last executing test programs: 50.633559552s ago: executing program 2 (id=7954): r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x3030, 0x1, 0x0, 0x0, 0x0, 0xfffff800, 0x0, 0x0, 0x0, 0x0, 0x80000001}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x5f21df7aec8d40fb, 0x0, 0x0, 0x5}, 0x0, 0x0, r0, 0x0) setreuid(0x0, 0xee00) syz_clone(0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0) 50.455815225s ago: executing program 2 (id=7962): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, 0x0, 0x0) syz_emit_ethernet(0x6e, &(0x7f00000003c0)={@multicast, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "02adf7", 0x38, 0x3a, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @time_exceed={0x2, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "fd9063", 0x0, 0x3a, 0x0, @ipv4={'\x00', '\xff\xff', @local}, @loopback={0x0, 0xffffac1414aa}, [], "1e520b4c951ee12e"}}}}}}}, 0x0) 50.40967987s ago: executing program 2 (id=7966): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x15, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x100}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x86}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0xecbd5a155ab96c04}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x4}, {0x6, 0x0, 0xa}, {}, {}, {0x85, 0x0, 0x0, 0x33}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r2, 0x2000012, 0xe, 0x0, &(0x7f0000000080)="63eced8e46dc3f2ddf33c9e9b986", 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50) 50.316479032s ago: executing program 2 (id=7971): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000008000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000018c0)=@base={0xa, 0x15, 0x363d, 0x2}, 0x48) bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000380)={r1, &(0x7f0000001940), 0x0}, 0x20) 50.242773492s ago: executing program 2 (id=7974): perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) mkdir(&(0x7f0000000000)='./file0\x00', 0x16e) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x31, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30) mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0) 50.195075848s ago: executing program 2 (id=7977): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0xffffffffffffffff}, 0x18) request_key(&(0x7f0000000540)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x0}, &(0x7f0000000400)='*\x00\x00\x00\x00\x00\x000\x00\xa5^y\xa9n\x00\xe3\xa3\x89\x90&)\bT\x91\x14\xba\x190\xb3\x00\x00:\xb2\xbe\x1d\x00', 0xfffffffffffffffe) 34.710467905s ago: executing program 32 (id=7977): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0xffffffffffffffff}, 0x18) request_key(&(0x7f0000000540)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x0}, &(0x7f0000000400)='*\x00\x00\x00\x00\x00\x000\x00\xa5^y\xa9n\x00\xe3\xa3\x89\x90&)\bT\x91\x14\xba\x190\xb3\x00\x00:\xb2\xbe\x1d\x00', 0xfffffffffffffffe) 8.322661627s ago: executing program 1 (id=9432): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000ff01000000000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) r1 = signalfd(0xffffffffffffffff, &(0x7f0000000500)={[0x5]}, 0x8) name_to_handle_at(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) 8.22808s ago: executing program 1 (id=9436): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==") r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0) ftruncate(r0, 0x2007ffc) sendfile(r0, r0, 0x0, 0x1) 8.14863717s ago: executing program 1 (id=9441): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000004700)={'team0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r2, {}, {0x0, 0xb}, {0x8, 0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x448c1}, 0x0) 7.824737651s ago: executing program 1 (id=9449): mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0) mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0) mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0) umount2(&(0x7f0000000000)='./file0\x00', 0x0) 7.698606788s ago: executing program 1 (id=9450): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000280)={0xa, 0x2, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) listen(r0, 0xfffffff8) close_range(r0, 0xffffffffffffffff, 0x0) 7.103661045s ago: executing program 1 (id=9464): r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet_udp(0x2, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, r1, {0x2, 0x0, @multicast2}, 0x4}}, 0x2e) getpeername(r0, 0x0, &(0x7f00000000c0)) 7.075702848s ago: executing program 33 (id=9464): r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet_udp(0x2, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x0, r1, {0x2, 0x0, @multicast2}, 0x4}}, 0x2e) getpeername(r0, 0x0, &(0x7f00000000c0)) 1.236708191s ago: executing program 0 (id=9597): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41002, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000008c0)=ANY=[@ANYBLOB="54000000000801010000ffffe00000000a000000050003002f0000000600024000000000240004800800024000000000080001400000fcff07000140800000010800014080000001090001"], 0x54}, 0x1, 0x0, 0x0, 0x4004}, 0x28040000) 1.177557849s ago: executing program 0 (id=9601): r0 = semget(0x1, 0x4, 0x39c) semop(r0, &(0x7f0000000080)=[{0x1, 0x8001, 0x1000}, {0x1, 0x5b7a, 0x800}], 0x2) semop(r0, &(0x7f0000000000)=[{0x1, 0xbbdd, 0x1000}, {0x1, 0x8, 0x1000}], 0x2) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000140)=[0x6, 0x7fff]) 1.039509876s ago: executing program 0 (id=9609): r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901) fchdir(r0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) mount_setattr(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0x0, &(0x7f0000001dc0)={0xf, 0x5, 0x0, {r0}}, 0x20) 1.008114841s ago: executing program 0 (id=9611): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='fd\x00') exit(0x7) unshare(0x22020600) statx(r0, 0x0, 0x1000, 0x10, 0x0) 582.344305ms ago: executing program 4 (id=9636): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0002}]}) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008040000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18) capset(0x0, 0x0) 548.16247ms ago: executing program 4 (id=9639): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401) ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000200)={0x5, 0x12, 0x0, 0x9, 0x0, 0xaba, 0x0}) 535.137191ms ago: executing program 3 (id=9640): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000001ffffeb00000000eb658e0d850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x9400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, @perf_config_ext={0x9, 0x7}, 0x110, 0xa88, 0x8406, 0x5, 0x0, 0x3c, 0xffff, 0x0, 0x0, 0x0, 0xedf2}, 0x0, 0xffbfffffffffffff, 0xffffffffffffffff, 0x1) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18) syz_io_uring_setup(0xcea, &(0x7f0000000400)={0x0, 0x456d, 0x2, 0x0, 0x2c1}, &(0x7f0000000480), &(0x7f0000000040)) 472.347039ms ago: executing program 6 (id=9642): syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000003b40)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="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", @ANYBLOB="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", @ANYRES64], 0x8, 0x2eb, &(0x7f00000004c0)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000200), 0x4) ftruncate(r0, 0x5) 437.899574ms ago: executing program 4 (id=9652): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000508000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc14000000110001"], 0x64}, 0x1, 0x0, 0x0, 0x94}, 0x24000000) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWSET={0x48, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_EXPRESSIONS={0x4}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x130}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x70}, 0x1, 0x0, 0x0, 0x4044050}, 0x40) 431.807544ms ago: executing program 6 (id=9644): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000ac0000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000004000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) openat$snapshot(0xffffffffffffff9c, &(0x7f0000005c40), 0x403f, 0x0) 414.406507ms ago: executing program 5 (id=9645): r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901) fchdir(r0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) mount_setattr(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0x0, &(0x7f0000001dc0)={0xf, 0x5, 0x0, {r0}}, 0x20) 398.514749ms ago: executing program 4 (id=9646): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x43) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="08000000040000000400000007"], 0x48) bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000240)={r1, &(0x7f00000000c0), 0x0}, 0x20) 360.887334ms ago: executing program 4 (id=9647): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f00000003c0)={[{@barrier_val={'barrier', 0x3d, 0x6e02}}, {@resgid}, {@mblk_io_submit}, {@norecovery}, {@minixdf}, {@resgid}, {@nobarrier}, {@grpid}, {@jqfmt_vfsv0}]}, 0xfc, 0x58f, &(0x7f0000002d00)="$eJzs3U1rXFUfAPD/nUzSNu3zNIVS1IUUurBSO2kSXyoI1pWIFgu6r0MyDSWTTslMShMLtgu7cSNFELEgfgD3LotfwE9R0EKREnQhQuRO7qTTZCavE2fS+f3gtufMuTfn/nPuOTln7gw3gL51Mv0nF/FiRHydRBxtKstHVnhyZb+lJ7cm0y2J5eVP/kgiyV5r7J9k/x/OMi9ExC9fRpzJra+3urA4UyyXS3NZfrQ2e320urB49upscbo0Xbo2PjFx/o2J8bfferNjsb566a/vPn7wwfmvTi19+9OjY/eSuBBHsrLmOHbhdnPmZPGfLDUYF9bsONaBynpJ0u0TYEcGsn4+GOkYcDQGsl4PPP++iIhloE8l+j/0qcY8oLG279A6eN94/N7KAqge+1Bz/PmV90biYH1tNLyUPLMySte7Ix2oP63j59/v30u32Ph9iEOb5AG25fadiDiXz68f/5Ns/Nu5c/U3jze2to5++/sD3fQgnf+81mr+l1ud/0SL+c/hFn13Jzbv/7lHHaimrXT+907L+e/q0DUykOX+V5/zDSZXrpZL5yLi/xFxOgYPpPmN7uecX3q43K6sef6Xbmn9jblgdh6P8geePWaqWCtGxNBu4m54fCfipXyr+JPV9k9atH/6+7i0xTpOlO6/3K5s8/j31vKPEa+0bP+nd7SSje9Pjtavh9HGVbHen3dP/Nqu/m7Hn7b/8MbxjyTN92ur26/jh4N/l9qVpfEP7+D6H0o+racbneBmsVabG4sYSj5a//r402Mb+cb+afynT63E/+xkJbfh9Z8uvj7bYvx3j99tu2svtP/Uttp/+4mHH37+fbv6tzb+vV5Pnc5eyca/1rJrZasnuNvfHwAAAAAAAPSSXEQciSRXWE3ncoXCyuc7jsdwrlyp1s5cqcxfm4r6d2VHYjDXuNN9tOnzEGPZ52Eb+fE1+YmIOBYR3wwcqucLk5XyVLeDBwAAAAAAAAAAAAAAAAAAgB5xuM33/1O/DXT77IA9V3+wwYFunwXQDZs+8r8TT3oCetKm/R94bun/0L/0f+hfa/t/R54sDOwL/v5D/9L/oX/p/9C/9H8AAAAAAAAAAAAAAAAAAAAAAAAAAADoqEsXL6bb8tKTW5NpfurGwvxM5cbZqVJ1pjA7P1mYrMxdL0xXKtPlUmGyMrvZzytXKtfHxmP+5mitVK2NVhcWL89W5q/VLl+dLU6XLpcG/5OoAAAAAAAAAAAAAAAAAAAAYH+pLizOFMvl0txqIp+VzK0v6tPEu9ETp7GXAa7Y0eH5XolibxLvD/TEaewmcSdr3u0d1aUBCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABa+DcAAP//Rm0oPg==") r0 = open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x86) pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0xffffffc2}], 0x1, 0x7800, 0x0, 0x0) lsetxattr$trusted_overlay_origin(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340), 0x0, 0x0, 0x0) 356.009435ms ago: executing program 5 (id=9648): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000040c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000380)=ANY=[@ANYBLOB="14000000100001001e000000000000010500000a3c0000000c0a090000000000000000000a0000070900020073797a31000000000900010073797a3100000000100003800c000080080003400000000214000000110001"], 0x64}, 0x1, 0x0, 0x0, 0x24000850}, 0x40) 350.105705ms ago: executing program 3 (id=9649): r0 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001b00)=@newqdisc={0x5c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0x4}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x2c, 0x2, {{0x0, 0x0, 0x0, 0x386561e9}, [@TCA_NETEM_DELAY_DIST={0xf, 0xd, "85def352b66e12dffcff85"}]}}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40000}, 0x8080) 346.090566ms ago: executing program 6 (id=9650): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x203, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}]}], {0x14}}, 0x68}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x38, 0x16, 0xa, 0x801, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x4}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}]}], {0x14}}, 0x60}}, 0x0) 316.006409ms ago: executing program 5 (id=9651): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup(r0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x8, 0x40008, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x9, 0x6}, 0x0, 0x0, 0x800000, 0x5, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) write$UHID_INPUT(r1, &(0x7f0000000000)={0x7, {"a2e3ad21ed0d52f91b5d520987f70e06d038e7ff7fc6e5539b0d47078b089b3907356d090890e0878f0e1ac6e7049b334a959b669a240d5d67f3988f7ef319520100ffe8d178708c523c921b1b5b31070d07670936cd3b78130daa61d8e809ea882f5802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70fe98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf1a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e470dea05918b41243513f000800000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3e3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572298522449df466c632b3570243f989cce3803f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14d9fdb8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a19000000000000006f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69b15c9f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d44400009a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc01008cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c16c02ed4b5d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaab1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106d26658b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6b14effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c110000a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b51028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6815d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3f3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51090840517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4e004a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6ce1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c817e9177c6d594f88a4facfd4c735a20307c737afae5136651b1b9bd522d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d543902113c4c859465c3c115c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c1050000002f7809959bc248850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafcc009fc074bb6b68a1f0c4649820a73c880f475f732ae00398e8bd1f4908b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948998cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2fd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5dc4ff8f0104000000000000df72279fdb0d2b9e936e5a983c12fded79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d3700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa6e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9f07b3d5bd3b01faffd0a5dbed2881a9700af561ac8c7e3ebb2fc4c40e9cf96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3fec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4cddd5d0fc5a752f9000", 0x1000}}, 0x1006) 301.383622ms ago: executing program 3 (id=9653): r0 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', 0x0}) connect$can_bcm(r0, &(0x7f0000001ff0)={0x1d, r1}, 0x10) sendmsg$can_raw(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000ff0)={&(0x7f0000000140)=@canfd={{0x1}, 0xf8, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000004e2f9663a918fa1efd9b0b"}, 0x48}, 0xee, 0x0, 0x0, 0x40041}, 0x88801) 276.400615ms ago: executing program 6 (id=9654): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, 0x0, &(0x7f0000000080)='GPL\x00', 0x5, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4) r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000003c0)={0x0, @in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}, 0x0, 0x0, 0x4}, &(0x7f0000000080)=0x9c) 242.051479ms ago: executing program 3 (id=9655): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000750000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r0}, 0x10) setitimer(0x0, 0x0, 0x0) 212.905013ms ago: executing program 6 (id=9656): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000500000002"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18) syz_emit_ethernet(0x56, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa2286dd6c370c8900203c01fe800000000100000000000000000025fe8000000000000000000000000000aa3302000000000000000000000000000000000000000100"], 0x0) 186.497296ms ago: executing program 5 (id=9666): r0 = open(&(0x7f00000002c0)='./file0\x00', 0x1491ff, 0x22) fcntl$setlease(r0, 0x400, 0x0) r1 = open(&(0x7f00009e1000)='./file0\x00', 0x0, 0x0) fcntl$setlease(r1, 0x400, 0x1) 186.033446ms ago: executing program 0 (id=9657): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000500)={r0, 0x0, 0x2d, 0x0, @val=@netfilter={0xa, 0x4, 0x600, 0x1}}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000500)={r1, 0x0, 0x2d, 0x0, @val=@netfilter={0xa, 0x4, 0x600, 0x1}}, 0x20) 173.586938ms ago: executing program 6 (id=9658): r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000180)=[@in={0x2, 0x4e21, @local}], 0x10) sendmsg$inet_sctp(r0, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000000)='N', 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0x0) sendmsg$inet_sctp(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000740)="f9", 0x1}, {0x0}], 0x2, &(0x7f0000000080)=ANY=[@ANYBLOB="300000000000000084000000010000000700440441"], 0x30, 0x4040850}, 0x40000) 162.876629ms ago: executing program 3 (id=9659): bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x10, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18020000ffffffff0000000000000000850000007d0000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000080b703000000000000a50000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='block_bio_remap\x00', r0}, 0x10) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) 128.656024ms ago: executing program 5 (id=9660): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r0}, 0x10) setitimer(0x0, 0x0, 0x0) 87.361949ms ago: executing program 0 (id=9671): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800) r1 = memfd_create(&(0x7f00000005c0)='\x103q}2[\xe0\x9a\xee\xaf\x03\x97\x9et\v\"|Ma\x86\xe7\xc0\x14\x9f\xb9h\xb1\x96\xe7=I\x860S6\xb5\xa8\xc2\x95Je%\xfeG\'\b\x00\x00\x00\x00\x00\x00\x00\x1c\xa6\xab\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94k\xcd\t\x00\x90k\xd6\x05\xb6&\xd0\x9daA\xc5\x9c_\xd4\x18,\f\xd4s\xb2\x99/\xc0\x9a\xf2Oc\xc0c\x03gB!\xb0\xb8n\x01\x9bT\x95\x10\x86\xe8$\x7f\r[\xf9\x0e1v\xb1\n\x88\v\x95uy\xb5:`\x8b\nC\x18A;\xaa%\xaf\xc7\xa3\xac\xa2D\xb5\xe2\xe1\xdc(\xfd\x05\x9fB\x84O\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1a\xa0\x17\xe3\xac\xe9\xc9\xa7\x8a\x1b\x03\"&\xac\xcap>\xccZ\x01\xbc\x18\xc1\xb9\xe9\v\x8b\x9c\xb4Q\xd4\x96EV<>\x99\xca\xb3\xe0\xc4tL\xed\xf5W\xbd#\xcf\x8a\x84\xed\x9f/\xd4\xbb\xea;-Dp\xf8\xd0F\x90\xf8\x92Ip6\xf4\x16\xe8\x14\xe0\x92!\x92-F\xe2\x14D\x91\xa8b\x04\xdd\x1d\a\xdc\xe0\x18\x85{\x80Q\xf6k\x96\xfaQ\x9fW\vO\xf0\xe4O\\\xceS\xe2\x05\x049d\x06#\x88\xc3\xdf\x85O\x1c\xc3\xad?r\xd7\x0e\x00\xd7\x83\xb0\x88\x9c\xf6Y-F\x98\xdd\x9c~\xfd\x95\xc3\xb6lC\xaa\"Y\xa2K\xecz\x84:*\xf5Y\xd1\x9b1\xbd\x9b\x15\xd4\xec\x02o\x01&\xaa\x90w\xc4\xc7\x8en\xb5\x1ag\xab&?\xbe\xcb\xe8v\xa8\xe0\xa4\x81sW\xacf\x149\xd2}\xef\x03Ga\x9a$4\x8c\xa5!p\x83\x05\x96%\x02%\xabj\n\b\xc8NC\x91}&y\xd3\xe1\xeep\'\xc5\xab\x19GsX5\x8c\n\x9fh\xee;4\xb1%V\xe0\xa9\x8e\xf30:\xd8\x18N~G\x139\xcaf2\x02F1\xc6\x82\x00E\xae\x9d\x17\x871N:\xb4\xea \x8e\xdelP\x83\x1f\'\xe2\xd6\xc0\xc3\xfc\xc9677u\xf3RUP@o>\xee\xb8\xa3\t\x02\xb7\\,\xebK\xed\x1b\xc9e\xb3\x16\xce\x9bI\xdb\xfa\x82\x85\t\x9bg\xd0s\xe2\f{\x8cp~;\xf8\x96\xf2\x91\x06\x89\xa6D\xce\xac\x03\xc1\x83\xd1\xe6 |\xa75\xd7\x80t\xfc\xf8\xd2\x12N\x1cB7^\xfd4\xae\xb0VFw\b!\xae\x1baTv\xc0z\x19\xc5\xc8w\xba\x97N\x9a`\x8f\xfc\x9ee\xf9\x00\x1cQA\x14]\r\xd4\"\xc2\x12GD\xdb{\x88\xaa\x81\xc8\xa2\xdeI\xa2\xbel\x0e\xec\x17fNI\x05\xff\x8d\xf4_\x1a\vqA\xb7\x0ed<\x98\xee\xb8\x19\xec\x9f\xee\xe1_\xacG\x8b\xa3\xc3\x13\x80\x0f\xf4I\xdeAwG\xbdkno\xa2\b\x126\x97\x9b\xf9|P\xd94\v\x15\xcb\xc0\x9d\x11\xf3\x18\xae!2\x1b\x12\xa9\xc8~\xb7S\x94\xb5\xc7;\xa90D>s\xe9\xa4N\xf8\xdb\xab\xa0\x94~\xa1]b\xa4\xe5\xe2e\x1c\x8b\xd2\xc7Md\x93\x02\xd8\xb0,\xeb\x03\xaa\v\xed\x9bR\x8a\x80\xc2\x1f\x17ej\x973wv\x83a\xe06\x96\xde\xbc%Uh;H\xf8S\xf1\xa1g\x02\xc4\xc3\xa4\xa8\x96\t\xfex\xa2?\xcb\\Y\x1e\xfe\xca\xa0i\x80O\x11\xac\xb7$\xdb\xbc\xb0\xcb\xacqU\xb5*\x00\x00\x00\x00\x00\x00\x00\f\xda\xf8oV\x89\xd3\x1f\x99+\xe5T\x8eM4\x1c\xc6\x7f\xd4\xf2\xcc\xd3\x94\xca\xd4\x00\x00\x00\x00\x00\x00\x00\x00\x00~A9\xf6IBu2L\x9e\xa2\xd0\x92\xd1\xbc\xb8\tJ\xa1\aN\x87\x95\xbb\xa9s\xab\x90\x06\xc6!p\x9e?~\xf9\xe6\xae*\v\xa3\xd9gxKN\'z]*\x93\xf7\b\x91\xd0\xff\xd9\xc6a\xb5q\x9c\xa1Go\xd58\x93\xe0,\x9f\xe4\xa9\xd9A\x9e\x95e\x98\xd0V\x9d\xed\x97\xf1\xc5\xce\xf5\x90!d\x9a\xd8\x10\xbbx\r8\xff\x8bNUK\xebA\xe5\x92f\xc4\xd1\xa8\x15\xbf\xb5iW\xdb.kbf*\x89\xf0\xecq m-~\xbbf?\xec=\xd2\xe2\x1e\x8d/o\xcd\xc8x\xdb\xe6\xd0W\xca\xc5kz\x8e9\xfa\x86\x0f\x96p', 0x3) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1000000}) 86.629809ms ago: executing program 3 (id=9672): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x2000008, &(0x7f0000000000), 0x2, 0x541, &(0x7f0000000600)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @auto="220c65b7a494cc0a"}}) creat(&(0x7f0000000100)='./file0\x00', 0x0) 5.316349ms ago: executing program 5 (id=9661): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000001ffffeb00000000eb658e0d850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x9400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, @perf_config_ext={0x9, 0x7}, 0x110, 0xa88, 0x8406, 0x5, 0x0, 0x3c, 0xffff, 0x0, 0x0, 0x0, 0xedf2}, 0x0, 0xffbfffffffffffff, 0xffffffffffffffff, 0x1) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18) syz_io_uring_setup(0xcea, &(0x7f0000000400)={0x0, 0x456d, 0x2, 0x0, 0x2c1}, &(0x7f0000000480), &(0x7f0000000040)) 0s ago: executing program 4 (id=9662): mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1, 0x0, 0x0, 0x2) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) kernel console output (not intermixed with test programs): (0) sockfd(6) [ 208.581727][T20684] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 208.590691][T20684] vhci_hcd vhci_hcd.0: Device attached [ 208.597262][T20685] vhci_hcd: connection closed [ 208.597509][ T886] vhci_hcd vhci_hcd.3: stop threads [ 208.607747][ T886] vhci_hcd vhci_hcd.3: release socket [ 208.614348][ T886] vhci_hcd vhci_hcd.3: disconnect device [ 208.619822][T20688] loop2: detected capacity change from 0 to 512 [ 208.639730][T20688] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2807: inode #11: comm syz.2.7924: corrupted xattr block 95: invalid header [ 208.657503][T20688] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.7924: bg 0: block 7: invalid block bitmap [ 208.670224][T20688] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6689: Corrupt filesystem [ 208.680332][T20688] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2971: inode #11: comm syz.2.7924: corrupted xattr block 95: invalid header [ 208.695961][T20688] EXT4-fs warning (device loop2): ext4_evict_inode:273: xattr delete (err -117) [ 208.705344][T20688] EXT4-fs (loop2): 1 orphan inode deleted [ 208.718926][T20691] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 208.733950][T20691] EXT4-fs (loop1): orphan cleanup on readonly fs [ 208.742282][T20691] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #16: comm syz.1.7923: corrupted inode contents [ 208.772430][T20691] EXT4-fs (loop1): Remounting filesystem read-only [ 208.779473][T20691] EXT4-fs (loop1): 1 truncate cleaned up [ 208.785536][ T886] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 208.797072][ T886] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 208.824789][ T886] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started [ 208.927301][T20720] SELinux: policydb magic number 0x0 does not match expected magic number 0xf97cff8c [ 208.951348][T20720] SELinux: failed to load policy [ 209.000012][T20726] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 209.065421][T20734] IPv6: NLM_F_CREATE should be specified when creating new route [ 209.220633][T20754] EXT4-fs (loop0): 1 orphan inode deleted [ 209.227527][T20754] ext4 filesystem being mounted at /1689/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 209.239848][ T31] EXT4-fs error (device loop0): ext4_release_dquot:7022: comm kworker/u8:1: Failed to release dquot type 1 [ 209.261971][T20767] tipc: Enabling of bearer rejected, already enabled [ 209.331578][T20776] cgroup: noprefix used incorrectly [ 209.710910][T20845] EXT4-fs: Ignoring removed mblk_io_submit option [ 209.745394][T20845] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.7982: invalid block [ 209.774597][T20845] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.7982: invalid indirect mapped block 4294967295 (level 1) [ 209.809649][T20845] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.7982: invalid indirect mapped block 4294967295 (level 1) [ 209.827061][T20845] EXT4-fs (loop3): 2 truncates cleaned up [ 209.857095][T20858] pimreg: tun_chr_ioctl cmd 1074025677 [ 209.864282][T20858] pimreg: linktype set to 270 [ 210.309227][T20922] set_capacity_and_notify: 5 callbacks suppressed [ 210.309284][T20922] loop3: detected capacity change from 0 to 2048 [ 210.376901][T20930] smc: net device hsr0 applied user defined pnetid SYZ2 [ 210.386747][T20922] Alternate GPT is invalid, using primary GPT. [ 210.394345][T20922] loop3: p2 p3 p7 [ 210.413741][T20930] smc: net device hsr0 erased user defined pnetid SYZ2 [ 210.432978][ C0] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured! [ 210.500328][T20938] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=20938 comm=syz.0.8003 [ 210.651710][T20948] __nla_validate_parse: 1 callbacks suppressed [ 210.651732][T20948] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8007'. [ 210.683775][T20942] Process accounting paused [ 210.728738][T20953] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8009'. [ 210.851170][ T29] kauditd_printk_skb: 117 callbacks suppressed [ 210.851192][ T29] audit: type=1326 audit(2000000013.860:1744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20959 comm="syz.3.8014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 210.996007][ T4511] hid_parser_main: 8 callbacks suppressed [ 210.996031][ T4511] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 211.009370][ T4511] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 211.017705][ T4511] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 211.025177][ T4511] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 211.032698][ T4511] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 211.041048][ T4511] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 211.048666][ T4511] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 211.057272][ T4511] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 211.064768][ T4511] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 211.073987][ T4511] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 211.085640][ T29] audit: type=1326 audit(2000000013.860:1745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20959 comm="syz.3.8014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 211.111107][ T29] audit: type=1326 audit(2000000013.860:1746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20959 comm="syz.3.8014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 211.135969][ T29] audit: type=1326 audit(2000000013.880:1747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20959 comm="syz.3.8014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 211.160972][ T29] audit: type=1326 audit(2000000013.880:1748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20959 comm="syz.3.8014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 211.186237][ T29] audit: type=1326 audit(2000000013.890:1749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20959 comm="syz.3.8014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 211.209879][ T29] audit: type=1326 audit(2000000013.890:1750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20959 comm="syz.3.8014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 211.235121][ T29] audit: type=1326 audit(2000000013.890:1751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20959 comm="syz.3.8014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 211.259150][ T29] audit: type=1326 audit(2000000013.890:1752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20959 comm="syz.3.8014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 211.284048][ T29] audit: type=1326 audit(2000000013.890:1753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20959 comm="syz.3.8014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 211.303251][ T4511] hid-generic 0003:0004:0000.0003: hidraw0: USB HID v0.00 Device [syz0] on syz1 [ 211.372634][T20973] SELinux: ebitmap: truncated map [ 211.380262][T20973] SELinux: failed to load policy [ 211.381015][T20975] netlink: 20 bytes leftover after parsing attributes in process `syz.4.8020'. [ 211.395987][T20975] netlink: 24 bytes leftover after parsing attributes in process `syz.4.8020'. [ 211.407619][T20975] netlink: 20 bytes leftover after parsing attributes in process `syz.4.8020'. [ 211.417768][T20975] netlink: 24 bytes leftover after parsing attributes in process `syz.4.8020'. [ 211.712947][ C1] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! [ 211.877735][T21010] netlink: 'syz.4.8035': attribute type 21 has an invalid length. [ 211.885809][T21010] netlink: 156 bytes leftover after parsing attributes in process `syz.4.8035'. [ 211.895069][T21010] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8035'. [ 211.925683][T21012] tipc: Enabling of bearer rejected, already enabled [ 212.056310][T21026] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=21026 comm=syz.0.8044 [ 212.273806][T21038] xt_hashlimit: max too large, truncated to 1048576 [ 212.428524][T21048] loop0: detected capacity change from 0 to 1024 [ 212.552093][T21058] loop0: detected capacity change from 0 to 2048 [ 213.010323][T21085] net_ratelimit: 7 callbacks suppressed [ 213.010343][T21085] openvswitch: netlink: Missing key (keys=40, expected=100) [ 213.085409][T21090] program syz.3.8073 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 213.184142][T21099] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 213.203465][T21096] loop1: detected capacity change from 0 to 2048 [ 213.257152][T21096] Alternate GPT is invalid, using primary GPT. [ 213.263896][T21096] loop1: p2 p3 p7 [ 213.335492][T21108] dvmrp1: tun_chr_ioctl cmd 1074025677 [ 213.348982][T21108] dvmrp1: linktype set to 258 [ 213.422211][T21116] loop3: detected capacity change from 0 to 1024 [ 213.475968][T21058] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 213.501909][T21058] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28 [ 213.514596][T21058] EXT4-fs (loop0): This should not happen!! Data will be lost [ 213.514596][T21058] [ 213.525575][T21058] EXT4-fs (loop0): Total free blocks count 0 [ 213.531788][T21058] EXT4-fs (loop0): Free/Dirty block details [ 213.538018][T21058] EXT4-fs (loop0): free_blocks=2415919104 [ 213.543811][T21058] EXT4-fs (loop0): dirty_blocks=8192 [ 213.549199][T21058] EXT4-fs (loop0): Block reservation details [ 213.549217][T21058] EXT4-fs (loop0): i_reserved_data_blocks=512 [ 213.568298][T21122] netlink: 44 bytes leftover after parsing attributes in process `syz.4.8089'. [ 213.611680][T21126] loop3: detected capacity change from 0 to 8192 [ 213.699535][ T12] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28 [ 213.712419][ T12] EXT4-fs (loop0): This should not happen!! Data will be lost [ 213.712419][ T12] [ 213.726879][T21136] macvtap0: refused to change device tx_queue_len [ 213.877509][T21133] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 213.904057][T21133] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 214.009980][T21154] openvswitch: netlink: Missing key (keys=40, expected=200000) [ 214.064257][T21160] FAT-fs (loop7): unable to read boot sector [ 214.209219][T21176] loop3: detected capacity change from 0 to 1024 [ 214.229845][T21176] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=2802c09c, mo2=0002] [ 214.239575][T21176] System zones: 0-1, 3-12 [ 214.248763][T21176] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.8116: bg 0: block 88: padding at end of block bitmap is not set [ 214.469282][T21199] loop0: detected capacity change from 0 to 2048 [ 214.520988][T21199] ext4 filesystem being mounted at /1726/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 214.569425][T21210] loop3: detected capacity change from 0 to 512 [ 214.577308][T21210] EXT4-fs: Ignoring removed oldalloc option [ 214.583803][T21210] EXT4-fs: Ignoring removed i_version option [ 214.590001][T21210] EXT4-fs: Ignoring removed nomblk_io_submit option [ 214.597488][T21210] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 214.613784][T21210] EXT4-fs (loop3): 1 truncate cleaned up [ 214.637600][T21214] netlink: 'syz.0.8132': attribute type 21 has an invalid length. [ 214.646202][T21210] Invalid ELF header magic: != ELF [ 214.658787][T21214] netlink: 132 bytes leftover after parsing attributes in process `syz.0.8132'. [ 214.669236][T21214] netlink: 'syz.0.8132': attribute type 1 has an invalid length. [ 214.768659][T21229] tmpfs: Bad value for 'mpol' [ 215.494361][T21265] loop4: detected capacity change from 0 to 2048 [ 215.712954][ T44] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 215.901773][T21265] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 215.917119][T21265] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28 [ 215.930612][T21265] EXT4-fs (loop4): This should not happen!! Data will be lost [ 215.930612][T21265] [ 215.940569][T21265] EXT4-fs (loop4): Total free blocks count 0 [ 215.946621][T21265] EXT4-fs (loop4): Free/Dirty block details [ 215.950691][T21288] loop3: detected capacity change from 0 to 1024 [ 215.952547][T21265] EXT4-fs (loop4): free_blocks=2415919104 [ 215.952569][T21265] EXT4-fs (loop4): dirty_blocks=8192 [ 215.971007][T21265] EXT4-fs (loop4): Block reservation details [ 215.977125][T21265] EXT4-fs (loop4): i_reserved_data_blocks=512 [ 215.988120][T21288] __quota_error: 95 callbacks suppressed [ 215.988143][T21288] Quota error (device loop3): do_check_range: Getting block 64 out of range 1-5 [ 216.004099][T21288] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0 [ 216.013662][T21288] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.8166: Failed to acquire dquot type 0 [ 216.036085][T21288] EXT4-fs error (device loop3): mb_free_blocks:2037: group 0, inode 13: block 160:freeing already freed block (bit 10); block bitmap corrupt. [ 216.054488][T21288] EXT4-fs (loop3): 1 truncate cleaned up [ 216.226310][T21298] loop3: detected capacity change from 0 to 1024 [ 216.228702][T20893] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28 [ 216.245507][T20893] EXT4-fs (loop4): This should not happen!! Data will be lost [ 216.245507][T20893] [ 216.256752][T21298] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities [ 216.475728][T21308] openvswitch: netlink: Missing key (keys=40, expected=2000) [ 216.544184][T21312] loop4: detected capacity change from 0 to 1024 [ 216.552367][T21312] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 216.604996][T21319] netlink: 24 bytes leftover after parsing attributes in process `syz.0.8180'. [ 216.617929][ T29] audit: type=1326 audit(2000000019.630:1849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21318 comm="syz.3.8181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 216.663243][ T29] audit: type=1326 audit(2000000019.630:1850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21318 comm="syz.3.8181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 216.687862][ T29] audit: type=1326 audit(2000000019.660:1851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21318 comm="syz.3.8181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 216.711505][ T29] audit: type=1326 audit(2000000019.660:1852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21318 comm="syz.3.8181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 216.736642][ T29] audit: type=1326 audit(2000000019.660:1853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21318 comm="syz.3.8181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 216.761117][ T29] audit: type=1326 audit(2000000019.660:1854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21318 comm="syz.3.8181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 216.786121][ T29] audit: type=1326 audit(2000000019.660:1855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21318 comm="syz.3.8181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 216.810129][ T29] audit: type=1326 audit(2000000019.660:1856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21318 comm="syz.3.8181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 216.890250][T21331] netlink: 277 bytes leftover after parsing attributes in process `syz.3.8185'. [ 216.927320][T21337] loop1: detected capacity change from 0 to 1024 [ 217.040261][T21353] SET target dimension over the limit! [ 217.051673][T21349] loop3: detected capacity change from 0 to 1024 [ 217.251083][T21378] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=14385 sclass=netlink_route_socket pid=21378 comm=syz.3.8206 [ 217.418212][T21375] infiniband !yz!: set active [ 217.424645][T21375] infiniband !yz!: added team_slave_0 [ 217.491258][T21375] RDS/IB: !yz!: added [ 217.496051][T21375] smc: adding ib device !yz! with port count 1 [ 217.503095][T21375] smc: ib device !yz! port 1 has no pnetid [ 217.587670][T21396] loop3: detected capacity change from 0 to 512 [ 217.626070][T21396] EXT4-fs (loop3): 1 orphan inode deleted [ 217.637449][T21396] ext4 filesystem being mounted at /1577/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 217.646795][ T12] EXT4-fs error (device loop3): ext4_release_dquot:7022: comm kworker/u8:0: Failed to release dquot type 1 [ 217.728155][T21405] macvtap0: refused to change device tx_queue_len [ 217.739726][T21407] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 217.854237][T21415] random: crng reseeded on system resumption [ 218.036112][T21432] netlink: 256 bytes leftover after parsing attributes in process `syz.3.8230'. [ 218.119998][T21438] loop4: detected capacity change from 0 to 256 [ 218.133921][T21440] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 218.169709][T21442] loop3: detected capacity change from 0 to 764 [ 218.208214][T21442] rock: directory entry would overflow storage [ 218.215429][T21442] rock: sig=0x5245, size=8, remaining=5 [ 218.333826][T21454] netlink: 564 bytes leftover after parsing attributes in process `syz.0.8240'. [ 218.344171][T21454] netlink: 564 bytes leftover after parsing attributes in process `syz.0.8240'. [ 218.547842][T21479] loop4: detected capacity change from 0 to 512 [ 218.572198][T21479] EXT4-fs (loop4): failed to initialize system zone (-117) [ 218.588424][T21479] EXT4-fs (loop4): mount failed [ 218.644279][T21491] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8257'. [ 218.667361][T21491] team_slave_0: left promiscuous mode [ 218.672923][T21491] team_slave_1: left promiscuous mode [ 218.764198][T21491] team0 (unregistering): Port device team_slave_0 removed [ 218.797182][T21491] team0 (unregistering): Port device team_slave_1 removed [ 218.816643][T21494] tipc: New replicast peer: 255.255.255.255 [ 218.823056][T21494] tipc: Enabled bearer , priority 10 [ 218.830710][ T3403] !yz!: Port: 1 Link DOWN [ 218.837063][T21497] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8259'. [ 218.847144][T21497] tipc: Disabling bearer [ 218.905803][T21496] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 218.915495][T21496] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 218.928783][T21507] ext4 filesystem being mounted at /1750/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 219.040355][T21521] netlink: 300 bytes leftover after parsing attributes in process `syz.3.8271'. [ 219.224309][T21542] netlink: 'syz.0.8280': attribute type 2 has an invalid length. [ 219.333851][T21556] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.8283: bad orphan inode 13 [ 219.346936][T21556] ext4_test_bit(bit=12, block=4) = 1 [ 219.352322][T21556] is_bad_inode(inode)=0 [ 219.356764][T21556] NEXT_ORPHAN(inode)=0 [ 219.360916][T21556] max_ino=32 [ 219.365294][T21556] i_nlink=1 [ 219.385396][T21556] EXT4-fs warning (device loop4): dx_probe:801: inode #2: comm syz.4.8283: Unrecognised inode hash code 20 [ 219.397252][T21556] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.8283: Corrupt directory, running e2fsck is recommended [ 219.416225][T21556] EXT4-fs warning (device loop4): dx_probe:801: inode #2: comm syz.4.8283: Unrecognised inode hash code 20 [ 219.428705][T21556] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.8283: Corrupt directory, running e2fsck is recommended [ 219.685244][T21599] netlink: 'syz.1.8294': attribute type 10 has an invalid length. [ 219.693326][T21599] netlink: 2 bytes leftover after parsing attributes in process `syz.1.8294'. [ 219.743910][T21599] team0: entered promiscuous mode [ 219.749163][T21599] team_slave_0: entered promiscuous mode [ 219.755013][T21599] team_slave_1: entered promiscuous mode [ 219.916491][T21627] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 219.933340][T21627] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 219.963976][T21620] Alternate GPT is invalid, using primary GPT. [ 219.970401][T21620] loop1: p1 p2 p3 [ 219.975124][T21620] loop1: partition table partially beyond EOD, truncated [ 220.124945][T21664] vlan0: entered allmulticast mode [ 220.130137][T21664] batadv0: entered allmulticast mode [ 220.237824][T21682] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 220.257840][T21682] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=42c028, mo2=0002] [ 220.265982][T21682] EXT4-fs (loop1): orphan cleanup on readonly fs [ 220.275637][T21682] EXT4-fs error (device loop1): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt. [ 220.291483][T21682] EXT4-fs (loop1): Remounting filesystem read-only [ 220.299045][T21682] EXT4-fs (loop1): 1 truncate cleaned up [ 220.311081][T20890] EXT4-fs (loop1): Quota write (off=8192, len=1024) cancelled because transaction is not started [ 220.321845][T20890] EXT4-fs (loop1): Quota write (off=8192, len=1024) cancelled because transaction is not started [ 220.341283][T21685] netlink: 76 bytes leftover after parsing attributes in process `syz.0.8313'. [ 220.350735][T20890] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started [ 220.430966][T21697] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6) [ 220.437696][T21697] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 220.446409][T21697] vhci_hcd vhci_hcd.0: Device attached [ 220.454431][T21700] vhci_hcd: connection closed [ 220.454777][T20890] vhci_hcd vhci_hcd.3: stop threads [ 220.464846][T20890] vhci_hcd vhci_hcd.3: release socket [ 220.470271][T20890] vhci_hcd vhci_hcd.3: disconnect device [ 220.648325][T21725] set_capacity_and_notify: 5 callbacks suppressed [ 220.648352][T21725] loop4: detected capacity change from 0 to 512 [ 220.685571][T21725] ext4 filesystem being mounted at /1716/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 220.725984][T21725] EXT4-fs error (device loop4): ext4_xattr_block_get:597: inode #15: comm syz.4.8322: corrupted xattr block 32: bad e_name length [ 220.744044][T21725] EXT4-fs (loop4): Remounting filesystem read-only [ 220.750808][T21725] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 220.760644][T21725] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 220.769940][T21725] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 221.150711][ T29] kauditd_printk_skb: 206 callbacks suppressed [ 221.150730][ T29] audit: type=1400 audit(2000000024.160:2054): avc: denied { read } for pid=21788 comm="syz.0.8335" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 221.222602][ T29] audit: type=1400 audit(2000000024.160:2055): avc: denied { open } for pid=21788 comm="syz.0.8335" path="/dev/sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 221.247951][ T29] audit: type=1400 audit(2000000024.190:2056): avc: denied { ioctl } for pid=21788 comm="syz.0.8335" path="/dev/sg0" dev="devtmpfs" ino=135 ioctlcmd=0x2285 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 221.422034][T21822] loop0: detected capacity change from 0 to 1024 [ 221.444642][T21822] Quota error (device loop0): do_check_range: Getting block 64 out of range 1-5 [ 221.453985][T21822] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 221.464578][T21822] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.8336: Failed to acquire dquot type 0 [ 221.472572][T21758] loop4: detected capacity change from 0 to 32768 [ 221.484717][T21822] EXT4-fs error (device loop0): mb_free_blocks:2037: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 221.507078][T21822] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #13: comm syz.0.8336: corrupted inode contents [ 221.521112][T21822] EXT4-fs error (device loop0): ext4_dirty_inode:6502: inode #13: comm syz.0.8336: mark_inode_dirty error [ 221.534513][T21822] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #13: comm syz.0.8336: corrupted inode contents [ 221.555346][T21758] loop4: p1 p2 p3 < > p4 < p5 p6 > [ 221.560718][T21758] loop4: p1 start 460800 is beyond EOD, truncated [ 221.567312][T21758] loop4: p2 size 83886080 extends beyond EOD, truncated [ 221.574936][T21822] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #13: comm syz.0.8336: mark_inode_dirty error [ 221.575100][T21822] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #13: comm syz.0.8336: corrupted inode contents [ 221.575210][T21822] EXT4-fs error (device loop0) in ext4_orphan_del:303: Corrupt filesystem [ 221.575330][T21822] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #13: comm syz.0.8336: corrupted inode contents [ 221.590981][T21758] loop4: p5 start 460800 is beyond EOD, truncated [ 221.628215][T21758] loop4: p6 size 83886080 extends beyond EOD, truncated [ 221.640039][T21822] EXT4-fs error (device loop0): ext4_truncate:4635: inode #13: comm syz.0.8336: mark_inode_dirty error [ 221.660893][T21822] EXT4-fs error (device loop0) in ext4_process_orphan:345: Corrupt filesystem [ 221.690874][T21822] EXT4-fs (loop0): 1 truncate cleaned up [ 221.719060][ T29] audit: type=1326 audit(2000000024.730:2057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21831 comm="syz.1.8341" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f810b36f749 code=0x7ffc0000 [ 221.796135][T21839] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8344'. [ 221.823814][ T29] audit: type=1326 audit(2000000024.760:2058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21831 comm="syz.1.8341" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f810b36f749 code=0x7ffc0000 [ 221.848677][ T29] audit: type=1326 audit(2000000024.760:2059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21831 comm="syz.1.8341" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f810b36f749 code=0x7ffc0000 [ 221.873467][ T29] audit: type=1326 audit(2000000024.760:2060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21831 comm="syz.1.8341" exe="/root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7f810b36f749 code=0x7ffc0000 [ 221.898481][ T29] audit: type=1326 audit(2000000024.760:2061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21831 comm="syz.1.8341" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f810b36f749 code=0x7ffc0000 [ 222.078530][T21871] openvswitch: netlink: Missing key (keys=40, expected=80) [ 222.198597][T21897] loop4: detected capacity change from 0 to 2048 [ 222.265154][T21897] Alternate GPT is invalid, using primary GPT. [ 222.271492][T21897] loop4: p1 p2 p3 [ 222.275371][T21897] loop4: partition table partially beyond EOD, truncated [ 222.343621][T21893] Process accounting paused [ 222.897822][T22001] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8380'. [ 222.944519][T22001] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8380'. [ 222.954857][T22011] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 222.984080][T22001] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8380'. [ 223.021963][T22011] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 223.063078][T11085] hid_parser_main: 8 callbacks suppressed [ 223.063126][T11085] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x4 [ 223.073154][T22024] loop0: detected capacity change from 0 to 764 [ 223.079500][T11085] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x2 [ 223.090851][T11085] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 223.114167][T22024] rock: directory entry would overflow storage [ 223.120511][T22024] rock: sig=0x5245, size=8, remaining=5 [ 223.139472][T11085] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 223.148199][T11085] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 223.155991][T11085] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 223.163842][T11085] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 223.195301][T11085] hid-generic 0000:3000000:0000.0004: hidraw0: HID v0.00 Device [sy] on syz0 [ 223.231388][T22039] loop4: detected capacity change from 0 to 512 [ 223.239396][T22039] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 223.251743][T22039] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=42c028, mo2=0002] [ 223.263988][T22039] EXT4-fs (loop4): orphan cleanup on readonly fs [ 223.272200][T22039] EXT4-fs error (device loop4): mb_free_blocks:2037: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt. [ 223.290857][T22039] EXT4-fs (loop4): Remounting filesystem read-only [ 223.297690][T22039] EXT4-fs (loop4): 1 truncate cleaned up [ 223.310060][T22044] loop0: detected capacity change from 0 to 1024 [ 223.316909][T20893] EXT4-fs (loop4): Quota write (off=8192, len=1024) cancelled because transaction is not started [ 223.317547][T22044] EXT4-fs: Ignoring removed orlov option [ 223.327567][T20893] EXT4-fs (loop4): Quota write (off=8192, len=1024) cancelled because transaction is not started [ 223.327911][T20893] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started [ 223.345856][T22039] EXT4-fs mount: 53 callbacks suppressed [ 223.345875][T22039] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 223.391163][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.402301][T22044] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 223.426127][T22044] EXT4-fs (loop0): Online resizing not supported with bigalloc [ 223.437628][T22048] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8389'. [ 223.458370][ T3319] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.501676][T22053] netlink: 260 bytes leftover after parsing attributes in process `syz.0.8390'. [ 225.143296][T22064] netem: change failed [ 225.169440][T22064] Process accounting paused [ 225.300748][T22085] loop3: detected capacity change from 0 to 512 [ 225.328892][T20541] bond0: (slave syz_tun): Releasing backup interface [ 225.344086][T20541] syz_tun (unregistering): left allmulticast mode [ 225.350735][T22085] EXT4-fs warning (device loop3): ext4_xattr_inode_get:560: inode #11: comm syz.3.8406: EA inode hash validation failed [ 225.366905][T22085] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #15: comm syz.3.8406: corrupted inode contents [ 225.380919][T22085] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #15: comm syz.3.8406: mark_inode_dirty error [ 225.395875][T22085] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #15: comm syz.3.8406: corrupted inode contents [ 225.409160][T22085] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3000: inode #15: comm syz.3.8406: mark_inode_dirty error [ 225.434102][T22085] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3003: inode #15: comm syz.3.8406: mark inode dirty (error -117) [ 225.447501][T22085] EXT4-fs warning (device loop3): ext4_evict_inode:273: xattr delete (err -117) [ 225.473760][T22085] EXT4-fs (loop3): 1 orphan inode deleted [ 225.480126][T22085] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 225.510051][T22070] lo speed is unknown, defaulting to 1000 [ 225.544009][ T3325] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 225.615081][T22108] tap0: tun_chr_ioctl cmd 1074025672 [ 225.620441][T22108] tap0: ignored: set checksum enabled [ 225.630861][T22113] openvswitch: netlink: Missing key (keys=40, expected=200000) [ 225.691017][ T37] tipc: Resetting bearer [ 225.706878][ T37] team0: Port device ip6gre0 removed [ 225.712735][ T37] tipc: Disabling bearer [ 225.846232][ T37] bond0 (unregistering): Released all slaves [ 225.856658][T22070] chnl_net:caif_netlink_parms(): no params data found [ 225.896423][T22070] bridge0: port 1(bridge_slave_0) entered blocking state [ 225.904358][T22070] bridge0: port 1(bridge_slave_0) entered disabled state [ 225.911708][T22070] bridge_slave_0: entered allmulticast mode [ 225.918645][T22070] bridge_slave_0: entered promiscuous mode [ 225.925573][ T37] tipc: Disabling bearer [ 225.931114][ T37] tipc: Left network mode [ 225.931222][T22070] bridge0: port 2(bridge_slave_1) entered blocking state [ 225.942658][T22070] bridge0: port 2(bridge_slave_1) entered disabled state [ 225.950055][T22070] bridge_slave_1: entered allmulticast mode [ 225.957066][T22070] bridge_slave_1: entered promiscuous mode [ 225.981478][T22070] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 225.993563][T22070] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 226.027161][T22070] team0: Port device team_slave_0 added [ 226.040304][ T37] hsr_slave_0: left promiscuous mode [ 226.048166][ T37] hsr_slave_1: left promiscuous mode [ 226.081535][T21660] smc: removing ib device syz0 [ 226.129302][T22144] Set syz0 is full, maxelem 0 reached [ 226.179947][T22151] loop3: detected capacity change from 0 to 512 [ 226.200601][T22151] journal_path: Lookup failure for './file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa' [ 226.224963][T22151] EXT4-fs: error: could not find journal device path [ 226.239883][T22070] team0: Port device team_slave_1 added [ 226.253894][ T29] kauditd_printk_skb: 136 callbacks suppressed [ 226.253908][ T29] audit: type=1400 audit(2000000029.270:2190): avc: denied { watch watch_reads } for pid=22155 comm="syz.1.8436" path="/1707" dev="tmpfs" ino=8727 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 226.343469][T22070] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 226.350585][T22070] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 226.376588][T22070] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 226.404494][ T29] audit: type=1326 audit(2000000029.410:2191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22169 comm="syz.0.8442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d1874f749 code=0x7ffc0000 [ 226.428116][ T29] audit: type=1326 audit(2000000029.410:2192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22169 comm="syz.0.8442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d1874f749 code=0x7ffc0000 [ 226.455719][T22070] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 226.462769][T22070] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 226.488831][T22070] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 226.508664][ T29] audit: type=1326 audit(2000000029.480:2193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22169 comm="syz.0.8442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f4d1874f749 code=0x7ffc0000 [ 226.533576][ T29] audit: type=1326 audit(2000000029.510:2194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22171 comm="syz.4.8444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f207a4df749 code=0x7ffc0000 [ 226.557305][ T29] audit: type=1326 audit(2000000029.510:2195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22171 comm="syz.4.8444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f207a4df749 code=0x7ffc0000 [ 226.581829][ T29] audit: type=1326 audit(2000000029.510:2196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22171 comm="syz.4.8444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f207a4df749 code=0x7ffc0000 [ 226.606415][ T29] audit: type=1326 audit(2000000029.510:2197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22171 comm="syz.4.8444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f207a4df749 code=0x7ffc0000 [ 226.630252][ T29] audit: type=1326 audit(2000000029.510:2198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22171 comm="syz.4.8444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f207a4df749 code=0x7ffc0000 [ 226.654786][ T29] audit: type=1326 audit(2000000029.510:2199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22171 comm="syz.4.8444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f207a4df749 code=0x7ffc0000 [ 226.751875][T22070] hsr_slave_0: entered promiscuous mode [ 226.762975][T22070] hsr_slave_1: entered promiscuous mode [ 226.892321][T22185] loop1: detected capacity change from 0 to 512 [ 226.900005][T22185] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 226.916014][ T37] IPVS: stop unused estimator thread 0... [ 226.964025][T22070] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 226.987536][T22187] netlink: 52 bytes leftover after parsing attributes in process `syz.1.8451'. [ 226.997312][T22070] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 227.017799][T22070] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 227.036149][T22070] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 227.115086][T22070] 8021q: adding VLAN 0 to HW filter on device bond0 [ 227.135518][T22070] 8021q: adding VLAN 0 to HW filter on device team0 [ 227.151235][T22198] netlink: 9 bytes leftover after parsing attributes in process `syz.0.8450'. [ 227.161046][T22198] netlink: 9 bytes leftover after parsing attributes in process `syz.0.8450'. [ 227.172137][T21660] bridge0: port 1(bridge_slave_0) entered blocking state [ 227.179281][T21660] bridge0: port 1(bridge_slave_0) entered forwarding state [ 227.190383][T21660] bridge0: port 2(bridge_slave_1) entered blocking state [ 227.197576][T21660] bridge0: port 2(bridge_slave_1) entered forwarding state [ 227.281244][T22070] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 227.427042][T22070] veth0_vlan: entered promiscuous mode [ 227.435962][T22070] veth1_vlan: entered promiscuous mode [ 227.452553][T22070] veth0_macvtap: entered promiscuous mode [ 227.461438][T22070] veth1_macvtap: entered promiscuous mode [ 227.474385][T22070] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 227.486850][T22070] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 227.498450][T20893] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 227.514499][T20893] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 227.541039][T20893] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 227.563897][T20893] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 227.665553][T22227] loop3: detected capacity change from 0 to 512 [ 227.698668][T22227] EXT4-fs (loop3): 1 orphan inode deleted [ 227.711153][T22227] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 227.724618][T22227] ext4 filesystem being mounted at /1635/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 227.735838][ T12] EXT4-fs error (device loop3): ext4_release_dquot:7022: comm kworker/u8:0: Failed to release dquot type 1 [ 227.785196][ T3325] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 228.346756][T22334] openvswitch: netlink: Missing key (keys=40, expected=80) [ 228.354333][ C0] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured! [ 228.362918][ C1] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! [ 228.637872][T22376] loop4: detected capacity change from 0 to 2048 [ 228.664314][T22384] loop1: detected capacity change from 0 to 1024 [ 228.672005][T22384] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 228.703181][T22376] loop4: p1 p3 [ 228.707117][T22384] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 228.733876][T22376] loop4: p3 start 8388352 is beyond EOD, truncated [ 228.769577][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 228.936868][T22417] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8502'. [ 228.963743][T22417] hsr_slave_1 (unregistering): left promiscuous mode [ 229.309293][T22462] loop4: detected capacity change from 0 to 1024 [ 229.338796][T22462] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.8512: Failed to acquire dquot type 0 [ 229.385205][T22462] EXT4-fs error (device loop4): mb_free_blocks:2037: group 0, inode 13: block 160:freeing already freed block (bit 10); block bitmap corrupt. [ 229.411006][T22462] EXT4-fs (loop4): 1 truncate cleaned up [ 229.417374][T22462] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 229.461387][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 229.780327][T22541] loop0: detected capacity change from 0 to 128 [ 229.801941][T22510] lo speed is unknown, defaulting to 1000 [ 229.830469][T22541] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 229.892011][T22541] ext4 filesystem being mounted at /1818/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 230.016670][ T3319] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 230.340802][T22614] netlink: 9 bytes leftover after parsing attributes in process `syz.4.8551'. [ 230.367062][T22614] netlink: 9 bytes leftover after parsing attributes in process `syz.4.8551'. [ 230.435839][T22626] loop4: detected capacity change from 0 to 1024 [ 230.450126][T22626] EXT4-fs: Ignoring removed nomblk_io_submit option [ 230.450867][T22629] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 230.476992][T22626] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 230.536785][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 230.623668][T22639] loop3: detected capacity change from 0 to 8192 [ 230.705939][T22656] lo speed is unknown, defaulting to 1000 [ 231.079363][T22683] loop4: detected capacity change from 0 to 4096 [ 231.133999][T22683] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 231.157251][T22683] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 231.177310][T22725] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.230923][T22714] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 231.264822][T22725] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.299844][T22070] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 231.324463][T22725] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.366609][T22725] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.445585][T20897] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.457131][T22757] set_capacity_and_notify: 1 callbacks suppressed [ 231.457149][T22757] loop4: detected capacity change from 0 to 128 [ 231.472076][ T29] kauditd_printk_skb: 171 callbacks suppressed [ 231.472096][ T29] audit: type=1400 audit(2000000034.480:2368): avc: denied { shutdown } for pid=22753 comm="syz.5.8584" lport=57164 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 231.504604][T22759] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=22759 comm=syz.1.8585 [ 231.517803][ T1624] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.534030][ T1624] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.552484][ T1624] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.565668][ T29] audit: type=1326 audit(2000000034.580:2369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22760 comm="syz.5.8587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe9becf749 code=0x7ffc0000 [ 231.619651][ T29] audit: type=1326 audit(2000000034.590:2370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22760 comm="syz.5.8587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7efe9becf749 code=0x7ffc0000 [ 231.644299][ T29] audit: type=1326 audit(2000000034.590:2371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22760 comm="syz.5.8587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe9becf749 code=0x7ffc0000 [ 231.667920][ T29] audit: type=1326 audit(2000000034.590:2372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22760 comm="syz.5.8587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe9becf749 code=0x7ffc0000 [ 231.694420][ T29] audit: type=1400 audit(2000000034.710:2373): avc: denied { create } for pid=22768 comm="syz.3.8590" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 231.715356][ T29] audit: type=1400 audit(2000000034.720:2374): avc: denied { bind } for pid=22768 comm="syz.3.8590" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 231.735394][ T29] audit: type=1400 audit(2000000034.730:2375): avc: denied { write } for pid=22768 comm="syz.3.8590" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 231.774113][T22775] netlink: 'syz.4.8594': attribute type 21 has an invalid length. [ 231.782306][T22775] netlink: 'syz.4.8594': attribute type 1 has an invalid length. [ 231.791303][T22775] netlink: 144 bytes leftover after parsing attributes in process `syz.4.8594'. [ 231.827177][T22781] xt_hashlimit: max too large, truncated to 1048576 [ 231.837268][T22781] xt_CT: You must specify a L4 protocol and not use inversions on it [ 231.874004][ T29] audit: type=1326 audit(2000000034.890:2376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22783 comm="syz.5.8598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe9becf749 code=0x7ffc0000 [ 231.923339][ T29] audit: type=1400 audit(2000000034.890:2377): avc: denied { create } for pid=22777 comm="syz.0.8596" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 232.056546][T22793] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.118630][T22804] netlink: 28 bytes leftover after parsing attributes in process `syz.5.8606'. [ 232.127812][T22804] netlink: 32 bytes leftover after parsing attributes in process `syz.5.8606'. [ 232.137827][T22804] netlink: 28 bytes leftover after parsing attributes in process `syz.5.8606'. [ 232.197016][T22793] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.265133][T22793] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.295432][T22821] netlink: 12 bytes leftover after parsing attributes in process `syz.5.8615'. [ 232.304664][T22821] netlink: 28 bytes leftover after parsing attributes in process `syz.5.8615'. [ 232.313727][T22821] netlink: 12 bytes leftover after parsing attributes in process `syz.5.8615'. [ 232.325464][T22821] netlink: 28 bytes leftover after parsing attributes in process `syz.5.8615'. [ 232.334745][T22821] netlink: 'syz.5.8615': attribute type 6 has an invalid length. [ 232.373689][T22793] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.392564][T22832] hugetlbfs: syz.1.8621 (22832): Using mlock ulimits for SHM_HUGETLB is obsolete [ 232.478315][T20897] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.503779][T20897] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.513192][T20897] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.530726][T22852] netlink: 'syz.1.8631': attribute type 1 has an invalid length. [ 232.539512][T22852] netlink: 668 bytes leftover after parsing attributes in process `syz.1.8631'. [ 232.549043][T20897] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.592570][T22856] netlink: 68 bytes leftover after parsing attributes in process `syz.0.8632'. [ 232.652861][T22867] netlink: 36 bytes leftover after parsing attributes in process `syz.1.8637'. [ 232.692099][T22873] loop5: detected capacity change from 0 to 512 [ 232.715553][T22873] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem [ 232.736565][T22873] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.8642: bg 0: block 104: invalid block bitmap [ 232.754919][T22873] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6689: Corrupt filesystem [ 232.772106][T22873] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.8642: invalid indirect mapped block 1 (level 1) [ 232.802909][T22873] EXT4-fs (loop5): 1 truncate cleaned up [ 232.809537][T22873] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 232.835777][T22886] program syz.3.8647 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 232.880160][T22882] loop4: detected capacity change from 0 to 4096 [ 232.888722][T22070] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 232.904068][T22882] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 232.934105][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 232.966738][T22900] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 232.977177][T22900] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 233.003464][T22902] openvswitch: netlink: Missing key (keys=40, expected=200000) [ 233.028109][T22908] loop5: detected capacity change from 0 to 128 [ 233.049979][T22900] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 233.060622][T22900] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 233.087252][T22908] bond0: Removing last ns target with arp_interval on [ 233.095809][T22916] netlink: 'syz.3.8661': attribute type 21 has an invalid length. [ 233.107696][T22916] netlink: 'syz.3.8661': attribute type 1 has an invalid length. [ 233.120876][T22900] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 233.131319][T22900] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 233.192121][T22900] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 233.202782][T22900] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 233.219093][T22928] vhci_hcd vhci_hcd.3: default hub control req: 800f v0000 i0000 l31125 [ 233.266297][ T37] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 233.274719][ T37] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.314086][ T37] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 233.322449][ T37] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.342387][ T37] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 233.350938][ T37] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.361490][ T37] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 233.370641][ T37] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.417772][T22950] netlink: 'syz.5.8677': attribute type 21 has an invalid length. [ 233.427742][T22950] netlink: 'syz.5.8677': attribute type 1 has an invalid length. [ 233.520491][T22961] loop0: detected capacity change from 0 to 512 [ 233.562688][T22961] EXT4-fs warning (device loop0): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 233.581620][T22961] EXT4-fs (loop0): mount failed [ 233.598114][T22969] lo speed is unknown, defaulting to 1000 [ 233.623232][T22977] loop4: detected capacity change from 0 to 512 [ 233.637471][T22973] loop1: detected capacity change from 0 to 4096 [ 233.645831][T22977] EXT4-fs: Ignoring removed bh option [ 233.651693][T22977] EXT4-fs: Ignoring removed nobh option [ 233.659851][T22973] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 233.676847][T22977] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #3: comm syz.4.8688: corrupted inode contents [ 233.690296][T22977] EXT4-fs error (device loop4): ext4_dirty_inode:6502: inode #3: comm syz.4.8688: mark_inode_dirty error [ 233.703071][T22977] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #3: comm syz.4.8688: corrupted inode contents [ 233.723289][T22973] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 233.733082][T22977] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #3: comm syz.4.8688: mark_inode_dirty error [ 233.754598][T22977] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.8688: Failed to acquire dquot type 0 [ 233.769892][T22988] sctp: [Deprecated]: syz.3.8690 (pid 22988) Use of int in maxseg socket option. [ 233.769892][T22988] Use struct sctp_assoc_value instead [ 233.785144][T22977] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #16: comm syz.4.8688: corrupted inode contents [ 233.823796][T22977] EXT4-fs error (device loop4): ext4_dirty_inode:6502: inode #16: comm syz.4.8688: mark_inode_dirty error [ 233.855328][T22977] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #16: comm syz.4.8688: corrupted inode contents [ 233.892864][T22977] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #16: comm syz.4.8688: mark_inode_dirty error [ 233.931532][T22977] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #16: comm syz.4.8688: corrupted inode contents [ 233.974073][T22977] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem [ 233.988992][T22977] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #16: comm syz.4.8688: corrupted inode contents [ 234.001449][T22977] EXT4-fs error (device loop4): ext4_truncate:4635: inode #16: comm syz.4.8688: mark_inode_dirty error [ 234.008861][T23004] netlink: 'syz.1.8695': attribute type 21 has an invalid length. [ 234.022272][T22977] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem [ 234.034430][T23004] netlink: 'syz.1.8695': attribute type 1 has an invalid length. [ 234.043248][T22977] EXT4-fs (loop4): 1 truncate cleaned up [ 234.054889][T23006] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 234.069398][T22977] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 234.086075][T22977] ext4 filesystem being mounted at /1809/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 234.143886][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.175308][T23006] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 234.230464][T23006] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 234.299500][T23043] lo speed is unknown, defaulting to 1000 [ 234.309636][T23006] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 234.364416][ T37] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 234.412589][ T37] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 234.444220][ T37] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 234.664408][ T37] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 235.096991][T23205] loop5: detected capacity change from 0 to 128 [ 235.105043][T23205] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 235.117889][T23205] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 235.131028][T23205] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 235.140897][T23205] FAT-fs (loop5): Filesystem has been set read-only [ 235.317592][T23226] xt_hashlimit: max too large, truncated to 1048576 [ 235.362031][T23233] netem: change failed [ 235.386819][T23226] xt_CT: You must specify a L4 protocol and not use inversions on it [ 235.905850][T23336] loop4: detected capacity change from 0 to 1024 [ 235.955596][T23347] loop1: detected capacity change from 0 to 128 [ 235.962466][T23347] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 235.974802][T23347] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 235.978971][T23336] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 236.000296][T23347] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 236.010395][T23347] FAT-fs (loop1): Filesystem has been set read-only [ 236.027359][T23336] ext4 filesystem being mounted at /1825/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 236.039474][T23353] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 236.077209][T23336] EXT4-fs error (device loop4): ext4_map_blocks:825: inode #15: block 3: comm syz.4.8758: lblock 3 mapped to illegal pblock 3 (length 1) [ 236.095379][T23336] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117 [ 236.108891][T23336] EXT4-fs (loop4): This should not happen!! Data will be lost [ 236.108891][T23336] [ 236.120648][T23353] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 236.121559][T23336] EXT4-fs error (device loop4): ext4_map_blocks:825: inode #15: comm syz.4.8758: lblock 0 mapped to illegal pblock 0 (length 3) [ 236.145669][T23336] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 3 with error 117 [ 236.158043][T23336] EXT4-fs (loop4): This should not happen!! Data will be lost [ 236.158043][T23336] [ 236.187753][T22527] EXT4-fs error (device loop4): ext4_map_blocks:825: inode #15: block 4: comm kworker/u8:22: lblock 4 mapped to illegal pblock 4 (length 2) [ 236.209883][T23353] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 236.220674][T22527] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 2 with error 117 [ 236.233101][T22527] EXT4-fs (loop4): This should not happen!! Data will be lost [ 236.233101][T22527] [ 236.248848][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 236.295535][T23353] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 236.395171][T20890] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 236.433448][T20890] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 236.457206][T20890] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 236.468937][ T29] kauditd_printk_skb: 138 callbacks suppressed [ 236.469034][ T29] audit: type=1326 audit(2000000045.661:2513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23386 comm="syz.0.8785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d1874f749 code=0x7ffc0000 [ 236.499493][T20890] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 236.500391][ T29] audit: type=1326 audit(2000000045.661:2514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23386 comm="syz.0.8785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7f4d1874f749 code=0x7ffc0000 [ 236.533031][ T29] audit: type=1326 audit(2000000045.661:2515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23386 comm="syz.0.8785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d1874f749 code=0x7ffc0000 [ 236.557603][ T29] audit: type=1326 audit(2000000045.661:2516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23386 comm="syz.0.8785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d1874f749 code=0x7ffc0000 [ 236.622259][ T29] audit: type=1400 audit(2000000045.840:2517): avc: denied { read write } for pid=23398 comm="syz.0.8778" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 236.628443][T23399] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 236.648589][ T29] audit: type=1400 audit(2000000045.840:2518): avc: denied { open } for pid=23398 comm="syz.0.8778" path="/dev/raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 236.679627][ T29] audit: type=1400 audit(2000000045.850:2519): avc: denied { ioctl } for pid=23398 comm="syz.0.8778" path="/dev/raw-gadget" dev="devtmpfs" ino=142 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 236.707479][T23399] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 236.728991][ T29] audit: type=1400 audit(2000000045.945:2520): avc: denied { read write } for pid=23398 comm="syz.0.8778" name="uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 236.753821][ T29] audit: type=1400 audit(2000000045.945:2521): avc: denied { open } for pid=23398 comm="syz.0.8778" path="/dev/uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 236.754036][ T3424] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x4 [ 236.777529][ T29] audit: type=1400 audit(2000000045.966:2522): avc: denied { bind } for pid=23401 comm="syz.5.8779" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 236.785086][ T3424] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x2 [ 236.785177][ T3424] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 236.847847][ T3424] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 236.855726][ T3424] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 236.863490][ T3424] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 236.871278][ T3424] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 236.881458][ T3424] hid-generic 0000:3000000:0000.0005: hidraw0: HID v0.00 Device [sy] on syz0 [ 237.071767][T23434] __nla_validate_parse: 10 callbacks suppressed [ 237.071782][T23434] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8788'. [ 237.214938][T23469] openvswitch: netlink: Missing key (keys=40, expected=80) [ 237.249788][T23475] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 237.278913][T23482] program syz.1.8794 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 237.305897][T23475] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 237.349876][T23494] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8798'. [ 237.358884][T23494] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8798'. [ 237.370371][T23475] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 237.380502][T23494] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8798'. [ 237.399822][T23496] SELinux: policydb version 0 does not match my version range 15-35 [ 237.414624][T23496] SELinux: failed to load policy [ 237.422086][T23475] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 237.511168][T23509] netlink: 'syz.0.8805': attribute type 1 has an invalid length. [ 237.567867][T23518] vlan0: entered allmulticast mode [ 237.779886][T23556] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8814'. [ 237.796899][T23560] siw: device registration error -23 [ 237.892750][T23578] set_capacity_and_notify: 1 callbacks suppressed [ 237.892772][T23578] loop3: detected capacity change from 0 to 128 [ 237.909969][T23578] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 237.925425][T23578] ext4 filesystem being mounted at /1717/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 237.948448][T23585] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 237.958128][T23585] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 237.968353][ T3325] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 238.033560][T23597] openvswitch: netlink: Missing key (keys=40, expected=100) [ 238.043581][T23597] netlink: 'syz.3.8822': attribute type 1 has an invalid length. [ 238.051716][T23597] netlink: 224 bytes leftover after parsing attributes in process `syz.3.8822'. [ 238.090493][T23603] lo speed is unknown, defaulting to 1000 [ 238.135172][T23610] loop3: detected capacity change from 0 to 128 [ 238.149661][T23610] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 238.169098][T23610] ext4 filesystem being mounted at /1720/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 238.234671][ T3325] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 238.361301][T23647] loop3: detected capacity change from 0 to 512 [ 238.381228][T23647] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 238.394919][T23647] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.8825: bad orphan inode 131083 [ 238.397523][T23650] vlan5: entered allmulticast mode [ 238.411639][T23650] bridge_slave_0: entered allmulticast mode [ 238.418391][T23647] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 238.433902][T23647] EXT4-fs error (device loop3): ext4_inlinedir_to_tree:1324: inode #12: block 7: comm syz.3.8825: path /1721/bus/file0: bad entry in directory: directory entry overrun - offset=80, inode=1560281102, rec_len=1024, size=60 fake=0 [ 238.475273][ T3325] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 238.556684][ T385] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 238.593543][ T385] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 238.611136][ T385] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 238.635610][ T385] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 238.688434][T23681] loop0: detected capacity change from 0 to 512 [ 238.735250][T23681] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 238.753956][T23681] EXT4-fs (loop0): orphan cleanup on readonly fs [ 238.764968][T23681] EXT4-fs error (device loop0): ext4_do_update_inode:5617: inode #16: comm syz.0.8837: corrupted inode contents [ 238.805268][T23695] IPv6: NLM_F_CREATE should be specified when creating new route [ 238.838509][T23681] EXT4-fs (loop0): Remounting filesystem read-only [ 238.850817][T23681] EXT4-fs (loop0): 1 truncate cleaned up [ 238.856837][T23100] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 238.868493][T23100] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 238.912833][ C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! [ 238.918674][T23100] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started [ 238.949848][T23681] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 238.994361][ T3319] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 239.039187][T23731] loop0: detected capacity change from 0 to 1024 [ 239.060437][T23731] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 239.094587][ T3319] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 239.113489][T23739] lo speed is unknown, defaulting to 1000 [ 239.131499][T23744] loop4: detected capacity change from 0 to 128 [ 239.190078][T23744] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 239.218706][T23744] ext4 filesystem being mounted at /1836/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 239.269232][T23764] loop3: detected capacity change from 0 to 512 [ 239.353605][T23767] siw: device registration error -23 [ 239.366614][ T3320] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 239.438669][T23786] vcan0: tx drop: invalid da for name 0x00000000000000f0 [ 239.475978][T23790] loop5: detected capacity change from 0 to 512 [ 239.492933][T23790] EXT4-fs: Ignoring removed oldalloc option [ 239.505183][T23795] loop0: detected capacity change from 0 to 512 [ 239.525359][T23790] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 239.539224][T23790] ext4 filesystem being mounted at /94/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 239.553492][T23790] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.8885: bg 0: block 217: padding at end of block bitmap is not set [ 239.563263][T23799] tun0: tun_chr_ioctl cmd 2148553947 [ 239.571481][T23795] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 239.577543][T23790] EXT4-fs (loop5): Remounting filesystem read-only [ 239.586360][T23795] ext4 filesystem being mounted at /1878/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 239.653890][T22070] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 239.664221][ T3319] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 239.729762][T23821] netlink: 12 bytes leftover after parsing attributes in process `syz.0.8900'. [ 239.756344][T23828] netlink: 16402 bytes leftover after parsing attributes in process `syz.5.8898'. [ 239.860886][T23836] netlink: 48 bytes leftover after parsing attributes in process `syz.4.8904'. [ 239.940876][T23856] loop5: detected capacity change from 0 to 256 [ 240.000772][T23868] wireguard0: entered promiscuous mode [ 240.006361][T23868] wireguard0: entered allmulticast mode [ 240.025435][T23873] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=14385 sclass=netlink_route_socket pid=23873 comm=syz.0.8918 [ 240.073496][T23877] IPv6: NLM_F_CREATE should be specified when creating new route [ 240.235251][T23899] netlink: 'syz.3.8931': attribute type 39 has an invalid length. [ 240.579223][T23899] Process accounting resumed [ 240.634041][T23928] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8942'. [ 240.645329][T23928] bridge0: port 2(bridge_slave_1) entered disabled state [ 240.662314][T23928] bridge_slave_1 (unregistering): left allmulticast mode [ 240.669753][T23928] bridge_slave_1 (unregistering): left promiscuous mode [ 240.678400][T23928] bridge0: port 2(bridge_slave_1) entered disabled state [ 240.724769][T23931] netlink: 'syz.4.8944': attribute type 7 has an invalid length. [ 241.005425][T23966] IPv6: NLM_F_CREATE should be specified when creating new route [ 241.266328][ T29] kauditd_printk_skb: 50 callbacks suppressed [ 241.266343][ T29] audit: type=1326 audit(2000000050.711:2565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23985 comm="syz.3.8971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 241.296957][ T29] audit: type=1326 audit(2000000050.711:2566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23985 comm="syz.3.8971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 241.320606][ T29] audit: type=1326 audit(2000000050.711:2567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23985 comm="syz.3.8971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=451 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 241.345061][ T29] audit: type=1326 audit(2000000050.711:2568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23985 comm="syz.3.8971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f913973f749 code=0x7ffc0000 [ 241.424175][ T29] audit: type=1400 audit(2000000050.869:2569): avc: denied { ioctl } for pid=23995 comm="syz.5.8976" path="socket:[69768]" dev="sockfs" ino=69768 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 241.467755][ T29] audit: type=1326 audit(2000000050.921:2570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24003 comm="syz.4.8979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f207a4df749 code=0x7ffc0000 [ 241.519830][T24010] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 241.531975][ T29] audit: type=1326 audit(2000000050.921:2571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24003 comm="syz.4.8979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f207a4df749 code=0x7ffc0000 [ 241.559824][ T29] audit: type=1326 audit(2000000050.921:2572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24003 comm="syz.4.8979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f207a4df749 code=0x7ffc0000 [ 241.583612][ T29] audit: type=1326 audit(2000000050.921:2573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24003 comm="syz.4.8979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f207a4df749 code=0x7ffc0000 [ 241.608937][ T29] audit: type=1400 audit(2000000050.953:2574): avc: denied { create } for pid=24005 comm="syz.3.8980" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 241.685200][T24018] unsupported nla_type 28561 [ 241.739134][T24032] program syz.3.8991 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 241.772427][T24037] netlink: 'syz.4.8995': attribute type 1 has an invalid length. [ 241.779562][T24033] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 241.804007][T24043] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 241.819597][T24043] ext4 filesystem being mounted at /1765/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 241.840169][T24043] __nla_validate_parse: 4 callbacks suppressed [ 241.840211][T24043] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8997'. [ 241.856331][T24043] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8997'. [ 241.867034][T24033] EXT4-fs error (device loop5): ext4_get_branch:178: inode #11: block 4294967295: comm syz.5.8993: invalid block [ 241.894264][T24033] EXT4-fs (loop5): Remounting filesystem read-only [ 241.903348][ T3325] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 241.904569][T24046] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 241.926816][T24033] EXT4-fs (loop5): 2 truncates cleaned up [ 241.933781][T24033] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 241.966018][T22070] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 241.982112][T24046] EXT4-fs error (device loop1): ext4_find_extent:939: inode #2: comm syz.1.8996: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 242.028302][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 242.041665][T24062] netlink: 'syz.3.9003': attribute type 3 has an invalid length. [ 242.056199][T24063] tun0: tun_chr_ioctl cmd 2148553947 [ 242.100620][T24073] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.9004: invalid indirect mapped block 256 (level 2) [ 242.121621][T24073] EXT4-fs (loop1): 2 truncates cleaned up [ 242.128022][T24073] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 242.180242][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 242.229047][ T3423] hid-generic 0000:0000:0004.0006: unknown main item tag 0x0 [ 242.236546][ T3423] hid-generic 0000:0000:0004.0006: unknown main item tag 0x0 [ 242.244008][ T3423] hid-generic 0000:0000:0004.0006: unknown main item tag 0x0 [ 242.251679][ T3423] hid-generic 0000:0000:0004.0006: unknown main item tag 0x1 [ 242.260201][ T3423] hid-generic 0000:0000:0004.0006: unknown main item tag 0x0 [ 242.267923][ T3423] hid-generic 0000:0000:0004.0006: unknown main item tag 0x0 [ 242.275378][ T3423] hid-generic 0000:0000:0004.0006: unknown main item tag 0x0 [ 242.282791][ T3423] hid-generic 0000:0000:0004.0006: unknown main item tag 0x0 [ 242.291338][ T3423] hid-generic 0000:0000:0004.0006: unknown main item tag 0x0 [ 242.298909][ T3423] hid-generic 0000:0000:0004.0006: unknown main item tag 0x0 [ 242.309694][T24094] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 242.309759][ T3423] hid-generic 0000:0000:0004.0006: hidraw0: HID v0.03 Device [syz1] on syz0 [ 242.321001][T24094] EXT4-fs (loop5): orphan cleanup on readonly fs [ 242.334010][T24094] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -13 [ 242.351081][T24094] EXT4-fs error (device loop5): ext4_clear_blocks:876: inode #13: comm syz.5.9019: attempt to clear invalid blocks 2 len 1 [ 242.364845][T24094] EXT4-fs (loop5): Remounting filesystem read-only [ 242.372489][T24094] EXT4-fs (loop5): 1 truncate cleaned up [ 242.378905][T24100] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9015'. [ 242.381125][T24094] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 242.402761][T24100] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9015'. [ 242.506725][T22070] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 242.534805][T24119] netlink: 28 bytes leftover after parsing attributes in process `syz.1.9032'. [ 242.544114][T24119] netlink: 28 bytes leftover after parsing attributes in process `syz.1.9032'. [ 242.553173][T24119] netlink: 28 bytes leftover after parsing attributes in process `syz.1.9032'. [ 242.591179][T24123] wireguard0: entered promiscuous mode [ 242.596740][T24123] wireguard0: entered allmulticast mode [ 242.657468][T24134] openvswitch: netlink: Missing key (keys=40, expected=100) [ 242.838417][T24155] netlink: 16 bytes leftover after parsing attributes in process `syz.4.9044'. [ 242.847511][T24155] netlink: 24 bytes leftover after parsing attributes in process `syz.4.9044'. [ 242.908281][T24155] macvlan0: entered allmulticast mode [ 242.913873][T24155] veth1_vlan: entered allmulticast mode [ 242.944512][T24163] set_capacity_and_notify: 10 callbacks suppressed [ 242.944535][T24163] loop0: detected capacity change from 0 to 512 [ 243.046341][T24172] openvswitch: netlink: Missing key (keys=40, expected=80) [ 243.085165][T24163] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.9051: inode has both inline data and extents flags [ 243.120962][T24163] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.9051: couldn't read orphan inode 15 (err -117) [ 243.247812][T24163] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 243.269013][T24181] wireguard0: entered promiscuous mode [ 243.274575][T24181] wireguard0: entered allmulticast mode [ 243.313351][ T3319] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 243.462742][T24196] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 243.472726][T24196] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 243.514902][T24196] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 243.524814][T24196] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 243.572303][T24196] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 243.582242][T24196] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 243.645567][T24218] SELinux: Context system_u:object_r:ppp_device_t:s0 is not valid (left unmapped). [ 243.686318][T24196] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 243.696273][T24196] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 243.739752][T24231] netlink: 24 bytes leftover after parsing attributes in process `syz.3.9082'. [ 243.782647][ T886] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 243.791025][ T886] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 243.825110][T24239] loop0: detected capacity change from 0 to 512 [ 243.836885][ T886] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 243.845235][ T886] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 243.854017][T24239] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 243.864386][ T886] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 243.872750][ T886] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 243.901602][ T886] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 243.909908][ T886] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 243.920697][T24239] EXT4-fs (loop0): 1 truncate cleaned up [ 243.936045][T24239] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 243.994266][ T3319] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 244.104687][T24270] loop0: detected capacity change from 0 to 764 [ 244.136275][T24270] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 244.306701][T24288] 9p: Bad value for 'rfdno' [ 244.329455][T24290] IPv6: NLM_F_CREATE should be specified when creating new route [ 244.525152][T24320] loop5: detected capacity change from 0 to 1764 [ 244.587803][T24326] netlink: 'syz.5.9128': attribute type 10 has an invalid length. [ 244.596020][T24326] lo: entered promiscuous mode [ 244.603528][T24326] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 244.827024][T24356] loop1: detected capacity change from 0 to 512 [ 244.836594][T24356] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 244.853035][T24356] EXT4-fs warning (device loop1): dx_probe:837: inode #2: comm syz.1.9141: Unimplemented hash flags: 0x0001 [ 244.864751][T24356] EXT4-fs warning (device loop1): dx_probe:934: inode #2: comm syz.1.9141: Corrupt directory, running e2fsck is recommended [ 244.919195][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 244.981224][T24367] loop1: detected capacity change from 0 to 1024 [ 244.988853][T24367] EXT4-fs: Ignoring removed mblk_io_submit option [ 245.001332][T24367] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 245.020456][T24367] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.9146: bad orphan inode 11 [ 245.042923][T24367] ext4_test_bit(bit=10, block=4) = 1 [ 245.048410][T24367] is_bad_inode(inode)=0 [ 245.052653][T24367] NEXT_ORPHAN(inode)=3254779904 [ 245.057570][T24367] max_ino=32 [ 245.060788][T24367] i_nlink=0 [ 245.066680][T24367] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 2: comm syz.1.9146: lblock 2 mapped to illegal pblock 2 (length 1) [ 245.095674][T24367] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 48: comm syz.1.9146: lblock 0 mapped to illegal pblock 48 (length 1) [ 245.126682][T24367] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.9146: Failed to acquire dquot type 0 [ 245.126728][T24380] random: crng reseeded on system resumption [ 245.138425][T24367] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6298: Corrupt filesystem [ 245.138552][T24367] EXT4-fs error (device loop1): ext4_evict_inode:253: inode #11: comm syz.1.9146: mark_inode_dirty error [ 245.138700][T24367] EXT4-fs warning (device loop1): ext4_evict_inode:256: couldn't mark inode dirty (err -117) [ 245.139285][T24367] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 245.189490][T24384] loop4: detected capacity change from 0 to 512 [ 245.213382][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 245.224637][T24384] EXT4-fs warning (device loop4): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 245.236883][T24384] EXT4-fs warning (device loop4): dx_probe:849: Enable large directory feature to access it [ 245.248772][T24384] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.9154: Corrupt directory, running e2fsck is recommended [ 245.263473][ T3316] EXT4-fs error (device loop1): __ext4_get_inode_loc:4830: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 245.283405][T24384] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117 [ 245.293180][T24384] EXT4-fs error (device loop4): ext4_iget_extra_inode:5073: inode #15: comm syz.4.9154: corrupted in-inode xattr: e_name out of bounds [ 245.307708][T24384] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.9154: couldn't read orphan inode 15 (err -117) [ 245.316622][ T3316] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6298: Corrupt filesystem [ 245.348892][ T3316] EXT4-fs error (device loop1): ext4_quota_off:7270: inode #3: comm syz-executor: mark_inode_dirty error [ 245.364231][T24392] loop5: detected capacity change from 0 to 512 [ 245.375334][T24384] EXT4-fs warning (device loop4): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 245.386942][T24384] EXT4-fs warning (device loop4): dx_probe:849: Enable large directory feature to access it [ 245.398025][T24384] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.9154: Corrupt directory, running e2fsck is recommended [ 245.435549][T24384] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 3: comm syz.4.9154: path /1889/file0: bad entry in directory: directory entry overrun - offset=0, inode=4294967295, rec_len=65552, size=1024 fake=0 [ 245.465989][T24384] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 8: comm syz.4.9154: path /1889/file0: bad entry in directory: inode out of bounds - offset=0, inode=16810477, rec_len=1024, size=1024 fake=0 [ 245.595630][T24419] netlink: 'syz.4.9171': attribute type 7 has an invalid length. [ 245.706795][T24438] loop3: detected capacity change from 0 to 256 [ 245.728174][T24438] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 245.761678][T24438] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 245.827611][T24456] netlink: 'syz.1.9189': attribute type 12 has an invalid length. [ 245.971555][T24477] loop1: detected capacity change from 0 to 128 [ 246.077746][T24489] ext4 filesystem being mounted at /172/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 246.170082][T24509] netem: incorrect gi model size [ 246.175190][T24509] netem: change failed [ 246.196699][ T29] kauditd_printk_skb: 90 callbacks suppressed [ 246.196724][ T29] audit: type=1400 audit(2000000055.887:2663): avc: denied { create } for pid=24510 comm="syz.4.9213" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1 [ 246.284630][ T29] audit: type=1400 audit(2000000055.929:2664): avc: denied { ioctl } for pid=24510 comm="syz.4.9213" path="socket:[70472]" dev="sockfs" ino=70472 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1 [ 246.310527][ T29] audit: type=1400 audit(2000000055.929:2665): avc: denied { bind } for pid=24510 comm="syz.4.9213" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1 [ 246.330048][ T29] audit: type=1326 audit(2000000055.950:2666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24515 comm="syz.5.9216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe9becf749 code=0x7ffc0000 [ 246.354672][ T29] audit: type=1326 audit(2000000055.950:2667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24515 comm="syz.5.9216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe9becf749 code=0x7ffc0000 [ 246.378608][ T29] audit: type=1326 audit(2000000055.950:2668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24515 comm="syz.5.9216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efe9becf749 code=0x7ffc0000 [ 246.403312][ T29] audit: type=1326 audit(2000000055.950:2669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24515 comm="syz.5.9216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe9becf749 code=0x7ffc0000 [ 246.427617][ T29] audit: type=1326 audit(2000000055.950:2670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24515 comm="syz.5.9216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe9becf749 code=0x7ffc0000 [ 246.451753][ T29] audit: type=1326 audit(2000000055.950:2671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24515 comm="syz.5.9216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=103 compat=0 ip=0x7efe9becf749 code=0x7ffc0000 [ 246.505024][T24525] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 246.529306][ T385] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 246.544941][ T29] audit: type=1326 audit(2000000056.129:2672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24515 comm="syz.5.9216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe9becf749 code=0x7ffc0000 [ 246.628608][T24539] __nla_validate_parse: 5 callbacks suppressed [ 246.628624][T24539] netlink: 44 bytes leftover after parsing attributes in process `syz.0.9227'. [ 246.643906][T24539] netlink: 59 bytes leftover after parsing attributes in process `syz.0.9227'. [ 246.653101][T24539] netlink: 59 bytes leftover after parsing attributes in process `syz.0.9227'. [ 246.688980][T24545] netlink: 212 bytes leftover after parsing attributes in process `syz.5.9230'. [ 246.861835][T24566] netlink: 'syz.4.9237': attribute type 1 has an invalid length. [ 246.911139][T24570] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.9240: Failed to acquire dquot type 1 [ 246.932632][T24570] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.9240: Failed to acquire dquot type 1 [ 247.021713][T24570] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.9240: bg 0: block 248: padding at end of block bitmap is not set [ 247.068079][T24570] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6689: Corrupt filesystem [ 247.085427][T24570] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.9240: Failed to acquire dquot type 1 [ 247.097056][T24570] EXT4-fs (loop1): 1 orphan inode deleted [ 247.103547][T24570] ext4 filesystem being mounted at /1849/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 247.114996][T24591] netlink: 'syz.5.9250': attribute type 1 has an invalid length. [ 247.132329][T24570] EXT4-fs (loop1): shut down requested (1) [ 247.146170][T24594] vhci_hcd vhci_hcd.0: invalid port number 9 [ 247.152417][T24594] vhci_hcd vhci_hcd.0: default hub control req: 0512 v0000 i0009 l0 [ 247.191743][T24592] EXT4-fs (loop4): failed to initialize system zone (-117) [ 247.210540][T24592] EXT4-fs (loop4): mount failed [ 247.314655][T24621] EXT4-fs: Ignoring removed bh option [ 247.347433][T24621] EXT4-fs error (device loop5): ext4_read_inline_dir:1486: inode #12: block 7: comm syz.5.9263: path /185/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=40, inode=14, rec_len=40, size=80 fake=0 [ 247.369886][T24621] EXT4-fs (loop5): Remounting filesystem read-only [ 247.410488][T24634] random: crng reseeded on system resumption [ 247.437886][T24639] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 247.455445][T24639] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm +}[@: bg 0: block 4: invalid block bitmap [ 247.493673][T24639] EXT4-fs (loop0): Remounting filesystem read-only [ 247.500644][T24639] EXT4-fs (loop0): 1 truncate cleaned up [ 247.514070][T24648] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 247.532344][T24648] EXT4-fs (loop5): 1 truncate cleaned up [ 247.605774][T24664] ext4 filesystem being mounted at /1856/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 247.622096][T24666] netlink: 8 bytes leftover after parsing attributes in process `syz.5.9282'. [ 247.695665][ T52] Bluetooth: hci0: Frame reassembly failed (-84) [ 247.709052][T24675] netlink: 'syz.0.9287': attribute type 13 has an invalid length. [ 247.717207][T24675] netlink: 24859 bytes leftover after parsing attributes in process `syz.0.9287'. [ 247.753429][T24681] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT [ 247.768605][T24683] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9291'. [ 247.779424][T24683] netlink: 312 bytes leftover after parsing attributes in process `syz.1.9291'. [ 247.788678][T24683] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9291'. [ 247.800359][T24685] netlink: 104 bytes leftover after parsing attributes in process `syz.5.9292'. [ 248.064597][T24724] set_capacity_and_notify: 10 callbacks suppressed [ 248.064619][T24724] loop5: detected capacity change from 0 to 128 [ 248.515064][T11085] hid_parser_main: 80 callbacks suppressed [ 248.515089][T11085] hid-generic 0000:0000:FFFFFFFC.0007: unknown main item tag 0x0 [ 248.528781][T11085] hid-generic 0000:0000:FFFFFFFC.0007: unknown main item tag 0x0 [ 248.537581][T24745] loop5: detected capacity change from 0 to 512 [ 248.537583][T11085] hid-generic 0000:0000:FFFFFFFC.0007: unknown main item tag 0x0 [ 248.552122][T11085] hid-generic 0000:0000:FFFFFFFC.0007: unknown main item tag 0x0 [ 248.560250][T11085] hid-generic 0000:0000:FFFFFFFC.0007: unknown main item tag 0x0 [ 248.569100][T11085] hid-generic 0000:0000:FFFFFFFC.0007: unknown main item tag 0x0 [ 248.577047][T11085] hid-generic 0000:0000:FFFFFFFC.0007: unknown main item tag 0x0 [ 248.584858][T11085] hid-generic 0000:0000:FFFFFFFC.0007: unknown main item tag 0x0 [ 248.593621][T11085] hid-generic 0000:0000:FFFFFFFC.0007: unknown main item tag 0x0 [ 248.601514][T11085] hid-generic 0000:0000:FFFFFFFC.0007: unknown main item tag 0x0 [ 248.607332][T24745] EXT4-fs (loop5): 1 orphan inode deleted [ 248.619506][T11085] hid-generic 0000:0000:FFFFFFFC.0007: hidraw0: HID v8.00 Device [syz0] on syz0 [ 248.706208][T24764] netlink: 'syz.0.9330': attribute type 1 has an invalid length. [ 248.744763][T24769] SELinux: security_context_str_to_sid () failed with errno=-22 [ 248.863228][T24785] pimreg3: entered allmulticast mode [ 248.907453][T24791] loop5: detected capacity change from 0 to 1024 [ 248.907734][T24791] EXT4-fs: Ignoring removed nomblk_io_submit option [ 248.921292][T24795] loop4: detected capacity change from 0 to 512 [ 248.929819][T24795] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 248.940962][T24795] EXT4-fs error (device loop4): ext4_get_branch:178: inode #11: block 4294967295: comm syz.4.9345: invalid block [ 248.954103][T24795] EXT4-fs (loop4): Remounting filesystem read-only [ 248.960743][T24795] EXT4-fs (loop4): 2 truncates cleaned up [ 248.972653][T24791] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.9343: bg 0: block 145: padding at end of block bitmap is not set [ 249.059296][T24812] loop4: detected capacity change from 0 to 2048 [ 249.089191][T24812] EXT4-fs error (device loop4): ext4_find_extent:939: inode #2: comm syz.4.9352: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 249.123588][T24817] netlink: 'syz.5.9354': attribute type 39 has an invalid length. [ 249.175615][T24827] program syz.4.9358 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 249.202664][T24829] loop0: detected capacity change from 0 to 512 [ 249.202698][T24831] netlink: 'syz.4.9360': attribute type 14 has an invalid length. [ 249.222422][T24829] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 249.242139][T24829] EXT4-fs error (device loop0): ext4_get_branch:178: inode #11: block 4294967295: comm syz.0.9359: invalid block [ 249.260395][T24829] EXT4-fs (loop0): Remounting filesystem read-only [ 249.267545][T24829] EXT4-fs (loop0): 2 truncates cleaned up [ 249.387252][T24857] netlink: 'syz.0.9372': attribute type 14 has an invalid length. [ 249.393157][T11085] hid-generic 0000:0000:FFFFFFFC.0008: hidraw0: HID v8.00 Device [syz0] on syz0 [ 249.510001][ T3482] hid-generic 0000:0000:0004.0009: hidraw0: HID v0.03 Device [syz1] on syz0 [ 249.520884][T24870] loop1: detected capacity change from 0 to 512 [ 249.537190][T24870] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 249.563093][T24870] EXT4-fs error (device loop1): ext4_get_branch:178: inode #11: block 4294967295: comm syz.1.9377: invalid block [ 249.576538][T24870] EXT4-fs (loop1): Remounting filesystem read-only [ 249.583639][T24870] EXT4-fs (loop1): 2 truncates cleaned up [ 249.656458][ T3557] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 249.964752][T24907] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 249.974298][T24907] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 250.046485][T24937] openvswitch: netlink: Missing key (keys=40, expected=100) [ 250.074975][T24939] team0 (unregistering): Port device team_slave_0 removed [ 250.087812][T24939] team0 (unregistering): Port device team_slave_1 removed [ 250.591861][T24942] openvswitch: netlink: Missing key (keys=40, expected=80) [ 250.690282][T24956] smc: net device hsr0 applied user defined pnetid SYZ2 [ 250.698335][T24956] smc: net device hsr0 erased user defined pnetid SYZ2 [ 250.721160][T24945] syz.5.9413 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 250.732378][T24945] CPU: 0 UID: 0 PID: 24945 Comm: syz.5.9413 Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 250.732499][T24945] Tainted: [W]=WARN [ 250.732508][T24945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 250.732526][T24945] Call Trace: [ 250.732538][T24945] [ 250.732546][T24945] __dump_stack+0x1d/0x30 [ 250.732635][T24945] dump_stack_lvl+0x95/0xd0 [ 250.732656][T24945] dump_stack+0x15/0x1b [ 250.732681][T24945] dump_header+0x81/0x240 [ 250.732709][T24945] oom_kill_process+0x295/0x350 [ 250.732740][T24945] out_of_memory+0x97b/0xb80 [ 250.732764][T24945] try_charge_memcg+0x610/0xa10 [ 250.732889][T24945] charge_memcg+0x51/0xc0 [ 250.732935][T24945] mem_cgroup_swapin_charge_folio+0xcc/0x150 [ 250.733043][T24945] __read_swap_cache_async+0x17b/0x2d0 [ 250.733103][T24945] swap_cluster_readahead+0x262/0x3c0 [ 250.733145][T24945] swapin_readahead+0xde/0x820 [ 250.733183][T24945] ? mod_memcg_lruvec_state+0x1a1/0x280 [ 250.733243][T24945] ? lruvec_stat_mod_folio+0xd6/0x120 [ 250.733316][T24945] ? __rcu_read_unlock+0x4f/0x70 [ 250.733337][T24945] ? swap_cache_get_folio+0x277/0x280 [ 250.733367][T24945] do_swap_page+0x2b4/0x21e0 [ 250.733435][T24945] ? __pfx_default_wake_function+0x10/0x10 [ 250.733471][T24945] handle_mm_fault+0x9d8/0x2c60 [ 250.733545][T24945] do_user_addr_fault+0x630/0x1080 [ 250.733588][T24945] exc_page_fault+0x62/0xa0 [ 250.733628][T24945] asm_exc_page_fault+0x26/0x30 [ 250.733704][T24945] RIP: 0033:0x7efe9bda59c8 [ 250.733724][T24945] Code: 48 f7 f1 48 01 d8 49 39 c4 4c 0f 42 e0 83 3d fa 23 38 00 00 0f 8e 09 fe ff ff e8 23 98 fe ff 49 39 c4 72 66 66 0f 1f 44 00 00 <69> 3d c6 fc ea 00 e8 03 00 00 48 8d 1d c7 05 38 00 e8 c2 9c 12 00 [ 250.733748][T24945] RSP: 002b:00007ffd15bc2730 EFLAGS: 00010212 [ 250.733768][T24945] RAX: 000000000003d68d RBX: 00007efe9c127da0 RCX: 000000000003d478 [ 250.733901][T24945] RDX: 0000000000000215 RSI: 00007ffd15bc2710 RDI: 0000000000000001 [ 250.733919][T24945] RBP: 00007efe9c127da0 R08: 000000001fcaf777 R09: 7fffffffffffffff [ 250.733945][T24945] R10: 3fffffffffffffff R11: 0000000000000293 R12: 000000000003d931 [ 250.733958][T24945] R13: 00007ffd15bc2820 R14: ffffffffffffffff R15: 00007ffd15bc2840 [ 250.733978][T24945] [ 250.948585][T24945] memory: usage 289520kB, limit 307200kB, failcnt 190 [ 250.955428][T24945] memory+swap: usage 284996kB, limit 9007199254740988kB, failcnt 0 [ 250.963372][T24945] kmem: usage 276832kB, limit 9007199254740988kB, failcnt 0 [ 250.970695][T24945] Memory cgroup stats for /syz5: [ 250.999818][T24945] cache 0 [ 251.007917][T24945] rss 4096 [ 251.010993][T24945] shmem 0 [ 251.013952][T24945] mapped_file 0 [ 251.017462][T24945] dirty 0 [ 251.020458][T24945] writeback 4096 [ 251.024025][T24945] workingset_refault_anon 9 [ 251.028655][T24945] workingset_refault_file 0 [ 251.033214][T24945] swap 143360 [ 251.036525][T24945] swapcached 20480 [ 251.040389][T24945] pgpgin 28605 [ 251.043792][T24945] pgpgout 28599 [ 251.047293][T24945] pgfault 24878 [ 251.050776][T24945] pgmajfault 2 [ 251.054211][T24945] inactive_anon 4096 [ 251.058177][T24945] active_anon 16384 [ 251.062073][T24945] inactive_file 4096 [ 251.065994][T24945] active_file 0 [ 251.069605][T24945] unevictable 0 [ 251.073135][T24945] hierarchical_memory_limit 314572800 [ 251.078625][T24945] hierarchical_memsw_limit 9223372036854771712 [ 251.084928][T24945] total_cache 0 [ 251.088548][T24945] total_rss 4096 [ 251.092213][T24945] total_shmem 0 [ 251.095749][T24945] total_mapped_file 0 [ 251.099787][T24945] total_dirty 0 [ 251.103298][T24945] total_writeback 4096 [ 251.107693][T24945] total_workingset_refault_anon 9 [ 251.112758][T24945] total_workingset_refault_file 0 [ 251.117948][T24945] total_swap 143360 [ 251.121794][T24945] total_swapcached 20480 [ 251.126100][T24945] total_pgpgin 28605 [ 251.130022][T24945] total_pgpgout 28599 [ 251.134145][T24945] total_pgfault 24878 [ 251.138228][T24945] total_pgmajfault 2 [ 251.142196][T24945] total_inactive_anon 4096 [ 251.146678][T24945] total_active_anon 16384 [ 251.151123][T24945] total_inactive_file 4096 [ 251.155608][T24945] total_active_file 0 [ 251.159620][T24945] total_unevictable 0 [ 251.163752][T24945] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz5,task_memcg=/syz5,task=syz.5.9413,pid=24945,uid=0 [ 251.178641][T24945] Memory cgroup out of memory: Killed process 24945 (syz.5.9413) total-vm:95884kB, anon-rss:1136kB, file-rss:21800kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000 [ 251.194299][ T29] kauditd_printk_skb: 1131 callbacks suppressed [ 251.194357][ T29] audit: type=1400 audit(2000000061.126:3798): avc: denied { name_bind } for pid=24960 comm="syz.4.9420" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1 [ 251.251991][T24967] random: crng reseeded on system resumption [ 251.261349][T24968] loop1: detected capacity change from 0 to 128 [ 251.268744][T24968] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 251.279298][T24968] ext2 filesystem being mounted at /1877/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 251.306790][ T29] audit: type=1400 audit(2000000061.252:3799): avc: denied { create } for pid=24965 comm="syz.1.9422" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 251.334362][ T29] audit: type=1400 audit(2000000061.284:3800): avc: denied { remove_name } for pid=24965 comm="syz.1.9422" name="file0" dev="loop1" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 251.357388][ T29] audit: type=1400 audit(2000000061.284:3801): avc: denied { rename } for pid=24965 comm="syz.1.9422" name="file0" dev="loop1" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 251.379408][ T29] audit: type=1400 audit(2000000061.284:3802): avc: denied { rmdir } for pid=24965 comm="syz.1.9422" name="file7" dev="loop1" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 251.433169][T24976] Process accounting resumed [ 251.453609][T24983] loop5: detected capacity change from 0 to 512 [ 251.493119][T24983] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 251.516982][T24983] EXT4-fs (loop5): 1 truncate cleaned up [ 251.582767][T24996] loop1: detected capacity change from 0 to 1024 [ 251.667696][T25012] __nla_validate_parse: 15 callbacks suppressed [ 251.667714][T25012] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9441'. [ 251.699217][T25012] team_slave_0: left promiscuous mode [ 251.707384][T25012] team0 (unregistering): Port device team_slave_0 removed [ 251.718101][T25012] team_slave_1: left promiscuous mode [ 251.736521][T25012] team0 (unregistering): Port device team_slave_1 removed [ 251.873934][ T29] audit: type=1400 audit(2000000061.851:3803): avc: denied { create } for pid=25020 comm="syz.5.9447" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 251.910265][ T29] audit: type=1400 audit(2000000061.851:3804): avc: denied { connect } for pid=25020 comm="syz.5.9447" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 252.004835][T25025] 9p: Bad value for 'source' [ 252.228123][ T29] audit: type=1326 audit(2000000062.134:3805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25026 comm="syz.5.9451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe9becf749 code=0x7ffc0000 [ 252.252762][ T29] audit: type=1326 audit(2000000062.134:3806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25026 comm="syz.5.9451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe9becf749 code=0x7ffc0000 [ 252.277777][ T29] audit: type=1326 audit(2000000062.134:3807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25026 comm="syz.5.9451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efe9becf749 code=0x7ffc0000 [ 252.360668][T25032] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 252.410089][T25032] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 252.503644][ T6357] syz_tun (unregistering): left allmulticast mode [ 252.572912][T25042] random: crng reseeded on system resumption [ 252.620465][T25048] netlink: 4 bytes leftover after parsing attributes in process `syz.5.9460'. [ 252.641257][T25048] team0 (unregistering): Port device team_slave_0 removed [ 252.654142][T25048] team0 (unregistering): Port device team_slave_1 removed [ 252.677450][ T52] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 252.687460][ T52] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 252.755261][ T52] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 252.766035][ T52] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 252.849357][ T52] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 252.859384][ T52] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 252.922541][T25064] lo speed is unknown, defaulting to 1000 [ 252.948964][ T52] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 252.959004][ T52] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 253.194327][ T52] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 253.210477][ T52] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 253.220845][ T52] bond0 (unregistering): Released all slaves [ 253.230270][ T52] bond1 (unregistering): Released all slaves [ 253.251443][T25064] chnl_net:caif_netlink_parms(): no params data found [ 253.423897][ T52] tipc: Disabling bearer [ 253.457013][ T52] tipc: Disabling bearer [ 253.462333][ T52] tipc: Left network mode [ 253.628354][T25064] bridge0: port 1(bridge_slave_0) entered blocking state [ 253.635645][T25064] bridge0: port 1(bridge_slave_0) entered disabled state [ 253.691599][T25064] bridge_slave_0: entered allmulticast mode [ 253.708526][T25064] bridge_slave_0: entered promiscuous mode [ 253.742703][ T52] hsr_slave_0: left promiscuous mode [ 253.776143][ T52] hsr_slave_1: left promiscuous mode [ 253.784757][ T52] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 253.792384][ T52] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 253.851513][ T52] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 253.859162][ T52] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 253.872369][T25105] loop4: detected capacity change from 0 to 1764 [ 253.883109][T25109] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9483'. [ 253.898185][ T52] veth1_vlan: left promiscuous mode [ 253.920081][ T52] veth0_vlan: left promiscuous mode [ 253.974680][T25117] loop3: detected capacity change from 0 to 2048 [ 253.995086][T25117] EXT4-fs: Ignoring removed mblk_io_submit option [ 254.019864][T25119] netlink: 'syz.4.9489': attribute type 10 has an invalid length. [ 254.033457][T25117] EXT4-fs mount: 34 callbacks suppressed [ 254.033479][T25117] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 254.093668][ T3325] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 254.123627][T25064] bridge0: port 2(bridge_slave_1) entered blocking state [ 254.130882][T25064] bridge0: port 2(bridge_slave_1) entered disabled state [ 254.144362][T25064] bridge_slave_1: entered allmulticast mode [ 254.151091][T25064] bridge_slave_1: entered promiscuous mode [ 254.176503][T25109] team0 (unregistering): Port device team_slave_0 removed [ 254.186925][T25109] team0 (unregistering): Port device team_slave_1 removed [ 254.200636][T25109] team0 (unregistering): Port device dummy0 removed [ 254.215153][T25119] lo: entered promiscuous mode [ 254.222078][T25119] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 254.250364][T11085] lo speed is unknown, defaulting to 1000 [ 254.256290][T11085] syz2: Port: 1 Link DOWN [ 254.263304][T25064] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 254.274779][T25064] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 254.299227][T25064] team0: Port device team_slave_0 added [ 254.315073][T25064] team0: Port device team_slave_1 added [ 254.345504][T25064] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 254.352698][T25064] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 254.379580][T25064] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 254.390957][T25064] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 254.397949][T25064] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 254.425011][T25064] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 254.453969][T25064] hsr_slave_0: entered promiscuous mode [ 254.460355][T25064] hsr_slave_1: entered promiscuous mode [ 254.466353][T25064] debugfs: 'hsr0' already exists in 'hsr' [ 254.472553][T25064] Cannot create hsr debugfs directory [ 254.506583][ T52] IPVS: stop unused estimator thread 0... [ 254.549157][T25064] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 254.559758][T25064] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 254.568910][T25064] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 254.578352][T25064] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 254.615424][T25064] 8021q: adding VLAN 0 to HW filter on device bond0 [ 254.635075][T25064] 8021q: adding VLAN 0 to HW filter on device team0 [ 254.645293][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 254.652584][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 254.665135][ T31] bridge0: port 2(bridge_slave_1) entered blocking state [ 254.672402][ T31] bridge0: port 2(bridge_slave_1) entered forwarding state [ 254.746183][T25064] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 254.871088][T25064] veth0_vlan: entered promiscuous mode [ 254.879597][T25064] veth1_vlan: entered promiscuous mode [ 254.897456][T25064] veth0_macvtap: entered promiscuous mode [ 254.905624][T25064] veth1_macvtap: entered promiscuous mode [ 254.918474][T25064] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 254.931861][T25064] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 254.945561][T21991] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 254.956754][T21991] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 254.967003][T21991] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 254.976318][T21991] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 255.040736][T25173] loop5: detected capacity change from 0 to 128 [ 255.644395][T25193] atomic_op ffff88810519f928 conn xmit_atomic 0000000000000000 [ 255.712827][T25199] netlink: 'syz.6.9508': attribute type 10 has an invalid length. [ 255.721135][T25199] lo: entered promiscuous mode [ 255.727655][T25199] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 255.787629][T25207] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 0 [ 255.812397][T25206] vhci_hcd vhci_hcd.0: invalid port number 23 [ 255.946066][T25225] netlink: 68 bytes leftover after parsing attributes in process `syz.3.9525'. [ 255.977487][T25230] loop0: detected capacity change from 0 to 1024 [ 255.994803][T25230] EXT4-fs: Ignoring removed mblk_io_submit option [ 256.008355][T25230] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 256.050310][T25230] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz.0.9527: bad orphan inode 11 [ 256.071896][T25238] netlink: 4 bytes leftover after parsing attributes in process `syz.6.9529'. [ 256.087383][T25230] ext4_test_bit(bit=10, block=4) = 1 [ 256.092825][T25230] is_bad_inode(inode)=0 [ 256.097115][T25230] NEXT_ORPHAN(inode)=3254779904 [ 256.102092][T25230] max_ino=32 [ 256.105379][T25230] i_nlink=0 [ 256.113094][T25238] team0 (unregistering): Port device team_slave_0 removed [ 256.124007][T25238] team0 (unregistering): Port device team_slave_1 removed [ 256.141327][T25230] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 2: comm syz.0.9527: lblock 2 mapped to illegal pblock 2 (length 1) [ 256.155842][T25230] __quota_error: 124 callbacks suppressed [ 256.155864][T25230] Quota error (device loop0): qtree_write_dquot: dquota write failed [ 256.170496][T25230] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 48: comm syz.0.9527: lblock 0 mapped to illegal pblock 48 (length 1) [ 256.185330][T25230] Quota error (device loop0): v2_write_file_info: Can't write info structure [ 256.194460][T25230] EXT4-fs error (device loop0): ext4_acquire_dquot:6986: comm syz.0.9527: Failed to acquire dquot type 0 [ 256.206530][T25230] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6298: Corrupt filesystem [ 256.219671][T25230] EXT4-fs error (device loop0): ext4_evict_inode:253: inode #11: comm syz.0.9527: mark_inode_dirty error [ 256.231944][T25230] EXT4-fs warning (device loop0): ext4_evict_inode:256: couldn't mark inode dirty (err -117) [ 256.243025][T25230] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 256.275596][ T3319] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 256.285237][ T3319] EXT4-fs error (device loop0): __ext4_get_inode_loc:4830: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 256.300327][ T3319] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6298: Corrupt filesystem [ 256.310479][ T3319] EXT4-fs error (device loop0): ext4_quota_off:7270: inode #3: comm syz-executor: mark_inode_dirty error [ 256.609386][ T29] audit: type=1326 audit(2000000066.817:3932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25242 comm="syz.0.9530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d1874f749 code=0x7ffc0000 [ 256.665096][ T29] audit: type=1326 audit(2000000066.848:3933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25242 comm="syz.0.9530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d1874f749 code=0x7ffc0000 [ 256.689084][ T29] audit: type=1326 audit(2000000066.848:3934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25242 comm="syz.0.9530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4d1874f749 code=0x7ffc0000 [ 256.712659][ T29] audit: type=1326 audit(2000000066.848:3935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25242 comm="syz.0.9530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d1874f749 code=0x7ffc0000 [ 256.736500][ T29] audit: type=1326 audit(2000000066.848:3936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25242 comm="syz.0.9530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d1874f749 code=0x7ffc0000 [ 256.760235][ T29] audit: type=1326 audit(2000000066.859:3937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25242 comm="syz.0.9530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4d1874f749 code=0x7ffc0000 [ 256.783799][ T29] audit: type=1326 audit(2000000066.859:3938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25242 comm="syz.0.9530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d1874f749 code=0x7ffc0000 [ 256.807366][ T29] audit: type=1326 audit(2000000066.859:3939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25242 comm="syz.0.9530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d1874f749 code=0x7ffc0000 [ 257.645310][T25247] netlink: 'syz.3.9534': attribute type 7 has an invalid length. [ 257.754739][T25263] loop3: detected capacity change from 0 to 1024 [ 257.779802][T25263] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 257.850528][ T3325] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 257.861770][T25274] dvmrp1: tun_chr_ioctl cmd 1074025677 [ 257.876237][T25274] dvmrp1: linktype set to 774 [ 258.115244][T25303] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=25303 comm=syz.4.9561 [ 258.166198][T25309] netlink: 8 bytes leftover after parsing attributes in process `syz.6.9564'. [ 258.330967][T25337] netlink: 104 bytes leftover after parsing attributes in process `syz.5.9578'. [ 258.419153][ C1] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! [ 258.470827][T25365] netlink: 212 bytes leftover after parsing attributes in process `syz.4.9590'. [ 258.520870][T25373] loop0: detected capacity change from 0 to 128 [ 258.529881][T25373] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 258.556292][T20890] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 258.581726][T25378] netlink: 'syz.0.9597': attribute type 1 has an invalid length. [ 258.648494][T25388] loop4: detected capacity change from 0 to 2048 [ 258.658491][T25388] EXT4-fs (loop4): failed to initialize system zone (-117) [ 258.665892][T25388] EXT4-fs (loop4): mount failed [ 258.819176][T25412] loop5: detected capacity change from 0 to 128 [ 258.826481][T25403] loop4: detected capacity change from 0 to 8192 [ 258.887713][T25419] loop5: detected capacity change from 0 to 512 [ 258.920950][T25419] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 258.934988][T25419] ext4 filesystem being mounted at /273/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 258.987819][T22070] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 259.008877][T25436] loop6: detected capacity change from 0 to 2048 [ 259.028736][T25436] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 259.077928][T25064] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 259.164134][T25458] loop5: detected capacity change from 0 to 128 [ 259.261089][T25473] vhci_hcd vhci_hcd.0: invalid port number 9 [ 259.267607][T25473] vhci_hcd vhci_hcd.0: default hub control req: 0512 v0000 i0009 l0 [ 259.326721][T25478] loop6: detected capacity change from 0 to 128 [ 259.336095][T25479] netlink: 'syz.5.9641': attribute type 12 has an invalid length. [ 259.396849][T25486] random: crng reseeded on system resumption [ 259.461657][T25495] loop4: detected capacity change from 0 to 1024 [ 259.469486][T25495] EXT4-fs: Ignoring removed mblk_io_submit option [ 259.493795][T25495] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 259.741960][T25528] loop3: detected capacity change from 0 to 512 [ 259.773007][T25528] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.9672: Failed to acquire dquot type 1 [ 259.795457][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 259.809153][T25528] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.9672: Failed to acquire dquot type 1 [ 259.839778][T25528] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.9672: bg 0: block 248: padding at end of block bitmap is not set [ 259.891971][T25528] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6689: Corrupt filesystem [ 259.906234][T25523] ================================================================== [ 259.914560][T25523] BUG: KCSAN: data-race in __filemap_remove_folio / folio_mapping [ 259.922390][T25523] [ 259.924721][T25523] write to 0xffffea000423a058 of 8 bytes by task 25527 on cpu 1: [ 259.932446][T25523] __filemap_remove_folio+0x1a5/0x2a0 [ 259.937858][T25523] filemap_remove_folio+0x6d/0x1d0 [ 259.943080][T25523] truncate_inode_folio+0x42/0x50 [ 259.948214][T25523] shmem_undo_range+0x244/0xa80 [ 259.953093][T25523] shmem_fallocate+0x7ef/0x890 [ 259.957897][T25523] vfs_fallocate+0x3b6/0x400 [ 259.962629][T25523] file_ioctl+0x453/0x530 [ 259.967235][T25523] do_vfs_ioctl+0x7ca/0xe10 [ 259.971948][T25523] __se_sys_ioctl+0x82/0x140 [ 259.976583][T25523] __x64_sys_ioctl+0x43/0x50 [ 259.981207][T25523] x64_sys_call+0x14b0/0x3000 [ 259.986014][T25523] do_syscall_64+0xca/0x2b0 [ 259.990641][T25523] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 259.996560][T25523] [ 259.998905][T25523] read to 0xffffea000423a058 of 8 bytes by task 25523 on cpu 0: [ 260.006552][T25523] folio_mapping+0xa1/0xe0 [ 260.010998][T25523] move_folios_to_lru+0x128/0x6c0 [ 260.016030][T25523] evict_folios+0x31d9/0x35a0 [ 260.020713][T25523] try_to_shrink_lruvec+0x5b5/0x950 [ 260.025927][T25523] shrink_lruvec+0x22e/0x1b50 [ 260.030633][T25523] shrink_node+0x66c/0x2010 [ 260.035154][T25523] do_try_to_free_pages+0x3f6/0xcd0 [ 260.040472][T25523] try_to_free_mem_cgroup_pages+0x1ab/0x410 [ 260.046395][T25523] try_charge_memcg+0x383/0xa10 [ 260.051266][T25523] obj_cgroup_charge_pages+0xa6/0x150 [ 260.056937][T25523] __memcg_kmem_charge_page+0x9f/0x170 [ 260.062463][T25523] __alloc_frozen_pages_noprof+0x18f/0x360 [ 260.068318][T25523] alloc_pages_mpol+0xb3/0x260 [ 260.073105][T25523] alloc_pages_noprof+0x90/0x130 [ 260.078103][T25523] __vmalloc_node_range_noprof+0xa7b/0x1310 [ 260.084093][T25523] __kvmalloc_node_noprof+0x492/0x6b0 [ 260.089583][T25523] ip_set_alloc+0x24/0x30 [ 260.093942][T25523] hash_netiface_create+0x282/0x740 [ 260.099188][T25523] ip_set_create+0x3cc/0x970 [ 260.103901][T25523] nfnetlink_rcv_msg+0x4c6/0x590 [ 260.108892][T25523] netlink_rcv_skb+0x123/0x220 [ 260.113708][T25523] nfnetlink_rcv+0x167/0x16c0 [ 260.118499][T25523] netlink_unicast+0x5c0/0x690 [ 260.123299][T25523] netlink_sendmsg+0x58b/0x6b0 [ 260.128092][T25523] __sock_sendmsg+0x145/0x180 [ 260.132796][T25523] ____sys_sendmsg+0x31e/0x4a0 [ 260.137586][T25523] ___sys_sendmsg+0x17b/0x1d0 [ 260.142298][T25523] __x64_sys_sendmsg+0xd4/0x160 [ 260.147227][T25523] x64_sys_call+0x17ba/0x3000 [ 260.151931][T25523] do_syscall_64+0xca/0x2b0 [ 260.156480][T25523] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 260.162413][T25523] [ 260.164741][T25523] value changed: 0xffff88811b3f3358 -> 0x0000000000000000 [ 260.171878][T25523] [ 260.174234][T25523] Reported by Kernel Concurrency Sanitizer on: [ 260.180402][T25523] CPU: 0 UID: 0 PID: 25523 Comm: syz.0.9671 Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 260.191825][T25523] Tainted: [W]=WARN [ 260.195756][T25523] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 260.205828][T25523] ================================================================== [ 260.217739][T25528] EXT4-fs error (device loop3): ext4_acquire_dquot:6986: comm syz.3.9672: Failed to acquire dquot type 1 [ 260.230045][T25528] EXT4-fs (loop3): 1 orphan inode deleted [ 260.252403][T25528] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 260.282642][T25528] ext4 filesystem being mounted at /1879/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 260.309804][T25528] EXT4-fs (loop3): shut down requested (1) [ 260.328150][ T3325] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 260.490757][T25523] syz.0.9671 (25523) used greatest stack depth: 5992 bytes left [ 261.466813][ C0] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!