777" path="/syzcgroup/unified/syz4/cgroup.procs" dev="cgroup2" ino=125 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=file permissive=1 [ 64.092401][ T28] audit: type=1400 audit(1772156730.699:9656): avc: denied { write } for pid=5363 comm="syz.1.781" path="socket:[11057]" dev="sockfs" ino=11057 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 64.135219][ T5365] EXT4-fs: Ignoring removed bh option [ 64.167096][ T5365] EXT4-fs: inline encryption not supported [ 64.193058][ T5365] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 64.215483][ T5365] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1142: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 64.242775][ T5365] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.779: bg 0: block 248: padding at end of block bitmap is not set [ 64.257269][ T5365] loop0: lost filesystem error report for type 5 error -117 [ 64.259220][ T5365] Quota error (device loop0): write_blk: dquota write failed [ 64.266564][ C0] EXT4-fs (loop0): error count since last fsck: 1 [ 64.266585][ C0] EXT4-fs (loop0): last error at time 1772156730: ext4_validate_block_bitmap:441 [ 64.289798][ T5365] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 64.299865][ T5365] EXT4-fs error (device loop0): ext4_acquire_dquot:7001: comm syz.0.779: Failed to acquire dquot type 1 [ 64.311569][ T5365] loop0: lost filesystem error report for type 5 error -117 [ 64.316963][ T5365] EXT4-fs (loop0): 1 truncate cleaned up [ 64.624953][ T5334] syz.3.769 (5334) used greatest stack depth: 6944 bytes left [ 64.654887][ T5383] set_capacity_and_notify: 6 callbacks suppressed [ 64.654903][ T5383] loop0: detected capacity change from 0 to 2048 [ 64.716394][ T5385] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 64.731812][ T5383] loop0: p1 < > p4 [ 64.737552][ T5383] loop0: p4 size 722688 extends beyond EOD, truncated [ 64.745533][ T5385] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 64.758628][ T3000] loop0: p1 < > p4 [ 64.769483][ T3000] loop0: p4 size 722688 extends beyond EOD, truncated [ 64.769603][ T5385] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 64.821645][ T4120] udevd[4120]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 64.821845][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 64.861730][ T3303] udevd[3303]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 64.872195][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 64.914296][ T28] audit: type=1400 audit(1772156731.519:9657): avc: denied { write } for pid=5391 comm="syz.2.802" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 64.949439][ T28] audit: type=1400 audit(1772156731.539:9658): avc: denied { open } for pid=5391 comm="syz.2.802" path="/dev/nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 65.002549][ T5399] netlink: 44 bytes leftover after parsing attributes in process `syz.0.791'. [ 65.014844][ T5399] bridge0: port 2(bridge_slave_1) entered disabled state [ 65.024008][ T5399] bridge0: port 1(bridge_slave_0) entered disabled state [ 65.036825][ T28] audit: type=1400 audit(1772156731.649:9659): avc: denied { read } for pid=5396 comm="syz.2.792" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 65.056906][ T5399] netlink: 44 bytes leftover after parsing attributes in process `syz.0.791'. [ 65.162851][ T28] audit: type=1400 audit(1772156731.769:9660): avc: denied { name_connect } for pid=5407 comm="syz.1.797" dest=256 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1 [ 65.350127][ T5423] netlink: 'syz.0.816': attribute type 2 has an invalid length. [ 65.446550][ T5432] loop4: detected capacity change from 0 to 2048 [ 65.493571][ T28] audit: type=1400 audit(1772156732.099:9661): avc: denied { read } for pid=5436 comm="syz.3.812" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 65.598631][ T5442] loop3: detected capacity change from 0 to 256 [ 65.642063][ T3421] IPVS: starting estimator thread 0... [ 65.643239][ T5442] FAT-fs (loop3): Directory bread(block 64) failed [ 65.675056][ T5442] FAT-fs (loop3): Directory bread(block 65) failed [ 65.681788][ T5442] FAT-fs (loop3): Directory bread(block 66) failed [ 65.709579][ T5442] FAT-fs (loop3): Directory bread(block 67) failed [ 65.719848][ T5442] FAT-fs (loop3): Directory bread(block 68) failed [ 65.728351][ T5442] FAT-fs (loop3): Directory bread(block 69) failed [ 65.735168][ T5442] FAT-fs (loop3): Directory bread(block 70) failed [ 65.740667][ T5447] IPVS: using max 2976 ests per chain, 148800 per kthread [ 65.765797][ T5442] FAT-fs (loop3): Directory bread(block 71) failed [ 65.776399][ T5442] FAT-fs (loop3): Directory bread(block 72) failed [ 65.788347][ T5461] syzkaller1: entered promiscuous mode [ 65.794666][ T5461] syzkaller1: entered allmulticast mode [ 65.803702][ T5442] FAT-fs (loop3): Directory bread(block 73) failed [ 65.849389][ T5469] netlink: 40 bytes leftover after parsing attributes in process `syz.2.827'. [ 65.883301][ T5469] netlink: 40 bytes leftover after parsing attributes in process `syz.2.827'. [ 66.141984][ T5502] loop2: detected capacity change from 0 to 1024 [ 66.151109][ T5504] loop3: detected capacity change from 0 to 1024 [ 66.231277][ T5502] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 66.295302][ T5502] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 66.307687][ T5502] EXT4-fs (loop2): This should not happen!! Data will be lost [ 66.307687][ T5502] [ 66.318565][ T5502] EXT4-fs (loop2): Total free blocks count 0 [ 66.325094][ T5502] EXT4-fs (loop2): Free/Dirty block details [ 66.331330][ T5502] EXT4-fs (loop2): free_blocks=20480 [ 66.337295][ T5502] EXT4-fs (loop2): dirty_blocks=96 [ 66.342668][ T5502] EXT4-fs (loop2): Block reservation details [ 66.348700][ T5502] EXT4-fs (loop2): i_reserved_data_blocks=6 [ 66.371849][ T41] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 131075 with max blocks 64 with error 28 [ 66.385005][ T41] EXT4-fs (loop2): This should not happen!! Data will be lost [ 66.385005][ T41] [ 66.396323][ T3316] EXT4-fs unmount: 33 callbacks suppressed [ 66.535267][ T5534] loop2: detected capacity change from 0 to 512 [ 66.549669][ T5534] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 66.563194][ T5534] EXT4-fs (loop2): 1 truncate cleaned up [ 66.569451][ T5534] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 66.582233][ T5536] loop3: detected capacity change from 0 to 1024 [ 66.595474][ T5536] EXT4-fs: Ignoring removed orlov option [ 66.607440][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 66.632041][ T5536] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 66.656609][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 67.114784][ T5586] loop0: detected capacity change from 0 to 512 [ 67.138892][ T5586] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 67.170716][ T5586] ext4 filesystem being mounted at /193/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 67.183485][ T5592] IPVS: stopping master sync thread 5593 ... [ 67.189535][ T5593] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 33554436, id = 0 [ 67.204803][ T5586] EXT4-fs (loop0): shut down requested (2) [ 67.212186][ T5586] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop0 ino=12 [ 67.221244][ T5586] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop0 ino=12 [ 67.250780][ T5586] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop0 ino=15 [ 67.280906][ T5586] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop0 ino=13 [ 67.346344][ T5586] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop0 ino=12 [ 67.355734][ T5586] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop0 ino=12 [ 67.365577][ T5586] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop0 ino=13 [ 67.375359][ T5586] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop0 ino=15 [ 67.397444][ T5586] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop0 ino=15 [ 67.408941][ T5607] loop4: detected capacity change from 0 to 512 [ 67.415830][ T5607] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 67.426192][ T5586] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop0 ino=12 [ 67.435320][ T5586] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop0 ino=13 [ 67.446288][ T5607] EXT4-fs (loop4): 1 truncate cleaned up [ 67.452631][ T5607] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 67.506212][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 67.523831][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 67.786342][ T5628] loop0: detected capacity change from 0 to 512 [ 67.795492][ T5628] EXT4-fs: Ignoring removed nobh option [ 67.859518][ T5628] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 67.872749][ T5628] EXT4-fs (loop0): 1 truncate cleaned up [ 67.891664][ T5628] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 67.931816][ T5628] netlink: 40 bytes leftover after parsing attributes in process `syz.0.894'. [ 68.013075][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.098013][ T1507] IPVS: starting estimator thread 0... [ 68.136669][ T5642] ------------[ cut here ]------------ [ 68.143790][ T5642] EA inode 11 i_nlink=2 [ 68.144260][ T5642] WARNING: fs/ext4/xattr.c:1059 at ext4_xattr_inode_update_ref+0x313/0x350, CPU#0: syz.1.899/5642 [ 68.160338][ T5642] Modules linked in: [ 68.165474][ T5642] CPU: 0 UID: 0 PID: 5642 Comm: syz.1.899 Not tainted syzkaller #0 PREEMPT(full) [ 68.175811][ T5642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 68.186898][ T5642] RIP: 0010:ext4_xattr_inode_update_ref+0x332/0x350 [ 68.194040][ T5642] Code: b4 5f 99 ff 4c 8d 2d ad ee 5d 05 49 8d 7e 40 e8 34 f1 b5 ff 49 8b 6e 40 4c 89 e7 e8 68 ec b5 ff 41 8b 56 48 4c 89 ef 48 89 ee <67> 48 0f b9 3a e9 02 ff ff ff e8 ff 49 dd 03 66 66 66 66 66 66 2e [ 68.214831][ T5642] RSP: 0018:ffffc900035af778 EFLAGS: 00010246 [ 68.221450][ T5649] IPVS: using max 2064 ests per chain, 103200 per kthread [ 68.221990][ T5642] RAX: ffff888104a64c78 RBX: ffff8881076601a8 RCX: ffffffff81bff598 [ 68.237181][ T5642] RDX: 0000000000000002 RSI: 000000000000000b RDI: ffffffff871de430 [ 68.245849][ T5642] RBP: 000000000000000b R08: 000188810766015b R09: 0000000000000000 [ 68.254700][ T5642] R10: ffffc900035af6a8 R11: 0001c900035af6a8 R12: ffff888107660158 [ 68.263290][ T5642] R13: ffffffff871de430 R14: ffff888107660110 R15: 0000000000000001 [ 68.272041][ T5642] FS: 00007f9856a9f6c0(0000) GS:ffff8882ae8dc000(0000) knlGS:0000000000000000 [ 68.281491][ T5642] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 68.288470][ T5642] CR2: 0000000034747865 CR3: 000000011cf4e000 CR4: 00000000003506f0 [ 68.296944][ T5642] DR0: 0000200000000300 DR1: 0000000000000000 DR2: 0000000000000000 [ 68.305650][ T5642] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 [ 68.314567][ T5642] Call Trace: [ 68.318308][ T5642] [ 68.321949][ T5642] ext4_xattr_inode_dec_ref_all+0x57c/0x880 [ 68.328440][ T5642] ? errseq_check+0x2c/0x50 [ 68.333412][ T5642] ext4_xattr_delete_inode+0x6c1/0x7a0 [ 68.339431][ T5642] ? ext4_truncate+0x92b/0xb00 [ 68.345021][ T5642] ext4_evict_inode+0xa1f/0xd60 [ 68.350464][ T5642] ? __pfx_ext4_evict_inode+0x10/0x10 [ 68.356301][ T5642] evict+0x2af/0x510 [ 68.360461][ T5642] ? __tsan_read4+0xbe/0x190 [ 68.365744][ T5642] iput+0x41a/0x580 [ 68.370291][ T5642] ext4_process_orphan+0x1a9/0x1c0 [ 68.375931][ T5642] ext4_orphan_cleanup+0x6a8/0xa00 [ 68.381790][ T5642] ext4_fill_super+0x3408/0x37c0 [ 68.387149][ T5642] ? set_blocksize+0x14c/0x270 [ 68.392772][ T5642] ? setup_bdev_super+0x30e/0x370 [ 68.398450][ T5642] ? __pfx_ext4_fill_super+0x10/0x10 [ 68.404042][ T5642] get_tree_bdev_flags+0x291/0x300 [ 68.410221][ T5642] ? __pfx_ext4_fill_super+0x10/0x10 [ 68.415951][ T5642] get_tree_bdev+0x1f/0x30 [ 68.421371][ T5642] ext4_get_tree+0x1c/0x30 [ 68.426490][ T5642] vfs_get_tree+0x57/0x1d0 [ 68.431581][ T5642] do_new_mount+0x288/0x8d0 [ 68.436370][ T5642] path_mount+0x4d0/0xbc0 [ 68.440942][ T5642] __se_sys_mount+0x28c/0x2e0 [ 68.446921][ T5642] ? __sanitizer_cov_trace_pc+0x5c/0x70 [ 68.453146][ T5642] __x64_sys_mount+0x67/0x80 [ 68.458311][ T5642] x64_sys_call+0x2d61/0x3020 [ 68.463441][ T5642] do_syscall_64+0x12c/0x370 [ 68.468551][ T5642] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 68.475139][ T5642] RIP: 0033:0x7f985804da0a [ 68.480320][ T5642] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 68.500430][ T5642] RSP: 002b:00007f9856a9ee58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 68.509531][ T5642] RAX: ffffffffffffffda RBX: 00007f9856a9eee0 RCX: 00007f985804da0a [ 68.518250][ T5642] RDX: 00002000000009c0 RSI: 0000200000000540 RDI: 00007f9856a9eea0 [ 68.527019][ T5642] RBP: 00002000000009c0 R08: 00007f9856a9eee0 R09: 0000000000800718 [ 68.535711][ T5642] R10: 0000000000800718 R11: 0000000000000246 R12: 0000200000000540 [ 68.545099][ T5642] R13: 00007f9856a9eea0 R14: 000000000000048d R15: 0000200000000200 [ 68.554100][ T5642] [ 68.557561][ T5642] ---[ end trace 0000000000000000 ]--- [ 68.565383][ T5642] EXT4-fs (loop1): 1 orphan inode deleted [ 68.574032][ T5642] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 68.649123][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.662931][ T5671] bridge0: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms) [ 68.673731][ T5671] bridge0: entered allmulticast mode [ 68.880137][ T5679] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 68.909148][ T5679] ext4 filesystem being mounted at /145/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 68.991219][ T3327] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 69.006120][ T5688] FAT-fs (loop2): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1) [ 69.068690][ T5688] FAT-fs (loop2): error, invalid FAT chain (i_pos 548, last_block 8) [ 69.076989][ T5688] FAT-fs (loop2): Filesystem has been set read-only [ 69.090687][ T5688] FAT-fs (loop2): error, corrupted file size (i_pos 548, 522) [ 69.165288][ T28] kauditd_printk_skb: 48 callbacks suppressed [ 69.165349][ T28] audit: type=1400 audit(1772156735.769:9710): avc: denied { create } for pid=5701 comm="syz.0.925" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 69.221240][ T28] audit: type=1400 audit(1772156735.779:9711): avc: denied { execute } for pid=5702 comm="syz.1.924" path="/187/file0" dev="tmpfs" ino=981 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 69.271669][ T28] audit: type=1400 audit(1772156735.809:9712): avc: denied { read } for pid=5701 comm="syz.0.925" path="socket:[12620]" dev="sockfs" ino=12620 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 69.448203][ T5730] netlink: 4 bytes leftover after parsing attributes in process `syz.0.938'. [ 69.457357][ T5730] netlink: 4 bytes leftover after parsing attributes in process `syz.0.938'. [ 69.466496][ T5730] netlink: 4 bytes leftover after parsing attributes in process `syz.0.938'. [ 69.483509][ T28] audit: type=1326 audit(1772156736.089:9713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5731 comm="syz.2.940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6da4f9c799 code=0x7ffc0000 [ 69.510471][ T28] audit: type=1326 audit(1772156736.089:9714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5731 comm="syz.2.940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6da4f9c799 code=0x7ffc0000 [ 69.536622][ T28] audit: type=1326 audit(1772156736.089:9715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5731 comm="syz.2.940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6da4f9c799 code=0x7ffc0000 [ 69.569805][ T28] audit: type=1326 audit(1772156736.089:9716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5731 comm="syz.2.940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6da4f9c799 code=0x7ffc0000 [ 69.667274][ T28] audit: type=1326 audit(1772156736.089:9717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5731 comm="syz.2.940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6da4f9c799 code=0x7ffc0000 [ 69.708735][ T5745] set_capacity_and_notify: 3 callbacks suppressed [ 69.708753][ T5745] loop3: detected capacity change from 0 to 1024 [ 69.722259][ T28] audit: type=1326 audit(1772156736.089:9718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5731 comm="syz.2.940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f6da4f9c799 code=0x7ffc0000 [ 69.722287][ T28] audit: type=1400 audit(1772156736.089:9719): avc: denied { connect } for pid=5731 comm="syz.2.940" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 69.766956][ T5745] EXT4-fs: Ignoring removed nomblk_io_submit option [ 69.798987][ T5745] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e854c01c, mo2=0003] [ 69.807259][ T5745] System zones: 0-1, 3-36 [ 69.825168][ T5745] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 69.846539][ T5751] loop1: detected capacity change from 0 to 512 [ 69.865058][ T5758] loop4: detected capacity change from 0 to 512 [ 69.880308][ T5756] usb usb2: usbfs: process 5756 (syz.0.949) did not claim interface 0 before use [ 69.891731][ T5751] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 69.905401][ T5745] EXT4-fs error (device loop3): ext4_iget_extra_inode:5025: inode #15: comm syz.3.945: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled [ 69.923116][ T5758] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 69.935258][ T5758] EXT4-fs (loop4): orphan cleanup on readonly fs [ 69.937813][ T5751] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended [ 69.960080][ T5758] EXT4-fs warning (device loop4): ext4_enable_quotas:7236: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 69.969195][ T5751] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 69.983705][ T5751] System zones: 0-2, 18-18, 34-35 [ 69.989292][ T5751] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 70.031116][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.063612][ T5758] EXT4-fs (loop4): Cannot turn on quotas: error -22 [ 70.075997][ T5758] EXT4-fs error (device loop4): ext4_ext_check_inode:521: inode #13: comm syz.4.950: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 70.110091][ T5758] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 70.110356][ T5758] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.950: couldn't read orphan inode 13 (err -117) [ 70.119975][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 70.119992][ C0] EXT4-fs (loop4): last error at time 1772156736: ext4_ext_check_inode:521: inode 13 [ 70.149833][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.150582][ T5775] loop3: detected capacity change from 0 to 128 [ 70.165168][ T5758] loop4: lost filesystem error report for type 5 error -117 [ 70.165871][ T5758] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 70.169010][ T5775] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 70.179118][ T5777] loop0: detected capacity change from 0 to 1024 [ 70.205005][ T5758] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.219016][ T5775] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 70.243910][ T5777] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 70.317116][ T5777] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 70.383074][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.487448][ T5801] netlink: 44 bytes leftover after parsing attributes in process `syz.2.969'. [ 70.504715][ T5801] netlink: 40 bytes leftover after parsing attributes in process `syz.2.969'. [ 70.739389][ T5826] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 70.826551][ T5834] loop4: detected capacity change from 0 to 1024 [ 70.882820][ T5834] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 70.941425][ T5834] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4222: comm syz.4.983: Allocating blocks 497-513 which overlap fs metadata [ 70.976112][ T1507] kernel write not supported for file /sg0 (pid: 1507 comm: kworker/0:2) [ 70.994738][ T5858] dummy0: entered promiscuous mode [ 71.001689][ T5833] EXT4-fs (loop4): pa ffff8881076911c0: logic 32768, phys. 145, len 23 [ 71.009979][ T5833] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5465: group 0, free 0, pa_free 1 [ 71.026112][ T5858] dummy0: left promiscuous mode [ 71.055816][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.078415][ T5864] loop2: detected capacity change from 0 to 512 [ 71.089181][ T1507] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 71.108298][ T1507] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 71.142520][ T5866] loop1: detected capacity change from 0 to 4096 [ 71.149508][ T5864] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 71.171621][ T5864] ext4 filesystem being mounted at /213/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 71.182528][ T5866] ext4: Bad value for 'sb' [ 71.218624][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.683245][ T5917] loop0: detected capacity change from 0 to 256 [ 71.876644][ T5942] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1030'. [ 71.887097][ T5944] loop2: detected capacity change from 0 to 512 [ 71.927350][ T5944] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 71.965718][ T5944] ext4 filesystem being mounted at /218/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 72.027986][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.124404][ T5964] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1036'. [ 72.225378][ T5972] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 72.270088][ T5972] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 72.374446][ T5977] Invalid argument reading file caps for ./file0 [ 72.633705][ T5980] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 72.637227][ T5980] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4222: comm syz.0.1044: Allocating blocks 497-513 which overlap fs metadata [ 72.675627][ T5979] EXT4-fs (loop0): pa ffff8881076c37e0: logic 32768, phys. 145, len 23 [ 72.675655][ T5979] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5465: group 0, free 0, pa_free 1 [ 72.717998][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.202306][ T6004] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 73.265108][ T6004] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 73.289275][ T6018] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1059'. [ 73.320562][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.355367][ T6020] SELinux: failed to load policy [ 73.509475][ T6039] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 73.522433][ T3304] loop2: p3 p4 < > [ 73.526506][ T3304] loop2: p3 start 11362048 is beyond EOD, truncated [ 73.534522][ T6039] EXT4-fs (loop3): 1 truncate cleaned up [ 73.548967][ T6034] loop2: p3 p4 < > [ 73.553297][ T6039] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 73.568626][ T6034] loop2: p3 start 11362048 is beyond EOD, truncated [ 73.620771][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 73.642987][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.764220][ T6058] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 73.788301][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.825021][ T6062] syzkaller1: entered promiscuous mode [ 73.833231][ T6062] syzkaller1: entered allmulticast mode [ 73.956160][ T6079] EXT4-fs: Ignoring removed orlov option [ 73.979760][ T6079] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 73.996559][ T6079] EXT4-fs (loop1): 1 truncate cleaned up [ 74.006118][ T6079] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.189732][ T6088] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.203841][ T6088] ext4 filesystem being mounted at /233/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 74.314632][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.325301][ T6075] netlink: 'syz.4.1087': attribute type 1 has an invalid length. [ 74.396432][ T28] kauditd_printk_skb: 33 callbacks suppressed [ 74.396446][ T28] audit: type=1400 audit(1772156740.999:9753): avc: denied { write } for pid=6099 comm="syz.1.1091" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 74.434693][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.463426][ T6106] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 74.479385][ T6106] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 74.520763][ T3312] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.540135][ T6114] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1096'. [ 74.549377][ T6114] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1096'. [ 74.550574][ T6112] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1099'. [ 74.766657][ T28] audit: type=1326 audit(1772156741.369:9754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6141 comm="syz.4.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89a0c5c799 code=0x7ffc0000 [ 74.812116][ T6144] set_capacity_and_notify: 11 callbacks suppressed [ 74.812181][ T6144] loop1: detected capacity change from 0 to 4096 [ 74.826237][ T28] audit: type=1326 audit(1772156741.369:9755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6141 comm="syz.4.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89a0c5c799 code=0x7ffc0000 [ 74.868173][ T28] audit: type=1326 audit(1772156741.369:9756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6141 comm="syz.4.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=108 compat=0 ip=0x7f89a0c5c799 code=0x7ffc0000 [ 74.893279][ T28] audit: type=1326 audit(1772156741.369:9757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6141 comm="syz.4.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89a0c5c799 code=0x7ffc0000 [ 74.917902][ T28] audit: type=1326 audit(1772156741.399:9758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6141 comm="syz.4.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f89a0c5c799 code=0x7ffc0000 [ 74.941417][ T28] audit: type=1400 audit(1772156741.469:9759): avc: denied { create } for pid=6149 comm="syz.3.1117" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 74.964724][ T6148] loop2: detected capacity change from 0 to 512 [ 74.972502][ T6144] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.988530][ T28] audit: type=1400 audit(1772156741.599:9760): avc: denied { read write } for pid=6142 comm="syz.1.1114" name="file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 75.011633][ T28] audit: type=1400 audit(1772156741.619:9761): avc: denied { open } for pid=6142 comm="syz.1.1114" path="/218/file0/file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 75.051467][ T6155] loop4: detected capacity change from 0 to 512 [ 75.066427][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.081832][ T6155] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 75.117168][ T6155] EXT4-fs (loop4): 1 truncate cleaned up [ 75.140067][ T6155] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 75.156736][ T28] audit: type=1400 audit(1772156741.769:9762): avc: denied { setattr } for pid=6154 comm="syz.4.1119" name="file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 75.201811][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.216824][ T6148] EXT4-fs (loop2): 1 orphan inode deleted [ 75.246495][ T6164] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1122'. [ 75.285291][ T6148] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 75.309641][ T6172] loop4: detected capacity change from 0 to 1024 [ 75.344253][ T6172] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 75.399715][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.421642][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.457591][ T6189] loop4: detected capacity change from 0 to 2048 [ 75.489069][ T6191] loop2: detected capacity change from 0 to 1024 [ 75.575915][ T6191] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 75.597787][ T6191] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: comm syz.2.1134: inode #3: comm syz.2.1134: iget: illegal inode # [ 75.621919][ T6191] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.1134: error while reading EA inode 3 err=-117 [ 75.760885][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.837574][ T6208] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1140'. [ 75.968416][ T6226] loop4: detected capacity change from 0 to 512 [ 76.289486][ T6249] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1153'. [ 76.442747][ T3421] kernel read not supported for file bpf-prog (pid: 3421 comm: kworker/1:4) [ 76.519270][ T6274] loop1: detected capacity change from 0 to 1024 [ 76.557671][ T6274] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 76.577525][ T6274] ext4 filesystem being mounted at /234/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 76.636103][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 76.657731][ T6217] Set syz1 is full, maxelem 65536 reached [ 76.780157][ T6289] loop1: detected capacity change from 0 to 1024 [ 76.832617][ T6289] EXT4-fs: inline encryption not supported [ 76.844310][ T6289] EXT4-fs: Ignoring removed nobh option [ 76.850016][ T6289] EXT4-fs: Ignoring removed nobh option [ 76.857523][ T6289] EXT4-fs: Ignoring removed bh option [ 76.884302][ T6289] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 76.906567][ T6289] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4222: comm syz.1.1169: Allocating blocks 449-513 which overlap fs metadata [ 76.983490][ T6289] EXT4-fs (loop1): pa ffff8881076c37e0: logic 304, phys. 417, len 6 [ 76.991550][ T6289] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5465: group 0, free 1, pa_free 5 [ 77.036078][ T6300] loop2: detected capacity change from 0 to 512 [ 77.042863][ T6300] EXT4-fs: Ignoring removed i_version option [ 77.053415][ T6300] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 77.077503][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.089744][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.205712][ T6318] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 77.236795][ T6318] EXT4-fs (loop2): 1 truncate cleaned up [ 77.243050][ T6318] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 77.285875][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.162985][ T6363] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 78.517563][ T6371] EXT4-fs (loop4): 1 orphan inode deleted [ 78.543895][ T6371] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 78.641444][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.798201][ T6410] IPv6: NLM_F_CREATE should be specified when creating new route [ 78.806361][ T6410] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 78.813572][ T6410] IPv6: NLM_F_CREATE should be set when creating new route [ 79.307273][ T6433] xt_hashlimit: size too large, truncated to 1048576 [ 79.516141][ T28] kauditd_printk_skb: 20 callbacks suppressed [ 79.516156][ T28] audit: type=1400 audit(1772156746.119:9783): avc: denied { bind } for pid=6445 comm="syz.4.1237" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 79.591090][ T28] audit: type=1400 audit(1772156746.159:9784): avc: denied { setopt } for pid=6445 comm="syz.4.1237" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 79.930769][ T28] audit: type=1326 audit(1772156746.529:9785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6475 comm="syz.2.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6da4f9c799 code=0x7ffc0000 [ 79.984523][ T28] audit: type=1326 audit(1772156746.529:9786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6475 comm="syz.2.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6da4f9c799 code=0x7ffc0000 [ 80.044775][ T28] audit: type=1326 audit(1772156746.579:9787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6475 comm="syz.2.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f6da4f9c799 code=0x7ffc0000 [ 80.097392][ T28] audit: type=1326 audit(1772156746.579:9788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6475 comm="syz.2.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6da4f9c799 code=0x7ffc0000 [ 80.149377][ T28] audit: type=1326 audit(1772156746.579:9789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6475 comm="syz.2.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7f6da4f9c799 code=0x7ffc0000 [ 80.196165][ T28] audit: type=1326 audit(1772156746.579:9790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6475 comm="syz.2.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6da4f9c799 code=0x7ffc0000 [ 80.250669][ T28] audit: type=1326 audit(1772156746.579:9791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6475 comm="syz.2.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=432 compat=0 ip=0x7f6da4f9c799 code=0x7ffc0000 [ 80.297657][ T6488] set_capacity_and_notify: 5 callbacks suppressed [ 80.297671][ T6488] loop1: detected capacity change from 0 to 256 [ 80.308199][ T28] audit: type=1326 audit(1772156746.579:9792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6475 comm="syz.2.1250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6da4f9c799 code=0x7ffc0000 [ 80.425674][ T6492] netlink: 'syz.2.1258': attribute type 3 has an invalid length. [ 80.445599][ T6492] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.1258'. [ 80.561660][ T6501] loop2: detected capacity change from 0 to 1024 [ 80.568412][ T6501] EXT4-fs: inline encryption not supported [ 80.607679][ T6501] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 80.790452][ T6532] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1277'. [ 80.877167][ T6533] loop0: detected capacity change from 0 to 512 [ 81.043015][ T6533] EXT4-fs (loop0): 1 orphan inode deleted [ 81.072636][ T6547] loop3: detected capacity change from 0 to 256 [ 81.120527][ T6547] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 81.849123][ T6590] loop2: detected capacity change from 0 to 2048 [ 82.214341][ T6616] pimreg: entered allmulticast mode [ 82.229106][ T6616] pimreg: left allmulticast mode [ 82.342734][ T6623] IPv6: Can't replace route, no match found [ 82.540994][ T6643] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1324'. [ 82.619336][ T6650] loop2: detected capacity change from 0 to 1764 [ 82.777922][ T6646] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 82.795729][ T6646] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 82.909968][ T6683] capability: warning: `syz.3.1342' uses 32-bit capabilities (legacy support in use) [ 83.152552][ T6698] loop2: detected capacity change from 0 to 256 [ 83.181662][ T6698] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 83.190667][ T6698] FAT-fs (loop2): Filesystem has been set read-only [ 83.197324][ T6698] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 83.206489][ T6698] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 83.216514][ T6698] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 83.225416][ T6698] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 83.238439][ T6698] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 83.247497][ T6698] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 83.260845][ T6698] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 83.269866][ T6698] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 83.278990][ T6698] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 83.479009][ T6719] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1356'. [ 83.748125][ T6727] loop3: detected capacity change from 0 to 512 [ 83.806897][ T6727] ext4 filesystem being mounted at /221/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 83.949571][ T6750] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1369'. [ 83.974211][ T6750] netlink: 'syz.0.1369': attribute type 29 has an invalid length. [ 83.987146][ T6746] loop3: detected capacity change from 0 to 512 [ 83.994481][ T6750] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1369'. [ 84.085914][ T6746] EXT4-fs (loop3): 1 orphan inode deleted [ 84.150581][ T6761] loop2: detected capacity change from 0 to 128 [ 84.216929][ T6761] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 85.078261][ T28] kauditd_printk_skb: 11 callbacks suppressed [ 85.078275][ T28] audit: type=1326 audit(1772156751.679:9804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6763 comm="syz.3.1374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4a2d5c799 code=0x7fc00000 [ 85.279068][ T6800] netlink: 'syz.2.1391': attribute type 1 has an invalid length. [ 85.287032][ T6800] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1391'. [ 85.833061][ T28] audit: type=1400 audit(1772156752.439:9805): avc: denied { write } for pid=6807 comm="syz.1.1393" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 85.905498][ T6812] loop4: detected capacity change from 0 to 256 [ 86.220142][ T6822] netlink: 92 bytes leftover after parsing attributes in process `syz.2.1400'. [ 86.317965][ T6831] loop3: detected capacity change from 0 to 8192 [ 86.372314][ T28] audit: type=1400 audit(1772156752.969:9806): avc: denied { create } for pid=6835 comm="syz.3.1405" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1 [ 86.403911][ T28] audit: type=1400 audit(1772156753.009:9807): avc: denied { write } for pid=6835 comm="syz.3.1405" path="socket:[16390]" dev="sockfs" ino=16390 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1 [ 86.408693][ T6820] loop1: detected capacity change from 0 to 32768 [ 86.460116][ T28] audit: type=1400 audit(1772156753.059:9808): avc: denied { open } for pid=6838 comm="syz.2.1406" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 86.470681][ T4207] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 86.484704][ T4462] Bluetooth: hci0: command 0x1003 tx timeout [ 86.494271][ T28] audit: type=1400 audit(1772156753.059:9809): avc: denied { kernel } for pid=6838 comm="syz.2.1406" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 86.519648][ T6841] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1407'. [ 86.559444][ T28] audit: type=1400 audit(1772156753.149:9810): avc: denied { write } for pid=6838 comm="syz.2.1406" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 86.637080][ T28] audit: type=1326 audit(1772156753.149:9811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6838 comm="syz.2.1406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6da4f9c799 code=0x7ffc0000 [ 86.688151][ T28] audit: type=1326 audit(1772156753.149:9812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6838 comm="syz.2.1406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7f6da4f9c799 code=0x7ffc0000 [ 86.726073][ T28] audit: type=1326 audit(1772156753.149:9813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6838 comm="syz.2.1406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6da4f9c799 code=0x7ffc0000 [ 86.848832][ T6861] loop4: detected capacity change from 0 to 1024 [ 86.876046][ T6843] loop3: detected capacity change from 0 to 32768 [ 86.896224][ T6861] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 86.969137][ T6861] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 87.018194][ T41] Bluetooth: hci0: Frame reassembly failed (-84) [ 87.064843][ T6870] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 483 with error 28 [ 87.070718][ T6861] EXT4-fs (loop4): This should not happen!! Data will be lost [ 87.070718][ T6861] [ 87.084765][ T6870] EXT4-fs (loop4): This should not happen!! Data will be lost [ 87.084765][ T6870] [ 87.109557][ T6870] EXT4-fs (loop4): Total free blocks count 0 [ 87.123852][ T6870] EXT4-fs (loop4): Free/Dirty block details [ 87.138779][ T6861] EXT4-fs (loop4): Total free blocks count 0 [ 87.139488][ T6870] EXT4-fs (loop4): free_blocks=20480 [ 87.151125][ T6870] EXT4-fs (loop4): dirty_blocks=496 [ 87.156930][ T6870] EXT4-fs (loop4): Block reservation details [ 87.304098][ T6901] loop1: detected capacity change from 0 to 128 [ 87.328078][ T6901] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 87.361353][ T6901] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 87.934034][ T6948] SELinux: Context system_u:object_r:ppp_device_t:s0 is not valid (left unmapped). [ 88.018679][ T6953] loop0: detected capacity change from 0 to 512 [ 88.038985][ T6953] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 88.052243][ T6953] EXT4-fs (loop0): 1 truncate cleaned up [ 88.111845][ T6959] loop0: detected capacity change from 0 to 1024 [ 88.375149][ T6979] loop1: detected capacity change from 0 to 1024 [ 88.415759][ T6983] loop2: detected capacity change from 0 to 1024 [ 88.452965][ T6981] ext4 filesystem being mounted at /311/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 88.510200][ T6983] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 88.560999][ T6983] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 88.574897][ T6983] EXT4-fs (loop2): This should not happen!! Data will be lost [ 88.574897][ T6983] [ 88.594525][ T6983] EXT4-fs (loop2): Total free blocks count 0 [ 88.600528][ T6983] EXT4-fs (loop2): Free/Dirty block details [ 88.606829][ T6983] EXT4-fs (loop2): free_blocks=20480 [ 88.634516][ T7004] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 60 with error 28 [ 88.657080][ T6983] EXT4-fs (loop2): dirty_blocks=80 [ 88.666339][ T6983] EXT4-fs (loop2): Block reservation details [ 88.672676][ T6983] EXT4-fs (loop2): i_reserved_data_blocks=5 [ 88.678736][ T7004] EXT4-fs (loop2): This should not happen!! Data will be lost [ 88.678736][ T7004] [ 88.930554][ T30] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm kworker/u8:1: bg 0: block 345: padding at end of block bitmap is not set [ 88.950919][ T30] EXT4-fs (loop0): Remounting filesystem read-only [ 89.030677][ T4207] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 89.030903][ T4462] Bluetooth: hci0: command 0x1003 tx timeout [ 89.229300][ T7058] xt_hashlimit: size too large, truncated to 1048576 [ 89.727234][ T7099] SELinux: Context system_u:object_r: is not valid (left unmapped). [ 90.217520][ T7124] loop1: p1 p2 p3 < p5 p6 > [ 90.225731][ T7124] loop1: p2 size 16775168 extends beyond EOD, truncated [ 90.241516][ T7124] loop1: p5 start 4294970168 is beyond EOD, truncated [ 90.335682][ T4121] udevd[4121]: inotify_add_watch(7, /dev/loop1p6, 10) failed: No such file or directory [ 90.335720][ T3304] udevd[3304]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 90.351776][ T3303] udevd[3303]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory [ 90.366095][ T4120] udevd[4120]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory [ 90.737343][ T7156] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 90.743319][ T28] kauditd_printk_skb: 28 callbacks suppressed [ 90.743331][ T28] audit: type=1400 audit(1772156757.339:9842): avc: denied { bind } for pid=7157 comm="syz.1.1524" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 90.779797][ T7156] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 90.882503][ T28] audit: type=1326 audit(1772156757.479:9843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7171 comm="syz.3.1531" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe4a2d5c799 code=0x0 [ 91.331808][ T7195] set_capacity_and_notify: 9 callbacks suppressed [ 91.331824][ T7195] loop2: detected capacity change from 0 to 128 [ 91.344904][ T7195] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 91.378756][ T7197] loop1: detected capacity change from 0 to 2048 [ 91.385477][ T7195] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 91.687929][ T7230] loop0: detected capacity change from 0 to 1024 [ 91.711115][ T7230] EXT4-fs: Ignoring removed oldalloc option [ 91.731979][ T7230] EXT4-fs: Ignoring removed orlov option [ 91.750096][ T7230] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 91.899893][ T7235] loop4: detected capacity change from 0 to 2048 [ 91.974894][ T7250] batadv_slave_1: entered promiscuous mode [ 91.981347][ T7249] batadv_slave_1: left promiscuous mode [ 91.982416][ T7235] ext4 filesystem being mounted at /325/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 92.030450][ T7254] loop0: detected capacity change from 0 to 128 [ 92.076893][ T28] audit: type=1400 audit(1772156758.679:9844): avc: denied { mounton } for pid=7253 comm="syz.0.1565" path="/332/file0/bus" dev="loop0" ino=52 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=file permissive=1 [ 92.109582][ T28] audit: type=1400 audit(1772156758.679:9845): avc: denied { append } for pid=7253 comm="syz.0.1565" name="loop0" dev="devtmpfs" ino=100 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 92.137676][ T28] audit: type=1400 audit(1772156758.719:9846): avc: denied { unmount } for pid=3312 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1 [ 92.242368][ T7267] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1571'. [ 92.287462][ T7270] loop3: detected capacity change from 0 to 512 [ 92.296817][ T7267] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1571'. [ 92.315490][ T7270] EXT4-fs: Ignoring removed orlov option [ 92.329126][ T7270] EXT4-fs: Ignoring removed bh option [ 92.351010][ T7270] EXT4-fs: Ignoring removed oldalloc option [ 92.357103][ T7270] ext4: Unknown parameter 'smackfsfloor' [ 92.367376][ T7275] loop0: detected capacity change from 0 to 1024 [ 92.381105][ T7275] EXT4-fs: inline encryption not supported [ 92.403024][ T7275] EXT4-fs: Ignoring removed nobh option [ 92.421268][ T7275] EXT4-fs: Ignoring removed nobh option [ 92.439537][ T7275] EXT4-fs: Ignoring removed bh option [ 92.474664][ T7274] loop2: detected capacity change from 0 to 8192 [ 92.510262][ T7274] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 92.561482][ T7275] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4222: comm syz.0.1575: Allocating blocks 449-513 which overlap fs metadata [ 92.693583][ T7275] EXT4-fs (loop0): pa ffff8881076c37e0: logic 304, phys. 417, len 6 [ 92.701650][ T7275] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5465: group 0, free 1, pa_free 5 [ 92.712025][ T7286] loop3: detected capacity change from 0 to 2048 [ 92.715100][ T30] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm kworker/u8:1: bg 0: block 345: padding at end of block bitmap is not set [ 92.734592][ T30] EXT4-fs (loop4): Remounting filesystem read-only [ 92.924304][ T7300] SELinux: policydb magic number 0x0 does not match expected magic number 0xf97cff8c [ 92.941812][ T7300] SELinux: failed to load policy [ 92.947293][ T28] audit: type=1400 audit(1772156759.549:9847): avc: denied { read } for pid=7301 comm="syz.3.1587" name="ptp0" dev="devtmpfs" ino=247 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 92.978472][ T28] audit: type=1400 audit(1772156759.549:9848): avc: denied { open } for pid=7301 comm="syz.3.1587" path="/dev/ptp0" dev="devtmpfs" ino=247 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 93.042751][ T7307] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1598'. [ 93.075469][ T28] audit: type=1400 audit(1772156759.679:9849): avc: denied { getopt } for pid=7310 comm="syz.0.1589" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 93.218748][ T7320] xt_hashlimit: size too large, truncated to 1048576 [ 93.927770][ T7351] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1607'. [ 94.016124][ T7358] loop1: detected capacity change from 0 to 2048 [ 94.221604][ T7381] netlink: 'syz.1.1613': attribute type 3 has an invalid length. [ 94.277759][ T7386] netlink: 104 bytes leftover after parsing attributes in process `syz.3.1616'. [ 94.297155][ T28] audit: type=1400 audit(1772156760.879:9850): avc: denied { nlmsg_read } for pid=7385 comm="syz.3.1616" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 94.310880][ T7388] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1618'. [ 94.376291][ T7328] Set syz1 is full, maxelem 65536 reached [ 94.468548][ T7404] netlink: 'syz.1.1623': attribute type 4 has an invalid length. [ 94.497347][ T28] audit: type=1400 audit(1772156761.099:9851): avc: denied { mount } for pid=7405 comm="syz.3.1625" name="/" dev="hugetlbfs" ino=17105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1 [ 94.627239][ T7417] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1628'. [ 94.836488][ T7436] FAT-fs (loop0): error, corrupted file size (i_pos 51, 9216) [ 94.844094][ T7436] FAT-fs (loop0): error, corrupted file size (i_pos 51, 8960) [ 94.851655][ T7436] FAT-fs (loop0): error, corrupted file size (i_pos 51, 8960) [ 94.859140][ T7436] FAT-fs (loop0): error, corrupted file size (i_pos 51, 8960) [ 94.875985][ T7436] FAT-fs (loop0): error, corrupted file size (i_pos 51, 8960) [ 95.766843][ T7471] geneve1: entered promiscuous mode [ 95.901380][ T7445] Set syz1 is full, maxelem 65536 reached [ 95.940366][ T28] kauditd_printk_skb: 7 callbacks suppressed [ 95.940380][ T28] audit: type=1400 audit(1772156762.539:9859): avc: denied { read } for pid=7478 comm="syz.3.1656" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 96.031075][ T28] audit: type=1400 audit(1772156762.629:9860): avc: denied { read open } for pid=7485 comm="syz.0.1659" path="/" dev="configfs" ino=2043 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 96.136614][ T7494] ext4 filesystem being mounted at /285/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 96.168426][ T28] audit: type=1400 audit(1772156762.769:9861): avc: denied { append } for pid=7493 comm="syz.3.1663" name="file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 96.193030][ T7494] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 96.207798][ T7494] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 2 with max blocks 30 with error 28 [ 96.221703][ T7494] EXT4-fs (loop3): This should not happen!! Data will be lost [ 96.221703][ T7494] [ 96.232198][ T7494] EXT4-fs (loop3): Total free blocks count 0 [ 96.238184][ T7494] EXT4-fs (loop3): Free/Dirty block details [ 96.252279][ T7504] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1666'. [ 96.261868][ T7503] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1666'. [ 96.295929][ T7494] EXT4-fs (loop3): free_blocks=65280 [ 96.303037][ T7494] EXT4-fs (loop3): dirty_blocks=31 [ 96.317669][ T28] audit: type=1400 audit(1772156762.919:9862): avc: denied { sys_module } for pid=7508 comm="syz.4.1669" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 96.343290][ T7494] EXT4-fs (loop3): Block reservation details [ 96.349355][ T7494] EXT4-fs (loop3): i_reserved_data_blocks=31 [ 96.387259][ T7494] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 2 with max blocks 243 with error 28 [ 96.393648][ T28] audit: type=1400 audit(1772156762.979:9863): avc: denied { read } for pid=7515 comm="syz.4.1670" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 96.431381][ T7494] EXT4-fs (loop3): This should not happen!! Data will be lost [ 96.431381][ T7494] [ 96.490843][ T3327] EXT4-fs unmount: 34 callbacks suppressed [ 96.547286][ T28] audit: type=1400 audit(1772156763.149:9864): avc: denied { setopt } for pid=7532 comm="syz.4.1677" lport=60131 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1 [ 96.577999][ T28] audit: type=1400 audit(1772156763.149:9865): avc: denied { connect } for pid=7532 comm="syz.4.1677" lport=60131 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1 [ 96.608614][ T28] audit: type=1400 audit(1772156763.149:9866): avc: denied { name_connect } for pid=7532 comm="syz.4.1677" dest=20000 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1 [ 96.646275][ T7537] sctp: [Deprecated]: syz.4.1680 (pid 7537) Use of int in maxseg socket option. [ 96.646275][ T7537] Use struct sctp_assoc_value instead [ 96.682793][ T7541] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 96.694555][ T7541] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 96.783904][ T7552] set_capacity_and_notify: 4 callbacks suppressed [ 96.783922][ T7552] loop4: detected capacity change from 0 to 512 [ 96.830255][ T7552] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 96.843272][ T7552] ext4 filesystem being mounted at /343/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 96.858982][ T7552] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 96.873663][ T7552] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 2 with max blocks 30 with error 28 [ 96.882389][ T28] audit: type=1400 audit(1772156763.489:9867): avc: denied { unmount } for pid=3327 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 96.886036][ T7552] EXT4-fs (loop4): This should not happen!! Data will be lost [ 96.886036][ T7552] [ 96.886053][ T7552] EXT4-fs (loop4): Total free blocks count 0 [ 96.886066][ T7552] EXT4-fs (loop4): Free/Dirty block details [ 96.886078][ T7552] EXT4-fs (loop4): free_blocks=65280 [ 96.932792][ T7552] EXT4-fs (loop4): dirty_blocks=31 [ 96.937918][ T7552] EXT4-fs (loop4): Block reservation details [ 96.945242][ T7552] EXT4-fs (loop4): i_reserved_data_blocks=31 [ 96.960290][ T7552] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 2 with max blocks 243 with error 28 [ 97.008282][ T28] audit: type=1400 audit(1772156763.609:9868): avc: denied { read write } for pid=7564 comm="syz.3.1691" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 97.033393][ T7567] loop1: detected capacity change from 0 to 512 [ 97.033707][ T7565] deleting an unspecified loop device is not supported. [ 97.047188][ T7567] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 97.078166][ T7567] EXT4-fs error (device loop1): ext4_acquire_dquot:7001: comm syz.1.1692: Failed to acquire dquot type 1 [ 97.089666][ T7567] loop1: lost filesystem error report for type 5 error -5 [ 97.090319][ T7567] EXT4-fs (loop1): 1 truncate cleaned up [ 97.097528][ C0] EXT4-fs (loop1): error count since last fsck: 1 [ 97.097557][ C0] EXT4-fs (loop1): last error at time 1772156763: ext4_acquire_dquot:7001 [ 97.119120][ T7567] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 97.170236][ T3311] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0008-000000000000. [ 97.272170][ T7588] loop4: detected capacity change from 0 to 512 [ 97.295062][ T7588] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 97.338086][ T7597] loop3: detected capacity change from 0 to 1024 [ 97.352864][ T7599] netlink: 116 bytes leftover after parsing attributes in process `syz.2.1706'. [ 97.355544][ T7588] ext4 filesystem being mounted at /348/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 97.389581][ T7597] EXT4-fs: inline encryption not supported [ 97.395889][ T7597] EXT4-fs: Ignoring removed bh option [ 97.401959][ T7603] netlink: 'syz.1.1708': attribute type 4 has an invalid length. [ 97.415289][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 97.441086][ T7597] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 97.493049][ T7615] loop4: detected capacity change from 0 to 512 [ 97.507648][ T7615] ext4: Bad value for 'barrier' [ 97.539957][ T7617] netlink: 'syz.2.1715': attribute type 4 has an invalid length. [ 97.547911][ T7617] netlink: 'syz.2.1715': attribute type 4 has an invalid length. [ 97.562985][ T7617] netlink: 'syz.2.1715': attribute type 4 has an invalid length. [ 97.571376][ T7621] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1717'. [ 97.584451][ T3327] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 97.599272][ T7617] netlink: 'syz.2.1715': attribute type 4 has an invalid length. [ 97.608005][ T7617] netlink: 'syz.2.1715': attribute type 4 has an invalid length. [ 97.616218][ T7617] netlink: 'syz.2.1715': attribute type 4 has an invalid length. [ 97.624274][ T7617] netlink: 'syz.2.1715': attribute type 4 has an invalid length. [ 97.738983][ T7631] loop4: detected capacity change from 0 to 8192 [ 97.820850][ T7631] ================================================================== [ 97.828936][ T7631] BUG: KCSAN: data-race in __xa_clear_mark / xas_find_marked [ 97.836292][ T7631] [ 97.838601][ T7631] read-write to 0xffff88811b0fd6b8 of 8 bytes by interrupt on cpu 0: [ 97.846639][ T7631] __xa_clear_mark+0xf5/0x1e0 [ 97.851299][ T7631] __folio_end_writeback+0xf4/0x360 [ 97.856480][ T7631] folio_end_writeback_no_dropbehind+0x6d/0x1d0 [ 97.862730][ T7631] folio_end_writeback+0x1c/0x70 [ 97.867644][ T7631] mpage_write_end_io+0x270/0x630 [ 97.872649][ T7631] bio_endio+0x38a/0x420 [ 97.876873][ T7631] blk_update_request+0x338/0x740 [ 97.881905][ T7631] blk_mq_end_request+0x26/0x50 [ 97.886746][ T7631] lo_complete_rq+0x98/0x140 [ 97.891322][ T7631] blk_done_softirq+0x77/0xb0 [ 97.895980][ T7631] handle_softirqs+0xb9/0x2a0 [ 97.900637][ T7631] run_ksoftirqd+0x1c/0x30 [ 97.905043][ T7631] smpboot_thread_fn+0x32a/0x510 [ 97.909965][ T7631] kthread+0x22a/0x280 [ 97.914097][ T7631] ret_from_fork+0x150/0x360 [ 97.918668][ T7631] ret_from_fork_asm+0x1a/0x30 [ 97.923411][ T7631] [ 97.925712][ T7631] read to 0xffff88811b0fd6b8 of 8 bytes by task 7631 on cpu 1: [ 97.933233][ T7631] xas_find_marked+0x213/0x620 [ 97.937998][ T7631] filemap_get_folios_tag+0xfa/0x510 [ 97.943262][ T7631] filemap_write_and_wait_range+0x1f5/0x370 [ 97.949140][ T7631] direct_write_fallback+0x73/0x100 [ 97.954321][ T7631] __generic_file_write_iter+0xfd/0x120 [ 97.959847][ T7631] generic_file_write_iter+0x8d/0x310 [ 97.965199][ T7631] do_iter_readv_writev+0x4fd/0x5a0 [ 97.970377][ T7631] vfs_writev+0x2e1/0x900 [ 97.974776][ T7631] __se_sys_pwritev2+0xfc/0x1c0 [ 97.979613][ T7631] __x64_sys_pwritev2+0x67/0x80 [ 97.984443][ T7631] x64_sys_call+0xe07/0x3020 [ 97.989031][ T7631] do_syscall_64+0x12c/0x370 [ 97.993605][ T7631] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 97.999606][ T7631] [ 98.001919][ T7631] value changed: 0x0000000003fe0000 -> 0x0000000003f00000 [ 98.009030][ T7631] [ 98.011337][ T7631] Reported by Kernel Concurrency Sanitizer on: [ 98.017472][ T7631] CPU: 1 UID: 0 PID: 7631 Comm: syz.4.1720 Tainted: G W syzkaller #0 PREEMPT(full) [ 98.028309][ T7631] Tainted: [W]=WARN [ 98.032091][ T7631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 98.042126][ T7631] ================================================================== [ 98.150652][ T4207] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 98.150662][ T4462] Bluetooth: hci0: command 0x1003 tx timeout