last executing test programs: 14.092305274s ago: executing program 1 (id=2137): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000d40)={0x44, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x44}}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast1=0xe0004001}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x10000047}, 0x0) 14.074034355s ago: executing program 1 (id=2138): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) syz_emit_ethernet(0x4a, &(0x7f0000000000)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x9, 0x6, '\x00', 0x14, 0x6, 0xff, @dev={0xfe, 0x80, '\x00', 0x39}, @local, {[], {{0x4e22, 0x4e24, 0x41424344, 0x41424344, 0x1, 0x0, 0x5, 0x10, 0x7, 0x0, 0x3}}}}}}}, 0x0) r0 = socket$inet6(0xa, 0x2, 0x3a) bind(r0, &(0x7f0000000000)=@hci={0xa, 0x2}, 0x80) 14.036238576s ago: executing program 1 (id=2140): r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1) close(r0) r1 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x882) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 13.985287809s ago: executing program 1 (id=2142): syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2048c5, &(0x7f0000000340)=ANY=[@ANYBLOB="726f6469722c756e695f786c6174653d312c726f6469722c756e695f786c6174653d302c636865636b3d72656c617865642c73686f72746e616d653d77696e6e742c6e6f636173652c73686f72746e616d653d6c6f7765722c747a3d5554432c756e695f786c6174653d312c73686f77657865632c6e6f6e756d7461696c00002c007d88658bba9f86c7bbf19329c9a2a1c1511e3af2126ad5803a0f4e3d8521dd3f1b515a0673be6fb14db7c6534edf0e5e1d29e4f05d5c82fd3e0372c644e7ba7ccec22efc923b0beac1490e"], 0x0, 0x29f, &(0x7f0000000580)="$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") mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) mount(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x20000, 0x0) mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0) 13.956678819s ago: executing program 1 (id=2144): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) getrusage(0xffffffffffffffff, &(0x7f0000001640)) 13.69936215s ago: executing program 1 (id=2163): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000004c0)='mm_page_free\x00', r0, 0x0, 0x178}, 0x18) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000680)=ANY=[@ANYBLOB="18020000fee3ffff0000000000000000850000004100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) 13.6992422s ago: executing program 32 (id=2163): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000004c0)='mm_page_free\x00', r0, 0x0, 0x178}, 0x18) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000680)=ANY=[@ANYBLOB="18020000fee3ffff0000000000000000850000004100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) 1.116054652s ago: executing program 0 (id=2810): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) sendmmsg$inet6(r0, &(0x7f0000001480)=[{{&(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000000040)="8f", 0x1}], 0x1}}, {{&(0x7f0000000340)={0xa, 0x4e23, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x288}, 0x1c, &(0x7f0000000400)=[{&(0x7f0000000380)='2', 0x1}], 0x1}}], 0x2, 0x0) shutdown(r0, 0x1) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f0000000440), &(0x7f0000000500)=0x8) 1.085050024s ago: executing program 0 (id=2812): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x5, 0x3, 0x42, 0x40, 0xc0, 0x1, 0x1}, 0x50) syz_emit_ethernet(0x6a, &(0x7f0000000240)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @empty, @val={@val={0x88a8, 0x5, 0x0, 0x3}, {0x8100, 0x2, 0x0, 0x1}}, {@ipv6={0x86dd, @tcp={0x3, 0x6, 'uBz', 0x2c, 0x6, 0x1, @local, @rand_addr=' \x01\x00', {[@srh={0x0, 0x2, 0x4, 0x1, 0x5, 0x10, 0xf254, [@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}]}], {{0x4e24, 0x4e24, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2, 0xe, 0x0, 0x7}}}}}}}, 0x0) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000080), 0x1003, r0}, 0x38) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000001c0)={r0, &(0x7f0000000080), &(0x7f0000000180)=""/40}, 0x20) 1.077882844s ago: executing program 5 (id=2813): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1d, &(0x7f0000000040)={0x1, &(0x7f0000000200)=[{0x6, 0xf5, 0x9, 0x7fff0000}]}) r0 = io_uring_setup(0x6001, &(0x7f0000000000)={0x0, 0xeec2, 0x800, 0x2, 0x10a}) close_range(r0, r0, 0x0) clock_nanosleep(0x0, 0x0, &(0x7f0000003140)={0x0, 0x3938700}, 0x0) 1.022217986s ago: executing program 0 (id=2817): r0 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00') pread64(r0, &(0x7f0000001240)=""/102400, 0x200000, 0x300) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0xc2f00, 0x4d, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) 986.760618ms ago: executing program 4 (id=2820): r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) syz_usb_disconnect(r0) syz_usb_connect$cdc_ncm(0x3, 0x6e, &(0x7f0000000080)=ANY=[], 0x0) ioctl$EVIOCRMFF(r0, 0x41015500, 0x0) 971.201739ms ago: executing program 5 (id=2821): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000040000000000000000850000002300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000380)='kfree\x00', r0}, 0x18) r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0) write$selinux_load(r1, &(0x7f0000000c00)=ANY=[@ANYBLOB="8cff7cf9080000005345204c696e7578"], 0x10) 946.284639ms ago: executing program 5 (id=2822): r0 = syz_clone(0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0) wait4(0x0, 0x0, 0x40000000, 0x0) syz_usb_disconnect(0xffffffffffffffff) perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x90, 0x1, 0x0, 0x0, 0x0, 0x9, 0x690bb, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x0, 0x3fff8000}, 0x10, 0x800000000000032, 0x43a1bd73, 0x7, 0x3, 0x6, 0x2, 0x0, 0x10000, 0x0, 0x6}, r0, 0x4, 0xffffffffffffffff, 0x1) 861.590183ms ago: executing program 0 (id=2836): timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f00000000c0)) r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0xfffffffffffffffb]}, 0x8, 0x0) readv(r0, &(0x7f00000001c0)=[{0x0}, {&(0x7f0000001800)=""/4104, 0x1008}], 0x2) timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) 779.264376ms ago: executing program 0 (id=2829): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000054850000000400000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)=@newtaction={0x8c, 0x30, 0x1, 0x0, 0x0, {}, [{0x78, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4, 0x2}, {0xc}, {0xc}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0xfffffffffffffffe}}}]}, {0x25}, {0xc}, {0xc}}}]}]}, 0x8c}}, 0x0) 715.77774ms ago: executing program 0 (id=2831): bpf$MAP_CREATE(0x0, 0x0, 0x48) syz_usb_connect(0x2, 0x0, 0x0, 0x0) r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x2, 0x7, 0x0, 0x5, 0x2, 0x0, 0x70bd2d, 0x25dfdbff}, 0x10}}, 0x4040014) 446.599491ms ago: executing program 2 (id=2845): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0xff, 0x7ffc1ffd}]}) getrlimit(0x8, 0x0) 409.239982ms ago: executing program 2 (id=2847): r0 = socket$inet6(0xa, 0x802, 0x88) setsockopt$inet6_udp_int(r0, 0x11, 0xa, &(0x7f0000000300)=0xb3, 0x4) sendto$inet6(r0, 0x0, 0x0, 0x8801, &(0x7f0000000240)={0xa, 0x4e23, 0xcc08, @empty, 0xfffffffe}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x40000, 0x0, 0x0) 339.359006ms ago: executing program 2 (id=2849): perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x51, 0x1, 0x0, 0x0, 0x0, 0x4, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x0, @perf_config_ext={0x3, 0x8001}, 0x0, 0x2e, 0x5, 0x3, 0x2, 0x0, 0xe61b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0) sendmsg$inet(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x33fe0}], 0x1}, 0x0) 338.964325ms ago: executing program 3 (id=2850): r0 = syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$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") write$sndseq(0xffffffffffffffff, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick=0xffffff3f, {}, {}, @raw32}], 0xffc8) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40e8662e, &(0x7f0000000000)={0x9, 0x100000000, 0x7fffffffffffffff, 0x3, 0xffffffff}) 309.571686ms ago: executing program 3 (id=2851): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=@bridge_setlink={0x2c, 0x13, 0xa29, 0x70bd29, 0x0, {0x7, 0x0, 0x0, r1}, [@IFLA_AF_SPEC={0xc, 0x1a, 0x0, 0x1, [@AF_INET={0x8, 0x5, 0x0, 0x1, {0x4, 0x5}}]}]}, 0x2c}}, 0x0) 288.003008ms ago: executing program 3 (id=2852): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kmem_cache_free\x00', r1, 0x0, 0x8000}, 0x18) syz_clone3(&(0x7f00000006c0)={0x102102180, 0x0, 0x0, 0x0, {0x40}, 0x0, 0x0, 0x0, &(0x7f0000000680)=[0x0], 0x1}, 0x58) 237.51542ms ago: executing program 4 (id=2853): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x9}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x3, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000008000000000000000000910095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94) r2 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={r1, r1, 0x2f, 0x0, @void}, 0x10) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000200)={r2, r1, 0x4, r0}, 0x10) 236.4877ms ago: executing program 2 (id=2854): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000100000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x18) r1 = socket(0x10, 0x3, 0x0) write(r1, &(0x7f00000000c0)="1b0000001e005f0214fffffffffffff881ff000001000000000000", 0x1b) 223.49054ms ago: executing program 3 (id=2855): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="440000002000010000000000000000000a800800000000000000000014000200fe8000000000000000000000000000bb140001"], 0x44}, 0x1, 0x0, 0x0, 0x24040804}, 0x0) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB='\\\x00\x00\x00!'], 0x5c}}, 0x0) 182.368732ms ago: executing program 3 (id=2856): r0 = syz_io_uring_setup(0x5c6, &(0x7f0000000140)={0x0, 0x1001, 0x0, 0x6}, &(0x7f00000001c0)=0x0, &(0x7f0000000580)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4) syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1}) io_uring_enter(r0, 0x6e2, 0x3900, 0x1, 0x0, 0xe00) 182.275792ms ago: executing program 4 (id=2857): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x18) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="341000003b0007010000000000000000017c"], 0x1034}}, 0x0) 166.388803ms ago: executing program 5 (id=2858): r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x2) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r0, 0x0) r1 = syz_open_dev$usbfs(&(0x7f0000000000), 0x200, 0x102) mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x11, r1, 0xffffc000) 119.426644ms ago: executing program 2 (id=2859): r0 = socket$inet6(0xa, 0x2, 0x0) clock_gettime(0x2, &(0x7f00000002c0)={0x0, 0x0}) setsockopt$sock_timeval(r0, 0x1, 0x42, &(0x7f0000000840)={r1, r2/1000+60000}, 0x10) recvmmsg(r0, &(0x7f0000001f80)=[{{0x0, 0x0, 0x0}, 0x6}], 0x1, 0x2, 0x0) 115.188245ms ago: executing program 4 (id=2860): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000380), r0) sendmsg$NLBL_UNLABEL_C_STATICADD(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000003c0)={0x70, r2, 0x1, 0x0, 0x0, {0x4}, [@NLBL_UNLABEL_A_IPV4ADDR={0x5, 0x4, @broadcast}, @NLBL_UNLABEL_A_IPV4MASK={0x5, 0x5, @initdev={0xac, 0x1e, 0x0, 0x0}}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'hsr0\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @ipv4={'\x00', '\xff\xff', @local}}, @NLBL_UNLABEL_A_SECCTX={0x24, 0x7, 'system_u:object_r:var_lock_t:s0\x00'}]}, 0x70}}, 0x0) 104.512185ms ago: executing program 5 (id=2861): bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x39, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10) getrusage(0xffffffffffffffff, &(0x7f0000001640)) 99.845135ms ago: executing program 3 (id=2862): r0 = syz_io_uring_setup(0xbc3, &(0x7f0000001480)={0x0, 0x1064, 0x80, 0x200003, 0x1af}, &(0x7f00000001c0)=0x0, &(0x7f00000002c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x2, 0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x3, 0x0, {0x2}}) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) io_uring_enter(r0, 0x47f8, 0x0, 0x0, 0x0, 0x0) 57.648827ms ago: executing program 5 (id=2863): bpf$MAP_CREATE(0x0, 0x0, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = socket(0xa, 0x5, 0x0) sendmsg$inet_sctp(r0, &(0x7f0000001640)={&(0x7f0000000080)=@in={0x2, 0x4e24, @local}, 0x10, &(0x7f0000000280)=[{&(0x7f0000000040)=')', 0x34000}], 0x1, &(0x7f00000007c0)=[@init={0x18, 0x84, 0x0, {0x8000, 0xf, 0x5}}, @sndinfo={0x20, 0x84, 0x2, {0x89, 0x9, 0x2, 0xd}}], 0x38, 0x4008000}, 0x28008841) 51.495988ms ago: executing program 4 (id=2864): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000032500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000850000000f000000bf91000000000000b7020000002000008500000084000000b70000000000000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x18) stat(0x0, 0x0) 42.067278ms ago: executing program 2 (id=2865): r0 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) writev(r0, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}, {0x0, 0x900}], 0x2) 0s ago: executing program 4 (id=2866): mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) rmdir(&(0x7f0000000080)='./cgroup/../file0\x00') syz_clone3(&(0x7f0000000240)={0x200a00000, 0x0, 0x0, 0x0, {0x1a}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58) kernel console output (not intermixed with test programs): ributes in process `syz.2.525'. [ 51.071577][ T4914] tipc: Started in network mode [ 51.076527][ T4914] tipc: Node identity 68b, cluster identity 4711 [ 51.082889][ T4914] tipc: Node number set to 1675 [ 51.153066][ T4922] netlink: 68 bytes leftover after parsing attributes in process `syz.4.530'. [ 51.179380][ T4930] netlink: 20 bytes leftover after parsing attributes in process `syz.0.535'. [ 51.234045][ T4941] loop3: detected capacity change from 0 to 136 [ 51.243070][ T4942] loop0: detected capacity change from 0 to 128 [ 51.305753][ T4949] loop2: detected capacity change from 0 to 512 [ 51.317283][ T4949] EXT4-fs (loop2): orphan cleanup on readonly fs [ 51.345543][ T4949] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #11: comm syz.2.543: ea_inode with extended attributes [ 51.359838][ T4957] netlink: 68 bytes leftover after parsing attributes in process `syz.1.547'. [ 51.386593][ T4949] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.543: error while reading EA inode 11 err=-117 [ 51.409959][ T4961] netlink: 5 bytes leftover after parsing attributes in process `syz.0.550'. [ 51.423348][ T4949] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 51.437203][ T4961] 0{X功: renamed from gretap0 (while UP) [ 51.438314][ T4949] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #11: comm syz.2.543: ea_inode with extended attributes [ 51.468983][ T4961] 0{X功: entered allmulticast mode [ 51.475046][ T4961] A link change request failed with some changes committed already. Interface 30{X功 may have been left with an inconsistent configuration, please check. [ 51.476138][ T4949] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.543: error while reading EA inode 11 err=-117 [ 51.551692][ T4949] EXT4-fs (loop2): 1 orphan inode deleted [ 51.574954][ T4949] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 51.609343][ T4980] netlink: 8 bytes leftover after parsing attributes in process `syz.0.557'. [ 51.654659][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.740946][ T4996] netlink: 5 bytes leftover after parsing attributes in process `syz.4.565'. [ 51.750492][ T4996] 0{X功: renamed from gretap0 (while UP) [ 51.760638][ T4996] 0{X功: entered allmulticast mode [ 51.767595][ T4996] A link change request failed with some changes committed already. Interface 30{X功 may have been left with an inconsistent configuration, please check. [ 51.913707][ T5015] netlink: 'syz.2.574': attribute type 8 has an invalid length. [ 51.921551][ T5015] netem: change failed [ 52.120144][ T5046] netlink: 'syz.0.586': attribute type 1 has an invalid length. [ 52.193409][ T5059] loop0: detected capacity change from 0 to 512 [ 52.201806][ T5059] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 52.214974][ T5059] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 52.240915][ T5059] EXT4-fs (loop0): 1 truncate cleaned up [ 52.249877][ T5062] loop3: detected capacity change from 0 to 512 [ 52.256609][ T5059] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 52.271880][ T5062] EXT4-fs (loop3): orphan cleanup on readonly fs [ 52.292509][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 52.317609][ T5062] EXT4-fs error (device loop3): ext4_xattr_inode_iget:441: inode #11: comm syz.3.590: ea_inode with extended attributes [ 52.357402][ T5062] EXT4-fs error (device loop3): ext4_xattr_inode_iget:446: comm syz.3.590: error while reading EA inode 11 err=-117 [ 52.384848][ T5062] EXT4-fs error (device loop3): ext4_xattr_inode_iget:441: inode #11: comm syz.3.590: ea_inode with extended attributes [ 52.416830][ T5062] EXT4-fs error (device loop3): ext4_xattr_inode_iget:446: comm syz.3.590: error while reading EA inode 11 err=-117 [ 52.437150][ T5062] EXT4-fs (loop3): 1 orphan inode deleted [ 52.443320][ T5062] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 52.487581][ T3323] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 52.624678][ T5114] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 52.714053][ T5126] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 52.733780][ T5126] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 52.748725][ T5132] loop3: detected capacity change from 0 to 128 [ 53.031698][ T29] kauditd_printk_skb: 102 callbacks suppressed [ 53.031714][ T29] audit: type=1400 audit(2000000270.288:496): avc: denied { setopt } for pid=5167 comm="syz.0.613" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 53.146058][ T5180] vhci_hcd: default hub control req: 8001 v0301 i0000 l0 [ 53.220726][ T5196] loop3: detected capacity change from 0 to 512 [ 53.236897][ T29] audit: type=1326 audit(2000000270.488:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5199 comm="syz.0.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8aee90f749 code=0x7ffc0000 [ 53.260333][ T29] audit: type=1326 audit(2000000270.488:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5199 comm="syz.0.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8aee90f749 code=0x7ffc0000 [ 53.283768][ T29] audit: type=1326 audit(2000000270.488:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5199 comm="syz.0.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8aee90f749 code=0x7ffc0000 [ 53.307034][ T29] audit: type=1326 audit(2000000270.488:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5199 comm="syz.0.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8aee90f749 code=0x7ffc0000 [ 53.330505][ T29] audit: type=1326 audit(2000000270.488:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5199 comm="syz.0.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8aee90f749 code=0x7ffc0000 [ 53.353744][ T29] audit: type=1326 audit(2000000270.488:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5199 comm="syz.0.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8aee90f749 code=0x7ffc0000 [ 53.375125][ T5196] EXT4-fs: Ignoring removed nobh option [ 53.377038][ T29] audit: type=1326 audit(2000000270.488:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5199 comm="syz.0.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8aee90f749 code=0x7ffc0000 [ 53.405885][ T29] audit: type=1326 audit(2000000270.488:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5199 comm="syz.0.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8aee90f749 code=0x7ffc0000 [ 53.429152][ T29] audit: type=1326 audit(2000000270.488:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5199 comm="syz.0.622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=253 compat=0 ip=0x7f8aee90f749 code=0x7ffc0000 [ 53.458040][ T5196] EXT4-fs: old and new quota format mixing [ 53.506335][ T5224] 8021q: adding VLAN 0 to HW filter on device bond1 [ 53.608392][ T5239] macsec2: entered allmulticast mode [ 53.613940][ T5239] macvlan1: entered allmulticast mode [ 53.619379][ T5239] veth1_vlan: entered allmulticast mode [ 53.668860][ T5239] macvlan1: left allmulticast mode [ 53.674153][ T5239] veth1_vlan: left allmulticast mode [ 53.762149][ T5262] loop4: detected capacity change from 0 to 128 [ 53.769266][ T5262] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 53.789902][ T5267] loop0: detected capacity change from 0 to 512 [ 53.797249][ T5267] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 0 overlaps superblock [ 53.807053][ T5267] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (45506!=33349) [ 53.810325][ T5262] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 53.817559][ T5267] EXT4-fs error (device loop0): __ext4_get_inode_loc:4832: comm syz.0.633: Invalid inode table block 1 in block_group 0 [ 53.839001][ T5267] EXT4-fs (loop0): Remounting filesystem read-only [ 53.845662][ T5267] EXT4-fs (loop0): get root inode failed [ 53.851318][ T5267] EXT4-fs (loop0): mount failed [ 53.885059][ T12] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 53.901499][ T5273] loop3: detected capacity change from 0 to 512 [ 53.915626][ T5280] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 53.951736][ T5273] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 53.979626][ T5273] ext4 filesystem being mounted at /130/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 54.015326][ T3323] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 54.068615][ T5307] loop4: detected capacity change from 0 to 128 [ 54.102720][ T5313] openvswitch: netlink: Key 0 has unexpected len 2 expected 0 [ 54.286269][ T44] Bluetooth: hci0: sending frame failed (-49) [ 54.292445][ T3521] Bluetooth: hci0: Opcode 0x1003 failed: -49 [ 54.317926][ T52] kworker/u8:3: attempt to access beyond end of device [ 54.317926][ T52] loop4: rw=1, sector=153, nr_sectors = 8 limit=128 [ 54.331688][ T52] kworker/u8:3: attempt to access beyond end of device [ 54.331688][ T52] loop4: rw=1, sector=169, nr_sectors = 8 limit=128 [ 54.345136][ T52] kworker/u8:3: attempt to access beyond end of device [ 54.345136][ T52] loop4: rw=1, sector=185, nr_sectors = 8 limit=128 [ 54.410152][ T52] kworker/u8:3: attempt to access beyond end of device [ 54.410152][ T52] loop4: rw=1, sector=201, nr_sectors = 8 limit=128 [ 54.441676][ T52] kworker/u8:3: attempt to access beyond end of device [ 54.441676][ T52] loop4: rw=1, sector=217, nr_sectors = 8 limit=128 [ 54.472335][ T52] kworker/u8:3: attempt to access beyond end of device [ 54.472335][ T52] loop4: rw=1, sector=233, nr_sectors = 8 limit=128 [ 54.502588][ T52] kworker/u8:3: attempt to access beyond end of device [ 54.502588][ T52] loop4: rw=1, sector=249, nr_sectors = 8 limit=128 [ 54.523224][ T52] kworker/u8:3: attempt to access beyond end of device [ 54.523224][ T52] loop4: rw=1, sector=265, nr_sectors = 8 limit=128 [ 54.536803][ T36] IPVS: starting estimator thread 0... [ 54.555167][ T52] kworker/u8:3: attempt to access beyond end of device [ 54.555167][ T52] loop4: rw=1, sector=281, nr_sectors = 8 limit=128 [ 54.579941][ T52] kworker/u8:3: attempt to access beyond end of device [ 54.579941][ T52] loop4: rw=1, sector=297, nr_sectors = 8 limit=128 [ 54.634737][ T5356] IPVS: using max 2160 ests per chain, 108000 per kthread [ 54.664549][ T5373] loop2: detected capacity change from 0 to 256 [ 55.149223][ T5423] __nla_validate_parse: 11 callbacks suppressed [ 55.149243][ T5423] netlink: 12 bytes leftover after parsing attributes in process `syz.2.687'. [ 55.164610][ T5423] openvswitch: netlink: Key 0 has unexpected len 2 expected 0 [ 55.454980][ T5463] netlink: 'syz.3.690': attribute type 16 has an invalid length. [ 55.462854][ T5463] netlink: 156 bytes leftover after parsing attributes in process `syz.3.690'. [ 55.542894][ T5469] random: crng reseeded on system resumption [ 55.766992][ T5499] loop1: detected capacity change from 0 to 128 [ 55.904402][ T5515] syz.3.701 (5515) used greatest stack depth: 9232 bytes left [ 55.951395][ T5526] veth0_to_bond: entered promiscuous mode [ 55.967246][ T5526] gretap0: entered promiscuous mode [ 56.102811][ C1] hrtimer: interrupt took 36645 ns [ 56.182030][ T5560] loop2: detected capacity change from 0 to 1024 [ 56.212184][ T5560] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 56.227019][ T5566] netlink: 12 bytes leftover after parsing attributes in process `syz.1.713'. [ 56.244690][ T5566] openvswitch: netlink: Key 0 has unexpected len 2 expected 0 [ 56.276861][ T5560] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 56.324860][ T5560] EXT4-fs (loop2): orphan cleanup on readonly fs [ 56.333588][ T31] tipc: Subscription rejected, illegal request [ 56.381206][ T5560] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #3: block 3: comm syz.2.711: lblock 3 mapped to illegal pblock 3 (length 1) [ 56.400741][ T5590] loop3: detected capacity change from 0 to 512 [ 56.414707][ T5590] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 56.446829][ T5590] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 56.469181][ T5560] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.711: Failed to acquire dquot type 0 [ 56.485354][ T5590] ext4 filesystem being mounted at /154/file3 supports timestamps until 2038-01-19 (0x7fffffff) [ 56.521278][ T5560] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 3: comm syz.2.711: lblock 3 mapped to illegal pblock 3 (length 1) [ 56.545802][ T5590] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #15: comm syz.3.718: corrupted xattr block 32: bad e_name length [ 56.568361][ T5590] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 56.587717][ T5590] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #15: comm syz.3.718: corrupted xattr block 32: bad e_name length [ 56.604662][ T5560] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.711: Failed to acquire dquot type 0 [ 56.624704][ T5590] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 56.627692][ T5609] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #15: comm syz.3.718: corrupted xattr block 32: bad e_name length [ 56.654054][ T5590] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #15: comm syz.3.718: corrupted xattr block 32: bad e_name length [ 56.673369][ T5560] EXT4-fs error (device loop2): ext4_free_blocks:6706: comm syz.2.711: Freeing blocks not in datazone - block = 0, count = 4096 [ 56.689427][ T5611] netlink: 'syz.1.723': attribute type 3 has an invalid length. [ 56.697129][ T5611] netlink: 13435 bytes leftover after parsing attributes in process `syz.1.723'. [ 56.707019][ T5590] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 56.714632][ T5609] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 56.716269][ T5560] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 3: comm syz.2.711: lblock 3 mapped to illegal pblock 3 (length 1) [ 56.739802][ T5590] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #15: comm syz.3.718: corrupted xattr block 32: bad e_name length [ 56.754616][ T5609] EXT4-fs error (device loop3): __ext4_new_inode:1279: comm syz.3.718: failed to insert inode 16: doubly allocated? [ 56.767474][ T5560] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.711: Failed to acquire dquot type 0 [ 56.780819][ T5560] EXT4-fs (loop2): 1 orphan inode deleted [ 56.787109][ T5560] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 56.807227][ T5560] EXT4-fs (loop2): shut down requested (1) [ 56.813810][ T5590] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #15: comm syz.3.718: corrupted xattr block 32: bad e_name length [ 56.840952][ T5590] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 56.856462][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 56.886909][ T3323] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 57.062471][ T5632] loop1: detected capacity change from 0 to 256 [ 57.065470][ T5633] SELinux: security_context_str_to_sid (E釁) failed with errno=-22 [ 57.262217][ T5659] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6) [ 57.268775][ T5659] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 57.276487][ T5659] vhci_hcd vhci_hcd.0: Device attached [ 57.305432][ T5660] vhci_hcd: connection closed [ 57.305750][ T12] vhci_hcd: stop threads [ 57.314760][ T12] vhci_hcd: release socket [ 57.319192][ T12] vhci_hcd: disconnect device [ 57.877842][ T5685] netlink: 300 bytes leftover after parsing attributes in process `syz.1.758'. [ 57.928428][ T5687] netlink: 'syz.0.759': attribute type 30 has an invalid length. [ 57.936247][ T5687] netlink: 16 bytes leftover after parsing attributes in process `syz.0.759'. [ 57.951444][ T5687] bond2: option arp_missed_max: invalid value (0) [ 57.957946][ T5687] bond2: option arp_missed_max: allowed values 1 - 255 [ 57.965811][ T5687] bond2 (unregistering): Released all slaves [ 57.986849][ T5690] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter' [ 58.051810][ T29] kauditd_printk_skb: 81 callbacks suppressed [ 58.051825][ T29] audit: type=1400 audit(2000000275.308:582): avc: denied { write } for pid=5694 comm="syz.1.761" path="socket:[10003]" dev="sockfs" ino=10003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 58.118568][ T29] audit: type=1326 audit(2000000275.368:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5697 comm="syz.1.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f716fb3f749 code=0x7ffc0000 [ 58.141898][ T29] audit: type=1326 audit(2000000275.368:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5697 comm="syz.1.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f716fb3f749 code=0x7ffc0000 [ 58.165226][ T29] audit: type=1326 audit(2000000275.368:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5697 comm="syz.1.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f716fb3f749 code=0x7ffc0000 [ 58.188451][ T29] audit: type=1326 audit(2000000275.368:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5697 comm="syz.1.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f716fb3f749 code=0x7ffc0000 [ 58.211709][ T29] audit: type=1326 audit(2000000275.368:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5697 comm="syz.1.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f716fb3f749 code=0x7ffc0000 [ 58.234990][ T29] audit: type=1326 audit(2000000275.368:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5697 comm="syz.1.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f716fb3f749 code=0x7ffc0000 [ 58.258275][ T29] audit: type=1326 audit(2000000275.368:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5697 comm="syz.1.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f716fb3f749 code=0x7ffc0000 [ 58.281641][ T29] audit: type=1326 audit(2000000275.368:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5697 comm="syz.1.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f716fb3f749 code=0x7ffc0000 [ 58.304881][ T29] audit: type=1326 audit(2000000275.368:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5697 comm="syz.1.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7f716fb3f749 code=0x7ffc0000 [ 58.336768][ T5703] 9pnet: Could not find request transport: r [ 58.380780][ T5713] IPv6: Can't replace route, no match found [ 58.978243][ T5793] loop1: detected capacity change from 0 to 512 [ 58.984967][ T5793] EXT4-fs: Ignoring removed oldalloc option [ 58.992764][ T5793] EXT4-fs (loop1): 1 truncate cleaned up [ 58.999809][ T5793] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 59.030351][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 59.072556][ T5805] serio: Serial port ttyS3 [ 59.224240][ T5822] random: crng reseeded on system resumption [ 59.280552][ T5829] netlink: 'syz.1.823': attribute type 6 has an invalid length. [ 59.305797][ T5835] netlink: 'syz.1.825': attribute type 1 has an invalid length. [ 59.318080][ T5837] netlink: 277 bytes leftover after parsing attributes in process `syz.2.826'. [ 59.379487][ T5846] loop2: detected capacity change from 0 to 1024 [ 59.386532][ T5846] EXT4-fs: Ignoring removed mblk_io_submit option [ 59.393022][ T5846] EXT4-fs: Ignoring removed i_version option [ 59.399108][ T5846] journal_path: Lookup failure for './control' [ 59.405571][ T5846] EXT4-fs: error: could not find journal device path [ 59.468543][ T5853] loop1: detected capacity change from 0 to 256 [ 59.809604][ T5888] netlink: 'syz.3.849': attribute type 1 has an invalid length. [ 60.012708][ T5906] netlink: 152 bytes leftover after parsing attributes in process `syz.3.858'. [ 60.135492][ T5926] netlink: 8 bytes leftover after parsing attributes in process `syz.3.868'. [ 60.180388][ T5935] loop1: detected capacity change from 0 to 128 [ 60.186995][ T5935] EXT4-fs: Ignoring removed nobh option [ 60.194264][ T5935] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 60.207676][ T5935] ext4 filesystem being mounted at /204/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 60.234772][ T3314] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 60.255653][ T5946] netlink: 36 bytes leftover after parsing attributes in process `syz.0.877'. [ 60.333585][ T5960] netlink: 4 bytes leftover after parsing attributes in process `syz.0.883'. [ 60.342447][ T5960] netlink: 348 bytes leftover after parsing attributes in process `syz.0.883'. [ 60.351423][ T5960] netlink: 4 bytes leftover after parsing attributes in process `syz.0.883'. [ 60.360231][ T5960] netlink: 348 bytes leftover after parsing attributes in process `syz.0.883'. [ 60.371331][ T5960] netlink: 4 bytes leftover after parsing attributes in process `syz.0.883'. [ 60.565288][ T5950] loop3: detected capacity change from 0 to 32768 [ 60.574856][ T5991] loop9: detected capacity change from 0 to 7 [ 60.581708][ T5991] Buffer I/O error on dev loop9, logical block 0, async page read [ 60.592495][ T5991] Buffer I/O error on dev loop9, logical block 0, async page read [ 60.600370][ T5991] loop9: unable to read partition table [ 60.614912][ T5950] loop3: p1 p2 p3 < p5 p6 p7 > [ 60.625901][ T5998] netlink: 8 bytes leftover after parsing attributes in process `syz.2.900'. [ 60.629311][ T5991] loop_reread_partitions: partition scan of loop9 (x熝鵂诂ЫdGご鄸冚’牆夥 [ 60.629311][ T5991] ) failed (rc=-5) [ 60.634755][ T5998] netem: unknown loss type 0 [ 60.634765][ T5998] netem: change failed [ 60.634958][ T5950] loop3: p2 size 16775168 extends beyond EOD, truncated [ 60.678946][ T5950] loop3: p5 start 4294970168 is beyond EOD, truncated [ 60.761620][ T6012] loop4: detected capacity change from 0 to 764 [ 60.785207][ T6018] loop2: detected capacity change from 0 to 128 [ 61.184355][ T6086] netlink: 20 bytes leftover after parsing attributes in process `syz.4.943'. [ 61.195864][ T6088] loop0: detected capacity change from 0 to 1024 [ 61.202495][ T6088] EXT4-fs: Ignoring removed orlov option [ 61.218251][ T6088] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a002c018, mo2=0002] [ 61.234697][ T6088] System zones: 0-1, 3-12 [ 61.245310][ T6088] EXT4-fs (loop0): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 61.283137][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0500-0000-0000-000000000000. [ 61.342744][ T6116] loop2: detected capacity change from 0 to 512 [ 61.350285][ T6116] EXT4-fs: Ignoring removed oldalloc option [ 61.366150][ T6116] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 61.378915][ T6116] ext4 filesystem being mounted at /156/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 61.393882][ T6116] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.956: bg 0: block 217: padding at end of block bitmap is not set [ 61.416068][ T6116] EXT4-fs (loop2): Remounting filesystem read-only [ 61.462057][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 61.531119][ T6128] loop0: detected capacity change from 0 to 128 [ 61.543552][ T6128] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 61.573996][ T6128] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 61.640666][ T6143] loop0: detected capacity change from 0 to 164 [ 61.643786][ T6144] loop4: detected capacity change from 0 to 1024 [ 61.653597][ T6143] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 61.669000][ T6143] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 61.680206][ T6143] Symlink component flag not implemented [ 61.685871][ T6143] Symlink component flag not implemented [ 61.692060][ T6143] Symlink component flag not implemented (7) [ 61.698082][ T6143] Symlink component flag not implemented (116) [ 61.715628][ T6144] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 61.751900][ T6153] loop9: detected capacity change from 0 to 7 [ 61.765702][ T6144] EXT4-fs error (device loop4): ext4_read_inline_dir:1476: inode #12: block 7: comm syz.4.967: path /158/file1/file0: bad entry in directory: inode out of bounds - offset=24, inode=150994957, rec_len=16, size=80 fake=0 [ 61.787381][ T6153] Buffer I/O error on dev loop9, logical block 0, async page read [ 61.805961][ T6153] Buffer I/O error on dev loop9, logical block 0, async page read [ 61.813992][ T6153] loop9: unable to read partition table [ 61.828813][ T6153] loop_reread_partitions: partition scan of loop9 (x熝鵂诂ЫdGご鄸冚’牆夥 [ 61.828813][ T6153] ) failed (rc=-5) [ 61.843310][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 62.003867][ T6192] process 'syz.0.991' launched './file0' with NULL argv: empty string added [ 62.043234][ T6196] netem: incorrect ge model size [ 62.048321][ T6196] netem: change failed [ 62.119483][ T6204] loop0: detected capacity change from 0 to 8192 [ 62.441720][ T6259] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1024'. [ 62.472921][ T6264] loop0: detected capacity change from 0 to 512 [ 62.479910][ T6264] EXT4-fs: Ignoring removed nobh option [ 62.511019][ T6264] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #3: comm syz.0.1025: corrupted inode contents [ 62.524608][ T6264] EXT4-fs error (device loop0): ext4_dirty_inode:6517: inode #3: comm syz.0.1025: mark_inode_dirty error [ 62.554866][ T6264] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #3: comm syz.0.1025: corrupted inode contents [ 62.580899][ T6264] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #3: comm syz.0.1025: mark_inode_dirty error [ 62.592674][ T6264] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.1025: Failed to acquire dquot type 0 [ 62.605715][ T6264] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #16: comm syz.0.1025: corrupted inode contents [ 62.617912][ T6264] EXT4-fs error (device loop0): ext4_dirty_inode:6517: inode #16: comm syz.0.1025: mark_inode_dirty error [ 62.629750][ T6264] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #16: comm syz.0.1025: corrupted inode contents [ 62.642023][ T6264] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.1025: mark_inode_dirty error [ 62.653475][ T6264] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #16: comm syz.0.1025: corrupted inode contents [ 62.665723][ T6264] EXT4-fs error (device loop0) in ext4_orphan_del:301: Corrupt filesystem [ 62.674756][ T6264] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #16: comm syz.0.1025: corrupted inode contents [ 62.686974][ T6264] EXT4-fs error (device loop0): ext4_truncate:4637: inode #16: comm syz.0.1025: mark_inode_dirty error [ 62.704714][ T6264] EXT4-fs error (device loop0) in ext4_process_orphan:343: Corrupt filesystem [ 62.706663][ T3394] kernel read not supported for file /525/net/ip_vs (pid: 3394 comm: kworker/0:3) [ 62.725405][ T6264] EXT4-fs (loop0): 1 truncate cleaned up [ 62.733432][ T6264] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 62.753086][ T6264] ext4 filesystem being mounted at /241/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 62.934587][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 62.981014][ T6314] loop0: detected capacity change from 0 to 2048 [ 63.042748][ T6314] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 63.076595][ T29] kauditd_printk_skb: 94 callbacks suppressed [ 63.076612][ T29] audit: type=1400 audit(2000000280.338:684): avc: denied { mounton } for pid=6312 comm="syz.0.1047" path="/242/file0/file0" dev="loop0" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 63.128014][ T29] audit: type=1400 audit(2000000280.388:685): avc: denied { rmdir } for pid=3318 comm="syz-executor" name="lost+found" dev="loop0" ino=11 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 63.150781][ T3318] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters [ 63.165812][ T29] audit: type=1326 audit(2000000280.398:686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6308 comm="syz.4.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce6676f749 code=0x7ffc0000 [ 63.189235][ T29] audit: type=1326 audit(2000000280.398:687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6308 comm="syz.4.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce6676f749 code=0x7ffc0000 [ 63.214548][ T29] audit: type=1400 audit(2000000280.468:688): avc: denied { unlink } for pid=3318 comm="syz-executor" name="file1" dev="loop0" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 63.225594][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 63.256202][ T29] audit: type=1326 audit(2000000280.518:689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6308 comm="syz.4.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce6676f749 code=0x7ffc0000 [ 63.314337][ T29] audit: type=1326 audit(2000000280.538:690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6308 comm="syz.4.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fce6676f749 code=0x7ffc0000 [ 63.337727][ T29] audit: type=1326 audit(2000000280.538:691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6308 comm="syz.4.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce6676f749 code=0x7ffc0000 [ 63.347515][ T6336] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1056'. [ 63.361485][ T29] audit: type=1326 audit(2000000280.538:692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6308 comm="syz.4.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce6676f749 code=0x7ffc0000 [ 63.371353][ T6326] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 63.393493][ T29] audit: type=1326 audit(2000000280.538:693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6308 comm="syz.4.1046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce6676f749 code=0x7ffc0000 [ 63.425730][ T6326] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 63.532133][ T6357] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 63.642849][ T6377] loop1: detected capacity change from 0 to 1024 [ 63.658459][ T6377] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 63.722796][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 63.755579][ T6399] loop4: detected capacity change from 0 to 128 [ 63.765519][ T6399] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 63.778045][ T6399] ext4 filesystem being mounted at /185/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 63.801399][ T3320] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 63.892026][ T6421] loop1: detected capacity change from 0 to 256 [ 63.992286][ T6438] loop4: detected capacity change from 0 to 512 [ 64.026974][ T6438] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 64.035163][ T6438] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 64.050262][ T6438] System zones: 0-1, 15-15, 18-18, 34-34 [ 64.056929][ T6438] EXT4-fs (loop4): orphan cleanup on readonly fs [ 64.068028][ T6438] EXT4-fs warning (device loop4): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 64.082723][ T6438] EXT4-fs (loop4): Cannot turn on quotas: error -22 [ 64.089523][ T6451] SELinux: security_context_str_to_sid (user_u) failed with errno=-22 [ 64.135907][ T6438] EXT4-fs (loop4): 1 truncate cleaned up [ 64.164966][ T6438] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 64.192130][ T6463] vhci_hcd: invalid port number 236 [ 64.209515][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 64.237674][ T6467] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 64.245272][ T6467] vhci_hcd: invalid port number 96 [ 64.250399][ T6467] vhci_hcd: default hub control req: 0500 vfffa i0060 l0 [ 64.279101][ T6477] syz.4.1117 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 64.343245][ T6489] loop3: detected capacity change from 0 to 128 [ 64.371755][ T6497] loop2: detected capacity change from 0 to 512 [ 64.388035][ T6489] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 64.400795][ T6497] EXT4-fs: Ignoring removed bh option [ 64.414912][ T6497] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 64.436563][ T6497] EXT4-fs (loop2): 1 truncate cleaned up [ 64.442371][ T6489] ext4 filesystem being mounted at /219/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 64.474689][ T6497] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 64.491754][ T6497] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.1130: invalid indirect mapped block 4294901760 (level 0) [ 64.506224][ T6497] EXT4-fs (loop2): Remounting filesystem read-only [ 64.523763][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 64.553966][ T3323] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 64.867566][ T6524] loop1: detected capacity change from 0 to 128 [ 64.884196][ T6508] loop0: detected capacity change from 0 to 32768 [ 64.897924][ T6524] bond0: Removing last ns target with arp_interval on [ 64.907514][ T6526] loop4: detected capacity change from 0 to 512 [ 64.926125][ T6526] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2803: inode #11: comm syz.4.1144: corrupted xattr block 95: invalid header [ 64.958080][ T6526] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2853: Unable to expand inode 11. Delete some EAs or run e2fsck. [ 64.973105][ T6526] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.1144: bg 0: block 7: invalid block bitmap [ 64.986082][ T6508] loop0: p1 p2 p3 < > p4 < p5 p6 > [ 64.991378][ T6508] loop0: p1 start 460800 is beyond EOD, truncated [ 64.997850][ T6508] loop0: p2 size 83886080 extends beyond EOD, truncated [ 65.005294][ T6526] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 65.015935][ T6508] loop0: p5 start 460800 is beyond EOD, truncated [ 65.022386][ T6508] loop0: p6 size 83886080 extends beyond EOD, truncated [ 65.029897][ T6526] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2967: inode #11: comm syz.4.1144: corrupted xattr block 95: invalid header [ 65.044784][ T6526] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -117) [ 65.054589][ T6526] EXT4-fs (loop4): 1 orphan inode deleted [ 65.087960][ T6526] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 65.200543][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 65.323723][ T6549] netlink: 'syz.2.1135': attribute type 1 has an invalid length. [ 65.421026][ T6566] tipc: Enabling of bearer rejected, failed to enable media [ 65.523412][ T6590] loop1: detected capacity change from 0 to 128 [ 65.539441][ T6588] veth0_to_team: entered promiscuous mode [ 65.611423][ T6602] netlink: 'syz.3.1177': attribute type 1 has an invalid length. [ 65.619316][ T6602] __nla_validate_parse: 5 callbacks suppressed [ 65.619334][ T6602] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1177'. [ 65.715794][ T6628] xt_CT: You must specify a L4 protocol and not use inversions on it [ 65.776540][ T6635] loop2: detected capacity change from 0 to 512 [ 65.797151][ T6635] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2803: inode #11: comm syz.2.1187: corrupted xattr block 95: invalid header [ 65.812102][ T6635] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.1187: bg 0: block 7: invalid block bitmap [ 65.812493][ T6646] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 65.825363][ T6635] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 65.841850][ T6646] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 65.841977][ T6635] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2967: inode #11: comm syz.2.1187: corrupted xattr block 95: invalid header [ 65.864774][ T6635] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117) [ 65.873975][ T6635] EXT4-fs (loop2): 1 orphan inode deleted [ 65.880156][ T6635] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 65.955091][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 65.976757][ T6652] loop3: detected capacity change from 0 to 2048 [ 65.991648][ T6656] loop0: detected capacity change from 0 to 128 [ 66.001216][ T6656] bond0: Removing last ns target with arp_interval on [ 66.012484][ T6652] Alternate GPT is invalid, using primary GPT. [ 66.018929][ T6652] loop3: p2 p3 p7 [ 66.066722][ T6665] loop9: detected capacity change from 0 to 7 [ 66.118288][ T6668] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1203'. [ 66.164678][ T6673] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1206'. [ 66.282889][ T1103] kernel write not supported for file [eventfd] (pid: 1103 comm: kworker/1:2) [ 66.309720][ T6697] netlink: 'syz.2.1217': attribute type 2 has an invalid length. [ 66.345550][ T6703] netlink: 'syz.0.1220': attribute type 1 has an invalid length. [ 66.371584][ T6707] loop0: detected capacity change from 0 to 1024 [ 66.378687][ T6707] EXT4-fs: Ignoring removed nobh option [ 66.384280][ T6707] EXT4-fs: Ignoring removed bh option [ 66.406717][ T6707] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 66.423544][ T6707] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4193: comm syz.0.1222: Allocating blocks 497-513 which overlap fs metadata [ 66.439194][ T6706] EXT4-fs (loop0): pa ffff888106e795b0: logic 16, phys. 129, len 24 [ 66.447274][ T6706] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 1 [ 66.459321][ T6715] capability: warning: `syz.1.1225' uses 32-bit capabilities (legacy support in use) [ 66.480531][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 66.506832][ T6720] autofs4:pid:6720:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(951.8), cmd(0xc018937e) [ 66.520121][ T6720] autofs4:pid:6720:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937e) [ 66.574878][ T6729] A link change request failed with some changes committed already. Interface nicvf0 may have been left with an inconsistent configuration, please check. [ 66.621156][ T6737] loop2: detected capacity change from 0 to 512 [ 66.644659][ T6741] af_packet: tpacket_rcv: packet too big, clamped from 64993 to 3952. macoff=96 [ 66.656888][ T6737] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 66.672754][ T6737] ext4 filesystem being mounted at /213/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 66.695779][ T6737] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #2: comm syz.2.1236: corrupted inode contents [ 66.712119][ T6737] EXT4-fs error (device loop2): ext4_dirty_inode:6517: inode #2: comm syz.2.1236: mark_inode_dirty error [ 66.729380][ T6737] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #2: comm syz.2.1236: corrupted inode contents [ 66.759165][ T6737] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #2: comm syz.2.1236: mark_inode_dirty error [ 66.815572][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 66.827514][ T6754] loop4: detected capacity change from 0 to 128 [ 66.958118][ T6774] tipc: Started in network mode [ 66.963057][ T6774] tipc: Node identity ac14140f, cluster identity 4711 [ 66.963252][ T6777] loop4: detected capacity change from 0 to 512 [ 66.970267][ T6774] tipc: New replicast peer: 255.255.255.255 [ 66.978580][ T6777] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 66.982318][ T6774] tipc: Enabled bearer , priority 10 [ 66.991646][ T6777] EXT4-fs (loop4): invalid journal inode [ 67.023859][ T6777] EXT4-fs (loop4): can't get journal size [ 67.038316][ T6777] EXT4-fs (loop4): 1 truncate cleaned up [ 67.044411][ T6777] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 67.106838][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 67.121649][ T6794] loop2: detected capacity change from 0 to 512 [ 67.143933][ T6794] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.1260: Failed to acquire dquot type 1 [ 67.172240][ T6794] EXT4-fs (loop2): 1 truncate cleaned up [ 67.178527][ T6794] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 67.198494][ T6794] ext4 filesystem being mounted at /218/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 67.229203][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 67.242725][ T6807] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=6807 comm=syz.0.1265 [ 67.303617][ T6813] loop0: detected capacity change from 0 to 512 [ 67.320124][ T6817] xt_hashlimit: max too large, truncated to 1048576 [ 67.329104][ T6813] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.1267: inode has both inline data and extents flags [ 67.336097][ T6817] xt_CT: You must specify a L4 protocol and not use inversions on it [ 67.346010][ T6819] delete_channel: no stack [ 67.359028][ T6813] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.1267: couldn't read orphan inode 15 (err -117) [ 67.379165][ T6813] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 67.419429][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 67.437760][ T6831] netlink: 260 bytes leftover after parsing attributes in process `syz.3.1276'. [ 67.481647][ T6839] netlink: 182 bytes leftover after parsing attributes in process `syz.3.1279'. [ 67.497381][ T6843] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1280'. [ 67.748666][ T6879] IPv6: NLM_F_CREATE should be specified when creating new route [ 67.761172][ T6884] netlink: 182 bytes leftover after parsing attributes in process `syz.4.1299'. [ 67.820588][ T6892] loop3: detected capacity change from 0 to 1024 [ 67.843356][ T6892] EXT4-fs: Ignoring removed nomblk_io_submit option [ 67.859081][ T6892] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 67.875582][ T6898] loop1: detected capacity change from 0 to 512 [ 67.903723][ T3323] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 67.914171][ T6898] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.1306: inode has both inline data and extents flags [ 67.928052][ T6898] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.1306: couldn't read orphan inode 15 (err -117) [ 67.930366][ T6909] delete_channel: no stack [ 67.940544][ T6898] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 67.979077][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 67.984770][ T3394] tipc: Node number set to 2886997007 [ 68.022864][ T6922] loop3: detected capacity change from 0 to 512 [ 68.030129][ T6922] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 68.042869][ T6922] EXT4-fs error (device loop3): xattr_find_entry:337: inode #15: comm syz.3.1317: corrupted xattr entries [ 68.061473][ T6922] EXT4-fs (loop3): Remounting filesystem read-only [ 68.074504][ T6922] EXT4-fs (loop3): 1 truncate cleaned up [ 68.086406][ T6922] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 68.124018][ T3323] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.138642][ T29] kauditd_printk_skb: 177 callbacks suppressed [ 68.138657][ T29] audit: type=1400 audit(2000000285.398:868): avc: denied { create } for pid=6929 comm="syz.4.1321" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 68.164758][ T29] audit: type=1400 audit(2000000285.398:869): avc: denied { connect } for pid=6929 comm="syz.4.1321" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 68.184299][ T29] audit: type=1400 audit(2000000285.398:870): avc: denied { setopt } for pid=6929 comm="syz.4.1321" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 68.228359][ T29] audit: type=1400 audit(2000000285.468:871): avc: denied { write } for pid=6931 comm="syz.4.1322" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 68.247764][ T29] audit: type=1400 audit(2000000285.468:872): avc: denied { connect } for pid=6931 comm="syz.4.1322" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 68.267352][ T29] audit: type=1400 audit(2000000285.468:873): avc: denied { name_connect } for pid=6931 comm="syz.4.1322" dest=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1 [ 68.289384][ T29] audit: type=1400 audit(2000000285.478:874): avc: denied { create } for pid=6935 comm="syz.3.1319" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 68.308814][ T29] audit: type=1400 audit(2000000285.478:875): avc: denied { write } for pid=6935 comm="syz.3.1319" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 68.349685][ T6946] loop3: detected capacity change from 0 to 512 [ 68.423743][ T6950] loop4: detected capacity change from 0 to 8192 [ 68.458390][ T6956] loop3: detected capacity change from 0 to 512 [ 68.465594][ T6956] journal_path: Non-blockdev passed as './file0' [ 68.471958][ T6956] EXT4-fs: error: could not find journal device path [ 68.519855][ T29] audit: type=1326 audit(2000000285.778:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6960 comm="syz.3.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c9f1ef749 code=0x7ffc0000 [ 68.543241][ T29] audit: type=1326 audit(2000000285.778:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6960 comm="syz.3.1335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c9f1ef749 code=0x7ffc0000 [ 68.755796][ T6986] loop0: detected capacity change from 0 to 128 [ 68.776960][ T6992] netlink: 'syz.4.1345': attribute type 1 has an invalid length. [ 68.859804][ T7006] loop3: detected capacity change from 0 to 512 [ 68.939577][ T7018] loop4: detected capacity change from 0 to 1024 [ 68.959869][ T7018] EXT4-fs: Ignoring removed nomblk_io_submit option [ 68.975838][ T7030] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1369'. [ 68.984762][ T7030] netlink: 'syz.3.1369': attribute type 30 has an invalid length. [ 68.992574][ T7030] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1369'. [ 69.004368][ T7018] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 69.004873][ T7028] --map-set only usable from mangle table [ 69.014200][ T7018] System zones: 0-1, 3-36 [ 69.242110][ T7075] loop2: detected capacity change from 0 to 128 [ 69.273251][ T7075] ext4 filesystem being mounted at /238/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 69.602700][ T7114] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1406'. [ 69.698772][ T7129] loop3: detected capacity change from 0 to 128 [ 69.937381][ T7161] loop4: detected capacity change from 0 to 128 [ 70.041851][ T7175] loop2: detected capacity change from 0 to 1024 [ 70.059633][ T7175] EXT4-fs (loop2): stripe (32769) is not aligned with cluster size (16), stripe is disabled [ 70.087443][ T7175] EXT4-fs error (device loop2): ext4_xattr_set_entry:1665: inode #15: comm syz.2.1433: corrupted xattr entries [ 70.119463][ T7175] EXT4-fs (loop2): Remounting filesystem read-only [ 70.131704][ T7175] EXT4-fs warning (device loop2): ext4_xattr_block_set:2195: inode #19: comm syz.2.1433: dec ref error=-30 [ 70.222712][ T7198] loop3: detected capacity change from 0 to 164 [ 70.412435][ T7237] loop1: detected capacity change from 0 to 512 [ 70.428253][ T7237] ext4 filesystem being mounted at /329/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 70.442365][ T7244] loop4: detected capacity change from 0 to 1024 [ 70.461754][ T7237] EXT4-fs error (device loop1): ext4_add_entry:2417: inode #12: comm syz.1.1463: Directory hole found for htree leaf block 0 [ 70.480901][ T7237] EXT4-fs (loop1): Remounting filesystem read-only [ 70.492448][ T7244] ext4 filesystem being mounted at /280/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 70.504145][ T52] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 70.523330][ T52] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 70.536257][ T7255] 9pnet_fd: Insufficient options for proto=fd [ 70.569462][ T7265] loop3: detected capacity change from 0 to 256 [ 70.605390][ T7273] netlink: 'syz.3.1478': attribute type 1 has an invalid length. [ 70.635511][ T7275] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 70.698216][ T7275] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 70.761548][ T7285] __nla_validate_parse: 8 callbacks suppressed [ 70.761565][ T7285] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1483'. [ 70.781533][ T7275] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 70.831929][ T7275] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 70.847002][ T7296] netlink: 7 bytes leftover after parsing attributes in process `syz.4.1488'. [ 70.856377][ T7296] netlink: 7 bytes leftover after parsing attributes in process `syz.4.1488'. [ 70.912157][ T52] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.925561][ T52] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.942098][ T52] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 70.964574][ T52] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.317350][ T7327] 9p: Unknown access argument : -22 [ 71.391829][ T7333] netlink: 'syz.0.1504': attribute type 2 has an invalid length. [ 71.564489][ T7347] loop3: detected capacity change from 0 to 2048 [ 71.572369][ T7348] loop2: detected capacity change from 0 to 1024 [ 71.589757][ T7348] EXT4-fs (loop2): filesystem is read-only [ 71.595970][ T7348] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 71.606536][ T7348] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 71.617760][ T7348] EXT4-fs error (device loop2): ext4_get_journal_inode:5808: comm syz.2.1512: inode #1: comm syz.2.1512: iget: illegal inode # [ 71.637875][ T7348] EXT4-fs (loop2): no journal found [ 71.643178][ T7348] EXT4-fs (loop2): can't get journal size [ 71.650398][ T7348] EXT4-fs (loop2): failed to initialize system zone (-22) [ 71.657687][ T7348] EXT4-fs (loop2): mount failed [ 71.786741][ T7375] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1523'. [ 71.813923][ T7379] erspan0: entered promiscuous mode [ 71.840413][ T7385] loop3: detected capacity change from 0 to 256 [ 71.871045][ T7391] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.918642][ T7391] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.939658][ T7406] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1538'. [ 71.958146][ T7391] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.998200][ T7412] loop3: detected capacity change from 0 to 512 [ 72.017950][ T7391] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.028728][ T7412] EXT4-fs error (device loop3): ext4_xattr_inode_iget:446: comm syz.3.1541: error while reading EA inode 32 err=-116 [ 72.033249][ T7415] loop1: detected capacity change from 0 to 512 [ 72.051939][ T7412] EXT4-fs (loop3): Remounting filesystem read-only [ 72.059039][ T7412] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -30) [ 72.060640][ T7415] ext4 filesystem being mounted at /339/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 72.069565][ T7412] EXT4-fs (loop3): 1 orphan inode deleted [ 72.123454][ T3452] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.143447][ T3452] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.166586][ T3452] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.184124][ T3452] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.204879][ T7431] loop1: detected capacity change from 0 to 512 [ 72.211687][ T7431] EXT4-fs: Ignoring removed orlov option [ 72.234292][ T7431] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 72.243463][ T7431] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 72.251806][ T7431] EXT4-fs error (device loop1): ext4_iget_extra_inode:5075: inode #15: comm syz.1.1548: corrupted in-inode xattr: e_value size too large [ 72.266057][ T7431] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.1548: couldn't read orphan inode 15 (err -117) [ 72.332482][ T7443] IPv6: NLM_F_CREATE should be specified when creating new route [ 72.430170][ T7457] xt_connbytes: Forcing CT accounting to be enabled [ 72.437136][ T7457] set match dimension is over the limit! [ 72.767286][ T7491] loop2: detected capacity change from 0 to 512 [ 72.784994][ T7495] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 72.791673][ T7491] EXT4-fs: Ignoring removed orlov option [ 72.801482][ T7491] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 72.810583][ T7491] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 72.829528][ T7491] EXT4-fs error (device loop2): ext4_iget_extra_inode:5075: inode #15: comm syz.2.1577: corrupted in-inode xattr: e_value size too large [ 72.847141][ T7491] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.1577: couldn't read orphan inode 15 (err -117) [ 72.905022][ T7500] loop2: detected capacity change from 0 to 512 [ 72.927159][ T7500] EXT4-fs (loop2): too many log groups per flexible block group [ 72.935707][ T7506] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7506 comm=syz.0.1583 [ 72.948521][ T7500] EXT4-fs (loop2): failed to initialize mballoc (-12) [ 72.955495][ T7500] EXT4-fs (loop2): mount failed [ 73.005033][ T7513] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1585'. [ 73.169957][ T29] kauditd_printk_skb: 168 callbacks suppressed [ 73.170008][ T29] audit: type=1400 audit(2000000290.428:1042): avc: denied { load_policy } for pid=7518 comm="syz.0.1590" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 73.197112][ T7519] SELinux: failed to load policy [ 73.244671][ T7523] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7523 comm=syz.4.1592 [ 73.312477][ T29] audit: type=1400 audit(2000000290.568:1043): avc: denied { read write } for pid=7534 comm="syz.2.1596" name="sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 73.336740][ C1] sd 0:0:1:0: [sda] tag#7560 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 73.347119][ C1] sd 0:0:1:0: [sda] tag#7560 CDB: Write(6) 0a 00 00 00 01 00 00 00 04 00 00 10 [ 73.362820][ T29] audit: type=1400 audit(2000000290.568:1044): avc: denied { open } for pid=7534 comm="syz.2.1596" path="/dev/sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 73.386807][ T29] audit: type=1400 audit(2000000290.568:1045): avc: denied { ioctl } for pid=7534 comm="syz.2.1596" path="/dev/sg0" dev="devtmpfs" ino=137 ioctlcmd=0x5393 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 73.393414][ T7542] loop4: detected capacity change from 0 to 128 [ 73.412265][ T29] audit: type=1400 audit(2000000290.618:1046): avc: denied { bind } for pid=7536 comm="syz.4.1599" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 73.452867][ T7542] ext4 filesystem being mounted at /310/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 73.476975][ T29] audit: type=1326 audit(2000000290.738:1047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7547 comm="syz.3.1603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c9f1ef749 code=0x7ffc0000 [ 73.500500][ T29] audit: type=1326 audit(2000000290.738:1048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7547 comm="syz.3.1603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7f6c9f1ef749 code=0x7ffc0000 [ 73.523922][ T29] audit: type=1326 audit(2000000290.738:1049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7547 comm="syz.3.1603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c9f1ef749 code=0x7ffc0000 [ 73.554630][ T29] audit: type=1326 audit(2000000290.818:1050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7552 comm="syz.3.1605" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6c9f1ef749 code=0x0 [ 73.590213][ T7556] random: crng reseeded on system resumption [ 73.596433][ T29] audit: type=1400 audit(2000000290.848:1051): avc: denied { append } for pid=7555 comm="syz.2.1606" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 73.712046][ T7571] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1613'. [ 73.941000][ T7614] xt_connbytes: Forcing CT accounting to be enabled [ 73.951151][ T7614] set match dimension is over the limit! [ 73.996760][ T7620] vhci_hcd: invalid port number 23 [ 74.001907][ T7620] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub. [ 74.037772][ T7630] loop1: detected capacity change from 0 to 1024 [ 74.047778][ T7630] EXT4-fs: Ignoring removed nobh option [ 74.069995][ T7630] EXT4-fs mount: 22 callbacks suppressed [ 74.070027][ T7630] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.138114][ T7650] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1646'. [ 74.143241][ T7643] set match dimension is over the limit! [ 74.147311][ T7650] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1646'. [ 74.173445][ T7630] EXT4-fs error (device loop1): mb_free_blocks:2017: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt. [ 74.227138][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.533759][ T7709] vhci_hcd: invalid port number 23 [ 74.539069][ T7709] vhci_hcd: Wrong hub descriptor type for USB 3.0 roothub. [ 74.693279][ T7747] loop4: detected capacity change from 0 to 1024 [ 74.725489][ T7747] EXT4-fs (loop4): stripe (6) is not aligned with cluster size (16), stripe is disabled [ 74.761835][ T7747] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 74.799272][ T7759] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7759 comm=syz.3.1691 [ 74.846211][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.023342][ T7777] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 75.138407][ T7817] loop1: detected capacity change from 0 to 512 [ 75.145689][ T7817] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 75.276771][ T7842] tipc: Started in network mode [ 75.281687][ T7842] tipc: Node identity ac14140f, cluster identity 4711 [ 75.290037][ T7842] tipc: New replicast peer: 255.255.255.255 [ 75.296271][ T7842] tipc: Enabled bearer , priority 10 [ 75.360301][ T7859] loop3: detected capacity change from 0 to 512 [ 75.376515][ T7859] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a84ec018, mo2=0002] [ 75.388115][ T7856] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 75.395833][ T7856] vhci_hcd: invalid port number 96 [ 75.401162][ T7856] vhci_hcd: default hub control req: 0300 vfffa i0060 l0 [ 75.408633][ T7859] System zones: 0-2, 18-18, 34-35 [ 75.415052][ T7859] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 75.437305][ T7859] ext4 filesystem being mounted at /333/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 75.548789][ T7884] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1722'. [ 75.599991][ T7888] loop4: detected capacity change from 0 to 1024 [ 75.614820][ T7888] EXT4-fs: Ignoring removed bh option [ 75.625861][ T7888] EXT4-fs: inline encryption not supported [ 75.656887][ T7888] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 75.691337][ T7888] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 75.704076][ T7888] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 2: comm syz.4.1723: lblock 2 mapped to illegal pblock 2 (length 1) [ 75.719932][ T7888] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 48: comm syz.4.1723: lblock 0 mapped to illegal pblock 48 (length 1) [ 75.736824][ T3323] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.737579][ T7888] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.1723: Failed to acquire dquot type 0 [ 75.759998][ T7888] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6313: Corrupt filesystem [ 75.777163][ T7888] EXT4-fs error (device loop4): ext4_evict_inode:254: inode #11: comm syz.4.1723: mark_inode_dirty error [ 75.802495][ T7888] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 75.819007][ T7918] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1729'. [ 75.828095][ T7918] netlink: 'syz.0.1729': attribute type 5 has an invalid length. [ 75.829086][ T7921] loop1: detected capacity change from 0 to 128 [ 75.844644][ T7888] EXT4-fs (loop4): 1 orphan inode deleted [ 75.851080][ T7888] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 75.869441][ T3452] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:7: lblock 1 mapped to illegal pblock 1 (length 1) [ 75.904379][ T3452] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:7: Failed to release dquot type 0 [ 75.927781][ T7888] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. [ 75.989018][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.005019][ T3320] EXT4-fs error (device loop4): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 76.018014][ T3320] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6313: Corrupt filesystem [ 76.028353][ T3320] EXT4-fs error (device loop4): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error [ 76.111970][ T7962] loop3: detected capacity change from 0 to 1024 [ 76.124369][ T7962] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 76.139731][ T7962] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 76.161115][ T7962] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 76.169886][ T7962] EXT4-fs (loop3): orphan cleanup on readonly fs [ 76.176766][ T7962] EXT4-fs error (device loop3): ext4_read_inode_bitmap:167: comm syz.3.1740: Inode bitmap for bg 0 marked uninitialized [ 76.190188][ T7962] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 76.212858][ T7962] EXT4-fs (loop3): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 76.292311][ T3323] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.327875][ T7998] vcan0: tx drop: invalid da for name 0x00000000000000f0 [ 76.359198][ T8002] loop4: detected capacity change from 0 to 512 [ 76.369442][ T8002] EXT4-fs: Ignoring removed nobh option [ 76.389455][ T8002] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #16: comm syz.4.1750: corrupted inode contents [ 76.412457][ T8002] EXT4-fs (loop4): Remounting filesystem read-only [ 76.419257][ T36] tipc: Node number set to 2886997007 [ 76.425241][ T8002] EXT4-fs (loop4): 1 truncate cleaned up [ 76.431571][ T8002] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 76.458181][ T3452] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 76.468813][ T3452] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 76.480451][ T8002] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.485813][ T8015] loop3: detected capacity change from 0 to 1024 [ 76.495929][ T3452] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started [ 76.496994][ T8015] EXT4-fs: Ignoring removed bh option [ 76.511619][ T8015] EXT4-fs: inline encryption not supported [ 76.518026][ T8015] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 76.529764][ T8015] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 76.539014][ T8015] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 2: comm syz.3.1756: lblock 2 mapped to illegal pblock 2 (length 1) [ 76.556050][ T8015] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 48: comm syz.3.1756: lblock 0 mapped to illegal pblock 48 (length 1) [ 76.570430][ T8015] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.1756: Failed to acquire dquot type 0 [ 76.581856][ T8015] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6313: Corrupt filesystem [ 76.592271][ T8015] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.1756: mark_inode_dirty error [ 76.604373][ T8015] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 76.614850][ T8015] EXT4-fs (loop3): 1 orphan inode deleted [ 76.621223][ T8015] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 76.634716][ T3452] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:7: lblock 1 mapped to illegal pblock 1 (length 1) [ 76.651755][ T8015] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. [ 76.651758][ T3452] EXT4-fs error (device loop3): ext4_release_dquot:6981: comm kworker/u8:7: Failed to release dquot type 0 [ 76.689953][ T3323] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.709552][ T3323] EXT4-fs error (device loop3): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 76.727191][ T3323] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6313: Corrupt filesystem [ 76.738407][ T3323] EXT4-fs error (device loop3): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error [ 76.981381][ T8070] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1782'. [ 76.995782][ T8072] bridge0: entered promiscuous mode [ 77.001253][ T8072] macvlan2: entered promiscuous mode [ 77.056756][ T8084] loop0: detected capacity change from 0 to 128 [ 77.063371][ T8084] EXT4-fs: Ignoring removed nobh option [ 77.071072][ T8082] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1788'. [ 77.080503][ T8082] unsupported nlmsg_type 40 [ 77.095619][ T8084] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 77.125496][ T3318] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 77.144551][ T8098] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6) [ 77.151092][ T8098] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 77.158740][ T8098] vhci_hcd vhci_hcd.0: Device attached [ 77.159015][ T8096] loop2: detected capacity change from 0 to 1024 [ 77.169692][ T8100] loop0: detected capacity change from 0 to 1024 [ 77.178223][ T8100] EXT4-fs: Ignoring removed nomblk_io_submit option [ 77.180663][ T8096] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 77.194569][ T8101] vhci_hcd: connection closed [ 77.194758][ T8096] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 77.194935][ T52] vhci_hcd: stop threads [ 77.210524][ T8096] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 77.214072][ T52] vhci_hcd: release socket [ 77.214108][ T52] vhci_hcd: disconnect device [ 77.222187][ T8096] EXT4-fs (loop2): orphan cleanup on readonly fs [ 77.238450][ T8096] EXT4-fs error (device loop2): ext4_read_inode_bitmap:167: comm syz.2.1794: Inode bitmap for bg 0 marked uninitialized [ 77.251428][ T8100] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 77.259768][ T8100] System zones: 0-1, 3-36 [ 77.260354][ T8096] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 77.278696][ T8100] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 77.303602][ T8096] EXT4-fs (loop2): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 77.355276][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.453537][ T8124] netlink: 'syz.2.1805': attribute type 1 has an invalid length. [ 77.492469][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.507442][ T8128] vlan2: entered allmulticast mode [ 77.536198][ T8132] loop5: detected capacity change from 0 to 7 [ 77.634775][ T8135] Falling back ldisc for ttyS3. [ 77.716995][ T8147] syz.2.1816 (8147) used greatest stack depth: 9120 bytes left [ 77.729444][ T8149] syzkaller1: tun_chr_ioctl cmd 1074025672 [ 77.735412][ T8149] syzkaller1: ignored: set checksum disabled [ 77.750203][ T8151] loop1: detected capacity change from 0 to 1024 [ 77.757442][ T8151] EXT4-fs: Ignoring removed nomblk_io_submit option [ 77.767680][ T8151] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 77.775947][ T8151] System zones: 0-1, 3-36 [ 77.781242][ T8151] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 78.040124][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.180419][ T8183] loop1: detected capacity change from 0 to 512 [ 78.205550][ T8183] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a84ec018, mo2=0002] [ 78.223910][ T8183] System zones: 0-2, 18-18, 34-35 [ 78.231159][ T8183] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 78.376893][ T8193] netlink: 182 bytes leftover after parsing attributes in process `syz.3.1836'. [ 78.433188][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.467606][ T29] kauditd_printk_skb: 148 callbacks suppressed [ 78.467619][ T29] audit: type=1400 audit(78.443:1188): avc: denied { write } for pid=8194 comm="syz.3.1837" name="ptp0" dev="devtmpfs" ino=246 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 78.496265][ T29] audit: type=1400 audit(78.443:1189): avc: denied { open } for pid=8194 comm="syz.3.1837" path="/dev/ptp0" dev="devtmpfs" ino=246 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 78.553651][ T8202] program syz.1.1838 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 78.583682][ T29] audit: type=1326 audit(78.553:1190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8203 comm="syz.3.1842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c9f1ef749 code=0x7ffc0000 [ 78.606432][ T29] audit: type=1326 audit(78.553:1191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8203 comm="syz.3.1842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c9f1ef749 code=0x7ffc0000 [ 78.633742][ T29] audit: type=1326 audit(78.613:1192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8203 comm="syz.3.1842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6c9f1ef749 code=0x7ffc0000 [ 78.656631][ T29] audit: type=1326 audit(78.613:1193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8203 comm="syz.3.1842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c9f1ef749 code=0x7ffc0000 [ 78.660296][ T8210] loop2: detected capacity change from 0 to 512 [ 78.679490][ T29] audit: type=1326 audit(78.613:1194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8203 comm="syz.3.1842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c9f1ef749 code=0x7ffc0000 [ 78.714885][ T29] audit: type=1326 audit(78.613:1195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8203 comm="syz.3.1842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6c9f1ef749 code=0x7ffc0000 [ 78.737637][ T29] audit: type=1326 audit(78.693:1196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8203 comm="syz.3.1842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c9f1ef749 code=0x7ffc0000 [ 78.760387][ T29] audit: type=1326 audit(78.693:1197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8203 comm="syz.3.1842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c9f1ef749 code=0x7ffc0000 [ 78.785503][ T8215] loop1: detected capacity change from 0 to 128 [ 78.792008][ T8215] EXT4-fs: Ignoring removed nobh option [ 78.799170][ T8215] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 78.813690][ T8210] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 78.845679][ T3314] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 78.918449][ T8225] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1849'. [ 78.966584][ T8227] loop0: detected capacity change from 0 to 2048 [ 78.980640][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.993786][ T8231] SELinux: policydb magic number 0x0 does not match expected magic number 0xf97cff8c [ 79.003717][ T8231] SELinux: failed to load policy [ 79.110707][ T8257] IPv6: NLM_F_CREATE should be specified when creating new route [ 79.283338][ T8292] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1882'. [ 79.393540][ T8307] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6) [ 79.400095][ T8307] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 79.408275][ T8307] vhci_hcd vhci_hcd.0: Device attached [ 79.419110][ T8309] vhci_hcd: connection closed [ 79.419302][ T52] vhci_hcd: stop threads [ 79.428341][ T52] vhci_hcd: release socket [ 79.432831][ T52] vhci_hcd: disconnect device [ 79.458359][ T8320] random: crng reseeded on system resumption [ 79.518682][ T8326] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.630773][ T8345] syz.2.1907 (8345) used greatest stack depth: 9088 bytes left [ 79.656402][ T8351] loop2: detected capacity change from 0 to 256 [ 79.685312][ T8355] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1912'. [ 79.840529][ T8376] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1923'. [ 79.857052][ T8378] loop4: detected capacity change from 0 to 512 [ 79.863805][ T8378] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 79.873142][ T8378] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.1922: casefold flag without casefold feature [ 79.886183][ T8378] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.1922: couldn't read orphan inode 15 (err -117) [ 79.905041][ T8378] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 79.926942][ T8378] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #2: block 4: comm syz.4.1922: lblock 0 mapped to illegal pblock 4 (length 1) [ 79.943761][ T8381] loop2: detected capacity change from 0 to 2048 [ 79.951645][ T8381] EXT4-fs: Ignoring removed mblk_io_submit option [ 79.958135][ T8381] EXT4-fs: Ignoring removed i_version option [ 79.976645][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.032028][ T8387] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1927'. [ 80.048303][ T8381] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 80.090638][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.192709][ T8402] SELinux: Context  is not valid (left unmapped). [ 80.256902][ T8408] loop0: detected capacity change from 0 to 512 [ 80.266148][ T8408] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 80.340299][ T8418] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.347428][ T8418] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.400415][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.481773][ T8437] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1949'. [ 80.539024][ T8446] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=14385 sclass=netlink_route_socket pid=8446 comm=syz.1.1953 [ 80.655561][ T8463] netlink: 'syz.2.1961': attribute type 8 has an invalid length. [ 80.741438][ T8473] loop0: detected capacity change from 0 to 1024 [ 80.755461][ T8473] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 80.766516][ T8473] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 80.786341][ T8473] JBD2: no valid journal superblock found [ 80.792140][ T8473] EXT4-fs (loop0): Could not load journal inode [ 80.813664][ T8473] SELinux: security_context_str_to_sid (-歑軜7.H\ %簎@) failed with errno=-22 [ 81.033683][ T36] kernel write not supported for file /cpu/0/msr (pid: 36 comm: kworker/1:1) [ 81.107292][ T8519] loop3: detected capacity change from 0 to 512 [ 81.116376][ T8519] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 81.281183][ T8545] loop2: detected capacity change from 0 to 512 [ 81.307873][ T8545] EXT4-fs: Ignoring removed oldalloc option [ 81.379612][ T8545] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 81.403516][ T8563] loop3: detected capacity change from 0 to 128 [ 81.420390][ T8561] SELinux: failed to load policy [ 81.437041][ T8563] bio_check_eod: 103 callbacks suppressed [ 81.437079][ T8563] syz.3.2007: attempt to access beyond end of device [ 81.437079][ T8563] loop3: rw=2049, sector=138, nr_sectors = 16 limit=128 [ 81.475214][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.504822][ T8563] syz.3.2007: attempt to access beyond end of device [ 81.504822][ T8563] loop3: rw=2049, sector=170, nr_sectors = 16 limit=128 [ 81.546944][ T8563] syz.3.2007: attempt to access beyond end of device [ 81.546944][ T8563] loop3: rw=2049, sector=202, nr_sectors = 16 limit=128 [ 81.561779][ T8563] syz.3.2007: attempt to access beyond end of device [ 81.561779][ T8563] loop3: rw=2049, sector=234, nr_sectors = 16 limit=128 [ 81.576911][ T8563] syz.3.2007: attempt to access beyond end of device [ 81.576911][ T8563] loop3: rw=2049, sector=154, nr_sectors = 16 limit=128 [ 81.601247][ T8563] syz.3.2007: attempt to access beyond end of device [ 81.601247][ T8563] loop3: rw=2049, sector=218, nr_sectors = 16 limit=128 [ 81.615811][ T8578] program syz.4.2014 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 81.617035][ T8563] syz.3.2007: attempt to access beyond end of device [ 81.617035][ T8563] loop3: rw=2049, sector=186, nr_sectors = 16 limit=128 [ 81.833934][ T8612] netlink: 'syz.2.2029': attribute type 25 has an invalid length. [ 81.841869][ T8612] netlink: 'syz.2.2029': attribute type 28 has an invalid length. [ 81.931882][ T8618] loop2: detected capacity change from 0 to 512 [ 81.939754][ T8618] journal_path: Non-blockdev passed as './bus' [ 81.946028][ T8618] EXT4-fs: error: could not find journal device path [ 82.020302][ T8643] program syz.3.2043 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 82.091657][ T8654] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2048'. [ 82.110307][ T8654] netlink: 312 bytes leftover after parsing attributes in process `syz.3.2048'. [ 82.119506][ T8654] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2048'. [ 82.143817][ T8659] loop2: detected capacity change from 0 to 256 [ 82.416500][ T8681] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2061'. [ 82.425523][ T8681] netlink: 196 bytes leftover after parsing attributes in process `syz.3.2061'. [ 82.434825][ T8681] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2061'. [ 82.443864][ T8681] netlink: 196 bytes leftover after parsing attributes in process `syz.3.2061'. [ 82.471782][ T8685] loop3: detected capacity change from 0 to 512 [ 82.487712][ T8685] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 82.517108][ T3323] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.544131][ T8695] loop0: detected capacity change from 0 to 4096 [ 82.552754][ T8695] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 82.745312][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.786846][ T8712] loop4: detected capacity change from 0 to 128 [ 82.825658][ T8712] syz.4.2074: attempt to access beyond end of device [ 82.825658][ T8712] loop4: rw=2049, sector=138, nr_sectors = 16 limit=128 [ 82.852593][ T8712] syz.4.2074: attempt to access beyond end of device [ 82.852593][ T8712] loop4: rw=2049, sector=170, nr_sectors = 16 limit=128 [ 82.883982][ T8712] syz.4.2074: attempt to access beyond end of device [ 82.883982][ T8712] loop4: rw=2049, sector=202, nr_sectors = 16 limit=128 [ 83.096842][ T8760] loop4: detected capacity change from 0 to 256 [ 83.099572][ T8762] loop1: detected capacity change from 0 to 128 [ 83.112394][ T8759] pimreg: entered allmulticast mode [ 83.150564][ T8733] loop0: detected capacity change from 0 to 32768 [ 83.175270][ T8768] loop1: detected capacity change from 0 to 512 [ 83.185127][ T8733] loop0: p1 p2 p3 < > p4 < p5 p6 > [ 83.190379][ T8733] loop0: p1 start 460800 is beyond EOD, truncated [ 83.196890][ T8733] loop0: p2 size 83886080 extends beyond EOD, truncated [ 83.206751][ T8768] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.2099: bad orphan inode 15 [ 83.226083][ T8733] loop0: p5 start 460800 is beyond EOD, truncated [ 83.232748][ T8733] loop0: p6 size 83886080 extends beyond EOD, truncated [ 83.250047][ T8768] ext4_test_bit(bit=14, block=18) = 1 [ 83.255518][ T8768] is_bad_inode(inode)=0 [ 83.259698][ T8768] NEXT_ORPHAN(inode)=1023 [ 83.264069][ T8768] max_ino=32 [ 83.264079][ T8768] i_nlink=0 [ 83.286421][ T8768] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2967: inode #15: comm syz.1.2099: corrupted xattr block 19: invalid header [ 83.294697][ T8768] EXT4-fs warning (device loop1): ext4_evict_inode:274: xattr delete (err -117) [ 83.310328][ T8768] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none. [ 83.320319][ T8768] EXT4-fs (loop1): shut down requested (1) [ 83.381968][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0009-000000000000. [ 83.475510][ T29] kauditd_printk_skb: 219 callbacks suppressed [ 83.475525][ T29] audit: type=1400 audit(83.453:1417): avc: denied { create } for pid=8793 comm="syz.1.2113" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 83.523260][ T29] audit: type=1400 audit(83.483:1418): avc: denied { setopt } for pid=8793 comm="syz.1.2113" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 83.564171][ T8785] loop4: detected capacity change from 0 to 32768 [ 83.634105][ T8803] netlink: 128 bytes leftover after parsing attributes in process `syz.1.2115'. [ 83.695128][ T29] audit: type=1400 audit(83.673:1419): avc: denied { ioctl } for pid=8804 comm="syz.0.2116" path="/dev/mISDNtimer" dev="devtmpfs" ino=249 ioctlcmd=0x4940 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 83.757323][ T8809] loop4: detected capacity change from 0 to 512 [ 83.782154][ T8811] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 83.801588][ T8809] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #15: comm syz.4.2117: corrupted in-inode xattr: invalid ea_ino [ 83.815599][ T8816] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2120'. [ 83.848015][ T8818] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 83.854639][ T8809] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.2117: couldn't read orphan inode 15 (err -117) [ 83.892906][ T8809] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 83.910826][ T29] audit: type=1326 audit(83.883:1420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8821 comm="syz.0.2124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8aee90f749 code=0x7ffc0000 [ 83.933622][ T29] audit: type=1326 audit(83.883:1421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8821 comm="syz.0.2124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8aee90f749 code=0x7ffc0000 [ 83.956459][ T29] audit: type=1326 audit(83.883:1422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8821 comm="syz.0.2124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7f8aee90f749 code=0x7ffc0000 [ 83.979108][ T29] audit: type=1326 audit(83.883:1423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8821 comm="syz.0.2124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8aee90f749 code=0x7ffc0000 [ 84.002715][ T29] audit: type=1400 audit(83.913:1424): avc: denied { ioctl } for pid=8825 comm="syz.0.2126" path="socket:[20186]" dev="sockfs" ino=20186 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 84.041800][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 84.050986][ T8828] loop3: detected capacity change from 0 to 512 [ 84.064479][ T8828] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 84.085392][ T8828] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.2127: casefold flag without casefold feature [ 84.098415][ T8828] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.2127: couldn't read orphan inode 15 (err -117) [ 84.111088][ T8828] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 84.125458][ T8828] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #2: block 4: comm syz.3.2127: lblock 0 mapped to illegal pblock 4 (length 1) [ 84.158063][ T3323] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 84.167233][ T29] audit: type=1326 audit(84.123:1425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8839 comm="syz.1.2132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f716fb3f749 code=0x7ffc0000 [ 84.189982][ T29] audit: type=1326 audit(84.123:1426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8839 comm="syz.1.2132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=268 compat=0 ip=0x7f716fb3f749 code=0x7ffc0000 [ 84.243944][ T8846] 9pnet: Could not find request transport: f [ 84.280489][ T8844] loop4: detected capacity change from 0 to 8192 [ 84.305950][ T8844] vfat: Unknown parameter './file1' [ 84.306759][ T36] kernel write not supported for file /input/event0 (pid: 36 comm: kworker/1:1) [ 84.349355][ T8863] loop1: detected capacity change from 0 to 128 [ 84.532490][ T8897] netlink: 'syz.4.2160': attribute type 21 has an invalid length. [ 84.546720][ T8897] netlink: 'syz.4.2160': attribute type 1 has an invalid length. [ 84.554483][ T8897] netlink: 132 bytes leftover after parsing attributes in process `syz.4.2160'. [ 84.597885][ T31] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 84.663332][ T8906] loop4: detected capacity change from 0 to 512 [ 84.673359][ T31] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 84.691605][ T8906] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 84.722239][ T3320] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 84.748599][ T31] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 84.794657][ T8917] Invalid logical block size (32768) [ 84.802594][ T31] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 84.885316][ T31] bridge_slave_1: left allmulticast mode [ 84.891006][ T31] bridge_slave_1: left promiscuous mode [ 84.896881][ T31] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.907060][ T31] bridge_slave_0: left allmulticast mode [ 84.912732][ T31] bridge_slave_0: left promiscuous mode [ 84.918620][ T31] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.929134][ T8938] loop0: detected capacity change from 0 to 512 [ 84.949941][ T8938] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 84.985559][ T31] gretap0 (unregistering): left promiscuous mode [ 84.986578][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.027344][ T31] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 85.037654][ T31] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 85.047772][ T31] bond0 (unregistering): Released all slaves [ 85.062667][ T8936] bond0: entered promiscuous mode [ 85.067753][ T8936] bond_slave_0: entered promiscuous mode [ 85.073554][ T8936] bond_slave_1: entered promiscuous mode [ 85.081159][ T8936] batadv0: entered promiscuous mode [ 85.086740][ T8936] debugfs: 'hsr1' already exists in 'hsr' [ 85.092515][ T8936] Cannot create hsr debugfs directory [ 85.105081][ T8936] 8021q: adding VLAN 0 to HW filter on device hsr1 [ 85.137162][ T31] tipc: Disabling bearer [ 85.142470][ T31] tipc: Left network mode [ 85.175894][ T31] veth0_to_bond: left promiscuous mode [ 85.187829][ T31] hsr_slave_0: left promiscuous mode [ 85.198836][ T31] hsr_slave_1: left promiscuous mode [ 85.204434][ T31] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 85.212018][ T31] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 85.225808][ T31] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 85.233270][ T31] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 85.246443][ T8962] loop2: detected capacity change from 0 to 4096 [ 85.272582][ T31] veth1_to_batadv: left promiscuous mode [ 85.279052][ T31] veth1_macvtap: left promiscuous mode [ 85.284755][ T31] veth0_macvtap: left promiscuous mode [ 85.290860][ T8962] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 85.304627][ T31] veth1_vlan: left promiscuous mode [ 85.321261][ T31] veth0_vlan: left promiscuous mode [ 85.416631][ T31] team0 (unregistering): Port device team_slave_1 removed [ 85.426113][ T8987] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter' [ 85.436055][ T31] team0 (unregistering): Port device team_slave_0 removed [ 85.562285][ T8907] chnl_net:caif_netlink_parms(): no params data found [ 85.600726][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.652079][ T8907] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.659836][ T8907] bridge0: port 1(bridge_slave_0) entered disabled state [ 85.704956][ T8907] bridge_slave_0: entered allmulticast mode [ 85.712167][ T8907] bridge_slave_0: entered promiscuous mode [ 85.731007][ T8907] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.738234][ T8907] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.761591][ T8907] bridge_slave_1: entered allmulticast mode [ 85.775384][ T8907] bridge_slave_1: entered promiscuous mode [ 85.802810][ T8907] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 85.815614][ T8907] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 85.844619][ T31] IPVS: stop unused estimator thread 0... [ 85.850983][ T8907] team0: Port device team_slave_0 added [ 85.868370][ T8907] team0: Port device team_slave_1 added [ 85.907811][ T8907] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.914997][ T8907] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 85.940982][ T8907] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.953724][ T8907] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.960769][ T8907] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 85.987390][ T8907] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 86.036698][ T8907] hsr_slave_0: entered promiscuous mode [ 86.042719][ T8907] hsr_slave_1: entered promiscuous mode [ 86.062361][ T9042] loop0: detected capacity change from 0 to 1024 [ 86.069288][ T9042] EXT4-fs: Ignoring removed bh option [ 86.086464][ T9042] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 86.103936][ T9045] loop4: detected capacity change from 0 to 4096 [ 86.113038][ T9042] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4193: comm syz.0.2220: Allocating blocks 385-513 which overlap fs metadata [ 86.127646][ T9045] EXT4-fs: Mount option(s) incompatible with ext3 [ 86.144852][ T9041] EXT4-fs (loop0): pa ffff888106e79690: logic 16, phys. 129, len 24 [ 86.152960][ T9041] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 8 [ 86.179676][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 86.203283][ T8907] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 86.221313][ T8907] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 86.237657][ T8907] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 86.248316][ T8907] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 86.289230][ T8907] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.296448][ T8907] bridge0: port 2(bridge_slave_1) entered forwarding state [ 86.303782][ T8907] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.310925][ T8907] bridge0: port 1(bridge_slave_0) entered forwarding state [ 86.361996][ T8907] 8021q: adding VLAN 0 to HW filter on device bond0 [ 86.378591][ T3452] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.395089][ T3452] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.400087][ T9081] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 86.411740][ T9081] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 86.424821][ T9080] tipc: Started in network mode [ 86.429910][ T9080] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 86.439605][ T9080] tipc: Enabling of bearer rejected, failed to enable media [ 86.448986][ T8907] 8021q: adding VLAN 0 to HW filter on device team0 [ 86.459984][ T3452] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.467089][ T3452] bridge0: port 1(bridge_slave_0) entered forwarding state [ 86.486439][ T31] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.493568][ T31] bridge0: port 2(bridge_slave_1) entered forwarding state [ 86.574793][ T8907] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 86.680191][ T9107] xt_hashlimit: max too large, truncated to 1048576 [ 86.726345][ T8907] veth0_vlan: entered promiscuous mode [ 86.734402][ T8907] veth1_vlan: entered promiscuous mode [ 86.750636][ T9118] loop3: detected capacity change from 0 to 512 [ 86.763013][ T8907] veth0_macvtap: entered promiscuous mode [ 86.771219][ T8907] veth1_macvtap: entered promiscuous mode [ 86.781312][ T9118] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 86.799332][ T8907] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 86.811471][ T8907] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 86.822926][ T57] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.831912][ T57] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.849076][ T57] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.862707][ T57] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 86.885760][ T9130] loop2: detected capacity change from 0 to 256 [ 86.893901][ T9130] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 86.919822][ T3323] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 86.975006][ T9146] netlink: 'syz.4.2254': attribute type 15 has an invalid length. [ 87.027436][ T9158] loop5: detected capacity change from 0 to 1024 [ 87.038859][ T9158] EXT4-fs: Ignoring removed bh option [ 87.077872][ T9158] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 87.117248][ T9158] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4193: comm syz.5.2259: Allocating blocks 385-513 which overlap fs metadata [ 87.125657][ T9170] __nla_validate_parse: 4 callbacks suppressed [ 87.125673][ T9170] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2264'. [ 87.151881][ T9157] EXT4-fs (loop5): pa ffff888106e79690: logic 16, phys. 129, len 24 [ 87.159944][ T9157] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 8 [ 87.228111][ T8907] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 87.304145][ T9190] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 87.337665][ T9195] loop3: detected capacity change from 0 to 128 [ 87.348072][ T9195] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (30846!=65535) [ 87.360617][ T9195] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none. [ 87.379712][ T9195] EXT4-fs (loop3): shut down requested (0) [ 87.396940][ T3323] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 87.541870][ T9217] tap0: tun_chr_ioctl cmd 35111 [ 87.579582][ T9221] loop5: detected capacity change from 0 to 1024 [ 87.594978][ T9221] EXT4-fs: Ignoring removed orlov option [ 87.611894][ T9223] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2290'. [ 87.637338][ T9221] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 87.669003][ T9229] hsr0: entered allmulticast mode [ 87.674081][ T9229] hsr_slave_0: entered allmulticast mode [ 87.680633][ T9229] hsr_slave_1: entered allmulticast mode [ 87.698158][ T8907] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 87.718677][ T9231] netlink: 332 bytes leftover after parsing attributes in process `syz.3.2294'. [ 87.740169][ T9231] netlink: 'syz.3.2294': attribute type 9 has an invalid length. [ 87.747999][ T9231] netlink: 'syz.3.2294': attribute type 5 has an invalid length. [ 87.828118][ T9251] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2303'. [ 88.027726][ T9289] vhci_hcd: invalid port number 96 [ 88.032956][ T9289] vhci_hcd: default hub control req: 0300 vfffa i0060 l0 [ 88.517248][ T29] kauditd_printk_skb: 161 callbacks suppressed [ 88.517263][ T29] audit: type=1400 audit(88.493:1588): avc: denied { append } for pid=9356 comm="syz.3.2352" name="001" dev="devtmpfs" ino=147 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 88.518560][ T9357] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub [ 88.590510][ T29] audit: type=1400 audit(88.563:1589): avc: denied { create } for pid=9360 comm="syz.0.2354" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 88.643379][ T29] audit: type=1400 audit(88.563:1590): avc: denied { setopt } for pid=9360 comm="syz.0.2354" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 88.662515][ T29] audit: type=1400 audit(88.593:1591): avc: denied { execute } for pid=9358 comm="syz.3.2353" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=21381 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 88.694017][ T29] audit: type=1400 audit(88.673:1592): avc: denied { create } for pid=9363 comm="syz.2.2356" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 88.699394][ T9365] netlink: 68 bytes leftover after parsing attributes in process `syz.2.2356'. [ 88.728159][ T29] audit: type=1400 audit(88.673:1593): avc: denied { write } for pid=9363 comm="syz.2.2356" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 88.748552][ T29] audit: type=1400 audit(88.673:1594): avc: denied { read } for pid=9363 comm="syz.2.2356" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 88.789442][ T29] audit: type=1400 audit(88.753:1595): avc: denied { write } for pid=9368 comm="syz.4.2357" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 88.815257][ T29] audit: type=1400 audit(88.793:1596): avc: denied { ioctl } for pid=9370 comm="syz.5.2359" path="socket:[21391]" dev="sockfs" ino=21391 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 88.843488][ T29] audit: type=1400 audit(88.823:1597): avc: denied { write } for pid=9370 comm="syz.5.2359" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 88.893556][ T9375] openvswitch: netlink: Missing key (keys=40, expected=80) [ 89.097708][ T9412] loop0: detected capacity change from 0 to 512 [ 89.167241][ T9424] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2385'. [ 89.183981][ T9424] netlink: 312 bytes leftover after parsing attributes in process `syz.3.2385'. [ 89.193237][ T9424] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2385'. [ 89.209712][ T9428] netlink: 'syz.4.2387': attribute type 1 has an invalid length. [ 89.263872][ T9436] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2390'. [ 89.274876][ T9436] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2390'. [ 89.390063][ T9457] loop0: detected capacity change from 0 to 512 [ 89.390913][ T57] tipc: Subscription rejected, illegal request [ 89.410235][ T9457] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 89.439292][ T9457] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c119, mo2=0002] [ 89.454604][ T9457] System zones: 1-12 [ 89.458784][ T9457] EXT4-fs error (device loop0): ext4_iget_extra_inode:5075: inode #15: comm syz.0.2401: corrupted in-inode xattr: e_value size too large [ 89.494415][ T9457] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.2401: couldn't read orphan inode 15 (err -117) [ 89.530315][ T9457] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 89.542584][ T9475] loop2: detected capacity change from 0 to 4096 [ 89.560963][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 89.717366][ T9514] loop3: detected capacity change from 0 to 1024 [ 89.739613][ T9514] EXT4-fs: Ignoring removed nomblk_io_submit option [ 89.749681][ T9514] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 89.761676][ T9514] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.2424: Invalid block bitmap block 0 in block_group 0 [ 89.775820][ T9514] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.2424: Failed to acquire dquot type 0 [ 89.789188][ T9514] EXT4-fs error (device loop3): ext4_free_blocks:6706: comm syz.3.2424: Freeing blocks not in datazone - block = 0, count = 4096 [ 89.804392][ T9514] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.2424: Invalid inode bitmap blk 0 in block_group 0 [ 89.817803][ T9514] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem [ 89.821491][ T57] EXT4-fs error (device loop3): ext4_release_dquot:6981: comm kworker/u8:4: Failed to release dquot type 0 [ 89.838873][ T9525] loop2: detected capacity change from 0 to 512 [ 89.845341][ T9514] EXT4-fs (loop3): 1 orphan inode deleted [ 89.860336][ T9525] EXT4-fs (loop2): orphan cleanup on readonly fs [ 89.874680][ T9525] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.2429: bad orphan inode 13 [ 89.906209][ T9525] ext4_test_bit(bit=12, block=18) = 1 [ 89.911632][ T9525] is_bad_inode(inode)=0 [ 89.916523][ T9525] NEXT_ORPHAN(inode)=2130706432 [ 89.921396][ T9525] max_ino=32 [ 89.924656][ T9525] i_nlink=1 [ 90.066670][ T9561] loop2: detected capacity change from 0 to 512 [ 90.087592][ T9561] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 90.095789][ T9565] loop0: detected capacity change from 0 to 128 [ 90.102767][ T9561] EXT4-fs (loop2): orphan cleanup on readonly fs [ 90.109732][ T9561] EXT4-fs warning (device loop2): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 90.175668][ T9571] loop5: detected capacity change from 0 to 4096 [ 90.185418][ T9561] EXT4-fs (loop2): Cannot turn on quotas: error -117 [ 90.192585][ T9561] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2445: bg 0: block 40: padding at end of block bitmap is not set [ 90.213154][ T9561] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 90.246167][ T9561] EXT4-fs (loop2): 1 truncate cleaned up [ 90.312675][ T9587] tap0: tun_chr_ioctl cmd 1074025677 [ 90.322754][ T9587] tap0: linktype set to 805 [ 90.358094][ T9597] loop2: detected capacity change from 0 to 128 [ 90.378419][ T9597] bio_check_eod: 11 callbacks suppressed [ 90.378438][ T9597] syz.2.2458: attempt to access beyond end of device [ 90.378438][ T9597] loop2: rw=2049, sector=154, nr_sectors = 6 limit=128 [ 90.399759][ T9597] syz.2.2458: attempt to access beyond end of device [ 90.399759][ T9597] loop2: rw=2049, sector=158, nr_sectors = 2 limit=128 [ 90.413314][ T9597] Buffer I/O error on dev loop2, logical block 79, lost async page write [ 90.439769][ T9597] syz.2.2458: attempt to access beyond end of device [ 90.439769][ T9597] loop2: rw=2049, sector=160, nr_sectors = 2 limit=128 [ 90.453228][ T9597] Buffer I/O error on dev loop2, logical block 80, lost async page write [ 90.477088][ T9597] syz.2.2458: attempt to access beyond end of device [ 90.477088][ T9597] loop2: rw=2049, sector=162, nr_sectors = 6 limit=128 [ 90.532272][ T9597] syz.2.2458: attempt to access beyond end of device [ 90.532272][ T9597] loop2: rw=2049, sector=166, nr_sectors = 2 limit=128 [ 90.546418][ T9597] Buffer I/O error on dev loop2, logical block 83, lost async page write [ 90.552375][ T9622] loop0: detected capacity change from 0 to 512 [ 90.556015][ T9597] syz.2.2458: attempt to access beyond end of device [ 90.556015][ T9597] loop2: rw=2049, sector=168, nr_sectors = 2 limit=128 [ 90.575430][ T9597] Buffer I/O error on dev loop2, logical block 84, lost async page write [ 90.585019][ T9597] syz.2.2458: attempt to access beyond end of device [ 90.585019][ T9597] loop2: rw=2049, sector=186, nr_sectors = 6 limit=128 [ 90.616162][ T9597] syz.2.2458: attempt to access beyond end of device [ 90.616162][ T9597] loop2: rw=2049, sector=190, nr_sectors = 2 limit=128 [ 90.624575][ T9622] EXT4-fs warning (device loop0): ext4_xattr_inode_get:560: inode #11: comm syz.0.2465: EA inode hash validation failed [ 90.629675][ T9597] Buffer I/O error on dev loop2, logical block 95, lost async page write [ 90.652923][ T9597] syz.2.2458: attempt to access beyond end of device [ 90.652923][ T9597] loop2: rw=2049, sector=192, nr_sectors = 2 limit=128 [ 90.667079][ T9597] Buffer I/O error on dev loop2, logical block 96, lost async page write [ 90.675915][ T9597] syz.2.2458: attempt to access beyond end of device [ 90.675915][ T9597] loop2: rw=2049, sector=194, nr_sectors = 6 limit=128 [ 90.690415][ T9597] Buffer I/O error on dev loop2, logical block 99, lost async page write [ 90.699567][ T9597] Buffer I/O error on dev loop2, logical block 100, lost async page write [ 90.709934][ T9622] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #15: comm syz.0.2465: corrupted inode contents [ 90.715313][ T9597] Buffer I/O error on dev loop2, logical block 111, lost async page write [ 90.732059][ T9622] EXT4-fs error (device loop0): ext4_dirty_inode:6517: inode #15: comm syz.0.2465: mark_inode_dirty error [ 90.755474][ T9622] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #15: comm syz.0.2465: corrupted inode contents [ 90.757464][ T9597] Buffer I/O error on dev loop2, logical block 112, lost async page write [ 90.793217][ T9622] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2996: inode #15: comm syz.0.2465: mark_inode_dirty error [ 90.858839][ T9622] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2999: inode #15: comm syz.0.2465: mark inode dirty (error -117) [ 90.861209][ T9654] loop5: detected capacity change from 0 to 512 [ 90.908467][ T9622] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -117) [ 90.926681][ T9654] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.2474: bg 0: block 248: padding at end of block bitmap is not set [ 90.942701][ T9622] EXT4-fs (loop0): 1 orphan inode deleted [ 90.952525][ T9654] EXT4-fs error (device loop5): ext4_acquire_dquot:6945: comm syz.5.2474: Failed to acquire dquot type 1 [ 90.965790][ T9654] EXT4-fs (loop5): 1 truncate cleaned up [ 91.039506][ T9677] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=9677 comm=syz.5.2478 [ 91.187660][ T9704] loop0: detected capacity change from 0 to 2048 [ 91.236343][ T9716] loop5: detected capacity change from 0 to 1024 [ 91.243144][ T9716] EXT4-fs: inline encryption not supported [ 91.257301][ T9716] EXT4-fs: test_dummy_encryption option not supported [ 91.322914][ T9725] vhci_hcd: invalid port number 23 [ 92.173514][ T9868] __nla_validate_parse: 55 callbacks suppressed [ 92.173531][ T9868] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2526'. [ 92.423176][ T9902] dummy0: mtu less than device minimum [ 92.462118][ T9910] loop4: detected capacity change from 0 to 128 [ 92.546957][ T9924] loop4: detected capacity change from 0 to 128 [ 92.553853][ T9924] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 92.627268][ T9934] netlink: 'syz.0.2559': attribute type 4 has an invalid length. [ 92.635161][ T9934] netlink: 152 bytes leftover after parsing attributes in process `syz.0.2559'. [ 92.666212][ T9934] .`: renamed from bond0 (while UP) [ 92.720971][ T9947] loop4: detected capacity change from 0 to 512 [ 92.732525][ T9947] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.2564: inode has both inline data and extents flags [ 92.757321][ T9947] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.2564: couldn't read orphan inode 15 (err -117) [ 92.779167][ T9956] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 92.787955][ T9956] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 92.801231][ T9947] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2564: bg 0: block 320: padding at end of block bitmap is not set [ 93.098385][T10009] netlink: 36 bytes leftover after parsing attributes in process `syz.5.2594'. [ 93.281420][T10038] netlink: 'syz.4.2607': attribute type 3 has an invalid length. [ 93.428937][T10055] netlink: 'syz.3.2615': attribute type 1 has an invalid length. [ 93.557998][T10078] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2626'. [ 93.571005][ T29] kauditd_printk_skb: 186 callbacks suppressed [ 93.571020][ T29] audit: type=1326 audit(93.543:1778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10080 comm="syz.3.2627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c9f1ef749 code=0x7ffc0000 [ 93.600364][ T29] audit: type=1326 audit(93.543:1779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10080 comm="syz.3.2627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c9f1ef749 code=0x7ffc0000 [ 93.626097][T10078] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2626'. [ 93.644129][ T29] audit: type=1326 audit(93.603:1780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10080 comm="syz.3.2627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=114 compat=0 ip=0x7f6c9f1ef749 code=0x7ffc0000 [ 93.651678][T10087] loop0: detected capacity change from 0 to 512 [ 93.667773][ T29] audit: type=1326 audit(93.603:1781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10080 comm="syz.3.2627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c9f1ef749 code=0x7ffc0000 [ 93.673739][T10087] EXT4-fs: Ignoring removed i_version option [ 93.696772][ T29] audit: type=1326 audit(93.603:1782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10080 comm="syz.3.2627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c9f1ef749 code=0x7ffc0000 [ 93.702030][T10087] EXT4-fs: Ignoring removed bh option [ 93.725628][ T29] audit: type=1326 audit(93.613:1783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10083 comm="syz.5.2628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fcd11f749 code=0x7ffc0000 [ 93.753268][ T29] audit: type=1326 audit(93.613:1784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10083 comm="syz.5.2628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fcd11f749 code=0x7ffc0000 [ 93.776190][ T29] audit: type=1326 audit(93.613:1785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10083 comm="syz.5.2628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f4fcd11f749 code=0x7ffc0000 [ 93.799604][ T29] audit: type=1326 audit(93.613:1786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10083 comm="syz.5.2628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fcd11f749 code=0x7ffc0000 [ 93.822515][ T29] audit: type=1326 audit(93.613:1787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10083 comm="syz.5.2628" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fcd11f749 code=0x7ffc0000 [ 93.991497][T10122] serio: Serial port ptm0 [ 94.090486][T10143] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2655'. [ 94.191156][T10160] loop2: detected capacity change from 0 to 2048 [ 94.198796][T10166] netlink: 14 bytes leftover after parsing attributes in process `syz.5.2666'. [ 94.362635][T10188] 9pnet_fd: Insufficient options for proto=fd [ 94.376787][T10190] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2678'. [ 94.422993][T10199] loop3: detected capacity change from 0 to 128 [ 94.481226][T10208] loop5: detected capacity change from 0 to 128 [ 94.537596][T10216] binfmt_misc: register: failed to install interpreter file ./file0 [ 94.884076][T10244] 9pnet: Could not find request transport: r [ 94.982081][T10252] netlink: 'syz.4.2706': attribute type 14 has an invalid length. [ 95.066877][T10258] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=14385 sclass=netlink_route_socket pid=10258 comm=syz.3.2709 [ 95.404066][T10295] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2727'. [ 95.412263][ T3421] kernel write not supported for file /snd/seq (pid: 3421 comm: kworker/1:3) [ 95.610210][T10313] netlink: 7 bytes leftover after parsing attributes in process `syz.0.2736'. [ 95.698435][T10338] loop5: detected capacity change from 0 to 2048 [ 95.759172][T10338] Alternate GPT is invalid, using primary GPT. [ 95.766265][T10338] loop5: p2 p3 p7 [ 96.010662][T10382] netlink: 'syz.5.2765': attribute type 2 has an invalid length. [ 96.719334][T10418] xt_hashlimit: max too large, truncated to 1048576 [ 96.787984][T10426] loop4: detected capacity change from 0 to 2048 [ 96.812283][T10426] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters [ 96.833732][T10426] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28 [ 96.846280][T10426] EXT4-fs (loop4): This should not happen!! Data will be lost [ 96.846280][T10426] [ 96.856041][T10426] EXT4-fs (loop4): Total free blocks count 0 [ 96.862174][T10426] EXT4-fs (loop4): Free/Dirty block details [ 96.868430][T10426] EXT4-fs (loop4): free_blocks=66060288 [ 96.874213][T10426] EXT4-fs (loop4): dirty_blocks=48 [ 96.879386][T10426] EXT4-fs (loop4): Block reservation details [ 96.885410][T10426] EXT4-fs (loop4): i_reserved_data_blocks=3 [ 96.952809][T10443] loop3: detected capacity change from 0 to 128 [ 97.015436][ T57] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 97.027716][ T57] EXT4-fs (loop4): This should not happen!! Data will be lost [ 97.027716][ T57] [ 97.267548][T10490] netlink: 'syz.4.2814': attribute type 1 has an invalid length. [ 97.316993][T10500] loop3: detected capacity change from 0 to 128 [ 97.363763][T10505] SELinux: failed to load policy [ 97.471671][T10521] loop3: detected capacity change from 0 to 512 [ 97.478938][T10521] EXT4-fs: Ignoring removed i_version option [ 97.485065][T10521] EXT4-fs: Ignoring removed bh option [ 97.551403][T10502] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 97.561644][T10502] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 97.572347][T10530] __nla_validate_parse: 10 callbacks suppressed [ 97.572362][T10530] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2829'. [ 97.589004][T10530] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2829'. [ 97.663455][T10545] loop3: detected capacity change from 0 to 512 [ 97.675315][T10545] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.2834: inode has both inline data and extents flags [ 97.675533][T10550] IPv6: Can't replace route, no match found [ 97.690420][T10545] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.2834: couldn't read orphan inode 15 (err -117) [ 97.715638][T10545] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2834: bg 0: block 320: padding at end of block bitmap is not set [ 97.852647][T10582] loop3: detected capacity change from 0 to 512 [ 97.861773][T10582] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 97.882574][T10582] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.2844: bad orphan inode 131083 [ 97.952999][T10601] ALSA: seq fatal error: cannot create timer (-19) [ 97.993203][T10611] loop3: detected capacity change from 0 to 128 [ 98.112149][T10639] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2855'. [ 98.175394][T10650] netlink: 4124 bytes leftover after parsing attributes in process `syz.4.2857'. [ 98.326835][ T3320] ================================================================== [ 98.334966][ T3320] BUG: KCSAN: data-race in avc_policy_seqno / avc_ss_reset [ 98.342289][ T3320] [ 98.344619][ T3320] write to 0xffffffff88eb5c28 of 4 bytes by task 10677 on cpu 1: [ 98.352341][ T3320] avc_ss_reset+0x20c/0x240 [ 98.356885][ T3320] security_set_bools+0x301/0x340 [ 98.361939][ T3320] sel_commit_bools_write+0x1ea/0x270 [ 98.367361][ T3320] vfs_writev+0x406/0x8b0 [ 98.369343][T10682] netlink: 'syz.5.2867': attribute type 1 has an invalid length. [ 98.371774][ T3320] do_writev+0xe7/0x210 [ 98.383671][ T3320] __x64_sys_writev+0x45/0x50 [ 98.388361][ T3320] x64_sys_call+0x1e9a/0x3000 [ 98.393052][ T3320] do_syscall_64+0xd2/0x200 [ 98.397556][ T3320] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 98.403457][ T3320] [ 98.405777][ T3320] read to 0xffffffff88eb5c28 of 4 bytes by task 3320 on cpu 0: [ 98.413335][ T3320] avc_policy_seqno+0x15/0x30 [ 98.418025][ T3320] selinux_inode_permission+0x3bd/0x7c0 [ 98.423585][ T3320] security_inode_permission+0x6d/0xb0 [ 98.429045][ T3320] inode_permission+0x106/0x310 [ 98.433909][ T3320] link_path_walk+0x162/0x900 [ 98.438621][ T3320] __filename_parentat+0x15c/0x3f0 [ 98.443733][ T3320] do_unlinkat+0x99/0x480 [ 98.448068][ T3320] __x64_sys_unlink+0x2e/0x40 [ 98.452772][ T3320] x64_sys_call+0x2dcf/0x3000 [ 98.457456][ T3320] do_syscall_64+0xd2/0x200 [ 98.461963][ T3320] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 98.467874][ T3320] [ 98.470195][ T3320] value changed: 0x00000003 -> 0x00000004 [ 98.475912][ T3320] [ 98.478235][ T3320] Reported by Kernel Concurrency Sanitizer on: [ 98.484387][ T3320] CPU: 0 UID: 0 PID: 3320 Comm: syz-executor Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 98.495860][ T3320] Tainted: [W]=WARN [ 98.499658][ T3320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 98.509709][ T3320] ================================================================== [ 98.581188][ T29] kauditd_printk_skb: 113 callbacks suppressed [ 98.581205][ T29] audit: type=1400 audit(98.553:1901): avc: denied { module_request } for pid=10533 comm="syz.0.2831" kmod="crypto-cbc(serpent)" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1