last executing test programs: 1m50.788065834s ago: executing program 4 (id=3449): r0 = msgget$private(0x0, 0x3ac) msgrcv(r0, 0x0, 0x0, 0x1, 0x2000) msgrcv(r0, 0x0, 0x0, 0x3, 0x2000) msgsnd(r0, &(0x7f0000000000)={0x3}, 0x8, 0x0) 1m49.93358758s ago: executing program 4 (id=3472): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="bc0100001900010000000000fddbdf25e00000020000000000000000000000002001000000000000000000000000000200000040000000000a00200008000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000000010000000000000000000000000000000000000000040000000000000000000000000000001d00000000000000000000000000000000000000000000000000000000000000dd02000000000000000000000000000001"], 0x1bc}, 0x1, 0x0, 0x0, 0x4044081}, 0x0) 1m49.84392153s ago: executing program 4 (id=3475): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="05000000040000000900000044"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x18) fsync(0xffffffffffffffff) 1m49.802695421s ago: executing program 4 (id=3478): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001f40)=@base={0x12, 0x8, 0x4, 0x2}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe1d}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x401}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001700)={r1, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="df33c9f7b9a60000000000000000", 0x0, 0xfffffbff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 1m48.827811486s ago: executing program 4 (id=3512): mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x10, 0x106) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20) unlinkat(0xffffffffffffff9c, &(0x7f0000000480)='./file1\x00', 0x0) 1m48.756510717s ago: executing program 4 (id=3514): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r0, 0x0, 0x401}, 0x11) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a030000000000000000f0070000000900010073797a300000000080000000090a010400000000000000000700000008000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d3c00128014000180090001006c617374000000000400028010000180090001006c61737400000000140001800c000100636f756e746572000400028008000340000001"], 0xc8}, 0x1, 0x0, 0x0, 0x40000}, 0x20050800) 1m47.657171194s ago: executing program 0 (id=3551): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sys_enter\x00', r0}, 0x18) gettid() getpeername$packet(0xffffffffffffffff, 0x0, 0x0) 1m47.581463795s ago: executing program 0 (id=3557): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000380)='devices.list\x00', 0x0, 0x0) preadv(r1, &(0x7f00000000c0)=[{&(0x7f0000000240)=""/134, 0x86}], 0x1, 0xfffffffd, 0x0) 1m47.518357355s ago: executing program 0 (id=3559): syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x1a00404, &(0x7f0000000080)={[{@grpquota}, {@nomblk_io_submit}]}, 0x1, 0xbac, &(0x7f00000017c0)="$eJzs3M1rXOUaAPDnnEy+c5v0crn3tggGpCqK07QpFbpqXYsKunDZmExKyPTDJIIJXaR1ry5EXBSkf4Lg3m5cCS7qQutfUMQiRTdtFyNnPtKxk5nGdGaOSX8/eHPe97wn8zxPTmfOe2BOA3hqTWc/0ohDEXE2iZis708jYqjaG4nYrB13/+7l+awlUam8/VsSSUTcu3t5vvFaSX07Xh+MRMTN15L490etcVfXN5bnyuXSSn18dO38paOr6xuvLJ2fO1c6V7pwYvbVE7MnZ2e7WOvtS+998cwPbzx/9frHM29+fuC7JE7HRH2uuY5umY7prb9Js0JEzHU7WE4G6vU015kUckwIAICO0qY13H9jMgbi4eJtMr79MdfkAAAAgK6oDERUAAAAgH0ucf8PAAAA+1zjewD37l6eb7R8v5HQX3fORMRUrf7G8821mUJsVrcjMRgRY78n0fxYa1L7tSc2nUX6+vtS1qJHzyF3snklIv6/3flPqvVPVZ/ibq0/jYiZLsSffmS8l+o/3YX4edcPwNPpxpnahaz1+pdurX9im+tfYZtr127kff1rrP/ut6z/HtY/0Gb999YOYxx+8NLNdnPN6793P/l5IYufbZ+oqL/hzpWIw4Xt6k+26k/a1H92hzHG529fazeX1Z/V22j9rr9yPeJIdTXXWn9D0un/Jzq6uFQuzdR+bvP66yc7x28+/1nL4jfuBfohO/9jsbvzf2mHMab+9+uhdnOPrz/9ZSh5p9obqu/5cG5tbeVYxFDyeuv+451zaRzTeI2s/hef6/z+367+7DNhs/53yP71XKlvs/HVR2KOHzn+1e7r762s/oVdnv9Pdxjjy2+uvd9uLu/6AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANgb0oiYiCQtbvXTtFiMGI+I/8RYWr64uvby4sUPLixkcxFTMZguLpVLMxExWRsn2fhYtf9wfPyR8WxEHIyIzyZHq+Pi/MXyQt7FAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAsGU8IiYiSYsRkUbEH5NpWizmnRUAAADQdVN5JwAAAAD0nPt/AAAA2P9a7v8LfxmN9DMXAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA9qWDz964lUTE5qnRassM1ecGc80M6LV0Z4eN9ToPoP8G8k4AyE2hqV+pVCo5pgL0mXt8IHnM/EjbmeGu5wIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAP9cLh27cSiJi89RotWWG6nODuWYG9FqadwJAbgY6TSaP3QHsYYW8EwBy4x4fqK3sH1RqWudH2v7m8BNHBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGDvmKi2JC1GRFrtp2mxGPGviJiKwWRxqVyaiYgDEfHT5OBwNj6Wd9IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB03er6xvJcuVxa0dHR6WJnNPoWa7T+Zm5zzHD7qQ6dnD+YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADIxer6xvJcuVxaWc07EwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACBvq+sby3Plcmmlh528awQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAID9/BgAA///GyAmy") r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x1c9441, 0x0) getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0) quotactl_fd$Q_QUOTAON(r0, 0x80000601, 0x0, &(0x7f0000000400)='./file0\x00') 1m46.391076092s ago: executing program 0 (id=3583): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a40)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000080000000000000010000009400000007ad4160850000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r1}, 0x10) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[@ANYBLOB="400000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="210000000000000020001280080001006873720014000280080001"], 0x40}}, 0x0) 1m46.317816622s ago: executing program 0 (id=3587): mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000005c0)={0x0, 0xffffffffffffffff, 0x0, 0x31, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30) mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0) mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x140070, 0x0) 1m45.959821544s ago: executing program 0 (id=3592): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f00000000c0), 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', 0x0}) sendmsg$can_bcm(r0, &(0x7f0000000000)={&(0x7f0000000040)={0x1d, r1}, 0x10, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="0400"/16, @ANYRES64=0x0, @ANYRES64=0x2710, @ANYRES64=r0, @ANYRES64=r1, @ANYBLOB="00000000010000000000000084"], 0x48}}, 0x0) 1m33.022356524s ago: executing program 32 (id=3514): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r0, 0x0, 0x401}, 0x11) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a030000000000000000f0070000000900010073797a300000000080000000090a010400000000000000000700000008000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d3c00128014000180090001006c617374000000000400028010000180090001006c61737400000000140001800c000100636f756e746572000400028008000340000001"], 0xc8}, 0x1, 0x0, 0x0, 0x40000}, 0x20050800) 1m30.934206067s ago: executing program 33 (id=3592): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f00000000c0), 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', 0x0}) sendmsg$can_bcm(r0, &(0x7f0000000000)={&(0x7f0000000040)={0x1d, r1}, 0x10, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="0400"/16, @ANYRES64=0x0, @ANYRES64=0x2710, @ANYRES64=r0, @ANYRES64=r1, @ANYBLOB="00000000010000000000000084"], 0x48}}, 0x0) 1m24.211852639s ago: executing program 1 (id=4020): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000280)={@mcast1, 0x800, 0x0, 0x103, 0x9}, 0x20) setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000040)=0x5, 0x4) sendmsg$inet6(r0, &(0x7f00000000c0)={&(0x7f0000000340)={0xa, 0x4e21, 0x80000, @dev={0xfe, 0x80, '\x00', 0x19}, 0xfffffffd}, 0x1c, 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="180000000000000029000000040000005e0000000000000050000000000000002900000036000000ff0600000000000005020002070800000002000a0300050200030104000000000401c00102000004010207080000000300f90e00c20400000040000000000000a00000000000000029000000370000005e100000000000000401000502000b0549f2fc86e30bdad92eface71ac80f923bdd20bb89c6eae3ec51f3d720dafb565ebed9875c6a658072943f3df7862642db94106a8b1eaec5b010dfbaee5f3cb57396a2cb4f6b16172b910ff22fe1146525c35dd88dffbc41198b3fadb26d68c4bf33217052357ecb542bc971453b90001000502000301010001030000000000001400000000000000290000000b000000000000020000000040000000000000002900000004"], 0x160}, 0xc4) 1m24.211598439s ago: executing program 1 (id=4021): r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) tkill(r0, 0x13) waitid(0x1, r0, 0x0, 0x2, 0x0) waitid(0x1, r0, 0x0, 0x2, 0x0) 1m23.346769474s ago: executing program 1 (id=4050): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=@base={0x11, 0x4, 0x4, 0x8}, 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r2, 0x0, 0xf89, 0x0, &(0x7f0000000540)="39bdeac368e4c4e87a7bfd439b9f4793bcb64f217eb9435d6b4e435770512f9a534ba988586c565c33b12ddb4c357728b463ae54ffa88f65c5bc96051eb279632efcc45cc6c9e2dc521020f9357b64ce3879ce30e3", 0x0, 0x0, 0x0, 0x0, 0x62, 0x0, 0x0, 0x6, 0x9, 0xffffffff}, 0x28) 1m23.346505164s ago: executing program 1 (id=4051): mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(&(0x7f0000000340)='./file0/../file0\x00', &(0x7f0000000280)='./file0/file0\x00', 0x0, 0xb101e, 0x0) mount$bind(&(0x7f0000000540)='./file0/../file0\x00', &(0x7f0000000500)='./file0/file0\x00', 0x0, 0x2080, 0x0) 1m23.306360404s ago: executing program 1 (id=4054): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0xea67}, 0x18) ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0) 1m23.099883896s ago: executing program 1 (id=4062): perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xbffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x100082, 0x10000, 0x1ff, 0x6, 0xe, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x6}, 0x4) close(r0) 1m23.092082876s ago: executing program 34 (id=4062): perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xbffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x100082, 0x10000, 0x1ff, 0x6, 0xe, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x6}, 0x4) close(r0) 1m6.24114139s ago: executing program 7 (id=4748): perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x5, 0x8, 0x20005, 0x7, 0x0, 0x0, 0x0, 0x20004006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x2c, r1, 0x1, 0x70bd2b, 0x0, {0x1a}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000801}, 0x0) 1m6.17368057s ago: executing program 7 (id=4740): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff27}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000980)=@raw={'raw\x00', 0x3c1, 0x3, 0x3f0, 0x1c0, 0xc8, 0x8, 0x0, 0x5803, 0x320, 0x2e8, 0x2e8, 0x320, 0x2e8, 0x3, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @multicast1}, @mcast1, [0x0, 0x0, 0xff], [], 'erspan0\x00', 'geneve1\x00'}, 0x0, 0x190, 0x1c0, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'kmp\x00', "cfcaf80c672f61cd17ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f34a214e67262c1fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x1}}, @common=@inet=@socket3={{0x28}}]}, @common=@unspec=@CONNMARK={0x30}}, {{@uncond, 0x0, 0xf8, 0x160, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x13}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x8, 0x2, 0x9, 0x8001, 'pptp\x00', 'syz0\x00', {0x6f7}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x450) 1m6.072342951s ago: executing program 7 (id=4742): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x1f, 0x11, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000ffffffff000000000000000085000000a8000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000b300000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000700)={r1}, 0xc) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r1}, 0xc) 1m6.035281102s ago: executing program 7 (id=4745): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262) 1m6.012884531s ago: executing program 7 (id=4747): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) setresuid(0xee01, 0xee00, 0x0) unshare(0x20000600) 1m5.915805182s ago: executing program 7 (id=4749): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x5, 0x2, 0x8, 0xc}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='mmap_lock_acquire_returned\x00', r1}, 0x10) brk(0x400000ffc000) 1m5.915534322s ago: executing program 35 (id=4749): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x5, 0x2, 0x8, 0xc}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='mmap_lock_acquire_returned\x00', r1}, 0x10) brk(0x400000ffc000) 1.6845116s ago: executing program 3 (id=7722): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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") sched_setattr(0x0, &(0x7f00000002c0)={0x38, 0x5, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0xfffffffc}, 0x0) r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0) sendfile(r0, r0, 0x0, 0x800000009) 1.60125554s ago: executing program 3 (id=7723): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a000020095"], &(0x7f0000000800)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0) close(r1) 1.5621924s ago: executing program 3 (id=7725): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0}, 0x10) symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00') getxattr(&(0x7f0000003040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', &(0x7f0000000040)=@known='system.sockprotoname\x00', 0x0, 0x0) 1.53937662s ago: executing program 3 (id=7726): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000010000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x18) setuid(0xee01) 1.519400041s ago: executing program 3 (id=7727): pipe(&(0x7f0000000080)) r0 = socket(0x10, 0x3, 0x0) unshare(0x22020400) write(r0, &(0x7f0000000000)="3c00000058001f000307f4f9002304000a04d65f0800010002010002170003800500000099db973b91aa057972513500b0406700912deb5b85932234", 0x3c) 1.483220891s ago: executing program 3 (id=7728): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x80, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf) ioctl$TCFLSH(r0, 0x400455c8, 0x0) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0xdf) 716.569346ms ago: executing program 8 (id=7739): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x0, 0xd}, 0x2000, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0x1, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x401, 0xfffffffe, 0x0, 0xffffffff}, 0x10) close(r0) 672.460876ms ago: executing program 5 (id=7742): r0 = socket$inet6(0x10, 0x3, 0x0) r1 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000000000)=@newtaction={0x6c, 0x30, 0x53b, 0x70bd29, 0x0, {}, [{0x58, 0x1, [@m_simple={0x54, 0x1, 0x0, 0x0, {{0xb}, {0x28, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0xb, 0x3, 'simple\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x9f, 0x401}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4060040}, 0x0) sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b) 608.782696ms ago: executing program 8 (id=7743): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x73) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x18) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) shmdt(0x0) 564.424217ms ago: executing program 8 (id=7744): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000044, &(0x7f0000000b00), 0x1, 0x55f, &(0x7f0000000580)="$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") mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x18061, 0x0) 492.190917ms ago: executing program 5 (id=7746): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000001ffffeb00000000eb658e0d850000007b00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) stat(0x0, 0x0) 329.844208ms ago: executing program 5 (id=7747): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)=@newtaction={0x8c, 0x30, 0x1, 0x0, 0x0, {}, [{0x78, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4, 0x2}, {0xc}, {0xc}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0xfffffffffffffffe}}}]}, {0x25}, {0xc}, {0xc}}}]}]}, 0x8c}}, 0x0) 266.183988ms ago: executing program 8 (id=7751): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) add_key(&(0x7f0000000280)='rxrpc\x00', 0x0, &(0x7f0000000100)="01000000020000000000006bb55a2a630bf7c045f94cd977", 0x18, 0xffffffffffffffff) 258.836528ms ago: executing program 5 (id=7753): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r0, 0x0) r1 = epoll_create(0x6) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000)={0x30000000}) 215.519249ms ago: executing program 6 (id=7755): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x0, 0xd}, 0x2000, 0x10000, 0x0, 0x6, 0x8, 0x20005, 0x1, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x401, 0xfffffffe, 0x0, 0xffffffff}, 0x10) close(r0) 207.677979ms ago: executing program 5 (id=7756): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x73) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x18) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) shmdt(0x0) 198.861579ms ago: executing program 8 (id=7757): bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x1a, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xeb, '\x00', 0x0, @tracing=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x18) chown(0x0, 0x0, 0x0) 193.089209ms ago: executing program 2 (id=7758): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000080000000000000010000009400000007ad4160850000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000001900)="5500000018007f5f00fe01b2a4a2809302060000ff41fd01040400000a00120039002800000019002d4400009b84136ef75afb83de066a5b00e1baac341b61130000f2ff00000100"/85, 0x55}], 0x1, 0x0, 0x0, 0x7a000000}, 0x0) 175.293619ms ago: executing program 6 (id=7759): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000240)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80000}}, {@quota}]}, 0x1, 0x4ff, &(0x7f0000000ac0)="$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") quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f00000002c0)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000100)={0x10000000009, 0x84d0, 0xffff, 0xff, 0x200000000000002, 0x9, 0x5, 0xffffffbffffffffd, 0x10800}) 163.916849ms ago: executing program 5 (id=7760): r0 = socket$inet6(0xa, 0x5, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000200)={@private0, 0x800, 0x0, 0x1, 0x1}, 0x20) setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000180)=0x1, 0x23) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x80b80000, @loopback, 0x7fff}, 0x1c) 149.460039ms ago: executing program 2 (id=7761): r0 = openat$rdma_cm(0xffffff9c, &(0x7f00000006c0), 0x2, 0x0) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f0000000380)={0xc, 0x8, 0x144, {0x0}}, 0x10) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000500)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f00000000c0)={0x3, 0x40, 0xfa00, {{0xa, 0x4e22, 0x1, @loopback, 0x100009}, {0xa, 0x4e22, 0xfffffffc, @mcast1}, r1}}, 0x48) 142.297669ms ago: executing program 8 (id=7762): r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) connect$llc(r0, &(0x7f0000000180)={0x1a, 0x0, 0x3, 0xc, 0x2, 0x0, @multicast}, 0x10) recvmmsg(r0, &(0x7f00000050c0)=[{{0x0, 0x0, 0x0}, 0x4}], 0x40000000000018c, 0x2, 0x0) sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x0) 103.119829ms ago: executing program 6 (id=7763): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080)=0x40, 0x4) r1 = dup(r0) setsockopt$sock_int(r1, 0x1, 0x12, &(0x7f00000000c0)=0x8000, 0x4) 83.76458ms ago: executing program 6 (id=7764): bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x6, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x100}}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="480000001c00110c0000001400000f0007000000", @ANYRES32=r1, @ANYBLOB="800202000a000200577f0000aabb000020000e80050001008f000000050001000100000004000200050001"], 0x48}}, 0x0) 79.968749ms ago: executing program 2 (id=7765): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000004700)={'team0\x00', 0x0}) sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000004c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="050427bd7000fedbdf250100000008000100", @ANYRES32=r2, @ANYBLOB="4400028040000100240001006d6f6465000000000000000000000000000000000000000000000000000000000500030005"], 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084) 42.020309ms ago: executing program 2 (id=7766): pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) close(r1) bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xd9}, 0x50) splice(r0, 0x0, r1, &(0x7f00000002c0)=0x87ffffd, 0x10, 0x0) 41.5292ms ago: executing program 6 (id=7776): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'dummy0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)=@newqdisc={0x24, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r2, {0x3}, {}, {0x2, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x20008091}, 0x4000000) 24.36165ms ago: executing program 2 (id=7767): r0 = socket$kcm(0x29, 0x5, 0x0) setsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x1, &(0x7f0000000000)=0x2, 0x4) r1 = syz_open_procfs(0x0, &(0x7f0000001300)='net/kcm\x00') read$char_usb(r1, &(0x7f0000000040)=""/4109, 0x100d) 4.80383ms ago: executing program 2 (id=7768): r0 = syz_io_uring_setup(0x509, &(0x7f0000000140)={0x0, 0x114df, 0x10, 0x2, 0x89}, &(0x7f00000001c0)=0x0, &(0x7f0000000440)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000380)='./cgroup\x00', 0x2, 0x298f82}) io_uring_enter(r0, 0x3516, 0xaddf, 0x2, 0x0, 0x1517f) 0s ago: executing program 6 (id=7769): syz_mount_image$msdos(&(0x7f0000000140), &(0x7f0000000180)='./file1\x00', 0x8084, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x1, 0x16b, &(0x7f0000000600)="$eJzs20GrElEUB/Azab73avPW0WKgTSupVi2LeEE0UBQualVgbTSE3Eyt/BSt+4JBuGrVDZ3QEkWknJHn77fxwB+958rMXO7AfXPzw6A/Gr8fPZ/GaZZF+0Hk8TOL87gSrahMAgC4TH6kFN9TSulkEmdfI6XUdEcAwL5Z/wHg+Gxd/+831BgAsDf2/wBwfF6+ev30YVFcvMjz04hvk7JX9qrPKn/8pLi4k8+dL781Lctea5HfrfL87/xqXPud31ubd+L2rSqfZY+eFSv59ejvf/oAAABwFLr5wtr9fbe7Ka+qP94PrOzf23GjXds0AIAdjD99HrwdDt99rKE4m4+Y1TvobsWXBv6Wgy1acRBtKLYWs0v2f/9yk08loA7Lm77pTgAAAAAAAAAAAAAAgE3+8ahQJyLWRBGdbScLTmqfKgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACz8CgAA//9vQEW+") fcntl$lock(0xffffffffffffffff, 0x26, &(0x7f0000000040)={0x1, 0x1, 0x400000000, 0x48d4}) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40305828, &(0x7f0000000040)) kernel console output (not intermixed with test programs): (0x7fffffff) [ 183.076538][T16684] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.5640: bg 0: block 104: invalid block bitmap [ 183.095830][T11814] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 183.095969][T16684] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 183.146029][T14296] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 183.165911][T16684] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.5640: invalid indirect mapped block 1 (level 1) [ 183.195095][T16684] EXT4-fs (loop3): 1 truncate cleaned up [ 183.224841][T16701] netlink: 'syz.5.5646': attribute type 1 has an invalid length. [ 183.225677][T16684] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 183.232651][T16701] netlink: 224 bytes leftover after parsing attributes in process `syz.5.5646'. [ 183.257577][T16702] netlink: 228 bytes leftover after parsing attributes in process `syz.8.5644'. [ 183.283746][ T3325] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 183.309363][T16706] loop8: detected capacity change from 0 to 128 [ 183.325911][T16706] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 183.341765][T16709] loop6: detected capacity change from 0 to 128 [ 183.352622][T16706] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 183.426067][ T9024] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 183.577811][T16743] loop5: detected capacity change from 0 to 512 [ 183.586479][T16743] EXT4-fs: Ignoring removed oldalloc option [ 183.607918][T16743] EXT4-fs error (device loop5): ext4_xattr_inode_iget:437: comm syz.5.5667: Parent and EA inode have the same ino 15 [ 183.635685][T16743] EXT4-fs error (device loop5): ext4_xattr_inode_iget:437: comm syz.5.5667: Parent and EA inode have the same ino 15 [ 183.654291][T16743] EXT4-fs (loop5): 1 orphan inode deleted [ 183.662613][T16754] netlink: 20 bytes leftover after parsing attributes in process `syz.8.5672'. [ 183.672891][T16743] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 183.682019][T16752] loop6: detected capacity change from 0 to 164 [ 183.692260][T16752] Unable to read rock-ridge attributes [ 183.699744][T16752] Unable to read rock-ridge attributes [ 183.708505][T16752] rock: directory entry would overflow storage [ 183.714926][T16752] rock: sig=0x4f50, size=4, remaining=3 [ 183.720544][T16752] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 183.748210][T11814] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 183.776833][T16763] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5678'. [ 183.816596][T16772] syz_tun: entered allmulticast mode [ 183.822227][T16772] syz_tun: left allmulticast mode [ 183.880545][T16778] bond1: entered promiscuous mode [ 183.886456][T16778] bond1: entered allmulticast mode [ 183.899655][T16778] 8021q: adding VLAN 0 to HW filter on device bond1 [ 183.923767][T16778] bond1 (unregistering): Released all slaves [ 183.935028][T16781] netlink: 'syz.2.5685': attribute type 15 has an invalid length. [ 183.993726][T16788] loop2: detected capacity change from 0 to 2048 [ 184.018589][T16788] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 184.047436][T16788] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 184.069923][T16788] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 184.082218][T16788] EXT4-fs (loop2): This should not happen!! Data will be lost [ 184.082218][T16788] [ 184.092030][T16788] EXT4-fs (loop2): Total free blocks count 0 [ 184.098104][T16788] EXT4-fs (loop2): Free/Dirty block details [ 184.104916][T16788] EXT4-fs (loop2): free_blocks=2415919504 [ 184.110885][T16788] EXT4-fs (loop2): dirty_blocks=16 [ 184.116309][T16788] EXT4-fs (loop2): Block reservation details [ 184.122435][T16788] EXT4-fs (loop2): i_reserved_data_blocks=1 [ 184.145427][T16804] netlink: 'syz.3.5695': attribute type 4 has an invalid length. [ 184.157342][T16801] loop8: detected capacity change from 0 to 512 [ 184.175248][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 184.196811][T16801] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 184.209427][T16808] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5698'. [ 184.219185][T16808] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5698'. [ 184.228478][T16801] ext4 filesystem being mounted at /184/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 184.257764][T16808] macvlan0: entered allmulticast mode [ 184.263287][T16808] veth1_vlan: entered allmulticast mode [ 184.298616][T16818] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 184.336647][T14296] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 184.392918][T16832] netlink: 'syz.6.5709': attribute type 12 has an invalid length. [ 184.529354][T16857] loop3: detected capacity change from 0 to 764 [ 184.547831][T16857] Symlink component flag not implemented [ 184.574536][T16857] Symlink component flag not implemented (129) [ 184.587720][T16857] rock: directory entry would overflow storage [ 184.593931][T16857] rock: sig=0x4f50, size=4, remaining=3 [ 184.599551][T16857] iso9660: Corrupted directory entry in block 6 of inode 1792 [ 184.608996][T16871] loop5: detected capacity change from 0 to 128 [ 184.618857][T16871] ext4 filesystem being mounted at /437/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 184.760758][T16894] proc: Bad value for 'gid' [ 185.058803][T16950] loop5: detected capacity change from 0 to 164 [ 185.069284][T16954] loop8: detected capacity change from 0 to 512 [ 185.077407][T16950] Unable to read rock-ridge attributes [ 185.085735][T16950] Unable to read rock-ridge attributes [ 185.091831][T16950] rock: directory entry would overflow storage [ 185.098829][T16950] rock: sig=0x4f50, size=4, remaining=3 [ 185.104748][T16950] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 185.115477][T16954] EXT4-fs: Ignoring removed nomblk_io_submit option [ 185.164800][T16954] EXT4-fs error (device loop8): __ext4_iget:5443: inode #11: block 1: comm syz.8.5764: invalid block [ 185.203479][T16954] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.5764: couldn't read orphan inode 11 (err -117) [ 185.235680][T16954] EXT4-fs (loop8): shut down requested (2) [ 185.241772][T16977] loop5: detected capacity change from 0 to 512 [ 185.257468][T16977] ext4 filesystem being mounted at /447/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 185.328195][T16992] loop8: detected capacity change from 0 to 512 [ 185.349447][T16992] EXT4-fs error (device loop8): ext4_orphan_get:1392: inode #15: comm syz.8.5783: inode has both inline data and extents flags [ 185.388980][T16992] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.5783: couldn't read orphan inode 15 (err -117) [ 185.391234][T17001] loop5: detected capacity change from 0 to 1024 [ 185.548793][T17034] netlink: 'syz.3.5799': attribute type 3 has an invalid length. [ 185.669992][T17052] loop5: detected capacity change from 0 to 128 [ 185.677815][T17055] loop3: detected capacity change from 0 to 512 [ 185.687951][T17055] EXT4-fs: inline encryption not supported [ 185.699543][T17052] ext4 filesystem being mounted at /454/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 185.712230][T17055] ext4 filesystem being mounted at /1170/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 185.730015][T17065] 9pnet_fd: Insufficient options for proto=fd [ 185.853511][T17085] loop8: detected capacity change from 0 to 512 [ 185.860400][T17085] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode [ 185.871558][T17085] EXT4-fs (loop8): 1 truncate cleaned up [ 186.128841][T17114] loop3: detected capacity change from 0 to 764 [ 186.139368][T17114] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 186.267005][T17121] netlink: 'syz.2.5839': attribute type 3 has an invalid length. [ 186.352634][ T29] kauditd_printk_skb: 383 callbacks suppressed [ 186.352649][ T29] audit: type=1326 audit(1762599278.624:3508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17129 comm="syz.2.5841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5efe1ff6c9 code=0x7ffc0000 [ 186.413921][ T29] audit: type=1326 audit(1762599278.664:3509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17129 comm="syz.2.5841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f5efe1ff6c9 code=0x7ffc0000 [ 186.438291][ T29] audit: type=1326 audit(1762599278.664:3510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17129 comm="syz.2.5841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5efe1ff6c9 code=0x7ffc0000 [ 186.462252][ T29] audit: type=1326 audit(1762599278.664:3511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17129 comm="syz.2.5841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7f5efe1ff6c9 code=0x7ffc0000 [ 186.485920][ T29] audit: type=1326 audit(1762599278.664:3512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17129 comm="syz.2.5841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5efe1ff6c9 code=0x7ffc0000 [ 186.510609][ T29] audit: type=1326 audit(1762599278.664:3513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17129 comm="syz.2.5841" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5efe1ff6c9 code=0x7ffc0000 [ 186.540856][ T29] audit: type=1400 audit(1762599278.774:3514): avc: denied { ioctl } for pid=17133 comm="syz.3.5843" path="socket:[48060]" dev="sockfs" ino=48060 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 186.540890][ T29] audit: type=1400 audit(1762599278.774:3515): avc: denied { setopt } for pid=17133 comm="syz.3.5843" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 186.624954][ T29] audit: type=1400 audit(1762599278.894:3516): avc: denied { name_bind } for pid=17145 comm="syz.2.5848" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 186.625053][ T29] audit: type=1400 audit(1762599278.894:3517): avc: denied { node_bind } for pid=17145 comm="syz.2.5848" saddr=172.20.20.12 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1 [ 186.761668][T17144] loop3: detected capacity change from 0 to 1024 [ 186.769568][T17144] EXT4-fs: Ignoring removed mblk_io_submit option [ 186.777291][T17144] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 186.800205][T17144] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.5845: bad orphan inode 11 [ 186.828332][T17144] ext4_test_bit(bit=10, block=4) = 1 [ 186.833772][T17144] is_bad_inode(inode)=0 [ 186.838705][T17144] NEXT_ORPHAN(inode)=3254779904 [ 186.843576][T17144] max_ino=32 [ 186.846834][T17144] i_nlink=0 [ 186.855809][T17144] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 2: comm syz.3.5845: lblock 2 mapped to illegal pblock 2 (length 1) [ 186.871766][T17144] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 48: comm syz.3.5845: lblock 0 mapped to illegal pblock 48 (length 1) [ 186.890364][T17144] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.5845: Failed to acquire dquot type 0 [ 186.902990][T17144] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6313: Corrupt filesystem [ 186.934206][T17144] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.5845: mark_inode_dirty error [ 186.970883][T17144] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 187.031986][ T3325] EXT4-fs error (device loop3): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 187.057578][ T3325] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6313: Corrupt filesystem [ 187.078737][ T3325] EXT4-fs error (device loop3): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error [ 187.119911][T17195] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=17195 comm=syz.3.5868 [ 187.152972][T17200] __nla_validate_parse: 31 callbacks suppressed [ 187.152989][T17200] netlink: 152 bytes leftover after parsing attributes in process `syz.5.5874'. [ 187.229463][T17208] netlink: 256 bytes leftover after parsing attributes in process `syz.2.5878'. [ 187.239324][T17208] netlink: 48 bytes leftover after parsing attributes in process `syz.2.5878'. [ 187.276194][T17213] program syz.5.5881 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 187.365365][T17228] netlink: 182 bytes leftover after parsing attributes in process `syz.5.5887'. [ 187.406973][T17233] tap0: tun_chr_ioctl cmd 1074025677 [ 187.422800][T17233] tap0: linktype set to 0 [ 187.515823][T17249] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 187.530428][T17251] netlink: 16 bytes leftover after parsing attributes in process `syz.6.5897'. [ 187.776823][T17286] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5914'. [ 187.846166][T17302] loop2: detected capacity change from 0 to 512 [ 187.852912][T17302] EXT4-fs: Ignoring removed nomblk_io_submit option [ 187.856947][T17296] loop8: detected capacity change from 0 to 764 [ 187.860522][T17302] EXT4-fs: Ignoring removed bh option [ 187.871945][T17302] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 187.881305][T17296] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 187.883458][T17302] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.5921: bg 0: block 255: padding at end of block bitmap is not set [ 187.905409][T17302] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 187.915216][T17302] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.5921: invalid indirect mapped block 1 (level 1) [ 187.929153][T17302] EXT4-fs (loop2): 1 truncate cleaned up [ 187.987557][T17316] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5926'. [ 188.000120][T17316] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5926'. [ 188.032331][T17320] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5929'. [ 188.051370][T17320] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5929'. [ 188.151660][T17332] loop6: detected capacity change from 0 to 512 [ 188.160121][T17332] EXT4-fs error (device loop6): ext4_orphan_get:1392: inode #15: comm syz.6.5934: inode has both inline data and extents flags [ 188.174498][T17332] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.5934: couldn't read orphan inode 15 (err -117) [ 188.238235][T17342] loop8: detected capacity change from 0 to 512 [ 188.272371][T17342] ext4 filesystem being mounted at /222/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 188.314957][T17358] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=17358 comm=syz.2.5946 [ 188.350533][T17360] netlink: 'syz.2.5948': attribute type 27 has an invalid length. [ 188.358502][T17360] netlink: 'syz.2.5948': attribute type 4 has an invalid length. [ 188.472213][T17380] x_tables: ip6_tables: mh match: only valid for protocol 135 [ 188.484964][T17382] loop2: detected capacity change from 0 to 512 [ 188.517117][T17382] ext4 filesystem being mounted at /1268/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 188.618607][T17405] loop6: detected capacity change from 0 to 512 [ 188.642553][T17405] ext4 filesystem being mounted at /396/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 188.653365][T17412] loop2: detected capacity change from 0 to 1024 [ 188.662481][T17412] EXT4-fs: Ignoring removed bh option [ 189.097452][T17480] program syz.6.6003 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 189.158799][T17490] x_tables: ip6_tables: mh match: only valid for protocol 135 [ 189.170579][T17487] loop8: detected capacity change from 0 to 1024 [ 189.180512][T17487] EXT4-fs: Ignoring removed bh option [ 189.277736][T17505] loop5: detected capacity change from 0 to 512 [ 189.300103][T17505] EXT4-fs: Ignoring removed i_version option [ 189.307664][T17505] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 189.334307][T17505] EXT4-fs error (device loop5): xattr_find_entry:337: inode #15: comm syz.5.6014: corrupted xattr entries [ 189.344985][T17516] loop8: detected capacity change from 0 to 2048 [ 189.347775][T17505] EXT4-fs (loop5): 1 orphan inode deleted [ 189.393672][T17516] EXT4-fs error (device loop8): ext4_find_extent:939: inode #2: comm syz.8.6019: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 189.412548][T17516] EXT4-fs (loop8): Remounting filesystem read-only [ 189.471749][T17533] loop8: detected capacity change from 0 to 1024 [ 189.490801][T17533] EXT4-fs: Ignoring removed nobh option [ 189.496470][T17533] EXT4-fs: inline encryption not supported [ 189.512191][T17542] loop2: detected capacity change from 0 to 512 [ 189.536258][T17542] ext4 filesystem being mounted at /1285/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 189.550375][T17540] SELinux: failed to load policy [ 189.587827][T17542] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.6031: bg 0: block 217: padding at end of block bitmap is not set [ 189.669060][T17567] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 189.681203][T17567] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 189.713065][T17576] loop2: detected capacity change from 0 to 512 [ 189.726650][T17576] ext4 filesystem being mounted at /1287/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 189.923398][T17604] atomic_op ffff888120409128 conn xmit_atomic 0000000000000000 [ 190.080296][T17628] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 190.087588][T17628] IPv6: NLM_F_CREATE should be set when creating new route [ 190.094909][T17628] IPv6: NLM_F_CREATE should be set when creating new route [ 190.102116][T17628] IPv6: NLM_F_CREATE should be set when creating new route [ 190.110285][T17628] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 190.147243][T17632] 9pnet: Could not find request transport: f [ 190.235420][T17640] loop2: detected capacity change from 0 to 8192 [ 190.947308][T17682] loop5: detected capacity change from 0 to 512 [ 191.051848][T17682] ext4 filesystem being mounted at /515/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 191.130120][T17682] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.6094: bg 0: block 217: padding at end of block bitmap is not set [ 191.241477][T17698] loop2: detected capacity change from 0 to 2048 [ 191.275966][T17708] loop5: detected capacity change from 0 to 512 [ 191.293823][T17708] EXT4-fs: Ignoring removed nomblk_io_submit option [ 191.307462][T17708] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 191.334684][T17708] EXT4-fs (loop5): 1 truncate cleaned up [ 191.342899][T17708] EXT4-fs (loop5): shut down requested (1) [ 191.387353][ T29] kauditd_printk_skb: 296 callbacks suppressed [ 191.387368][ T29] audit: type=1400 audit(1762599283.664:3812): avc: denied { shutdown } for pid=17726 comm="syz.2.6112" laddr=2001:: lport=50681 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 191.437478][T17733] loop3: detected capacity change from 0 to 512 [ 191.458174][ T29] audit: type=1400 audit(1762599283.674:3813): avc: denied { name_bind } for pid=17728 comm="syz.5.6113" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1 [ 191.480045][ T29] audit: type=1400 audit(1762599283.694:3814): avc: denied { wake_alarm } for pid=17730 comm="syz.3.6114" capability=35 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 191.481536][T17725] SELinux: failed to load policy [ 191.502161][ T29] audit: type=1400 audit(1762599283.724:3815): avc: denied { load_policy } for pid=17723 comm="syz.8.6111" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 191.541024][ T29] audit: type=1326 audit(1762599283.794:3816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17734 comm="syz.6.6116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b22e3f6c9 code=0x7ffc0000 [ 191.565530][ T29] audit: type=1326 audit(1762599283.794:3817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17734 comm="syz.6.6116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b22e3f6c9 code=0x7ffc0000 [ 191.589130][ T29] audit: type=1326 audit(1762599283.794:3818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17734 comm="syz.6.6116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=27 compat=0 ip=0x7f4b22e3f6c9 code=0x7ffc0000 [ 191.612776][ T29] audit: type=1326 audit(1762599283.794:3819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17734 comm="syz.6.6116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b22e3f6c9 code=0x7ffc0000 [ 191.637067][ T29] audit: type=1326 audit(1762599283.794:3820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17734 comm="syz.6.6116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b22e3f6c9 code=0x7ffc0000 [ 191.668181][T17733] ext4 filesystem being mounted at /1215/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 191.705447][T17733] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.6115: bg 0: block 217: padding at end of block bitmap is not set [ 191.716030][ T29] audit: type=1400 audit(1762599283.944:3821): avc: denied { allowed } for pid=17742 comm="syz.2.6120" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 191.742597][T17733] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 191.830239][T17768] loop5: detected capacity change from 0 to 512 [ 191.855383][T17768] ------------[ cut here ]------------ [ 191.860900][T17768] EA inode 11 i_nlink=2 [ 191.861180][T17768] WARNING: CPU: 0 PID: 17768 at fs/ext4/xattr.c:1058 ext4_xattr_inode_update_ref+0x36a/0x380 [ 191.876495][T17768] Modules linked in: [ 191.880633][T17768] CPU: 0 UID: 0 PID: 17768 Comm: syz.5.6132 Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 191.892212][T17768] Tainted: [W]=WARN [ 191.896102][T17768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 191.907090][T17768] RIP: 0010:ext4_xattr_inode_update_ref+0x36a/0x380 [ 191.913850][T17768] Code: 90 49 8d 7e 40 e8 76 fd b8 ff 4d 8b 6e 40 4c 89 e7 e8 8a f8 b8 ff 41 8b 56 48 48 c7 c7 88 d1 55 86 4c 89 ee e8 f7 f9 67 ff 90 <0f> 0b 90 90 e9 ff fe ff ff e8 78 e7 b5 03 0f 1f 84 00 00 00 00 00 [ 191.933693][T17768] RSP: 0018:ffffc9000b02b5a0 EFLAGS: 00010246 [ 191.940952][T17768] RAX: b3ebc5c59784f100 RBX: ffff888106f241a8 RCX: 0000000000080000 [ 191.949012][T17768] RDX: ffffc90011745000 RSI: 0000000000003d9a RDI: 0000000000003d9b [ 191.957226][T17768] RBP: 0000000000000002 R08: 0001c9000b02b427 R09: 0000000000000000 [ 191.965973][T17768] R10: 00000000ffffffff R11: 0000000000000002 R12: ffff888106f24158 [ 191.974074][T17768] R13: 000000000000000b R14: ffff888106f24110 R15: 0000000000000001 [ 191.982083][T17768] FS: 00007fefad9d76c0(0000) GS:ffff8882aee13000(0000) knlGS:0000000000000000 [ 191.991285][T17768] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 191.998635][T17768] CR2: 00007f5efcc66f98 CR3: 0000000113cb0000 CR4: 00000000003506f0 [ 192.006754][T17768] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000200000000300 [ 192.014850][T17768] DR3: 0000000000000000 DR6: 00000000ffff0ff1 DR7: 0000000000000600 [ 192.022850][T17768] Call Trace: [ 192.026919][T17768] [ 192.030251][T17768] ext4_xattr_set_entry+0x77f/0x1020 [ 192.035678][T17768] ext4_xattr_ibody_set+0x184/0x3c0 [ 192.041283][T17768] ext4_expand_extra_isize_ea+0xcbb/0x11f0 [ 192.047239][T17768] __ext4_expand_extra_isize+0x246/0x280 [ 192.052977][T17768] __ext4_mark_inode_dirty+0x29d/0x3f0 [ 192.059416][T17768] ext4_evict_inode+0x80e/0xd90 [ 192.064510][T17768] ? __pfx_ext4_evict_inode+0x10/0x10 [ 192.069969][T17768] evict+0x2e3/0x550 [ 192.073898][T17768] ? __dquot_initialize+0x146/0x7c0 [ 192.079200][T17768] iput+0x4ed/0x650 [ 192.080029][T17788] vlan3: entered promiscuous mode [ 192.083156][T17768] ext4_process_orphan+0x1a9/0x1c0 [ 192.089023][T17788] geneve1: entered promiscuous mode [ 192.094149][T17768] ext4_orphan_cleanup+0x6a8/0xa00 [ 192.099459][T17788] vlan3: entered allmulticast mode [ 192.104541][T17768] ext4_fill_super+0x3483/0x3810 [ 192.109653][T17788] geneve1: entered allmulticast mode [ 192.115418][T17768] ? snprintf+0x86/0xb0 [ 192.124970][T17768] ? set_blocksize+0x1a8/0x310 [ 192.129876][T17768] ? sb_set_blocksize+0xe3/0x100 [ 192.135400][T17768] ? setup_bdev_super+0x30e/0x370 [ 192.140573][T17768] ? __pfx_ext4_fill_super+0x10/0x10 [ 192.146672][T17768] get_tree_bdev_flags+0x291/0x300 [ 192.151849][T17768] ? __pfx_ext4_fill_super+0x10/0x10 [ 192.157219][T17768] get_tree_bdev+0x1f/0x30 [ 192.161709][T17768] ext4_get_tree+0x1c/0x30 [ 192.166293][T17768] vfs_get_tree+0x57/0x1d0 [ 192.170780][T17768] do_new_mount+0x24d/0x660 [ 192.176247][T17768] path_mount+0x4a5/0xb70 [ 192.180618][T17768] ? user_path_at+0x109/0x130 [ 192.185669][T17768] __se_sys_mount+0x28c/0x2e0 [ 192.190770][T17768] __x64_sys_mount+0x67/0x80 [ 192.195445][T17768] x64_sys_call+0x2b51/0x3000 [ 192.200238][T17768] do_syscall_64+0xd2/0x200 [ 192.205588][T17768] ? arch_exit_to_user_mode_prepare+0x27/0x80 [ 192.211919][T17768] ? irqentry_exit_to_user_mode+0x7b/0xa0 [ 192.217940][T17768] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 192.217970][T17793] loop8: detected capacity change from 0 to 128 [ 192.223921][T17768] RIP: 0033:0x7fefaef70e6a [ 192.223959][T17768] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 192.231352][T17793] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 192.235659][T17768] RSP: 002b:00007fefad9d6e68 EFLAGS: 00000246 [ 192.257024][T17793] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 192.267796][T17768] ORIG_RAX: 00000000000000a5 [ 192.267809][T17768] RAX: ffffffffffffffda RBX: 00007fefad9d6ef0 RCX: 00007fefaef70e6a [ 192.267826][T17768] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fefad9d6eb0 [ 192.282204][T17793] VFS: Lookup of 'file0' in vfat loop8 would have caused loop [ 192.283038][T17768] RBP: 0000200000000180 R08: 00007fefad9d6ef0 R09: 0000000001a08700 [ 192.319894][T17768] R10: 0000000001a08700 R11: 0000000000000246 R12: 00002000000001c0 [ 192.319915][T17768] R13: 00007fefad9d6eb0 R14: 0000000000000470 R15: 0000200000000700 [ 192.319943][T17768] [ 192.319951][T17768] ---[ end trace 0000000000000000 ]--- [ 192.320676][T17768] EXT4-fs (loop5): 1 orphan inode deleted [ 192.353841][ T8996] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 192.386867][T17796] loop2: detected capacity change from 0 to 1024 [ 192.387286][T17796] EXT4-fs: Ignoring removed mblk_io_submit option [ 192.387515][T17796] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 192.413471][T17796] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.6142: bad orphan inode 11 [ 192.458825][T17796] ext4_test_bit(bit=10, block=4) = 1 [ 192.464300][T17796] is_bad_inode(inode)=0 [ 192.468665][T17796] NEXT_ORPHAN(inode)=3254779904 [ 192.473773][T17796] max_ino=32 [ 192.477951][T17796] i_nlink=0 [ 192.495594][T17796] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 2: comm syz.2.6142: lblock 2 mapped to illegal pblock 2 (length 1) [ 192.539641][T17796] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 48: comm syz.2.6142: lblock 0 mapped to illegal pblock 48 (length 1) [ 192.554277][T17796] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.6142: Failed to acquire dquot type 0 [ 192.569000][T17796] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6313: Corrupt filesystem [ 192.578789][T17796] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.6142: mark_inode_dirty error [ 192.590612][T17796] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 192.664908][ T3313] EXT4-fs error (device loop2): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 192.685501][ T3313] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6313: Corrupt filesystem [ 192.698111][ T3313] EXT4-fs error (device loop2): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error [ 192.713468][T17829] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 192.744131][T17835] program syz.5.6163 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 192.913324][T17865] loop6: detected capacity change from 0 to 512 [ 192.948788][T17872] __nla_validate_parse: 19 callbacks suppressed [ 192.948806][T17872] netlink: 12 bytes leftover after parsing attributes in process `syz.8.6180'. [ 192.965248][T17872] netlink: 12 bytes leftover after parsing attributes in process `syz.8.6180'. [ 192.988998][T17865] EXT4-fs (loop6): shut down requested (2) [ 192.996349][T17865] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop6 ino=12 [ 193.009168][T17874] rdma_op ffff88811fad9580 conn xmit_rdma 0000000000000000 [ 193.017461][T17865] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop6 ino=15 [ 193.028814][T17865] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop6 ino=15 [ 193.038509][T17865] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop6 ino=12 [ 193.047630][T17865] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop6 ino=12 [ 193.057306][T17865] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop6 ino=15 [ 193.149315][T17890] loop6: detected capacity change from 0 to 512 [ 193.172007][T17890] EXT4-fs: Ignoring removed bh option [ 193.185967][T17890] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem [ 193.209275][T17890] EXT4-fs (loop6): 1 truncate cleaned up [ 193.210060][T17895] netlink: 'syz.2.6190': attribute type 21 has an invalid length. [ 193.234198][T17895] netlink: 156 bytes leftover after parsing attributes in process `syz.2.6190'. [ 193.243289][T17895] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6190'. [ 193.266889][T17906] SELinux: failed to load policy [ 193.305826][T17908] netlink: 83992 bytes leftover after parsing attributes in process `syz.6.6196'. [ 193.330017][T17908] netlink: zone id is out of range [ 193.335280][T17908] netlink: zone id is out of range [ 193.342089][T17916] netlink: 16 bytes leftover after parsing attributes in process `syz.5.6199'. [ 193.374959][T17923] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6203'. [ 193.384166][T17923] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6203'. [ 193.397396][T17908] netlink: set zone limit has 8 unknown bytes [ 193.414366][T17927] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6205'. [ 193.423383][T17927] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6205'. [ 193.556458][T17949] loop8: detected capacity change from 0 to 512 [ 193.573798][T17949] ext4: Unknown parameter 'pcr' [ 193.607790][T17949] loop8: detected capacity change from 0 to 2048 [ 193.626021][T17949] EXT4-fs (loop8): failed to initialize system zone (-117) [ 193.633496][T17949] EXT4-fs (loop8): mount failed [ 193.648302][T17960] netlink: zone id is out of range [ 193.653479][T17960] netlink: zone id is out of range [ 193.666346][T17964] loop5: detected capacity change from 0 to 764 [ 193.688689][T17960] netlink: set zone limit has 8 unknown bytes [ 193.725660][T17970] loop2: detected capacity change from 0 to 128 [ 193.732750][T17970] FAT-fs (loop2): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1) [ 193.838655][T17977] loop2: detected capacity change from 0 to 128 [ 193.845433][T17977] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 193.861349][T17977] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 193.868047][T17979] loop8: detected capacity change from 0 to 512 [ 193.883148][T17977] VFS: Lookup of 'file0' in vfat loop2 would have caused loop [ 193.897974][T17979] EXT4-fs (loop8): shut down requested (2) [ 193.904410][ T9024] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 193.914129][T17979] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop8 ino=12 [ 193.923065][T17979] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop8 ino=15 [ 193.933845][T17979] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop8 ino=15 [ 193.942900][T17979] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop8 ino=12 [ 193.952083][T17979] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop8 ino=12 [ 193.961874][T17979] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop8 ino=15 [ 193.985195][T17983] syzkaller1: tun_chr_ioctl cmd 1074025672 [ 193.991070][T17983] syzkaller1: ignored: set checksum enabled [ 194.243024][T18021] netlink: 'syz.8.6248': attribute type 3 has an invalid length. [ 194.598368][T18064] loop6: detected capacity change from 0 to 128 [ 194.618667][T18064] ext4 filesystem being mounted at /450/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 194.630796][T18064] EXT4-fs warning (device loop6): ext4_group_add:1736: No reserved GDT blocks, can't resize [ 194.770301][T18100] loop8: detected capacity change from 0 to 256 [ 194.778362][T18100] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 194.983723][T18118] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 195.129515][T18145] loop3: detected capacity change from 0 to 1024 [ 195.137056][T18145] EXT4-fs: Ignoring removed orlov option [ 195.150329][T18145] EXT4-fs (loop3): shut down requested (0) [ 195.158564][T18145] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=12 [ 195.168087][T18145] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=12 [ 195.177124][T18145] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=12 [ 195.299484][T18169] netlink: 'syz.3.6315': attribute type 2 has an invalid length. [ 195.380578][T18181] netlink: 'syz.3.6321': attribute type 21 has an invalid length. [ 195.431285][ T2967] kernel write not supported for file /sg0 (pid: 2967 comm: kworker/0:2) [ 195.557302][T18192] loop5: detected capacity change from 0 to 128 [ 195.566022][T18192] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 195.579166][T18192] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 195.633904][ T8996] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 195.815666][T18202] loop8: detected capacity change from 0 to 128 [ 195.822385][T18202] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 195.835816][T18202] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 195.860439][ T8996] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 195.929639][T18208] loop8: detected capacity change from 0 to 2048 [ 195.991003][T18208] loop8: unable to read partition table [ 195.996812][T18208] loop8: partition table beyond EOD, truncated [ 196.003073][T18208] loop_reread_partitions: partition scan of loop8 () failed (rc=-5) [ 196.108548][T18218] ip6_vti0 speed is unknown, defaulting to 1000 [ 196.118113][T18226] tipc: Enabling of bearer rejected, failed to enable media [ 196.128179][T18218] ip6_vti0 speed is unknown, defaulting to 1000 [ 196.134908][T18218] ip6_vti0 speed is unknown, defaulting to 1000 [ 196.191400][T18218] infiniband syz2: set down [ 196.196114][T18218] infiniband syz2: added ip6_vti0 [ 196.201186][ T3415] ip6_vti0 speed is unknown, defaulting to 1000 [ 196.236928][T18218] RDS/IB: syz2: added [ 196.244802][T18218] smc: adding ib device syz2 with port count 1 [ 196.251086][T18218] smc: ib device syz2 port 1 has no pnetid [ 196.257426][ T23] ip6_vti0 speed is unknown, defaulting to 1000 [ 196.264856][T18228] loop2: detected capacity change from 0 to 8192 [ 196.272728][T18218] ip6_vti0 speed is unknown, defaulting to 1000 [ 196.398929][T18218] ip6_vti0 speed is unknown, defaulting to 1000 [ 196.467874][ T29] kauditd_printk_skb: 188 callbacks suppressed [ 196.467973][ T29] audit: type=1400 audit(1762599288.744:4008): avc: denied { create } for pid=18240 comm="syz.2.6349" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 196.494729][ T29] audit: type=1400 audit(1762599288.744:4009): avc: denied { connect } for pid=18240 comm="syz.2.6349" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 196.515414][ T29] audit: type=1400 audit(1762599288.744:4010): avc: denied { write } for pid=18240 comm="syz.2.6349" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 196.554659][T18218] ip6_vti0 speed is unknown, defaulting to 1000 [ 196.648363][ T29] audit: type=1400 audit(1762599288.924:4011): avc: denied { execute } for pid=18253 comm="syz.2.6354" dev="tmpfs" ino=319 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 196.670478][ T29] audit: type=1400 audit(1762599288.924:4012): avc: denied { execute_no_trans } for pid=18253 comm="syz.2.6354" path=2F6D656D66643A2D42D54E49C56A9A707070F00884A26D202864656C6574656429 dev="tmpfs" ino=319 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 196.721316][T18218] ip6_vti0 speed is unknown, defaulting to 1000 [ 196.766818][ T29] audit: type=1326 audit(1762599288.994:4013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18255 comm="syz.5.6355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefaef6f6c9 code=0x7ffc0000 [ 196.791168][ T29] audit: type=1326 audit(1762599288.994:4014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18255 comm="syz.5.6355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefaef6f6c9 code=0x7ffc0000 [ 196.815473][ T29] audit: type=1326 audit(1762599289.004:4015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18255 comm="syz.5.6355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fefaef6f6c9 code=0x7ffc0000 [ 196.839077][ T29] audit: type=1326 audit(1762599289.004:4016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18255 comm="syz.5.6355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefaef6f6c9 code=0x7ffc0000 [ 196.863340][ T29] audit: type=1326 audit(1762599289.004:4017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18255 comm="syz.5.6355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefaef6f6c9 code=0x7ffc0000 [ 196.885468][T18218] ip6_vti0 speed is unknown, defaulting to 1000 [ 197.389614][T18313] vlan4: entered allmulticast mode [ 197.395707][T18313] team0: entered allmulticast mode [ 197.401033][T18313] C: entered allmulticast mode [ 197.426754][T13598] hid-generic 0003:0001:4495.0004: item fetching failed at offset 2/3 [ 197.444583][T13598] hid-generic 0003:0001:4495.0004: probe with driver hid-generic failed with error -22 [ 197.539051][T18324] loop8: detected capacity change from 0 to 128 [ 197.758547][T18340] loop6: detected capacity change from 0 to 512 [ 197.787240][T18340] EXT4-fs: Ignoring removed mblk_io_submit option [ 197.798444][T18340] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 197.830985][T18347] loop8: detected capacity change from 0 to 512 [ 197.845642][T18347] msdos: Unknown parameter 'ÿÿ0x0000000000000000' [ 197.848479][T18340] EXT4-fs (loop6): 1 truncate cleaned up [ 197.881863][T18340] EXT4-fs mount: 64 callbacks suppressed [ 197.881905][T18340] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 197.906822][T18354] loop3: detected capacity change from 0 to 512 [ 197.930829][T18354] EXT4-fs: Ignoring removed oldalloc option [ 197.941588][T18360] sg_read: process 2928 (syz.2.6405) changed security contexts after opening file descriptor, this is not allowed. [ 197.961214][T18354] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: comm syz.3.6404: Parent and EA inode have the same ino 15 [ 197.996406][T11927] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.005981][T18367] xt_hashlimit: max too large, truncated to 1048576 [ 198.013290][T18354] EXT4-fs (loop3): Remounting filesystem read-only [ 198.020276][T18354] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -30) [ 198.030356][T18354] EXT4-fs (loop3): 1 orphan inode deleted [ 198.037570][T18354] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 198.073153][ T3325] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.154846][T18384] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=14385 sclass=netlink_route_socket pid=18384 comm=syz.5.6415 [ 198.172235][T18387] loop3: detected capacity change from 0 to 512 [ 198.181277][T18381] loop8: detected capacity change from 0 to 164 [ 198.184668][T18387] EXT4-fs: Ignoring removed nomblk_io_submit option [ 198.205912][T18381] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 198.208841][T18387] EXT4-fs: Ignoring removed oldalloc option [ 198.244984][T18387] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: comm syz.3.6418: Parent and EA inode have the same ino 15 [ 198.263550][T18387] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: comm syz.3.6418: Parent and EA inode have the same ino 15 [ 198.277429][T18387] EXT4-fs (loop3): 1 orphan inode deleted [ 198.284409][T18387] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 198.339909][ T3325] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.368931][T18404] loop8: detected capacity change from 0 to 512 [ 198.422729][T18404] EXT4-fs (loop8): too many log groups per flexible block group [ 198.457470][T18404] EXT4-fs (loop8): failed to initialize mballoc (-12) [ 198.531564][T18419] loop2: detected capacity change from 0 to 1024 [ 198.539310][T18419] EXT4-fs: inline encryption not supported [ 198.545224][T18419] EXT4-fs: Ignoring removed i_version option [ 198.624834][T18419] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 198.654155][T18404] EXT4-fs (loop8): mount failed [ 198.704930][T18427] __nla_validate_parse: 14 callbacks suppressed [ 198.705011][T18427] netlink: 16 bytes leftover after parsing attributes in process `syz.5.6434'. [ 198.736650][T18419] EXT4-fs error (device loop2): ext4_ext_check_inode:523: inode #3: comm +}[@: pblk 67 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0) [ 198.764914][T18419] EXT4-fs error (device loop2): ext4_quota_enable:7139: comm +}[@: Bad quota inode: 3, type: 0 [ 198.977018][T18419] EXT4-fs warning (device loop2): ext4_enable_quotas:7180: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix. [ 199.062550][T18419] EXT4-fs (loop2): mount failed [ 199.421033][T18491] loop3: detected capacity change from 0 to 512 [ 199.539683][T18491] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 199.578247][T18491] EXT4-fs error (device loop3): ext4_validate_block_bitmap:423: comm syz.3.6464: bg 0: bad block bitmap checksum [ 199.602981][T18491] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6667: Filesystem failed CRC [ 199.643791][ T3325] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 199.675024][T18507] SELinux: failed to load policy [ 199.813775][T18521] vcan0 speed is unknown, defaulting to 1000 [ 199.874820][T18521] ip6_vti0 speed is unknown, defaulting to 1000 [ 199.915785][T18531] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=27766 sclass=netlink_route_socket pid=18531 comm=syz.6.6481 [ 199.950289][T18531] netlink: 'syz.6.6481': attribute type 29 has an invalid length. [ 199.967151][T18539] netlink: 'syz.6.6481': attribute type 29 has an invalid length. [ 200.040335][T18545] netlink: 36 bytes leftover after parsing attributes in process `syz.8.6487'. [ 200.083513][T18547] sch_tbf: burst 6 is lower than device ip6gre0 mtu (1448) ! [ 200.120864][T18549] loop5: detected capacity change from 0 to 512 [ 200.145214][T18549] EXT4-fs (loop5): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 200.177079][T18556] loop6: detected capacity change from 0 to 164 [ 200.208069][T18549] EXT4-fs (loop5): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 200.225313][T18556] Unable to read rock-ridge attributes [ 200.235396][T18556] Unable to read rock-ridge attributes [ 200.265454][T18556] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 200.347179][T18572] SELinux: Context system_u:object_r:audit_spool_t:s0 is not valid (left unmapped). [ 200.419887][T18582] loop6: detected capacity change from 0 to 1024 [ 200.431536][T18582] EXT4-fs: Ignoring removed orlov option [ 200.464766][T18582] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 200.502065][T18599] loop3: detected capacity change from 0 to 764 [ 200.511957][T18599] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 200.522356][T18599] Symlink component flag not implemented [ 200.528687][T18599] Symlink component flag not implemented (7) [ 200.556848][T18605] loop3: detected capacity change from 0 to 512 [ 200.564314][T11927] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 200.565210][T18605] EXT4-fs: Ignoring removed orlov option [ 200.575857][T18607] netlink: 24 bytes leftover after parsing attributes in process `syz.5.6515'. [ 200.589165][T18605] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 200.605443][T18605] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 200.623706][T18605] EXT4-fs error (device loop3): ext4_iget_extra_inode:5075: inode #15: comm syz.3.6516: corrupted in-inode xattr: e_value size too large [ 200.626742][T18614] loop5: detected capacity change from 0 to 1024 [ 200.645790][T18614] EXT4-fs: Ignoring removed nomblk_io_submit option [ 200.652876][T18605] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.6516: couldn't read orphan inode 15 (err -117) [ 200.666708][T18605] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 200.680050][T18614] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 200.690133][T18614] System zones: 0-1, 3-36 [ 200.696097][T18605] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. [ 200.709094][T18614] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 200.714745][T18619] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING [ 200.743757][ T3325] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 200.778050][T11814] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 200.823882][T18636] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6528'. [ 200.863427][T18642] IPv6: NLM_F_CREATE should be specified when creating new route [ 201.106759][T18677] loop3: detected capacity change from 0 to 128 [ 201.122428][T18679] netlink: 348 bytes leftover after parsing attributes in process `syz.6.6548'. [ 201.134701][T18677] syz.3.6547: attempt to access beyond end of device [ 201.134701][T18677] loop3: rw=2049, sector=154, nr_sectors = 8 limit=128 [ 201.149332][T18677] syz.3.6547: attempt to access beyond end of device [ 201.149332][T18677] loop3: rw=2049, sector=160, nr_sectors = 2 limit=128 [ 201.162921][T18677] buffer_io_error: 20 callbacks suppressed [ 201.162937][T18677] Buffer I/O error on dev loop3, logical block 80, lost async page write [ 201.198666][T18677] syz.3.6547: attempt to access beyond end of device [ 201.198666][T18677] loop3: rw=2049, sector=162, nr_sectors = 8 limit=128 [ 201.217838][T18677] syz.3.6547: attempt to access beyond end of device [ 201.217838][T18677] loop3: rw=2049, sector=168, nr_sectors = 2 limit=128 [ 201.231437][T18677] Buffer I/O error on dev loop3, logical block 84, lost async page write [ 201.272760][T18677] syz.3.6547: attempt to access beyond end of device [ 201.272760][T18677] loop3: rw=2049, sector=186, nr_sectors = 8 limit=128 [ 201.287463][T18677] syz.3.6547: attempt to access beyond end of device [ 201.287463][T18677] loop3: rw=2049, sector=192, nr_sectors = 2 limit=128 [ 201.300964][T18677] Buffer I/O error on dev loop3, logical block 96, lost async page write [ 201.309801][T18677] syz.3.6547: attempt to access beyond end of device [ 201.309801][T18677] loop3: rw=2049, sector=194, nr_sectors = 8 limit=128 [ 201.343378][T18677] syz.3.6547: attempt to access beyond end of device [ 201.343378][T18677] loop3: rw=2049, sector=200, nr_sectors = 2 limit=128 [ 201.357667][T18677] Buffer I/O error on dev loop3, logical block 100, lost async page write [ 201.367207][T18677] syz.3.6547: attempt to access beyond end of device [ 201.367207][T18677] loop3: rw=2049, sector=218, nr_sectors = 8 limit=128 [ 201.381205][T18677] syz.3.6547: attempt to access beyond end of device [ 201.381205][T18677] loop3: rw=2049, sector=224, nr_sectors = 2 limit=128 [ 201.395504][T18677] Buffer I/O error on dev loop3, logical block 112, lost async page write [ 201.462617][T18677] Buffer I/O error on dev loop3, logical block 116, lost async page write [ 201.487223][T18677] Buffer I/O error on dev loop3, logical block 88, lost async page write [ 201.496372][T18677] Buffer I/O error on dev loop3, logical block 92, lost async page write [ 201.505711][T18677] Buffer I/O error on dev loop3, logical block 120, lost async page write [ 201.541842][T18677] Buffer I/O error on dev loop3, logical block 124, lost async page write [ 201.553710][T18694] loop5: detected capacity change from 0 to 164 [ 201.560916][T18694] Unable to read rock-ridge attributes [ 201.568488][T18694] Unable to read rock-ridge attributes [ 201.577134][T18694] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 201.671102][T18700] atomic_op ffff888104775128 conn xmit_atomic 0000000000000000 [ 201.744294][T18699] loop6: detected capacity change from 0 to 8192 [ 201.814264][T18699] loop6: p1 p2 p3 p4[DM] [ 201.822811][T18699] loop6: p1 size 835329 extends beyond EOD, truncated [ 201.839303][T18699] loop6: p2 size 327680 extends beyond EOD, truncated [ 201.847502][T18699] loop6: p3 start 1052673 is beyond EOD, truncated [ 201.854138][T18699] loop6: p4 size 262144 extends beyond EOD, truncated [ 202.003499][ T29] kauditd_printk_skb: 141 callbacks suppressed [ 202.003516][ T29] audit: type=1400 audit(1762599294.274:4159): avc: denied { write } for pid=18718 comm="syz.8.6564" name="001" dev="devtmpfs" ino=171 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 202.095689][ T29] audit: type=1400 audit(1762599294.374:4160): avc: denied { firmware_load } for pid=18727 comm="syz.6.6569" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1 [ 202.154180][ T29] audit: type=1400 audit(1762599294.434:4161): avc: denied { setcheckreqprot } for pid=18730 comm="syz.3.6570" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 202.236935][T18738] netlink: 44 bytes leftover after parsing attributes in process `syz.5.6572'. [ 202.254400][T18739] binfmt_misc: register: failed to install interpreter file ./file0 [ 202.298588][T18741] netlink: 'syz.8.6574': attribute type 3 has an invalid length. [ 202.306455][T18741] netlink: 199836 bytes leftover after parsing attributes in process `syz.8.6574'. [ 202.333237][T18745] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 202.333237][T18745] program syz.3.6576 not setting count and/or reply_len properly [ 202.486921][T18760] xt_hashlimit: max too large, truncated to 1048576 [ 202.491949][ T29] audit: type=1400 audit(1762599294.764:4162): avc: denied { create } for pid=18761 comm="syz.5.6584" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 202.564767][ T29] audit: type=1400 audit(1762599294.804:4163): avc: denied { write } for pid=18763 comm="syz.3.6585" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 202.587750][ T29] audit: type=1400 audit(1762599294.804:4164): avc: denied { write } for pid=18761 comm="syz.5.6584" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 202.607792][ T29] audit: type=1400 audit(1762599294.824:4165): avc: denied { block_suspend } for pid=18763 comm="syz.3.6585" capability=36 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 202.731709][T18781] netlink: 'syz.3.6593': attribute type 16 has an invalid length. [ 202.739691][T18781] netlink: 'syz.3.6593': attribute type 17 has an invalid length. [ 202.777170][T18781] 8021q: adding VLAN 0 to HW filter on device bond0 [ 202.796729][T18781] 8021q: adding VLAN 0 to HW filter on device team0 [ 202.819334][T18781] !60ªX¹¦À: left allmulticast mode [ 202.824543][T18781] A link change request failed with some changes committed already. Interface !60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 202.906805][ T29] audit: type=1400 audit(1762599295.174:4166): avc: denied { ioctl } for pid=18805 comm="syz.6.6605" path="socket:[53717]" dev="sockfs" ino=53717 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 203.000817][T18815] loop5: detected capacity change from 0 to 512 [ 203.047951][T18815] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 203.065638][T18815] ext4 filesystem being mounted at /599/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 203.084502][T18815] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #2: comm syz.5.6609: corrupted inode contents [ 203.124146][T18815] EXT4-fs error (device loop5): ext4_dirty_inode:6517: inode #2: comm syz.5.6609: mark_inode_dirty error [ 203.135617][T18790] loop2: detected capacity change from 0 to 32768 [ 203.143587][T18815] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #2: comm syz.5.6609: corrupted inode contents [ 203.173084][T18790] loop2: p1 p3 < > [ 203.181831][T11814] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.232902][T18834] syzkaller1: tun_chr_ioctl cmd 1074812118 [ 203.270042][T18840] loop9: detected capacity change from 0 to 7 [ 203.277916][T18840] loop9: unable to read partition table [ 203.283717][T18840] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ â·û [ 203.283717][T18840] ) failed (rc=-5) [ 203.303378][T18843] loop2: detected capacity change from 0 to 1024 [ 203.310420][T18843] EXT4-fs: inline encryption not supported [ 203.316514][T18843] EXT4-fs: Ignoring removed mblk_io_submit option [ 203.342197][T18843] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 203.385535][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.452218][T18861] netlink: 'syz.2.6625': attribute type 1 has an invalid length. [ 203.558747][T18880] sctp: [Deprecated]: syz.2.6638 (pid 18880) Use of int in maxseg socket option. [ 203.558747][T18880] Use struct sctp_assoc_value instead [ 203.676684][ T29] audit: type=1400 audit(1762599295.954:4167): avc: denied { create } for pid=18901 comm="syz.5.6649" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 203.697636][ T29] audit: type=1400 audit(1762599295.974:4168): avc: denied { listen } for pid=18901 comm="syz.5.6649" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 203.764320][T18908] netlink: 60 bytes leftover after parsing attributes in process `syz.2.6651'. [ 203.780747][T18908] netlink: 60 bytes leftover after parsing attributes in process `syz.2.6651'. [ 203.792364][T18908] netlink: 60 bytes leftover after parsing attributes in process `syz.2.6651'. [ 203.812401][T18916] netlink: 20 bytes leftover after parsing attributes in process `syz.8.6656'. [ 203.826396][T18920] netlink: 64 bytes leftover after parsing attributes in process `syz.3.6658'. [ 203.863582][T18924] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 203.899814][T18930] loop8: detected capacity change from 0 to 512 [ 203.927317][T18930] EXT4-fs (loop8): Cannot turn on journaled quota: type 0: error -2 [ 203.940523][T18930] EXT4-fs error (device loop8): ext4_free_branches:1023: inode #13: comm syz.8.6663: invalid indirect mapped block 2683928664 (level 1) [ 203.999231][T18930] EXT4-fs (loop8): Remounting filesystem read-only [ 204.006095][T18930] EXT4-fs (loop8): 1 truncate cleaned up [ 204.012320][T18930] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 204.048301][T14296] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 204.064438][T18952] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 204.137052][T18966] xt_hashlimit: max too large, truncated to 1048576 [ 204.159368][T18970] loop8: detected capacity change from 0 to 1024 [ 204.175075][T18970] EXT4-fs: Ignoring removed orlov option [ 204.188122][T18970] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 204.257799][T18970] EXT4-fs (loop8): shut down requested (0) [ 204.275847][T18970] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop8 ino=12 [ 204.289292][T18979] loop3: detected capacity change from 0 to 764 [ 204.296508][T18970] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop8 ino=12 [ 204.314638][T18970] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop8 ino=12 [ 204.325292][T18979] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 204.356818][T14296] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 204.405368][T18981] loop5: detected capacity change from 0 to 8192 [ 204.416788][T18985] loop8: detected capacity change from 0 to 764 [ 204.424784][T18981] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 204.437572][T18985] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 204.483303][T18991] netlink: 'syz.8.6692': attribute type 10 has an invalid length. [ 204.491217][T18991] netlink: 152 bytes leftover after parsing attributes in process `syz.8.6692'. [ 204.505557][T18995] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6694'. [ 204.553926][T19001] program syz.6.6697 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 204.694973][T19022] netdevsim netdevsim8: loading /lib/firmware/. failed with error -22 [ 204.703213][T19022] netdevsim netdevsim8: Direct firmware load for . failed with error -22 [ 204.779801][T19039] loop2: detected capacity change from 0 to 128 [ 204.806912][T19039] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 204.819852][T19039] ext4 filesystem being mounted at /1428/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 204.926083][ T3313] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 205.050452][T19078] loop8: detected capacity change from 0 to 512 [ 205.081403][T19082] loop5: detected capacity change from 0 to 2048 [ 205.103330][T19082] EXT4-fs: Ignoring removed mblk_io_submit option [ 205.109910][T19082] EXT4-fs: Ignoring removed i_version option [ 205.127184][T19082] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 205.145424][T19094] loop8: detected capacity change from 0 to 512 [ 205.152155][T19094] EXT4-fs: Ignoring removed oldalloc option [ 205.172451][T19094] EXT4-fs (loop8): 1 truncate cleaned up [ 205.179479][T19094] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 205.192504][T19099] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6743'. [ 205.203532][T11814] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 205.209073][T19099] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6743'. [ 205.247624][T14296] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 205.259611][T19104] loop2: detected capacity change from 0 to 128 [ 205.285418][T19105] 9pnet: Could not find request transport: r [ 205.317832][T19113] program syz.2.6749 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 205.398999][T19125] netlink: 'syz.2.6755': attribute type 2 has an invalid length. [ 205.533142][T19145] 9p: Unknown access argument ý: -22 [ 205.604301][T19129] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 205.612900][T19129] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 205.721673][T19174] sch_tbf: burst 0 is lower than device lo mtu (1031) ! [ 206.092781][T19206] netlink: 92 bytes leftover after parsing attributes in process `syz.2.6791'. [ 206.355759][T19254] program syz.3.6815 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 206.611608][T19281] loop8: detected capacity change from 0 to 512 [ 206.620565][T19281] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 206.652738][T19281] EXT4-fs error (device loop8): ext4_get_branch:178: inode #11: block 4294967295: comm syz.8.6828: invalid block [ 206.669309][T19281] EXT4-fs (loop8): Remounting filesystem read-only [ 206.676682][T19281] EXT4-fs (loop8): 2 truncates cleaned up [ 206.683007][T19281] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 206.700106][T19281] EXT4-fs (loop8): shut down requested (2) [ 206.707413][T19281] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop8 ino=12 [ 206.716323][T19281] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop8 ino=12 [ 206.736619][T14296] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 206.759049][T19290] netlink: 'syz.8.6832': attribute type 10 has an invalid length. [ 206.771661][T19290] team0: Device lo is loopback device. Loopback devices can't be added as a team port [ 206.783366][T19290] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 207.017779][ T29] kauditd_printk_skb: 69 callbacks suppressed [ 207.017797][ T29] audit: type=1326 audit(1762599555.303:4238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19328 comm="syz.8.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4722b8f6c9 code=0x7ffc0000 [ 207.048567][ T29] audit: type=1326 audit(1762599555.303:4239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19328 comm="syz.8.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4722b8f6c9 code=0x7ffc0000 [ 207.072257][ T29] audit: type=1326 audit(1762599555.303:4240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19328 comm="syz.8.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4722b8f6c9 code=0x7ffc0000 [ 207.095815][ T29] audit: type=1326 audit(1762599555.303:4241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19328 comm="syz.8.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4722b8f6c9 code=0x7ffc0000 [ 207.120199][ T29] audit: type=1326 audit(1762599555.303:4242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19328 comm="syz.8.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4722b8f6c9 code=0x7ffc0000 [ 207.144604][ T29] audit: type=1326 audit(1762599555.303:4243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19328 comm="syz.8.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4722b8f6c9 code=0x7ffc0000 [ 207.168325][ T29] audit: type=1326 audit(1762599555.333:4244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19328 comm="syz.8.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4722b8f6c9 code=0x7ffc0000 [ 207.200066][ T29] audit: type=1326 audit(1762599555.333:4245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19328 comm="syz.8.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4722b8f6c9 code=0x7ffc0000 [ 207.224848][ T29] audit: type=1326 audit(1762599555.333:4246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19328 comm="syz.8.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7f4722b8f6c9 code=0x7ffc0000 [ 207.248334][ T29] audit: type=1326 audit(1762599555.333:4247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19328 comm="syz.8.6851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4722b8f6c9 code=0x7ffc0000 [ 207.329725][T19349] loop3: detected capacity change from 0 to 128 [ 207.337165][T19349] FAT-fs (loop3): Directory bread(block 162) failed [ 207.343826][T19349] FAT-fs (loop3): Directory bread(block 163) failed [ 207.350668][T19349] FAT-fs (loop3): Directory bread(block 164) failed [ 207.357548][T19349] FAT-fs (loop3): Directory bread(block 165) failed [ 207.364497][T19349] FAT-fs (loop3): Directory bread(block 166) failed [ 207.371180][T19349] FAT-fs (loop3): Directory bread(block 167) failed [ 207.378026][T19349] FAT-fs (loop3): Directory bread(block 168) failed [ 207.385280][T19349] FAT-fs (loop3): Directory bread(block 169) failed [ 207.393088][T19349] FAT-fs (loop3): Directory bread(block 162) failed [ 207.399809][T19349] FAT-fs (loop3): Directory bread(block 163) failed [ 207.407057][T19349] bio_check_eod: 18 callbacks suppressed [ 207.407070][T19349] syz.3.6860: attempt to access beyond end of device [ 207.407070][T19349] loop3: rw=3, sector=226, nr_sectors = 6 limit=128 [ 207.426975][T19349] syz.3.6860: attempt to access beyond end of device [ 207.426975][T19349] loop3: rw=2051, sector=232, nr_sectors = 2 limit=128 [ 207.740828][T19382] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=14385 sclass=netlink_route_socket pid=19382 comm=syz.3.6876 [ 207.754713][T19376] loop5: detected capacity change from 0 to 8192 [ 207.784266][T19376] loop5: p1 p2[DM] p3 p4 [ 207.788730][T19376] loop5: p1 size 196608 extends beyond EOD, truncated [ 207.796159][T19376] loop5: p2 start 4292936063 is beyond EOD, truncated [ 207.803031][T19376] loop5: p3 size 189005824 extends beyond EOD, truncated [ 207.810777][T19376] loop5: p4 size 50331648 extends beyond EOD, truncated [ 208.068344][T19427] loop3: detected capacity change from 0 to 512 [ 208.076766][T19427] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.6897: bad orphan inode 15 [ 208.087312][T19427] ext4_test_bit(bit=14, block=5) = 0 [ 208.092913][T19427] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 208.118888][ T3325] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 208.387952][T19470] loop3: detected capacity change from 0 to 128 [ 208.411864][T19470] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 208.431414][T19470] ext4 filesystem being mounted at /1394/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 208.494411][ T3325] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 208.525440][T19488] 9pnet_fd: p9_fd_create_unix (19488): problem connecting socket: ./file0: -2 [ 208.535253][T19485] netem: change failed [ 208.811757][T19537] loop8: detected capacity change from 0 to 1024 [ 208.849147][T19537] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 208.853905][T19545] __nla_validate_parse: 8 callbacks suppressed [ 208.853925][T19545] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6953'. [ 208.891799][T19545] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6953'. [ 208.971985][T14296] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 208.998570][T19559] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6960'. [ 209.010500][T19559] team0 (unregistering): Port device team_slave_0 removed [ 209.034685][T19559] team0 (unregistering): Port device team_slave_1 removed [ 209.045357][T19566] loop8: detected capacity change from 0 to 512 [ 209.056323][T19566] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 209.070269][T19569] loop6: detected capacity change from 0 to 512 [ 209.093391][ T9025] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 209.116135][T19571] netlink: 'syz.3.6965': attribute type 13 has an invalid length. [ 209.126836][T19569] FAT-fs (loop6): error, corrupted directory (invalid entries) [ 209.167855][T19571] veth1_vlan: left allmulticast mode [ 209.259872][T19583] loop2: detected capacity change from 0 to 8192 [ 209.268486][T19583] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 209.280671][T19593] cgroup: Unexpected value for 'nofavordynmods' [ 209.283951][T19583] FAT-fs (loop2): error, fat_free_clusters: deleting FAT entry beyond EOF [ 209.296315][T19583] FAT-fs (loop2): Filesystem has been set read-only [ 209.385394][T19608] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 209.409204][T19608] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 209.555431][T19633] loop6: detected capacity change from 0 to 512 [ 209.567262][T19633] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended [ 209.576438][T19633] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem [ 209.586081][T19633] EXT4-fs (loop6): warning: mounting unchecked fs, running e2fsck is recommended [ 209.596204][T19633] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006] [ 209.604795][T19633] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 209.632806][T11927] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 209.699151][T19652] netlink: 8 bytes leftover after parsing attributes in process `syz.8.7001'. [ 209.971776][T19689] xt_hashlimit: max too large, truncated to 1048576 [ 209.996655][T19690] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 210.087375][T19707] wg2: entered promiscuous mode [ 210.092309][T19707] wg2: entered allmulticast mode [ 210.128007][T19711] loop5: detected capacity change from 0 to 2048 [ 210.142739][T19713] macvtap0: refused to change device tx_queue_len [ 210.159250][T19717] loop6: detected capacity change from 0 to 512 [ 210.177498][T19711] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 210.181135][T19717] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem [ 210.199510][T19717] EXT4-fs (loop6): invalid journal inode [ 210.206330][T19717] EXT4-fs (loop6): can't get journal size [ 210.212325][T19711] ext4 filesystem being mounted at /662/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 210.223623][T19711] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 210.234375][T19717] EXT4-fs (loop6): 1 truncate cleaned up [ 210.240464][T19717] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 210.263575][T19724] netlink: 76 bytes leftover after parsing attributes in process `syz.2.7033'. [ 210.273002][T19717] netlink: 256 bytes leftover after parsing attributes in process `syz.6.7031'. [ 210.282162][T19717] netlink: 72 bytes leftover after parsing attributes in process `syz.6.7031'. [ 210.313247][T11927] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 210.403824][T19743] bond0: (slave syz_tun): Releasing backup interface [ 210.421026][T19747] loop3: detected capacity change from 0 to 1024 [ 210.440130][T19743] bond0: (slave bond_slave_0): Releasing backup interface [ 210.457406][T19747] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 210.460190][T19752] netlink: 'syz.2.7042': attribute type 10 has an invalid length. [ 210.477591][T19752] netlink: 40 bytes leftover after parsing attributes in process `syz.2.7042'. [ 210.491261][T19747] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 210.514178][T19743] bond0: (slave bond_slave_1): Releasing backup interface [ 210.539826][T19743] C: left allmulticast mode [ 210.554390][T19743] team0: Port device C removed [ 210.564813][T19743] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 210.572284][T19743] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 210.585949][T19759] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 2048 with error 28 [ 210.598565][T19759] EXT4-fs (loop3): This should not happen!! Data will be lost [ 210.598565][T19759] [ 210.608261][T19759] EXT4-fs (loop3): Total free blocks count 0 [ 210.614379][T19759] EXT4-fs (loop3): Free/Dirty block details [ 210.620297][T19759] EXT4-fs (loop3): free_blocks=20480 [ 210.625626][T19759] EXT4-fs (loop3): dirty_blocks=4512 [ 210.630950][T19759] EXT4-fs (loop3): Block reservation details [ 210.636984][T19759] EXT4-fs (loop3): i_reserved_data_blocks=314 [ 210.646788][T19743] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 210.655142][T19743] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 210.667334][T19743] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 210.687738][T19752] batman_adv: batadv0: Adding interface: veth1_vlan [ 210.694478][T19752] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 210.720945][T19752] batman_adv: batadv0: Interface activated: veth1_vlan [ 210.881331][T19773] loop5: detected capacity change from 0 to 2048 [ 210.927272][T19784] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7055'. [ 210.928457][ T9048] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28 [ 210.951110][T19773] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 210.966543][T19788] serio: Serial port ptm0 [ 210.992103][T19773] ext4 filesystem being mounted at /669/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 211.006022][T19791] netlink: 256 bytes leftover after parsing attributes in process `syz.8.7061'. [ 211.118775][T19800] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.7056: bg 0: block 345: padding at end of block bitmap is not set [ 211.144296][T19800] EXT4-fs (loop5): Remounting filesystem read-only [ 211.214055][T11814] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 211.497527][T19861] loop5: detected capacity change from 0 to 512 [ 211.508736][T19861] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended [ 211.536750][T19861] EXT4-fs warning (device loop5): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 211.551859][T19861] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.7094: bg 0: block 248: padding at end of block bitmap is not set [ 211.571844][T19861] EXT4-fs error (device loop5): ext4_acquire_dquot:6945: comm syz.5.7094: Failed to acquire dquot type 1 [ 211.584917][T19861] EXT4-fs (loop5): 1 truncate cleaned up [ 211.590734][T19873] loop3: detected capacity change from 0 to 128 [ 211.591258][T19861] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 211.610383][T19873] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 211.628740][T19873] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 211.639377][T11814] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0008-000000000000. [ 211.662553][ T9024] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 211.743642][ T3415] hid_parser_main: 33 callbacks suppressed [ 211.743664][ T3415] hid-generic 0003:80000004:0000.0005: unknown main item tag 0x0 [ 211.757392][ T3415] hid-generic 0003:80000004:0000.0005: unknown main item tag 0x0 [ 211.766026][ T3415] hid-generic 0003:80000004:0000.0005: unknown main item tag 0x0 [ 211.773797][ T3415] hid-generic 0003:80000004:0000.0005: unknown main item tag 0x0 [ 211.781713][ T3415] hid-generic 0003:80000004:0000.0005: unknown main item tag 0x0 [ 211.789671][ T3415] hid-generic 0003:80000004:0000.0005: unknown main item tag 0x0 [ 211.798184][ T3415] hid-generic 0003:80000004:0000.0005: unknown main item tag 0x0 [ 211.806026][ T3415] hid-generic 0003:80000004:0000.0005: unknown main item tag 0x0 [ 211.813769][ T3415] hid-generic 0003:80000004:0000.0005: unknown main item tag 0x0 [ 211.821627][ T3415] hid-generic 0003:80000004:0000.0005: unknown main item tag 0x0 [ 211.830462][ T3415] hid-generic 0003:80000004:0000.0005: hidraw0: USB HID v0.00 Device [syz1] on syz0 [ 211.899916][T19907] loop8: detected capacity change from 0 to 512 [ 211.908096][T19907] EXT4-fs (loop8): orphan cleanup on readonly fs [ 211.914716][T19907] EXT4-fs error (device loop8): ext4_do_update_inode:5632: inode #15: comm syz.8.7115: corrupted inode contents [ 211.926900][T19907] EXT4-fs error (device loop8) in ext4_orphan_del:301: Corrupt filesystem [ 211.935931][T19907] EXT4-fs error (device loop8): ext4_do_update_inode:5632: inode #15: comm syz.8.7115: corrupted inode contents [ 211.948177][T19907] EXT4-fs error (device loop8): ext4_evict_inode:302: inode #15: comm syz.8.7115: mark_inode_dirty error [ 211.959819][T19907] EXT4-fs (loop8): 1 orphan inode deleted [ 211.966266][T19907] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 211.998569][T14296] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 212.133066][ T29] kauditd_printk_skb: 321 callbacks suppressed [ 212.133123][ T29] audit: type=1326 audit(1762599562.411:4567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19940 comm="syz.2.7131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5efe1ff6c9 code=0x7ffc0000 [ 212.162867][ T29] audit: type=1326 audit(1762599562.411:4568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19940 comm="syz.2.7131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5efe1ff6c9 code=0x7ffc0000 [ 212.247071][ T29] audit: type=1400 audit(1762599562.521:4569): avc: denied { sqpoll } for pid=19944 comm="syz.6.7133" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 212.364623][T19966] serio: Serial port ptm0 [ 212.369426][T19963] bond0: (slave syz_tun): Releasing backup interface [ 212.383022][T19963] syz_tun: left promiscuous mode [ 212.388238][T19963] syz_tun: left allmulticast mode [ 212.393811][T19963] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 212.411285][T19963] netlink: 'syz.3.7141': attribute type 10 has an invalid length. [ 212.419580][T19963] veth1_vlan: left promiscuous mode [ 212.425672][T19963] batman_adv: batadv0: Adding interface: veth1_vlan [ 212.432302][T19963] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 212.458136][T19963] batman_adv: batadv0: Interface activated: veth1_vlan [ 212.487730][T19978] bond1: option active_slave: mode dependency failed, not supported in mode balance-rr(0) [ 212.499091][T19978] bond1 (unregistering): Released all slaves [ 212.511723][T19983] loop3: detected capacity change from 0 to 2048 [ 212.526135][T19983] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none. [ 212.540904][T19983] EXT4-fs (loop3): shut down requested (2) [ 212.547150][ T29] audit: type=1400 audit(1762599818.818:4570): avc: denied { create } for pid=19982 comm="syz.3.7149" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=blk_file permissive=1 [ 212.589423][ T3325] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000900. [ 212.620319][T19991] sctp: [Deprecated]: syz.3.7152 (pid 19991) Use of int in maxseg socket option. [ 212.620319][T19991] Use struct sctp_assoc_value instead [ 212.723373][T20011] bridge_slave_0: left allmulticast mode [ 212.729985][T20011] bridge_slave_0: left promiscuous mode [ 212.736025][T20011] bridge0: port 1(bridge_slave_0) entered disabled state [ 212.744925][T20011] bridge_slave_1: left allmulticast mode [ 212.750614][T20011] bridge_slave_1: left promiscuous mode [ 212.756360][T20011] bridge0: port 2(bridge_slave_1) entered disabled state [ 212.766903][T20011] bond0: (slave bond_slave_0): Releasing backup interface [ 212.775228][T20011] bond0: (slave bond_slave_1): Releasing backup interface [ 212.784700][T20011] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 212.803510][T20011] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 212.810992][T20018] netlink: 'syz.5.7161': attribute type 10 has an invalid length. [ 212.811375][T20011] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 212.834975][T20018] veth1_vlan: left promiscuous mode [ 212.835573][T20015] loop2: detected capacity change from 0 to 2048 [ 212.848666][T20018] batman_adv: batadv0: Adding interface: veth1_vlan [ 212.855319][T20018] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 212.885313][T20015] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 212.889587][T20018] batman_adv: batadv0: Interface activated: veth1_vlan [ 212.904879][T20015] ext4 filesystem being mounted at /1553/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 212.989661][T20036] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.7162: bg 0: block 345: padding at end of block bitmap is not set [ 213.007964][T20036] EXT4-fs (loop2): Remounting filesystem read-only [ 213.100312][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 213.198221][T20060] vcan0 speed is unknown, defaulting to 1000 [ 213.211680][ T29] audit: type=1326 audit(1762599819.488:4571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20061 comm="syz.2.7183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5efe1ff6c9 code=0x7ffc0000 [ 213.246681][ T29] audit: type=1326 audit(1762599819.518:4572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20061 comm="syz.2.7183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5efe1ff6c9 code=0x7ffc0000 [ 213.270461][ T29] audit: type=1326 audit(1762599819.518:4573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20061 comm="syz.2.7183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=255 compat=0 ip=0x7f5efe1ff6c9 code=0x7ffc0000 [ 213.292314][T20060] ip6_vti0 speed is unknown, defaulting to 1000 [ 213.293954][ T29] audit: type=1326 audit(1762599819.518:4574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20061 comm="syz.2.7183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5efe1ff6c9 code=0x7ffc0000 [ 213.323778][ T29] audit: type=1326 audit(1762599819.518:4575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20061 comm="syz.2.7183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5efe1ff6c9 code=0x7ffc0000 [ 213.355446][T20069] loop2: detected capacity change from 0 to 512 [ 213.394170][T20069] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 213.434537][T20069] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.7186: invalid block [ 213.456278][T20069] EXT4-fs (loop2): Remounting filesystem read-only [ 213.464265][T20069] EXT4-fs (loop2): 2 truncates cleaned up [ 213.470760][T20069] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 213.498728][T20069] EXT4-fs (loop2): shut down requested (2) [ 213.504971][T20069] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop2 ino=12 [ 213.513967][T20069] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop2 ino=12 [ 213.545190][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 213.558102][ T29] audit: type=1326 audit(1762599819.838:4576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20093 comm="syz.6.7198" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b22e3f6c9 code=0x7ffc0000 [ 214.161016][T20121] __nla_validate_parse: 11 callbacks suppressed [ 214.161038][T20121] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7208'. [ 214.211205][T20120] loop3: detected capacity change from 0 to 8192 [ 214.239874][T20130] netlink: 'syz.6.7213': attribute type 1 has an invalid length. [ 214.250538][T20120] loop3: p1 p2[DM] p3 p4 [ 214.260560][T20120] loop3: p1 size 196608 extends beyond EOD, truncated [ 214.278813][T20120] loop3: p2 start 4292936063 is beyond EOD, truncated [ 214.286597][T20120] loop3: p3 size 189005824 extends beyond EOD, truncated [ 214.312220][T20120] loop3: p4 size 50331648 extends beyond EOD, truncated [ 214.338096][T20139] bridge_slave_0: left allmulticast mode [ 214.343809][T20139] bridge_slave_0: left promiscuous mode [ 214.350327][T20139] bridge0: port 1(bridge_slave_0) entered disabled state [ 214.365517][T20145] netlink: 'syz.6.7217': attribute type 10 has an invalid length. [ 214.373438][T20145] netlink: 40 bytes leftover after parsing attributes in process `syz.6.7217'. [ 214.419415][T20139] bridge_slave_1: left allmulticast mode [ 214.425222][T20139] bridge_slave_1: left promiscuous mode [ 214.430993][T20139] bridge0: port 2(bridge_slave_1) entered disabled state [ 214.446919][T20139] bond0: (slave bond_slave_0): Releasing backup interface [ 214.473820][T20139] bond0: (slave bond_slave_1): Releasing backup interface [ 214.495806][T20139] team0: Port device team_slave_0 removed [ 214.522508][T20139] team0: Port device team_slave_1 removed [ 214.529669][T20162] netlink: 'syz.3.7228': attribute type 1 has an invalid length. [ 214.538441][T20139] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 214.546017][T20139] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 214.546545][T20163] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7226'. [ 214.565157][T20139] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 214.572669][T20139] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 214.593311][T20139] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 214.625766][T20145] batman_adv: batadv0: Adding interface: veth1_vlan [ 214.632445][T20145] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 214.658506][T20145] batman_adv: batadv0: Interface activated: veth1_vlan [ 214.660483][T20173] loop8: detected capacity change from 0 to 164 [ 214.679891][T20173] ISOFS: unable to read i-node block [ 214.699022][T20173] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 214.837708][T20194] loop8: detected capacity change from 0 to 2048 [ 214.853482][T20200] loop2: detected capacity change from 0 to 512 [ 214.863210][T20200] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 214.873670][T20194] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 214.886593][T20194] ext4 filesystem being mounted at /499/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 214.897245][T20200] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 214.905266][T20200] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002] [ 214.913504][T20200] System zones: 0-1, 15-15, 18-18, 34-34 [ 214.920728][T20200] EXT4-fs (loop2): orphan cleanup on readonly fs [ 214.927260][T20200] EXT4-fs warning (device loop2): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 214.941935][T20200] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 214.968036][T20208] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.7245: bg 0: block 345: padding at end of block bitmap is not set [ 214.982628][T20200] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.7247: bg 0: block 40: padding at end of block bitmap is not set [ 214.997337][T20200] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 215.007215][T20200] EXT4-fs (loop2): 1 truncate cleaned up [ 215.013472][T20200] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 215.029412][T20200] EXT4-fs error (device loop2): ext4_encrypted_get_link:46: inode #16: comm syz.2.7247: bad symlink. [ 215.041068][T20200] EXT4-fs error (device loop2): ext4_encrypted_get_link:46: inode #16: comm syz.2.7247: bad symlink. [ 215.052503][T20200] EXT4-fs error (device loop2): ext4_encrypted_get_link:46: inode #16: comm syz.2.7247: bad symlink. [ 215.063706][T20208] EXT4-fs (loop8): Remounting filesystem read-only [ 215.095275][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 215.158652][T14296] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 215.186953][T20218] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7262'. [ 215.217411][T20225] loop2: detected capacity change from 0 to 512 [ 215.233004][T20222] bridge_slave_0: left allmulticast mode [ 215.238756][T20222] bridge_slave_0: left promiscuous mode [ 215.245556][T20222] bridge0: port 1(bridge_slave_0) entered disabled state [ 215.263750][T20222] bridge_slave_1: left allmulticast mode [ 215.269585][T20222] bridge_slave_1: left promiscuous mode [ 215.275460][T20222] bridge0: port 2(bridge_slave_1) entered disabled state [ 215.283743][T20230] netlink: 'syz.8.7252': attribute type 10 has an invalid length. [ 215.285058][T20225] EXT4-fs (loop2): 1 orphan inode deleted [ 215.291764][T20230] netlink: 40 bytes leftover after parsing attributes in process `syz.8.7252'. [ 215.298865][T20225] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 215.310240][ T9025] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:32: Failed to release dquot type 1 [ 215.319604][T20225] ext4 filesystem being mounted at /1574/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 215.357742][T20222] bond0: (slave bond_slave_0): Releasing backup interface [ 215.370237][T20222] bond0: (slave bond_slave_1): Releasing backup interface [ 215.382687][ T3313] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 215.395135][T20222] team0: Port device team_slave_0 removed [ 215.406658][T20222] team0: Port device team_slave_1 removed [ 215.420395][T20241] loop2: detected capacity change from 0 to 512 [ 215.428040][T20222] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 215.435569][T20222] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 215.445108][T20222] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 215.452547][T20222] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 215.464896][T20222] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 215.480997][ T3408] vcan0 speed is unknown, defaulting to 1000 [ 215.491117][T20241] EXT4-fs (loop2): too many log groups per flexible block group [ 215.499226][T20241] EXT4-fs (loop2): failed to initialize mballoc (-12) [ 215.506680][T20241] EXT4-fs (loop2): mount failed [ 215.529804][T20230] batman_adv: batadv0: Adding interface: veth1_vlan [ 215.536610][T20230] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 215.566263][T20230] batman_adv: batadv0: Interface activated: veth1_vlan [ 215.620362][T20258] vcan0 speed is unknown, defaulting to 1000 [ 215.680564][T20269] netlink: 'syz.6.7275': attribute type 10 has an invalid length. [ 215.691668][T20269] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 215.708194][T20269] 8021q: adding VLAN 0 to HW filter on device bond0 [ 215.718523][T20272] loop5: detected capacity change from 0 to 128 [ 215.718653][T20269] bond0: (slave lo): Enslaving as an active interface with an up link [ 215.746301][T20272] ext4 filesystem being mounted at /706/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 215.779511][T20258] ip6_vti0 speed is unknown, defaulting to 1000 [ 215.868620][T20283] netlink: 8 bytes leftover after parsing attributes in process `syz.8.7281'. [ 215.885737][T20285] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7282'. [ 215.904170][T20285] netlink: 16 bytes leftover after parsing attributes in process `syz.6.7282'. [ 215.930913][T20289] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 215.948872][T20289] netlink: 'syz.5.7284': attribute type 10 has an invalid length. [ 215.956788][T20289] netlink: 40 bytes leftover after parsing attributes in process `syz.5.7284'. [ 215.988956][T20295] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7287'. [ 216.013673][T20299] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=14385 sclass=netlink_route_socket pid=20299 comm=syz.6.7289 [ 216.062197][T20307] loop5: detected capacity change from 0 to 1024 [ 216.070232][T20307] EXT4-fs: Ignoring removed nobh option [ 216.075912][T20307] EXT4-fs: Ignoring removed bh option [ 216.150069][T20318] loop6: detected capacity change from 0 to 128 [ 216.157947][T20318] FAT-fs (loop6): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1) [ 216.217761][T20333] loop8: detected capacity change from 0 to 512 [ 216.238875][T20333] FAT-fs (loop8): error, corrupted directory (invalid entries) [ 216.251544][T20336] loop5: detected capacity change from 0 to 1024 [ 216.282745][ T9024] kworker/u8:31: attempt to access beyond end of device [ 216.282745][ T9024] loop6: rw=1, sector=169, nr_sectors = 8 limit=128 [ 216.296428][ T9024] kworker/u8:31: attempt to access beyond end of device [ 216.296428][ T9024] loop6: rw=1, sector=185, nr_sectors = 16 limit=128 [ 216.311265][ T9024] kworker/u8:31: attempt to access beyond end of device [ 216.311265][ T9024] loop6: rw=1, sector=209, nr_sectors = 8 limit=128 [ 216.324994][ T9024] kworker/u8:31: attempt to access beyond end of device [ 216.324994][ T9024] loop6: rw=1, sector=225, nr_sectors = 8 limit=128 [ 216.349244][ T9024] kworker/u8:31: attempt to access beyond end of device [ 216.349244][ T9024] loop6: rw=1, sector=241, nr_sectors = 8 limit=128 [ 216.365247][ T9024] kworker/u8:31: attempt to access beyond end of device [ 216.365247][ T9024] loop6: rw=1, sector=257, nr_sectors = 8 limit=128 [ 216.379314][ T9024] kworker/u8:31: attempt to access beyond end of device [ 216.379314][ T9024] loop6: rw=1, sector=273, nr_sectors = 8 limit=128 [ 216.380937][T20344] netlink: 'syz.8.7305': attribute type 10 has an invalid length. [ 216.393077][ T9024] kworker/u8:31: attempt to access beyond end of device [ 216.393077][ T9024] loop6: rw=1, sector=289, nr_sectors = 8 limit=128 [ 216.414431][ T9024] kworker/u8:31: attempt to access beyond end of device [ 216.414431][ T9024] loop6: rw=1, sector=305, nr_sectors = 8 limit=128 [ 216.415226][T20344] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 216.427991][ T9024] kworker/u8:31: attempt to access beyond end of device [ 216.427991][ T9024] loop6: rw=1, sector=321, nr_sectors = 8 limit=128 [ 216.430190][ T9024] FAT-fs (loop6): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1) [ 216.481416][T20344] 8021q: adding VLAN 0 to HW filter on device bond0 [ 216.492241][T20344] bond0: (slave lo): Enslaving as an active interface with an up link [ 216.509456][T20346] vhci_hcd: invalid port number 96 [ 216.514769][T20346] vhci_hcd: default hub control req: 2000 vfffc i0060 l7 [ 216.573520][T20351] loop5: detected capacity change from 0 to 764 [ 216.595017][T20351] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 216.697437][T20378] SELinux: security_context_str_to_sid (Ö) failed with errno=-22 [ 216.698717][T20377] autofs4:pid:20377:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(951.8), cmd(0xc018937e) [ 216.718608][T20377] autofs4:pid:20377:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937e) [ 216.821295][T20363] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 216.836315][T20397] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 216.845025][T20363] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 216.869617][T20397] netlink: 'syz.3.7329': attribute type 10 has an invalid length. [ 216.884295][T20399] loop2: detected capacity change from 0 to 764 [ 216.897330][T20399] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 217.042955][T20423] loop2: detected capacity change from 0 to 512 [ 217.091236][T20429] loop3: detected capacity change from 0 to 764 [ 217.099869][T20429] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 217.119512][T20431] loop5: detected capacity change from 0 to 512 [ 217.126585][T20431] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 217.156457][ T9025] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 217.180630][ T29] kauditd_printk_skb: 165 callbacks suppressed [ 217.180649][ T29] audit: type=1400 audit(1762599824.456:4740): avc: denied { create } for pid=20432 comm="syz.3.7346" name="file5" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 217.208140][T20435] loop2: detected capacity change from 0 to 1024 [ 217.218156][T20437] loop5: detected capacity change from 0 to 512 [ 217.226110][ T29] audit: type=1400 audit(1762599824.506:4741): avc: denied { unlink } for pid=3325 comm="syz-executor" name="file5" dev="tmpfs" ino=7565 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 217.250137][T20437] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 217.259350][ T29] audit: type=1400 audit(1762599824.546:4742): avc: denied { read } for pid=20440 comm="syz.3.7349" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 217.279753][ T29] audit: type=1400 audit(1762599824.556:4743): avc: denied { name_bind } for pid=20438 comm="syz.8.7348" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1 [ 217.365448][ T29] audit: type=1400 audit(1762599824.636:4744): avc: denied { getopt } for pid=20440 comm="syz.3.7349" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 217.466650][ T29] audit: type=1400 audit(1762599824.666:4745): avc: denied { execmem } for pid=20447 comm="syz.5.7351" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 217.571274][ T29] audit: type=1400 audit(1762599824.846:4746): avc: denied { name_connect } for pid=20459 comm="syz.8.7358" dest=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1 [ 217.617140][ T29] audit: type=1326 audit(1762599824.896:4747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20461 comm="syz.8.7359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4722b8f6c9 code=0x7ffc0000 [ 217.641542][ T29] audit: type=1326 audit(1762599824.896:4748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20461 comm="syz.8.7359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4722b8f6c9 code=0x7ffc0000 [ 217.666796][ T29] audit: type=1326 audit(1762599824.896:4749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20461 comm="syz.8.7359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f4722b8f6c9 code=0x7ffc0000 [ 217.709991][T20467] vcan0 speed is unknown, defaulting to 1000 [ 217.788033][T20467] ip6_vti0 speed is unknown, defaulting to 1000 [ 217.864321][T20479] loop5: detected capacity change from 0 to 128 [ 217.877987][T20479] FAT-fs (loop5): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1) [ 217.945569][T20481] loop8: detected capacity change from 0 to 512 [ 217.955513][T20481] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 218.027744][T20484] autofs4:pid:20484:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(951.8), cmd(0xc018937e) [ 218.041176][T20484] autofs4:pid:20484:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937e) [ 218.070416][ T9048] FAT-fs (loop5): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1) [ 218.316418][T20514] team0 (unregistering): Port device team_slave_0 removed [ 218.344767][T20514] team0 (unregistering): Port device team_slave_1 removed [ 218.807246][T20570] loop6: detected capacity change from 0 to 512 [ 218.808019][T20569] loop3: detected capacity change from 0 to 512 [ 218.824507][T20570] EXT4-fs: Ignoring removed oldalloc option [ 218.841782][T20569] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 218.851289][T20570] EXT4-fs (loop6): 1 truncate cleaned up [ 218.889911][T20569] EXT4-fs (loop3): invalid journal inode [ 218.904196][T20569] EXT4-fs (loop3): can't get journal size [ 218.933653][T20569] EXT4-fs (loop3): 1 truncate cleaned up [ 219.058856][T20584] loop3: detected capacity change from 0 to 2048 [ 219.069420][T20582] loop8: detected capacity change from 0 to 2048 [ 219.105037][T20584] ext4 filesystem being mounted at /1481/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 219.168540][T20582] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters [ 219.182930][T20582] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 219.195240][T20582] EXT4-fs (loop8): This should not happen!! Data will be lost [ 219.195240][T20582] [ 219.204918][T20582] EXT4-fs (loop8): Total free blocks count 0 [ 219.210927][T20582] EXT4-fs (loop8): Free/Dirty block details [ 219.216898][T20582] EXT4-fs (loop8): free_blocks=4096 [ 219.222161][T20582] EXT4-fs (loop8): dirty_blocks=32 [ 219.227423][T20582] EXT4-fs (loop8): Block reservation details [ 219.233433][T20582] EXT4-fs (loop8): i_reserved_data_blocks=2 [ 219.240914][T20601] __nla_validate_parse: 14 callbacks suppressed [ 219.240934][T20601] netlink: 16402 bytes leftover after parsing attributes in process `syz.6.7430'. [ 219.343798][ T9025] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 1 with error 28 [ 219.357034][ T9025] EXT4-fs (loop8): This should not happen!! Data will be lost [ 219.357034][ T9025] [ 219.390619][T20609] xt_hashlimit: max too large, truncated to 1048576 [ 219.414537][T20613] macvtap0: refused to change device tx_queue_len [ 219.522554][T20620] loop3: detected capacity change from 0 to 512 [ 219.544958][T20620] EXT4-fs warning (device loop3): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 219.588704][T20620] EXT4-fs (loop3): mount failed [ 219.693049][T20628] loop8: detected capacity change from 0 to 512 [ 219.731357][T20628] EXT4-fs (loop8): mounting ext2 file system using the ext4 subsystem [ 219.765794][T20628] EXT4-fs error (device loop8): ext4_validate_block_bitmap:432: comm syz.8.7431: bg 0: block 104: invalid block bitmap [ 219.841450][T20628] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 219.910855][T20628] EXT4-fs error (device loop8): ext4_free_branches:1023: inode #11: comm syz.8.7431: invalid indirect mapped block 1 (level 1) [ 219.924767][T20628] EXT4-fs (loop8): 1 truncate cleaned up [ 219.972269][T20657] loop6: detected capacity change from 0 to 512 [ 219.982892][T20659] xt_hashlimit: max too large, truncated to 1048576 [ 219.985432][T20655] vcan0 speed is unknown, defaulting to 1000 [ 220.054954][T20657] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended [ 220.111934][T20655] ip6_vti0 speed is unknown, defaulting to 1000 [ 220.119734][T20663] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7448'. [ 220.130377][T20657] EXT4-fs warning (device loop6): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 220.165812][T20657] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.7444: bg 0: block 248: padding at end of block bitmap is not set [ 220.180661][T20663] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7448'. [ 220.238637][T20657] EXT4-fs error (device loop6): ext4_acquire_dquot:6945: comm syz.6.7444: Failed to acquire dquot type 1 [ 220.262970][T20666] loop8: detected capacity change from 0 to 512 [ 220.285783][T20657] EXT4-fs (loop6): 1 truncate cleaned up [ 220.313887][T20666] EXT4-fs warning (device loop8): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 220.320916][T20657] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7444'. [ 220.352397][T20666] EXT4-fs (loop8): mount failed [ 220.456748][T20688] loop6: detected capacity change from 0 to 512 [ 220.483721][T20688] EXT4-fs error (device loop6): ext4_orphan_get:1418: comm syz.6.7458: bad orphan inode 13 [ 220.525471][T20688] ext4_test_bit(bit=12, block=4) = 1 [ 220.530813][T20688] is_bad_inode(inode)=0 [ 220.535016][T20688] NEXT_ORPHAN(inode)=0 [ 220.539130][T20688] max_ino=32 [ 220.542338][T20688] i_nlink=1 [ 220.564871][T20688] EXT4-fs warning (device loop6): dx_probe:801: inode #2: comm syz.6.7458: Unrecognised inode hash code 20 [ 220.576445][T20688] EXT4-fs warning (device loop6): dx_probe:934: inode #2: comm syz.6.7458: Corrupt directory, running e2fsck is recommended [ 220.579911][T20701] netlink: 20 bytes leftover after parsing attributes in process `syz.2.7461'. [ 220.700615][T20714] loop3: detected capacity change from 0 to 128 [ 221.009362][T20759] loop3: detected capacity change from 0 to 512 [ 221.016437][T20759] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 221.043434][T20759] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.7488: bg 0: block 104: invalid block bitmap [ 221.076507][T20759] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 221.085826][T20759] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.7488: invalid indirect mapped block 1 (level 1) [ 221.101947][T20759] EXT4-fs (loop3): 1 truncate cleaned up [ 221.246628][T20794] loop8: detected capacity change from 0 to 128 [ 221.385411][T20816] loop2: detected capacity change from 0 to 512 [ 221.392935][T20816] ext4: Unknown parameter 'pcr' [ 221.575902][T20828] vcan0 speed is unknown, defaulting to 1000 [ 221.638578][T20834] loop5: detected capacity change from 0 to 128 [ 221.776268][T20828] ip6_vti0 speed is unknown, defaulting to 1000 [ 221.861921][T20849] loop3: detected capacity change from 0 to 512 [ 221.868682][T20849] ext4: Unknown parameter 'pcr' [ 221.892371][T20852] loop5: detected capacity change from 0 to 512 [ 221.909196][T20852] EXT4-fs error (device loop5): ext4_xattr_inode_iget:446: comm syz.5.7530: error while reading EA inode 32 err=-116 [ 221.925005][T20854] tap0: tun_chr_ioctl cmd 1074025677 [ 221.930517][T20854] tap0: linktype set to 804 [ 221.939743][T20852] EXT4-fs error (device loop5): ext4_xattr_inode_iget:446: comm syz.5.7530: error while reading EA inode 32 err=-116 [ 221.974877][T20852] EXT4-fs (loop5): 1 orphan inode deleted [ 222.166147][T20876] netlink: 24 bytes leftover after parsing attributes in process `syz.8.7541'. [ 222.186550][T20878] sch_tbf: burst 0 is lower than device veth0_to_bridge mtu (1514) ! [ 222.245169][ T29] kauditd_printk_skb: 179 callbacks suppressed [ 222.245187][ T29] audit: type=1400 audit(1762599829.526:4925): avc: denied { execute } for pid=20880 comm="syz.6.7543" name="file0" dev="tmpfs" ino=3548 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 222.278180][T20884] loop8: detected capacity change from 0 to 512 [ 222.289187][T20884] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem [ 222.297661][ T29] audit: type=1400 audit(1762599829.526:4926): avc: denied { execute_no_trans } for pid=20880 comm="syz.6.7543" path="/688/file0" dev="tmpfs" ino=3548 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 222.343738][ T29] audit: type=1400 audit(1762599829.606:4927): avc: denied { mac_admin } for pid=20886 comm="syz.5.7544" capability=33 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 222.344148][T20884] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c118, mo2=0002] [ 222.366016][ T29] audit: type=1400 audit(1762599829.606:4928): avc: denied { relabelto } for pid=20886 comm="syz.5.7544" name="cgroup.procs" dev="cgroup" ino=494 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:netutils_exec_t:s0" [ 222.373309][T20884] System zones: 1-12 [ 222.401576][ T29] audit: type=1400 audit(1762599829.606:4929): avc: denied { associate } for pid=20886 comm="syz.5.7544" name="cgroup.procs" dev="cgroup" ino=494 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 srawcon="system_u:object_r:netutils_exec_t:s0" [ 222.444184][T20884] EXT4-fs error (device loop8): ext4_iget_extra_inode:5075: inode #15: comm syz.8.7546: corrupted in-inode xattr: e_value size too large [ 222.461816][ T29] audit: type=1326 audit(1762599829.726:4930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20889 comm="syz.3.7547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb8063f6c9 code=0x7ffc0000 [ 222.485360][T20884] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.7546: couldn't read orphan inode 15 (err -117) [ 222.497283][ T29] audit: type=1326 audit(1762599829.726:4931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20889 comm="syz.3.7547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb8063f6c9 code=0x7ffc0000 [ 222.520936][ T29] audit: type=1326 audit(1762599829.726:4932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20889 comm="syz.3.7547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7feb8063f6c9 code=0x7ffc0000 [ 222.544532][ T29] audit: type=1326 audit(1762599829.726:4933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20889 comm="syz.3.7547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb8063f6c9 code=0x7ffc0000 [ 222.568067][ T29] audit: type=1326 audit(1762599829.726:4934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20889 comm="syz.3.7547" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb8063f6c9 code=0x7ffc0000 [ 222.607660][T20895] loop3: detected capacity change from 0 to 512 [ 222.619422][T20896] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7549'. [ 222.629960][T20895] EXT4-fs error (device loop3): ext4_xattr_inode_iget:446: comm syz.3.7548: error while reading EA inode 32 err=-116 [ 222.645586][T20895] EXT4-fs error (device loop3): ext4_xattr_inode_iget:446: comm syz.3.7548: error while reading EA inode 32 err=-116 [ 222.659779][T20895] EXT4-fs (loop3): 1 orphan inode deleted [ 222.683150][T20901] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 222.844890][T20930] loop2: detected capacity change from 0 to 512 [ 222.852857][T20930] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 222.863267][T20929] netlink: 32 bytes leftover after parsing attributes in process `syz.8.7575'. [ 222.874870][T20930] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.7565: bg 0: block 104: invalid block bitmap [ 222.893165][T20930] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 222.902226][T20930] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.7565: invalid indirect mapped block 1 (level 1) [ 222.917207][T20930] EXT4-fs (loop2): 1 truncate cleaned up [ 222.918343][T20937] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7567'. [ 222.938795][T20936] loop8: detected capacity change from 0 to 512 [ 222.956197][T20936] EXT4-fs error (device loop8): ext4_xattr_inode_iget:446: comm syz.8.7566: error while reading EA inode 32 err=-116 [ 222.969337][T20936] EXT4-fs error (device loop8): ext4_xattr_inode_iget:446: comm syz.8.7566: error while reading EA inode 32 err=-116 [ 222.984896][T20936] EXT4-fs (loop8): 1 orphan inode deleted [ 223.002660][T20941] 8021q: adding VLAN 0 to HW filter on device bond0 [ 223.051257][T20941] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 223.057798][T20952] program syz.2.7574 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 223.127692][T20962] program syz.2.7579 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 223.146636][T20963] netlink: 32 bytes leftover after parsing attributes in process `syz.3.7580'. [ 223.226975][ T23] kernel write not supported for file /3207/net/snmp (pid: 23 comm: kworker/1:0) [ 223.427590][T20991] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 223.444310][ T3415] ip6_vti0 speed is unknown, defaulting to 1000 [ 223.450630][ T3415] syz2: Port: 1 Link ACTIVE [ 223.464804][T20993] batadv_slave_1: entered promiscuous mode [ 223.472363][T20993] batman_adv: batadv0: Adding interface: macvlan2 [ 223.478937][T20993] batman_adv: batadv0: The MTU of interface macvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 223.506819][T20993] batman_adv: batadv0: Interface activated: macvlan2 [ 223.527514][ T3415] ip6_vti0 speed is unknown, defaulting to 1000 [ 223.546135][T21000] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=21000 comm=syz.8.7607 [ 223.613543][T21012] IPVS: sync thread started: state = BACKUP, mcast_ifn = hsr0, syncid = 4, id = 0 [ 223.809789][T21039] loop3: detected capacity change from 0 to 512 [ 224.085496][T21051] sctp: [Deprecated]: syz.8.7621 (pid 21051) Use of int in maxseg socket option. [ 224.085496][T21051] Use struct sctp_assoc_value instead [ 224.199567][T21062] vcan0 speed is unknown, defaulting to 1000 [ 224.287620][T21062] ip6_vti0 speed is unknown, defaulting to 1000 [ 224.435584][T21073] vlan5: entered allmulticast mode [ 224.440785][T21073] bridge_slave_0: entered allmulticast mode [ 224.648267][T21084] batadv_slave_1: entered promiscuous mode [ 224.661750][T21084] batman_adv: batadv0: Adding interface: macvlan2 [ 224.668266][T21084] batman_adv: batadv0: The MTU of interface macvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 224.706552][T21084] batman_adv: batadv0: Interface activated: macvlan2 [ 225.044256][T21134] vlan2: entered allmulticast mode [ 225.049660][T21134] bridge_slave_0: entered allmulticast mode [ 225.166026][T21144] tap0: tun_chr_ioctl cmd 1074025677 [ 225.185756][T21144] tap0: linktype set to 774 [ 225.369676][T21168] loop8: detected capacity change from 0 to 512 [ 225.478545][T21182] tap0: tun_chr_ioctl cmd 1074025677 [ 225.485553][T21182] tap0: linktype set to 774 [ 225.684971][T21228] SELinux: failed to load policy [ 225.769961][T21245] loop2: detected capacity change from 0 to 256 [ 225.794118][T21252] __nla_validate_parse: 2 callbacks suppressed [ 225.794138][T21252] netlink: 830 bytes leftover after parsing attributes in process `syz.3.7699'. [ 225.997860][T21295] sctp: [Deprecated]: syz.8.7711 (pid 21295) Use of int in max_burst socket option. [ 225.997860][T21295] Use struct sctp_assoc_value instead [ 226.218461][T21336] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7721'. [ 226.275283][T21342] loop3: detected capacity change from 0 to 1024 [ 226.411105][T21370] netlink: 'syz.3.7727': attribute type 3 has an invalid length. [ 226.419068][T21370] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7727'. [ 226.447853][ T9058] Bluetooth: hci0: Frame reassembly failed (-84) [ 226.454504][T21376] Bluetooth: hci0: Frame reassembly failed (-84) [ 226.790217][T21419] loop2: detected capacity change from 0 to 8192 [ 227.016698][T21426] loop8: detected capacity change from 0 to 128 [ 227.045632][T21428] wireguard0: entered promiscuous mode [ 227.051160][T21428] wireguard0: entered allmulticast mode [ 227.227936][T21440] loop5: detected capacity change from 0 to 128 [ 227.238814][T21441] loop6: detected capacity change from 0 to 2048 [ 227.258726][ T29] kauditd_printk_skb: 103 callbacks suppressed [ 227.258745][ T29] audit: type=1400 audit(1762599834.536:5038): avc: denied { ioctl } for pid=21439 comm="syz.6.7741" path="/723/control/file1" dev="loop6" ino=15 ioctlcmd=0x5829 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 227.265826][T21445] netlink: 7 bytes leftover after parsing attributes in process `syz.5.7742'. [ 227.293539][T21441] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters [ 227.323361][ T29] audit: type=1326 audit(1762599834.596:5039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21446 comm="syz.8.7743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4722b8f6c9 code=0x7ffc0000 [ 227.356232][ T29] audit: type=1326 audit(1762599834.596:5040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21446 comm="syz.8.7743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4722b8f6c9 code=0x7ffc0000 [ 227.379954][ T29] audit: type=1326 audit(1762599834.596:5041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21446 comm="syz.8.7743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=67 compat=0 ip=0x7f4722b8f6c9 code=0x7ffc0000 [ 227.403536][ T29] audit: type=1326 audit(1762599834.596:5042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21446 comm="syz.8.7743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4722b8f6c9 code=0x7ffc0000 [ 227.427200][ T29] audit: type=1326 audit(1762599834.636:5043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21446 comm="syz.8.7743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4722b8f6c9 code=0x7ffc0000 [ 227.462869][ T29] audit: type=1326 audit(1762599834.736:5044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21450 comm="syz.5.7746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fefaef66567 code=0x7ffc0000 [ 227.476755][T21449] loop8: detected capacity change from 0 to 1024 [ 227.486445][ T29] audit: type=1326 audit(1762599834.736:5045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21450 comm="syz.5.7746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fefaef0b779 code=0x7ffc0000 [ 227.516300][ T29] audit: type=1326 audit(1762599834.736:5046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21450 comm="syz.5.7746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fefaef66567 code=0x7ffc0000 [ 227.521381][T21454] SELinux: policydb version -2054264567 does not match my version range 15-35 [ 227.539978][ T29] audit: type=1326 audit(1762599834.736:5047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21450 comm="syz.5.7746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fefaef0b779 code=0x7ffc0000 [ 227.574764][T21454] SELinux: failed to load policy [ 227.605559][T21449] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 227.622467][T21458] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7747'. [ 227.631538][T21458] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7747'. [ 227.678966][T21467] loop2: detected capacity change from 0 to 128 [ 227.685252][T21469] netlink: 'syz.6.7752': attribute type 3 has an invalid length. [ 227.685272][T21469] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7752'. [ 227.747766][T21478] netlink: 45 bytes leftover after parsing attributes in process `syz.2.7758'. [ 227.781133][T21482] loop6: detected capacity change from 0 to 512 [ 227.795894][T21482] ext4 filesystem being mounted at /728/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 227.852809][T21496] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7765'. [ 227.861984][T21496] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7765'. [ 227.933695][T21508] loop6: detected capacity change from 0 to 128 [ 227.941678][T21505] ================================================================== [ 227.949981][T21505] BUG: KCSAN: data-race in selinux_inode_permission / selinux_inode_permission [ 227.959039][T21505] [ 227.961370][T21505] write to 0xffff8881042f3da0 of 4 bytes by task 21506 on cpu 0: [ 227.969094][T21505] selinux_inode_permission+0x3ac/0x740 [ 227.974665][T21505] security_inode_permission+0x6d/0xb0 [ 227.980149][T21505] inode_permission+0x106/0x310 [ 227.985029][T21505] link_path_walk+0x162/0x900 [ 227.989729][T21505] path_lookupat+0x63/0x2a0 [ 227.994268][T21505] do_o_path+0x45/0x130 [ 227.998449][T21505] path_openat+0x1df9/0x2170 [ 228.003056][T21505] do_filp_open+0x109/0x230 [ 228.007567][T21505] io_openat2+0x272/0x390 [ 228.011909][T21505] io_openat+0x1b/0x30 [ 228.015988][T21505] __io_issue_sqe+0xfe/0x2e0 [ 228.020598][T21505] io_issue_sqe+0x56/0xa80 [ 228.025056][T21505] io_wq_submit_work+0x3f7/0x5f0 [ 228.030018][T21505] io_worker_handle_work+0x44e/0x9b0 [ 228.035337][T21505] io_wq_worker+0x22e/0x860 [ 228.039860][T21505] ret_from_fork+0x122/0x1b0 [ 228.044469][T21505] ret_from_fork_asm+0x1a/0x30 [ 228.049248][T21505] [ 228.051581][T21505] read to 0xffff8881042f3da0 of 4 bytes by task 21505 on cpu 1: [ 228.059214][T21505] selinux_inode_permission+0x334/0x740 [ 228.064777][T21505] security_inode_permission+0x6d/0xb0 [ 228.070267][T21505] inode_permission+0x106/0x310 [ 228.075142][T21505] link_path_walk+0x162/0x900 [ 228.079841][T21505] path_lookupat+0x63/0x2a0 [ 228.084369][T21505] do_o_path+0x45/0x130 [ 228.088558][T21505] path_openat+0x1df9/0x2170 [ 228.093159][T21505] do_filp_open+0x109/0x230 [ 228.097674][T21505] io_openat2+0x272/0x390 [ 228.102021][T21505] io_openat+0x1b/0x30 [ 228.106100][T21505] __io_issue_sqe+0xfe/0x2e0 [ 228.110709][T21505] io_issue_sqe+0x56/0xa80 [ 228.115150][T21505] io_submit_sqes+0x675/0x1060 [ 228.119935][T21505] __se_sys_io_uring_enter+0x1c1/0x1b70 [ 228.125507][T21505] __x64_sys_io_uring_enter+0x78/0x90 [ 228.130993][T21505] x64_sys_call+0x2df0/0x3000 [ 228.135683][T21505] do_syscall_64+0xd2/0x200 [ 228.140200][T21505] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 228.146102][T21505] [ 228.148423][T21505] value changed: 0x00000000 -> 0x00000001 [ 228.154139][T21505] [ 228.156464][T21505] Reported by Kernel Concurrency Sanitizer on: [ 228.162622][T21505] CPU: 1 UID: 0 PID: 21505 Comm: syz.2.7768 Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 228.174096][T21505] Tainted: [W]=WARN [ 228.177906][T21505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 228.187968][T21505] ================================================================== [ 228.534293][T14556] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 228.534867][ T3867] Bluetooth: hci0: command 0x1003 tx timeout