last executing test programs: 1m43.788303439s ago: executing program 4 (id=1401): r0 = socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="78000000100001002abd7004ffdbdf2500000000", @ANYRES32=r2, @ANYBLOB="104e0600016a030058001280110001006272696467655f736c617665000000004000058004001800060002"], 0x78}, 0x1, 0x0, 0x0, 0x400c080}, 0x4882) 1m43.629043222s ago: executing program 4 (id=1405): r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c) syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0) recvmmsg(r0, &(0x7f00000057c0)=[{{0x0, 0x0, &(0x7f0000002cc0)=[{&(0x7f00000017c0)=""/130, 0x82}], 0x1}, 0xa1}], 0x1, 0x0, 0x0) 1m43.574407713s ago: executing program 4 (id=1406): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x80000001}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000400)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x800c88, &(0x7f0000000600), 0x1, 0x5a0, &(0x7f0000000640)="$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") 1m43.497321074s ago: executing program 4 (id=1412): r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='mm_page_free\x00', r1}, 0x10) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x47cdc) 1m43.415471165s ago: executing program 4 (id=1420): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x207, &(0x7f0000000000), 0x1, 0x46f, &(0x7f0000001200)="$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") mount(0x0, &(0x7f0000000240)='.\x00', 0x0, 0x2200020, 0x0) chdir(&(0x7f0000000000)='./file0\x00') rename(&(0x7f0000000b40)='./file0\x00', &(0x7f0000000b80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 1m42.989640542s ago: executing program 4 (id=1434): ptrace(0x10, 0x1) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x6, 0x0, 0x0, 0x0, 0x8000000009917, 0x400000000000fffd}, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0xffffffffffffffff}, 0x0) sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x1}, 0x0) 1m27.698807318s ago: executing program 32 (id=1434): ptrace(0x10, 0x1) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x6, 0x0, 0x0, 0x0, 0x8000000009917, 0x400000000000fffd}, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0xffffffffffffffff}, 0x0) sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x1}, 0x0) 59.157033218s ago: executing program 2 (id=2821): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='rss_stat\x00', r0}, 0x10) syz_clone(0x42000000, 0x0, 0x0, 0x0, 0x0, 0x0) 59.092153048s ago: executing program 2 (id=2824): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000340)='kmem_cache_free\x00', r1}, 0x18) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="c40000000001050500000000000000000a0000003c0002802c00018014000300ff01000000000000000000000000000114000400ff0200000000000000000000000000010c00028005000100000000003c0001800c00028005000100000000002c00018014000300ff02000000000000000000000000000114000400fc000000000000000000002000000001080007400000000030000e"], 0xc4}}, 0x0) 59.04584989s ago: executing program 2 (id=2826): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) recvmmsg(r1, &(0x7f0000000cc0)=[{{0x0, 0x0, 0x0}, 0x5}], 0x1, 0x40010700, 0x0) 59.04121566s ago: executing program 2 (id=2828): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0) mount$bind(0x0, &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x20000, 0x0) open_tree(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file0\x00', 0x89901) 59.00730329s ago: executing program 2 (id=2830): r0 = syz_clone(0x20a00000, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) r1 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r1, 0x0) ptrace$getregset(0x4204, r0, 0x202, &(0x7f0000000180)={0x0}) 58.670192675s ago: executing program 2 (id=2845): r0 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10) sendmsg$tipc(r0, &(0x7f0000000280)={&(0x7f0000000040), 0x10, 0x0}, 0x0) sendmsg$tipc(r0, &(0x7f00000000c0)={&(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x1, {0x2, 0x0, 0x2}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x20000080) 58.624914216s ago: executing program 33 (id=2845): r0 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10) sendmsg$tipc(r0, &(0x7f0000000280)={&(0x7f0000000040), 0x10, 0x0}, 0x0) sendmsg$tipc(r0, &(0x7f00000000c0)={&(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x1, {0x2, 0x0, 0x2}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x20000080) 15.56423934s ago: executing program 5 (id=4568): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x446, &(0x7f00000001c0)={[{@stripe={'stripe', 0x3d, 0x2}}, {@journal_dev={'journal_dev', 0x3d, 0x1045}}, {@oldalloc}, {@noquota}, {@data_err_ignore}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@delalloc}, {@errors_continue}, {@orlov}, {@user_xattr}, {@quota}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x553, &(0x7f0000001080)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x4a02, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) pwrite64(r1, &(0x7f00000005c0)='\"', 0x1, 0x4fed0) pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000) 15.470328981s ago: executing program 5 (id=4570): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r2 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$ARPT_SO_SET_REPLACE(r2, 0x0, 0x60, &(0x7f0000000080)={'filter\x00', 0x7, 0x4, 0x438, 0x240, 0x240, 0x0, 0x350, 0x370, 0x350, 0x4, 0x0, {[{{@arp={@private, @local, 0x0, 0x0, 0x0, 0x0, {@mac=@broadcast}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth1_to_batadv\x00', 'batadv0\x00'}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "bc2e329885ea3654891fbae8c6c66e07212432bde429bcda7deb48d85c6f5e269c2021c8f8dc09af0b3f2e10e8ac79cc67e264613c4be6838ee2daacf7926a6e"}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @rand_addr, @broadcast}}}, {{@arp={@private, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {@mac=@link_local}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0\x00', 'veth0_to_bond\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @initdev={0xac, 0x1e, 0x0, 0x0}, @empty}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x488) 15.413647172s ago: executing program 5 (id=4575): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_GET(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x14, r2, 0x1, 0x0, 0x25cfdbfc, {0x54}}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x40010) 15.368852963s ago: executing program 5 (id=4579): syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000300)='./file0\x00', 0xa0835c, &(0x7f0000000340)={[{@nojournal_checksum}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@dioread_nolock}, {@usrjquota}, {@oldalloc}, {@sysvgroups}]}, 0x2, 0x44a, &(0x7f0000000880)="$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") r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10) r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f00000001c0)=0x10) 15.330961953s ago: executing program 5 (id=4580): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x808000, 0x4, 0x20300, 0xfc}, 0x1c) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000100)=@req3={0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x6, 0x861}, 0x1c) 15.112633157s ago: executing program 5 (id=4592): syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000500), 0x28002) r1 = dup(r0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 15.100604497s ago: executing program 34 (id=4592): syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000500), 0x28002) r1 = dup(r0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) 1.707362454s ago: executing program 7 (id=5038): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a30000000006c000000160a01020000000000000000010000000900010073797a30000000000900020073797a300000000040000380"], 0xfc}}, 0x0) 1.640234885s ago: executing program 7 (id=5040): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x20, 0x7ffc0001}]}) timer_delete(0x0) 1.576243556s ago: executing program 7 (id=5042): r0 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000300)={'vxcan1\x00', 0x0}) bind$can_raw(r0, &(0x7f0000000000)={0x1d, r1}, 0x10) setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, 0x0, 0x0) bind$can_raw(r0, &(0x7f0000000080), 0x10) 1.032829084s ago: executing program 7 (id=5044): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10) time(0x0) 1.028450204s ago: executing program 3 (id=5046): openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0) 1.003154035s ago: executing program 7 (id=5047): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = syz_io_uring_setup(0x497, &(0x7f00000000c0)={0x0, 0x9013, 0x100, 0x4, 0x165}, &(0x7f0000000000)=0x0, &(0x7f0000000300)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x40002020}) io_uring_enter(r1, 0x3517, 0x173d, 0x42, 0x0, 0x0) 914.569646ms ago: executing program 1 (id=5051): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70300001d000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18) mincore(&(0x7f0000000000/0x800000)=nil, 0x800000, &(0x7f0000000440)=""/173) 881.503256ms ago: executing program 1 (id=5054): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)='hugetlbfs\x00', 0xa08000, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r0 = open(&(0x7f0000000000)='.\x00', 0x40100, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') 865.773057ms ago: executing program 7 (id=5055): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000001600)={0x0, 0x0, &(0x7f0000001580)=[{&(0x7f0000000280)="db", 0x1}], 0x1}, 0x41) recvmsg(r0, &(0x7f0000000840)={0x0, 0x0, 0x0}, 0x10001) sendmsg$inet(r1, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000000)="fc", 0x1}], 0x1}, 0x41) recvmsg(r0, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x2) 826.585478ms ago: executing program 1 (id=5057): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x20, 0x7ffc0001}]}) timer_delete(0x0) 766.686638ms ago: executing program 1 (id=5059): r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000280)=0x4) ioctl$PPPIOCSMAXCID(r0, 0x40047451, &(0x7f0000000200)=0x3) ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000100)=0x2000004) pwritev(r0, &(0x7f0000000180)=[{&(0x7f0000000580)='\x00!', 0x2}], 0x1, 0x803, 0x0) 704.555479ms ago: executing program 3 (id=5060): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0x14, 0x0, &(0x7f0000000080)="f6f4e9a10000502468da5eb1c6b2feff8833c0000000000000c548dc7914cb11ad63bf3707164aac031971c4be105eb953f86fbc6b204e076aa7a493e796123bbbd8e3b7e62d8fd097cf21d6d431a069ebc0aefd5fce80cc99fb38c771fa46e2c32a95fe99", 0x0, 0x86, 0x0, 0xffffffffffffff80, 0x0, &(0x7f00000001c0)="daf9e846ab156efc71b59652333536dbfd26a6d0546366e36eb77dd0aaa2dbe567d168904cf0d5bce1771889c98ffc0abf", 0x0}, 0x15) 685.635129ms ago: executing program 1 (id=5061): syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x0, &(0x7f00000021c0), 0x1, 0x789, &(0x7f0000001240)="$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") set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000) 647.63312ms ago: executing program 0 (id=5063): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10) time(0x0) 647.42483ms ago: executing program 3 (id=5064): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a30000000006c000000160a01020000000000000000010000000900010073797a30000000000900020073797a300000000040000380"], 0xfc}}, 0x0) 645.45928ms ago: executing program 6 (id=5065): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x3}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x6, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='setgroups\x00') close_range(r2, 0xffffffffffffffff, 0x0) 572.012981ms ago: executing program 6 (id=5066): r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000002c0)='kfree\x00', r1}, 0x18) add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000009c0)="010000000037a788a11d1800000000000000", 0x12, r0) 569.880701ms ago: executing program 0 (id=5067): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0x7, 0x4, 0x100, 0x1, 0x28}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18) syz_mount_image$msdos(&(0x7f0000000140), &(0x7f0000001080)='./bus\x00', 0x80, &(0x7f00000010c0)=ANY=[@ANYBLOB="666c7573682c6e6f646f74732c646973636172642c646d61736b3d30303030303030303030303030303030303030303030322c646d61736b3d30303030303030303030303030303030303030303137372c646f74732c6e6f646f74732c71756965742c646f74732c0023c3cb4d2e3cbf18508098fe0de2af38db67d42d1bc4ab714d52f019082433fc9ca2d7174b2c4ece31c9f4c7a4d53914e100"/167], 0x1, 0x140, &(0x7f0000000000)="$eJzs27Fq21AUBuDj2m3ddvFcOgi6dDJtn6CluFAqaEnwkEwJOFnsYIgXJZMfJS8YCJ683ZAo2Imxhwy2IPq+RT/8CO4dpMMV6OjT2XAwnpyO/8+i3WhE60dkMW9EJ15FM0rTAABeknlKcZNSSm+n8e4qUkpVrwgA2DbzHwDqx/wHgPox/wGgfvYPDv/+zPPeXpa1I66nRb/ol9ey//0n733N7nWWd82Kot9c9N/KPnvav473D/33tf2b+PK57O+6X//ylf5DDLa/fQAAAKiFbraw9nzf7W7qy/To+8DK+b0VH1s72wYA8AyTi8vh8Wh0ci4IgrAIVb+ZgG1bPvRVrwQAAAAAAAAAAAAAANhkF78TVb1HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAWHUbAAD//0DvUik=") utime(&(0x7f0000000400)='./file0\x00', 0x0) 511.150952ms ago: executing program 0 (id=5068): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x20, 0x7ffc0001}]}) timer_delete(0x0) 511.008062ms ago: executing program 6 (id=5069): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)='hugetlbfs\x00', 0xa08000, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') r0 = open(&(0x7f0000000000)='.\x00', 0x40100, 0x0) symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00') 510.887312ms ago: executing program 3 (id=5070): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000280)={0x1, 0x1, 0x0, 'queue1\x00'}) poll(&(0x7f0000000100)=[{r0}], 0x1, 0x9d) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32={[0x2600]}}], 0xffc8) 475.340483ms ago: executing program 6 (id=5071): openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0) 461.652253ms ago: executing program 0 (id=5072): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70300001d000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18) mincore(&(0x7f0000000000/0x800000)=nil, 0x800000, &(0x7f0000000440)=""/173) 387.373594ms ago: executing program 0 (id=5073): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r2, 0x0, 0x14, 0x0, &(0x7f0000000080)="f6f4e9a10000502468da5eb1c6b2feff8833c0000000000000c548dc7914cb11ad63bf3707164aac031971c4be105eb953f86fbc6b204e076aa7a493e796123bbbd8e3b7e62d8fd097cf21d6d431a069ebc0aefd5fce80cc99fb38c771fa46e2c32a95fe99", 0x0, 0x86, 0x0, 0xffffffffffffff80, 0x0, &(0x7f00000001c0)="daf9e846ab156efc71b59652333536dbfd26a6d0546366e36eb77dd0aaa2dbe567d168904cf0d5bce1771889c98ffc0abf", 0x0}, 0x15) 314.514475ms ago: executing program 3 (id=5074): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = syz_io_uring_setup(0x497, &(0x7f00000000c0)={0x0, 0x9013, 0x100, 0x4, 0x165}, &(0x7f0000000000)=0x0, &(0x7f0000000300)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x40002020}) io_uring_enter(r1, 0x3517, 0x173d, 0x42, 0x0, 0x0) 284.865406ms ago: executing program 6 (id=5075): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x202}) ioctl$TUNSETPERSIST(r0, 0x400454c9, 0x1) ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x1) ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x0) 1.39104ms ago: executing program 1 (id=5076): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10) time(0x0) 1.19226ms ago: executing program 3 (id=5077): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x3}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x6, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='setgroups\x00') close_range(r2, 0xffffffffffffffff, 0x0) 547.69µs ago: executing program 0 (id=5086): r0 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00', 0x0}) bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1}, 0x18) connect$can_j1939(r0, &(0x7f0000000140)={0x1d, r1, 0x0, {0x1, 0xff, 0xa8fe8ad4eea2351f}, 0x2}, 0x18) sendmmsg(r0, &(0x7f0000003e40), 0x3fffffffffffe3d, 0x0) 0s ago: executing program 6 (id=5088): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18) r1 = io_uring_setup(0x257, &(0x7f0000000580)={0x0, 0x1fc9, 0x1, 0x0, 0x1d0}) io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{0x0}], 0x1) io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r1, 0x10, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000002700)=""/4096, 0x1000}], &(0x7f0000000200), 0x1}, 0x20) kernel console output (not intermixed with test programs): nge from 0 to 7 [ 122.555081][T10665] Buffer I/O error on dev loop9, logical block 0, async page read [ 122.565937][T10665] Buffer I/O error on dev loop9, logical block 0, async page read [ 122.573944][T10665] loop9: unable to read partition table [ 122.581351][T10665] loop_reread_partitions: partition scan of loop9 (被xڬdGݡ [ 122.581351][T10665] ) failed (rc=-5) [ 122.607860][T10669] netlink: 272 bytes leftover after parsing attributes in process `syz.6.3135'. [ 122.658230][T10681] netlink: 'syz.6.3141': attribute type 39 has an invalid length. [ 122.703848][T10685] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3143'. [ 122.713186][T10685] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3143'. [ 122.844479][T10691] loop1: detected capacity change from 0 to 256 [ 122.908075][T10697] loop9: detected capacity change from 0 to 7 [ 122.914752][T10697] Buffer I/O error on dev loop9, logical block 0, async page read [ 122.923088][T10697] Buffer I/O error on dev loop9, logical block 0, async page read [ 122.931002][T10697] loop9: unable to read partition table [ 122.936932][T10697] loop_reread_partitions: partition scan of loop9 (被xڬdGݡ [ 122.936932][T10697] ) failed (rc=-5) [ 123.519909][T10720] random: crng reseeded on system resumption [ 123.566454][T10725] loop0: detected capacity change from 0 to 512 [ 123.605181][T10727] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2 [ 123.646992][T10725] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 123.669868][T10725] ext4 filesystem being mounted at /612/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 123.697195][T10735] loop3: detected capacity change from 0 to 2048 [ 123.714417][T10735] EXT4-fs (loop3): failed to initialize system zone (-117) [ 123.721819][T10735] EXT4-fs (loop3): mount failed [ 123.745731][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 123.788699][T10743] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3166'. [ 123.797726][T10743] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3166'. [ 123.828420][T10747] sd 0:0:1:0: device reset [ 123.905978][T10753] random: crng reseeded on system resumption [ 123.997412][ T29] kauditd_printk_skb: 109 callbacks suppressed [ 123.997429][ T29] audit: type=1400 audit(1752174360.472:2204): avc: denied { create } for pid=10761 comm="syz.3.3174" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rose_socket permissive=1 [ 124.071606][T10767] loop5: detected capacity change from 0 to 4096 [ 124.090911][ T29] audit: type=1326 audit(1752174360.565:2205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10774 comm="syz.0.3177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6440e929 code=0x7ffc0000 [ 124.114528][ T29] audit: type=1326 audit(1752174360.565:2206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10774 comm="syz.0.3177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6440e929 code=0x7ffc0000 [ 124.143635][ T29] audit: type=1326 audit(1752174360.565:2207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10774 comm="syz.0.3177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7f6440e929 code=0x7ffc0000 [ 124.167233][ T29] audit: type=1326 audit(1752174360.565:2208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10774 comm="syz.0.3177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6440e929 code=0x7ffc0000 [ 124.191082][ T29] audit: type=1326 audit(1752174360.565:2209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10774 comm="syz.0.3177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6440e929 code=0x7ffc0000 [ 124.194169][T10780] loop1: detected capacity change from 0 to 512 [ 124.214665][ T29] audit: type=1326 audit(1752174360.565:2210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10774 comm="syz.0.3177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7f6440e929 code=0x7ffc0000 [ 124.221551][T10780] EXT4-fs: Ignoring removed orlov option [ 124.244614][ T29] audit: type=1326 audit(1752174360.565:2211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10774 comm="syz.0.3177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6440e929 code=0x7ffc0000 [ 124.244656][ T29] audit: type=1326 audit(1752174360.565:2212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10774 comm="syz.0.3177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6440e929 code=0x7ffc0000 [ 124.297528][ T29] audit: type=1326 audit(1752174360.575:2213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10774 comm="syz.0.3177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7f6440e929 code=0x7ffc0000 [ 124.336150][T10780] EXT4-fs: Ignoring removed nomblk_io_submit option [ 124.348037][T10767] loop5: detected capacity change from 0 to 512 [ 124.349097][T10780] EXT4-fs error (device loop1): ext4_init_orphan_info:585: comm syz.1.3184: inode #0: comm syz.1.3184: iget: illegal inode # [ 124.368539][T10780] EXT4-fs (loop1): Remounting filesystem read-only [ 124.368788][T10767] EXT4-fs: Ignoring removed orlov option [ 124.375179][T10780] EXT4-fs (loop1): get orphan inode failed [ 124.386789][T10767] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 124.406743][T10780] EXT4-fs (loop1): mount failed [ 124.406902][T10767] EXT4-fs (loop5): write access unavailable, skipping orphan cleanup [ 124.424401][T10767] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 124.440028][T10789] loop6: detected capacity change from 0 to 512 [ 124.446715][T10789] EXT4-fs: Ignoring removed nomblk_io_submit option [ 124.454244][T10789] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 124.469661][T10767] EXT4-fs: Ignoring removed orlov option [ 124.483269][T10789] EXT4-fs (loop6): 1 truncate cleaned up [ 124.490788][T10789] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 124.510525][T10796] loop0: detected capacity change from 0 to 164 [ 124.524100][T10789] EXT4-fs (loop6): shut down requested (0) [ 124.530885][T10796] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 124.542161][T10796] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 124.551005][ T7063] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 124.551021][T10796] Symlink component flag not implemented [ 124.565712][T10796] Symlink component flag not implemented [ 124.574207][T10796] Symlink component flag not implemented (7) [ 124.580293][T10796] Symlink component flag not implemented (116) [ 124.611715][ T9932] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 124.637742][T10807] netlink: 'syz.0.3195': attribute type 3 has an invalid length. [ 124.647198][T10809] IPv6: Can't replace route, no match found [ 124.711791][T10823] 9pnet_fd: Insufficient options for proto=fd [ 124.727028][T10825] syzkaller1: entered promiscuous mode [ 124.732733][T10825] syzkaller1: entered allmulticast mode [ 124.774306][T10832] loop1: detected capacity change from 0 to 512 [ 124.792170][T10832] EXT4-fs: Ignoring removed nomblk_io_submit option [ 124.799426][T10832] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 124.837172][T10832] EXT4-fs (loop1): 1 truncate cleaned up [ 124.843345][T10832] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 124.859279][T10832] EXT4-fs (loop1): shut down requested (0) [ 124.867889][T10840] sd 0:0:1:0: device reset [ 124.885496][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 124.908488][T10847] IPv6: Can't replace route, no match found [ 125.017998][T10865] loop0: detected capacity change from 0 to 512 [ 125.049855][T10865] EXT4-fs: Ignoring removed nomblk_io_submit option [ 125.058830][T10865] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 125.086430][T10880] program syz.5.3230 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 125.091029][T10877] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3229'. [ 125.125259][T10865] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 125.143029][T10865] ext4 filesystem being mounted at /628/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 125.147064][T10888] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3233'. [ 125.162553][T10888] netlink: 32 bytes leftover after parsing attributes in process `syz.6.3233'. [ 125.171705][T10888] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3233'. [ 125.198587][T10865] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 125.252047][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 125.291314][T10906] qrtr: Invalid version 91 [ 125.323239][T10914] binfmt_misc: register: failed to install interpreter file ./file0 [ 125.358924][T10920] netlink: 'syz.0.3248': attribute type 39 has an invalid length. [ 125.359878][T10921] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 125.359878][T10921] The task syz.5.3238 (10921) triggered the difference, watch for misbehavior. [ 125.447020][T10929] xt_hashlimit: max too large, truncated to 1048576 [ 125.541629][T10935] loop6: detected capacity change from 0 to 8192 [ 125.551319][T10935] FAT-fs (loop6): error, invalid access to FAT (entry 0x0000ff12) [ 125.559260][T10935] FAT-fs (loop6): Filesystem has been set read-only [ 125.565979][T10935] FAT-fs (loop6): error, invalid access to FAT (entry 0x0000ff12) [ 125.573903][T10935] FAT-fs (loop6): error, invalid access to FAT (entry 0x0000ff12) [ 125.581793][T10935] FAT-fs (loop6): error, invalid access to FAT (entry 0x0000ff12) [ 125.589630][T10935] FAT-fs (loop6): error, invalid access to FAT (entry 0x0000ff12) [ 125.598940][T10935] bio_check_eod: 13 callbacks suppressed [ 125.598954][T10935] syz.6.3255: attempt to access beyond end of device [ 125.598954][T10935] loop6: rw=0, sector=65368, nr_sectors = 1 limit=8192 [ 125.618253][T10935] Buffer I/O error on dev loop6, logical block 65368, async page read [ 125.626527][T10935] FAT-fs (loop6): error, invalid access to FAT (entry 0x0000ff12) [ 125.637369][T10935] FAT-fs (loop6): error, invalid access to FAT (entry 0x0000ff12) [ 125.645405][T10935] FAT-fs (loop6): error, invalid access to FAT (entry 0x0000ff12) [ 125.654537][T10935] FAT-fs (loop6): error, invalid access to FAT (entry 0x0000ff12) [ 125.662610][T10935] FAT-fs (loop6): error, invalid access to FAT (entry 0x0000ff12) [ 125.670497][T10935] FAT-fs (loop6): error, invalid access to FAT (entry 0x0000ff12) [ 125.678421][T10935] FAT-fs (loop6): error, invalid access to FAT (entry 0x0000ff12) [ 125.686256][T10935] FAT-fs (loop6): error, invalid access to FAT (entry 0x0000ff12) [ 125.694407][T10935] syz.6.3255: attempt to access beyond end of device [ 125.694407][T10935] loop6: rw=0, sector=65368, nr_sectors = 1 limit=8192 [ 125.708028][T10935] Buffer I/O error on dev loop6, logical block 65368, async page read [ 125.778091][T10956] program syz.0.3265 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 125.800835][T10952] loop6: detected capacity change from 0 to 4096 [ 125.817244][T10952] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 125.854555][T10952] EXT4-fs: Ignoring removed orlov option [ 125.860665][T10952] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 125.860776][T10966] binfmt_misc: register: failed to install interpreter file ./file2 [ 125.880161][T10952] EXT4-fs (loop6): can't enable nombcache during remount [ 125.908525][ T9932] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 126.120211][T10999] program syz.0.3284 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 126.200980][T11012] xt_hashlimit: max too large, truncated to 1048576 [ 126.287559][T11026] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 126.287559][T11026] program syz.1.3298 not setting count and/or reply_len properly [ 126.691223][T11051] loop6: detected capacity change from 0 to 512 [ 126.698128][T11051] EXT4-fs: Ignoring removed orlov option [ 126.704089][T11051] EXT4-fs: Ignoring removed nomblk_io_submit option [ 126.712231][T11051] EXT4-fs error (device loop6): ext4_init_orphan_info:585: comm syz.6.3307: inode #0: comm syz.6.3307: iget: illegal inode # [ 126.725792][T11051] EXT4-fs (loop6): Remounting filesystem read-only [ 126.732416][T11051] EXT4-fs (loop6): get orphan inode failed [ 126.738514][T11051] EXT4-fs (loop6): mount failed [ 126.826392][T11067] loop6: detected capacity change from 0 to 1024 [ 126.833466][T11067] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 126.844400][T11067] EXT4-fs (loop6): group descriptors corrupted! [ 126.852839][T11067] SELinux: security_context_str_to_sid (-Xܘ7.H\ %u@) failed with errno=-22 [ 126.917615][T11072] team0 (unregistering): Port device team_slave_0 removed [ 126.929313][T11072] team0 (unregistering): Port device team_slave_1 removed [ 126.999818][T11076] loop3: detected capacity change from 0 to 512 [ 127.007059][T11076] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 127.028794][T11076] EXT4-fs (loop3): 1 orphan inode deleted [ 127.035182][T11076] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 127.049888][T10370] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:49: Failed to release dquot type 1 [ 127.062340][T11076] ext4 filesystem being mounted at /674/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 127.091448][T11082] loop6: detected capacity change from 0 to 128 [ 127.111451][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 127.129153][T11084] loop5: detected capacity change from 0 to 512 [ 127.139011][T11084] EXT4-fs: Ignoring removed orlov option [ 127.146687][T11084] EXT4-fs: Ignoring removed nomblk_io_submit option [ 127.253724][T11107] loop5: detected capacity change from 0 to 1024 [ 127.328194][T11113] loop0: detected capacity change from 0 to 4096 [ 127.353123][T11113] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 127.373932][T11118] loop6: detected capacity change from 0 to 256 [ 127.406668][T11118] FAT-fs (loop6): unable to read block(603979776) for building NFS inode [ 127.440431][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 127.465504][T11128] Cannot find add_set index 0 as target [ 127.542950][T11132] @: renamed from vlan0 (while UP) [ 127.557385][T11134] loop3: detected capacity change from 0 to 512 [ 127.583074][T11136] binfmt_misc: register: failed to install interpreter file ./file2 [ 127.592744][T11134] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 127.611013][T11134] EXT4-fs (loop3): mount failed [ 127.713545][T11152] loop3: detected capacity change from 0 to 4096 [ 128.409703][T11214] loop6: detected capacity change from 0 to 164 [ 128.417307][T11214] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 128.429311][T11214] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 128.441155][T11214] Symlink component flag not implemented [ 128.446889][T11214] Symlink component flag not implemented [ 128.453149][T11216] loop0: detected capacity change from 0 to 8192 [ 128.454108][T11214] Symlink component flag not implemented (7) [ 128.463846][T11216] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000ff12) [ 128.465637][T11214] Symlink component flag not implemented (116) [ 128.479775][T11216] FAT-fs (loop0): Filesystem has been set read-only [ 128.486393][T11216] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000ff12) [ 128.494603][T11216] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000ff12) [ 128.502521][T11216] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000ff12) [ 128.510439][T11216] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000ff12) [ 128.518392][T11216] syz.0.3381: attempt to access beyond end of device [ 128.518392][T11216] loop0: rw=0, sector=65368, nr_sectors = 1 limit=8192 [ 128.531826][T11216] Buffer I/O error on dev loop0, logical block 65368, async page read [ 128.540107][T11216] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000ff12) [ 128.549550][T11216] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000ff12) [ 128.557571][T11216] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000ff12) [ 128.576302][T11216] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000ff12) [ 128.584211][T11216] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000ff12) [ 128.592137][T11216] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000ff12) [ 128.600065][T11216] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000ff12) [ 128.608110][T11216] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000ff12) [ 128.616136][T11216] syz.0.3381: attempt to access beyond end of device [ 128.616136][T11216] loop0: rw=0, sector=65368, nr_sectors = 1 limit=8192 [ 128.629782][T11216] Buffer I/O error on dev loop0, logical block 65368, async page read [ 128.765524][T11242] __nla_validate_parse: 4 callbacks suppressed [ 128.765618][T11242] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3395'. [ 128.800153][T11248] loop5: detected capacity change from 0 to 164 [ 128.807372][T11248] ISOFS: unable to read i-node block [ 128.812747][T11248] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 128.822150][T11248] isofs_fill_super: get root inode failed [ 128.831428][T11248] loop5: detected capacity change from 0 to 512 [ 128.891433][T11253] team0 (unregistering): Port device team_slave_0 removed [ 128.909497][T11253] team0 (unregistering): Port device team_slave_1 removed [ 129.003537][T11264] program syz.1.3403 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 129.019197][T11265] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=11265 comm=syz.3.3404 [ 129.196991][T11296] loop5: detected capacity change from 0 to 512 [ 129.253108][T11302] sch_tbf: peakrate 8 is lower than or equals to rate 12 ! [ 129.299747][T11308] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.3425'. [ 129.390640][ T29] kauditd_printk_skb: 185 callbacks suppressed [ 129.390657][ T29] audit: type=1326 audit(1752174365.523:2397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11317 comm="syz.1.3427" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb935a7e929 code=0x0 [ 129.405679][T11320] loop5: detected capacity change from 0 to 164 [ 129.427525][T11320] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 129.439932][T11320] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 129.449066][T11320] Symlink component flag not implemented [ 129.449188][T11322] loop6: detected capacity change from 0 to 2048 [ 129.454753][T11320] Symlink component flag not implemented [ 129.454845][T11320] Symlink component flag not implemented (7) [ 129.473080][T11320] Symlink component flag not implemented (116) [ 129.485007][T11322] loop6: p1 < > p4 [ 129.490993][T11322] loop6: p4 size 8388608 extends beyond EOD, truncated [ 129.502878][ T29] audit: type=1400 audit(1752174365.626:2398): avc: denied { read write } for pid=11321 comm="syz.6.3429" name="loop6p4" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 129.526406][ T29] audit: type=1400 audit(1752174365.626:2399): avc: denied { open } for pid=11321 comm="syz.6.3429" path="/dev/loop6p4" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 129.579575][ T29] audit: type=1400 audit(1752174365.701:2400): avc: denied { create } for pid=11326 comm="syz.6.3431" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 129.663052][ T29] audit: type=1400 audit(1752174365.775:2401): avc: denied { read } for pid=11334 comm="syz.5.3435" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 129.687662][ T29] audit: type=1400 audit(1752174365.775:2402): avc: denied { open } for pid=11334 comm="syz.5.3435" path="/dev/loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 129.718221][ T29] audit: type=1400 audit(1752174365.832:2403): avc: denied { ioctl } for pid=11334 comm="+}[@" path="/dev/loop-control" dev="devtmpfs" ino=99 ioctlcmd=0x4c80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 129.762848][T11340] loop5: detected capacity change from 0 to 1024 [ 129.867369][ T29] audit: type=1400 audit(1752174365.963:2404): avc: denied { create } for pid=11346 comm="syz.5.3440" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 129.888439][ T29] audit: type=1400 audit(1752174365.991:2405): avc: denied { bind } for pid=11346 comm="syz.5.3440" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 129.926033][ T29] audit: type=1400 audit(1752174366.009:2406): avc: denied { write } for pid=11346 comm="syz.5.3440" path="socket:[29521]" dev="sockfs" ino=29521 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 130.005339][T11361] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3447'. [ 130.024594][T11363] netlink: 'syz.5.3449': attribute type 10 has an invalid length. [ 130.032537][T11363] netlink: 'syz.5.3449': attribute type 19 has an invalid length. [ 130.032815][T11365] loop0: detected capacity change from 0 to 1024 [ 130.040393][T11363] netlink: 156 bytes leftover after parsing attributes in process `syz.5.3449'. [ 130.068474][T11368] netlink: 'syz.5.3450': attribute type 21 has an invalid length. [ 130.088444][T11365] ext4 filesystem being mounted at /665/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 130.095490][T11369] SELinux: failed to load policy [ 130.128543][T11375] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3452'. [ 130.170260][T11381] loop5: detected capacity change from 0 to 512 [ 130.211210][T10359] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm kworker/u8:38: bg 0: block 393: padding at end of block bitmap is not set [ 130.241416][T10359] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117 [ 130.254226][T10359] EXT4-fs (loop0): This should not happen!! Data will be lost [ 130.254226][T10359] [ 130.383574][T11395] IPVS: lc: UDP 224.0.0.2:0 - no destination available [ 130.396011][T11400] loop0: detected capacity change from 0 to 512 [ 130.445316][T11400] EXT4-fs: Ignoring removed orlov option [ 130.457530][T11405] netlink: 128 bytes leftover after parsing attributes in process `syz.3.3465'. [ 130.466916][T11405] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3465'. [ 130.480197][T11400] ext4 filesystem being mounted at /667/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 130.541762][T11413] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3467'. [ 130.745588][T11448] program syz.6.3483 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 130.757023][T11449] SELinux: Context system_u:object_r:gpg_exec_t:s0 is not valid (left unmapped). [ 130.819434][T11458] loop6: detected capacity change from 0 to 1024 [ 130.837189][T11461] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3488'. [ 130.865593][T11458] ext4 filesystem being mounted at /135/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 131.023493][T10337] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm kworker/u8:16: bg 0: block 393: padding at end of block bitmap is not set [ 131.041035][T10337] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117 [ 131.053779][T10337] EXT4-fs (loop6): This should not happen!! Data will be lost [ 131.053779][T10337] [ 131.096220][T11493] netlink: 60 bytes leftover after parsing attributes in process `syz.5.3502'. [ 131.209456][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.217054][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.224549][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.230643][T11523] loop1: detected capacity change from 0 to 1024 [ 131.252413][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.259959][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.267436][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.274963][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.282441][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.289854][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.297315][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.304810][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.312286][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.319770][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.329122][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.336625][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.344128][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.351629][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.359129][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.366580][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.374073][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.381540][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.389020][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.396446][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.403922][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.411436][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.419040][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.426461][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.434021][ T3388] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 131.452914][T11523] ext4 filesystem being mounted at /737/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 131.505102][T11538] binfmt_misc: register: failed to install interpreter file ./file0 [ 131.537223][ T3388] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz0] on syz1 [ 131.609520][T10337] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u8:16: bg 0: block 393: padding at end of block bitmap is not set [ 131.638009][T10337] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117 [ 131.650733][T10337] EXT4-fs (loop1): This should not happen!! Data will be lost [ 131.650733][T10337] [ 131.736926][T11555] ALSA: seq fatal error: cannot create timer (-19) [ 131.774776][T11564] loop5: detected capacity change from 0 to 1024 [ 131.844813][T11574] xt_hashlimit: max too large, truncated to 1048576 [ 131.893480][T11577] loop0: detected capacity change from 0 to 256 [ 131.919268][T11580] sg_write: data in/out 49276/1 bytes for SCSI command 0x1c-- guessing data in; [ 131.919268][T11580] program syz.6.3539 not setting count and/or reply_len properly [ 131.922865][T11577] msdos: Unknown parameter 'fowner>18446744073709551615' [ 132.245049][T11634] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 132.253822][T11634] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 132.571157][T11652] sctp: [Deprecated]: syz.1.3572 (pid 11652) Use of struct sctp_assoc_value in delayed_ack socket option. [ 132.571157][T11652] Use struct sctp_sack_info instead [ 132.647435][T11664] loop3: detected capacity change from 0 to 512 [ 132.656188][T11664] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 132.668683][T11664] EXT4-fs (loop3): 1 orphan inode deleted [ 132.674530][T11664] EXT4-fs (loop3): 1 truncate cleaned up [ 132.685426][T11664] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 132.706530][T11667] geneve2: entered promiscuous mode [ 132.711871][T11667] geneve2: entered allmulticast mode [ 132.875962][T11691] syzkaller1: entered promiscuous mode [ 132.881500][T11691] syzkaller1: entered allmulticast mode [ 132.928390][T11699] program syz.1.3598 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 133.212875][T11739] (unnamed net_device) (uninitialized): Invalid ad_actor_system MAC address. [ 133.221777][T11739] (unnamed net_device) (uninitialized): option ad_actor_system: invalid value (133) [ 133.243409][T11741] loop6: detected capacity change from 0 to 512 [ 133.284233][T11741] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.3619: bg 0: block 248: padding at end of block bitmap is not set [ 133.301670][T11741] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.3619: Failed to acquire dquot type 1 [ 133.325095][T11741] EXT4-fs (loop6): 1 truncate cleaned up [ 133.336771][T11741] ext4 filesystem being mounted at /151/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 133.354893][T11741] EXT4-fs error (device loop6): ext4_lookup:1791: inode #2: comm syz.6.3619: deleted inode referenced: 12 [ 133.690884][T11797] loop6: detected capacity change from 0 to 764 [ 133.765266][T11797] Symlink component flag not implemented [ 133.771468][T11797] Symlink component flag not implemented (116) [ 134.171972][T11835] SELinux: failed to load policy [ 134.291839][T11848] bridge1: entered promiscuous mode [ 134.297305][T11848] bridge1: entered allmulticast mode [ 134.401123][T11869] sctp: [Deprecated]: syz.0.3674 (pid 11869) Use of struct sctp_assoc_value in delayed_ack socket option. [ 134.401123][T11869] Use struct sctp_sack_info instead [ 134.508820][T11882] __nla_validate_parse: 6 callbacks suppressed [ 134.508919][T11882] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3683'. [ 134.524109][T11882] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3683'. [ 134.533973][T11887] loop0: detected capacity change from 0 to 2048 [ 134.553527][T11887] EXT4-fs: Ignoring removed mblk_io_submit option [ 134.560661][T11889] loop1: detected capacity change from 0 to 1024 [ 134.602545][T11889] EXT4-fs: Ignoring removed mblk_io_submit option [ 134.614336][T11887] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.3682: bg 0: block 234: padding at end of block bitmap is not set [ 134.659710][T11887] EXT4-fs (loop0): Remounting filesystem read-only [ 134.768898][T11905] dummy0: entered promiscuous mode [ 134.776134][T11905] dummy0: left promiscuous mode [ 134.880851][T11889] EXT4-fs (loop1): shut down requested (2) [ 134.891913][T11913] loop6: detected capacity change from 0 to 512 [ 134.940904][T11913] journal_path: Non-blockdev passed as './file0/../file0' [ 134.948170][T11913] EXT4-fs: error: could not find journal device path [ 134.965720][ T29] kauditd_printk_skb: 223 callbacks suppressed [ 134.965746][ T29] audit: type=1400 audit(1752174370.724:2628): avc: denied { remount } for pid=11883 comm="syz.1.3681" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 135.044031][ T3307] EXT4-fs unmount: 17 callbacks suppressed [ 135.044051][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 135.126383][ T29] audit: type=1400 audit(1752174370.883:2629): avc: denied { create } for pid=11930 comm="syz.0.3703" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 135.167753][ T29] audit: type=1400 audit(1752174370.883:2630): avc: denied { map } for pid=11930 comm="syz.0.3703" path="socket:[31490]" dev="sockfs" ino=31490 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 135.191033][ T29] audit: type=1400 audit(1752174370.883:2631): avc: denied { read accept } for pid=11930 comm="syz.0.3703" path="socket:[31490]" dev="sockfs" ino=31490 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 135.289549][T11944] netlink: 96 bytes leftover after parsing attributes in process `syz.6.3708'. [ 135.317422][ T29] audit: type=1400 audit(1752174371.014:2632): avc: denied { read write } for pid=11938 comm="syz.5.3706" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 135.341170][ T29] audit: type=1400 audit(1752174371.014:2633): avc: denied { open } for pid=11938 comm="syz.5.3706" path="/dev/nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 135.406451][ T29] audit: type=1326 audit(1752174371.145:2634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11952 comm="syz.5.3712" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb54d2e929 code=0x7ffc0000 [ 135.430209][ T29] audit: type=1326 audit(1752174371.145:2635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11952 comm="syz.5.3712" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7feb54d2e929 code=0x7ffc0000 [ 135.453830][ T29] audit: type=1326 audit(1752174371.145:2636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11952 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb54d2e929 code=0x7ffc0000 [ 135.553652][ T29] audit: type=1326 audit(1752174371.154:2637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11952 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb54d2e929 code=0x7ffc0000 [ 135.592110][T11968] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=11968 comm=syz.6.3719 [ 135.649054][T11975] loop0: detected capacity change from 0 to 1024 [ 135.700144][T11975] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 135.744035][T11975] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4113: comm syz.0.3721: Allocating blocks 385-513 which overlap fs metadata [ 135.797964][T11975] EXT4-fs (loop0): pa ffff88810690e8c0: logic 16, phys. 129, len 24 [ 135.806101][T11975] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8 [ 135.893460][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 135.929984][T12005] loop0: detected capacity change from 0 to 256 [ 135.937580][T12005] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 135.956647][T12005] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 135.965342][T12005] FAT-fs (loop0): Filesystem has been set read-only [ 136.125521][T12026] program syz.0.3740 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 136.343770][T12048] netlink: 132 bytes leftover after parsing attributes in process `syz.5.3751'. [ 136.539191][T12074] futex_wake_op: syz.1.3764 tries to shift op by -1; fix this program [ 136.643013][T12085] futex_wake_op: syz.5.3770 tries to shift op by -1; fix this program [ 136.703874][T12091] loop1: detected capacity change from 0 to 1024 [ 136.712939][T12092] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(6) [ 136.719534][T12092] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 136.727447][T12092] vhci_hcd vhci_hcd.0: Device attached [ 136.733794][T12095] vhci_hcd: connection closed [ 136.734181][T10370] vhci_hcd: stop threads [ 136.743231][T10370] vhci_hcd: release socket [ 136.747726][T10370] vhci_hcd: disconnect device [ 136.777213][T12091] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 136.793198][T12091] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.3772: Allocating blocks 385-513 which overlap fs metadata [ 136.810454][T12091] EXT4-fs (loop1): pa ffff88810690e8c0: logic 16, phys. 129, len 24 [ 136.818635][T12091] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8 [ 136.850042][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 136.874174][T12104] loop1: detected capacity change from 0 to 512 [ 136.881456][T12104] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 136.895569][T12104] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 136.908442][T12104] ext4 filesystem being mounted at /796/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 136.922664][T12104] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.3777: corrupted xattr block 19: overlapping e_value [ 136.948024][T12104] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop1 ino=15 [ 136.957505][T12104] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.3777: corrupted xattr block 19: overlapping e_value [ 136.981623][T12104] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop1 ino=15 [ 136.990989][T12104] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.3777: corrupted xattr block 19: overlapping e_value [ 137.006691][T12104] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.3777: corrupted xattr block 19: overlapping e_value [ 137.020854][T12104] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop1 ino=15 [ 137.043238][T12119] loop6: detected capacity change from 0 to 512 [ 137.066692][T12119] EXT4-fs: Ignoring removed oldalloc option [ 137.078835][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.088439][T12119] EXT4-fs error (device loop6): ext4_xattr_inode_iget:433: comm syz.6.3783: Parent and EA inode have the same ino 15 [ 137.101498][T12119] EXT4-fs (loop6): 1 orphan inode deleted [ 137.108783][T12119] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 137.153219][ T9932] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.215238][T12135] loop6: detected capacity change from 0 to 1024 [ 137.259952][T12135] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 137.280103][T12135] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4113: comm syz.6.3788: Allocating blocks 385-513 which overlap fs metadata [ 137.296366][T12135] EXT4-fs (loop6): pa ffff88810690e9a0: logic 16, phys. 129, len 24 [ 137.304524][T12135] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8 [ 137.367171][T12158] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.3800' sets config #0 [ 137.413473][ T9932] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.418336][T12164] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3803'. [ 137.561220][T12188] loop1: detected capacity change from 0 to 512 [ 137.569617][T12185] loop5: detected capacity change from 0 to 1024 [ 137.571998][T12188] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c11d, mo2=0002] [ 137.584111][T12188] System zones: 1-12 [ 137.588691][T12188] EXT4-fs error (device loop1): ext4_iget_extra_inode:5035: inode #15: comm syz.1.3814: corrupted in-inode xattr: e_value size too large [ 137.604421][T12188] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.3814: couldn't read orphan inode 15 (err -117) [ 137.621349][T12188] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 137.661618][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.869583][T12213] loop3: detected capacity change from 0 to 512 [ 137.916843][T12219] loop6: detected capacity change from 0 to 512 [ 137.927002][T12213] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3826: bg 0: block 248: padding at end of block bitmap is not set [ 137.943777][T12213] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.3826: Failed to acquire dquot type 1 [ 137.956113][T12219] EXT4-fs error (device loop6): ext4_iget_extra_inode:5035: inode #15: comm syz.6.3827: corrupted in-inode xattr: invalid ea_ino [ 137.970015][T12213] EXT4-fs (loop3): 1 truncate cleaned up [ 137.979878][T12213] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 137.992647][T12213] ext4 filesystem being mounted at /774/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 138.005353][T12213] EXT4-fs error (device loop3): ext4_lookup:1791: inode #2: comm syz.3.3826: deleted inode referenced: 12 [ 138.045495][T12219] EXT4-fs error (device loop6): ext4_orphan_get:1398: comm syz.6.3827: couldn't read orphan inode 15 (err -117) [ 138.059439][T12219] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 138.154885][ T9932] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.167834][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.193306][T12228] netlink: 'syz.6.3831': attribute type 13 has an invalid length. [ 138.224815][T12228] gretap0: refused to change device tx_queue_len [ 138.239242][T12228] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 138.365811][T12255] IPv6: Can't replace route, no match found [ 138.433484][T12262] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 138.501659][T12268] loop3: detected capacity change from 0 to 764 [ 138.521673][T12268] Symlink component flag not implemented [ 138.527372][T12268] Symlink component flag not implemented [ 138.541658][T12268] Symlink component flag not implemented (129) [ 138.547905][T12268] Symlink component flag not implemented (6) [ 138.665464][T12287] loop3: detected capacity change from 0 to 1024 [ 138.680312][T12287] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 138.702956][T12287] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.3860: Allocating blocks 385-513 which overlap fs metadata [ 138.725471][T12294] gre0: Master is either lo or non-ether device [ 138.736041][T12287] EXT4-fs (loop3): pa ffff88810690e9a0: logic 16, phys. 129, len 24 [ 138.744167][T12287] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8 [ 138.818007][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.049168][T12326] openvswitch: netlink: Message has 6 unknown bytes. [ 139.071807][T12328] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3879'. [ 139.200838][T12344] syzkaller1: entered promiscuous mode [ 139.206420][T12344] syzkaller1: entered allmulticast mode [ 139.409769][T12366] loop6: detected capacity change from 0 to 512 [ 139.421202][T12366] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 139.435912][T12366] EXT4-fs (loop6): 1 truncate cleaned up [ 139.442303][T12371] openvswitch: netlink: Message has 6 unknown bytes. [ 139.449718][T12366] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 139.531138][ T9932] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.580288][T12389] netlink: 'syz.1.3907': attribute type 30 has an invalid length. [ 139.895780][T12447] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3924'. [ 140.067094][T12474] loop1: detected capacity change from 0 to 8192 [ 140.411516][T12544] loop0: detected capacity change from 0 to 1024 [ 140.426773][T12544] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 140.444220][T12544] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4113: comm syz.0.3936: Allocating blocks 385-513 which overlap fs metadata [ 140.460976][T12544] EXT4-fs (loop0): pa ffff888106a4f310: logic 16, phys. 129, len 24 [ 140.469200][T12544] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8 [ 140.500878][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 140.711919][ T29] kauditd_printk_skb: 186 callbacks suppressed [ 140.711934][ T29] audit: type=1326 audit(1752174376.121:2822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12599 comm="syz.0.3945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6440e929 code=0x7ffc0000 [ 140.753538][ T29] audit: type=1326 audit(1752174376.149:2823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12599 comm="syz.0.3945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=150 compat=0 ip=0x7f7f6440e929 code=0x7ffc0000 [ 140.777329][ T29] audit: type=1326 audit(1752174376.149:2824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12599 comm="syz.0.3945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6440e929 code=0x7ffc0000 [ 140.819691][T12608] x_tables: duplicate underflow at hook 2 [ 140.833260][T12610] loop0: detected capacity change from 0 to 256 [ 140.875867][ T29] audit: type=1326 audit(1752174376.271:2825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12614 comm="syz.3.3953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39f7d4e929 code=0x7ffc0000 [ 140.905742][ T29] audit: type=1326 audit(1752174376.289:2826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12614 comm="syz.3.3953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=318 compat=0 ip=0x7f39f7d4e929 code=0x7ffc0000 [ 140.929400][ T29] audit: type=1326 audit(1752174376.289:2827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12614 comm="syz.3.3953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39f7d4e929 code=0x7ffc0000 [ 140.952950][ T29] audit: type=1326 audit(1752174376.289:2828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12614 comm="syz.3.3953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39f7d4e929 code=0x7ffc0000 [ 140.983323][ T23] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x4 [ 140.988979][ T29] audit: type=1400 audit(1752174376.299:2829): avc: denied { read } for pid=12617 comm="syz.5.3954" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 140.991159][ T23] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x2 [ 141.011257][ T29] audit: type=1400 audit(1752174376.364:2830): avc: denied { read write } for pid=12619 comm="syz.0.3955" name="uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 141.011299][ T29] audit: type=1400 audit(1752174376.364:2831): avc: denied { open } for pid=12619 comm="syz.0.3955" path="/dev/uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 141.074073][T12622] bond1: entered promiscuous mode [ 141.079239][T12622] bond1: entered allmulticast mode [ 141.085703][T12622] 8021q: adding VLAN 0 to HW filter on device bond1 [ 141.098077][T12622] bond1 (unregistering): Released all slaves [ 141.131281][ T23] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 141.139026][ T23] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 141.146708][ T23] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 141.154828][ T23] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 141.162741][ T23] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 141.170662][ T23] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 141.178396][ T23] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 141.186368][ T23] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 141.194294][ T23] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 141.202057][ T23] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 141.209778][ T23] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 141.217557][ T23] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 141.225506][ T23] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 141.233352][ T23] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 141.314208][ T23] hid-generic 0000:3000000:0000.0004: hidraw0: HID v0.00 Device [sy] on syz0 [ 141.371808][T12642] netlink: 'syz.0.3965': attribute type 10 has an invalid length. [ 141.379693][T12642] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3965'. [ 141.389106][T12642] dummy0: entered promiscuous mode [ 141.397518][T12642] bridge0: port 3(dummy0) entered blocking state [ 141.404016][T12642] bridge0: port 3(dummy0) entered disabled state [ 141.422448][T12642] dummy0: entered allmulticast mode [ 141.433429][T12642] bridge0: port 3(dummy0) entered blocking state [ 141.439871][T12642] bridge0: port 3(dummy0) entered forwarding state [ 141.482200][T12653] loop5: detected capacity change from 0 to 256 [ 141.507969][T12654] hub 6-0:1.0: USB hub found [ 141.520297][T12654] hub 6-0:1.0: 8 ports detected [ 141.537715][T12660] loop5: detected capacity change from 0 to 1024 [ 141.606364][T12670] loop3: detected capacity change from 0 to 128 [ 141.626422][T12668] loop6: detected capacity change from 0 to 1024 [ 141.649811][T12670] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100) [ 141.653574][T12668] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 141.657673][T12670] FAT-fs (loop3): Filesystem has been set read-only [ 141.666709][T12670] syz.3.3978: attempt to access beyond end of device [ 141.666709][T12670] loop3: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 141.668632][T12668] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 141.676517][T12670] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100) [ 141.706518][T12670] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100) [ 141.719698][T12670] syz.3.3978: attempt to access beyond end of device [ 141.719698][T12670] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 141.734264][T12668] JBD2: no valid journal superblock found [ 141.740095][T12668] EXT4-fs (loop6): Could not load journal inode [ 141.823367][T12693] loop6: detected capacity change from 0 to 128 [ 141.845034][T12693] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 141.862517][T12697] loop5: detected capacity change from 0 to 1024 [ 141.873633][T12693] ext4 filesystem being mounted at /223/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 141.885330][T12697] EXT4-fs: Ignoring removed nomblk_io_submit option [ 141.918682][ T9932] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 141.993818][T12715] netlink: 'syz.1.3999': attribute type 6 has an invalid length. [ 142.023199][T12721] SELinux: syz.6.4002 (12721) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 142.092327][T12734] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4007'. [ 142.101305][T12734] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4007'. [ 142.164176][T12741] loop6: detected capacity change from 0 to 1024 [ 142.172360][T12741] EXT4-fs: inline encryption not supported [ 142.178281][T12741] EXT4-fs: Ignoring removed i_version option [ 142.188795][T12741] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 142.216901][T12741] EXT4-fs error (device loop6): ext4_map_blocks:816: inode #3: block 1: comm syz.6.4009: lblock 1 mapped to illegal pblock 1 (length 1) [ 142.253333][T12741] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.4009: Failed to acquire dquot type 0 [ 142.279267][T12741] EXT4-fs error (device loop6): ext4_free_blocks:6587: comm syz.6.4009: Freeing blocks not in datazone - block = 0, count = 4096 [ 142.304194][T12741] EXT4-fs error (device loop6): ext4_read_inode_bitmap:139: comm syz.6.4009: Invalid inode bitmap blk 0 in block_group 0 [ 142.318521][T12754] 9pnet: Could not find request transport: M [ 142.334045][T10370] EXT4-fs error (device loop6): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:49: lblock 1 mapped to illegal pblock 1 (length 1) [ 142.357512][T10370] EXT4-fs error (device loop6): ext4_release_dquot:6969: comm kworker/u8:49: Failed to release dquot type 0 [ 142.369037][T12741] EXT4-fs error (device loop6) in ext4_free_inode:361: Corrupt filesystem [ 142.417481][T12741] EXT4-fs (loop6): 1 orphan inode deleted [ 142.429596][T12765] SELinux: policydb version 555861952 does not match my version range 15-34 [ 142.439848][T12741] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 142.444269][T12767] loop5: detected capacity change from 0 to 512 [ 142.454376][T12765] SELinux: failed to load policy [ 142.482840][T12741] EXT4-fs error (device loop6): ext4_readdir:264: inode #2: block 16: comm syz.6.4009: path /228/file0: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0 [ 142.535491][ T9932] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 142.722268][T12797] loop6: detected capacity change from 0 to 1024 [ 142.729246][T12797] EXT4-fs: Ignoring removed oldalloc option [ 142.735441][T12797] EXT4-fs: Ignoring removed orlov option [ 142.772701][T12797] EXT4-fs (loop6): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 142.820325][T12797] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 142.850605][T12811] netlink: 176 bytes leftover after parsing attributes in process `syz.0.4040'. [ 142.889803][T12797] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4113: comm syz.6.4037: Allocating blocks 497-513 which overlap fs metadata [ 142.956903][T12815] loop1: detected capacity change from 0 to 512 [ 142.964320][T12815] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 142.989125][T12815] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 143.002007][T12815] ext4 filesystem being mounted at /866/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 143.024096][ T9932] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 143.112729][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 143.475884][T12833] loop1: detected capacity change from 0 to 128 [ 143.485078][T12836] loop3: detected capacity change from 0 to 512 [ 143.514128][T12836] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 143.532271][T12833] syz.1.4046: attempt to access beyond end of device [ 143.532271][T12833] loop1: rw=2049, sector=140, nr_sectors = 8 limit=128 [ 143.547485][T12833] syz.1.4046: attempt to access beyond end of device [ 143.547485][T12833] loop1: rw=2049, sector=156, nr_sectors = 1 limit=128 [ 143.561048][T12833] Buffer I/O error on dev loop1, logical block 156, lost async page write [ 143.575014][T12833] syz.1.4046: attempt to access beyond end of device [ 143.575014][T12833] loop1: rw=2049, sector=157, nr_sectors = 1 limit=128 [ 143.588531][T12833] Buffer I/O error on dev loop1, logical block 157, lost async page write [ 143.598451][T12833] syz.1.4046: attempt to access beyond end of device [ 143.598451][T12833] loop1: rw=2049, sector=158, nr_sectors = 1 limit=128 [ 143.611935][T12833] Buffer I/O error on dev loop1, logical block 158, lost async page write [ 143.622184][T12836] EXT4-fs (loop3): failed to initialize system zone (-117) [ 143.630848][T12836] EXT4-fs (loop3): mount failed [ 143.641717][T12833] syz.1.4046: attempt to access beyond end of device [ 143.641717][T12833] loop1: rw=2049, sector=159, nr_sectors = 1 limit=128 [ 143.655317][T12833] Buffer I/O error on dev loop1, logical block 159, lost async page write [ 143.661275][T12781] Set syz1 is full, maxelem 65536 reached [ 143.701434][T12833] syz.1.4046: attempt to access beyond end of device [ 143.701434][T12833] loop1: rw=2049, sector=160, nr_sectors = 1 limit=128 [ 143.714945][T12833] Buffer I/O error on dev loop1, logical block 160, lost async page write [ 143.723653][T12833] syz.1.4046: attempt to access beyond end of device [ 143.723653][T12833] loop1: rw=2049, sector=161, nr_sectors = 1 limit=128 [ 143.737300][T12833] Buffer I/O error on dev loop1, logical block 161, lost async page write [ 143.747414][T12833] syz.1.4046: attempt to access beyond end of device [ 143.747414][T12833] loop1: rw=2049, sector=132, nr_sectors = 1 limit=128 [ 143.760884][T12833] Buffer I/O error on dev loop1, logical block 132, lost async page write [ 143.771494][T12833] Buffer I/O error on dev loop1, logical block 133, lost async page write [ 143.780223][T12833] Buffer I/O error on dev loop1, logical block 150, lost async page write [ 143.789051][T12833] Buffer I/O error on dev loop1, logical block 151, lost async page write [ 143.853873][T12853] SELinux: ebitmap: truncated map [ 143.858968][T12853] SELinux: failed to load policy [ 143.873181][T12860] loop0: detected capacity change from 0 to 512 [ 143.900892][T12860] EXT4-fs: quotafile must be on filesystem root [ 143.997719][T12881] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4071'. [ 144.165499][T12905] netlink: 76 bytes leftover after parsing attributes in process `syz.5.4082'. [ 144.216750][T12908] loop6: detected capacity change from 0 to 512 [ 144.230071][T12910] syz_tun: entered promiscuous mode [ 144.243515][T12910] macsec1: entered promiscuous mode [ 144.248907][T12910] macsec1: entered allmulticast mode [ 144.254311][T12910] syz_tun: entered allmulticast mode [ 144.272279][T12910] syz_tun: left allmulticast mode [ 144.277472][T12910] syz_tun: left promiscuous mode [ 144.284172][T12908] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #16: comm syz.6.4084: corrupted inode contents [ 144.301011][T12908] EXT4-fs error (device loop6): ext4_dirty_inode:6459: inode #16: comm syz.6.4084: mark_inode_dirty error [ 144.326027][T12908] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #16: comm syz.6.4084: corrupted inode contents [ 144.368973][T12908] EXT4-fs error (device loop6): __ext4_ext_dirty:206: inode #16: comm syz.6.4084: mark_inode_dirty error [ 144.385687][T12908] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #16: comm syz.6.4084: corrupted inode contents [ 144.410962][T12908] EXT4-fs error (device loop6) in ext4_orphan_del:305: Corrupt filesystem [ 144.420885][T12908] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #16: comm syz.6.4084: corrupted inode contents [ 144.435260][T12908] EXT4-fs error (device loop6): ext4_truncate:4597: inode #16: comm syz.6.4084: mark_inode_dirty error [ 144.458193][T12908] EXT4-fs error (device loop6) in ext4_process_orphan:347: Corrupt filesystem [ 144.469321][T12908] EXT4-fs (loop6): 1 truncate cleaned up [ 144.477782][T12908] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 144.510483][T10378] EXT4-fs error (device loop6): ext4_release_dquot:6969: comm kworker/u8:57: Failed to release dquot type 1 [ 144.536987][T12908] ext4 filesystem being mounted at /244/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 144.956859][T12958] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6) [ 144.963592][T12958] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 144.971171][T12958] vhci_hcd vhci_hcd.0: Device attached [ 144.993892][T12959] vhci_hcd: connection closed [ 144.994036][T10337] vhci_hcd: stop threads [ 145.003152][T10337] vhci_hcd: release socket [ 145.007595][T10337] vhci_hcd: disconnect device [ 145.116602][ T9932] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 145.372726][T12972] loop6: detected capacity change from 0 to 1024 [ 145.379545][T12972] EXT4-fs: Ignoring removed oldalloc option [ 145.386106][T12972] EXT4-fs: Ignoring removed orlov option [ 145.393248][T12972] EXT4-fs (loop6): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 145.415857][T12972] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 145.450410][ T9932] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 145.470705][T12977] program syz.6.4112 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 145.539667][T12983] netlink: 76 bytes leftover after parsing attributes in process `syz.6.4115'. [ 145.820925][T13015] netlink: 16186 bytes leftover after parsing attributes in process `syz.5.4127'. [ 145.955332][T13029] netlink: 268 bytes leftover after parsing attributes in process `syz.6.4134'. [ 146.033776][T13040] loop6: detected capacity change from 0 to 512 [ 146.048989][T13040] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22 [ 146.140275][T13044] SELinux: ebitmap: truncated map [ 146.145912][T13044] SELinux: failed to load policy [ 146.174913][T13051] loop5: detected capacity change from 0 to 512 [ 146.181506][T13051] EXT4-fs: quotafile must be on filesystem root [ 146.284031][T13065] syz_tun: entered promiscuous mode [ 146.300225][T13065] macsec1: entered promiscuous mode [ 146.305566][T13065] macsec1: entered allmulticast mode [ 146.310927][T13065] syz_tun: entered allmulticast mode [ 146.322942][T13069] program syz.0.4151 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 146.339149][T13065] syz_tun: left allmulticast mode [ 146.344534][T13065] syz_tun: left promiscuous mode [ 146.352506][T13072] netlink: 76 bytes leftover after parsing attributes in process `syz.5.4153'. [ 146.489387][ T29] kauditd_printk_skb: 203 callbacks suppressed [ 146.489405][ T29] audit: type=1326 audit(1752174381.518:3031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13087 comm="syz.3.4159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39f7d4e929 code=0x7ffc0000 [ 146.578959][ T29] audit: type=1326 audit(1752174381.546:3032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13087 comm="syz.3.4159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f39f7d4e929 code=0x7ffc0000 [ 146.602661][ T29] audit: type=1326 audit(1752174381.546:3033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13087 comm="syz.3.4159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39f7d4e929 code=0x7ffc0000 [ 146.626590][ T29] audit: type=1326 audit(1752174381.546:3034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13087 comm="syz.3.4159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7f39f7d4e929 code=0x7ffc0000 [ 146.650114][ T29] audit: type=1326 audit(1752174381.546:3035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13087 comm="syz.3.4159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39f7d4e929 code=0x7ffc0000 [ 146.674037][ T29] audit: type=1400 audit(1752174381.574:3036): avc: denied { create } for pid=13094 comm="syz.3.4160" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 146.694166][ T29] audit: type=1400 audit(1752174381.574:3037): avc: denied { read } for pid=13094 comm="syz.3.4160" path="socket:[36875]" dev="sockfs" ino=36875 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 146.720564][ T29] audit: type=1400 audit(1752174381.602:3038): avc: denied { name_bind } for pid=13098 comm="syz.0.4162" src=65530 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=rawip_socket permissive=1 [ 146.745899][T13109] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4177'. [ 146.754992][T13109] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4177'. [ 146.768359][T13109] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 146.777225][T13109] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 146.786044][T13109] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 146.794954][T13109] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 146.802479][T13112] loop5: detected capacity change from 0 to 1024 [ 146.814533][T13112] EXT4-fs: Ignoring removed oldalloc option [ 146.822805][T13112] EXT4-fs: Ignoring removed orlov option [ 146.841570][ T29] audit: type=1326 audit(1752174381.846:3039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13108 comm="syz.0.4176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6440e929 code=0x7ffc0000 [ 146.865147][ T29] audit: type=1326 audit(1752174381.846:3040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13108 comm="syz.0.4176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f6440e929 code=0x7ffc0000 [ 146.921928][T13118] vhci_hcd: default hub control req: 800f v0000 i0000 l31125 [ 148.039066][T13164] loop1: detected capacity change from 0 to 1024 [ 148.045971][T13164] EXT4-fs: Ignoring removed oldalloc option [ 148.052013][T13164] EXT4-fs: Ignoring removed orlov option [ 148.059366][T13164] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 148.088370][T13164] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 148.121607][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 148.200719][T13173] SELinux: syz.3.4193 (13173) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 148.236422][T13177] vhci_hcd: default hub control req: 800f v0000 i0000 l31125 [ 148.439235][T13190] serio: Serial port ptm0 [ 148.456875][T13192] loop1: detected capacity change from 0 to 2048 [ 148.470219][T13194] random: crng reseeded on system resumption [ 148.488373][T13192] EXT4-fs: Ignoring removed orlov option [ 148.515382][T13192] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 148.593322][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 148.740123][T13217] loop1: detected capacity change from 0 to 512 [ 148.763683][T13217] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 148.775095][T13222] loop3: detected capacity change from 0 to 1024 [ 148.784726][T13222] EXT4-fs: Ignoring removed oldalloc option [ 148.790785][T13222] EXT4-fs: Ignoring removed orlov option [ 148.799379][T13222] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 148.811193][T13217] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 148.824946][T13217] ext4 filesystem being mounted at /881/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 148.850784][T13222] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 148.872286][T13217] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.4222: corrupted xattr block 32: bad e_name length [ 148.896420][T13236] netlink: 'syz.5.4220': attribute type 13 has an invalid length. [ 148.900349][T13217] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop1 ino=15 [ 148.914254][T13238] random: crng reseeded on system resumption [ 148.914848][T13217] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.4222: corrupted xattr block 32: bad e_name length [ 148.925392][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 148.944207][T13236] gretap0: refused to change device tx_queue_len [ 148.944534][T13217] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop1 ino=15 [ 148.951212][T13236] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 148.971286][T13239] EXT4-fs error (device loop1): __ext4_new_inode:1279: comm syz.1.4222: failed to insert inode 16: doubly allocated? [ 149.021141][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 149.046081][T13246] gre0: Master is either lo or non-ether device [ 149.261204][T13272] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4238'. [ 149.273921][T13272] vxcan2: entered allmulticast mode [ 149.320316][T13282] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4240'. [ 149.352214][T13288] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 149.474682][T13307] openvswitch: netlink: Message has 6 unknown bytes. [ 149.536388][T13317] random: crng reseeded on system resumption [ 149.602565][T13328] loop3: detected capacity change from 0 to 512 [ 149.612751][T13328] EXT4-fs error (device loop3): ext4_iget_extra_inode:5035: inode #15: comm syz.3.4264: corrupted in-inode xattr: invalid ea_ino [ 149.627558][T13328] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.4264: couldn't read orphan inode 15 (err -117) [ 149.640610][T13328] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 149.704474][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 149.823253][T13352] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6) [ 149.829984][T13352] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 149.837811][T13352] vhci_hcd vhci_hcd.0: Device attached [ 149.860017][T13353] vhci_hcd: connection closed [ 149.860280][T10370] vhci_hcd: stop threads [ 149.869274][T10370] vhci_hcd: release socket [ 149.873752][T10370] vhci_hcd: disconnect device [ 149.909658][T13361] loop0: detected capacity change from 0 to 512 [ 149.920671][T13361] EXT4-fs: Ignoring removed nomblk_io_submit option [ 149.928282][T13361] EXT4-fs (loop0): external journal device major/minor numbers have changed [ 149.944856][T13365] loop6: detected capacity change from 0 to 512 [ 149.958800][T13365] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 149.967547][T13361] EXT4-fs (loop0): failed to open journal device unknown-block(0,3) -6 [ 149.998073][T13365] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 150.026318][T13365] ext4 filesystem being mounted at /286/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 150.051190][T13365] EXT4-fs error (device loop6): ext4_xattr_block_get:593: inode #15: comm syz.6.4279: corrupted xattr block 32: bad e_name length [ 150.068334][T13365] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop6 ino=15 [ 150.077730][T13365] EXT4-fs error (device loop6): ext4_xattr_block_get:593: inode #15: comm syz.6.4279: corrupted xattr block 32: bad e_name length [ 150.091538][T13365] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop6 ino=15 [ 150.112199][T13365] EXT4-fs error (device loop6): __ext4_new_inode:1279: comm syz.6.4279: failed to insert inode 16: doubly allocated? [ 150.141754][ T9932] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 150.171166][T13391] openvswitch: netlink: Message has 6 unknown bytes. [ 150.330820][T13423] syzkaller1: entered promiscuous mode [ 150.336370][T13423] syzkaller1: entered allmulticast mode [ 150.538874][T13465] netlink: 132 bytes leftover after parsing attributes in process `syz.3.4305'. [ 150.726893][T13498] x_tables: duplicate underflow at hook 2 [ 150.946160][T13535] loop3: detected capacity change from 0 to 512 [ 150.961876][T13535] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 150.974512][T13535] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 150.987618][T13535] ext4 filesystem being mounted at /894/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 150.992458][T13548] loop0: detected capacity change from 0 to 512 [ 151.002028][T13535] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.4324: corrupted xattr block 32: bad e_name length [ 151.015860][T13548] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 151.028296][T13535] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 151.038048][T13535] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.4324: corrupted xattr block 32: bad e_name length [ 151.055641][T13553] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 151.058414][T13535] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 151.081594][T13548] EXT4-fs (loop0): 1 truncate cleaned up [ 151.095960][T13548] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 151.138346][T13553] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 151.155593][T13554] EXT4-fs error (device loop3): __ext4_new_inode:1279: comm syz.3.4324: failed to insert inode 16: doubly allocated? [ 151.188543][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 151.239743][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 151.355143][T13603] loop6: detected capacity change from 0 to 2048 [ 151.370856][T13605] loop3: detected capacity change from 0 to 512 [ 151.378084][T13605] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 151.378785][T13603] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 151.401443][T13605] EXT4-fs (loop3): 1 truncate cleaned up [ 151.407958][T13605] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 151.413217][T13603] ext4 filesystem being mounted at /294/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 151.460047][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 151.817888][T10371] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm kworker/u8:50: bg 0: block 345: padding at end of block bitmap is not set [ 151.834293][T10371] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117 [ 151.847039][T10371] EXT4-fs (loop6): This should not happen!! Data will be lost [ 151.847039][T10371] [ 151.882326][T13641] loop5: detected capacity change from 0 to 512 [ 151.882460][T10367] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 2040 with error 28 [ 151.901540][T10367] EXT4-fs (loop6): This should not happen!! Data will be lost [ 151.901540][T10367] [ 151.911221][T10367] EXT4-fs (loop6): Total free blocks count 0 [ 151.917288][T10367] EXT4-fs (loop6): Free/Dirty block details [ 151.923235][T10367] EXT4-fs (loop6): free_blocks=0 [ 151.928288][T10367] EXT4-fs (loop6): dirty_blocks=2048 [ 151.933712][T10367] EXT4-fs (loop6): Block reservation details [ 151.940082][T13643] tap0: tun_chr_ioctl cmd 1074025675 [ 151.945525][T13643] tap0: persist enabled [ 151.956876][T13643] tap0: tun_chr_ioctl cmd 1074025675 [ 151.962237][T13643] tap0: persist disabled [ 151.989846][T13645] bridge_slave_0: left allmulticast mode [ 151.995557][T13645] bridge_slave_0: left promiscuous mode [ 152.001413][T13645] bridge0: port 1(bridge_slave_0) entered disabled state [ 152.012420][T13645] bridge_slave_1: left allmulticast mode [ 152.018106][T13645] bridge_slave_1: left promiscuous mode [ 152.024172][T13645] bridge0: port 2(bridge_slave_1) entered disabled state [ 152.033043][ T29] kauditd_printk_skb: 134 callbacks suppressed [ 152.033109][ T29] audit: type=1326 audit(1752174386.710:3175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13646 comm="syz.6.4359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63a826e929 code=0x7ffc0000 [ 152.065933][ T29] audit: type=1326 audit(1752174386.719:3176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13646 comm="syz.6.4359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63a826e929 code=0x7ffc0000 [ 152.089563][ T29] audit: type=1326 audit(1752174386.719:3177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13646 comm="syz.6.4359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=226 compat=0 ip=0x7f63a826e929 code=0x7ffc0000 [ 152.113303][ T29] audit: type=1326 audit(1752174386.719:3178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13646 comm="syz.6.4359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63a826e929 code=0x7ffc0000 [ 152.136918][ T29] audit: type=1326 audit(1752174386.738:3179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13646 comm="syz.6.4359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63a826e929 code=0x7ffc0000 [ 152.169885][T13645] bond0: (slave bond_slave_0): Releasing backup interface [ 152.180737][T13645] bond_slave_0: left promiscuous mode [ 152.186310][T13645] bond_slave_0: left allmulticast mode [ 152.194428][T13645] bond0: (slave bond_slave_1): Releasing backup interface [ 152.205898][T13645] bond_slave_1: left promiscuous mode [ 152.211395][T13645] bond_slave_1: left allmulticast mode [ 152.219780][T13645] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 152.227368][T13645] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 152.237031][T13645] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 152.244559][T13645] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 152.252730][T13657] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4377'. [ 152.278935][T13645] vlan2: left allmulticast mode [ 152.283892][T13645] bond0: left allmulticast mode [ 152.288815][T13645] vlan2: left promiscuous mode [ 152.293598][T13645] bond0: left promiscuous mode [ 152.298630][T13645] bridge0: port 3(vlan2) entered disabled state [ 152.440039][T13669] bond1: entered promiscuous mode [ 152.445195][T13669] bond1: entered allmulticast mode [ 152.459832][T13669] 8021q: adding VLAN 0 to HW filter on device bond1 [ 152.489050][T13669] bond1 (unregistering): Released all slaves [ 152.602436][ T29] audit: type=1400 audit(1752174387.234:3180): avc: denied { mount } for pid=13680 comm="syz.3.4379" name="/" dev="hugetlbfs" ino=36776 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1 [ 152.676219][ T29] audit: type=1400 audit(1752174387.234:3181): avc: denied { unmount } for pid=3316 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1 [ 152.696579][ T29] audit: type=1400 audit(1752174387.271:3182): avc: denied { read } for pid=13678 comm="syz.5.4378" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 152.715996][ T29] audit: type=1326 audit(1752174387.280:3183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13682 comm="syz.3.4380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39f7d4e929 code=0x7ffc0000 [ 152.739522][ T29] audit: type=1326 audit(1752174387.280:3184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13682 comm="syz.3.4380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39f7d4e929 code=0x7ffc0000 [ 153.397964][T13768] loop3: detected capacity change from 0 to 128 [ 153.435454][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.443085][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.450510][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.457951][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.465403][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.472889][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.480549][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.488130][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.495717][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.503137][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.510646][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.518188][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.525630][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.533177][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.540659][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.549609][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.557095][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.564612][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.572249][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.579751][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.587232][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.594690][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.602121][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.609538][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.617019][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.624534][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.631957][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.639393][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.646893][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.654395][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.661911][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.669368][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.676820][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.684384][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.691847][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.699301][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.706743][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.714246][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.721697][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.729143][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.736612][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.744081][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.751865][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.759288][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.766908][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.774394][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.781797][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.789237][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.796674][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.804069][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.811629][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.819107][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.826534][ T1034] hid-generic 0008:0006:0007.0005: unknown main item tag 0x0 [ 153.880731][T13807] loop0: detected capacity change from 0 to 1024 [ 153.888184][T13807] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 153.899183][T13807] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 153.966177][ T1034] hid-generic 0008:0006:0007.0005: hidraw0: HID v0.0b Device [syz1] on syz1 [ 153.978191][T13807] JBD2: no valid journal superblock found [ 153.984104][T13807] EXT4-fs (loop0): Could not load journal inode [ 154.127838][T13836] loop0: detected capacity change from 0 to 1024 [ 154.134955][T13836] EXT4-fs: Ignoring removed nomblk_io_submit option [ 154.160166][T13836] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 154.240800][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 154.559622][T13869] loop0: detected capacity change from 0 to 512 [ 154.567754][T13869] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 154.582622][T13869] EXT4-fs (loop0): 1 truncate cleaned up [ 154.594918][T13872] loop5: detected capacity change from 0 to 128 [ 154.603380][T13869] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 154.625701][T13878] netlink: 'syz.6.4426': attribute type 10 has an invalid length. [ 154.633760][T13878] netlink: 40 bytes leftover after parsing attributes in process `syz.6.4426'. [ 154.637353][T13869] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #2: block 3: comm syz.0.4422: lblock 1 mapped to illegal pblock 3 (length 1) [ 154.652716][T13878] dummy0: entered promiscuous mode [ 154.675959][T13878] bridge0: port 3(dummy0) entered blocking state [ 154.682486][T13878] bridge0: port 3(dummy0) entered disabled state [ 154.690982][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 154.711885][T13878] dummy0: entered allmulticast mode [ 154.725529][T13878] bridge0: port 3(dummy0) entered blocking state [ 154.732051][T13878] bridge0: port 3(dummy0) entered forwarding state [ 154.740419][T13887] netlink: 'syz.5.4431': attribute type 6 has an invalid length. [ 154.772140][T13888] loop1: detected capacity change from 0 to 512 [ 154.783019][T13888] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 154.792812][T13888] EXT4-fs (loop1): orphan cleanup on readonly fs [ 154.801324][T13888] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.4441: Failed to acquire dquot type 1 [ 154.813317][T13888] EXT4-fs (loop1): 1 truncate cleaned up [ 154.819495][T13888] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 154.868251][ T3307] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 154.881408][T13900] loop0: detected capacity change from 0 to 512 [ 154.893303][T13900] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 154.906859][T13900] EXT4-fs (loop0): 1 truncate cleaned up [ 154.912964][T13900] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 154.976674][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 155.222843][T13942] netlink: 404 bytes leftover after parsing attributes in process `syz.6.4455'. [ 155.435939][T13960] loop5: detected capacity change from 0 to 8192 [ 155.496137][T13971] syzkaller1: entered promiscuous mode [ 155.501740][T13971] syzkaller1: entered allmulticast mode [ 155.577359][T13977] loop1: detected capacity change from 0 to 1024 [ 155.585480][T13977] EXT4-fs: inline encryption not supported [ 155.591385][T13977] EXT4-fs: Ignoring removed i_version option [ 155.598829][T13977] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 155.612048][T13977] EXT4-fs error (device loop1): ext4_map_blocks:816: inode #3: block 1: comm syz.1.4483: lblock 1 mapped to illegal pblock 1 (length 1) [ 155.627425][T13977] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.4483: Failed to acquire dquot type 0 [ 155.639308][T13977] EXT4-fs error (device loop1): ext4_free_blocks:6587: comm syz.1.4483: Freeing blocks not in datazone - block = 0, count = 4096 [ 155.652916][T13977] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.4483: Invalid inode bitmap blk 0 in block_group 0 [ 155.665879][T13977] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem [ 155.674492][T13977] EXT4-fs (loop1): 1 orphan inode deleted [ 155.680419][T10346] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:25: lblock 1 mapped to illegal pblock 1 (length 1) [ 155.680794][T13977] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 155.698273][T10346] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:25: Failed to release dquot type 0 [ 155.732397][T13977] EXT4-fs error (device loop1): ext4_readdir:264: inode #2: block 16: comm syz.1.4483: path /932/file0: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0 [ 155.850722][T13999] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4481'. [ 155.892989][T14001] netlink: 'syz.0.4482': attribute type 1 has an invalid length. [ 155.918107][T14005] netlink: 'syz.6.4488': attribute type 2 has an invalid length. [ 155.977202][T14012] SELinux: failed to load policy [ 156.418986][T14046] loop0: detected capacity change from 0 to 1024 [ 156.489466][T14058] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4510'. [ 156.784753][T14099] loop0: detected capacity change from 0 to 1024 [ 156.797656][T14099] EXT4-fs: Ignoring removed oldalloc option [ 156.804982][T14099] EXT4-fs: Ignoring removed orlov option [ 156.811391][T14099] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 156.914230][T14099] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4113: comm syz.0.4529: Allocating blocks 497-513 which overlap fs metadata [ 156.951776][T14112] loop3: detected capacity change from 0 to 512 [ 156.959154][T14112] journal_path: Non-blockdev passed as './bus' [ 156.965399][T14112] EXT4-fs: error: could not find journal device path [ 157.056643][T14116] netlink: 76 bytes leftover after parsing attributes in process `syz.6.4537'. [ 157.084053][T14122] loop3: detected capacity change from 0 to 512 [ 157.141337][T14122] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.4539: corrupted inode contents [ 157.157060][T14122] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #16: comm syz.3.4539: mark_inode_dirty error [ 157.168744][T14122] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.4539: corrupted inode contents [ 157.182616][T14122] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.4539: mark_inode_dirty error [ 157.194790][T14136] loop0: detected capacity change from 0 to 512 [ 157.201443][T14122] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.4539: corrupted inode contents [ 157.214142][T14122] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem [ 157.214436][T14136] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 157.223170][T14122] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.4539: corrupted inode contents [ 157.245098][T14122] EXT4-fs error (device loop3): ext4_truncate:4597: inode #16: comm syz.3.4539: mark_inode_dirty error [ 157.257512][T14122] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem [ 157.269824][T14122] EXT4-fs (loop3): 1 truncate cleaned up [ 157.275829][T14122] ext4 filesystem being mounted at /922/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 157.287545][T14136] EXT4-fs (loop0): failed to initialize system zone (-117) [ 157.299604][T14136] EXT4-fs (loop0): mount failed [ 157.311679][T10346] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:25: Failed to release dquot type 1 [ 157.401670][T14146] loop6: detected capacity change from 0 to 2048 [ 157.453036][T14146] Alternate GPT is invalid, using primary GPT. [ 157.459844][T14146] loop6: p1 p2 p3 [ 157.487704][ T29] kauditd_printk_skb: 199 callbacks suppressed [ 157.487720][ T29] audit: type=1400 audit(1752174391.808:3378): avc: denied { create } for pid=14155 comm="syz.0.4553" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 157.516139][ T29] audit: type=1400 audit(1752174391.817:3379): avc: denied { write } for pid=14155 comm="syz.0.4553" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 157.634453][T14168] loop1: detected capacity change from 0 to 512 [ 157.656660][T14168] ext4 filesystem being mounted at /955/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 157.675046][ T29] audit: type=1400 audit(1752174391.976:3380): avc: denied { add_name } for pid=14167 comm="syz.1.4559" name="cpu.stat" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 157.696259][ T29] audit: type=1400 audit(1752174391.976:3381): avc: denied { create } for pid=14167 comm="syz.1.4559" name="cpu.stat" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 157.716975][ T29] audit: type=1400 audit(1752174391.985:3382): avc: denied { read append open } for pid=14167 comm="syz.1.4559" path="/955/file1/cpu.stat" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 157.746562][ T29] audit: type=1400 audit(1752174392.051:3383): avc: denied { ioctl } for pid=14167 comm="syz.1.4559" path="/955/file1/cpu.stat" dev="loop1" ino=18 ioctlcmd=0x583b scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 157.784699][T14176] loop5: detected capacity change from 0 to 512 [ 157.787294][ T29] audit: type=1400 audit(1752174392.088:3384): avc: denied { shutdown } for pid=14177 comm="syz.6.4564" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 157.810853][ T29] audit: type=1400 audit(1752174392.088:3385): avc: denied { getopt } for pid=14177 comm="syz.6.4564" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 157.845266][T14181] loop0: detected capacity change from 0 to 512 [ 157.861868][T14181] EXT4-fs (loop0): orphan cleanup on readonly fs [ 157.870344][T14181] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.4565: bg 0: block 248: padding at end of block bitmap is not set [ 157.884956][T14181] Quota error (device loop0): write_blk: dquota write failed [ 157.892435][T14181] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 157.902617][T14181] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.4565: Failed to acquire dquot type 1 [ 157.908687][T14188] loop5: detected capacity change from 0 to 1024 [ 157.917810][T14181] EXT4-fs (loop0): 1 truncate cleaned up [ 157.934216][T14188] EXT4-fs: Ignoring removed oldalloc option [ 157.940660][T14188] EXT4-fs: Ignoring removed orlov option [ 157.954103][T14180] EXT4-fs error (device loop0): ext4_lookup:1791: inode #2: comm syz.0.4565: deleted inode referenced: 12 [ 158.038373][T14200] 9pnet: p9_errstr2errno: server reported unknown error  [ 158.059535][T14202] netlink: 'syz.3.4574': attribute type 1 has an invalid length. [ 158.107993][T14210] loop5: detected capacity change from 0 to 512 [ 158.115754][T14210] EXT4-fs: Ignoring removed oldalloc option [ 158.236997][T14218] loop1: detected capacity change from 0 to 8192 [ 158.263649][T14218] loop1: p1 p2 < > p3 p4 < p5 > [ 158.268731][T14218] loop1: partition table partially beyond EOD, truncated [ 158.280190][T14218] loop1: p1 size 100663296 extends beyond EOD, truncated [ 158.290988][T14218] loop1: p2 start 591104 is beyond EOD, truncated [ 158.297594][T14218] loop1: p3 start 33572980 is beyond EOD, truncated [ 158.307483][T14218] loop1: p5 size 100663296 extends beyond EOD, truncated [ 158.321339][T10371] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 158.383817][T10371] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 158.440084][T14241] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4597'. [ 158.459650][T10371] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 158.508322][T14251] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4600'. [ 158.564780][T10371] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 158.714801][T14268] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4603'. [ 158.743482][T14268] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4603'. [ 158.822953][T10371] bond0 (unregistering): Released all slaves [ 158.854745][T14282] vhci_hcd: default hub control req: 0000 v0000 i0000 l31125 [ 158.960431][T14299] netlink: 'syz.0.4619': attribute type 3 has an invalid length. [ 159.012501][T14307] loop0: detected capacity change from 0 to 512 [ 159.019833][T14307] EXT4-fs (loop0): external journal device major/minor numbers have changed [ 159.028847][T14307] EXT4-fs (loop0): failed to open journal device unknown-block(8,3) -6 [ 159.062057][T14309] loop0: detected capacity change from 0 to 256 [ 159.107801][T14284] dummy0: left allmulticast mode [ 159.113006][T14284] bridge0: port 3(dummy0) entered disabled state [ 159.124091][T14284] bridge_slave_0: left allmulticast mode [ 159.129967][T14284] bridge_slave_0: left promiscuous mode [ 159.135918][T14284] bridge0: port 1(bridge_slave_0) entered disabled state [ 159.144508][T14284] bridge_slave_1: left allmulticast mode [ 159.150303][T14284] bridge_slave_1: left promiscuous mode [ 159.156141][T14284] bridge0: port 2(bridge_slave_1) entered disabled state [ 159.165465][T14284] bond0: (slave bond_slave_0): Releasing backup interface [ 159.175958][T14284] bond0: (slave bond_slave_1): Releasing backup interface [ 159.188933][T14284] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 159.196456][T14284] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 159.205478][T14284] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 159.212957][T14284] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 159.239089][T14313] netlink: 136 bytes leftover after parsing attributes in process `syz.0.4626'. [ 159.250895][T10371] hsr_slave_0: left promiscuous mode [ 159.256739][T10371] hsr_slave_1: left promiscuous mode [ 159.268038][T10371] veth1_macvtap: left promiscuous mode [ 159.274329][T10371] veth0_macvtap: left promiscuous mode [ 159.289692][T10371] veth1_vlan: left promiscuous mode [ 159.294995][T10371] veth0_vlan: left promiscuous mode [ 159.326244][T14320] program syz.6.4629 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 159.433592][T14326] macsec2: entered allmulticast mode [ 159.517601][T14246] chnl_net:caif_netlink_parms(): no params data found [ 159.594020][T14246] bridge0: port 1(bridge_slave_0) entered blocking state [ 159.601220][T14246] bridge0: port 1(bridge_slave_0) entered disabled state [ 159.608731][T14246] bridge_slave_0: entered allmulticast mode [ 159.617135][T14246] bridge_slave_0: entered promiscuous mode [ 159.624342][T14246] bridge0: port 2(bridge_slave_1) entered blocking state [ 159.631549][T14246] bridge0: port 2(bridge_slave_1) entered disabled state [ 159.639009][T14246] bridge_slave_1: entered allmulticast mode [ 159.645465][T14246] bridge_slave_1: entered promiscuous mode [ 159.679503][T14246] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 159.693287][T14246] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 159.729791][T14246] team0: Port device team_slave_0 added [ 159.740559][T14353] ip6tnl1: entered promiscuous mode [ 159.745976][T14353] ip6tnl1: entered allmulticast mode [ 159.759827][T14246] team0: Port device team_slave_1 added [ 159.804179][T14246] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 159.811176][T14246] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 159.837332][T14246] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 159.858782][T14246] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 159.865798][T14246] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 159.892008][T14246] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 159.916489][T14361] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4646'. [ 159.925647][T14361] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4646'. [ 159.947380][T14361] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4646'. [ 159.956457][T14361] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4646'. [ 159.969732][T14246] hsr_slave_0: entered promiscuous mode [ 159.978887][T14246] hsr_slave_1: entered promiscuous mode [ 159.985163][T14246] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 159.998442][T14246] Cannot create hsr debugfs directory [ 160.025054][T14361] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4646'. [ 160.125697][T14392] loop1: detected capacity change from 0 to 512 [ 160.132753][T14392] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 160.148394][T14246] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 160.158833][T14246] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 160.167994][T14392] EXT4-fs (loop1): 1 truncate cleaned up [ 160.176761][T14246] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 160.204908][T14246] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 160.249922][T14246] bridge0: port 2(bridge_slave_1) entered blocking state [ 160.257078][T14246] bridge0: port 2(bridge_slave_1) entered forwarding state [ 160.264427][T14246] bridge0: port 1(bridge_slave_0) entered blocking state [ 160.271612][T14246] bridge0: port 1(bridge_slave_0) entered forwarding state [ 160.311534][T14246] 8021q: adding VLAN 0 to HW filter on device bond0 [ 160.325492][T10346] bridge0: port 1(bridge_slave_0) entered disabled state [ 160.334690][T10346] bridge0: port 2(bridge_slave_1) entered disabled state [ 160.349148][T14246] 8021q: adding VLAN 0 to HW filter on device team0 [ 160.363044][T10358] bridge0: port 1(bridge_slave_0) entered blocking state [ 160.370361][T10358] bridge0: port 1(bridge_slave_0) entered forwarding state [ 160.392326][T14414] vhci_hcd: invalid port number 96 [ 160.397531][T14414] vhci_hcd: default hub control req: 0300 vfffc i0060 l0 [ 160.415563][T10358] bridge0: port 2(bridge_slave_1) entered blocking state [ 160.422704][T10358] bridge0: port 2(bridge_slave_1) entered forwarding state [ 160.469396][T14422] loop1: detected capacity change from 0 to 128 [ 160.484051][T14422] ext4 filesystem being mounted at /974/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 160.575122][T14433] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 160.592444][T14246] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 160.600966][T14433] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 160.675215][T14445] SELinux: syz.3.4676 (14445) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 160.810157][T14246] veth0_vlan: entered promiscuous mode [ 160.821420][T14246] veth1_vlan: entered promiscuous mode [ 160.837371][T14246] veth0_macvtap: entered promiscuous mode [ 160.846545][T14246] veth1_macvtap: entered promiscuous mode [ 160.859407][T14246] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 160.873141][T14246] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 160.884627][T14246] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 160.893448][T14246] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 160.902181][T14246] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 160.911116][T14246] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 160.984848][T14472] loop6: detected capacity change from 0 to 1024 [ 160.993826][T14472] EXT4-fs: Ignoring removed nobh option [ 160.999560][T14472] EXT4-fs: Ignoring removed bh option [ 161.087966][T14483] loop1: detected capacity change from 0 to 512 [ 161.101101][T14483] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 161.114366][T14483] EXT4-fs (loop1): 1 truncate cleaned up [ 161.148010][T14488] netlink: 'syz.6.4691': attribute type 3 has an invalid length. [ 161.184556][ T10] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x4 [ 161.192456][ T10] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x2 [ 161.200358][ T10] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 161.208165][ T10] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 161.215944][ T10] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 161.223728][ T10] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 161.231462][ T10] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 161.239193][ T10] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 161.246901][ T10] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 161.254608][ T10] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 161.262351][ T10] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 161.270067][ T10] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 161.277824][ T10] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 161.285537][ T10] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 161.293346][ T10] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 161.301072][ T10] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 161.309776][ T10] hid-generic 0000:3000000:0000.0006: hidraw0: HID v0.00 Device [sy] on syz0 [ 161.335155][T14500] bond1: entered promiscuous mode [ 161.340378][T14500] bond1: entered allmulticast mode [ 161.346046][T14500] 8021q: adding VLAN 0 to HW filter on device bond1 [ 161.367196][T14500] bond1 (unregistering): Released all slaves [ 161.376256][T14507] program syz.7.4699 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 161.665414][T14550] loop1: detected capacity change from 0 to 512 [ 161.684737][T14550] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 161.712461][T14550] ext4 filesystem being mounted at /987/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 161.946248][T14583] Invalid ELF header magic: != ELF [ 162.009802][T14591] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=14591 comm=syz.7.4736 [ 162.022526][T14591] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=14591 comm=syz.7.4736 [ 162.039862][T14594] netlink: 'syz.6.4738': attribute type 1 has an invalid length. [ 162.321321][T14620] loop7: detected capacity change from 0 to 128 [ 162.519219][T14659] loop7: detected capacity change from 0 to 1024 [ 162.577544][T14668] loop7: detected capacity change from 0 to 2048 [ 162.842895][ T29] kauditd_printk_skb: 249 callbacks suppressed [ 162.842913][ T29] audit: type=1400 audit(1752174652.812:3635): avc: denied { mount } for pid=14701 comm="syz.7.4789" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 162.871900][ T29] audit: type=1400 audit(1752174652.812:3636): avc: denied { mounton } for pid=14701 comm="syz.7.4789" path="/43/file0" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1 [ 162.894583][ T29] audit: type=1400 audit(1752174652.812:3637): avc: denied { mount } for pid=14701 comm="syz.7.4789" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1 [ 162.917074][ T29] audit: type=1400 audit(1752174652.869:3638): avc: denied { unmount } for pid=14246 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1 [ 162.939516][ T29] audit: type=1400 audit(1752174652.887:3639): avc: denied { unmount } for pid=14246 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 162.963931][ T29] audit: type=1400 audit(1752174652.925:3640): avc: denied { read append } for pid=14703 comm="syz.7.4790" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 162.964007][T14704] random: crng reseeded on system resumption [ 162.987875][ T29] audit: type=1400 audit(1752174652.925:3641): avc: denied { ioctl open } for pid=14703 comm="syz.7.4790" path="/dev/snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 163.018334][ T29] audit: type=1400 audit(1752174652.962:3642): avc: denied { firmware_load } for pid=10358 comm="kworker/u8:37" path="/lib/firmware/regulatory.db.p7s" dev="sda1" ino=449 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1 [ 163.115958][ T29] audit: type=1400 audit(1752174653.065:3643): avc: denied { create } for pid=14713 comm="syz.7.4795" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1 [ 163.136982][ T29] audit: type=1400 audit(1752174653.074:3644): avc: denied { read } for pid=14713 comm="syz.7.4795" path="socket:[42861]" dev="sockfs" ino=42861 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1 [ 163.393073][T14726] Invalid ELF header magic: != ELF [ 163.414725][T14728] openvswitch: netlink: Message has 6 unknown bytes. [ 163.535811][T14739] loop6: detected capacity change from 0 to 1024 [ 163.546245][T14739] ext4 filesystem being mounted at /402/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 163.560671][T14739] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 163.580174][T14739] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 319 with max blocks 1 with error 28 [ 163.592607][T14739] EXT4-fs (loop6): This should not happen!! Data will be lost [ 163.592607][T14739] [ 163.602319][T14739] EXT4-fs (loop6): Total free blocks count 0 [ 163.608343][T14739] EXT4-fs (loop6): Free/Dirty block details [ 163.614260][T14739] EXT4-fs (loop6): free_blocks=4293918720 [ 163.620103][T14739] EXT4-fs (loop6): dirty_blocks=16 [ 163.625222][T14739] EXT4-fs (loop6): Block reservation details [ 163.631298][T14739] EXT4-fs (loop6): i_reserved_data_blocks=1 [ 163.741553][T14755] loop1: detected capacity change from 0 to 1024 [ 163.748606][T14755] EXT4-fs: Ignoring removed orlov option [ 163.850168][T14765] loop6: detected capacity change from 0 to 512 [ 163.859259][T14765] EXT4-fs error (device loop6): ext4_orphan_get:1393: inode #15: comm syz.6.4826: casefold flag without casefold feature [ 163.882966][T14765] EXT4-fs error (device loop6): ext4_orphan_get:1398: comm syz.6.4826: couldn't read orphan inode 15 (err -117) [ 164.566865][T14805] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 164.742926][T14822] loop1: detected capacity change from 0 to 512 [ 164.764463][T14822] EXT4-fs: Ignoring removed nomblk_io_submit option [ 164.776442][T14822] EXT4-fs (loop1): external journal device major/minor numbers have changed [ 164.808699][T14822] EXT4-fs (loop1): failed to open journal device unknown-block(0,3) -6 [ 164.822440][T14832] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 166.053100][T14847] loop6: detected capacity change from 0 to 512 [ 166.067117][T14847] EXT4-fs (loop6): orphan cleanup on readonly fs [ 166.085647][T14854] loop7: detected capacity change from 0 to 164 [ 166.092251][T14847] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.4851: bg 0: block 248: padding at end of block bitmap is not set [ 166.111350][T14847] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.4851: Failed to acquire dquot type 1 [ 166.137100][T14847] EXT4-fs (loop6): 1 truncate cleaned up [ 166.138755][T14858] bond0: entered promiscuous mode [ 166.147923][T14858] bond_slave_0: entered promiscuous mode [ 166.153740][T14858] bond_slave_1: entered promiscuous mode [ 166.165817][T14858] batadv0: entered promiscuous mode [ 166.173161][T14858] debugfs: Directory 'hsr1' with parent 'hsr' already present! [ 166.181287][T14858] Cannot create hsr debugfs directory [ 166.187107][T14858] 8021q: adding VLAN 0 to HW filter on device hsr1 [ 166.196028][T14858] bond0: left promiscuous mode [ 166.200853][T14858] bond_slave_0: left promiscuous mode [ 166.206520][T14858] bond_slave_1: left promiscuous mode [ 166.213366][T14858] batadv0: left promiscuous mode [ 166.281959][T14867] netlink: 'syz.7.4871': attribute type 3 has an invalid length. [ 166.289749][T14867] __nla_validate_parse: 6 callbacks suppressed [ 166.289764][T14867] netlink: 13435 bytes leftover after parsing attributes in process `syz.7.4871'. [ 166.306927][T14863] loop6: detected capacity change from 0 to 512 [ 166.323288][T14863] EXT4-fs: Ignoring removed nomblk_io_submit option [ 166.340100][T14863] EXT4-fs (loop6): external journal device major/minor numbers have changed [ 166.353945][T14873] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 166.373168][T14863] EXT4-fs (loop6): failed to open journal device unknown-block(0,3) -6 [ 166.480916][T14895] sd 0:0:1:0: device reset [ 166.525597][T14904] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4878'. [ 166.565620][T14904] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4878'. [ 166.601215][ T3388] kernel read not supported for file /vcs (pid: 3388 comm: kworker/0:4) [ 166.632465][T14913] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 166.778389][T14924] loop7: detected capacity change from 0 to 256 [ 166.829840][T14935] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 166.858389][T14935] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 167.430699][T14951] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 167.446905][T14945] loop1: detected capacity change from 0 to 1024 [ 167.482648][T14945] EXT4-fs mount: 29 callbacks suppressed [ 167.482666][T14945] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 167.512136][T14945] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 167.521319][T14954] loop6: detected capacity change from 0 to 4096 [ 167.545978][T14965] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 167.554539][T14965] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 167.567542][T14954] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 167.609317][ T9932] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 167.809298][T14988] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 167.977326][T15010] loop7: detected capacity change from 0 to 2048 [ 168.034769][T15016] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 168.101371][T15026] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 168.440214][ T29] kauditd_printk_skb: 127 callbacks suppressed [ 168.440233][ T29] audit: type=1326 audit(1752174658.051:3770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15029 comm="syz.6.4934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63a826e929 code=0x7ffc0000 [ 168.472827][ T29] audit: type=1326 audit(1752174658.051:3771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15029 comm="syz.6.4934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63a826e929 code=0x7ffc0000 [ 168.496507][ T29] audit: type=1326 audit(1752174658.051:3772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15029 comm="syz.6.4934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f63a826e929 code=0x7ffc0000 [ 168.520163][ T29] audit: type=1326 audit(1752174658.051:3773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15029 comm="syz.6.4934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63a826e929 code=0x7ffc0000 [ 168.543720][ T29] audit: type=1326 audit(1752174658.051:3774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15029 comm="syz.6.4934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63a826e929 code=0x7ffc0000 [ 168.567263][ T29] audit: type=1326 audit(1752174658.060:3775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15029 comm="syz.6.4934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f63a826e929 code=0x7ffc0000 [ 168.590821][ T29] audit: type=1326 audit(1752174658.060:3776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15029 comm="syz.6.4934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63a826e929 code=0x7ffc0000 [ 168.614413][ T29] audit: type=1326 audit(1752174658.060:3777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15029 comm="syz.6.4934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63a826e929 code=0x7ffc0000 [ 168.637979][ T29] audit: type=1326 audit(1752174658.060:3778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15029 comm="syz.6.4934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f63a826e929 code=0x7ffc0000 [ 168.661546][ T29] audit: type=1326 audit(1752174658.088:3779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15029 comm="syz.6.4934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63a826e929 code=0x7ffc0000 [ 169.948821][T15129] loop3: detected capacity change from 0 to 512 [ 169.983379][T15129] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 169.997470][T15129] ext4 filesystem being mounted at /994/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 170.012886][T15129] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.4980: corrupted inode contents [ 170.026009][T15129] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #2: comm syz.3.4980: mark_inode_dirty error [ 170.037752][T15129] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.4980: corrupted inode contents [ 170.050790][T15129] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.4980: mark_inode_dirty error [ 170.082399][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 170.128117][T15154] loop7: detected capacity change from 0 to 128 [ 170.162808][T15156] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4991'. [ 170.253100][T15168] netlink: 'syz.3.5006': attribute type 2 has an invalid length. [ 170.297680][T15174] loop6: detected capacity change from 0 to 512 [ 170.316775][T15174] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 170.330771][T15174] ext4 filesystem being mounted at /454/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 170.364119][T15183] xt_hashlimit: max too large, truncated to 1048576 [ 170.406110][T15174] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #2: comm syz.6.5000: corrupted inode contents [ 170.435413][T15174] EXT4-fs error (device loop6): ext4_dirty_inode:6459: inode #2: comm syz.6.5000: mark_inode_dirty error [ 170.456635][T15174] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #2: comm syz.6.5000: corrupted inode contents [ 170.501803][T15174] EXT4-fs error (device loop6): __ext4_ext_dirty:206: inode #2: comm syz.6.5000: mark_inode_dirty error [ 170.515094][T15202] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 170.523570][T15202] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 170.547906][ T9932] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 170.708639][T15226] syzkaller1: entered promiscuous mode [ 170.714244][T15226] syzkaller1: entered allmulticast mode [ 170.906959][T15238] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=15238 comm=syz.1.5036 [ 170.927503][T15239] netlink: 60 bytes leftover after parsing attributes in process `syz.6.5025'. [ 171.651403][T15251] tap0: tun_chr_ioctl cmd 1074025675 [ 171.656805][T15251] tap0: persist enabled [ 171.663243][T15251] tap0: tun_chr_ioctl cmd 1074025675 [ 171.668605][T15251] tap0: persist disabled [ 171.761302][T15259] loop3: detected capacity change from 0 to 512 [ 171.784457][T15261] netlink: 60 bytes leftover after parsing attributes in process `syz.7.5038'. [ 171.830988][T15263] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 171.831403][T15259] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 171.861670][T15259] ext4 filesystem being mounted at /1007/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 171.862821][T15263] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 171.899595][T15259] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #18: comm syz.3.5037: corrupted inode contents [ 171.923856][T15259] EXT4-fs (loop3): Remounting filesystem read-only [ 171.931768][T15259] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -30) [ 171.952069][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 172.464243][T15277] bridge_slave_0: left allmulticast mode [ 172.469988][T15277] bridge_slave_0: left promiscuous mode [ 172.475784][T15277] bridge0: port 1(bridge_slave_0) entered disabled state [ 172.492430][T15277] bridge_slave_1: left promiscuous mode [ 172.498203][T15277] bridge0: port 2(bridge_slave_1) entered disabled state [ 172.521571][T15277] bond0: (slave bond_slave_0): Releasing backup interface [ 172.537999][T15277] bond0: (slave bond_slave_1): Releasing backup interface [ 172.557160][T15277] team_slave_0: left allmulticast mode [ 172.577871][T15277] team_slave_0: left promiscuous mode [ 172.585082][T15277] team0: Port device team_slave_0 removed [ 172.593289][T15277] team_slave_1: left allmulticast mode [ 172.599535][T15277] team_slave_1: left promiscuous mode [ 172.613041][T15277] team0: Port device team_slave_1 removed [ 172.621852][T15277] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 172.629316][T15277] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 172.645401][T15277] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 172.652963][T15277] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 172.717697][T15300] tap0: tun_chr_ioctl cmd 1074025675 [ 172.723056][T15300] tap0: persist enabled [ 172.743478][T15300] tap0: tun_chr_ioctl cmd 1074025675 [ 172.748869][T15300] tap0: persist disabled [ 172.800807][T15311] loop1: detected capacity change from 0 to 2048 [ 172.854576][T15316] netlink: 60 bytes leftover after parsing attributes in process `syz.3.5064'. [ 172.865443][T15311] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 172.938573][T15311] ext4 filesystem being mounted at /1054/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 173.203463][T15343] tap0: tun_chr_ioctl cmd 1074025675 [ 173.208919][T15343] tap0: persist enabled [ 173.230207][T15343] tap0: tun_chr_ioctl cmd 1074025675 [ 173.235589][T15343] tap0: persist disabled [ 173.540694][ C1] ================================================================== [ 173.548869][ C1] BUG: KCSAN: data-race in can_rcv_filter / can_rcv_filter [ 173.556121][ C1] [ 173.558461][ C1] read-write to 0xffff888101a310b8 of 8 bytes by interrupt on cpu 0: [ 173.566547][ C1] can_rcv_filter+0xd9/0x4f0 [ 173.571180][ C1] can_receive+0x163/0x1c0 [ 173.575640][ C1] can_rcv+0xed/0x190 [ 173.579658][ C1] __netif_receive_skb+0x120/0x270 [ 173.584801][ C1] process_backlog+0x229/0x420 [ 173.589595][ C1] __napi_poll+0x63/0x3a0 [ 173.593957][ C1] net_rx_action+0x391/0x830 [ 173.598592][ C1] handle_softirqs+0xb7/0x290 [ 173.603294][ C1] do_softirq+0x5d/0x90 [ 173.607477][ C1] __local_bh_enable_ip+0x70/0x80 [ 173.612530][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 173.617501][ C1] batadv_nc_purge_paths+0x22b/0x270 [ 173.622825][ C1] batadv_nc_worker+0x3d8/0xae0 [ 173.627715][ C1] process_scheduled_works+0x4cb/0x9d0 [ 173.633214][ C1] worker_thread+0x582/0x770 [ 173.637844][ C1] kthread+0x489/0x510 [ 173.641946][ C1] ret_from_fork+0xda/0x150 [ 173.646480][ C1] ret_from_fork_asm+0x1a/0x30 [ 173.651275][ C1] [ 173.653621][ C1] read-write to 0xffff888101a310b8 of 8 bytes by interrupt on cpu 1: [ 173.661706][ C1] can_rcv_filter+0xd9/0x4f0 [ 173.666337][ C1] can_receive+0x163/0x1c0 [ 173.670787][ C1] can_rcv+0xed/0x190 [ 173.674805][ C1] __netif_receive_skb+0x120/0x270 [ 173.679948][ C1] process_backlog+0x229/0x420 [ 173.684746][ C1] __napi_poll+0x63/0x3a0 [ 173.689105][ C1] net_rx_action+0x391/0x830 [ 173.693725][ C1] handle_softirqs+0xb7/0x290 [ 173.698430][ C1] run_ksoftirqd+0x1c/0x30 [ 173.702882][ C1] smpboot_thread_fn+0x328/0x530 [ 173.707880][ C1] kthread+0x489/0x510 [ 173.711981][ C1] ret_from_fork+0xda/0x150 [ 173.716509][ C1] ret_from_fork_asm+0x1a/0x30 [ 173.721310][ C1] [ 173.723650][ C1] value changed: 0x000000000000130a -> 0x000000000000130b [ 173.730772][ C1] [ 173.733114][ C1] Reported by Kernel Concurrency Sanitizer on: [ 173.739290][ C1] CPU: 1 UID: 0 PID: 22 Comm: ksoftirqd/1 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) [ 173.751650][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 173.761734][ C1] ================================================================== [ 173.834996][ C0] ================================================================== [ 173.843137][ C0] BUG: KCSAN: data-race in can_can_gw_rcv / can_can_gw_rcv [ 173.850371][ C0] [ 173.852718][ C0] read-write to 0xffff888100152b60 of 4 bytes by interrupt on cpu 1: [ 173.860805][ C0] can_can_gw_rcv+0x807/0x820 [ 173.865518][ C0] can_rcv_filter+0xc4/0x4f0 [ 173.870143][ C0] can_receive+0x163/0x1c0 [ 173.874601][ C0] can_rcv+0xed/0x190 [ 173.878616][ C0] __netif_receive_skb+0x120/0x270 [ 173.883759][ C0] process_backlog+0x229/0x420 [ 173.888557][ C0] __napi_poll+0x63/0x3a0 [ 173.892917][ C0] net_rx_action+0x391/0x830 [ 173.897535][ C0] handle_softirqs+0xb7/0x290 [ 173.902253][ C0] do_softirq+0x5d/0x90 [ 173.906438][ C0] __local_bh_enable_ip+0x70/0x80 [ 173.911489][ C0] wg_timers_any_authenticated_packet_traversal+0xdd/0x100 [ 173.918723][ C0] wg_packet_tx_worker+0xeb/0x330 [ 173.923787][ C0] process_scheduled_works+0x4cb/0x9d0 [ 173.929286][ C0] worker_thread+0x582/0x770 [ 173.933920][ C0] kthread+0x489/0x510 [ 173.938016][ C0] ret_from_fork+0xda/0x150 [ 173.942551][ C0] ret_from_fork_asm+0x1a/0x30 [ 173.947343][ C0] [ 173.949687][ C0] read-write to 0xffff888100152b60 of 4 bytes by interrupt on cpu 0: [ 173.957780][ C0] can_can_gw_rcv+0x807/0x820 [ 173.962488][ C0] can_rcv_filter+0xc4/0x4f0 [ 173.967121][ C0] can_receive+0x163/0x1c0 [ 173.971578][ C0] can_rcv+0xed/0x190 [ 173.975603][ C0] __netif_receive_skb+0x120/0x270 [ 173.980739][ C0] process_backlog+0x229/0x420 [ 173.985547][ C0] __napi_poll+0x63/0x3a0 [ 173.989903][ C0] net_rx_action+0x391/0x830 [ 173.994527][ C0] handle_softirqs+0xb7/0x290 [ 173.999235][ C0] do_softirq+0x5d/0x90 [ 174.003420][ C0] __local_bh_enable_ip+0x70/0x80 [ 174.008475][ C0] _raw_read_unlock_bh+0x1b/0x30 [ 174.013447][ C0] ipv6_get_lladdr+0x11c/0x160 [ 174.018240][ C0] mld_newpack+0x1e9/0x510 [ 174.022681][ C0] add_grhead+0x41/0x170 [ 174.026949][ C0] add_grec+0xa0b/0xab0 [ 174.031138][ C0] mld_ifc_work+0x508/0x840 [ 174.035679][ C0] process_scheduled_works+0x4cb/0x9d0 [ 174.041165][ C0] worker_thread+0x582/0x770 [ 174.045830][ C0] kthread+0x489/0x510 [ 174.049916][ C0] ret_from_fork+0xda/0x150 [ 174.054432][ C0] ret_from_fork_asm+0x1a/0x30 [ 174.059209][ C0] [ 174.061544][ C0] value changed: 0x00006d05 -> 0x00006d06 [ 174.067265][ C0] [ 174.069594][ C0] Reported by Kernel Concurrency Sanitizer on: [ 174.075754][ C0] CPU: 0 UID: 0 PID: 10 Comm: kworker/0:1 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) [ 174.088094][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 174.098165][ C0] Workqueue: mld mld_ifc_work [ 174.102872][ C0] ================================================================== [ 174.342645][T10359] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u8:38: bg 0: block 345: padding at end of block bitmap is not set [ 174.717182][T10359] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117 [ 174.730807][T10359] EXT4-fs (loop1): This should not happen!! Data will be lost [ 174.730807][T10359] [ 175.099863][T10359] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 2040 with error 28 [ 175.114741][T10359] EXT4-fs (loop1): This should not happen!! Data will be lost [ 175.114741][T10359] [ 175.125391][T10359] EXT4-fs (loop1): Total free blocks count 0 [ 175.131396][T10359] EXT4-fs (loop1): Free/Dirty block details [ 175.138349][T10359] EXT4-fs (loop1): free_blocks=0 [ 175.144249][T10359] EXT4-fs (loop1): dirty_blocks=2048 [ 175.149560][T10359] EXT4-fs (loop1): Block reservation details [ 176.816289][ C0] ================================================================== [ 176.824527][ C0] BUG: KCSAN: data-race in can_rcv_filter / can_rcv_filter [ 176.831784][ C0] [ 176.834131][ C0] read-write to 0xffff888101a310b8 of 8 bytes by interrupt on cpu 1: [ 176.842222][ C0] can_rcv_filter+0xd9/0x4f0 [ 176.846855][ C0] can_receive+0x163/0x1c0 [ 176.851299][ C0] can_rcv+0xed/0x190 [ 176.855322][ C0] __netif_receive_skb+0x120/0x270 [ 176.860469][ C0] process_backlog+0x229/0x420 [ 176.865281][ C0] __napi_poll+0x63/0x3a0 [ 176.869640][ C0] net_rx_action+0x391/0x830 [ 176.874257][ C0] handle_softirqs+0xb7/0x290 [ 176.878972][ C0] do_softirq+0x5d/0x90 [ 176.883681][ C0] __local_bh_enable_ip+0x70/0x80 [ 176.888735][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 176.893703][ C0] lock_sock_nested+0x112/0x140 [ 176.898588][ C0] sockopt_lock_sock+0x42/0x50 [ 176.903393][ C0] do_ipv6_setsockopt+0x9ba/0x22e0 [ 176.908539][ C0] ipv6_setsockopt+0x59/0x130 [ 176.913252][ C0] tcp_setsockopt+0x95/0xb0 [ 176.917795][ C0] sock_common_setsockopt+0x69/0x80 [ 176.923031][ C0] __sys_setsockopt+0x184/0x200 [ 176.927924][ C0] __x64_sys_setsockopt+0x64/0x80 [ 176.932998][ C0] x64_sys_call+0x2bd5/0x2fb0 [ 176.937712][ C0] do_syscall_64+0xd2/0x200 [ 176.942255][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 176.948173][ C0] [ 176.950517][ C0] read-write to 0xffff888101a310b8 of 8 bytes by interrupt on cpu 0: [ 176.958608][ C0] can_rcv_filter+0xd9/0x4f0 [ 176.963243][ C0] can_receive+0x163/0x1c0 [ 176.967703][ C0] can_rcv+0xed/0x190 [ 176.971726][ C0] __netif_receive_skb+0x120/0x270 [ 176.976866][ C0] process_backlog+0x229/0x420 [ 176.981668][ C0] __napi_poll+0x63/0x3a0 [ 176.986022][ C0] net_rx_action+0x391/0x830 [ 176.990643][ C0] handle_softirqs+0xb7/0x290 [ 176.995353][ C0] do_softirq+0x5d/0x90 [ 176.999540][ C0] __local_bh_enable_ip+0x70/0x80 [ 177.004594][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 177.009561][ C0] lock_sock_nested+0x112/0x140 [ 177.014449][ C0] j1939_sk_sendmsg+0x51/0xc00 [ 177.019259][ C0] __sock_sendmsg+0x142/0x180 [ 177.023969][ C0] ____sys_sendmsg+0x345/0x4e0 [ 177.028779][ C0] ___sys_sendmsg+0x17b/0x1d0 [ 177.033612][ C0] __sys_sendmmsg+0x178/0x300 [ 177.038335][ C0] __x64_sys_sendmmsg+0x57/0x70 [ 177.043232][ C0] x64_sys_call+0x2f2f/0x2fb0 [ 177.047949][ C0] do_syscall_64+0xd2/0x200 [ 177.052474][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 177.058403][ C0] [ 177.060743][ C0] value changed: 0x000000000005d6ae -> 0x000000000005d6af [ 177.067872][ C0] [ 177.070212][ C0] Reported by Kernel Concurrency Sanitizer on: [ 177.076380][ C0] CPU: 0 UID: 0 PID: 15349 Comm: syz.0.5086 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) [ 177.088910][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 177.098994][ C0] ================================================================== [ 177.142936][ C0] ================================================================== [ 177.151063][ C0] BUG: KCSAN: data-race in can_can_gw_rcv / can_can_gw_rcv [ 177.158307][ C0] [ 177.160645][ C0] read-write to 0xffff888100152b60 of 4 bytes by interrupt on cpu 1: [ 177.168730][ C0] can_can_gw_rcv+0x807/0x820 [ 177.173435][ C0] can_rcv_filter+0xc4/0x4f0 [ 177.178063][ C0] can_receive+0x163/0x1c0 [ 177.182517][ C0] can_rcv+0xed/0x190 [ 177.186532][ C0] __netif_receive_skb+0x120/0x270 [ 177.191674][ C0] process_backlog+0x229/0x420 [ 177.196465][ C0] __napi_poll+0x63/0x3a0 [ 177.200822][ C0] net_rx_action+0x391/0x830 [ 177.205437][ C0] handle_softirqs+0xb7/0x290 [ 177.210140][ C0] do_softirq+0x5d/0x90 [ 177.214315][ C0] __local_bh_enable_ip+0x70/0x80 [ 177.219364][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 177.224372][ C0] batadv_nc_purge_paths+0x22b/0x270 [ 177.229698][ C0] batadv_nc_worker+0x3d8/0xae0 [ 177.234575][ C0] process_scheduled_works+0x4cb/0x9d0 [ 177.240076][ C0] worker_thread+0x582/0x770 [ 177.244706][ C0] kthread+0x489/0x510 [ 177.248801][ C0] ret_from_fork+0xda/0x150 [ 177.253331][ C0] ret_from_fork_asm+0x1a/0x30 [ 177.258129][ C0] [ 177.260469][ C0] read-write to 0xffff888100152b60 of 4 bytes by interrupt on cpu 0: [ 177.268569][ C0] can_can_gw_rcv+0x807/0x820 [ 177.273273][ C0] can_rcv_filter+0xc4/0x4f0 [ 177.277903][ C0] can_receive+0x163/0x1c0 [ 177.282359][ C0] can_rcv+0xed/0x190 [ 177.286377][ C0] __netif_receive_skb+0x120/0x270 [ 177.291513][ C0] process_backlog+0x229/0x420 [ 177.296320][ C0] __napi_poll+0x63/0x3a0 [ 177.300690][ C0] net_rx_action+0x391/0x830 [ 177.305322][ C0] handle_softirqs+0xb7/0x290 [ 177.310039][ C0] do_softirq+0x5d/0x90 [ 177.314237][ C0] __local_bh_enable_ip+0x70/0x80 [ 177.319295][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 177.324263][ C0] wg_packet_encrypt_worker+0x17a/0xb80 [ 177.329853][ C0] process_scheduled_works+0x4cb/0x9d0 [ 177.335362][ C0] worker_thread+0x582/0x770 [ 177.339998][ C0] kthread+0x489/0x510 [ 177.344121][ C0] ret_from_fork+0xda/0x150 [ 177.348662][ C0] ret_from_fork_asm+0x1a/0x30 [ 177.353465][ C0] [ 177.355829][ C0] value changed: 0x000646cb -> 0x000646cc [ 177.361572][ C0] [ 177.363918][ C0] Reported by Kernel Concurrency Sanitizer on: [ 177.370092][ C0] CPU: 0 UID: 0 PID: 10 Comm: kworker/0:1 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) [ 177.382544][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 177.392647][ C0] Workqueue: wg-crypt-wg0 wg_packet_encrypt_worker [ 177.399202][ C0] ================================================================== [ 180.034673][ C0] ================================================================== [ 180.042857][ C0] BUG: KCSAN: data-race in can_rcv_filter / can_rcv_filter [ 180.050110][ C0] [ 180.052453][ C0] read-write to 0xffff888101a310b8 of 8 bytes by interrupt on cpu 1: [ 180.060545][ C0] can_rcv_filter+0xd9/0x4f0 [ 180.065168][ C0] can_receive+0x163/0x1c0 [ 180.069617][ C0] can_rcv+0xed/0x190 [ 180.073632][ C0] __netif_receive_skb+0x120/0x270 [ 180.078778][ C0] process_backlog+0x229/0x420 [ 180.083573][ C0] __napi_poll+0x63/0x3a0 [ 180.087928][ C0] net_rx_action+0x391/0x830 [ 180.092546][ C0] handle_softirqs+0xb7/0x290 [ 180.097252][ C0] do_softirq+0x5d/0x90 [ 180.101438][ C0] __local_bh_enable_ip+0x70/0x80 [ 180.106488][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 180.111455][ C0] j1939_sk_sendmsg+0x906/0xc00 [ 180.116530][ C0] __sock_sendmsg+0x142/0x180 [ 180.121230][ C0] ____sys_sendmsg+0x345/0x4e0 [ 180.126038][ C0] ___sys_sendmsg+0x17b/0x1d0 [ 180.130760][ C0] __sys_sendmmsg+0x178/0x300 [ 180.135479][ C0] __x64_sys_sendmmsg+0x57/0x70 [ 180.140382][ C0] x64_sys_call+0x2f2f/0x2fb0 [ 180.145100][ C0] do_syscall_64+0xd2/0x200 [ 180.149635][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.155576][ C0] [ 180.157925][ C0] read-write to 0xffff888101a310b8 of 8 bytes by interrupt on cpu 0: [ 180.166011][ C0] can_rcv_filter+0xd9/0x4f0 [ 180.170636][ C0] can_receive+0x163/0x1c0 [ 180.175090][ C0] can_rcv+0xed/0x190 [ 180.179106][ C0] __netif_receive_skb+0x120/0x270 [ 180.184252][ C0] process_backlog+0x229/0x420 [ 180.189042][ C0] __napi_poll+0x63/0x3a0 [ 180.193405][ C0] net_rx_action+0x391/0x830 [ 180.198029][ C0] handle_softirqs+0xb7/0x290 [ 180.202742][ C0] do_softirq+0x5d/0x90 [ 180.206944][ C0] __local_bh_enable_ip+0x70/0x80 [ 180.212004][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 180.216986][ C0] lock_sock_nested+0x112/0x140 [ 180.221886][ C0] sockopt_lock_sock+0x42/0x50 [ 180.226697][ C0] do_ip_getsockopt+0xa85/0xfe0 [ 180.231595][ C0] ip_getsockopt+0x5c/0x180 [ 180.236136][ C0] tcp_getsockopt+0xaa/0xe0 [ 180.240701][ C0] sock_common_getsockopt+0x60/0x70 [ 180.245936][ C0] do_sock_getsockopt+0x1fd/0x240 [ 180.251004][ C0] __x64_sys_getsockopt+0x11e/0x1a0 [ 180.256247][ C0] x64_sys_call+0x12aa/0x2fb0 [ 180.260959][ C0] do_syscall_64+0xd2/0x200 [ 180.265500][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 180.271415][ C0] [ 180.273768][ C0] value changed: 0x00000000000bad69 -> 0x00000000000bad6a [ 180.280892][ C0] [ 180.283236][ C0] Reported by Kernel Concurrency Sanitizer on: [ 180.289405][ C0] CPU: 0 UID: 0 PID: 3307 Comm: syz-executor Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) [ 180.302011][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 180.312099][ C0] ================================================================== [ 180.379053][ C1] ================================================================== [ 180.387198][ C1] BUG: KCSAN: data-race in can_can_gw_rcv / can_can_gw_rcv [ 180.394440][ C1] [ 180.396813][ C1] read-write to 0xffff888100152b60 of 4 bytes by interrupt on cpu 0: [ 180.404908][ C1] can_can_gw_rcv+0x807/0x820 [ 180.409620][ C1] can_rcv_filter+0xc4/0x4f0 [ 180.414253][ C1] can_receive+0x163/0x1c0 [ 180.418719][ C1] can_rcv+0xed/0x190 [ 180.422742][ C1] __netif_receive_skb+0x120/0x270 [ 180.427881][ C1] process_backlog+0x229/0x420 [ 180.432678][ C1] __napi_poll+0x63/0x3a0 [ 180.437042][ C1] net_rx_action+0x391/0x830 [ 180.441665][ C1] handle_softirqs+0xb7/0x290 [ 180.446368][ C1] do_softirq+0x5d/0x90 [ 180.450550][ C1] __local_bh_enable_ip+0x70/0x80 [ 180.455602][ C1] __dev_queue_xmit+0x11c0/0x1fb0 [ 180.460753][ C1] batadv_send_skb_packet+0x2c3/0x370 [ 180.466152][ C1] batadv_send_broadcast_skb+0x24/0x30 [ 180.471640][ C1] batadv_iv_send_outstanding_bat_ogm_packet+0x3bc/0x470 [ 180.478710][ C1] process_scheduled_works+0x4cb/0x9d0 [ 180.484213][ C1] worker_thread+0x582/0x770 [ 180.488844][ C1] kthread+0x489/0x510 [ 180.492937][ C1] ret_from_fork+0xda/0x150 [ 180.497466][ C1] ret_from_fork_asm+0x1a/0x30 [ 180.502259][ C1] [ 180.504597][ C1] read-write to 0xffff888100152b60 of 4 bytes by interrupt on cpu 1: [ 180.512691][ C1] can_can_gw_rcv+0x807/0x820 [ 180.517491][ C1] can_rcv_filter+0xc4/0x4f0 [ 180.522122][ C1] can_receive+0x163/0x1c0 [ 180.526571][ C1] can_rcv+0xed/0x190 [ 180.530587][ C1] __netif_receive_skb+0x120/0x270 [ 180.535724][ C1] process_backlog+0x229/0x420 [ 180.540520][ C1] __napi_poll+0x63/0x3a0 [ 180.544879][ C1] net_rx_action+0x391/0x830 [ 180.549494][ C1] handle_softirqs+0xb7/0x290 [ 180.554205][ C1] do_softirq+0x5d/0x90 [ 180.558388][ C1] __local_bh_enable_ip+0x70/0x80 [ 180.563441][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 180.568418][ C1] nsim_dev_trap_report_work+0x52b/0x630 [ 180.574098][ C1] process_scheduled_works+0x4cb/0x9d0 [ 180.579593][ C1] worker_thread+0x582/0x770 [ 180.584226][ C1] kthread+0x489/0x510 [ 180.588321][ C1] ret_from_fork+0xda/0x150 [ 180.592850][ C1] ret_from_fork_asm+0x1a/0x30 [ 180.597642][ C1] [ 180.599987][ C1] value changed: 0x000c2dda -> 0x000c2ddb [ 180.605725][ C1] [ 180.608068][ C1] Reported by Kernel Concurrency Sanitizer on: [ 180.614238][ C1] CPU: 1 UID: 0 PID: 10387 Comm: kworker/u8:66 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) [ 180.627024][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 180.637113][ C1] Workqueue: events_unbound nsim_dev_trap_report_work [ 180.643939][ C1] ================================================================== [ 183.296039][ C0] ================================================================== [ 183.304221][ C0] BUG: KCSAN: data-race in can_rcv_filter / can_rcv_filter [ 183.311488][ C0] [ 183.313831][ C0] read-write to 0xffff888101a310b8 of 8 bytes by interrupt on cpu 1: [ 183.321934][ C0] can_rcv_filter+0xd9/0x4f0 [ 183.326562][ C0] can_receive+0x163/0x1c0 [ 183.331020][ C0] can_rcv+0xed/0x190 [ 183.335041][ C0] __netif_receive_skb+0x120/0x270 [ 183.340180][ C0] process_backlog+0x229/0x420 [ 183.344982][ C0] __napi_poll+0x63/0x3a0 [ 183.349332][ C0] net_rx_action+0x391/0x830 [ 183.353957][ C0] handle_softirqs+0xb7/0x290 [ 183.358663][ C0] run_ksoftirqd+0x1c/0x30 [ 183.363112][ C0] smpboot_thread_fn+0x328/0x530 [ 183.368085][ C0] kthread+0x489/0x510 [ 183.372182][ C0] ret_from_fork+0xda/0x150 [ 183.376709][ C0] ret_from_fork_asm+0x1a/0x30 [ 183.381505][ C0] [ 183.383848][ C0] read-write to 0xffff888101a310b8 of 8 bytes by interrupt on cpu 0: [ 183.391937][ C0] can_rcv_filter+0xd9/0x4f0 [ 183.396572][ C0] can_receive+0x163/0x1c0 [ 183.401110][ C0] can_rcv+0xed/0x190 [ 183.405130][ C0] __netif_receive_skb+0x120/0x270 [ 183.410271][ C0] process_backlog+0x229/0x420 [ 183.415067][ C0] __napi_poll+0x63/0x3a0 [ 183.419507][ C0] net_rx_action+0x391/0x830 [ 183.424132][ C0] handle_softirqs+0xb7/0x290 [ 183.428827][ C0] do_softirq+0x5d/0x90 [ 183.433006][ C0] __local_bh_enable_ip+0x70/0x80 [ 183.438058][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 183.443024][ C0] batadv_dat_purge+0x1e3/0x270 [ 183.447907][ C0] process_scheduled_works+0x4cb/0x9d0 [ 183.453416][ C0] worker_thread+0x582/0x770 [ 183.458052][ C0] kthread+0x489/0x510 [ 183.462151][ C0] ret_from_fork+0xda/0x150 [ 183.466695][ C0] ret_from_fork_asm+0x1a/0x30 [ 183.471518][ C0] [ 183.473873][ C0] value changed: 0x0000000000118d69 -> 0x0000000000118d6a [ 183.480996][ C0] [ 183.483340][ C0] Reported by Kernel Concurrency Sanitizer on: [ 183.489543][ C0] CPU: 0 UID: 0 PID: 1762 Comm: kworker/u8:6 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) [ 183.502173][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 183.512265][ C0] Workqueue: bat_events batadv_dat_purge [ 183.517951][ C0] ==================================================================