last executing test programs: 1m2.550633584s ago: executing program 1 (id=416): syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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") r0 = socket$netlink(0x10, 0x3, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0}, &(0x7f00000000c0)=0xc) quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f0000000040)=@loop={'/dev/loop', 0x0}, r1, &(0x7f0000000100)={0xfffffffffffffffd, 0x100000003, 0x2000000000000000, 0x2, 0x9, 0x7fff, 0x7a, 0xfffffffffffffffa}) 1m2.420599327s ago: executing program 1 (id=420): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, r1, 0x80de02bd3ca0bfdb}, 0x14}}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), r0) 1m2.381510031s ago: executing program 1 (id=421): r0 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000180)=0x80000004, 0x4) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x33, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x6}]}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x44, &(0x7f0000000000)={0x0, 0x0}, 0x10) 1m2.345539584s ago: executing program 1 (id=423): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18) mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, 0x8404, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x2, @perf_bp={&(0x7f0000000080)}, 0x400, 0x0, 0x0, 0x0, 0x0, 0x1fffffff, 0x0, 0x0, 0x40, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 1m2.234701186s ago: executing program 1 (id=430): mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30) mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0) mount$bpf(0x0, &(0x7f0000000ac0)='./file0/../file0\x00', 0x0, 0x44000, 0x0) 1m2.174141252s ago: executing program 1 (id=436): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) 47.154338874s ago: executing program 32 (id=436): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x4, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) 10.554784058s ago: executing program 3 (id=2441): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) rt_tgsigqueueinfo(0x0, 0x0, 0x11, 0x0) 10.13534569s ago: executing program 3 (id=2460): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b000000080000000c0000000300000001000000", @ANYRES32], 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38) syz_mount_image$msdos(&(0x7f0000000180), &(0x7f00000006c0)='.\x00', 0x1a4243c, &(0x7f0000000700)=ANY=[@ANYRES16, @ANYRESDEC, @ANYRESHEX, @ANYRES8, @ANYRES32, @ANYRES8, @ANYRES64, @ANYRES8=0x0, @ANYRES64, @ANYRES8], 0x0, 0x0, &(0x7f0000000080)) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000200)={&(0x7f0000000180), &(0x7f0000000440)=""/179, &(0x7f0000000500), &(0x7f00000006c0), 0x3, r0}, 0x38) 10.051330708s ago: executing program 3 (id=2463): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000880)={'bridge_slave_0\x00', 0x0}) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@bridge_delneigh={0x28, 0x1e, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x0, 0x4}, [@NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}]}, 0x28}}, 0x0) 10.03149971s ago: executing program 3 (id=2467): syz_mount_image$iso9660(&(0x7f0000000dc0), &(0x7f0000002380)='./file1\x00', 0x3a0cc0a, &(0x7f00000023c0)=ANY=[@ANYBLOB='hide,dmode=0x0000000000000005,map=normal,map=normal,session=0x000000000000000e,overriderockperm,showassoc,nocompress,utf8,map=normal,session=0x0000000000000006,map=acorn,mode=0x0000000000000086,uid=', @ANYRESDEC=0x0, @ANYBLOB='\x00\x00', @ANYRESDEC, @ANYRESDEC, @ANYRES8, @ANYRESDEC], 0x43, 0xa02, &(0x7f0000003640)="$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") mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0) mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0) mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0) 9.948690448s ago: executing program 3 (id=2471): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x3, &(0x7f0000000000)=0x1, 0x4) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x23, @empty, 0x23}, 0x1c) 9.682378004s ago: executing program 3 (id=2487): syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[], 0x4, 0x127d, &(0x7f00000011c0)="$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") r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x94) ftruncate(r0, 0x2007ffc) sendfile(r0, r0, 0x0, 0x100000000) 9.655494127s ago: executing program 33 (id=2487): syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[], 0x4, 0x127d, &(0x7f00000011c0)="$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") r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x94) ftruncate(r0, 0x2007ffc) sendfile(r0, r0, 0x0, 0x100000000) 1.276501465s ago: executing program 5 (id=2787): symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00') r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x18) mount$9p_unix(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='.\x00', 0x0, 0xa008, 0x0) 1.213964221s ago: executing program 5 (id=2790): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000001"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000021000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x18) getgroups(0x0, 0x0) 1.108449821s ago: executing program 5 (id=2793): r0 = inotify_init() creat(&(0x7f0000000340)='./file0\x00', 0xd931d3864d39dcca) inotify_add_watch(r0, &(0x7f0000000200)='./file0\x00', 0x8) acct(&(0x7f00000001c0)='./file0\x00') 1.083640764s ago: executing program 5 (id=2798): r0 = socket$kcm(0xa, 0x5, 0x0) perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x30046, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xfffffffffffffffe, 0x0, 0x9, 0x0, 0x0, 0x400}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$inet(r0, &(0x7f0000000f00)={&(0x7f00000000c0)={0x2, 0x0, @rand_addr=0x64010102}, 0x10, &(0x7f0000000080)=[{&(0x7f0000000100)='f', 0x1}], 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="20000000000000008400000008"], 0x20}, 0x0) sendmsg$inet(r0, &(0x7f0000000f00)={&(0x7f0000000180)={0x2, 0x0, @dev}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000040)='&', 0x1}], 0x1, &(0x7f0000000000)=ANY=[], 0x20}, 0x0) 671.773564ms ago: executing program 4 (id=2826): perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x34120, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext, 0x4008, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x401}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000300)={0x1, 0x0, 0x0, 'queue1\x00'}) write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick=0xfd, {}, {}, @raw32}], 0xffc8) 401.727491ms ago: executing program 4 (id=2838): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000840)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f0000000bc0)="0100000200373a4541062101a59ea940d2cb0b36b8f5020000a00000050000000000eb000000a5e5be21c44e328e68f3922af831e4e51bfb30f7788fd57e51bc464355bd646d037ccc16ddb08a7b3a697aedb66ddd793acf37119e61f502d8bbb016f701890700000068d945af468c1c9090c76906b94e0f27761c75e58c82da54d010078660684a4106855beaf5e813ed18aa4acabb5bee7f082d24a16b01fc91471eba59152e716af8776ab90ac48bcbee6570df22513808ecab7a9680aa613a56aa11bfa73af4c4e94b5cfc855f0e910186d7e68ac24f8b125140ac5f7f4819168ce1c25550c6773b41011999d8d9827757d96c5e8aa4617cc54c5e67060a92661f84e698d1fe3cee10a85882cbecb29f2a22535ac50e64d95ecbab66f54373b94475e05b79a0a61bc2ae1e", 0x12d, r1) 360.317875ms ago: executing program 4 (id=2841): unshare(0x6a040000) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000d80)={&(0x7f0000000000)=ANY=[@ANYBLOB="9beb01031800000000000000000000008000000002"], 0x0, 0x1a}, 0x28) r0 = socket$kcm(0xa, 0x5, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8916, &(0x7f0000000000)={r0}) 359.866735ms ago: executing program 6 (id=2842): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="19000000040000000400000002"], 0x50) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r0, &(0x7f0000001380), &(0x7f0000000000)=""/10, 0x2}, 0x20) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000000c0)={r0, &(0x7f0000000880)="f2", &(0x7f0000000000)=""/10, 0x2}, 0x20) bpf$PROG_LOAD(0x2, &(0x7f00000001c0)={0x3, 0x3, &(0x7f0000000100)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 335.096667ms ago: executing program 0 (id=2844): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x2, &(0x7f0000006680)) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='task\x00') getdents(r0, &(0x7f0000000100)=""/49, 0x24) getdents64(r0, 0x0, 0x43) 310.21443ms ago: executing program 6 (id=2845): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b00)={0x11, 0x5, &(0x7f0000000380)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x801}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0) 256.543545ms ago: executing program 0 (id=2847): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="701500003c0007010300000000000000017c0000040042800c0003"], 0x1570}, 0x1, 0x0, 0x0, 0x20000000}, 0xc800) 256.253015ms ago: executing program 6 (id=2849): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000100)=0x9) ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000000)={0xfff, 0x5, 0xffffffff, 0xc9, 0xe, "882c4b2a1592b82695b34350e5af8d6e30f6d1"}) ioctl$TCSETS(r0, 0x5402, &(0x7f0000000080)={0x400, 0x3, 0x2, 0x10000, 0x16, "44000000000000000000001000"}) 239.521587ms ago: executing program 2 (id=2850): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x18) r1 = io_uring_setup(0x4d3f, &(0x7f0000000200)={0x0, 0x297a, 0x40, 0x80003, 0x6}) io_uring_register$IORING_REGISTER_RESTRICTIONS(r1, 0xb, &(0x7f0000000480), 0x66) 237.652827ms ago: executing program 6 (id=2851): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0xb9}, 0x18) mount$9p_tcp(0x0, &(0x7f0000000680)='.\x00', &(0x7f00000006c0), 0x8010, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=tcp']) 225.649968ms ago: executing program 0 (id=2852): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000000)='kmem_cache_free\x00', r0, 0x0, 0xd4}, 0x18) r1 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0) writev(r1, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}], 0x1) 217.914739ms ago: executing program 5 (id=2853): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10) clock_gettime(0x0, &(0x7f0000000200)) 190.341421ms ago: executing program 6 (id=2854): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB='p\x00'], 0x70}, 0x1, 0x0, 0x0, 0x4000080}, 0x20048004) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) r0 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, 0x0, &(0x7f0000000040)) 142.262586ms ago: executing program 0 (id=2855): unshare(0x2a020400) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) close(r0) vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)='=', 0x1}], 0x1, 0x0) 142.098106ms ago: executing program 2 (id=2856): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x0, &(0x7f0000000100)}) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000280)={'veth0_macvtap\x00', &(0x7f0000000040)=@ethtool_sfeatures={0x3b, 0x1, [{0x200, 0x5}]}}) r0 = socket(0xa, 0x3, 0x87) ioctl$sock_inet6_tcp_SIOCINQ(r0, 0x890b, &(0x7f0000000000)) 141.975156ms ago: executing program 5 (id=2857): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x0, &(0x7f0000000100)={[{@init_itable_val={'init_itable', 0x3d, 0x1}}, {@errors_remount}, {@dioread_lock}, {@barrier}, {@bsdgroups}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2000}}]}, 0x1, 0x783, &(0x7f0000001340)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000000)={0xffffffffffffff23, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab) fadvise64(r0, 0x807f, 0x1000000, 0x4) 141.831386ms ago: executing program 0 (id=2858): r0 = socket(0x2, 0x3, 0xff) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000040)=0x40a0, 0x4) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10) sendmmsg$inet6(r0, &(0x7f0000003900)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000100)="0cd1d5745c1b2ba15d48bd5398901feb3b2878ae4f0b3a3509c6d1fbe30137dc00d75ca3f93e724f9b6eb1d1090147ae1cab571c7e5ccb721fc95d8bb36294ad24fbbe197c48d759e3a4e9d001eb37a2c1e8dbea99f46c7fd5a34ae5fed2343e0653c194a0c28676ceb3a9cce9519d806250a83b9855b81c70b642cacd", 0x7d}, {0x0}], 0x2}}], 0x1, 0x4000080) 96.571501ms ago: executing program 6 (id=2859): syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x1f0719, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0xffff, 0x8000000}, 0x6025, 0x4005, 0xb, 0x3, 0x2, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa) unshare(0x2040400) pselect6(0x40, &(0x7f0000000100)={0x0, 0x0, 0xffffffffffffffff, 0x0, 0x800, 0x2, 0x80000000000004, 0x6}, 0x0, &(0x7f0000000400)={0x1f, 0x0, 0x800000000000, 0xfffffffffffffffe, 0x1000000000, 0xfffffffffffffffc, 0xfffffffffffffffe}, &(0x7f0000000280)={0x0, 0x3938700}, 0x0) 96.380251ms ago: executing program 0 (id=2860): r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) syz_usb_disconnect(r0) syz_usb_connect$cdc_ncm(0x6, 0x6e, &(0x7f0000000540)={{0x12, 0x1, 0x110, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x11, 0x20, 0x5, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0xdf}, {0xd, 0x24, 0xf, 0x1, 0x1, 0x0, 0x3, 0x5}, {0x6, 0x24, 0x1a, 0x401, 0x14}}, {{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x6, 0x4, 0x5}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x400, 0xf1, 0x2, 0x9}}, {{0x9, 0x5, 0x3, 0x2, 0x20, 0x26, 0x0, 0x7}}}}}}}]}}, 0x0) ioctl$EVIOCRMFF(r0, 0x41015500, 0x0) 96.256181ms ago: executing program 4 (id=2861): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10) capget(&(0x7f0000000180)={0x19980330}, 0x0) 96.051581ms ago: executing program 2 (id=2862): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a400020095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xc}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="3801000010000100feffffff00010000fe88000000000000e6ffffffffffff00fc0100000000000000000000000000010001071c4e230005000000003a000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ff020000000000000000000000000001000004d46c000000ff02000000000000000000000000000100000000000000009201000000000000a39b000000000000ffff0000000000001c250800000000000200000000000000fcffffffffffffff0000000000000000ffffffffffffffff00000000000000001f00000000000000feffffffffffffff02000000fcffffff000000002abd700000350000020001002000000000000000480003"], 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x0) 74.383343ms ago: executing program 2 (id=2863): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000b00)='kmem_cache_free\x00', r0, 0x0, 0x1034}, 0x18) utime(&(0x7f00000002c0)='./file0\x00', 0x0) 70.520273ms ago: executing program 4 (id=2864): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x18) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000004c0)="d8000000180081064e81f782db4cb904021d0800fd007c05e8fe50a10a000400014002020c600e41b0000900ac00070701000000160012000a00ff150048035c3b61c1d67f6f94007134cf6efb8000a007a290457f01a7cee4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5ae24e25ccca9e00360db79826835d3a71d95667daffffffffff1f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5b7276505de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9000001008af26c8b7b55f4d2a6823a45", 0xd8}], 0x1}, 0x0) 22.064158ms ago: executing program 2 (id=2865): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="07000000040000000802000001"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000021000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x18) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50) 21.594668ms ago: executing program 4 (id=2866): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70300001d000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000080), 0x64, 0x52b, &(0x7f0000000f80)="$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") 0s ago: executing program 2 (id=2867): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x1, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) open_tree(0xffffffffffffff9c, 0x0, 0x1) kernel console output (not intermixed with test programs): n range 15-35 [ 70.618503][ T6132] loop4: detected capacity change from 0 to 512 [ 70.623034][ T6130] SELinux: failed to load policy [ 70.678827][ T6132] EXT4-fs: Ignoring removed nobh option [ 70.684860][ T6136] loop0: detected capacity change from 0 to 1024 [ 70.691346][ T6132] EXT4-fs: Ignoring removed orlov option [ 70.694085][ T6136] EXT4-fs: Ignoring removed orlov option [ 70.697581][ T6132] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 70.714363][ T6140] netlink: 'syz.2.1117': attribute type 2 has an invalid length. [ 70.723457][ T6132] EXT4-fs (loop4): 1 truncate cleaned up [ 70.730996][ T6136] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 70.747516][ T6132] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 70.806547][ T3317] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.816469][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.892876][ T6161] futex_wake_op: syz.2.1125 tries to shift op by -1; fix this program [ 70.904661][ T6163] sd 0:0:1:0: device reset [ 70.966197][ T6170] loop5: detected capacity change from 0 to 512 [ 70.975154][ T6170] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 70.988443][ T6167] loop2: detected capacity change from 0 to 512 [ 70.997007][ T6167] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 71.007418][ T6170] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #16: comm syz.5.1129: invalid indirect mapped block 4294967295 (level 0) [ 71.053849][ T6170] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #16: comm syz.5.1129: invalid indirect mapped block 4294967295 (level 1) [ 71.054429][ T6167] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.1128: Failed to acquire dquot type 1 [ 71.104146][ T6170] EXT4-fs (loop5): 1 orphan inode deleted [ 71.110013][ T6170] EXT4-fs (loop5): 1 truncate cleaned up [ 71.120184][ T6167] EXT4-fs (loop2): 1 truncate cleaned up [ 71.132105][ T6167] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 71.147085][ T6170] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 71.172711][ T6170] EXT4-fs error (device loop5): htree_dirblock_to_tree:1080: inode #2: block 13: comm syz.5.1129: bad entry in directory: rec_len is too small for name_len - offset=12, inode=2, rec_len=12, size=1024 fake=0 [ 71.200884][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.226424][ T5676] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.291824][ T6198] bond1: option lacp_active: mode dependency failed, not supported in mode balance-rr(0) [ 71.307012][ T6198] bond1 (unregistering): Released all slaves [ 71.337175][ T6204] lo speed is unknown, defaulting to 1000 [ 71.344342][ T6204] lo speed is unknown, defaulting to 1000 [ 71.350337][ T6204] lo speed is unknown, defaulting to 1000 [ 71.416260][ T6204] infiniband sz1: set active [ 71.421006][ T6204] infiniband sz1: added lo [ 71.425721][ T1037] lo speed is unknown, defaulting to 1000 [ 71.441114][ T6204] RDS/IB: sz1: added [ 71.448781][ T6204] lo speed is unknown, defaulting to 1000 [ 71.475945][ T6214] loop3: detected capacity change from 0 to 128 [ 71.498588][ T6204] lo speed is unknown, defaulting to 1000 [ 71.536482][ T6204] lo speed is unknown, defaulting to 1000 [ 71.573632][ T6204] lo speed is unknown, defaulting to 1000 [ 71.604420][ T6218] loop3: detected capacity change from 0 to 128 [ 71.611223][ T6204] lo speed is unknown, defaulting to 1000 [ 71.689558][ T6222] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1160'. [ 71.757571][ T6230] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6) [ 71.764189][ T6230] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 71.771780][ T6230] vhci_hcd vhci_hcd.0: Device attached [ 71.793176][ T6232] vhci_hcd: connection closed [ 71.793463][ T3861] vhci_hcd: stop threads [ 71.802427][ T3861] vhci_hcd: release socket [ 71.806904][ T3861] vhci_hcd: disconnect device [ 71.860152][ T6245] netlink: 31 bytes leftover after parsing attributes in process `syz.3.1161'. [ 71.869256][ T6245] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1161'. [ 71.964029][ T6253] rdma_rxe: rxe_newlink: failed to add lo [ 72.066226][ T6267] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1171'. [ 72.110796][ T6273] netlink: 'syz.3.1173': attribute type 1 has an invalid length. [ 72.118641][ T6273] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1173'. [ 72.368139][ T6290] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6) [ 72.374697][ T6290] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 72.382182][ T6290] vhci_hcd vhci_hcd.0: Device attached [ 72.410996][ T6293] vhci_hcd: connection closed [ 72.411184][ T3861] vhci_hcd: stop threads [ 72.420295][ T3861] vhci_hcd: release socket [ 72.424870][ T3861] vhci_hcd: disconnect device [ 72.621707][ T6324] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1197'. [ 72.821018][ T6354] loop2: detected capacity change from 0 to 1764 [ 73.060157][ T6371] loop0: detected capacity change from 0 to 512 [ 73.095342][ T6371] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 73.358342][ T6391] netlink: 'syz.2.1226': attribute type 5 has an invalid length. [ 73.518762][ T29] kauditd_printk_skb: 42 callbacks suppressed [ 73.518781][ T29] audit: type=1400 audit(2000000005.740:2942): avc: denied { setopt } for pid=6410 comm="syz.4.1236" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 73.565258][ T29] audit: type=1400 audit(2000000005.790:2943): avc: denied { create } for pid=6416 comm="syz.4.1240" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 73.592538][ T29] audit: type=1400 audit(2000000005.810:2944): avc: denied { read } for pid=6416 comm="syz.4.1240" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 73.596419][ T6421] loop2: detected capacity change from 0 to 128 [ 73.651187][ T29] audit: type=1400 audit(2000000005.870:2945): avc: denied { read } for pid=6418 comm="syz.0.1239" name="file0" dev="tmpfs" ino=1458 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 73.673617][ T29] audit: type=1400 audit(2000000005.870:2946): avc: denied { open } for pid=6418 comm="syz.0.1239" path="/281/file0" dev="tmpfs" ino=1458 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 73.747804][ T29] audit: type=1400 audit(2000000005.930:2947): avc: denied { remount } for pid=6418 comm="syz.0.1239" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 73.767726][ T29] audit: type=1400 audit(2000000005.930:2948): avc: denied { ioctl } for pid=6418 comm="syz.0.1239" path="/281/file0" dev="tmpfs" ino=1458 ioctlcmd=0x125d scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 73.792221][ T29] audit: type=1326 audit(2000000005.950:2949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6428 comm="syz.4.1245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4b40cefc9 code=0x7ffc0000 [ 73.815786][ T29] audit: type=1326 audit(2000000005.950:2950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6428 comm="syz.4.1245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd4b40cefc9 code=0x7ffc0000 [ 73.839206][ T29] audit: type=1326 audit(2000000005.950:2951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6428 comm="syz.4.1245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4b40cefc9 code=0x7ffc0000 [ 73.897105][ T6440] loop2: detected capacity change from 0 to 512 [ 73.905877][ T6440] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 73.930724][ T6442] loop3: detected capacity change from 0 to 512 [ 73.937232][ T6440] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters [ 73.952082][ T6440] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 73.971581][ T6442] EXT4-fs (loop3): orphan cleanup on readonly fs [ 73.978554][ T6440] EXT4-fs (loop2): 1 truncate cleaned up [ 73.979976][ T6442] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1251: bg 0: block 248: padding at end of block bitmap is not set [ 74.001011][ T6442] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.1251: Failed to acquire dquot type 1 [ 74.012892][ T6440] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.012945][ T6442] EXT4-fs (loop3): 1 truncate cleaned up [ 74.031906][ T6442] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 74.071775][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.100052][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.205804][ T6461] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1258'. [ 74.464670][ T6490] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6) [ 74.471303][ T6490] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 74.479162][ T6490] vhci_hcd vhci_hcd.0: Device attached [ 74.487608][ T6493] vhci_hcd: connection closed [ 74.487859][ T3861] vhci_hcd: stop threads [ 74.496950][ T3861] vhci_hcd: release socket [ 74.501564][ T3861] vhci_hcd: disconnect device [ 74.535525][ T6498] loop4: detected capacity change from 0 to 1024 [ 74.542324][ T6498] EXT4-fs: Ignoring removed oldalloc option [ 74.548565][ T6498] EXT4-fs: Ignoring removed orlov option [ 74.557286][ T6498] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 74.587999][ T6498] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.607801][ T6498] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 15: block 433:freeing already freed block (bit 27); block bitmap corrupt. [ 74.632788][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.743486][ T3731] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 74.845376][ T6524] netlink: 'syz.0.1285': attribute type 1 has an invalid length. [ 75.460100][ T6557] loop3: detected capacity change from 0 to 128 [ 75.466551][ T6558] loop2: detected capacity change from 0 to 512 [ 75.474019][ T6558] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 75.485114][ T6558] EXT4-fs (loop2): 1 truncate cleaned up [ 75.491305][ T6558] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 75.520830][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.556532][ T6563] loop2: detected capacity change from 0 to 512 [ 75.563157][ T6563] EXT4-fs: Ignoring removed nobh option [ 75.569405][ T6563] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 75.579718][ T6563] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.1298: iget: bad i_size value: 38620345925642 [ 75.592580][ T6563] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.1298: couldn't read orphan inode 15 (err -117) [ 75.605432][ T6563] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 75.634893][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.661515][ T6566] 9pnet: Could not find request transport: rd· [ 75.686139][ T6569] loop4: detected capacity change from 0 to 128 [ 75.716004][ T6571] netlink: 'syz.2.1301': attribute type 14 has an invalid length. [ 75.875979][ T6587] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1310'. [ 75.885000][ T6587] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1310'. [ 75.939899][ T6602] netlink: 'syz.5.1315': attribute type 8 has an invalid length. [ 75.949628][ T6606] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 75.949628][ T6606] The task syz.4.1309 (6606) triggered the difference, watch for misbehavior. [ 76.063192][ T6623] SELinux: failed to load policy [ 76.077606][ T6626] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1326'. [ 76.124602][ T6630] loop2: detected capacity change from 0 to 736 [ 76.134603][ T6634] netlink: 9286 bytes leftover after parsing attributes in process `syz.3.1330'. [ 76.191712][ T6642] loop0: detected capacity change from 0 to 512 [ 76.199158][ T6644] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1337'. [ 76.208196][ T6644] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1337'. [ 76.208951][ T6642] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 76.257726][ T6642] FAT-fs (loop0): error, invalid access to FAT (entry 0x0fffff00) [ 76.622354][ T6680] SELinux: Context system_u:object_r:dhcp_state_t:s0 is not valid (left unmapped). [ 77.003272][ T6715] loop5: detected capacity change from 0 to 512 [ 77.012671][ T6715] EXT4-fs: test_dummy_encryption option not supported [ 77.350360][ T6741] loop4: detected capacity change from 0 to 512 [ 77.367153][ T6741] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 77.384058][ T6741] EXT4-fs (loop4): orphan cleanup on readonly fs [ 77.407489][ T6741] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.1381: Failed to acquire dquot type 1 [ 77.421588][ T6741] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1381: bg 0: block 40: padding at end of block bitmap is not set [ 77.444705][ T6741] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 77.464798][ T6741] EXT4-fs (loop4): 1 truncate cleaned up [ 77.477617][ T6741] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 77.541333][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.548617][ T6750] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1 [ 77.576069][ T6750] batman_adv: batadv0: Adding interface: ip6gretap1 [ 77.582826][ T6750] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 77.622139][ T6750] batman_adv: batadv0: Interface activated: ip6gretap1 [ 77.654167][ T6756] SELinux: Context system_u:object is not valid (left unmapped). [ 77.798554][ T6777] loop0: detected capacity change from 0 to 512 [ 77.823489][ T6777] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 77.855650][ T6777] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.1397: iget: bad extra_isize 5 (inode size 256) [ 77.871078][ T6786] loop3: detected capacity change from 0 to 128 [ 77.884926][ T6786] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a842c018, mo2=0002] [ 77.895384][ T6777] EXT4-fs (loop0): Remounting filesystem read-only [ 77.911054][ T6777] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 77.931479][ T6786] System zones: 1-3, 19-19, 35-36 [ 77.938603][ T6786] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 77.961107][ T3317] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.971533][ T6786] ext4 filesystem being mounted at /315/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 78.039756][ T6793] SELinux: Context system_u:object_r:syslogd_var_lib_t:s0 is not valid (left unmapped). [ 78.124295][ T3313] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 78.250408][ T6825] netlink: 277 bytes leftover after parsing attributes in process `syz.5.1420'. [ 78.269896][ T6827] loop3: detected capacity change from 0 to 512 [ 78.285876][ T6827] EXT4-fs: Ignoring removed bh option [ 78.304578][ T6831] SELinux: policydb version 0 does not match my version range 15-35 [ 78.320213][ T6831] SELinux: failed to load policy [ 78.326387][ T6827] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 78.340970][ T6827] ext4 filesystem being mounted at /320/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 78.368818][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.547565][ T6843] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1 [ 78.576077][ T6843] batman_adv: batadv0: Adding interface: ip6gretap1 [ 78.582850][ T6843] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 78.613465][ T6843] batman_adv: batadv0: Interface activated: ip6gretap1 [ 78.672712][ T6854] loop2: detected capacity change from 0 to 512 [ 78.683287][ T6856] loop0: detected capacity change from 0 to 128 [ 78.699762][ T6854] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 78.703975][ T6858] netlink: 'syz.3.1435': attribute type 30 has an invalid length. [ 78.712512][ T6856] loop0: detected capacity change from 0 to 512 [ 78.721476][ T6858] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.748119][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.757784][ T6856] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 78.769527][ T6856] EXT4-fs (loop0): orphan cleanup on readonly fs [ 78.790172][ T6856] EXT4-fs warning (device loop0): ext4_enable_quotas:7180: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 78.805132][ T6856] EXT4-fs (loop0): Cannot turn on quotas: error -22 [ 78.812011][ T6856] EXT4-fs error (device loop0): ext4_ext_check_inode:523: inode #13: comm syz.0.1434: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 78.840234][ T6856] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.1434: couldn't read orphan inode 13 (err -117) [ 78.859328][ T6856] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 78.916381][ T29] kauditd_printk_skb: 76 callbacks suppressed [ 78.916400][ T29] audit: type=1400 audit(2000000011.201:3024): avc: denied { override_creds } for pid=6867 comm="syz.3.1438" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 78.942875][ T29] audit: type=1400 audit(2000000011.231:3025): avc: denied { remount } for pid=6855 comm="syz.0.1434" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 78.958445][ T6856] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended [ 78.977455][ T6856] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 79.000385][ T6856] EXT4-fs warning (device loop0): ext4_enable_quotas:7180: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 79.080168][ T29] audit: type=1400 audit(2000000011.365:3026): avc: denied { setopt } for pid=6878 comm="syz.5.1442" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 79.108174][ T3317] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 79.153316][ T29] audit: type=1400 audit(2000000011.375:3027): avc: denied { relabelto } for pid=6870 comm="syz.3.1439" name="cgroup.procs" dev="cgroup" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:netutils_exec_t:s0" [ 79.180969][ T29] audit: type=1400 audit(2000000011.375:3028): avc: denied { associate } for pid=6870 comm="syz.3.1439" name="cgroup.procs" dev="cgroup" ino=102 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 srawcon="system_u:object_r:netutils_exec_t:s0" [ 79.209430][ T29] audit: type=1400 audit(2000000011.386:3029): avc: denied { bind } for pid=6878 comm="syz.5.1442" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 79.298890][ T6897] SELinux: Context  is not valid (left unmapped). [ 79.311213][ T6895] loop0: detected capacity change from 0 to 512 [ 79.317863][ T6895] ext4: Unknown parameter 'noacl' [ 79.344866][ T6895] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1449'. [ 79.353782][ T6895] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1449'. [ 79.385035][ T6901] SELinux: Context AÇÂ) is not valid (left unmapped). [ 79.475748][ T29] audit: type=1326 audit(2000000011.776:3030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6909 comm="syz.5.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e5027efc9 code=0x7ffc0000 [ 79.555465][ T29] audit: type=1326 audit(2000000011.797:3031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6909 comm="syz.5.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e5027efc9 code=0x7ffc0000 [ 79.578959][ T29] audit: type=1326 audit(2000000011.807:3032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6909 comm="syz.5.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2e5027efc9 code=0x7ffc0000 [ 79.602474][ T29] audit: type=1326 audit(2000000011.807:3033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6909 comm="syz.5.1456" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e5027efc9 code=0x7ffc0000 [ 79.710109][ T6928] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1465'. [ 79.789924][ T6938] loop3: detected capacity change from 0 to 512 [ 79.839631][ T6938] EXT4-fs warning (device loop3): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 79.861577][ T6938] EXT4-fs (loop3): mount failed [ 79.882672][ T6951] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=6951 comm=syz.0.1474 [ 79.913974][ T6959] loop5: detected capacity change from 0 to 128 [ 79.950398][ T6959] EXT4-fs: Ignoring removed nobh option [ 79.960092][ T6959] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 79.978225][ T6959] ext4 filesystem being mounted at /83/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 80.003456][ T5676] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 80.128990][ T6987] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 80.136765][ T6987] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 80.170896][ T6994] netlink: 'syz.5.1494': attribute type 7 has an invalid length. [ 80.178949][ T6995] loop0: detected capacity change from 0 to 512 [ 80.214872][ T6999] lo speed is unknown, defaulting to 1000 [ 80.227088][ T6995] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 80.248307][ T6995] ext4 filesystem being mounted at /330/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 80.320809][ T3317] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.399090][ T7027] loop2: detected capacity change from 0 to 1024 [ 80.427527][ T7027] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 80.483814][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.243651][ T7127] __nla_validate_parse: 2 callbacks suppressed [ 81.243671][ T7127] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1555'. [ 81.303854][ T7137] loop0: detected capacity change from 0 to 512 [ 81.314549][ T7140] loop4: detected capacity change from 0 to 512 [ 81.329321][ T7137] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.1559: couldn't read orphan inode 26 (err -116) [ 81.342625][ T7140] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 81.345531][ T7137] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 81.369127][ T7140] ext4 filesystem being mounted at /328/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 81.382908][ T7137] ext4 filesystem being mounted at /349/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 81.395905][ T7140] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.1562: corrupted inode contents [ 81.408253][ T7140] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #2: comm syz.4.1562: mark_inode_dirty error [ 81.429964][ T7140] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.1562: corrupted inode contents [ 81.443661][ T3317] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.453209][ T7156] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.1562: corrupted inode contents [ 81.466339][ T7156] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #2: comm syz.4.1562: mark_inode_dirty error [ 81.478236][ T7156] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.1562: corrupted inode contents [ 81.501103][ T7156] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.1562: mark_inode_dirty error [ 81.503549][ T7163] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1568'. [ 81.534253][ T7156] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.1562: corrupted inode contents [ 81.552162][ T7156] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #2: comm syz.4.1562: mark_inode_dirty error [ 81.576976][ T7140] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #2: comm syz.4.1562: corrupted inode contents [ 81.650905][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.739231][ T7185] loop3: detected capacity change from 0 to 8192 [ 81.798829][ T7185] loop3: p1 p2 p3 p4[DM] [ 81.803294][ T7185] loop3: p1 size 835329 extends beyond EOD, truncated [ 81.813741][ T7185] loop3: p2 size 327680 extends beyond EOD, truncated [ 81.822136][ T7185] loop3: p3 start 1052673 is beyond EOD, truncated [ 81.828737][ T7185] loop3: p4 size 262144 extends beyond EOD, truncated [ 81.856517][ T7211] sctp: [Deprecated]: syz.0.1592 (pid 7211) Use of int in max_burst socket option deprecated. [ 81.856517][ T7211] Use struct sctp_assoc_value instead [ 81.920089][ T7221] loop3: detected capacity change from 0 to 512 [ 81.929520][ T7225] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2 [ 81.929671][ T7221] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 82.082030][ T7246] loop3: detected capacity change from 0 to 128 [ 82.088528][ T7244] loop4: detected capacity change from 0 to 1024 [ 82.129060][ T7244] EXT4-fs: Ignoring removed orlov option [ 82.134776][ T7244] EXT4-fs: Ignoring removed nomblk_io_submit option [ 82.163333][ T7251] syz.3.1608: attempt to access beyond end of device [ 82.163333][ T7251] loop3: rw=0, sector=97, nr_sectors = 128 limit=128 [ 82.237497][ T3874] kworker/u8:62: attempt to access beyond end of device [ 82.237497][ T3874] loop3: rw=1, sector=225, nr_sectors = 816 limit=128 [ 82.254762][ T7244] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 82.267676][ T7257] 9pnet: Could not find request transport: rd· [ 82.388434][ T7274] loop3: detected capacity change from 0 to 512 [ 82.421036][ T7274] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1619: couldn't read orphan inode 26 (err -116) [ 82.443182][ T7274] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 82.445299][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.471565][ T7274] ext4 filesystem being mounted at /362/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 82.521091][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.596118][ T7304] loop4: detected capacity change from 0 to 1024 [ 82.611976][ T7304] EXT4-fs: inline encryption not supported [ 82.625210][ T7304] EXT4-fs: Ignoring removed nobh option [ 82.630889][ T7304] EXT4-fs: Ignoring removed bh option [ 82.650145][ T7315] loop5: detected capacity change from 0 to 512 [ 82.657413][ T7315] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 82.669314][ T7304] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 82.684748][ T7304] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.1631: Allocating blocks 497-513 which overlap fs metadata [ 82.699834][ T7315] EXT4-fs (loop5): 1 truncate cleaned up [ 82.706375][ T7315] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 82.709099][ T7319] loop0: detected capacity change from 0 to 512 [ 82.723444][ T7304] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.1631: Allocating blocks 497-513 which overlap fs metadata [ 82.769226][ T7319] EXT4-fs (loop0): too many log groups per flexible block group [ 82.784709][ T5676] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.796372][ T7319] EXT4-fs (loop0): failed to initialize mballoc (-12) [ 82.823509][ T7319] EXT4-fs (loop0): mount failed [ 82.836858][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.060392][ T7354] SELinux: failed to load policy [ 83.096656][ T7358] loop5: detected capacity change from 0 to 512 [ 83.103940][ T7358] SELinux: security_context_str_to_sid (root) failed with errno=-22 [ 83.237297][ T7383] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1665'. [ 83.470619][ T7406] loop0: detected capacity change from 0 to 512 [ 83.481533][ T7412] netlink: 'syz.3.1679': attribute type 1 has an invalid length. [ 83.489329][ T7412] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1679'. [ 83.490078][ T7406] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 83.528347][ T7406] EXT4-fs (loop0): orphan cleanup on readonly fs [ 83.543864][ T7406] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.1676: Failed to acquire dquot type 1 [ 83.559076][ T7406] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1676: bg 0: block 40: padding at end of block bitmap is not set [ 83.573797][ T7406] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 83.607270][ T7406] EXT4-fs (loop0): 1 truncate cleaned up [ 83.628359][ T7406] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 83.688137][ T3317] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.757071][ T7431] netlink: 'syz.3.1687': attribute type 21 has an invalid length. [ 83.771397][ T7431] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1687'. [ 83.780531][ T7431] netlink: 'syz.3.1687': attribute type 1 has an invalid length. [ 83.902835][ T7448] netlink: 'syz.3.1694': attribute type 9 has an invalid length. [ 83.910640][ T7448] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1694'. [ 83.923287][ T7448] team_slave_0: entered promiscuous mode [ 83.928973][ T7448] team_slave_1: entered promiscuous mode [ 83.942819][ T7448] macvlan3: entered promiscuous mode [ 83.948156][ T7448] team0: entered promiscuous mode [ 83.953747][ T7448] macvlan3: entered allmulticast mode [ 83.955054][ T7452] loop5: detected capacity change from 0 to 128 [ 83.959135][ T7448] team0: entered allmulticast mode [ 83.970529][ T7448] team_slave_0: entered allmulticast mode [ 83.976401][ T7448] team_slave_1: entered allmulticast mode [ 83.983627][ T7448] 8021q: adding VLAN 0 to HW filter on device macvlan3 [ 83.985783][ T7452] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 84.003542][ T7450] netlink: 'syz.2.1696': attribute type 3 has an invalid length. [ 84.012351][ T7452] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 84.072626][ T3874] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 84.154299][ T29] kauditd_printk_skb: 100 callbacks suppressed [ 84.154318][ T29] audit: type=1400 audit(2000000016.565:3131): avc: denied { create } for pid=7470 comm="syz.3.1706" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1 [ 84.182692][ T29] audit: type=1400 audit(2000000016.585:3132): avc: denied { write } for pid=7470 comm="syz.3.1706" path="socket:[17178]" dev="sockfs" ino=17178 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_fib_lookup_socket permissive=1 [ 84.224440][ T29] audit: type=1400 audit(2000000016.636:3133): avc: denied { getopt } for pid=7465 comm="syz.5.1704" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 84.445588][ T29] audit: type=1326 audit(2000000016.860:3134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7483 comm="syz.4.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4b40cefc9 code=0x7ffc0000 [ 84.469062][ T29] audit: type=1326 audit(2000000016.860:3135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7483 comm="syz.4.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7fd4b40cefc9 code=0x7ffc0000 [ 84.492506][ T29] audit: type=1326 audit(2000000016.860:3136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7483 comm="syz.4.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4b40cefc9 code=0x7ffc0000 [ 84.515912][ T29] audit: type=1326 audit(2000000016.860:3137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7483 comm="syz.4.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7fd4b40cefc9 code=0x7ffc0000 [ 84.539334][ T29] audit: type=1326 audit(2000000016.860:3138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7483 comm="syz.4.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4b40cefc9 code=0x7ffc0000 [ 84.562855][ T29] audit: type=1326 audit(2000000016.860:3139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7483 comm="syz.4.1710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4b40cefc9 code=0x7ffc0000 [ 84.637617][ T29] audit: type=1400 audit(2000000017.064:3140): avc: denied { append } for pid=7488 comm="syz.0.1712" name="001" dev="devtmpfs" ino=147 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 84.665979][ T7489] usb usb1: usbfs: process 7489 (syz.0.1712) did not claim interface 4 before use [ 84.743419][ T7495] netlink: 'syz.0.1715': attribute type 1 has an invalid length. [ 84.751313][ T7495] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1715'. [ 85.066008][ T7528] loop0: detected capacity change from 0 to 128 [ 85.091643][ T7528] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a842c018, mo2=0002] [ 85.110082][ T7528] System zones: 1-3, 19-19, 35-36 [ 85.115282][ T7531] netlink: 209852 bytes leftover after parsing attributes in process `syz.5.1732'. [ 85.124705][ T7531] net_ratelimit: 5270 callbacks suppressed [ 85.124719][ T7531] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16) [ 85.138831][ T7531] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 85.141287][ T7528] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 85.162267][ T7528] ext4 filesystem being mounted at /386/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 85.223079][ T7542] loop4: detected capacity change from 0 to 1024 [ 85.230022][ T7542] EXT4-fs: Ignoring removed nomblk_io_submit option [ 85.249064][ T7546] netlink: 96 bytes leftover after parsing attributes in process `syz.5.1738'. [ 85.259320][ T3317] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 85.271811][ T7542] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 85.316114][ T7555] loop0: detected capacity change from 0 to 512 [ 85.324467][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.351512][ T7555] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 85.359919][ T7555] EXT4-fs (loop0): orphan cleanup on readonly fs [ 85.367805][ T7555] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #16: comm syz.0.1742: corrupted inode contents [ 85.385231][ T7555] EXT4-fs (loop0): Remounting filesystem read-only [ 85.395330][ T7555] EXT4-fs (loop0): 1 truncate cleaned up [ 85.401199][ T3859] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 85.411809][ T3859] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 85.422407][ T3859] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started [ 85.434813][ T7555] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 85.476799][ T3317] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.529027][ T7581] loop2: detected capacity change from 0 to 128 [ 85.539913][ T7581] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 85.552484][ T7581] ext4 filesystem being mounted at /348/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 85.618898][ T3311] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 85.673352][ T7598] loop5: detected capacity change from 0 to 512 [ 85.680258][ T7598] EXT4-fs: Ignoring removed oldalloc option [ 85.693776][ T7602] netlink: 88 bytes leftover after parsing attributes in process `syz.4.1764'. [ 85.762503][ T7598] EXT4-fs (loop5): 1 truncate cleaned up [ 85.768952][ T7598] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 85.833920][ T7616] loop5: detected capacity change from 0 to 512 [ 85.844589][ T7618] usb usb1: usbfs: process 7618 (syz.2.1770) did not claim interface 4 before use [ 85.855282][ T7616] ext4 filesystem being mounted at /132/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 85.868210][ T7616] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #2: comm syz.5.1768: corrupted inode contents [ 85.880423][ T7616] EXT4-fs error (device loop5): ext4_dirty_inode:6517: inode #2: comm syz.5.1768: mark_inode_dirty error [ 85.892287][ T7616] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #2: comm syz.5.1768: corrupted inode contents [ 85.924165][ T7616] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #2: comm syz.5.1768: corrupted inode contents [ 85.926379][ T7624] loop4: detected capacity change from 0 to 1024 [ 85.943794][ T7616] EXT4-fs error (device loop5): ext4_dirty_inode:6517: inode #2: comm syz.5.1768: mark_inode_dirty error [ 85.956093][ T7616] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #2: comm syz.5.1768: corrupted inode contents [ 85.958181][ T7627] program syz.2.1773 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 85.970678][ T7616] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #2: comm syz.5.1768: mark_inode_dirty error [ 85.988835][ T7616] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #2: comm syz.5.1768: corrupted inode contents [ 86.001306][ T7616] EXT4-fs error (device loop5): ext4_dirty_inode:6517: inode #2: comm syz.5.1768: mark_inode_dirty error [ 86.013510][ T7628] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #2: comm syz.5.1768: corrupted inode contents [ 86.103451][ T7643] loop3: detected capacity change from 0 to 512 [ 86.110823][ T7643] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 86.213881][ T7652] usb usb1: usbfs: process 7652 (syz.5.1783) did not claim interface 4 before use [ 86.229687][ T7654] loop2: detected capacity change from 0 to 1024 [ 86.248730][ T7654] ext4 filesystem being mounted at /359/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 86.329531][ T7667] loop2: detected capacity change from 0 to 128 [ 86.350203][ T7667] syz.2.1791: attempt to access beyond end of device [ 86.350203][ T7667] loop2: rw=2049, sector=138, nr_sectors = 72 limit=128 [ 86.384639][ T7667] syz.2.1791: attempt to access beyond end of device [ 86.384639][ T7667] loop2: rw=2049, sector=210, nr_sectors = 8 limit=128 [ 86.475136][ T7672] program syz.4.1794 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 86.483444][ T7667] syz.2.1791: attempt to access beyond end of device [ 86.483444][ T7667] loop2: rw=2049, sector=216, nr_sectors = 2 limit=128 [ 86.497813][ T7667] Buffer I/O error on dev loop2, logical block 108, lost async page write [ 86.514237][ T7674] __nla_validate_parse: 1 callbacks suppressed [ 86.514251][ T7674] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1795'. [ 86.516758][ T7672] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 86.532230][ T7667] syz.2.1791: attempt to access beyond end of device [ 86.532230][ T7667] loop2: rw=2049, sector=234, nr_sectors = 8 limit=128 [ 86.607672][ T7667] syz.2.1791: attempt to access beyond end of device [ 86.607672][ T7667] loop2: rw=2049, sector=240, nr_sectors = 2 limit=128 [ 86.621326][ T7667] Buffer I/O error on dev loop2, logical block 120, lost async page write [ 86.638985][ T7667] syz.2.1791: attempt to access beyond end of device [ 86.638985][ T7667] loop2: rw=2049, sector=242, nr_sectors = 8 limit=128 [ 86.648967][ T7688] loop4: detected capacity change from 0 to 1024 [ 86.669956][ T7688] EXT4-fs: Ignoring removed nobh option [ 86.675607][ T7688] EXT4-fs: Ignoring removed bh option [ 86.676435][ T7667] syz.2.1791: attempt to access beyond end of device [ 86.676435][ T7667] loop2: rw=2049, sector=248, nr_sectors = 2 limit=128 [ 86.694451][ T7667] Buffer I/O error on dev loop2, logical block 124, lost async page write [ 86.709308][ T7667] syz.2.1791: attempt to access beyond end of device [ 86.709308][ T7667] loop2: rw=2049, sector=218, nr_sectors = 8 limit=128 [ 86.728050][ T7688] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 18: block 129:freeing already freed block (bit 8); block bitmap corrupt. [ 86.748554][ T7688] EXT4-fs (loop4): Remounting filesystem read-only [ 86.779390][ T7695] bond2: option downdelay: invalid value (18446744073709551615) [ 86.787133][ T7695] bond2: option downdelay: allowed values 0 - 2147483647 [ 86.827635][ T7667] Buffer I/O error on dev loop2, logical block 112, lost async page write [ 86.837678][ T7695] bond2 (unregistering): Released all slaves [ 86.849482][ T7667] Buffer I/O error on dev loop2, logical block 116, lost async page write [ 86.932435][ T7709] program syz.0.1806 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 86.943042][ T7710] netlink: 'syz.4.1805': attribute type 7 has an invalid length. [ 86.968509][ T7716] loop9: detected capacity change from 0 to 7 [ 87.162583][ T7748] netlink: 203516 bytes leftover after parsing attributes in process `syz.3.1829'. [ 87.172021][ T7748] openvswitch: netlink: ufid size 3068 bytes exceeds the range (1, 16) [ 87.180410][ T7748] openvswitch: netlink: Message has 6320 unknown bytes. [ 87.197277][ T7751] erspan0: entered promiscuous mode [ 87.249833][ T7756] macvtap0: refused to change device tx_queue_len [ 87.329170][ T7765] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1836'. [ 87.351311][ T7765] netlink: 312 bytes leftover after parsing attributes in process `syz.2.1836'. [ 87.360410][ T7765] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1836'. [ 87.467172][ T7782] erspan0: entered promiscuous mode [ 87.610891][ T7800] loop0: detected capacity change from 0 to 512 [ 87.627237][ T7796] loop3: detected capacity change from 0 to 512 [ 87.633730][ T7794] loop4: detected capacity change from 0 to 8192 [ 87.643869][ T7796] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 87.659250][ T7802] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=14385 sclass=netlink_route_socket pid=7802 comm=syz.2.1854 [ 87.676791][ T7800] ext4 filesystem being mounted at /410/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 87.702866][ T7794] loop4: p2 p3 p4 [ 87.707029][ T7794] loop4: p2 start 4293394690 is beyond EOD, truncated [ 87.713911][ T7794] loop4: p3 size 100663552 extends beyond EOD, truncated [ 87.735074][ T7794] loop4: p4 size 50331648 extends beyond EOD, truncated [ 87.855171][ T7823] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1861'. [ 87.864312][ T7823] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1861'. [ 87.885537][ T7825] team0: Device lo is loopback device. Loopback devices can't be added as a team port [ 87.896855][ T7825] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 87.956478][ T7835] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=14385 sclass=netlink_route_socket pid=7835 comm=syz.3.1866 [ 87.985919][ T7837] lo speed is unknown, defaulting to 1000 [ 88.063743][ T7844] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1871'. [ 88.072790][ T7844] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1871'. [ 88.081868][ T7844] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1871'. [ 88.249519][ T7857] loop4: detected capacity change from 0 to 512 [ 88.467064][ T7876] IPVS: Error connecting to the multicast addr [ 88.541889][ T7871] loop4: detected capacity change from 0 to 8192 [ 88.665141][ T7893] loop0: detected capacity change from 0 to 1024 [ 88.681685][ T7893] EXT4-fs: Ignoring removed nobh option [ 88.687296][ T7893] EXT4-fs: Ignoring removed bh option [ 88.937977][ T7910] program syz.3.1898 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 89.093113][ T7918] hub 2-0:1.0: USB hub found [ 89.105573][ T7918] hub 2-0:1.0: 8 ports detected [ 89.177144][ T29] kauditd_printk_skb: 58 callbacks suppressed [ 89.177172][ T29] audit: type=1400 audit(2000000021.669:3193): avc: denied { bind } for pid=7926 comm="syz.5.1906" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 89.217225][ T29] audit: type=1400 audit(2000000021.710:3194): avc: denied { listen } for pid=7926 comm="syz.5.1906" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 89.250429][ T7930] random: crng reseeded on system resumption [ 89.250486][ T29] audit: type=1400 audit(2000000021.751:3195): avc: denied { read append } for pid=7929 comm="syz.2.1908" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 89.280065][ T29] audit: type=1400 audit(2000000021.751:3196): avc: denied { ioctl open } for pid=7929 comm="syz.2.1908" path="/dev/snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 89.367465][ T7936] loop2: detected capacity change from 0 to 512 [ 89.386416][ T7936] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 89.412769][ T7936] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.1910: invalid indirect mapped block 8 (level 2) [ 89.426459][ T7936] EXT4-fs (loop2): Remounting filesystem read-only [ 89.433718][ T7936] EXT4-fs (loop2): 1 truncate cleaned up [ 89.693641][ T29] audit: type=1400 audit(2000000022.156:3197): avc: denied { setopt } for pid=7955 comm="syz.4.1920" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 89.763958][ T7964] loop0: detected capacity change from 0 to 1024 [ 89.772928][ T7964] EXT4-fs: Ignoring removed nomblk_io_submit option [ 89.785745][ T7968] hub 1-0:1.0: USB hub found [ 89.790432][ T7968] hub 1-0:1.0: 8 ports detected [ 89.828155][ T7972] program syz.2.1927 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 89.851081][ T7964] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a842c018, mo2=0002] [ 89.861546][ T29] audit: type=1326 audit(2000000022.369:3198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7975 comm="syz.5.1928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e5027efc9 code=0x7ffc0000 [ 89.922627][ T7964] System zones: 0-1, 3-12 [ 89.946461][ T7964] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1923: bg 0: block 88: padding at end of block bitmap is not set [ 89.969907][ T29] audit: type=1326 audit(2000000022.389:3199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7975 comm="syz.5.1928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2e5027efc9 code=0x7ffc0000 [ 89.993486][ T29] audit: type=1326 audit(2000000022.389:3200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7975 comm="syz.5.1928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e5027efc9 code=0x7ffc0000 [ 90.016904][ T29] audit: type=1326 audit(2000000022.389:3201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7975 comm="syz.5.1928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e5027efc9 code=0x7ffc0000 [ 90.040332][ T29] audit: type=1326 audit(2000000022.389:3202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7975 comm="syz.5.1928" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2e5027efc9 code=0x7ffc0000 [ 90.070211][ T7988] vhci_hcd: default hub control req: 8013 v0000 i0000 l31125 [ 90.154916][ T7996] loop2: detected capacity change from 0 to 512 [ 90.173205][ T7996] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 90.198606][ T8002] loop0: detected capacity change from 0 to 512 [ 90.208338][ T7996] EXT4-fs (loop2): orphan cleanup on readonly fs [ 90.218825][ T8006] loop3: detected capacity change from 0 to 512 [ 90.238991][ T8006] EXT4-fs: Ignoring removed bh option [ 90.244526][ T8006] EXT4-fs: Ignoring removed mblk_io_submit option [ 90.244923][ T7996] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #16: comm syz.2.1937: corrupted inode contents [ 90.275621][ T8006] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 90.293076][ T7996] EXT4-fs (loop2): Remounting filesystem read-only [ 90.301329][ T7996] EXT4-fs (loop2): 1 truncate cleaned up [ 90.307209][ T3874] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 90.317811][ T3874] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 90.329775][ T8006] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 90.338416][ T8006] EXT4-fs (loop3): orphan cleanup on readonly fs [ 90.345403][ T8006] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.1939: Failed to acquire dquot type 1 [ 90.358251][ T3874] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started [ 90.360920][ T8016] 9p: Unknown access argument ě: -22 [ 90.380143][ T8006] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.1939: Invalid block bitmap block 0 in block_group 0 [ 90.394365][ T8006] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.1939: Invalid block bitmap block 0 in block_group 0 [ 90.420048][ T8006] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.1939: Invalid block bitmap block 0 in block_group 0 [ 90.443485][ T8006] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.1939: Failed to acquire dquot type 1 [ 90.456961][ T8006] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.1939: Failed to acquire dquot type 1 [ 90.469394][ T8006] EXT4-fs (loop3): 1 orphan inode deleted [ 90.487543][ T8006] syz.3.1939 (8006) used greatest stack depth: 8992 bytes left [ 90.617092][ T8035] loop2: detected capacity change from 0 to 8192 [ 90.680861][ T8035] loop2: p2 p3 p4 [ 90.689186][ T8035] loop2: p2 start 4293394690 is beyond EOD, truncated [ 90.696075][ T8035] loop2: p3 size 100663552 extends beyond EOD, truncated [ 90.729826][ T8035] loop2: p4 size 50331648 extends beyond EOD, truncated [ 90.770859][ T8074] program syz.5.1973 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 90.831591][ T8079] loop5: detected capacity change from 0 to 512 [ 90.888557][ T8079] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1975: bg 0: block 248: padding at end of block bitmap is not set [ 90.925871][ T8079] EXT4-fs error (device loop5): ext4_acquire_dquot:6945: comm syz.5.1975: Failed to acquire dquot type 1 [ 90.962888][ T8079] EXT4-fs (loop5): 1 truncate cleaned up [ 90.978453][ T8077] loop3: detected capacity change from 0 to 32768 [ 90.985088][ T8079] ext4 filesystem being mounted at /184/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 90.997313][ T8086] loop4: detected capacity change from 0 to 1764 [ 91.023079][ T8090] loop2: detected capacity change from 0 to 512 [ 91.048421][ T8092] loop4: detected capacity change from 0 to 1024 [ 91.055111][ T8090] EXT4-fs error (device loop2): __ext4_fill_super:5512: inode #2: comm syz.2.1979: inode has both inline data and extents flags [ 91.076303][ T8090] EXT4-fs (loop2): get root inode failed [ 91.082029][ T8090] EXT4-fs (loop2): mount failed [ 91.096918][ T8098] loop5: detected capacity change from 0 to 512 [ 91.117081][ T8098] EXT4-fs (loop5): 1 truncate cleaned up [ 91.332571][ T8120] loop3: detected capacity change from 0 to 1024 [ 91.377553][ T8120] EXT4-fs: Ignoring removed nobh option [ 91.390141][ T8120] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 91.434225][ T8120] EXT4-fs error (device loop3): ext4_ext_check_inode:523: inode #11: comm syz.3.1991: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 91.464289][ T8125] netlink: 'syz.2.1992': attribute type 21 has an invalid length. [ 91.472300][ T8125] __nla_validate_parse: 5 callbacks suppressed [ 91.472377][ T8125] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1992'. [ 91.487685][ T8125] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1992'. [ 91.499242][ T8120] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1991: couldn't read orphan inode 11 (err -117) [ 91.595138][ T8137] wireguard0: entered promiscuous mode [ 91.600762][ T8137] wireguard0: entered allmulticast mode [ 91.612451][ T8140] hub 1-0:1.0: USB hub found [ 91.623813][ T8140] hub 1-0:1.0: 8 ports detected [ 91.788122][ T8163] netlink: 256 bytes leftover after parsing attributes in process `syz.5.2009'. [ 92.020299][ T8178] hub 1-0:1.0: USB hub found [ 92.025022][ T8178] hub 1-0:1.0: 8 ports detected [ 92.082305][ T8181] loop5: detected capacity change from 0 to 8192 [ 92.125945][ T8188] serio: Serial port ptm0 [ 92.225493][ T8194] loop3: detected capacity change from 0 to 128 [ 92.232053][ T8194] EXT4-fs: Ignoring removed nobh option [ 92.239527][ T8194] ext4 filesystem being mounted at /446/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 92.428528][ T8214] loop3: detected capacity change from 0 to 1024 [ 92.617995][ T8226] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2037'. [ 92.684303][ T8229] netlink: 660 bytes leftover after parsing attributes in process `syz.2.2038'. [ 92.755747][ T8233] netlink: 128 bytes leftover after parsing attributes in process `syz.0.2040'. [ 92.769100][ T8233] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2040'. [ 92.906161][ T8250] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2047'. [ 92.915268][ T8250] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2047'. [ 93.033110][ T8263] loop2: detected capacity change from 0 to 1024 [ 93.047749][ T8263] EXT4-fs: Ignoring removed nomblk_io_submit option [ 93.067180][ T8265] loop5: detected capacity change from 0 to 512 [ 93.084331][ T8265] ext4 filesystem being mounted at /203/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 93.164060][ T8275] loop5: detected capacity change from 0 to 128 [ 93.181447][ T8275] ext4 filesystem being mounted at /205/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 93.194210][ T8259] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 93.225113][ T8259] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 93.354352][ T8286] loop2: detected capacity change from 0 to 512 [ 93.386179][ T8286] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2061: bg 0: block 248: padding at end of block bitmap is not set [ 93.403493][ T8286] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.2061: Failed to acquire dquot type 1 [ 93.415368][ T8286] EXT4-fs (loop2): 1 truncate cleaned up [ 93.421518][ T8286] ext4 filesystem being mounted at /407/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 93.507084][ T8302] wireguard0: entered promiscuous mode [ 93.512591][ T8302] wireguard0: entered allmulticast mode [ 93.552304][ T8298] loop2: detected capacity change from 0 to 8192 [ 93.564333][ T8307] loop5: detected capacity change from 0 to 1024 [ 93.609514][ T8307] ext4 filesystem being mounted at /211/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 93.853941][ T8327] erspan0: entered promiscuous mode [ 93.994125][ T8335] sctp: [Deprecated]: syz.3.2092 (pid 8335) Use of int in maxseg socket option. [ 93.994125][ T8335] Use struct sctp_assoc_value instead [ 94.091690][ T8339] loop5: detected capacity change from 0 to 764 [ 94.116900][ T8340] loop4: detected capacity change from 0 to 1024 [ 94.128753][ T8339] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 94.149096][ T29] kauditd_printk_skb: 70 callbacks suppressed [ 94.149114][ T29] audit: type=1400 audit(2000000026.700:3257): avc: denied { connect } for pid=8341 comm="syz.3.2085" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 94.518364][ T8365] program syz.5.2097 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 94.639323][ T8379] loop2: detected capacity change from 0 to 2048 [ 94.717321][ T8379] loop2: p2 p3 p7 [ 94.741256][ T1037] hid_parser_main: 73 callbacks suppressed [ 94.741278][ T1037] hid-generic 0003:0003:0000.0002: unknown main item tag 0x0 [ 94.754607][ T1037] hid-generic 0003:0003:0000.0002: unknown main item tag 0x0 [ 94.762007][ T1037] hid-generic 0003:0003:0000.0002: unknown main item tag 0x0 [ 94.769510][ T1037] hid-generic 0003:0003:0000.0002: unknown main item tag 0x0 [ 94.776947][ T1037] hid-generic 0003:0003:0000.0002: unknown main item tag 0x0 [ 94.784426][ T1037] hid-generic 0003:0003:0000.0002: unknown main item tag 0x0 [ 94.791833][ T1037] hid-generic 0003:0003:0000.0002: unknown main item tag 0x0 [ 94.799374][ T1037] hid-generic 0003:0003:0000.0002: unknown main item tag 0x0 [ 94.806992][ T1037] hid-generic 0003:0003:0000.0002: unknown main item tag 0x0 [ 94.814432][ T1037] hid-generic 0003:0003:0000.0002: unknown main item tag 0x0 [ 94.852545][ T1037] hid-generic 0003:0003:0000.0002: hidraw0: USB HID v0.00 Device [syz0] on syz1 [ 94.908318][ T8397] loop5: detected capacity change from 0 to 128 [ 94.918318][ T8397] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100) [ 94.926216][ T8397] FAT-fs (loop5): Filesystem has been set read-only [ 94.934138][ T8397] bio_check_eod: 3 callbacks suppressed [ 94.934198][ T8397] syz.5.2111: attempt to access beyond end of device [ 94.934198][ T8397] loop5: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 94.945056][ T8400] loop2: detected capacity change from 0 to 128 [ 94.969807][ T8397] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100) [ 94.977795][ T8397] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100) [ 94.985909][ T8394] loop0: detected capacity change from 0 to 8192 [ 94.994250][ T8397] syz.5.2111: attempt to access beyond end of device [ 94.994250][ T8397] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 95.009827][ T8397] syz.5.2111: attempt to access beyond end of device [ 95.009827][ T8397] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 95.023370][ T8397] syz.5.2111: attempt to access beyond end of device [ 95.023370][ T8397] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 95.037290][ T8397] syz.5.2111: attempt to access beyond end of device [ 95.037290][ T8397] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 95.051784][ T8397] syz.5.2111: attempt to access beyond end of device [ 95.051784][ T8397] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 95.065921][ T8397] syz.5.2111: attempt to access beyond end of device [ 95.065921][ T8397] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 95.084980][ T8397] syz.5.2111: attempt to access beyond end of device [ 95.084980][ T8397] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 95.101114][ T8397] syz.5.2111: attempt to access beyond end of device [ 95.101114][ T8397] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 95.114922][ T8397] syz.5.2111: attempt to access beyond end of device [ 95.114922][ T8397] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 95.115339][ T8408] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 95.162745][ T8408] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0' [ 95.217883][ T29] audit: type=1400 audit(2000000027.781:3258): avc: denied { remount } for pid=8409 comm="syz.4.2117" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 95.218158][ T8410] option changes via remount are deprecated (pid=8409 comm=syz.4.2117) [ 95.384376][ T29] audit: type=1400 audit(2000000027.952:3259): avc: denied { unmount } for pid=3321 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 95.611491][ T29] audit: type=1326 audit(2000000028.184:3260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8423 comm="syz.3.2124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0666aefc9 code=0x7ffc0000 [ 95.634942][ T29] audit: type=1326 audit(2000000028.184:3261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8423 comm="syz.3.2124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0666aefc9 code=0x7ffc0000 [ 95.672552][ T29] audit: type=1326 audit(2000000028.245:3262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8423 comm="syz.3.2124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc0666aefc9 code=0x7ffc0000 [ 95.711597][ T29] audit: type=1326 audit(2000000028.245:3263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8423 comm="syz.3.2124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0666aefc9 code=0x7ffc0000 [ 95.735222][ T29] audit: type=1326 audit(2000000028.245:3264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8423 comm="syz.3.2124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0666aefc9 code=0x7ffc0000 [ 95.758785][ T29] audit: type=1326 audit(2000000028.265:3265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8423 comm="syz.3.2124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc0666aefc9 code=0x7ffc0000 [ 95.782227][ T29] audit: type=1326 audit(2000000028.265:3266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8423 comm="syz.3.2124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0666aefc9 code=0x7ffc0000 [ 95.905648][ T8428] vhci_hcd: default hub control req: 020f v0004 i0000 l0 [ 96.015115][ T3874] Bluetooth: hci0: Frame reassembly failed (-84) [ 96.029058][ T8440] IPv6: Can't replace route, no match found [ 96.070304][ T8446] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2135'. [ 96.161860][ T8464] loop2: detected capacity change from 0 to 128 [ 96.168576][ T8464] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 96.180801][ T8464] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 96.208633][ T3861] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 96.249206][ T8474] blkio.reset_stats is deprecated [ 96.364388][ T8496] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 96.371712][ T8496] IPv6: NLM_F_CREATE should be set when creating new route [ 96.378996][ T8496] IPv6: NLM_F_CREATE should be set when creating new route [ 96.386216][ T8496] IPv6: NLM_F_CREATE should be set when creating new route [ 96.392687][ T8498] pimreg: tun_chr_ioctl cmd 35111 [ 96.404132][ T8496] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 96.546810][ T8530] loop4: detected capacity change from 0 to 1024 [ 96.566464][ T8532] msdos: Unknown parameter '˙' [ 96.757398][ T8557] hub 2-0:1.0: USB hub found [ 96.762419][ T8557] hub 2-0:1.0: 8 ports detected [ 96.868114][ T8589] __nla_validate_parse: 1 callbacks suppressed [ 96.868133][ T8589] netlink: 7 bytes leftover after parsing attributes in process `syz.3.2203'. [ 96.885985][ T8589] netlink: 7 bytes leftover after parsing attributes in process `syz.3.2203'. [ 96.988951][ T8604] loop4: detected capacity change from 0 to 512 [ 97.024484][ T8604] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.2210: couldn't read orphan inode 26 (err -116) [ 97.043891][ T8604] ext4 filesystem being mounted at /447/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 97.126267][ T8617] loop4: detected capacity change from 0 to 1156 [ 97.133769][ T8617] ISOFS: unable to read i-node block [ 97.156536][ T8617] isofs_fill_super: get root inode failed [ 97.200854][ T8628] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.2219'. [ 97.254334][ T8636] loop2: detected capacity change from 0 to 512 [ 97.266086][ T8636] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.2223: bg 0: block 5: invalid block bitmap [ 97.278709][ T8636] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 97.278847][ T8639] loop4: detected capacity change from 0 to 1024 [ 97.294372][ T8636] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.2223: invalid indirect mapped block 3 (level 2) [ 97.307781][ T8636] EXT4-fs (loop2): 2 truncates cleaned up [ 97.316727][ T8636] EXT4-fs error (device loop2): empty_inline_dir:1760: inode #12: block 7: comm syz.2.2223: bad entry in directory: rec_len % 4 != 0 - offset=4, inode=4278190093, rec_len=255, size=60 fake=0 [ 97.335675][ T8636] EXT4-fs warning (device loop2): empty_inline_dir:1767: bad inline directory (dir #12) - inode 4278190093, rec_len 255, name_len 0inline size 60 [ 97.396942][ T8639] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt. [ 97.419209][ T8639] EXT4-fs (loop4): Remounting filesystem read-only [ 97.442075][ T8647] loop2: detected capacity change from 0 to 1024 [ 97.458497][ T8647] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 97.474229][ T8647] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #11: comm syz.2.2227: iget: bogus i_mode (1) [ 97.485705][ T8647] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.2227: couldn't read orphan inode 11 (err -117) [ 97.501578][ T8647] EXT4-fs error (device loop2): ext4_search_dir:1474: inode #2: block 16: comm syz.2.2227: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0 [ 97.520967][ T8647] EXT4-fs error (device loop2): ext4_search_dir:1474: inode #2: block 16: comm syz.2.2227: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0 [ 97.609532][ T8664] loop2: detected capacity change from 0 to 2048 [ 97.627905][ T8666] loop4: detected capacity change from 0 to 128 [ 97.669472][ T8669] bridge0: port 3(syz_tun) entered blocking state [ 97.675986][ T8669] bridge0: port 3(syz_tun) entered disabled state [ 97.682649][ T8669] syz_tun: entered allmulticast mode [ 97.688568][ T8669] syz_tun: entered promiscuous mode [ 97.700443][ T8670] IPv6: Can't replace route, no match found [ 97.703807][ T8669] bridge0: port 3(syz_tun) entered blocking state [ 97.712901][ T8669] bridge0: port 3(syz_tun) entered forwarding state [ 97.737413][ T8677] netlink: 27 bytes leftover after parsing attributes in process `syz.2.2239'. [ 97.825693][ T8686] random: crng reseeded on system resumption [ 97.854374][ T8689] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2244'. [ 97.895858][ T8693] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2247'. [ 98.054951][ T3731] Bluetooth: hci0: command 0x1003 tx timeout [ 98.061079][ T6334] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 98.139215][ T8721] lo speed is unknown, defaulting to 1000 [ 98.268635][ T8732] loop2: detected capacity change from 0 to 1024 [ 98.283578][ T8732] EXT4-fs: Ignoring removed bh option [ 98.289478][ T8732] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 98.335877][ T3311] EXT4-fs error (device loop2): ext4_read_inline_dir:1476: inode #12: block 7: comm syz-executor: path /453/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=40, inode=14, rec_len=40, size=80 fake=0 [ 98.413291][ T3311] EXT4-fs (loop2): Remounting filesystem read-only [ 98.541561][ T8739] lo speed is unknown, defaulting to 1000 [ 99.101610][ T8793] loop2: detected capacity change from 0 to 1024 [ 99.138552][ T8793] EXT4-fs mount: 61 callbacks suppressed [ 99.138572][ T8793] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 99.141061][ T29] kauditd_printk_skb: 104 callbacks suppressed [ 99.141078][ T29] audit: type=1400 audit(2000000031.744:3371): avc: denied { mounton } for pid=8797 comm="syz.4.2293" path="/470/file0" dev="tmpfs" ino=2431 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 99.224603][ T29] audit: type=1400 audit(2000000031.804:3372): avc: denied { add_name } for pid=8792 comm="syz.2.2290" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 99.245408][ T29] audit: type=1400 audit(2000000031.804:3373): avc: denied { create } for pid=8792 comm="syz.2.2290" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 99.301729][ T8793] EXT4-fs error (device loop2): mb_free_blocks:2017: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt. [ 99.331048][ T29] audit: type=1400 audit(2000000031.925:3374): avc: denied { setopt } for pid=8805 comm="syz.4.2296" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 99.399886][ T8793] EXT4-fs (loop2): Remounting filesystem read-only [ 99.401407][ T29] audit: type=1400 audit(2000000031.996:3375): avc: denied { ioctl } for pid=8810 comm="syz.4.2298" path="socket:[21177]" dev="sockfs" ino=21177 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 99.440199][ T8813] netlink: 'syz.0.2299': attribute type 1 has an invalid length. [ 99.525852][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.611907][ T8822] dvmrp0: entered allmulticast mode [ 99.634470][ T29] audit: type=1326 audit(2000000032.107:3376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8816 comm="syz.0.2302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08209fefc9 code=0x7ffc0000 [ 99.658008][ T29] audit: type=1326 audit(2000000032.107:3377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8816 comm="syz.0.2302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08209fefc9 code=0x7ffc0000 [ 99.681584][ T29] audit: type=1326 audit(2000000032.107:3378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8816 comm="syz.0.2302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=131 compat=0 ip=0x7f08209fefc9 code=0x7ffc0000 [ 99.705085][ T29] audit: type=1326 audit(2000000032.107:3379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8816 comm="syz.0.2302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f08209fefc9 code=0x7ffc0000 [ 99.728586][ T29] audit: type=1400 audit(2000000032.137:3380): avc: denied { allowed } for pid=8776 comm="syz.3.2285" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 99.821070][ T8828] loop4: detected capacity change from 0 to 1024 [ 99.836671][ T8828] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 99.861851][ T8831] loop2: detected capacity change from 0 to 128 [ 99.868420][ T8828] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #11: comm syz.4.2306: iget: bogus i_mode (1) [ 99.889657][ T8828] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.2306: couldn't read orphan inode 11 (err -117) [ 99.927963][ T8828] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 100.023008][ T8828] EXT4-fs error (device loop4): ext4_search_dir:1474: inode #2: block 16: comm syz.4.2306: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0 [ 100.048442][ T8838] netlink: 88 bytes leftover after parsing attributes in process `syz.3.2310'. [ 100.057603][ T8838] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2310'. [ 100.079670][ T8841] EXT4-fs error (device loop4): ext4_search_dir:1474: inode #2: block 16: comm syz.4.2306: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0 [ 100.114855][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.148872][ T8846] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2313'. [ 100.164461][ T8849] netlink: 'syz.5.2315': attribute type 21 has an invalid length. [ 100.177872][ T8847] netlink: 5452 bytes leftover after parsing attributes in process `syz.2.2312'. [ 100.187723][ T8849] netlink: 'syz.5.2315': attribute type 1 has an invalid length. [ 100.279930][ T8861] loop3: detected capacity change from 0 to 256 [ 100.300959][ T8865] vhci_hcd: default hub control req: 8013 v0000 i0000 l31125 [ 100.434909][ T8882] macvtap0: entered promiscuous mode [ 100.447296][ T8882] macvtap0: left promiscuous mode [ 100.475264][ T8892] loop5: detected capacity change from 0 to 512 [ 100.499096][ T8894] pim6reg1: tun_chr_ioctl cmd 2147767521 [ 100.499708][ T8892] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 100.517954][ T8892] ext4 filesystem being mounted at /238/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 100.566093][ T5676] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.582435][ T8905] IPv6: Can't replace route, no match found [ 100.675629][ T8924] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub [ 100.700683][ T8928] loop0: detected capacity change from 0 to 512 [ 100.749437][ T8928] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.2349: couldn't read orphan inode 26 (err -116) [ 100.770471][ T8928] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 100.840528][ T8928] ext4 filesystem being mounted at /482/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 100.902531][ T3317] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.054884][ T8973] lo speed is unknown, defaulting to 1000 [ 101.176300][ T3861] tipc: Subscription rejected, illegal request [ 101.182784][ T8986] loop4: detected capacity change from 0 to 8192 [ 101.369851][ T9017] loop2: detected capacity change from 0 to 128 [ 101.437414][ T9025] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 101.437414][ T9025] program syz.3.2394 not setting count and/or reply_len properly [ 101.521100][ T9035] lo speed is unknown, defaulting to 1000 [ 101.610257][ T9051] SELinux: policydb table sizes (0,0) do not match mine (5,6) [ 101.629570][ T9051] SELinux: failed to load policy [ 101.727969][ T9067] loop3: detected capacity change from 0 to 512 [ 101.747650][ T9067] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 101.756827][ T9067] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 101.798420][ T9067] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 101.806527][ T9067] System zones: 0-2, 18-18, 34-35 [ 101.815910][ T9067] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 101.852594][ T9067] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended [ 101.869637][ T9067] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 101.878140][ T9067] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 101.887543][ T9067] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2413: bg 0: block 353: padding at end of block bitmap is not set [ 101.920434][ T9086] 9pnet: Could not find request transport: 0xffffffffffffffff [ 101.928660][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.045987][ T9110] netlink: 'syz.0.2433': attribute type 3 has an invalid length. [ 102.067447][ T9117] loop2: detected capacity change from 0 to 1024 [ 102.074293][ T9117] EXT4-fs: Ignoring removed bh option [ 102.082582][ T9117] EXT4-fs: inline encryption not supported [ 102.089399][ T9117] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 102.102319][ T9117] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 102.111991][ T9117] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 2: comm syz.2.2436: lblock 2 mapped to illegal pblock 2 (length 1) [ 102.126191][ T9117] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 48: comm syz.2.2436: lblock 0 mapped to illegal pblock 48 (length 1) [ 102.142172][ T9117] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.2436: Failed to acquire dquot type 0 [ 102.153688][ T9117] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6313: Corrupt filesystem [ 102.154007][ T9121] loop5: detected capacity change from 0 to 512 [ 102.169813][ T9117] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.2436: mark_inode_dirty error [ 102.173669][ T9124] loop4: detected capacity change from 0 to 256 [ 102.189080][ T9117] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 102.205773][ T9117] EXT4-fs (loop2): 1 orphan inode deleted [ 102.214346][ T9117] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 102.228714][ T9121] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 102.235963][ T3827] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:16: lblock 1 mapped to illegal pblock 1 (length 1) [ 102.262462][ T3827] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:16: Failed to release dquot type 0 [ 102.301367][ T9117] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 102.315417][ T9117] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended [ 102.325178][ T9117] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ce118, mo2=0000] [ 102.350379][ T9135] bridge0: port 2(bridge_slave_1) entered disabled state [ 102.377716][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.391370][ T5676] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.415090][ T9140] netlink: 'syz.4.2449': attribute type 3 has an invalid length. [ 102.445748][ T9147] loop4: detected capacity change from 0 to 512 [ 102.452453][ T9147] EXT4-fs: Ignoring removed i_version option [ 102.458712][ T9147] EXT4-fs: test_dummy_encryption option not supported [ 102.641089][ T9169] loop4: detected capacity change from 0 to 764 [ 102.648892][ T9169] rock: directory entry would overflow storage [ 102.655172][ T9169] rock: sig=0x5245, size=8, remaining=5 [ 102.674190][ T9175] loop2: detected capacity change from 0 to 512 [ 102.681300][ T9175] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 102.715704][ T9175] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters [ 102.733138][ T9175] EXT4-fs (loop2): 1 truncate cleaned up [ 102.739170][ T9175] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 102.756466][ T9183] loop3: detected capacity change from 0 to 1764 [ 102.776815][ T9175] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 102.820749][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.884136][ T9198] loop5: detected capacity change from 0 to 512 [ 102.941240][ T9208] loop5: detected capacity change from 0 to 512 [ 102.949951][ T9208] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 102.963695][ T9208] EXT4-fs (loop5): 1 truncate cleaned up [ 102.984280][ T9208] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 103.003217][ T9217] loop2: detected capacity change from 0 to 1024 [ 103.005781][ T9208] EXT4-fs error (device loop5): ext4_xattr_block_find:1874: inode #15: comm syz.5.2480: corrupted xattr block 33: invalid header [ 103.010134][ T9217] EXT4-fs: Ignoring removed bh option [ 103.024799][ T9208] EXT4-fs (loop5): Remounting filesystem read-only [ 103.032993][ T9217] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 103.065175][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.077748][ T5676] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.089264][ T3859] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.133613][ T3859] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.165017][ T3859] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.214283][ T3874] Bluetooth: hci0: Frame reassembly failed (-84) [ 103.223836][ T3859] netdevsim netdevsim3 netdevsim0 (unregistering): left allmulticast mode [ 103.237529][ T3859] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.317452][ T9228] lo speed is unknown, defaulting to 1000 [ 103.323758][ T3859] bridge_slave_1: left allmulticast mode [ 103.329673][ T3859] bridge_slave_1: left promiscuous mode [ 103.335534][ T3859] bridge0: port 2(bridge_slave_1) entered disabled state [ 103.346436][ T3859] bridge_slave_0: left allmulticast mode [ 103.352329][ T3859] bridge_slave_0: left promiscuous mode [ 103.358142][ T3859] bridge0: port 1(bridge_slave_0) entered disabled state [ 103.438214][ T3859] dvmrp0 (unregistering): left allmulticast mode [ 103.490758][ T3859] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 103.500670][ T3859] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 103.510185][ T3859] bond0 (unregistering): Released all slaves [ 103.587495][ T3859] hsr_slave_0: left promiscuous mode [ 103.593319][ T3859] hsr_slave_1: left promiscuous mode [ 103.600197][ T3859] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 103.607637][ T3859] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 103.615331][ T3859] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 103.622851][ T3859] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 103.635093][ T3859] team0: left allmulticast mode [ 103.640038][ T3859] team_slave_0: left allmulticast mode [ 103.645535][ T3859] team_slave_1: left allmulticast mode [ 103.651067][ T3859] team0: left promiscuous mode [ 103.656045][ T3859] team_slave_0: left promiscuous mode [ 103.661453][ T3859] team_slave_1: left promiscuous mode [ 103.667402][ T3859] veth1_macvtap: left promiscuous mode [ 103.672942][ T3859] veth0_macvtap: left promiscuous mode [ 103.678687][ T3859] veth1_vlan: left promiscuous mode [ 103.684011][ T3859] veth0_vlan: left promiscuous mode [ 103.695097][ T9270] loop0: detected capacity change from 0 to 32768 [ 103.737921][ T9270] loop0: p1 p2 p3 < > p4 < p5 p6 > [ 103.743241][ T9270] loop0: p1 start 460800 is beyond EOD, truncated [ 103.749718][ T9270] loop0: p2 size 83886080 extends beyond EOD, truncated [ 103.758516][ T3859] team0 (unregistering): Port device team_slave_1 removed [ 103.759025][ T9270] loop0: p5 start 460800 is beyond EOD, truncated [ 103.772197][ T9270] loop0: p6 size 83886080 extends beyond EOD, truncated [ 103.779437][ T3859] team0 (unregistering): Port device team_slave_0 removed [ 103.849601][ T9228] chnl_net:caif_netlink_parms(): no params data found [ 103.897965][ T9278] lo speed is unknown, defaulting to 1000 [ 103.898250][ T9228] bridge0: port 1(bridge_slave_0) entered blocking state [ 103.910988][ T9228] bridge0: port 1(bridge_slave_0) entered disabled state [ 103.932614][ T9228] bridge_slave_0: entered allmulticast mode [ 103.942071][ T9228] bridge_slave_0: entered promiscuous mode [ 103.950450][ T9228] bridge0: port 2(bridge_slave_1) entered blocking state [ 103.957612][ T9228] bridge0: port 2(bridge_slave_1) entered disabled state [ 103.965893][ T9228] bridge_slave_1: entered allmulticast mode [ 103.972991][ T9228] bridge_slave_1: entered promiscuous mode [ 104.017916][ T9228] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 104.028840][ T9228] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 104.054702][ T9228] team0: Port device team_slave_0 added [ 104.066365][ T9228] team0: Port device team_slave_1 added [ 104.090683][ T9228] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 104.097756][ T9228] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 104.118218][ T9297] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9297 comm=syz.0.2517 [ 104.123698][ T9228] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 104.144439][ T29] kauditd_printk_skb: 207 callbacks suppressed [ 104.144458][ T29] audit: type=1400 audit(2000000036.776:3585): avc: denied { create } for pid=9295 comm="syz.4.2515" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 104.147802][ T9228] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 104.170356][ T29] audit: type=1400 audit(2000000036.786:3586): avc: denied { connect } for pid=9295 comm="syz.4.2515" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 104.172503][ T9228] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 104.179448][ T29] audit: type=1400 audit(2000000036.786:3587): avc: denied { write } for pid=9295 comm="syz.4.2515" path="socket:[22414]" dev="sockfs" ino=22414 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 104.199144][ T9228] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 104.290210][ T29] audit: type=1400 audit(2000000036.916:3588): avc: denied { write } for pid=9301 comm="syz.5.2519" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 104.295293][ T9228] hsr_slave_0: entered promiscuous mode [ 104.317485][ T9228] hsr_slave_1: entered promiscuous mode [ 104.331470][ T29] audit: type=1400 audit(2000000036.957:3589): avc: denied { allowed } for pid=9300 comm="syz.4.2520" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 104.350851][ T29] audit: type=1400 audit(2000000036.957:3590): avc: denied { create } for pid=9300 comm="syz.4.2520" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 104.372100][ T29] audit: type=1400 audit(2000000036.957:3591): avc: denied { map } for pid=9300 comm="syz.4.2520" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=22433 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 104.396609][ T29] audit: type=1400 audit(2000000036.957:3592): avc: denied { read write } for pid=9300 comm="syz.4.2520" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=22433 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 104.423571][ T29] audit: type=1400 audit(2000000036.977:3593): avc: denied { mount } for pid=9305 comm="syz.5.2521" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1 [ 104.445888][ T29] audit: type=1400 audit(2000000036.987:3594): avc: denied { mount } for pid=9305 comm="syz.5.2521" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 104.583862][ T9228] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 104.601969][ T9228] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 104.612843][ T9228] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 104.623300][ T9228] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 104.689000][ T9228] 8021q: adding VLAN 0 to HW filter on device bond0 [ 104.702729][ T9228] 8021q: adding VLAN 0 to HW filter on device team0 [ 104.713172][ T3859] bridge0: port 1(bridge_slave_0) entered blocking state [ 104.720250][ T3859] bridge0: port 1(bridge_slave_0) entered forwarding state [ 104.742190][ T3859] bridge0: port 2(bridge_slave_1) entered blocking state [ 104.749398][ T3859] bridge0: port 2(bridge_slave_1) entered forwarding state [ 104.755759][ T9323] loop5: detected capacity change from 0 to 8192 [ 104.766955][ T9228] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 104.859803][ T9228] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 104.934199][ T9355] loop0: detected capacity change from 0 to 512 [ 104.971947][ T9355] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.2538: inode has both inline data and extents flags [ 104.996111][ T9355] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.2538: couldn't read orphan inode 15 (err -117) [ 105.017081][ T9355] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 105.064851][ T9228] veth0_vlan: entered promiscuous mode [ 105.073269][ T9228] veth1_vlan: entered promiscuous mode [ 105.089380][ T3317] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.104126][ T9228] veth0_macvtap: entered promiscuous mode [ 105.111874][ T9228] veth1_macvtap: entered promiscuous mode [ 105.133437][ T9228] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 105.144639][ T9369] loop0: detected capacity change from 0 to 512 [ 105.152633][ T9228] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 105.161974][ T9369] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 105.175077][ T3859] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.193160][ T9369] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 214 vs 220 free clusters [ 105.194528][ T3859] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.217518][ T3731] Bluetooth: hci0: command 0x1003 tx timeout [ 105.219399][ T6334] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 105.229930][ T9369] EXT4-fs (loop0): 1 truncate cleaned up [ 105.230872][ T3859] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.244708][ T3859] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.245896][ T9369] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 105.294875][ T9369] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 105.333719][ T3317] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.486376][ T9404] netlink: 'syz.2.2554': attribute type 1 has an invalid length. [ 105.494252][ T9404] __nla_validate_parse: 3 callbacks suppressed [ 105.494269][ T9404] netlink: 224 bytes leftover after parsing attributes in process `syz.2.2554'. [ 105.648390][ T9421] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2563'. [ 105.657427][ T9421] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2563'. [ 105.719112][ T9430] IPv6: NLM_F_CREATE should be specified when creating new route [ 105.764421][ T9437] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 106.392963][ T9495] loop5: detected capacity change from 0 to 2048 [ 106.414234][ T9495] EXT4-fs (loop5): failed to initialize system zone (-117) [ 106.421635][ T9495] EXT4-fs (loop5): mount failed [ 106.450085][ T9499] ieee802154 phy1 wpan1: encryption failed: -22 [ 106.517520][ T9507] xt_hashlimit: max too large, truncated to 1048576 [ 106.525544][ T9507] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 106.541307][ T9509] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2597'. [ 106.567876][ T9513] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2599'. [ 106.576860][ T9513] netlink: 'syz.6.2599': attribute type 21 has an invalid length. [ 106.610778][ T9516] loop5: detected capacity change from 0 to 1024 [ 106.617747][ T9516] EXT4-fs: Ignoring removed bh option [ 106.623433][ T9516] EXT4-fs: inline encryption not supported [ 106.630058][ T9516] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 106.642041][ T9516] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 106.651681][ T9516] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #3: block 2: comm syz.5.2600: lblock 2 mapped to illegal pblock 2 (length 1) [ 106.668750][ T9516] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #3: block 48: comm syz.5.2600: lblock 0 mapped to illegal pblock 48 (length 1) [ 106.684096][ T9516] EXT4-fs error (device loop5): ext4_acquire_dquot:6945: comm syz.5.2600: Failed to acquire dquot type 0 [ 106.695538][ T9516] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6313: Corrupt filesystem [ 106.705639][ T9516] EXT4-fs error (device loop5): ext4_evict_inode:254: inode #11: comm syz.5.2600: mark_inode_dirty error [ 106.717836][ T9516] EXT4-fs warning (device loop5): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 106.728731][ T9516] EXT4-fs (loop5): 1 orphan inode deleted [ 106.738784][ T9516] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 106.751508][ T3827] EXT4-fs error (device loop5): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:16: lblock 1 mapped to illegal pblock 1 (length 1) [ 106.766193][ T3827] EXT4-fs error (device loop5): ext4_release_dquot:6981: comm kworker/u8:16: Failed to release dquot type 0 [ 106.778486][ T9516] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 106.792423][ T9516] EXT4-fs (loop5): warning: mounting fs with errors, running e2fsck is recommended [ 106.801993][ T9516] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ce118, mo2=0000] [ 106.824203][ T5676] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 106.837063][ T9522] loop6: detected capacity change from 0 to 512 [ 106.852838][ T9522] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 106.865522][ T9522] ext4 filesystem being mounted at /9/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 106.878532][ T9522] EXT4-fs error (device loop6): ext4_do_update_inode:5632: inode #2: comm syz.6.2603: corrupted inode contents [ 106.890736][ T9522] EXT4-fs error (device loop6): ext4_dirty_inode:6517: inode #2: comm syz.6.2603: mark_inode_dirty error [ 106.902456][ T9522] EXT4-fs error (device loop6): ext4_do_update_inode:5632: inode #2: comm syz.6.2603: corrupted inode contents [ 106.915058][ T9522] EXT4-fs error (device loop6): ext4_do_update_inode:5632: inode #2: comm syz.6.2603: corrupted inode contents [ 106.937353][ T9228] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.163747][ T9559] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2620'. [ 107.223752][ T9569] loop6: detected capacity change from 0 to 164 [ 107.260073][ T9569] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 107.271689][ T9569] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 107.280902][ T9569] Symlink component flag not implemented [ 107.286539][ T9569] Symlink component flag not implemented [ 107.294245][ T9569] Symlink component flag not implemented (7) [ 107.300292][ T9569] Symlink component flag not implemented (116) [ 107.526170][ T9621] netlink: 14 bytes leftover after parsing attributes in process `syz.4.2648'. [ 107.576739][ T9627] netlink: 5452 bytes leftover after parsing attributes in process `syz.6.2651'. [ 107.633557][ T9638] netlink: 'syz.0.2656': attribute type 21 has an invalid length. [ 107.650505][ T9638] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2656'. [ 107.659714][ T9638] netlink: 'syz.0.2656': attribute type 1 has an invalid length. [ 107.746614][ T9652] loop0: detected capacity change from 0 to 512 [ 107.756168][ T9652] EXT4-fs warning (device loop0): ext4_xattr_inode_get:560: inode #11: comm syz.0.2671: EA inode hash validation failed [ 107.769608][ T9652] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #15: comm syz.0.2671: corrupted inode contents [ 107.784827][ T9652] EXT4-fs error (device loop0): ext4_dirty_inode:6517: inode #15: comm syz.0.2671: mark_inode_dirty error [ 107.798791][ T9652] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #15: comm syz.0.2671: corrupted inode contents [ 107.815043][ T9652] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2996: inode #15: comm syz.0.2671: mark_inode_dirty error [ 107.831968][ T9652] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2999: inode #15: comm syz.0.2671: mark inode dirty (error -117) [ 107.845277][ T9652] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -117) [ 107.850781][ T9659] loop5: detected capacity change from 0 to 512 [ 107.854488][ T9652] EXT4-fs (loop0): 1 orphan inode deleted [ 107.867003][ T9652] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 107.896843][ T9659] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 107.928509][ T3317] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.947964][ T9659] EXT4-fs error (device loop5): __ext4_fill_super:5512: inode #2: comm syz.5.2665: inode has both inline data and extents flags [ 107.984718][ T9676] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2673'. [ 107.985918][ T9659] EXT4-fs (loop5): get root inode failed [ 107.999406][ T9659] EXT4-fs (loop5): mount failed [ 108.097199][ T9694] netlink: 'syz.0.2680': attribute type 4 has an invalid length. [ 108.128920][ T9698] loop0: detected capacity change from 0 to 512 [ 108.150989][ T9702] loop4: detected capacity change from 0 to 1024 [ 108.158845][ T9702] EXT4-fs: Ignoring removed bh option [ 108.165056][ T9702] EXT4-fs: inline encryption not supported [ 108.186962][ T9702] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 108.198807][ T9698] EXT4-fs (loop0): 1 truncate cleaned up [ 108.205097][ T9698] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 108.221364][ T9698] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2682: bg 0: block 465: padding at end of block bitmap is not set [ 108.236226][ T9698] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 108.248572][ T9698] EXT4-fs (loop0): This should not happen!! Data will be lost [ 108.248572][ T9698] [ 108.258971][ T9702] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 108.268088][ T9702] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 2: comm syz.4.2684: lblock 2 mapped to illegal pblock 2 (length 1) [ 108.309095][ T9702] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 48: comm syz.4.2684: lblock 0 mapped to illegal pblock 48 (length 1) [ 108.323832][ T3827] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 64 with error 28 [ 108.336338][ T3827] EXT4-fs (loop0): This should not happen!! Data will be lost [ 108.336338][ T3827] [ 108.346019][ T3827] EXT4-fs (loop0): Total free blocks count 0 [ 108.352020][ T3827] EXT4-fs (loop0): Free/Dirty block details [ 108.358111][ T3827] EXT4-fs (loop0): free_blocks=0 [ 108.363281][ T3827] EXT4-fs (loop0): dirty_blocks=64 [ 108.368452][ T3827] EXT4-fs (loop0): Block reservation details [ 108.375204][ T9702] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.2684: Failed to acquire dquot type 0 [ 108.391613][ T9702] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6313: Corrupt filesystem [ 108.401670][ T9702] EXT4-fs error (device loop4): ext4_evict_inode:254: inode #11: comm syz.4.2684: mark_inode_dirty error [ 108.414620][ T9702] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 108.431989][ T9714] loop2: detected capacity change from 0 to 512 [ 108.441836][ T9716] loop5: detected capacity change from 0 to 512 [ 108.449218][ T9702] EXT4-fs (loop4): 1 orphan inode deleted [ 108.455217][ T9714] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 108.456022][ T9702] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 108.464323][ T9714] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 108.477077][ T3827] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:16: lblock 1 mapped to illegal pblock 1 (length 1) [ 108.501150][ T9718] loop0: detected capacity change from 0 to 256 [ 108.509055][ T3827] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:16: Failed to release dquot type 0 [ 108.524591][ T9716] EXT4-fs (loop5): 1 orphan inode deleted [ 108.530974][ T9716] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 108.534507][ T9714] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 108.544153][ T9716] ext4 filesystem being mounted at /303/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 108.551729][ T9714] System zones: 0-2, 18-18, 34-35 [ 108.562767][ T3859] EXT4-fs error (device loop5): ext4_release_dquot:6981: comm kworker/u8:47: Failed to release dquot type 1 [ 108.568054][ T9714] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 108.591013][ T9702] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 108.606235][ T9724] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended [ 108.615973][ T9714] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended [ 108.625519][ T9724] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ce118, mo2=0000] [ 108.626492][ T9714] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 108.641679][ T9714] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 108.650963][ T5676] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.661192][ T9714] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2690: bg 0: block 353: padding at end of block bitmap is not set [ 108.678364][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.690874][ T9726] loop0: detected capacity change from 0 to 256 [ 108.708820][ T9726] bio_check_eod: 7754 callbacks suppressed [ 108.708840][ T9726] syz.0.2694: attempt to access beyond end of device [ 108.708840][ T9726] loop0: rw=2049, sector=256, nr_sectors = 40 limit=256 [ 108.729453][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.782871][ T9739] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub [ 108.810182][ T9742] IPv6: Can't replace route, no match found [ 108.844743][ T9748] program syz.4.2703 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 108.912242][ T9758] loop0: detected capacity change from 0 to 512 [ 108.919667][ T9758] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 108.928844][ T9758] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 108.938345][ T9758] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 108.946512][ T9758] System zones: 0-2, 18-18, 34-35 [ 108.952063][ T9758] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 108.966564][ T9758] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended [ 108.976157][ T9758] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 108.984210][ T9758] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 108.994513][ T9758] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2707: bg 0: block 353: padding at end of block bitmap is not set [ 109.018918][ T3317] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.034863][ T9762] loop4: detected capacity change from 0 to 512 [ 109.044025][ T9762] EXT4-fs (loop4): 1 truncate cleaned up [ 109.050240][ T9762] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 109.057323][ T9766] loop0: detected capacity change from 0 to 1024 [ 109.069108][ T9766] EXT4-fs: Ignoring removed bh option [ 109.074931][ T9766] EXT4-fs: inline encryption not supported [ 109.081558][ T9766] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 109.082250][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.092794][ T9766] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 109.109973][ T9766] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 2: comm syz.0.2708: lblock 2 mapped to illegal pblock 2 (length 1) [ 109.124290][ T9766] __quota_error: 194 callbacks suppressed [ 109.124309][ T9766] Quota error (device loop0): qtree_write_dquot: dquota write failed [ 109.138856][ T9766] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 48: comm syz.0.2708: lblock 0 mapped to illegal pblock 48 (length 1) [ 109.153590][ T9766] Quota error (device loop0): v2_write_file_info: Can't write info structure [ 109.162423][ T9766] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.2708: Failed to acquire dquot type 0 [ 109.173896][ T9766] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6313: Corrupt filesystem [ 109.183641][ T9766] EXT4-fs error (device loop0): ext4_evict_inode:254: inode #11: comm syz.0.2708: mark_inode_dirty error [ 109.196298][ T9766] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 109.208526][ T9766] EXT4-fs (loop0): 1 orphan inode deleted [ 109.214731][ T9766] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 109.227480][ T9773] loop4: detected capacity change from 0 to 128 [ 109.233824][ T3859] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:47: lblock 1 mapped to illegal pblock 1 (length 1) [ 109.258334][ T3859] Quota error (device loop0): remove_tree: Can't read quota data block 1 [ 109.266822][ T3859] EXT4-fs error (device loop0): ext4_release_dquot:6981: comm kworker/u8:47: Failed to release dquot type 0 [ 109.281501][ T9766] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 109.295900][ T9775] --map-set only usable from mangle table [ 109.312551][ T9766] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended [ 109.329253][ T9766] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ce118, mo2=0000] [ 109.353250][ T3317] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.429353][ T9790] loop0: detected capacity change from 0 to 512 [ 109.476597][ T9790] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 109.506219][ T9790] ext4 filesystem being mounted at /565/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 109.555891][ T9790] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #2: comm syz.0.2720: corrupted inode contents [ 109.581502][ T29] audit: type=1400 audit(2000000042.240:3782): avc: denied { read write } for pid=9800 comm="syz.5.2725" name="cgroup.procs" dev="cgroup" ino=396 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object" [ 109.607266][ T29] audit: type=1400 audit(2000000042.240:3783): avc: denied { open } for pid=9800 comm="syz.5.2725" path="/syzcgroup/cpu/syz5/cgroup.procs" dev="cgroup" ino=396 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object" [ 109.654219][ T9790] EXT4-fs error (device loop0): ext4_dirty_inode:6517: inode #2: comm syz.0.2720: mark_inode_dirty error [ 109.670231][ T9790] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #2: comm syz.0.2720: corrupted inode contents [ 109.682144][ T29] audit: type=1400 audit(2000000042.311:3784): avc: denied { create } for pid=9806 comm="syz.6.2727" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 109.692414][ T9809] bpf: Bad value for 'uid' [ 109.701676][ T29] audit: type=1400 audit(2000000042.311:3785): avc: denied { ioctl } for pid=9806 comm="syz.6.2727" path="socket:[24858]" dev="sockfs" ino=24858 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 109.719985][ T9805] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #2: comm syz.0.2720: corrupted inode contents [ 109.730767][ T29] audit: type=1400 audit(2000000042.311:3786): avc: denied { bind } for pid=9806 comm="syz.6.2727" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 109.761947][ T29] audit: type=1400 audit(2000000042.311:3787): avc: denied { setopt } for pid=9806 comm="syz.6.2727" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 109.782512][ T29] audit: type=1400 audit(2000000042.351:3788): avc: denied { getopt } for pid=9808 comm="syz.5.2728" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 109.843529][ T3317] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.864145][ T9820] loop6: detected capacity change from 0 to 1024 [ 109.870829][ T9820] EXT4-fs: Ignoring removed bh option [ 109.876252][ T9820] EXT4-fs: inline encryption not supported [ 109.887398][ T9820] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 109.920513][ T9820] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 109.943357][ T9820] EXT4-fs error (device loop6): ext4_map_blocks:778: inode #3: block 2: comm syz.6.2732: lblock 2 mapped to illegal pblock 2 (length 1) [ 110.008946][ T9820] EXT4-fs error (device loop6): ext4_map_blocks:778: inode #3: block 48: comm syz.6.2732: lblock 0 mapped to illegal pblock 48 (length 1) [ 110.036177][ T9820] EXT4-fs error (device loop6): ext4_acquire_dquot:6945: comm syz.6.2732: Failed to acquire dquot type 0 [ 110.050184][ T9820] EXT4-fs error (device loop6) in ext4_reserve_inode_write:6313: Corrupt filesystem [ 110.059938][ T9820] EXT4-fs error (device loop6): ext4_evict_inode:254: inode #11: comm syz.6.2732: mark_inode_dirty error [ 110.073569][ T9820] EXT4-fs warning (device loop6): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 110.084082][ T9820] EXT4-fs (loop6): 1 orphan inode deleted [ 110.090295][ T9820] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 110.138317][ T3827] EXT4-fs error (device loop6): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:16: lblock 1 mapped to illegal pblock 1 (length 1) [ 110.167078][ T3827] EXT4-fs error (device loop6): ext4_release_dquot:6981: comm kworker/u8:16: Failed to release dquot type 0 [ 110.189862][ T9842] loop0: detected capacity change from 0 to 2048 [ 110.195214][ T9820] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 110.209549][ T9840] EXT4-fs (loop6): warning: mounting fs with errors, running e2fsck is recommended [ 110.219385][ T9840] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ce118, mo2=0000] [ 110.233871][ T9842] EXT4-fs (loop0): failed to initialize system zone (-117) [ 110.266146][ T9842] EXT4-fs (loop0): mount failed [ 110.279205][ T9228] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 110.323843][ T9848] program syz.5.2746 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 110.657550][ T9879] loop4: detected capacity change from 0 to 128 [ 110.668927][ T9881] __nla_validate_parse: 6 callbacks suppressed [ 110.669003][ T9881] netlink: 1 bytes leftover after parsing attributes in process `syz.5.2760'. [ 110.727004][ T9889] loop4: detected capacity change from 0 to 512 [ 110.743750][ T9889] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 110.758232][ T9889] ext4 filesystem being mounted at /578/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 110.772467][ T9889] capability: warning: `syz.4.2764' uses 32-bit capabilities (legacy support in use) [ 110.784597][ T9897] lo speed is unknown, defaulting to 1000 [ 110.828336][ T9899] loop5: detected capacity change from 0 to 512 [ 110.846971][ T9901] loop2: detected capacity change from 0 to 1024 [ 110.856333][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 110.865941][ T9901] EXT4-fs: Ignoring removed bh option [ 110.866268][ T9899] EXT4-fs error (device loop5): ext4_xattr_inode_iget:437: comm syz.5.2769: Parent and EA inode have the same ino 15 [ 110.871526][ T9901] EXT4-fs: inline encryption not supported [ 110.890281][ T9899] EXT4-fs error (device loop5): ext4_xattr_inode_iget:437: comm syz.5.2769: Parent and EA inode have the same ino 15 [ 110.891176][ T9901] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 110.913766][ T9899] EXT4-fs (loop5): 1 orphan inode deleted [ 110.928528][ T9901] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 110.939579][ T9899] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 110.973318][ T9901] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 2: comm syz.2.2770: lblock 2 mapped to illegal pblock 2 (length 1) [ 111.012555][ T5676] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.045044][ T9901] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 48: comm syz.2.2770: lblock 0 mapped to illegal pblock 48 (length 1) [ 111.059453][ T9901] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.2770: Failed to acquire dquot type 0 [ 111.071129][ T9901] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6313: Corrupt filesystem [ 111.081655][ T9901] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.2770: mark_inode_dirty error [ 111.093211][ T9901] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 111.103584][ T9901] EXT4-fs (loop2): 1 orphan inode deleted [ 111.109915][ T9901] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 111.122502][ T12] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1) [ 111.137080][ T12] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:0: Failed to release dquot type 0 [ 111.177051][ T9917] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2776'. [ 111.191887][ T9901] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 111.210265][ T9901] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended [ 111.213332][ T9919] loop0: detected capacity change from 0 to 512 [ 111.224149][ T9901] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ce118, mo2=0000] [ 111.240335][ T9919] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 111.257200][ T9922] loop4: detected capacity change from 0 to 512 [ 111.277743][ T9922] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 111.291792][ T3311] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.305459][ T9926] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 111.305459][ T9926] program syz.5.2779 not setting count and/or reply_len properly [ 111.324278][ T9922] ext4 filesystem being mounted at /581/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 111.339708][ T9928] program syz.6.2780 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 111.367581][ T9922] EXT4-fs (loop4): shut down requested (0) [ 111.387793][ T3317] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.393638][ T9932] loop6: detected capacity change from 0 to 512 [ 111.403996][ T9932] EXT4-fs: Ignoring removed orlov option [ 111.410539][ T3321] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.419944][ T9932] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 111.441490][ T9938] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2784'. [ 111.450669][ T9932] EXT4-fs (loop6): orphan cleanup on readonly fs [ 111.454059][ T9941] lo speed is unknown, defaulting to 1000 [ 111.483862][ T9932] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.2782: bg 0: block 248: padding at end of block bitmap is not set [ 111.548373][ T9932] EXT4-fs error (device loop6): ext4_acquire_dquot:6945: comm syz.6.2782: Failed to acquire dquot type 1 [ 111.570419][ T9932] EXT4-fs (loop6): 1 truncate cleaned up [ 111.611209][ T9961] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2795'. [ 111.620682][ T9932] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 111.637829][ T9963] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=14385 sclass=netlink_route_socket pid=9963 comm=syz.2.2796 [ 111.640406][ T9956] Process accounting resumed [ 111.653703][ T9965] loop0: detected capacity change from 0 to 128 [ 111.676322][ T9932] EXT4-fs: Ignoring removed orlov option [ 111.691140][ T9932] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 111.692387][ T9965] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 111.713678][ T9965] ext4 filesystem being mounted at /584/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 111.729785][ T9932] EXT4-fs (loop6): warning: mounting fs with errors, running e2fsck is recommended [ 111.751429][ T3317] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 111.774495][ T9932] EXT4-fs error (device loop6): __ext4_remount:6748: comm syz.6.2782: Abort forced by user [ 111.791626][ T9932] EXT4-fs (loop6): Remounting filesystem read-only [ 111.798300][ T9932] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 111.814212][ T9932] ext4 filesystem being remounted at /51/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 111.871651][ T9228] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.932264][ T9998] usb usb8: usbfs: process 9998 (syz.4.2811) did not claim interface 0 before use [ 112.004077][T10012] 9pnet: Could not find request transport: f [ 112.030863][T10021] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22 [ 112.139116][T10041] loop0: detected capacity change from 0 to 512 [ 112.148571][T10040] netlink: 'syz.6.2830': attribute type 10 has an invalid length. [ 112.148811][T10041] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 112.169032][T10041] EXT4-fs (loop0): 1 truncate cleaned up [ 112.175550][T10041] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 112.192151][T10040] team0 (unregistering): Port device team_slave_0 removed [ 112.203212][T10041] EXT4-fs error (device loop0): __ext4_iget:5443: inode #12: block 2: comm syz.0.2832: invalid block [ 112.207363][T10044] loop2: detected capacity change from 0 to 1024 [ 112.224475][T10040] team0 (unregistering): Port device team_slave_1 removed [ 112.234788][T10041] EXT4-fs (loop0): Remounting filesystem read-only [ 112.237587][T10044] EXT4-fs: Ignoring removed orlov option [ 112.254316][ T3317] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 112.275501][T10044] ext4 filesystem being mounted at /565/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 112.414251][T10065] lo speed is unknown, defaulting to 1000 [ 112.462260][T10075] netlink: 5452 bytes leftover after parsing attributes in process `syz.0.2847'. [ 112.648774][T10099] loop5: detected capacity change from 0 to 2048 [ 112.678575][T10109] netlink: 'syz.4.2864': attribute type 4 has an invalid length. [ 112.699157][T10099] ext4 filesystem being mounted at /333/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 112.738667][T10116] loop4: detected capacity change from 0 to 512 [ 112.747161][T10116] EXT4-fs (loop4): orphan cleanup on readonly fs [ 112.754702][T10116] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2866: bg 0: block 248: padding at end of block bitmap is not set [ 112.770583][T10116] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.2866: Failed to acquire dquot type 1 [ 112.783122][T10120] ================================================================== [ 112.791249][T10120] BUG: KCSAN: data-race in __xa_set_mark / xas_find_marked [ 112.798485][T10120] [ 112.800821][T10120] read-write to 0xffff888106f8bb40 of 8 bytes by task 10099 on cpu 0: [ 112.808994][T10120] __xa_set_mark+0xd2/0x1a0 [ 112.813519][T10120] __folio_mark_dirty+0x384/0x4a0 [ 112.818560][T10120] mark_buffer_dirty+0x11e/0x210 [ 112.823512][T10120] folio_zero_new_buffers+0x28c/0x2e0 [ 112.828899][T10120] block_write_end+0x200/0x210 [ 112.833681][T10120] ext4_da_write_end+0x1d3/0x800 [ 112.838634][T10120] generic_perform_write+0x312/0x490 [ 112.843944][T10120] ext4_buffered_write_iter+0x1ee/0x3c0 [ 112.849500][T10120] ext4_file_write_iter+0x387/0xf60 [ 112.854746][T10120] vfs_write+0x52a/0x960 [ 112.858998][T10120] ksys_write+0xda/0x1a0 [ 112.863251][T10120] __x64_sys_write+0x40/0x50 [ 112.867852][T10120] x64_sys_call+0x2802/0x3000 [ 112.872537][T10120] do_syscall_64+0xd2/0x200 [ 112.877067][T10120] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.882972][T10120] [ 112.885309][T10120] read to 0xffff888106f8bb40 of 8 bytes by task 10120 on cpu 1: [ 112.892943][T10120] xas_find_marked+0x218/0x620 [ 112.897727][T10120] find_get_entry+0x5d/0x380 [ 112.902342][T10120] filemap_get_folios_tag+0x13b/0x210 [ 112.907747][T10120] mpage_prepare_extent_to_map+0x320/0xc00 [ 112.914179][T10120] ext4_do_writepages+0xa05/0x2750 [ 112.919351][T10120] ext4_writepages+0x176/0x300 [ 112.924132][T10120] do_writepages+0x1c6/0x310 [ 112.928737][T10120] __filemap_fdatawrite_range+0xfb/0x140 [ 112.934389][T10120] generic_fadvise+0x312/0x430 [ 112.939261][T10120] __x64_sys_fadvise64+0xcb/0x110 [ 112.944315][T10120] x64_sys_call+0x29c5/0x3000 [ 112.949007][T10120] do_syscall_64+0xd2/0x200 [ 112.953526][T10120] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.959425][T10120] [ 112.961753][T10120] value changed: 0x0fffffffffffffff -> 0x3fffffffffffffff [ 112.968856][T10120] [ 112.971178][T10120] Reported by Kernel Concurrency Sanitizer on: [ 112.977337][T10120] CPU: 1 UID: 0 PID: 10120 Comm: syz.5.2857 Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 112.988728][T10120] Tainted: [W]=WARN [ 112.992537][T10120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 113.002612][T10120] ================================================================== [ 113.031865][T10116] EXT4-fs (loop4): 1 truncate cleaned up [ 113.054934][T10120] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.2857: bg 0: block 345: padding at end of block bitmap is not set [ 113.069614][T10120] EXT4-fs (loop5): Remounting filesystem read-only