last executing test programs: 1m18.536801791s ago: executing program 3 (id=952): r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=@newqdisc={0x44, 0x24, 0x3fe3aa0262d8c583, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xf}, {0xffff, 0xffff}, {0x1}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0x14, 0x8002, [@TCA_FQ_PIE_ECN={0x8}, @TCA_FQ_PIE_ECN_PROB={0x8, 0x9, 0x36}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x2}, 0x2000400c) 1m18.534823151s ago: executing program 3 (id=953): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) socket$key(0xf, 0x3, 0x2) sendmsg$nl_xfrm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000900)=@newsa={0x13c, 0x10, 0x1, 0x8000000, 0x0, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, {@in=@broadcast, 0x0, 0x33}, @in=@local, {0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x5680000000}, {0x10, 0x9, 0x2}, 0x0, 0x34ff, 0x2, 0x1, 0x0, 0x10}, [@algo_auth={0x4c, 0x1, {{'sha256\x00'}, 0x20, "48e60d21"}}]}, 0x13c}}, 0x0) 1m18.469445312s ago: executing program 3 (id=954): r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x60442, 0x0) r1 = dup(r0) ioctl$PTP_PEROUT_REQUEST2(r1, 0x40383d0c, &(0x7f0000000280)={{0x2, 0x3a24}, {0xd9, 0x7}, 0x1, 0x5}) 1m18.468554873s ago: executing program 3 (id=956): mknodat$loop(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0x6000, 0x0) r0 = open(&(0x7f00000003c0)='./file2\x00', 0x81, 0x0) sync_file_range(r0, 0x0, 0x3b3, 0x7) 1m18.420885414s ago: executing program 3 (id=958): r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10) symlink(&(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 1m18.359193305s ago: executing program 3 (id=961): r0 = socket(0x40000000015, 0x5, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x4000000, @ipv4={'\x00', '\xff\xff', @local}, 0x3}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x3, @loopback={0xe0}, 0xfffffffc}, 0x1c) 1m3.337646815s ago: executing program 32 (id=961): r0 = socket(0x40000000015, 0x5, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x4000000, @ipv4={'\x00', '\xff\xff', @local}, 0x3}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x3, @loopback={0xe0}, 0xfffffffc}, 0x1c) 2.398299585s ago: executing program 2 (id=3170): capset(&(0x7f0000000000)={0x20071026}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff}) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000001640), 0x0, 0x0) io_setup(0x2, &(0x7f00000001c0)=0x0) io_submit(r1, 0x1, &(0x7f00000012c0)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x2004, r0, 0x0, 0xfffffe60, 0x800, 0x0, 0x6}]) 2.366318716s ago: executing program 4 (id=3172): r0 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff}) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f00000003c0)={'batadv0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)=@newqdisc={0x40, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0x8}, {0xffff, 0xffff}, {0xfff1}}, [@qdisc_kind_options=@q_pie={{0x8}, {0x14, 0x2, [@TCA_PIE_ALPHA={0x8, 0x4, 0xf}, @TCA_PIE_LIMIT={0x8, 0x2, 0x11}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x0) 2.290732237s ago: executing program 4 (id=3173): capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffffb}) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x1e, 0x1c, &(0x7f0000001840)=ANY=[@ANYBLOB="1800000000000000000000000300000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000b7080000000000007b9af8ff00000000b7080000080000007b00020000000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018220000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7050000080000006200000076000000bf91000000000000b5020000000000008500000085000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_lookup=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 2.232348738s ago: executing program 2 (id=3177): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000000140)={0x0, {{0xa, 0x10, 0x0, @mcast2}}}, 0x88) setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000380)=ANY=[@ANYBLOB="0b000000000000000a00000000000000ff020000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000020000000a00000000000000fe8000000000000000000000000000bb00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000fe8000000000000000000000000000bb"], 0x190) syz_emit_ethernet(0xa2, &(0x7f0000000600)=ANY=[@ANYBLOB="bbbbbbbbbbbbbbbbbbbbbbbb86dd60122d92006c3a01fe8000000000000000000000000000bbff020000000000000000000000000001"], 0x0) 2.177144659s ago: executing program 4 (id=3178): r0 = syz_io_uring_setup(0x1a1d, &(0x7f0000000180)={0x0, 0x755e, 0x13481, 0x3, 0x2b5, 0x0, 0x0}, &(0x7f0000000080), &(0x7f0000000040)) r1 = memfd_create(&(0x7f0000000540)='\x02A\xbb\xcc\x96\x0eo\x1f\xe2@\xcc\xb1Yg\x00\x00\x00\x00\x00\x00', 0x0) fallocate(r1, 0x0, 0x800657, 0x40000b7) io_uring_enter(r0, 0x0, 0x1, 0x1, 0x0, 0x0) 2.176863579s ago: executing program 2 (id=3179): openat$random(0xffffffffffffff9c, &(0x7f0000000280), 0x109900, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='syscall\x00') r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000000), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}}) 2.076907611s ago: executing program 2 (id=3183): syz_genetlink_get_family_id$smc(0x0, 0xffffffffffffffff) ioctl$sock_inet_SIOCGARP(0xffffffffffffffff, 0x8954, 0x0) r0 = socket$unix(0x1, 0x2, 0x0) ioctl$sock_SIOCSIFBR(r0, 0x8941, &(0x7f0000000040)=@get={0x1, &(0x7f00000002c0)=""/220, 0x8}) 2.068185001s ago: executing program 2 (id=3185): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x880) io_setup(0x8f0, &(0x7f0000002400)=0x0) io_submit(r1, 0x0, 0x0) 1.108866359s ago: executing program 4 (id=3199): syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f00000000c0)={[{@noload}, {@stripe={'stripe', 0x3d, 0xdc}}, {@bsdgroups}, {@noload}, {@abort}, {@auto_da_alloc}]}, 0xff, 0x459, &(0x7f00000004c0)="$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") r0 = open(&(0x7f0000000180)='./file1\x00', 0x64042, 0x0) pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x2000, 0x0, 0x3) ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, &(0x7f0000000280)={0x4040430fb, 0xfffffffffffffffa, 0x5, 0x9}) 1.107724569s ago: executing program 0 (id=3210): socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt(r0, 0xff, 0x1, &(0x7f0000000000)='z', 0x1) syz_emit_ethernet(0x3e, &(0x7f0000000140)={@link_local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x4}, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010100, @local}, @time_exceeded={0x3, 0x0, 0x0, 0x3, 0x0, 0x3f18, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast2=0xac14140a, @dev}}}}}}, 0x0) 1.02424501s ago: executing program 0 (id=3201): unshare(0x60000600) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@ipv4_newrule={0x24, 0x20, 0x301, 0x70bd27, 0x25dfdbff, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1e}, [@FRA_GENERIC_POLICY=@FRA_IP_PROTO={0x5, 0x16, 0xd6}]}, 0x24}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="2800000021000100"], 0x28}}, 0x0) 560.208509ms ago: executing program 5 (id=3205): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f00000002c0)={0x2, 0x4e21, @empty}, 0x10) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10) shutdown(r0, 0x1) 480.515481ms ago: executing program 5 (id=3206): bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa11000c3985a8207010000f8ffffffb702000008000000b703000000000000850001080600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x7b, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000001a00)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @flow_dissector=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc92b18236457ee3c8", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 479.253241ms ago: executing program 0 (id=3218): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) 469.240391ms ago: executing program 4 (id=3207): r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0) r1 = syz_io_uring_setup(0x70ca, &(0x7f0000000080)={0x0, 0x2, 0x10000, 0x3, 0x2aa}, &(0x7f0000000140)=0x0, &(0x7f00000007c0)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x40, 0x0, @fd=r0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000580)="1a", 0x1}], 0x1}) io_uring_enter(r1, 0x2272, 0x2, 0x5, 0x0, 0x0) 393.076632ms ago: executing program 1 (id=3209): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff}) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000024000000080000000b"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1, 0xffffffffffffffff}, &(0x7f0000000340), &(0x7f0000000380)=r0}, 0x20) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000040)={r2, &(0x7f0000000000), 0x0}, 0x20) 384.059412ms ago: executing program 1 (id=3211): pipe2(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r1 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)={0x60002016}) fcntl$setpipe(r0, 0x407, 0x10005) 317.955073ms ago: executing program 4 (id=3212): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4001, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c) writev(r0, &(0x7f0000000180)=[{&(0x7f0000000080)="9976", 0x2}], 0x1) ioctl$sock_inet6_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000000)) 271.980534ms ago: executing program 1 (id=3213): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_BINDTODEVICE_wg(r0, 0x1, 0x19, &(0x7f0000000140)='wg0\x00', 0x4) connect$inet(r0, &(0x7f00000001c0)={0x2, 0x2, @multicast1}, 0x10) sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x191c) 150.123647ms ago: executing program 5 (id=3214): r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e) ioctl$PPPIOCGCHAN(r0, 0x80047437, &(0x7f0000001f00)) sendmmsg(r0, &(0x7f0000007180)=[{{0x0, 0x0, 0x0}}], 0x1, 0x10014) 89.171408ms ago: executing program 1 (id=3215): r0 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan0\x00', 0x0}) bind$can_j1939(r0, &(0x7f0000000100)={0x1d, r1, 0x2, {0x2, 0x0, 0x1}, 0xfd}, 0x18) bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1, 0x2, {0x2, 0x1, 0x2}}, 0x18) 88.900608ms ago: executing program 0 (id=3216): socket$igmp(0x2, 0x3, 0x2) mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0) personality(0xfe47fef9f5ff7379) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) 88.769808ms ago: executing program 5 (id=3217): r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x1900) r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) unshare(0x24060400) move_mount(r1, &(0x7f0000000140)='.\x00', r0, 0x0, 0x41) 87.573768ms ago: executing program 5 (id=3226): ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, 0x0) r0 = syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x9}, 0x106200, 0x10004, 0x20da, 0x5, 0xa, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000106}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) ioctl$SG_GET_VERSION_NUM(r0, 0x2284, &(0x7f0000000080)) 80.086138ms ago: executing program 0 (id=3219): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f00000002c0)={0x2, 0x4e21, @empty}, 0x10) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10) shutdown(r0, 0x1) 79.373088ms ago: executing program 1 (id=3220): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26}, 0x28) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x1}, 0x6d) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x1a, 0x1, &(0x7f0000000400)=@raw=[@exit], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x94) 47.834438ms ago: executing program 2 (id=3221): syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f00000000c0)={[{@noload}, {@stripe={'stripe', 0x3d, 0xdc}}, {@bsdgroups}, {@noload}, {@abort}, {@auto_da_alloc}]}, 0xff, 0x459, &(0x7f00000004c0)="$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") r0 = open(&(0x7f0000000180)='./file1\x00', 0x64042, 0x0) pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x2000, 0x0, 0x3) ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, &(0x7f0000000280)={0x4040430fb, 0xfffffffffffffffa, 0x5, 0x9}) 760.47µs ago: executing program 5 (id=3222): r0 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macsec0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x1, 0x10, 0x25dfdbff, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_WINDOW={0x8, 0x5, 0x5}]}}}]}, 0x3c}}, 0x0) 425.449µs ago: executing program 1 (id=3223): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="020000000400000008d7460001"], 0x48) sendto$packet(0xffffffffffffffff, &(0x7f00000005c0)="bad330fbc9b554000400", 0xa, 0x40, 0x0, 0x0) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000f00)={{r0, 0xffffffffffffffff}, &(0x7f0000000e80), &(0x7f0000000ec0)='%pi6 \x00'}, 0x20) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000f40)={&(0x7f00000005c0), 0x0, 0x0, 0x0, 0x4181737d, r1}, 0x38) 0s ago: executing program 0 (id=3224): perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2b, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x9}, 0x106200, 0x1000, 0x20da, 0x0, 0xa, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x100) fcntl$setlease(r0, 0x400, 0x0) fcntl$setlease(r0, 0x400, 0x2) kernel console output (not intermixed with test programs): 00-0000-000000000000. [ 72.905162][ T6364] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 72.914735][ T3324] loop2: lost filesystem error report for type 5 error -117 [ 72.926527][ T6364] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 72.953596][ T3324] EXT4-fs error (device loop2): ext4_quota_off:7285: inode #3: comm syz-executor: mark_inode_dirty error [ 72.974682][ T3324] loop2: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 73.270470][ T6400] openvswitch: netlink: Key type 30 is not supported [ 73.375337][ T28] kauditd_printk_skb: 22 callbacks suppressed [ 73.375355][ T28] audit: type=1400 audit(1774656044.522:552): avc: denied { append } for pid=6404 comm="syz.4.1350" name="001" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 73.565067][ T28] audit: type=1400 audit(1774656044.702:553): avc: denied { shutdown } for pid=6407 comm="syz.0.1351" laddr=fe80::13 lport=59112 faddr=fe80::38 fport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 73.718492][ T6424] ieee802154 phy0 wpan0: encryption failed: -22 [ 73.728068][ T28] audit: type=1400 audit(1774656044.862:554): avc: denied { write } for pid=6421 comm="syz.4.1357" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 73.752974][ T6427] set_capacity_and_notify: 1 callbacks suppressed [ 73.752996][ T6427] loop1: detected capacity change from 0 to 256 [ 73.816879][ T28] audit: type=1400 audit(1774656044.922:555): avc: denied { ioctl } for pid=6428 comm="syz.0.1361" path="socket:[13940]" dev="sockfs" ino=13940 ioctlcmd=0x89f1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 73.908978][ T28] audit: type=1400 audit(1774656044.942:556): avc: denied { write } for pid=6430 comm="syz.0.1362" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1 [ 73.989893][ T6441] loop2: detected capacity change from 0 to 256 [ 74.031035][ T6452] netlink: set zone limit has 8 unknown bytes [ 74.038422][ T6441] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 74.159427][ T28] audit: type=1400 audit(1774656045.302:557): avc: denied { getopt } for pid=6458 comm="syz.1.1376" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 74.299017][ T6476] loop2: detected capacity change from 0 to 128 [ 74.440167][ T6493] loop2: detected capacity change from 0 to 1024 [ 74.473367][ T6493] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 74.515164][ T6493] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 74.545617][ T6493] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 74.582658][ T6493] EXT4-fs error (device loop2): ext4_get_journal_inode:5863: inode #5: comm syz.2.1389: unexpected bad inode w/o EXT4_IGET_BAD [ 74.606033][ T28] audit: type=1326 audit(1774656045.752:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6504 comm="syz.1.1395" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdd01efc799 code=0x0 [ 74.635018][ T6493] loop2: lost file I/O error report for ino 5 type 5 pos 0x0 len 0x0 error -117 [ 74.635276][ T6493] EXT4-fs (loop2): no journal found [ 74.649894][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 74.649921][ C0] EXT4-fs (loop2): initial error at time 1774656045: ext4_get_journal_inode:5863: inode 5 [ 74.649969][ C0] EXT4-fs (loop2): last error at time 1774656045: ext4_get_journal_inode:5863: inode 5 [ 74.701403][ T6493] EXT4-fs (loop2): can't get journal size [ 74.708217][ T6493] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 74.745059][ T6493] EXT4-fs (loop2): ext4_remount: Checksum for group 0 failed (42152!=20869) [ 74.881219][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.042164][ T28] audit: type=1400 audit(1774656046.182:559): avc: denied { create } for pid=6529 comm="syz.4.1407" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 75.103524][ T28] audit: type=1400 audit(1774656046.242:560): avc: denied { unlink } for pid=3319 comm="syz-executor" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="tmpfs" ino=1654 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 75.154625][ T6536] __nla_validate_parse: 6 callbacks suppressed [ 75.154641][ T6536] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1409'. [ 75.188347][ T6535] loop4: detected capacity change from 0 to 512 [ 75.211366][ T6540] Cannot find set identified by id 3 to match [ 75.253035][ T6535] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 75.274364][ T6535] ext4 filesystem being mounted at /321/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 75.284757][ T28] audit: type=1400 audit(1774656046.412:561): avc: denied { mounton } for pid=6544 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 75.416767][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.535520][ T50] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 75.564075][ T6544] ip6_vti0 speed is unknown, defaulting to 1000 [ 75.589992][ T50] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 75.678719][ T50] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 75.858700][ T50] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 75.900042][ T117] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 75.911046][ T6604] netlink: 'syz.0.1436': attribute type 2 has an invalid length. [ 75.933535][ T117] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 75.939548][ T6604] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1436'. [ 75.985433][ T117] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 76.008387][ T117] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 76.112127][ T50] bridge_slave_1: left allmulticast mode [ 76.127392][ T50] bridge_slave_1: left promiscuous mode [ 76.127559][ T50] bridge0: port 2(bridge_slave_1) entered disabled state [ 76.128358][ T50] bridge_slave_0: left allmulticast mode [ 76.128387][ T50] bridge_slave_0: left promiscuous mode [ 76.128489][ T50] bridge0: port 1(bridge_slave_0) entered disabled state [ 76.226122][ T317] smc: removing ib device syz2 [ 76.332500][ T50] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 76.384842][ T50] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 76.393667][ T6627] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1446'. [ 76.429549][ T50] bond0 (unregistering): Released all slaves [ 76.450923][ T50] bond1 (unregistering): Released all slaves [ 76.486423][ T6633] loop4: detected capacity change from 0 to 512 [ 76.493299][ T6633] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 76.516425][ T6633] EXT4-fs (loop4): 1 truncate cleaned up [ 76.524202][ T35] ip6_vti0 speed is unknown, defaulting to 1000 [ 76.530138][ T6544] chnl_net:caif_netlink_parms(): no params data found [ 76.537467][ T35] syz2: Port: 1 Link DOWN [ 76.572917][ T6633] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 76.654692][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.792638][ T6544] bridge0: port 1(bridge_slave_0) entered blocking state [ 76.815589][ T6544] bridge0: port 1(bridge_slave_0) entered disabled state [ 76.822878][ T6544] bridge_slave_0: entered allmulticast mode [ 76.829808][ T6544] bridge_slave_0: entered promiscuous mode [ 76.836977][ T6544] bridge0: port 2(bridge_slave_1) entered blocking state [ 76.844196][ T6544] bridge0: port 2(bridge_slave_1) entered disabled state [ 76.851861][ T6544] bridge_slave_1: entered allmulticast mode [ 76.858803][ T6544] bridge_slave_1: entered promiscuous mode [ 76.876291][ T50] hsr_slave_0: left promiscuous mode [ 76.885147][ T50] hsr_slave_1: left promiscuous mode [ 76.891163][ T50] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 76.911690][ T50] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 76.961916][ T50] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 76.970086][ T50] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 76.972118][ T6682] loop4: detected capacity change from 0 to 512 [ 76.987714][ T50] veth1_macvtap: left promiscuous mode [ 76.993456][ T50] veth0_macvtap: left promiscuous mode [ 77.003629][ T50] veth1_vlan: left promiscuous mode [ 77.015664][ T6682] FAT-fs (loop4): Directory bread(block 199916) failed [ 77.022672][ T6682] FAT-fs (loop4): Directory bread(block 199917) failed [ 77.027256][ T50] veth0_vlan: left promiscuous mode [ 77.040765][ T6682] FAT-fs (loop4): Directory bread(block 199918) failed [ 77.061079][ T6682] FAT-fs (loop4): Directory bread(block 199919) failed [ 77.083554][ T6682] FAT-fs (loop4): Directory bread(block 199920) failed [ 77.090833][ T6682] FAT-fs (loop4): Directory bread(block 199921) failed [ 77.098047][ T6682] FAT-fs (loop4): Directory bread(block 199922) failed [ 77.105189][ T6682] FAT-fs (loop4): Directory bread(block 199923) failed [ 77.117213][ T6682] FAT-fs (loop4): Directory bread(block 199916) failed [ 77.124311][ T6682] FAT-fs (loop4): Directory bread(block 199917) failed [ 77.195624][ T50] team0 (unregistering): Port device team_slave_1 removed [ 77.209081][ T50] team0 (unregistering): Port device team_slave_0 removed [ 77.264029][ T6544] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 77.282221][ T6544] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 77.303711][ T6544] team0: Port device team_slave_0 added [ 77.312113][ T6544] team0: Port device team_slave_1 added [ 77.334357][ T6544] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 77.343553][ T6544] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 77.370682][ T6544] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 77.383577][ T6544] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 77.391071][ T6544] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 77.432917][ T6544] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 77.535452][ T6544] hsr_slave_0: entered promiscuous mode [ 77.551713][ T6544] hsr_slave_1: entered promiscuous mode [ 77.581249][ T6712] vlan2: entered promiscuous mode [ 77.927523][ T6741] loop4: detected capacity change from 0 to 512 [ 78.004774][ T6544] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 78.027950][ T6751] loop2: detected capacity change from 0 to 1024 [ 78.056246][ T6544] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 78.068911][ T6751] EXT4-fs: inline encryption not supported [ 78.078025][ T6544] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 78.092550][ T6751] EXT4-fs: Ignoring removed nobh option [ 78.100847][ T6544] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 78.108042][ T6751] EXT4-fs: Ignoring removed bh option [ 78.186077][ T6741] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 78.201311][ T6741] ext4 filesystem being mounted at /348/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 78.227880][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.242808][ T6751] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 78.355257][ T6544] 8021q: adding VLAN 0 to HW filter on device bond0 [ 78.365213][ T6779] netlink: 'syz.1.1490': attribute type 16 has an invalid length. [ 78.374859][ T6779] netlink: 'syz.1.1490': attribute type 17 has an invalid length. [ 78.378532][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.427364][ T6779] sit0: left promiscuous mode [ 78.475698][ T28] kauditd_printk_skb: 19 callbacks suppressed [ 78.475716][ T28] audit: type=1400 audit(1774656049.622:581): avc: denied { getopt } for pid=6788 comm="syz.4.1495" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 78.567239][ T6779] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 78.590072][ T6544] 8021q: adding VLAN 0 to HW filter on device team0 [ 78.615847][ T117] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.622962][ T117] bridge0: port 1(bridge_slave_0) entered forwarding state [ 78.658456][ T117] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.665604][ T117] bridge0: port 2(bridge_slave_1) entered forwarding state [ 78.807019][ T6544] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 78.883287][ T6832] C: renamed from team_slave_0 (while UP) [ 78.911491][ T6832] netlink: 164 bytes leftover after parsing attributes in process `syz.1.1506'. [ 79.096842][ T6854] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1511'. [ 79.153487][ T6544] veth0_vlan: entered promiscuous mode [ 79.159719][ T28] audit: type=1400 audit(1774656050.292:582): avc: denied { read write } for pid=6859 comm="syz.1.1513" name="uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 79.161118][ T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 79.199892][ T6544] veth1_vlan: entered promiscuous mode [ 79.225244][ T6544] veth0_macvtap: entered promiscuous mode [ 79.236646][ T28] audit: type=1400 audit(1774656050.292:583): avc: denied { open } for pid=6859 comm="syz.1.1513" path="/dev/uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 79.265362][ T35] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 79.265817][ T6544] veth1_macvtap: entered promiscuous mode [ 79.285160][ T35] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz0] on syz1 [ 79.317950][ T6544] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 79.346392][ T6544] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 79.367326][ T50] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.380614][ T50] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.393512][ T6861] fido_id[6861]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 79.416902][ T50] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.435550][ T50] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.465185][ T28] audit: type=1400 audit(1774656050.602:584): avc: denied { create } for pid=6866 comm="syz.1.1517" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 79.487543][ T6868] loop2: detected capacity change from 0 to 512 [ 79.508794][ T6868] EXT4-fs: Ignoring removed nobh option [ 79.534913][ T28] audit: type=1400 audit(1774656050.652:585): avc: denied { listen } for pid=6866 comm="syz.1.1517" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 79.537179][ T6871] loop0: detected capacity change from 0 to 512 [ 79.569634][ T6868] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 79.581350][ T28] audit: type=1400 audit(1774656050.662:586): avc: denied { ioctl } for pid=6866 comm="syz.1.1517" path="socket:[16679]" dev="sockfs" ino=16679 ioctlcmd=0x89e7 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 79.595981][ T6871] EXT4-fs: Ignoring removed oldalloc option [ 79.630545][ T28] audit: type=1400 audit(1774656050.672:587): avc: denied { mounton } for pid=6544 comm="syz-executor" path="/root/syzkaller.6DY8JU/syz-tmp" dev="sda1" ino=2047 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 79.657071][ T28] audit: type=1400 audit(1774656050.672:588): avc: denied { mount } for pid=6544 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 79.679438][ T28] audit: type=1400 audit(1774656050.672:589): avc: denied { mounton } for pid=6544 comm="syz-executor" path="/root/syzkaller.6DY8JU/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 79.685909][ T6868] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 79.707968][ T28] audit: type=1400 audit(1774656050.672:590): avc: denied { mounton } for pid=6544 comm="syz-executor" path="/root/syzkaller.6DY8JU/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=16695 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 79.749458][ T6871] EXT4-fs: Ignoring removed i_version option [ 79.780660][ T6868] ext4 filesystem being mounted at /353/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 79.794098][ T6871] EXT4-fs (loop0): filesystem is read-only [ 79.843050][ T6871] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 79.883014][ T6871] EXT4-fs (loop0): filesystem is read-only [ 79.889524][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 79.894893][ T6871] EXT4-fs (loop0): orphan cleanup on readonly fs [ 79.906426][ T6871] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1518: bg 0: block 64: padding at end of block bitmap is not set [ 79.921234][ T6871] loop0: lost filesystem error report for type 5 error -117 [ 79.921428][ T6871] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6685: Corrupt filesystem [ 79.928792][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 79.928827][ C1] EXT4-fs (loop0): initial error at time 1774656051: ext4_validate_block_bitmap:441 [ 79.928846][ C1] EXT4-fs (loop0): last error at time 1774656051: ext4_validate_block_bitmap:441 [ 79.964072][ T6871] loop0: lost filesystem error report for type 5 error -117 [ 79.964317][ T6871] EXT4-fs (loop0): 1 orphan inode deleted [ 79.978684][ T6871] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 80.002492][ T6893] netlink: 'syz.4.1526': attribute type 1 has an invalid length. [ 80.027823][ T3316] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.326332][ T6926] loop4: detected capacity change from 0 to 1024 [ 80.334137][ T6926] EXT4-fs: inline encryption not supported [ 80.366756][ T6928] loop1: detected capacity change from 0 to 512 [ 80.408380][ T6926] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 80.449189][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.460040][ T6928] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 80.502776][ T6928] ext4 filesystem being mounted at /272/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 80.570478][ T6940] loop4: detected capacity change from 0 to 1024 [ 80.593980][ T6940] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback. [ 80.638216][ T6940] ext4 filesystem being mounted at /362/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 80.672523][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 80.697626][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.830866][ T3416] kernel write not supported for file /sg0 (pid: 3416 comm: kworker/1:6) [ 80.885165][ T6960] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1552'. [ 81.032144][ T6971] ieee802154 phy0 wpan0: encryption failed: -22 [ 81.339451][ T6988] xt_hashlimit: size too large, truncated to 1048576 [ 81.378942][ T6992] loop5: detected capacity change from 0 to 256 [ 81.402949][ T6992] FAT-fs (loop5): Directory bread(block 1285) failed [ 81.423462][ T6992] FAT-fs (loop5): Directory bread(block 1286) failed [ 81.440005][ T6992] FAT-fs (loop5): Directory bread(block 1287) failed [ 81.447138][ T6992] FAT-fs (loop5): Directory bread(block 1288) failed [ 81.455971][ T6992] FAT-fs (loop5): Directory bread(block 1285) failed [ 81.462858][ T6992] FAT-fs (loop5): Directory bread(block 1286) failed [ 81.470319][ T6992] FAT-fs (loop5): Directory bread(block 1287) failed [ 81.477414][ T6992] FAT-fs (loop5): Directory bread(block 1288) failed [ 81.484269][ T6992] FAT-fs (loop5): FAT read failed (blocknr 1281) [ 81.491831][ T6992] FAT-fs (loop5): Directory bread(block 1285) failed [ 81.730975][ T7009] loop4: detected capacity change from 0 to 512 [ 81.835507][ T7017] loop2: detected capacity change from 0 to 512 [ 81.860680][ T7019] loop1: detected capacity change from 0 to 512 [ 81.881121][ T7017] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 81.896521][ T7019] EXT4-fs: dax option not supported [ 81.897911][ T7017] ext4 filesystem being mounted at /362/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 82.039616][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.291756][ T10] kernel read not supported for file /vcs (pid: 10 comm: kworker/0:1) [ 82.461088][ T7054] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1594'. [ 82.490488][ T7054] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check. [ 82.624002][ T7042] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1589'. [ 82.642652][ T7042] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1589'. [ 83.057173][ T7103] ipip0: entered promiscuous mode [ 83.107007][ T7105] random: crng reseeded on system resumption [ 83.228046][ T7115] tipc: Invalid UDP bearer configuration [ 83.228062][ T7115] tipc: Enabling of bearer rejected, failed to enable media [ 83.337281][ T7124] tipc: Started in network mode [ 83.355278][ T7124] tipc: Node identity 0000000000002d5f0000000000000001, cluster identity 4711 [ 83.374491][ T7124] tipc: Enabling of bearer rejected, failed to enable media [ 83.661098][ T7139] loop2: detected capacity change from 0 to 8192 [ 83.793713][ C1] IPv4: Oversized IP packet from 127.0.0.1 [ 83.857959][ T28] kauditd_printk_skb: 12 callbacks suppressed [ 83.858058][ T28] audit: type=1400 audit(1774656568.000:603): avc: denied { bind } for pid=7149 comm="syz.4.1639" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 83.925120][ T7152] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 83.970516][ T28] audit: type=1326 audit(1774656568.029:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7153 comm="syz.0.1640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2551ac799 code=0x7ffc0000 [ 84.010996][ T7152] ext4 filesystem being mounted at /380/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 84.069376][ T28] audit: type=1326 audit(1774656568.029:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7153 comm="syz.0.1640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2551ac799 code=0x7ffc0000 [ 84.098698][ T28] audit: type=1326 audit(1774656568.029:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7153 comm="syz.0.1640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2551ac799 code=0x7ffc0000 [ 84.135781][ T28] audit: type=1326 audit(1774656568.029:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7153 comm="syz.0.1640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2551ac799 code=0x7ffc0000 [ 84.166255][ T28] audit: type=1326 audit(1774656568.029:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7153 comm="syz.0.1640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb2551ac799 code=0x7ffc0000 [ 84.217208][ T28] audit: type=1326 audit(1774656568.029:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7153 comm="syz.0.1640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2551ac799 code=0x7ffc0000 [ 84.241686][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 84.251754][ T28] audit: type=1326 audit(1774656568.029:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7153 comm="syz.0.1640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2551ac799 code=0x7ffc0000 [ 84.276324][ T28] audit: type=1326 audit(1774656568.029:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7153 comm="syz.0.1640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2551ac799 code=0x7ffc0000 [ 84.364767][ T7188] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a055c01c, mo2=0002] [ 84.391479][ T7188] System zones: 0-1, 3-36 [ 84.403509][ T7188] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 84.495141][ T28] audit: type=1326 audit(1774656568.039:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7153 comm="syz.0.1640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2551ac799 code=0x7ffc0000 [ 84.557387][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 84.591470][ T10] IPVS: starting estimator thread 0... [ 84.629365][ T7209] set_capacity_and_notify: 3 callbacks suppressed [ 84.629384][ T7209] loop2: detected capacity change from 0 to 2048 [ 84.663214][ T7209] EXT4-fs: Ignoring removed i_version option [ 84.680486][ T7205] IPVS: using max 1824 ests per chain, 91200 per kthread [ 84.735031][ T7209] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 84.766343][ T7209] ext4 filesystem being mounted at /382/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 84.831017][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.075182][ T7233] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1670'. [ 85.093008][ T7233] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1670'. [ 85.449838][ T7251] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1682'. [ 85.575383][ T7260] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1688'. [ 85.595466][ T7260] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1688'. [ 85.657285][ T7262] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1686'. [ 85.871886][ T7286] ieee802154 phy0 wpan0: encryption failed: -22 [ 85.964071][ T7275] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 85.978130][ T7275] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 86.666249][ T7325] __nla_validate_parse: 1 callbacks suppressed [ 86.666309][ T7325] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1716'. [ 86.740903][ T7331] loop4: detected capacity change from 0 to 128 [ 86.747521][ T7331] EXT4-fs: Ignoring removed nobh option [ 86.791530][ T7331] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 86.826094][ T7331] ext4 filesystem being mounted at /404/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 86.845885][ T7339] program syz.2.1723 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 86.864224][ T7337] loop5: detected capacity change from 0 to 764 [ 86.898848][ T3319] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 87.150494][ T7378] program syz.0.1741 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 87.242275][ T7382] bond1: ARP target 9.0.0.0 is already present [ 87.264894][ T7382] bond1: option arp_ip_target: invalid value (9) [ 87.272702][ T7382] bond1 (unregistering): Released all slaves [ 87.288043][ T7395] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1747'. [ 87.315193][ T7399] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1750'. [ 87.324345][ T7399] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1750'. [ 87.333497][ T7399] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1750'. [ 87.342790][ T7399] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1750'. [ 87.357082][ T7395] netlink: 200 bytes leftover after parsing attributes in process `syz.4.1747'. [ 87.378325][ T7402] loop1: detected capacity change from 0 to 512 [ 87.404078][ T7402] EXT4-fs: Ignoring removed nomblk_io_submit option [ 87.428159][ T7402] EXT4-fs: Ignoring removed mblk_io_submit option [ 87.456053][ T7402] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 87.469853][ T317] Bluetooth: hci0: Frame reassembly failed (-84) [ 87.497303][ T7402] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2 [ 87.520272][ T7402] EXT4-fs (loop1): 1 truncate cleaned up [ 87.531052][ T7402] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 87.574049][ T7402] EXT4-fs (loop1): shut down requested (2) [ 87.623040][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 87.728295][ T7435] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1766'. [ 87.740722][ T7435] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1766'. [ 87.751791][ T7435] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1766'. [ 87.761367][ T7435] netlink: 'syz.1.1766': attribute type 6 has an invalid length. [ 87.772783][ T7437] macvlan0: entered promiscuous mode [ 87.782888][ T7437] dummy0: entered promiscuous mode [ 87.789191][ T7437] hsr1: Slave A (macvlan0) is not up; please bring it up to get a fully working HSR network [ 87.799694][ T7437] hsr1: Slave B (dummy0) is not up; please bring it up to get a fully working HSR network [ 87.817669][ T7437] hsr1: entered promiscuous mode [ 87.823075][ T7437] hsr1: entered allmulticast mode [ 87.828405][ T7437] macvlan0: entered allmulticast mode [ 87.833875][ T7437] dummy0: entered allmulticast mode [ 87.899591][ T7448] loop1: detected capacity change from 0 to 512 [ 87.987953][ T7456] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 88.363229][ T7476] pim6reg0: tun_chr_ioctl cmd 1074025677 [ 88.369144][ T7476] pim6reg0: linktype set to 768 [ 88.459850][ T7484] loop2: detected capacity change from 0 to 128 [ 88.492425][ T7484] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 88.520117][ T7484] ext4 filesystem being mounted at /402/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 88.554064][ T7493] program syz.0.1792 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 88.608645][ T3324] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 88.712215][ T10] kernel read not supported for file /vcs (pid: 10 comm: kworker/0:1) [ 88.784904][ T7523] loop2: detected capacity change from 0 to 128 [ 88.846750][ T7528] netlink: 'syz.2.1809': attribute type 1 has an invalid length. [ 89.067152][ T28] kauditd_printk_skb: 72 callbacks suppressed [ 89.067170][ T28] audit: type=1400 audit(1774656573.057:685): avc: denied { execmem } for pid=7537 comm="syz.1.1812" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 89.110006][ T28] audit: type=1400 audit(1774656573.106:686): avc: denied { map_read map_write } for pid=7539 comm="syz.1.1813" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 89.132829][ T28] audit: type=1400 audit(1774656573.106:687): avc: denied { prog_load } for pid=7539 comm="syz.1.1813" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 89.157862][ T28] audit: type=1400 audit(1774656573.106:688): avc: denied { bpf } for pid=7539 comm="syz.1.1813" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 89.197558][ T28] audit: type=1400 audit(1774656573.106:689): avc: denied { prog_run } for pid=7539 comm="syz.1.1813" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 89.227338][ T7548] loop2: detected capacity change from 0 to 128 [ 89.234877][ T28] audit: type=1400 audit(1774656573.174:690): avc: denied { create } for pid=7543 comm="syz.1.1815" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 89.256523][ T7548] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 89.267310][ T28] audit: type=1400 audit(1774656573.174:691): avc: denied { bind } for pid=7543 comm="syz.1.1815" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 89.293070][ T28] audit: type=1400 audit(1774656573.272:692): avc: denied { remount } for pid=7547 comm="syz.2.1817" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 89.333786][ T28] audit: type=1400 audit(1774656573.321:693): avc: denied { setopt } for pid=7551 comm="syz.2.1819" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 89.364126][ T28] audit: type=1400 audit(1774656573.350:694): avc: denied { create } for pid=7553 comm="syz.1.1820" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 89.550212][ T4234] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 90.268483][ T7623] bond2: ARP target 9.0.0.0 is already present [ 90.283830][ T7623] bond2: option arp_ip_target: invalid value (9) [ 90.347716][ T7623] bond2 (unregistering): Released all slaves [ 90.672607][ T7661] netlink: 'syz.2.1849': attribute type 18 has an invalid length. [ 90.980349][ T7701] IPVS: Scheduler module ip_vs_ not found [ 91.121516][ T7719] program syz.0.1868 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 91.762126][ T7752] loop2: detected capacity change from 0 to 512 [ 91.781099][ T7752] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 91.820943][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 92.035645][ T7784] loop1: detected capacity change from 0 to 512 [ 92.082338][ T7784] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 92.102639][ T7790] __nla_validate_parse: 10 callbacks suppressed [ 92.102657][ T7790] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1898'. [ 92.121368][ T7784] EXT4-fs (loop1): orphan cleanup on readonly fs [ 92.149140][ T7784] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1896: bg 0: block 305: padding at end of block bitmap is not set [ 92.175228][ T7790] netlink: 'syz.5.1898': attribute type 3 has an invalid length. [ 92.191634][ T7784] loop1: lost filesystem error report for type 5 error -117 [ 92.204943][ T7790] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1898'. [ 92.245699][ C1] EXT4-fs (loop1): error count since last fsck: 1 [ 92.252177][ C1] EXT4-fs (loop1): initial error at time 1774656576: ext4_validate_block_bitmap:441 [ 92.261591][ C1] EXT4-fs (loop1): last error at time 1774656576: ext4_validate_block_bitmap:441 [ 92.273122][ T7784] EXT4-fs (loop1): Remounting filesystem read-only [ 92.285967][ T7784] EXT4-fs (loop1): 1 truncate cleaned up [ 92.299755][ T58] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 92.310541][ T58] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 92.331333][ T58] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started [ 92.354051][ T7784] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 92.423890][ T7804] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1905'. [ 92.442297][ T7804] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1905'. [ 92.460174][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 92.533613][ T7814] program syz.0.1909 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 92.571595][ T7818] loop1: detected capacity change from 0 to 512 [ 92.598921][ T7818] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 92.625827][ T7818] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 92.637934][ T7825] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1914'. [ 92.647531][ T7825] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1914'. [ 92.647529][ T7818] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 92.647564][ T7818] System zones: 0-2, 18-18, 34-35 [ 92.667768][ T7825] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1914'. [ 92.671754][ T7818] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 92.685500][ T7825] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1914'. [ 92.710414][ T7825] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1914'. [ 92.725379][ T7818] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended [ 92.734921][ T7818] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 92.744641][ T7825] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1914'. [ 92.760284][ T7818] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 92.770846][ T7818] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1911: bg 0: block 353: padding at end of block bitmap is not set [ 92.807795][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 92.869154][ T7833] delete_channel: no stack [ 93.046296][ T7853] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7853 comm=syz.1.1927 [ 94.241391][ T28] kauditd_printk_skb: 134 callbacks suppressed [ 94.241407][ T28] audit: type=1400 audit(1774656578.144:823): avc: denied { create } for pid=7946 comm="syz.0.1968" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 94.316863][ T28] audit: type=1400 audit(1774656578.183:824): avc: denied { bind } for pid=7946 comm="syz.0.1968" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 94.340696][ T28] audit: type=1400 audit(1774656578.183:825): avc: denied { connect } for pid=7946 comm="syz.0.1968" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 94.370345][ T7957] loop1: detected capacity change from 0 to 512 [ 94.416395][ T28] audit: type=1400 audit(1774656578.183:826): avc: denied { write } for pid=7946 comm="syz.0.1968" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 94.441516][ T7957] EXT4-fs: Ignoring removed bh option [ 94.449380][ T7957] EXT4-fs: inline encryption not supported [ 94.456524][ T28] audit: type=1400 audit(1774656578.282:827): avc: denied { bind } for pid=7954 comm="syz.2.1973" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 94.517051][ T7957] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 94.558425][ T7972] loop5: detected capacity change from 0 to 512 [ 94.572872][ T7957] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1142: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 94.587969][ T7957] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1972: bg 0: block 248: padding at end of block bitmap is not set [ 94.602963][ T7957] loop1: lost filesystem error report for type 5 error -117 [ 94.603176][ T7957] Quota error (device loop1): write_blk: dquota write failed [ 94.610534][ C0] EXT4-fs (loop1): error count since last fsck: 1 [ 94.610562][ C0] EXT4-fs (loop1): last error at time 1774656578: ext4_validate_block_bitmap:441 [ 94.631127][ T7972] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 94.634640][ T7957] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 94.662625][ T7972] ext4 filesystem being mounted at /75/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 94.683848][ T7957] EXT4-fs error (device loop1): ext4_acquire_dquot:7001: comm syz.1.1972: Failed to acquire dquot type 1 [ 94.696747][ T7957] loop1: lost filesystem error report for type 5 error -117 [ 94.697255][ T7957] EXT4-fs (loop1): 1 truncate cleaned up [ 94.699299][ T7972] EXT4-fs (loop5): shut down requested (0) [ 94.705652][ T7957] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 94.712903][ T28] audit: type=1400 audit(1774656578.596:828): avc: denied { read } for pid=2983 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 94.792892][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 94.833583][ T6544] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 94.849841][ T28] audit: type=1400 audit(1774656578.596:829): avc: denied { search } for pid=2983 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 94.875096][ T28] audit: type=1400 audit(1774656578.596:830): avc: denied { append } for pid=2983 comm="syslogd" name="messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 94.925385][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0008-000000000000. [ 95.557473][ T8033] netlink: 'syz.1.2006': attribute type 14 has an invalid length. [ 95.689635][ T8045] program syz.1.2011 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 95.941253][ T8066] loop1: detected capacity change from 0 to 512 [ 95.962258][ T8066] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 96.001597][ T8066] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 96.037691][ T8066] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.2021: bad orphan inode 4 [ 96.081764][ T8066] loop1: lost filesystem error report for type 5 error -117 [ 96.081963][ T8066] EXT4-fs (loop1): 1 orphan inode deleted [ 96.095166][ C0] EXT4-fs (loop1): error count since last fsck: 1 [ 96.095187][ C0] EXT4-fs (loop1): initial error at time 1774656579: ext4_orphan_get:1417 [ 96.095217][ C0] EXT4-fs (loop1): last error at time 1774656579: ext4_orphan_get:1417 [ 96.142806][ T8066] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 96.178577][ T8076] veth0_vlan: entered allmulticast mode [ 96.216708][ T8017] loop5: detected capacity change from 0 to 512 [ 96.227566][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 96.267245][ T8077] veth0_vlan: left promiscuous mode [ 96.278559][ T8077] veth0_vlan: entered promiscuous mode [ 96.443101][ T3316] cgroup: fork rejected by pids controller in /syz0 [ 96.543596][ T8017] EXT4-fs (loop5): 1 orphan inode deleted [ 96.566996][ T8017] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 96.609141][ T6544] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 96.670220][ T8097] loop5: detected capacity change from 0 to 512 [ 96.695418][ T8097] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 96.732565][ T8097] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 96.754324][ T8097] ext4 filesystem being mounted at /84/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 96.785188][ T6544] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 97.062855][ T8126] loop4: detected capacity change from 0 to 512 [ 97.074627][ T8126] EXT4-fs: Ignoring removed i_version option [ 97.101116][ T8126] EXT4-fs: Ignoring removed bh option [ 97.119537][ T8126] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 97.157549][ T8126] ext4 filesystem being mounted at /440/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 97.231902][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 97.243931][ T8109] chnl_net:caif_netlink_parms(): no params data found [ 97.272798][ T8144] __nla_validate_parse: 6 callbacks suppressed [ 97.272815][ T8144] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2051'. [ 97.419478][ T8109] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.426834][ T8109] bridge0: port 1(bridge_slave_0) entered disabled state [ 97.434652][ T8109] bridge_slave_0: entered allmulticast mode [ 97.442164][ T8109] bridge_slave_0: entered promiscuous mode [ 97.449128][ T8109] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.456510][ T8109] bridge0: port 2(bridge_slave_1) entered disabled state [ 97.463955][ T8109] bridge_slave_1: entered allmulticast mode [ 97.473087][ T8109] bridge_slave_1: entered promiscuous mode [ 97.492806][ T8109] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 97.522100][ T8109] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 97.563722][ T8109] team0: Port device team_slave_0 added [ 97.577193][ T8109] team0: Port device team_slave_1 added [ 97.616501][ T8109] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 97.628398][ T8109] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 97.628599][ T8169] netlink: 16222 bytes leftover after parsing attributes in process `syz.1.2059'. [ 97.692762][ T8173] netlink: 'syz.1.2061': attribute type 2 has an invalid length. [ 97.700714][ T8173] netlink: 164 bytes leftover after parsing attributes in process `syz.1.2061'. [ 97.718885][ T8109] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 97.747596][ T8109] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.755328][ T8109] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 97.791774][ T8177] loop1: detected capacity change from 0 to 128 [ 97.807837][ T8109] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 97.866282][ T8183] program syz.1.2065 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 97.927320][ T8109] hsr_slave_0: entered promiscuous mode [ 97.943671][ T8109] hsr_slave_1: entered promiscuous mode [ 97.958869][ T8109] debugfs: 'hsr0' already exists in 'hsr' [ 97.964644][ T8109] Cannot create hsr debugfs directory [ 98.108771][ T8200] loop2: detected capacity change from 0 to 512 [ 98.136772][ T8200] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 98.136877][ T8109] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 98.166948][ T8200] ext4 filesystem being mounted at /449/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 98.181936][ T8200] EXT4-fs (loop2): shut down requested (0) [ 98.189077][ T8200] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop2 ino=12 [ 98.198170][ T8200] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop2 ino=12 [ 98.213549][ T8109] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 98.235659][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 98.275031][ T8109] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 98.324033][ T8209] netlink: 889 bytes leftover after parsing attributes in process `syz.2.2075'. [ 98.335846][ T8109] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 98.401795][ T8109] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 98.417323][ T8109] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 98.427958][ T8109] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 98.442132][ T8109] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 98.495028][ T8109] 8021q: adding VLAN 0 to HW filter on device bond0 [ 98.510161][ T8109] 8021q: adding VLAN 0 to HW filter on device team0 [ 98.521370][ T58] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.528513][ T58] bridge0: port 1(bridge_slave_0) entered forwarding state [ 98.548961][ T8109] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 98.578733][ T8109] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 98.610794][ T58] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.617989][ T58] bridge0: port 2(bridge_slave_1) entered forwarding state [ 98.965695][ T8255] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 98.972320][ T8255] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 99.009101][ T8109] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.065143][ T8262] loop1: detected capacity change from 0 to 764 [ 99.155307][ T8109] veth0_vlan: entered promiscuous mode [ 99.178323][ T8109] veth1_vlan: entered promiscuous mode [ 99.230427][ T58] bridge_slave_1: left allmulticast mode [ 99.236869][ T58] bridge_slave_1: left promiscuous mode [ 99.242554][ T58] bridge0: port 2(bridge_slave_1) entered disabled state [ 99.267508][ T58] bridge_slave_0: left allmulticast mode [ 99.274190][ T58] bridge_slave_0: left promiscuous mode [ 99.279994][ T58] bridge0: port 1(bridge_slave_0) entered disabled state [ 99.562629][ T28] kauditd_printk_skb: 103 callbacks suppressed [ 99.562646][ T28] audit: type=1400 audit(1774656583.378:934): avc: denied { read write } for pid=8294 comm="syz.4.2107" name="uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 99.608779][ T35] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 99.639000][ T28] audit: type=1400 audit(1774656583.408:935): avc: denied { open } for pid=8294 comm="syz.4.2107" path="/dev/uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 99.671994][ T35] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 99.727658][ T58] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 99.738123][ T58] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 99.749085][ T8298] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 99.781371][ T58] bond0 (unregistering): Released all slaves [ 99.800713][ T8109] veth0_macvtap: entered promiscuous mode [ 99.809934][ T8298] netlink: 'syz.5.2108': attribute type 1 has an invalid length. [ 99.830759][ T8109] veth1_macvtap: entered promiscuous mode [ 99.840818][ T8300] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2109'. [ 99.855255][ T8300] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2109'. [ 99.865330][ T8300] netlink: 39 bytes leftover after parsing attributes in process `syz.1.2109'. [ 99.886965][ T8109] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 99.905753][ T58] macvlan0: left promiscuous mode [ 99.911777][ T58] dummy0: left promiscuous mode [ 99.932634][ T58] hsr_slave_0: left promiscuous mode [ 99.942357][ T58] hsr_slave_1: left promiscuous mode [ 99.955661][ T58] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 99.974294][ T58] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 99.986105][ T58] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 99.993876][ T58] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 100.012784][ T58] veth1_macvtap: left promiscuous mode [ 100.030729][ T58] veth0_macvtap: left promiscuous mode [ 100.063158][ T58] veth1_vlan: left promiscuous mode [ 100.068449][ T58] veth0_vlan: left promiscuous mode [ 100.083539][ T8311] loop1: detected capacity change from 0 to 128 [ 100.124388][ T28] audit: type=1400 audit(1774656583.942:936): avc: denied { append } for pid=8315 comm="syz.1.2116" name="sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 100.148935][ T28] audit: type=1400 audit(1774656583.961:937): avc: denied { map } for pid=8315 comm="syz.1.2116" path="/dev/sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 100.174350][ T8314] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2115'. [ 100.244579][ T28] audit: type=1400 audit(1774656583.961:938): avc: denied { execute } for pid=8315 comm="syz.1.2116" path="/dev/sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 100.422236][ T58] team0 (unregistering): Port device team_slave_1 removed [ 100.434152][ T58] team0 (unregistering): Port device team_slave_0 removed [ 100.536459][ T8339] xt_hashlimit: size too large, truncated to 1048576 [ 100.550535][ T8109] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 100.582316][ T36] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.591450][ T36] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.618582][ T36] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.653152][ T36] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.694717][ T8346] usb usb9: usbfs: process 8346 (syz.1.2130) did not claim interface 44 before use [ 100.705085][ T28] audit: type=1400 audit(1774656584.495:939): avc: denied { write } for pid=8345 comm="syz.1.2130" name="001" dev="devtmpfs" ino=171 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 100.772618][ T28] audit: type=1400 audit(1774656584.545:940): avc: denied { mounton } for pid=8109 comm="syz-executor" path="/root/syzkaller.v7kCxc/syz-tmp" dev="sda1" ino=2049 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 100.838583][ T28] audit: type=1400 audit(1774656584.545:941): avc: denied { mount } for pid=8109 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 100.887878][ T28] audit: type=1400 audit(1774656584.545:942): avc: denied { mount } for pid=8109 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 100.897830][ T8349] loop1: detected capacity change from 0 to 4096 [ 100.984595][ T8342] xt_hashlimit: size too large, truncated to 1048576 [ 101.009413][ T8342] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6 [ 101.032829][ T28] audit: type=1400 audit(1774656584.545:943): avc: denied { mounton } for pid=8109 comm="syz-executor" path="/root/syzkaller.v7kCxc/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 101.051582][ T8349] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 101.172398][ T8361] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2134'. [ 101.200226][ T8349] EXT4-fs error (device loop1): ext4_acquire_dquot:7001: comm syz.1.2131: Failed to acquire dquot type 1 [ 101.253625][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.377372][ T8374] erspan0: entered promiscuous mode [ 101.419889][ T8384] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2145'. [ 101.522846][ T8393] syz.2.2150 uses obsolete (PF_INET,SOCK_PACKET) [ 101.789606][ T8431] tmpfs: Bad value for 'nr_inodes' [ 101.836050][ T8436] loop2: detected capacity change from 0 to 1024 [ 101.847448][ T8436] EXT4-fs: Ignoring removed oldalloc option [ 101.859139][ T8436] EXT4-fs: Ignoring removed bh option [ 101.885390][ T8436] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 101.929208][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.974162][ T8447] program syz.4.2172 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 102.129215][ T8457] loop4: detected capacity change from 0 to 512 [ 102.255156][ T8471] tap0: tun_chr_ioctl cmd 1074025677 [ 102.260952][ T8471] tap0: linktype set to 804 [ 102.268979][ T8472] loop4: detected capacity change from 0 to 512 [ 102.275893][ T8472] EXT4-fs: Ignoring removed bh option [ 102.281489][ T8472] EXT4-fs: inline encryption not supported [ 102.290972][ T8472] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 102.320423][ T8472] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1142: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 102.335263][ T8472] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2182: bg 0: block 248: padding at end of block bitmap is not set [ 102.358018][ T8472] loop4: lost filesystem error report for type 5 error -117 [ 102.358213][ T8472] EXT4-fs error (device loop4): ext4_acquire_dquot:7001: comm syz.4.2182: Failed to acquire dquot type 1 [ 102.376891][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 102.376919][ C1] EXT4-fs (loop4): last error at time 1774656586: ext4_validate_block_bitmap:441 [ 102.399888][ T8472] loop4: lost filesystem error report for type 5 error -117 [ 102.400423][ T8472] EXT4-fs (loop4): 1 truncate cleaned up [ 102.429001][ T8472] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 102.708131][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0008-000000000000. [ 102.963327][ T8506] xt_TCPMSS: Only works on TCP SYN packets [ 103.288370][ T8539] delete_channel: no stack [ 103.677395][ T8571] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2229'. [ 103.937064][ T8589] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2237'. [ 104.041960][ T8598] tap0: tun_chr_ioctl cmd 1074025677 [ 104.066763][ T8598] tap0: linktype set to 6 [ 104.080001][ T8601] tap0: tun_chr_ioctl cmd 2147767506 [ 104.217149][ T8623] program syz.0.2253 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 104.288846][ T8627] netlink: 1 bytes leftover after parsing attributes in process `syz.0.2256'. [ 104.518919][ T8647] program syz.2.2266 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 104.644551][ T8659] netlink: 47 bytes leftover after parsing attributes in process `syz.0.2269'. [ 105.200441][ T28] kauditd_printk_skb: 30 callbacks suppressed [ 105.200458][ T28] audit: type=1400 audit(1774656588.962:970): avc: denied { create } for pid=8697 comm="syz.0.2289" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 105.229939][ T28] audit: type=1400 audit(1774656588.982:971): avc: denied { connect } for pid=8697 comm="syz.0.2289" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 105.640118][ T8716] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2297'. [ 105.710330][ T8721] netlink: 71 bytes leftover after parsing attributes in process `syz.0.2299'. [ 105.763396][ T8724] tipc: Started in network mode [ 105.779666][ T8724] tipc: Node identity ac14140f, cluster identity 4711 [ 105.787721][ T8724] tipc: New replicast peer: 255.255.255.255 [ 105.795169][ T28] audit: type=1400 audit(1774656589.547:972): avc: denied { kexec_image_load } for pid=8725 comm="syz.0.2300" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1 [ 105.838678][ T8724] tipc: Enabled bearer , priority 10 [ 106.074077][ T8741] loop4: detected capacity change from 0 to 256 [ 106.155835][ T28] audit: type=1400 audit(1774656589.914:973): avc: denied { getopt } for pid=8744 comm="syz.0.2311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 106.689881][ T8778] loop2: detected capacity change from 0 to 512 [ 106.698880][ T8778] EXT4-fs: Ignoring removed mblk_io_submit option [ 106.731086][ T8778] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 106.752337][ T8778] ext4 filesystem being mounted at /519/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 106.808116][ T28] audit: type=1400 audit(1774656590.559:974): avc: denied { create } for pid=8775 comm="syz.2.2325" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 106.850922][ T3401] tipc: Node number set to 2886997007 [ 106.856806][ T28] audit: type=1400 audit(1774656590.599:975): avc: denied { read } for pid=8775 comm="syz.2.2325" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 106.907972][ T8784] netdevsim netdevsim4 netdevsim0: entered promiscuous mode [ 106.928519][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 106.951491][ T8770] loop1: detected capacity change from 0 to 128 [ 106.993430][ T28] audit: type=1400 audit(1774656590.738:976): avc: denied { create } for pid=8785 comm="syz.4.2329" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 107.000446][ T8770] msdos: Bad value for 'gid' [ 107.037967][ T28] audit: type=1400 audit(1774656590.767:977): avc: denied { setopt } for pid=8785 comm="syz.4.2329" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 107.058425][ T8770] msdos: Bad value for 'gid' [ 107.194901][ T28] audit: type=1400 audit(1774656590.936:978): avc: denied { create } for pid=8801 comm="syz.2.2335" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 107.216338][ T28] audit: type=1400 audit(1774656590.956:979): avc: denied { write } for pid=8801 comm="syz.2.2335" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 107.569081][ T8822] openvswitch: netlink: ct_state flags 000070b3 unsupported [ 107.653845][ T8828] 9pnet_virtio: no channels available for device ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 107.655578][ T8828] @0Ù: renamed from bond_slave_1 (while UP) [ 108.076285][ T8858] loop1: detected capacity change from 0 to 512 [ 108.103896][ T8858] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.2359: inode has both inline data and extents flags [ 108.117993][ T8858] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 108.122359][ T8860] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8860 comm=syz.2.2358 [ 108.125600][ T8858] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.2359: couldn't read orphan inode 15 (err -117) [ 108.144166][ C1] EXT4-fs (loop1): error count since last fsck: 1 [ 108.144202][ C1] EXT4-fs (loop1): initial error at time 1774656591: ext4_orphan_get:1391: inode 15 [ 108.144235][ C1] EXT4-fs (loop1): last error at time 1774656591: ext4_orphan_get:1391: inode 15 [ 108.181925][ T8858] loop1: lost filesystem error report for type 5 error -117 [ 108.186731][ T8858] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 108.226525][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.471096][ T8877] netlink: 'syz.4.2367': attribute type 1 has an invalid length. [ 108.492215][ T8877] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2367'. [ 108.514485][ T8886] IPVS: Error connecting to the multicast addr [ 108.710602][ T8901] team0: Device gtp0 is of different type [ 108.817534][ T8908] loop2: detected capacity change from 0 to 1024 [ 108.855860][ T8908] EXT4-fs: Ignoring removed mblk_io_submit option [ 108.878897][ T8908] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 108.899453][ T8908] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 108.937410][ T8908] EXT4-fs error (device loop2): ext4_ext_check_inode:521: inode #11: comm syz.2.2381: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 108.977544][ T8908] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 108.980997][ T8908] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.2381: couldn't read orphan inode 11 (err -117) [ 108.990207][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 108.990228][ C0] EXT4-fs (loop2): initial error at time 1774656592: ext4_ext_check_inode:521: inode 11 [ 108.990283][ C0] EXT4-fs (loop2): last error at time 1774656592: ext4_ext_check_inode:521: inode 11 [ 109.032516][ T8908] loop2: lost filesystem error report for type 5 error -117 [ 109.033085][ T8908] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 109.122675][ T8908] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.2381: Invalid block bitmap block 0 in block_group 0 [ 109.182889][ T8908] EXT4-fs error (device loop2): ext4_acquire_dquot:7001: comm syz.2.2381: Failed to acquire dquot type 0 [ 109.236090][ T8922] EXT4-fs error (device loop2): __ext4_get_inode_loc:4782: comm syz.2.2381: Invalid inode table block 8589934593 in block_group 0 [ 109.304260][ T58] EXT4-fs error (device loop2): __ext4_get_inode_loc:4782: comm kworker/u8:4: Invalid inode table block 8589934593 in block_group 0 [ 109.374061][ T8928] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2391'. [ 109.403244][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.675418][ T8950] netlink: 'syz.1.2401': attribute type 2 has an invalid length. [ 109.781973][ T8961] dummy0: entered promiscuous mode [ 109.817660][ T8961] macvlan2: entered promiscuous mode [ 109.843474][ T8961] macvlan2: entered allmulticast mode [ 109.855883][ T8961] dummy0: entered allmulticast mode [ 109.928096][ T8971] team0: Device gtp0 is of different type [ 109.984556][ T8975] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 110.156487][ T8991] loop1: detected capacity change from 0 to 1024 [ 110.163521][ T8991] EXT4-fs: Ignoring removed mblk_io_submit option [ 110.180294][ T8991] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 110.192475][ T8991] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 110.206775][ T8991] EXT4-fs error (device loop1): ext4_ext_check_inode:521: inode #11: comm syz.1.2420: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 110.233959][ T8991] loop1: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 110.234085][ T8991] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.2420: couldn't read orphan inode 11 (err -117) [ 110.243369][ C1] EXT4-fs (loop1): error count since last fsck: 1 [ 110.243387][ C1] EXT4-fs (loop1): initial error at time 1774656593: ext4_ext_check_inode:521: inode 11 [ 110.243432][ C1] EXT4-fs (loop1): last error at time 1774656593: ext4_ext_check_inode:521: inode 11 [ 110.250311][ T28] kauditd_printk_skb: 24 callbacks suppressed [ 110.250356][ T28] audit: type=1400 audit(1774656593.976:1002): avc: denied { connect } for pid=8997 comm="syz.0.2422" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 110.299597][ T8991] loop1: lost filesystem error report for type 5 error -117 [ 110.332878][ T8991] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 110.358956][ T8991] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.2420: Invalid block bitmap block 0 in block_group 0 [ 110.372642][ T8991] Quota error (device loop1): write_blk: dquota write failed [ 110.381720][ T8991] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 110.391778][ T8991] EXT4-fs error (device loop1): ext4_acquire_dquot:7001: comm syz.1.2420: Failed to acquire dquot type 0 [ 110.404777][ T8991] EXT4-fs error (device loop1): __ext4_get_inode_loc:4782: comm syz.1.2420: Invalid inode table block 8589934593 in block_group 0 [ 110.452622][ T28] audit: type=1400 audit(1774656594.145:1003): avc: denied { getopt } for pid=8997 comm="syz.0.2422" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 110.483970][ T12] EXT4-fs error (device loop1): __ext4_get_inode_loc:4782: comm kworker/u8:0: Invalid inode table block 8589934593 in block_group 0 [ 110.533092][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 110.557928][ T9012] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2432'. [ 110.577675][ T9015] netlink: 212 bytes leftover after parsing attributes in process `syz.0.2430'. [ 110.634149][ T9023] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2436'. [ 110.732094][ T9027] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2437'. [ 110.911091][ T9045] erspan0: entered promiscuous mode [ 110.955535][ T9045] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 111.037611][ T9061] team0: Device gtp1 is of different type [ 111.182744][ T9078] loop2: detected capacity change from 0 to 128 [ 111.760236][ T9096] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2468'. [ 111.913624][ T9100] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2470'. [ 111.942135][ T9100] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2470'. [ 112.243381][ T9085] syz.2.2464 (9085) used greatest stack depth: 8640 bytes left [ 112.357766][ T9106] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2470'. [ 112.381334][ T9106] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2470'. [ 112.526506][ T28] audit: type=1400 audit(1774656596.243:1004): avc: denied { ioctl } for pid=9116 comm="syz.4.2477" path="socket:[22389]" dev="sockfs" ino=22389 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 112.732574][ T9127] loop4: detected capacity change from 0 to 256 [ 112.841843][ T28] audit: type=1400 audit(1774656596.551:1005): avc: denied { mount } for pid=9132 comm="syz.4.2485" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1 [ 113.220654][ T117] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 113.288896][ T117] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 113.349718][ T117] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 113.410183][ T117] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 113.461530][ T28] audit: type=1400 audit(1774656597.168:1006): avc: denied { connect } for pid=9157 comm="syz.2.2495" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 113.493832][ T28] audit: type=1400 audit(1774656597.168:1007): avc: denied { write } for pid=9157 comm="syz.2.2495" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 113.536493][ T28] audit: type=1400 audit(1774656597.238:1008): avc: denied { read } for pid=3040 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1 [ 113.580455][ T9163] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=24 sclass=netlink_audit_socket pid=9163 comm=syz.2.2496 [ 113.637795][ T117] bridge_slave_1: left allmulticast mode [ 113.643549][ T117] bridge_slave_1: left promiscuous mode [ 113.651014][ T117] bridge0: port 2(bridge_slave_1) entered disabled state [ 113.687096][ T117] bridge_slave_0: left allmulticast mode [ 113.694045][ T117] bridge_slave_0: left promiscuous mode [ 113.700112][ T117] bridge0: port 1(bridge_slave_0) entered disabled state [ 113.727850][ T28] audit: type=1400 audit(1774656597.427:1009): avc: denied { audit_read } for pid=9175 comm="syz.2.2499" capability=37 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 113.954579][ T9201] mmap: syz.1.2516 (9201) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 114.020882][ T117] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 114.031665][ T117] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 114.060356][ T117] bond0 (unregistering): Released all slaves [ 114.086864][ T9213] loop2: detected capacity change from 0 to 512 [ 114.126842][ T9213] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 114.173687][ T9213] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 114.225677][ T117] hsr_slave_0: left promiscuous mode [ 114.233759][ T117] hsr_slave_1: left promiscuous mode [ 114.239414][ T117] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 114.247970][ T9213] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended [ 114.271548][ T117] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 114.278920][ T9213] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 114.290710][ T9213] System zones: 0-2, 18-18, 34-35 [ 114.291561][ T117] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 114.304827][ T9213] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 114.314314][ T117] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 114.328347][ T117] dummy0: left allmulticast mode [ 114.334182][ T117] veth1_macvtap: left promiscuous mode [ 114.339703][ T117] veth0_macvtap: left promiscuous mode [ 114.345353][ T117] veth1_vlan: left promiscuous mode [ 114.350652][ T117] veth0_vlan: left promiscuous mode [ 114.371791][ T9213] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2507: bg 0: block 353: padding at end of block bitmap is not set [ 114.463707][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 114.877601][ T117] team0 (unregistering): Port device team_slave_1 removed [ 114.910979][ T117] team0 (unregistering): Port device team_slave_0 removed [ 115.028926][ T9265] SELinux: Context is not valid (left unmapped). [ 115.086624][ T9159] chnl_net:caif_netlink_parms(): no params data found [ 115.160976][ T9280] netem: change failed [ 115.170630][ T9159] bridge0: port 1(bridge_slave_0) entered blocking state [ 115.177821][ T9159] bridge0: port 1(bridge_slave_0) entered disabled state [ 115.185218][ T9159] bridge_slave_0: entered allmulticast mode [ 115.191680][ T9159] bridge_slave_0: entered promiscuous mode [ 115.198521][ T9159] bridge0: port 2(bridge_slave_1) entered blocking state [ 115.205864][ T9159] bridge0: port 2(bridge_slave_1) entered disabled state [ 115.213167][ T9159] bridge_slave_1: entered allmulticast mode [ 115.221973][ T9159] bridge_slave_1: entered promiscuous mode [ 115.251250][ T9159] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 115.264031][ T9159] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 115.305832][ T9159] team0: Port device team_slave_0 added [ 115.312698][ T9159] team0: Port device team_slave_1 added [ 115.355606][ T9159] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 115.362598][ T9159] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 115.392015][ T9294] __nla_validate_parse: 4 callbacks suppressed [ 115.392036][ T9294] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2533'. [ 115.431971][ T9159] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 115.458439][ T9293] team0: Device gtp0 is of different type [ 115.469578][ T9303] loop4: detected capacity change from 0 to 1024 [ 115.485349][ T9159] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 115.492474][ T9159] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 115.519713][ T9159] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 115.532106][ T9303] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 115.573440][ T9303] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4222: comm syz.4.2536: Allocating blocks 449-513 which overlap fs metadata [ 115.593642][ T28] kauditd_printk_skb: 7 callbacks suppressed [ 115.593661][ T28] audit: type=1400 audit(1774656599.288:1017): avc: denied { setopt } for pid=9309 comm="syz.1.2538" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 115.605292][ T9159] hsr_slave_0: entered promiscuous mode [ 115.626343][ T9159] hsr_slave_1: entered promiscuous mode [ 115.632554][ T9159] debugfs: 'hsr0' already exists in 'hsr' [ 115.638504][ T9159] Cannot create hsr debugfs directory [ 115.772737][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 115.817279][ T28] audit: type=1400 audit(1774656599.507:1018): avc: denied { read } for pid=9327 comm="syz.2.2544" name="msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 115.868390][ T28] audit: type=1400 audit(1774656599.537:1019): avc: denied { open } for pid=9327 comm="syz.2.2544" path="/dev/cpu/0/msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 115.908169][ T9330] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 115.963823][ T9340] loop2: detected capacity change from 0 to 256 [ 116.141039][ T9159] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 116.151375][ T9159] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 116.160806][ T9159] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 116.171178][ T9159] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 116.213578][ T9159] 8021q: adding VLAN 0 to HW filter on device bond0 [ 116.235001][ T9159] 8021q: adding VLAN 0 to HW filter on device team0 [ 116.246073][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 116.253225][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 116.276163][ T9159] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 116.286736][ T9159] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 116.300897][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 116.308127][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 116.381235][ T9159] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 116.464964][ T9159] veth0_vlan: entered promiscuous mode [ 116.473432][ T9159] veth1_vlan: entered promiscuous mode [ 116.495712][ T9159] veth0_macvtap: entered promiscuous mode [ 116.503684][ T9159] veth1_macvtap: entered promiscuous mode [ 116.516420][ T9159] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 116.525592][ T9159] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 116.539188][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.548449][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.559064][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.575872][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.674170][ T28] audit: type=1400 audit(1774656600.364:1020): avc: denied { mount } for pid=9421 comm="syz.5.2561" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 116.715893][ T9430] team0: Device gtp0 is of different type [ 116.858405][ T28] audit: type=1400 audit(1774656600.553:1021): avc: denied { connect } for pid=9440 comm="syz.5.2556" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 117.053220][ T9456] netlink: 71 bytes leftover after parsing attributes in process `syz.2.2565'. [ 117.367131][ T9470] loop2: detected capacity change from 0 to 2048 [ 117.396015][ T9474] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2573'. [ 117.405911][ T9474] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2573'. [ 117.415270][ T6618] Alternate GPT is invalid, using primary GPT. [ 117.421644][ T6618] loop2: p1 p2 p3 [ 117.436937][ T9470] Alternate GPT is invalid, using primary GPT. [ 117.447065][ T9470] loop2: p1 p2 p3 [ 117.481942][ T28] audit: type=1400 audit(1774656601.171:1022): avc: denied { read write } for pid=9469 comm="syz.2.2572" name="loop2p2" dev="devtmpfs" ino=1111 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 117.566556][ T28] audit: type=1400 audit(1774656601.171:1023): avc: denied { ioctl open } for pid=9469 comm="syz.2.2572" path="/dev/loop2p2" dev="devtmpfs" ino=1111 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 117.627157][ T9482] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 117.632630][ T9484] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2579'. [ 117.655340][ T9484] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2579'. [ 117.806801][ T9437] syz.1.2553 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000 [ 117.824937][ T9437] CPU: 0 UID: 0 PID: 9437 Comm: syz.1.2553 Tainted: G W syzkaller #0 PREEMPT(full) [ 117.825000][ T9437] Tainted: [W]=WARN [ 117.825010][ T9437] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 117.825026][ T9437] Call Trace: [ 117.825033][ T9437] [ 117.825040][ T9437] __dump_stack+0x1d/0x30 [ 117.825074][ T9437] dump_stack_lvl+0x95/0xd0 [ 117.825108][ T9437] dump_stack+0x15/0x1b [ 117.825212][ T9437] dump_header+0x80/0x240 [ 117.825245][ T9437] oom_kill_process+0x295/0x350 [ 117.825269][ T9437] out_of_memory+0x97d/0xb80 [ 117.825382][ T9437] try_charge_memcg+0x62e/0xa10 [ 117.825433][ T9437] obj_cgroup_charge_pages+0x23/0xc0 [ 117.825516][ T9437] __memcg_kmem_charge_page+0x9e/0x170 [ 117.825615][ T9437] __alloc_frozen_pages_noprof+0x18a/0x360 [ 117.825706][ T9437] alloc_pages_mpol+0x1f6/0x260 [ 117.825766][ T9437] alloc_pages_noprof+0x8f/0x130 [ 117.825808][ T9437] __vmalloc_node_range_noprof+0xa46/0x12b0 [ 117.825871][ T9437] __kvmalloc_node_noprof+0x3d4/0x650 [ 117.826012][ T9437] ? futex_hash_allocate+0x190/0x9d0 [ 117.826052][ T9437] ? futex_hash_allocate+0x190/0x9d0 [ 117.826159][ T9437] futex_hash_allocate+0x190/0x9d0 [ 117.826203][ T9437] ? cap_task_prctl+0x13f/0x6e0 [ 117.826241][ T9437] futex_hash_prctl+0xd8/0xf0 [ 117.826362][ T9437] __se_sys_prctl+0xa3d/0x13f0 [ 117.826395][ T9437] __x64_sys_prctl+0x67/0x80 [ 117.826423][ T9437] x64_sys_call+0x2533/0x3020 [ 117.826494][ T9437] do_syscall_64+0x12c/0x370 [ 117.826530][ T9437] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 117.826571][ T9437] RIP: 0033:0x7fdd01efc799 [ 117.826593][ T9437] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 117.826620][ T9437] RSP: 002b:00007fdd00957028 EFLAGS: 00000246 ORIG_RAX: 000000000000009d [ 117.826648][ T9437] RAX: ffffffffffffffda RBX: 00007fdd02175fa0 RCX: 00007fdd01efc799 [ 117.826669][ T9437] RDX: 0000000001000000 RSI: 0000000000000001 RDI: 000000000000004e [ 117.826683][ T9437] RBP: 00007fdd01f92c99 R08: 0000000000000000 R09: 0000000000000000 [ 117.826698][ T9437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 117.826710][ T9437] R13: 00007fdd02176038 R14: 00007fdd02175fa0 R15: 00007ffc6e631bc8 [ 117.826773][ T9437] [ 118.056682][ T9437] memory: usage 307200kB, limit 307200kB, failcnt 543 [ 118.065327][ T9437] memory+swap: usage 307800kB, limit 9007199254740988kB, failcnt 0 [ 118.083002][ T9437] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 118.093138][ T9437] Memory cgroup stats for /syz1: [ 118.093469][ T9437] cache 0 [ 118.121509][ T9437] rss 8192 [ 118.131279][ T9437] shmem 0 [ 118.134812][ T9437] mapped_file 0 [ 118.139606][ T9437] dirty 0 [ 118.146659][ T9437] writeback 0 [ 118.169225][ T9437] workingset_refault_anon 55 [ 118.179487][ T9437] workingset_refault_file 487 [ 118.201426][ T9437] swap 614400 [ 118.206110][ T9437] swapcached 634880 [ 118.221481][ T9437] pgpgin 71289 [ 118.237360][ T9437] pgpgout 71286 [ 118.241514][ T9437] pgfault 105296 [ 118.249621][ T9437] pgmajfault 48 [ 118.255784][ T9437] inactive_anon 0 [ 118.263072][ T9437] active_anon 8192 [ 118.275579][ T9437] inactive_file 0 [ 118.295420][ T9437] active_file 0 [ 118.311790][ T9437] unevictable 0 [ 118.321406][ T9437] hierarchical_memory_limit 314572800 [ 118.329675][ T9516] loop4: detected capacity change from 0 to 2048 [ 118.336472][ T9437] hierarchical_memsw_limit 9223372036854771712 [ 118.343741][ T9437] total_cache 0 [ 118.347849][ T9437] total_rss 8192 [ 118.351598][ T9437] total_shmem 0 [ 118.355337][ T9437] total_mapped_file 0 [ 118.360506][ T9437] total_dirty 0 [ 118.364049][ T9437] total_writeback 0 [ 118.368940][ T9437] total_workingset_refault_anon 55 [ 118.375147][ T9516] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 118.387655][ T9437] total_workingset_refault_file 487 [ 118.393194][ T9516] ext4 filesystem being mounted at /553/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 118.404849][ T9437] total_swap 614400 [ 118.408820][ T9437] total_swapcached 634880 [ 118.413268][ T9437] total_pgpgin 71289 [ 118.417264][ T9437] total_pgpgout 71286 [ 118.421744][ T9437] total_pgfault 105296 [ 118.425945][ T9437] total_pgmajfault 48 [ 118.430907][ T9437] total_inactive_anon 0 [ 118.435207][ T9437] total_active_anon 8192 [ 118.438310][ T9516] EXT4-fs: Ignoring removed i_version option [ 118.440126][ T9437] total_inactive_file 0 [ 118.449794][ T9437] total_active_file 0 [ 118.454018][ T9437] total_unevictable 0 [ 118.459002][ T9437] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.2553,pid=9433,uid=0 [ 118.468281][ T9516] EXT4-fs (loop4): stripe (253) is not aligned with cluster size (16), stripe is disabled [ 118.475474][ T9437] Memory cgroup out of memory: Killed process 9433 (syz.1.2553) total-vm:96080kB, anon-rss:1232kB, file-rss:22020kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000 [ 118.530235][ T9520] netlink: 'syz.0.2593': attribute type 1 has an invalid length. [ 118.550235][ T9516] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. [ 118.600877][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 119.587044][ T9560] loop4: detected capacity change from 0 to 256 [ 119.860648][ T28] audit: type=1326 audit(1774656603.542:1024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9588 comm="syz.2.2625" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd9fd75c799 code=0x0 [ 120.036488][ T9597] xt_hashlimit: size too large, truncated to 1048576 [ 120.310958][ T9605] loop1: detected capacity change from 0 to 4096 [ 120.332900][ T9605] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 120.365952][ T9605] EXT4-fs (loop1): Online defrag not supported with bigalloc [ 120.375727][ T28] audit: type=1400 audit(1774656604.051:1025): avc: denied { append } for pid=9604 comm="syz.1.2629" name="file2" dev="loop1" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 120.399150][ T28] audit: type=1400 audit(1774656604.051:1026): avc: denied { ioctl } for pid=9604 comm="syz.1.2629" path="/482/file0/file2" dev="loop1" ino=16 ioctlcmd=0x660f scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 120.439863][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 120.495565][ T3401] IPVS: starting estimator thread 0... [ 120.584855][ T9618] IPVS: using max 2208 ests per chain, 110400 per kthread [ 120.964815][ T9652] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=14385 sclass=netlink_route_socket pid=9652 comm=syz.2.2648 [ 121.067797][ T28] audit: type=1400 audit(1774656604.749:1027): avc: denied { nlmsg_write } for pid=9656 comm="syz.5.2651" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1 [ 121.115013][ T9659] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2652'. [ 121.143581][ T28] audit: type=1400 audit(1774656604.769:1028): avc: denied { audit_write } for pid=9656 comm="syz.5.2651" capability=29 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 121.189674][ T28] audit: type=1107 audit(1774656604.769:1029): pid=9656 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 121.193477][ T28] audit: type=1400 audit(1774656604.868:1030): avc: granted { setsecparam } for pid=9664 comm="syz.5.2655" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security [ 121.328246][ T9668] netlink: 'syz.5.2656': attribute type 1 has an invalid length. [ 121.482901][ T9677] loop2: detected capacity change from 0 to 128 [ 121.640187][ T9688] loop4: detected capacity change from 0 to 512 [ 121.665701][ T9688] EXT4-fs: Ignoring removed bh option [ 121.697222][ T9688] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 121.735877][ T9688] EXT4-fs (loop4): 1 truncate cleaned up [ 121.751797][ T9688] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 121.862065][ T9688] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. [ 121.889971][ T9696] netlink: 'syz.2.2665': attribute type 25 has an invalid length. [ 121.897989][ T9696] netlink: 'syz.2.2665': attribute type 1 has an invalid length. [ 121.906095][ T9696] bridge0: port 1(bridge_slave_0) entered disabled state [ 121.984906][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 121.994722][ T9701] tipc: Started in network mode [ 121.999756][ T9701] tipc: Node identity aaaaaaaaaa38, cluster identity 4711 [ 122.007029][ T9701] tipc: Enabled bearer , priority 0 [ 122.074303][ T28] audit: type=1326 audit(1774656605.736:1031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9706 comm="syz.0.2670" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f66cdecc799 code=0x0 [ 122.095941][ T9708] netlink: 204 bytes leftover after parsing attributes in process `syz.4.2668'. [ 122.162170][ T9715] bond1: option miimon: invalid value (18446744073709551615) [ 122.171261][ T9715] bond1: option miimon: allowed values 0 - 2147483647 [ 122.183519][ T9715] bond1 (unregistering): Released all slaves [ 122.350162][ T28] audit: type=1400 audit(1774656606.015:1032): avc: denied { ioctl } for pid=9722 comm="syz.1.2678" path="socket:[25453]" dev="sockfs" ino=25453 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 122.646078][ T28] audit: type=1400 audit(1774656606.304:1033): avc: denied { override_creds } for pid=9734 comm="syz.2.2682" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 122.725678][ T9739] loop2: detected capacity change from 0 to 512 [ 122.744078][ T9739] EXT4-fs (loop2): 1 truncate cleaned up [ 122.750440][ T9739] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 122.804104][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 122.870459][ T9746] loop4: detected capacity change from 0 to 1764 [ 122.912751][ T9750] xt_hashlimit: size too large, truncated to 1048576 [ 122.945290][ T9754] loop4: detected capacity change from 0 to 128 [ 122.967630][ T9754] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 122.989541][ T9758] syzkaller0: tun_chr_ioctl cmd 35108 [ 123.002343][ T35] tipc: Node number set to 9611946 [ 123.012415][ T9754] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 123.068945][ T9764] loop2: detected capacity change from 0 to 764 [ 123.109217][ T9764] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 123.132071][ T28] audit: type=1400 audit(1774656606.803:1034): avc: denied { wake_alarm } for pid=9769 comm="syz.0.2699" capability=35 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 123.203877][ T28] audit: type=1400 audit(1774656606.883:1035): avc: denied { mount } for pid=9777 comm="syz.2.2702" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 123.377417][ T28] audit: type=1400 audit(1774656607.052:1036): avc: denied { name_bind } for pid=9787 comm="syz.0.2706" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1 [ 123.575286][ T9815] loop4: detected capacity change from 0 to 512 [ 123.604940][ T9815] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 123.627762][ T9815] ext4 filesystem being mounted at /577/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 123.640243][ T9815] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2719'. [ 123.649647][ T9815] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2719'. [ 123.689855][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 123.708086][ T9829] loop1: detected capacity change from 0 to 256 [ 123.750561][ T9829] FAT-fs (loop1): Directory bread(block 64) failed [ 123.762758][ T9829] FAT-fs (loop1): Directory bread(block 65) failed [ 123.778717][ T9829] FAT-fs (loop1): Directory bread(block 66) failed [ 123.791843][ T9829] FAT-fs (loop1): Directory bread(block 67) failed [ 123.798808][ T9829] FAT-fs (loop1): Directory bread(block 68) failed [ 123.821587][ T9829] FAT-fs (loop1): Directory bread(block 69) failed [ 123.837932][ T9829] FAT-fs (loop1): Directory bread(block 70) failed [ 123.859237][ T9829] FAT-fs (loop1): Directory bread(block 71) failed [ 123.874149][ T9829] FAT-fs (loop1): Directory bread(block 72) failed [ 123.891158][ T9829] FAT-fs (loop1): Directory bread(block 73) failed [ 123.919665][ T9829] bio_check_eod: 12 callbacks suppressed [ 123.919750][ T9829] syz.1.2724: attempt to access beyond end of device [ 123.919750][ T9829] loop1: rw=8388608, sector=1160, nr_sectors = 4 limit=256 [ 124.131000][ T9858] bridge0: port 2(bridge_slave_1) entered disabled state [ 124.249069][ T9873] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #16: comm syz.2.2745: invalid indirect mapped block 4294967295 (level 0) [ 124.265127][ T9873] loop2: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 124.265295][ T9873] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #16: comm syz.2.2745: invalid indirect mapped block 4294967295 (level 1) [ 124.288435][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 124.288461][ C1] EXT4-fs (loop2): initial error at time 1774656607: ext4_free_branches:1023: inode 16 [ 124.288505][ C1] EXT4-fs (loop2): last error at time 1774656607: ext4_free_branches:1023: inode 16 [ 124.356094][ T9873] loop2: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 124.356519][ T9873] EXT4-fs (loop2): 1 orphan inode deleted [ 124.389545][ T9886] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2749'. [ 124.406310][ T9873] EXT4-fs (loop2): 1 truncate cleaned up [ 124.420257][ T9873] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 124.639971][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 124.712436][ T9900] Invalid logical block size (-1) [ 124.779000][ T9912] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2761'. [ 126.520091][ T28] kauditd_printk_skb: 10 callbacks suppressed [ 126.520140][ T28] audit: type=1400 audit(1774656610.175:1047): avc: denied { read } for pid=10016 comm="syz.1.2805" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 126.570559][T10019] set_capacity_and_notify: 2 callbacks suppressed [ 126.570578][T10019] loop2: detected capacity change from 0 to 512 [ 126.613598][T10019] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 126.656067][T10019] ext4 filesystem being mounted at /638/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 126.737703][T10019] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2808'. [ 126.775467][T10019] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2808'. [ 127.012757][T10039] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2815'. [ 127.066237][T10039] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2815'. [ 127.211579][T10041] loop4: detected capacity change from 0 to 512 [ 127.218705][T10041] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 127.351761][T10043] xt_hashlimit: size too large, truncated to 1048576 [ 127.481377][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 127.551110][T10046] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2818'. [ 127.664466][T10053] sock: sock_timestamping_bind_phc: sock not bind to device [ 127.900892][ T28] audit: type=1400 audit(1774656611.562:1048): avc: denied { write } for pid=10069 comm="syz.5.2830" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 128.464173][ T28] audit: type=1400 audit(1774656612.121:1049): avc: denied { write } for pid=10108 comm="syz.4.2847" name="event0" dev="devtmpfs" ino=242 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 128.553325][T10119] xt_hashlimit: size too large, truncated to 1048576 [ 128.756897][T10137] batadv_slave_0: entered promiscuous mode [ 128.765388][T10137] batman_adv: batadv0: Adding interface: macvtap1 [ 128.771848][T10137] batman_adv: batadv0: The MTU of interface macvtap1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 128.798891][T10137] batman_adv: batadv0: Interface activated: macvtap1 [ 128.808667][T10139] loop2: detected capacity change from 0 to 128 [ 128.842729][T10139] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 128.865865][T10139] ext4 filesystem being mounted at /648/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 128.899527][T10139] EXT4-fs warning (device loop2): ext4_dirblock_csum_verify:375: inode #2: comm syz.2.2860: No space for directory leaf checksum. Please run e2fsck -D. [ 128.916094][T10139] EXT4-fs error (device loop2): htree_dirblock_to_tree:1051: inode #2: comm syz.2.2860: Directory block failed checksum [ 128.947849][ T28] audit: type=1400 audit(1774656612.600:1050): avc: denied { ioctl } for pid=10150 comm="syz.0.2864" path="socket:[26223]" dev="sockfs" ino=26223 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 129.002153][ T3324] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 129.401318][ T28] audit: type=1400 audit(1774656613.059:1051): avc: denied { bind } for pid=10191 comm="syz.0.2883" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 129.494344][ T28] audit: type=1400 audit(1774656613.099:1052): avc: denied { mount } for pid=10195 comm="syz.2.2885" name="/" dev="selinuxfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=filesystem permissive=1 [ 129.646881][T10219] loop1: detected capacity change from 0 to 512 [ 129.660158][T10213] loop4: detected capacity change from 0 to 8192 [ 129.686346][T10219] EXT4-fs: Ignoring removed mblk_io_submit option [ 129.724459][T10219] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13 [ 129.763426][ T28] audit: type=1400 audit(1774656613.409:1053): avc: denied { mount } for pid=10226 comm="syz.2.2901" name="/" dev="rpc_pipefs" ino=26349 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1 [ 129.795732][T10219] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.2895: invalid indirect mapped block 33554432 (level 0) [ 129.809897][T10219] loop1: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 129.810112][T10219] EXT4-fs (loop1): Remounting filesystem read-only [ 129.819347][ C0] EXT4-fs (loop1): error count since last fsck: 1 [ 129.819363][ C0] EXT4-fs (loop1): initial error at time 1774656613: ext4_free_branches:1023: inode 13 [ 129.819415][ C0] EXT4-fs (loop1): last error at time 1774656613: ext4_free_branches:1023: inode 13 [ 129.853255][T10219] EXT4-fs (loop1): 1 truncate cleaned up [ 129.859782][T10219] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 129.898263][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 129.999732][T10242] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=2560 sclass=netlink_xfrm_socket pid=10242 comm=syz.1.2906 [ 130.082361][T10254] loop2: detected capacity change from 0 to 512 [ 130.113882][T10254] EXT4-fs: dax option not supported [ 130.140183][ T28] audit: type=1400 audit(1774656613.798:1054): avc: denied { bind } for pid=10256 comm="syz.1.2912" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 130.309436][T10283] loop1: detected capacity change from 0 to 256 [ 130.564383][T10300] loop1: detected capacity change from 0 to 4096 [ 130.592819][T10300] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 130.617171][T10300] EXT4-fs (loop1): shut down requested (1) [ 130.636251][T10300] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop1 ino=16 [ 130.653448][T10300] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop1 ino=15 [ 130.662422][T10300] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop1 ino=16 [ 130.671734][T10300] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop1 ino=15 [ 130.678915][ T28] audit: type=1400 audit(1774656614.327:1055): avc: denied { rename } for pid=10297 comm="syz.1.2929" name="file3" dev="loop1" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 130.714357][ T28] audit: type=1400 audit(1774656614.337:1056): avc: denied { unlink } for pid=10297 comm="syz.1.2929" name="file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 130.738995][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 131.290873][T10337] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2946'. [ 131.370121][T10345] loop1: detected capacity change from 0 to 128 [ 131.692169][ T28] kauditd_printk_skb: 3 callbacks suppressed [ 131.692246][ T28] audit: type=1400 audit(1774656615.345:1060): avc: denied { lock } for pid=10372 comm="syz.5.2963" path="socket:[27481]" dev="sockfs" ino=27481 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 131.785054][T10379] loop4: detected capacity change from 0 to 256 [ 131.789746][ T28] audit: type=1400 audit(1774656615.385:1061): avc: denied { ioctl } for pid=10370 comm="syz.1.2962" path="/546/file2" dev="tmpfs" ino=2815 ioctlcmd=0x4c00 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 131.915056][T10387] loop4: detected capacity change from 0 to 512 [ 131.949912][T10387] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 131.990942][T10387] ext4 filesystem being mounted at /628/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 132.050060][T10387] EXT4-fs error (device loop4): ext4_add_entry:2415: inode #12: comm syz.4.2970: Directory hole found for htree leaf block 0 [ 132.131608][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 132.235134][ T28] audit: type=1400 audit(1774656871.884:1062): avc: denied { connect } for pid=10413 comm="syz.4.2981" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 132.273363][T10416] SELinux: failure in selinux_parse_skb(), unable to parse packet [ 132.289590][T10416] SELinux: failure in selinux_parse_skb(), unable to parse packet [ 132.369903][T10426] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2987'. [ 132.442659][T10425] loop4: detected capacity change from 0 to 8192 [ 132.449238][ T28] audit: type=1400 audit(1774656872.094:1063): avc: denied { bind } for pid=10433 comm="syz.0.2991" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 132.490005][ T6618] loop4: p1 p2 p4 [ 132.494351][ T6618] loop4: p1 start 17171200 is beyond EOD, truncated [ 132.500899][T10440] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2994'. [ 132.503663][ T6618] loop4: p2 start 4293394690 is beyond EOD, truncated [ 132.516959][ T6618] loop4: p4 size 100663296 extends beyond EOD, truncated [ 132.536100][T10425] loop4: p1 p2 p4 [ 132.540238][T10425] loop4: p1 start 17171200 is beyond EOD, truncated [ 132.548266][T10425] loop4: p2 start 4293394690 is beyond EOD, truncated [ 132.568977][T10425] loop4: p4 size 100663296 extends beyond EOD, truncated [ 132.592743][ T3001] loop4: p1 p2 p4 [ 132.596682][ T3001] loop4: p1 start 17171200 is beyond EOD, truncated [ 132.603587][ T3001] loop4: p2 start 4293394690 is beyond EOD, truncated [ 132.613557][ T3001] loop4: p4 size 100663296 extends beyond EOD, truncated [ 132.692607][T10456] loop2: detected capacity change from 0 to 512 [ 132.710432][ T6618] udevd[6618]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 132.725616][T10456] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 132.742046][ T28] audit: type=1400 audit(1774656872.394:1064): avc: denied { getopt } for pid=10457 comm="syz.4.3004" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 132.770541][ T6618] udevd[6618]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 132.782809][T10456] EXT4-fs error (device loop2): ext4_init_orphan_info:618: comm syz.2.3002: orphan file block 0: bad magic [ 132.799312][ T6618] udevd[6618]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 132.812746][T10465] netlink: 68 bytes leftover after parsing attributes in process `syz.1.3005'. [ 132.812997][T10456] loop2: lost filesystem error report for type 5 error -117 [ 132.822780][T10456] EXT4-fs (loop2): Remounting filesystem read-only [ 132.830262][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 132.830300][ C1] EXT4-fs (loop2): initial error at time 1774656872: ext4_init_orphan_info:618 [ 132.830330][ C1] EXT4-fs (loop2): last error at time 1774656872: ext4_init_orphan_info:618 [ 132.862586][T10456] EXT4-fs (loop2): mount failed [ 132.873036][T10456] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3002'. [ 132.948540][ T28] audit: type=1400 audit(1774656872.594:1065): avc: denied { mounton } for pid=10475 comm="syz.5.3010" path="/291/file0" dev="tmpfs" ino=1504 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1 [ 132.984759][ T28] audit: type=1400 audit(1774656872.594:1066): avc: denied { write } for pid=10 comm="kworker/0:1" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=27762 scontext=system_u:system_r:kernel_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 133.078065][T10479] loop4: detected capacity change from 0 to 8192 [ 133.096214][T10479] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 133.178919][ T28] audit: type=1400 audit(1774656872.824:1067): avc: denied { bind } for pid=10497 comm="syz.4.3020" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 133.333486][ T28] audit: type=1326 audit(1774656872.984:1068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10512 comm="syz.2.3029" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fd9fd75c799 code=0x0 [ 133.636902][T10536] program syz.0.3039 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 133.764913][T10547] program syz.0.3044 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 133.797155][T10552] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3046'. [ 133.993273][T10576] loop4: detected capacity change from 0 to 512 [ 134.013230][T10578] bond1: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0) [ 134.025134][T10578] bond1 (unregistering): Released all slaves [ 134.055253][T10576] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 134.074464][T10576] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.3057: bad orphan inode 131083 [ 134.096167][T10576] loop4: lost filesystem error report for type 5 error -117 [ 134.097024][T10576] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 134.134025][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 134.271172][T10599] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3067'. [ 134.320749][T10603] loop4: detected capacity change from 0 to 128 [ 134.464765][ T28] audit: type=1400 audit(1774656874.104:1069): avc: denied { connect } for pid=10614 comm="syz.4.3075" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 134.500036][T10620] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 134.507323][T10620] IPv6: NLM_F_CREATE should be set when creating new route [ 134.514576][T10620] IPv6: NLM_F_CREATE should be set when creating new route [ 134.521831][T10620] IPv6: NLM_F_CREATE should be set when creating new route [ 134.558540][T10620] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 134.838973][T10666] program syz.4.3099 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 134.983456][T10691] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3108'. [ 135.005001][T10693] netlink: 'syz.1.3112': attribute type 1 has an invalid length. [ 135.014176][T10693] netlink: 'syz.1.3112': attribute type 2 has an invalid length. [ 135.134541][T10715] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3123'. [ 135.151709][T10715] bond1: option ad_actor_system: mode dependency failed, not supported in mode balance-rr(0) [ 135.168971][T10715] bond1 (unregistering): Released all slaves [ 135.265926][T10727] can0: slcan on ttyS3. [ 135.310224][T10727] can0 (unregistered): slcan off ttyS3. [ 135.472535][T10764] tipc: Enabling of bearer rejected, failed to enable media [ 135.562725][T10780] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3142'. [ 135.632321][T10793] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3148'. [ 135.846686][T10816] netlink: 'syz.5.3159': attribute type 21 has an invalid length. [ 135.882556][T10822] loop2: detected capacity change from 0 to 512 [ 135.897246][T10822] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 135.917120][T10822] EXT4-fs (loop2): 1 truncate cleaned up [ 135.926525][T10822] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 136.006150][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 136.066642][T10834] bridge0: port 2(bridge_slave_1) entered disabled state [ 137.417552][T10878] syz.2.3185 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000 [ 137.430245][T10911] loop4: detected capacity change from 0 to 512 [ 137.441540][T10911] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 137.455998][T10878] CPU: 1 UID: 0 PID: 10878 Comm: syz.2.3185 Tainted: G W syzkaller #0 PREEMPT(full) [ 137.456044][T10878] Tainted: [W]=WARN [ 137.456054][T10878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 137.456081][T10878] Call Trace: [ 137.456089][T10878] [ 137.456097][T10878] __dump_stack+0x1d/0x30 [ 137.456132][T10878] dump_stack_lvl+0x95/0xd0 [ 137.456208][T10878] dump_stack+0x15/0x1b [ 137.456241][T10878] dump_header+0x80/0x240 [ 137.456275][T10878] oom_kill_process+0x295/0x350 [ 137.456306][T10878] out_of_memory+0x97d/0xb80 [ 137.456384][T10878] try_charge_memcg+0x62e/0xa10 [ 137.456444][T10878] obj_cgroup_charge_pages+0x23/0xc0 [ 137.456484][T10878] __memcg_kmem_charge_page+0x9e/0x170 [ 137.456602][T10878] __alloc_frozen_pages_noprof+0x18a/0x360 [ 137.456636][T10878] alloc_pages_mpol+0xb3/0x260 [ 137.456680][T10878] alloc_pages_noprof+0x8f/0x130 [ 137.456846][T10878] __vmalloc_node_range_noprof+0xa46/0x12b0 [ 137.456901][T10878] __kvmalloc_node_noprof+0x3d4/0x650 [ 137.456938][T10878] ? ip_set_alloc+0x24/0x30 [ 137.457015][T10878] ? ip_set_alloc+0x24/0x30 [ 137.457056][T10878] ? __kmalloc_cache_noprof+0x18a/0x410 [ 137.457083][T10878] ip_set_alloc+0x24/0x30 [ 137.457116][T10878] hash_netiface_create+0x282/0x740 [ 137.457192][T10878] ? __pfx_hash_netiface_create+0x10/0x10 [ 137.457236][T10878] ip_set_create+0x3cf/0x970 [ 137.457287][T10878] ? __nla_parse+0x40/0x60 [ 137.457388][T10878] nfnetlink_rcv_msg+0x509/0x5d0 [ 137.457445][T10878] netlink_rcv_skb+0x123/0x220 [ 137.457548][T10878] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 137.457596][T10878] nfnetlink_rcv+0x167/0x1720 [ 137.457648][T10878] ? __kfree_skb+0x109/0x150 [ 137.457725][T10878] ? nlmon_xmit+0x4f/0x60 [ 137.457764][T10878] ? consume_skb+0x4b/0x160 [ 137.457792][T10878] ? nlmon_xmit+0x4f/0x60 [ 137.457813][T10878] ? dev_hard_start_xmit+0x3b9/0x3f0 [ 137.457893][T10878] ? __dev_queue_xmit+0x136c/0x1f20 [ 137.457925][T10878] ? __dev_queue_xmit+0x148/0x1f20 [ 137.457967][T10878] ? ref_tracker_free+0x37d/0x3e0 [ 137.458024][T10878] ? __netlink_deliver_tap+0x4dc/0x500 [ 137.458066][T10878] netlink_unicast+0x5c0/0x690 [ 137.458172][T10878] netlink_sendmsg+0x5c8/0x6f0 [ 137.458297][T10878] ? __pfx_netlink_sendmsg+0x10/0x10 [ 137.458346][T10878] ____sys_sendmsg+0x563/0x5b0 [ 137.458411][T10878] ___sys_sendmsg+0x195/0x1e0 [ 137.458517][T10878] __x64_sys_sendmsg+0xd4/0x160 [ 137.458584][T10878] x64_sys_call+0x194c/0x3020 [ 137.458691][T10878] do_syscall_64+0x12c/0x370 [ 137.458727][T10878] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 137.458755][T10878] RIP: 0033:0x7fd9fd75c799 [ 137.458775][T10878] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 137.458838][T10878] RSP: 002b:00007fd9fc1af028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 137.458866][T10878] RAX: ffffffffffffffda RBX: 00007fd9fd9d5fa0 RCX: 00007fd9fd75c799 [ 137.458884][T10878] RDX: 0000000000000880 RSI: 0000200000000040 RDI: 0000000000000003 [ 137.458901][T10878] RBP: 00007fd9fd7f2c99 R08: 0000000000000000 R09: 0000000000000000 [ 137.458920][T10878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 137.458936][T10878] R13: 00007fd9fd9d6038 R14: 00007fd9fd9d5fa0 R15: 00007ffffb11c1d8 [ 137.459008][T10878] [ 137.502455][T10878] memory: usage 307196kB, limit 307200kB, failcnt 223 [ 137.552044][T10911] EXT4-fs (loop4): 1 truncate cleaned up [ 137.555537][T10878] memory+swap: usage 307728kB, limit 9007199254740988kB, failcnt 0 [ 137.582506][T10911] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 137.586068][T10878] kmem: usage 307004kB, limit 9007199254740988kB, failcnt 0 [ 137.844135][T10878] Memory cgroup stats for /syz2: [ 137.844350][T10878] cache 184320 [ 137.852769][T10878] rss 0 [ 137.855640][T10878] shmem 0 [ 137.858595][T10878] mapped_file 0 [ 137.862175][T10878] dirty 0 [ 137.865166][T10878] writeback 8192 [ 137.868832][T10878] workingset_refault_anon 53 [ 137.876379][T10878] workingset_refault_file 1134 [ 137.894337][T10878] swap 577536 [ 137.897729][T10878] swapcached 16527360 [ 137.901824][T10878] pgpgin 113935 [ 137.905374][T10878] pgpgout 113886 [ 137.908964][T10878] pgfault 161799 [ 137.912605][T10878] pgmajfault 27 [ 137.916169][T10878] inactive_anon 8192 [ 137.920235][T10878] active_anon 0 [ 137.923791][T10878] inactive_file 49152 [ 137.927939][T10878] active_file 57344 [ 137.931940][T10878] unevictable 0 [ 137.935452][T10878] hierarchical_memory_limit 314572800 [ 137.941019][T10878] hierarchical_memsw_limit 9223372036854771712 [ 137.947231][T10878] total_cache 184320 [ 137.975149][T10878] total_rss 0 [ 137.990594][T10878] total_shmem 0 [ 137.994725][T10878] total_mapped_file 0 [ 138.002597][T10878] total_dirty 0 [ 138.006195][T10878] total_writeback 8192 [ 138.011142][T10878] total_workingset_refault_anon 53 [ 138.018596][T10878] total_workingset_refault_file 1134 [ 138.038535][T10878] total_swap 577536 [ 138.057272][T10878] total_swapcached 16527360 [ 138.063308][T10878] total_pgpgin 113935 [ 138.068803][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.078144][T10878] total_pgpgout 113886 [ 138.100340][T10878] total_pgfault 161799 [ 138.109964][T10878] total_pgmajfault 27 [ 138.114124][T10878] total_inactive_anon 8192 [ 138.118641][T10878] total_active_anon 0 [ 138.123028][T10878] total_inactive_file 49152 [ 138.151284][T10878] total_active_file 57344 [ 138.181918][T10878] total_unevictable 0 [ 138.187967][T10878] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.3185,pid=10877,uid=0 [ 138.250501][T10878] Memory cgroup out of memory: Killed process 10877 (syz.2.3185) total-vm:94308kB, anon-rss:1232kB, file-rss:22148kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000 [ 138.468456][T10878] syz.2.3185 (10878) used greatest stack depth: 7192 bytes left [ 138.528533][T10965] loop2: detected capacity change from 0 to 512 [ 138.565548][T10965] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 138.611614][T10965] EXT4-fs (loop2): 1 truncate cleaned up [ 138.633257][T10965] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 138.726955][T10965] ================================================================== [ 138.735114][T10965] BUG: KCSAN: data-race in __xa_clear_mark / xas_find_marked [ 138.742526][T10965] [ 138.744868][T10965] read-write to 0xffff88811a026d98 of 8 bytes by interrupt on cpu 1: [ 138.752950][T10965] __xa_clear_mark+0xf5/0x1e0 [ 138.757687][T10965] __folio_end_writeback+0xf4/0x360 [ 138.762930][T10965] folio_end_writeback_no_dropbehind+0x6d/0x1d0 [ 138.769187][T10965] folio_end_writeback+0x1c/0x70 [ 138.774139][T10965] ext4_finish_bio+0x459/0x8b0 [ 138.778947][T10965] ext4_end_bio+0x27b/0x380 [ 138.783472][T10965] bio_endio+0x38a/0x420 [ 138.787743][T10965] blk_update_request+0x338/0x740 [ 138.792851][T10965] blk_mq_end_request+0x26/0x50 [ 138.797766][T10965] lo_complete_rq+0x98/0x140 [ 138.802377][T10965] blk_done_softirq+0x77/0xb0 [ 138.807067][T10965] handle_softirqs+0xb9/0x2a0 [ 138.811775][T10965] run_ksoftirqd+0x1c/0x30 [ 138.816261][T10965] smpboot_thread_fn+0x32a/0x510 [ 138.821232][T10965] kthread+0x22a/0x280 [ 138.825346][T10965] ret_from_fork+0x150/0x360 [ 138.829957][T10965] ret_from_fork_asm+0x1a/0x30 [ 138.834734][T10965] [ 138.837063][T10965] read to 0xffff88811a026d98 of 8 bytes by task 10965 on cpu 0: [ 138.844697][T10965] xas_find_marked+0x213/0x620 [ 138.849499][T10965] filemap_get_folios_tag+0xfa/0x510 [ 138.854816][T10965] file_write_and_wait_range+0x20c/0x2f0 [ 138.860461][T10965] generic_buffers_fsync_noflush+0x45/0x130 [ 138.866387][T10965] ext4_sync_file+0x1aa/0x6b0 [ 138.871106][T10965] vfs_fsync_range+0xc5/0xe0 [ 138.875727][T10965] ext4_buffered_write_iter+0x34f/0x3c0 [ 138.881302][T10965] ext4_file_write_iter+0x380/0xfa0 [ 138.886518][T10965] do_iter_readv_writev+0x4fd/0x5a0 [ 138.891769][T10965] vfs_writev+0x2e1/0x900 [ 138.896107][T10965] __se_sys_pwritev2+0xfc/0x1c0 [ 138.900974][T10965] __x64_sys_pwritev2+0x67/0x80 [ 138.905836][T10965] x64_sys_call+0xe07/0x3020 [ 138.910454][T10965] do_syscall_64+0x12c/0x370 [ 138.915059][T10965] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 138.920973][T10965] [ 138.923319][T10965] value changed: 0x00ffffffff800000 -> 0x00fffffffe000000 [ 138.930445][T10965] [ 138.932766][T10965] Reported by Kernel Concurrency Sanitizer on: [ 138.938953][T10965] CPU: 0 UID: 0 PID: 10965 Comm: syz.2.3221 Tainted: G W syzkaller #0 PREEMPT(full) [ 138.949914][T10965] Tainted: [W]=WARN [ 138.953733][T10965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 138.963835][T10965] ================================================================== [ 139.014628][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.