last executing test programs: 1.730736505s ago: executing program 2 (id=1027): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) r1 = dup(r0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c) sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0xb, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x48043) r2 = dup(r0) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000000)='ip6gretap0\x00', 0x10) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000400)={0x0, @in={{0x2, 0x4e22, @empty}}, 0x8003, 0xbffc, 0xe652, 0x2, 0x4, 0x8, 0xff}, 0x9c) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0xce20, 0x6, @empty, 0x2d}}, 0x7, 0x1, 0xf06, 0x3, 0xb4, 0x7f, 0x9}, 0x9c) pipe2$9p(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RSETATTR(r4, &(0x7f0000000000)={0x7, 0x1b, 0x5}, 0xffffffec) setsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f00000002c0)=@assoc_value={0x0, 0x18}, 0x8) splice(r3, 0x0, r0, 0x0, 0xffff, 0x2) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in6={{0xa, 0x4e60, 0xeffffff2, @empty, 0x5}}, 0x10001fc, 0x6, 0xffff1896, 0x3, 0x26, 0xffffffb9, 0x1a}, 0x9c) 1.117455062s ago: executing program 3 (id=1046): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) poll(&(0x7f0000000940)=[{0xffffffffffffffff, 0x20}], 0x1, 0x100) 855.635383ms ago: executing program 1 (id=1050): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cgroup.freeze\x00', 0x275a, 0x0) r1 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0) dup2(r1, r0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x200000b, 0x12, r0, 0x0) mbind(&(0x7f0000000000/0x1000)=nil, 0x3000, 0x2, &(0x7f0000000300)=0x2, 0x7797, 0x3) 855.207503ms ago: executing program 2 (id=1051): r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="120100007882b740422c0917b7ca010203010902120001000000000904"], 0x0) syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000540)={0x44, &(0x7f0000000280)=ANY=[@ANYBLOB="202001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$rtl8150(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000b80)={0x84, &(0x7f00000008c0)={0x40, 0x12, 0x2, 'HU'}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000800)={0x84, &(0x7f0000000440)={0x20, 0x17, 0x5, "c3a3b05c8d"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 773.053796ms ago: executing program 3 (id=1052): mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) getsockopt$packet_int(0xffffffffffffffff, 0x107, 0xe, 0x0, &(0x7f00000006c0)) 702.07975ms ago: executing program 1 (id=1054): r0 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xa6e4, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x8001}}) io_uring_enter(r0, 0x2b93, 0xf9d0, 0x22, 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_POLL_REMOVE={0x7, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}) io_uring_enter(r0, 0x4e14, 0x912a, 0x41, 0x0, 0x0) 646.870612ms ago: executing program 3 (id=1058): syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x810}, 0x4) 646.652952ms ago: executing program 4 (id=1059): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000040)=[{0x20, 0x6, 0x0, 0xfffff010}, {0x20, 0x0, 0x0, 0xfffff03c}, {0x6, 0x0, 0x0, 0x4}]}, 0x10) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) socket$kcm(0x2, 0xa, 0x2) write$tun(r1, &(0x7f0000000240)=ANY=[], 0xfdef) 594.927244ms ago: executing program 3 (id=1061): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3, 0x5, &(0x7f0000006680)) mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x2000001, 0x6031, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) 583.100934ms ago: executing program 4 (id=1062): r0 = openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000000)={0xffffffffffffffff}, 0x13f, 0x3}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000300)={0x3, 0x40, 0xfa00, {{0xa, 0x4e28, 0x711, @loopback, 0x206}, {0xa, 0x4e21, 0x0, @empty, 0x8}, r1, 0x8}}, 0x48) write$RDMA_USER_CM_CMD_QUERY_ROUTE(r0, &(0x7f0000000040)={0x5, 0x10, 0xfa00, {&(0x7f0000000380), r1, 0x2}}, 0x18) 523.052257ms ago: executing program 4 (id=1063): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47) setsockopt$inet_tcp_int(r0, 0x6, 0x1e, &(0x7f00000000c0)=0x100000001, 0x4) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) socket$inet_mptcp(0x2, 0x1, 0x106) epoll_create1(0x0) sendmsg$NFT_BATCH(r1, 0x0, 0x20050800) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 522.654588ms ago: executing program 1 (id=1064): r0 = socket$netlink(0x10, 0x3, 0x9) writev(r0, &(0x7f00000005c0)=[{&(0x7f0000000800)="4e0fd63d647116c4a9adec1698ce44b948", 0x11}], 0x1) 522.526237ms ago: executing program 4 (id=1065): r0 = socket(0x2, 0x80805, 0x0) syz_emit_ethernet(0x2e, &(0x7f0000000000)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x0, 0xe000, 0x4, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e22, 0xc, 0x0, @gue={{0x1, 0x1, 0x1, 0x10, 0x0, @void}}}}}}}, 0x0) getsockopt$bt_hci(r0, 0x84, 0x80, &(0x7f0000000000)=""/4103, &(0x7f0000001080)=0x1007) 495.360658ms ago: executing program 1 (id=1066): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000040}, 0x24004000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) mincore(&(0x7f0000000000/0x800000)=nil, 0x800000, &(0x7f0000000000)=""/188) 475.731289ms ago: executing program 4 (id=1067): r0 = socket(0x10, 0x80003, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, 0x0, 0x0) sendto$inet6(r1, 0x0, 0x0, 0x20000845, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 406.878842ms ago: executing program 1 (id=1068): socket$inet6(0xa, 0x1, 0x0) geteuid() socket$nl_sock_diag(0x10, 0x3, 0x4) getpid() syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./file0\x00', 0x10, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x3, 0x2b5, &(0x7f0000000380)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0) creat(&(0x7f00000002c0)='./file0\x00', 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/locks\x00', 0x0, 0x0) preadv(r0, &(0x7f0000004ec0)=[{&(0x7f0000004bc0)=""/68, 0x44}], 0x1, 0x8000, 0x0) open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r1 = open(0x0, 0x4000, 0x0) preadv2(r1, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r2, 0x0, 0xb, &(0x7f0000000000)=0x6009, 0x4) sendto$inet(r2, 0x0, 0xffef, 0x20000000, &(0x7f0000000240)={0x2, 0x4e22, @remote}, 0x10) setsockopt$inet_int(r2, 0x0, 0xb, 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_SET(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000003000000018000180140002007665746830"], 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000) 406.653453ms ago: executing program 0 (id=1069): mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) getsockopt$packet_int(0xffffffffffffffff, 0x107, 0xe, 0x0, &(0x7f00000006c0)) 406.290922ms ago: executing program 4 (id=1070): prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0) 243.081649ms ago: executing program 0 (id=1071): syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x810}, 0x4) 242.823939ms ago: executing program 0 (id=1072): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r0, 0x0, 0x0) r1 = socket$inet6(0xa, 0x3, 0x87) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000280)={{{@in=@broadcast, @in=@remote, 0x4e22, 0x0, 0x4e24, 0x0, 0xa}, {0x0, 0x4, 0x0, 0x5, 0x6, 0x5, 0x0, 0x40000000000000}, {0x9, 0x100009, 0x53e5, 0xb}, 0x0, 0x1, 0x1, 0x0, 0x3, 0x3}, {{@in=@loopback, 0xffffeffd, 0x32}, 0xa, @in=@multicast1, 0x1502, 0x0, 0x0, 0x0, 0x4, 0xfffffffd, 0x1}}, 0xe8) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e24, 0x0, @empty}, 0x1c) 213.640031ms ago: executing program 0 (id=1073): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xcc}, 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendmmsg$inet6(r0, &(0x7f00000003c0)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x280020}, 0x1c, &(0x7f00000000c0)=[{&(0x7f0000000540)='\x00', 0x1}], 0x1}}], 0x1, 0x20008050) setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000180)={0x0, 0x9, 0x1, [0x1]}, 0xa) 213.110251ms ago: executing program 2 (id=1074): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_STAT_DEL(r0, &(0x7f0000000a40)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f0000000980)=ANY=[@ANYBLOB="380000001214010027bd7000fddbdf25080001000200000008001500ad96666008004f000000000008004b001300000008000300"], 0x38}, 0x1, 0x0, 0x0, 0x40084}, 0x810) 122.617854ms ago: executing program 3 (id=1075): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x20040, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'\x00', 0x2}) ioctl$TUNSETDEBUG(r0, 0x400454c9, 0xffffffffffffffff) ioctl$TUNSETLINK(r0, 0x400454cd, 0x10e) 80.872737ms ago: executing program 2 (id=1076): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47) setsockopt$inet_tcp_int(r0, 0x6, 0x1e, &(0x7f00000000c0)=0x100000001, 0x4) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) socket$inet_mptcp(0x2, 0x1, 0x106) epoll_create1(0x0) sendmsg$NFT_BATCH(r1, 0x0, 0x20050800) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 80.288037ms ago: executing program 0 (id=1077): r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r1, &(0x7f0000000080)=@pppol2tpv3in6={0x18, 0x1, {0x0, r0, 0x1, 0x0, 0x0, 0x0, {0xa, 0x0, 0x6, @private0}}}, 0x3a) 33.967858ms ago: executing program 2 (id=1078): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4) r1 = socket$inet6(0xa, 0x800000000000002, 0x0) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x41, &(0x7f0000000340)=0x63ba, 0x4) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, 0x0, 0x0) 33.581078ms ago: executing program 0 (id=1079): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x2}, [@alu={0x7, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffffffffff0}, @jmp={0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0xfffffffffffffffc}]}, &(0x7f0000000540)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='tlb_flush\x00', r0, 0x0, 0x80000000000}, 0x18) 449.78µs ago: executing program 1 (id=1080): syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3000046, &(0x7f0000000bc0)={[{@dioread_nolock}, {@data_err_abort}, {@inlinecrypt}, {@noauto_da_alloc}, {@data_err_ignore}, {@nojournal_checksum}, {@errors_remount}, {@grpquota}, {@noblock_validity}, {@user_xattr}, {@dioread_lock}, {@errors_remount}]}, 0x11, 0x553, &(0x7f0000001080)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) getdents64(r0, 0x0, 0x31) 255.05µs ago: executing program 3 (id=1081): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = add_key$keyring(&(0x7f0000000240), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff) keyctl$restrict_keyring(0xa, r0, 0x0, &(0x7f0000000840)='ie\x00\x00\x00\x00\x00~d\x99\xcb\x16\xce!\xe3\x95\x15o\x17{M\x7f\xffw\xf2\xd7\xec\x1dk\xa8.\xdf\xd5\xc3\x98\xa0\xf9\xc0\xa4O\xb3g\x87g\x04\xfd\xbc\x01\xf9\f\x1d\x84\x8f\x16fY,\xa5r8\xca&M\xe2\f\x80\x8d,\xe2\xa7\xf97\x981\x05\xf7\x8b\xbd\xa3\x10\xd8E\xe1 [ 29.009825][ T3604] __dump_stack+0x1d/0x30 [ 29.009847][ T3604] dump_stack_lvl+0xe8/0x140 [ 29.009869][ T3604] dump_stack+0x15/0x1b [ 29.009886][ T3604] should_fail_ex+0x265/0x280 [ 29.009905][ T3604] ? sctp_add_bind_addr+0x71/0x1e0 [ 29.009956][ T3604] should_failslab+0x8c/0xb0 [ 29.010046][ T3604] __kmalloc_cache_noprof+0x4c/0x4a0 [ 29.010104][ T3604] sctp_add_bind_addr+0x71/0x1e0 [ 29.010126][ T3604] sctp_copy_local_addr_list+0x199/0x220 [ 29.010240][ T3604] sctp_copy_one_addr+0x7f/0x280 [ 29.010262][ T3604] sctp_bind_addr_copy+0x79/0x290 [ 29.010285][ T3604] sctp_assoc_set_bind_addr_from_ep+0xce/0xe0 [ 29.010361][ T3604] sctp_connect_new_asoc+0x1c3/0x3a0 [ 29.010431][ T3604] sctp_sendmsg+0xf10/0x18d0 [ 29.010459][ T3604] ? selinux_socket_sendmsg+0xd1/0x1b0 [ 29.010555][ T3604] ? __pfx_sctp_sendmsg+0x10/0x10 [ 29.010578][ T3604] inet_sendmsg+0xc5/0xd0 [ 29.010602][ T3604] __sock_sendmsg+0x102/0x180 [ 29.010626][ T3604] ____sys_sendmsg+0x31e/0x4e0 [ 29.010719][ T3604] ___sys_sendmsg+0x17b/0x1d0 [ 29.010752][ T3604] __x64_sys_sendmsg+0xd4/0x160 [ 29.010778][ T3604] x64_sys_call+0x191e/0x3000 [ 29.010801][ T3604] do_syscall_64+0xd2/0x200 [ 29.010870][ T3604] ? arch_exit_to_user_mode_prepare+0x27/0x80 [ 29.010947][ T3604] ? irqentry_exit_to_user_mode+0x7b/0xa0 [ 29.010989][ T3604] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 29.011009][ T3604] RIP: 0033:0x7f96156af749 [ 29.011024][ T3604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 29.011040][ T3604] RSP: 002b:00007f961410f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 29.011066][ T3604] RAX: ffffffffffffffda RBX: 00007f9615905fa0 RCX: 00007f96156af749 [ 29.011080][ T3604] RDX: 0000000000008050 RSI: 00002000000000c0 RDI: 0000000000000004 [ 29.011136][ T3604] RBP: 00007f961410f090 R08: 0000000000000000 R09: 0000000000000000 [ 29.011151][ T3604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 29.011165][ T3604] R13: 00007f9615906038 R14: 00007f9615905fa0 R15: 00007ffccc49d218 [ 29.011186][ T3604] [ 29.304845][ T3616] loop0: detected capacity change from 0 to 128 [ 29.403358][ T3620] netlink: 'syz.1.48': attribute type 39 has an invalid length. [ 29.495362][ T3625] loop4: detected capacity change from 0 to 512 [ 29.604475][ T3625] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 29.682858][ T3625] ext4 filesystem being mounted at /5/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 29.700737][ T3623] loop2: detected capacity change from 0 to 512 [ 29.840407][ T3623] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.50: bg 0: block 248: padding at end of block bitmap is not set [ 29.868711][ T3623] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.50: Failed to acquire dquot type 1 [ 29.880416][ T3623] EXT4-fs (loop2): 1 truncate cleaned up [ 29.886262][ T3623] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 29.898915][ T3623] ext4 filesystem being mounted at /6/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 29.944289][ T3623] netlink: 'syz.2.50': attribute type 1 has an invalid length. [ 29.951966][ T3623] netlink: 224 bytes leftover after parsing attributes in process `syz.2.50'. [ 30.359913][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 30.451798][ T3647] ALSA: seq fatal error: cannot create timer (-19) [ 30.458587][ T3650] loop0: detected capacity change from 0 to 128 [ 30.596692][ T3663] loop0: detected capacity change from 0 to 1024 [ 30.666307][ T3663] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 30.703539][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 30.736106][ T3672] loop0: detected capacity change from 0 to 512 [ 30.749752][ T3672] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.63: bg 0: block 248: padding at end of block bitmap is not set [ 30.764369][ T3672] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.63: Failed to acquire dquot type 1 [ 30.776154][ T3672] EXT4-fs (loop0): 1 truncate cleaned up [ 30.782526][ T3672] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 30.795601][ T3672] ext4 filesystem being mounted at /19/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 30.824088][ T3672] netlink: 'syz.0.63': attribute type 1 has an invalid length. [ 30.831762][ T3672] netlink: 224 bytes leftover after parsing attributes in process `syz.0.63'. [ 30.837463][ T3676] 9p: Unknown access argument : -22 [ 30.970090][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 31.033164][ T3678] netlink: 12 bytes leftover after parsing attributes in process `syz.0.64'. [ 31.048972][ T3678] loop0: detected capacity change from 0 to 512 [ 31.063820][ T3678] EXT4-fs error (device loop0): ext4_xattr_inode_iget:446: comm syz.0.64: error while reading EA inode 32 err=-116 [ 31.078242][ T3678] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 31.098359][ T3678] EXT4-fs error (device loop0): ext4_xattr_inode_iget:446: comm syz.0.64: error while reading EA inode 32 err=-116 [ 31.112762][ T3678] EXT4-fs (loop0): 1 orphan inode deleted [ 31.119466][ T3678] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 31.209226][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 31.248409][ T3682] loop1: detected capacity change from 0 to 128 [ 31.380329][ T3690] loop0: detected capacity change from 0 to 128 [ 31.392451][ T3690] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 31.405519][ T3690] ext4 filesystem being mounted at /23/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 31.645290][ T3313] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 31.717041][ T3712] 9p: Unknown access argument : -22 [ 31.769239][ T3714] loop0: detected capacity change from 0 to 1024 [ 31.829793][ T3714] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 31.848920][ T3711] loop3: detected capacity change from 0 to 8192 [ 31.955426][ T3718] loop2: detected capacity change from 0 to 2048 [ 31.962397][ T3718] EXT4-fs: Ignoring removed nomblk_io_submit option [ 31.986699][ T3718] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 32.054006][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 32.130432][ T29] kauditd_printk_skb: 1185 callbacks suppressed [ 32.130452][ T29] audit: type=1326 audit(1764482462.452:1270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3724 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0236ff749 code=0x7ffc0000 [ 32.161482][ T29] audit: type=1326 audit(1764482462.452:1271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3724 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff0236ff749 code=0x7ffc0000 [ 32.184868][ T29] audit: type=1326 audit(1764482462.452:1272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3724 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0236ff749 code=0x7ffc0000 [ 32.208189][ T29] audit: type=1326 audit(1764482462.462:1273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3724 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0236ff749 code=0x7ffc0000 [ 32.232161][ T29] audit: type=1326 audit(1764482462.462:1274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3724 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff0236ff749 code=0x7ffc0000 [ 32.255882][ T29] audit: type=1326 audit(1764482462.462:1275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3724 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0236ff749 code=0x7ffc0000 [ 32.279644][ T29] audit: type=1326 audit(1764482462.462:1276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3724 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7ff0236ff749 code=0x7ffc0000 [ 32.299692][ T3727] 9pnet_fd: Insufficient options for proto=fd [ 32.303171][ T29] audit: type=1326 audit(1764482462.462:1277): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3724 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0236ff749 code=0x7ffc0000 [ 32.332813][ T29] audit: type=1326 audit(1764482462.462:1278): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3724 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0236ff749 code=0x7ffc0000 [ 32.356627][ T29] audit: type=1326 audit(1764482462.462:1279): auid=4294967295 uid=0 gid=60928 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3724 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff0236ff749 code=0x7ffc0000 [ 32.394290][ T3725] ALSA: seq fatal error: cannot create timer (-19) [ 32.424107][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 32.558702][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 32.606904][ T3743] loop0: detected capacity change from 0 to 512 [ 32.648500][ T3743] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.84: bg 0: block 248: padding at end of block bitmap is not set [ 32.682832][ T3743] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.84: Failed to acquire dquot type 1 [ 32.708110][ T3747] ALSA: seq fatal error: cannot create timer (-19) [ 32.722608][ T3743] EXT4-fs (loop0): 1 truncate cleaned up [ 32.738474][ T3743] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 32.758565][ T3743] ext4 filesystem being mounted at /28/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 32.799976][ T3743] netlink: 'syz.0.84': attribute type 1 has an invalid length. [ 32.807597][ T3743] netlink: 224 bytes leftover after parsing attributes in process `syz.0.84'. [ 32.817350][ T3755] loop2: detected capacity change from 0 to 128 [ 32.881110][ T3759] loop2: detected capacity change from 0 to 1024 [ 32.905629][ T3759] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 32.918241][ T3757] loop4: detected capacity change from 0 to 8192 [ 32.942714][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 33.005599][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 33.082516][ T3775] loop0: detected capacity change from 0 to 1024 [ 33.124356][ T3775] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 33.141594][ T3786] loop4: detected capacity change from 0 to 128 [ 33.184612][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 33.199492][ T3790] loop4: detected capacity change from 0 to 512 [ 33.222144][ T3790] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.104: bg 0: block 248: padding at end of block bitmap is not set [ 33.226196][ T3792] loop0: detected capacity change from 0 to 1024 [ 33.238843][ T3790] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.104: Failed to acquire dquot type 1 [ 33.254991][ T3790] EXT4-fs (loop4): 1 truncate cleaned up [ 33.261723][ T3790] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 33.274524][ T3790] ext4 filesystem being mounted at /13/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 33.294068][ T3790] netlink: 'syz.4.104': attribute type 1 has an invalid length. [ 33.301970][ T3790] netlink: 224 bytes leftover after parsing attributes in process `syz.4.104'. [ 33.315492][ T3798] loop2: detected capacity change from 0 to 512 [ 33.324068][ T3798] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 33.327146][ T3792] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 33.343020][ T3798] EXT4-fs (loop2): 1 orphan inode deleted [ 33.352106][ T3798] EXT4-fs (loop2): 1 truncate cleaned up [ 33.365294][ T3798] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 33.380649][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 33.435256][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 33.483442][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 33.551522][ T3817] netlink: 48 bytes leftover after parsing attributes in process `syz.3.114'. [ 33.577968][ T3817] netlink: 12 bytes leftover after parsing attributes in process `syz.3.114'. [ 33.613070][ T3825] loop0: detected capacity change from 0 to 512 [ 33.639718][ T3825] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.119: bg 0: block 248: padding at end of block bitmap is not set [ 33.655365][ T3825] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.119: Failed to acquire dquot type 1 [ 33.721563][ T3825] EXT4-fs (loop0): 1 truncate cleaned up [ 33.727780][ T3825] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 33.740912][ T3825] ext4 filesystem being mounted at /35/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 33.762646][ T3825] netlink: 'syz.0.119': attribute type 1 has an invalid length. [ 33.770607][ T3825] netlink: 224 bytes leftover after parsing attributes in process `syz.0.119'. [ 33.778578][ T3839] netlink: 96 bytes leftover after parsing attributes in process `syz.3.122'. [ 33.850115][ T3844] loop4: detected capacity change from 0 to 512 [ 33.874899][ T3844] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 33.901454][ T3844] EXT4-fs (loop4): 1 orphan inode deleted [ 33.907252][ T3844] EXT4-fs (loop4): 1 truncate cleaned up [ 33.927303][ T3844] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 33.959945][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 34.046186][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 34.084230][ T3852] loop0: detected capacity change from 0 to 128 [ 34.407009][ T3880] loop3: detected capacity change from 0 to 512 [ 34.461841][ T3880] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.138: bg 0: block 248: padding at end of block bitmap is not set [ 34.488007][ T3880] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.138: Failed to acquire dquot type 1 [ 34.495871][ T3884] 9p: Unknown access argument : -22 [ 34.503119][ T3880] EXT4-fs (loop3): 1 truncate cleaned up [ 34.518831][ T3880] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 34.540400][ T3880] ext4 filesystem being mounted at /33/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 34.545126][ T3872] mmap: syz.0.133 (3872) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 34.687758][ T3880] netlink: 'syz.3.138': attribute type 1 has an invalid length. [ 34.695578][ T3880] netlink: 224 bytes leftover after parsing attributes in process `syz.3.138'. [ 34.725834][ T3886] netlink: 8 bytes leftover after parsing attributes in process `syz.4.140'. [ 34.750486][ T3376] IPVS: starting estimator thread 0... [ 34.820998][ T3872] loop0: detected capacity change from 0 to 764 [ 34.838232][ T3888] IPVS: using max 2976 ests per chain, 148800 per kthread [ 34.849059][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 34.866619][ T3872] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 35.157040][ T3907] netlink: 20 bytes leftover after parsing attributes in process `syz.0.148'. [ 35.169798][ T3907] netlink: 20 bytes leftover after parsing attributes in process `syz.0.148'. [ 35.187538][ T3903] loop4: detected capacity change from 0 to 128 [ 35.195553][ T3907] loop0: detected capacity change from 0 to 512 [ 35.233447][ T3907] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 35.280634][ T3907] netlink: 4 bytes leftover after parsing attributes in process `syz.0.148'. [ 35.392595][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 36.025033][ T3935] loop1: detected capacity change from 0 to 2048 [ 36.042558][ T3935] EXT4-fs: Ignoring removed nomblk_io_submit option [ 36.059863][ T3937] netlink: 'syz.2.157': attribute type 10 has an invalid length. [ 36.073048][ T3937] team0: Port device dummy0 added [ 36.088417][ T3938] loop0: detected capacity change from 0 to 1024 [ 36.110276][ T3938] EXT4-fs: Ignoring removed orlov option [ 36.116041][ T3938] EXT4-fs: Ignoring removed nomblk_io_submit option [ 36.143132][ T3935] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 36.190255][ T3938] ext4: Unknown parameter 'subj_role' [ 36.287785][ T3935] EXT4-fs error (device loop1): ext4_read_inline_dir:1476: inode #12: block 5: comm syz.1.159: path /23/file1/file0: bad entry in directory: directory entry overrun - offset=24, inode=13, rec_len=7952, size=80 fake=0 [ 36.367959][ T3935] EXT4-fs (loop1): Remounting filesystem read-only [ 36.398984][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 36.414945][ T3949] loop3: detected capacity change from 0 to 1024 [ 36.519661][ T3949] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 36.540199][ T3959] loop0: detected capacity change from 0 to 512 [ 36.578570][ T3959] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 36.638079][ T3959] EXT4-fs (loop0): 1 orphan inode deleted [ 36.644006][ T3959] EXT4-fs (loop0): 1 truncate cleaned up [ 36.659129][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 36.679548][ T3959] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 36.732076][ T3964] loop4: detected capacity change from 0 to 512 [ 36.738968][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 36.763164][ T3964] FAT-fs (loop4): bogus number of FAT sectors [ 36.769339][ T3964] FAT-fs (loop4): Can't find a valid FAT filesystem [ 36.796653][ T3962] loop2: detected capacity change from 0 to 8192 [ 36.805737][ T3970] 9p: Unknown access argument : -22 [ 36.911039][ T3973] vhci_hcd: invalid port number 96 [ 36.916243][ T3973] vhci_hcd: default hub control req: 2000 vfffc i0060 l7 [ 36.930657][ T3975] loop0: detected capacity change from 0 to 128 [ 37.156075][ T29] kauditd_printk_skb: 341 callbacks suppressed [ 37.156141][ T29] audit: type=1326 audit(1764482467.492:1613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3974 comm="syz.0.171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f339ff7f807 code=0x7ffc0000 [ 37.185925][ T29] audit: type=1326 audit(1764482467.492:1614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3974 comm="syz.0.171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f339ff36bdd code=0x7ffc0000 [ 37.209186][ T29] audit: type=1326 audit(1764482467.492:1615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3974 comm="syz.0.171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f339ffb3e89 code=0x7ffc0000 [ 37.232738][ T29] audit: type=1326 audit(1764482467.492:1616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3974 comm="syz.0.171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f339ff36c47 code=0x7ffc0000 [ 37.256247][ T29] audit: type=1326 audit(1764482467.492:1618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3974 comm="syz.0.171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7f339ff36357 code=0x7ffc0000 [ 37.279737][ T29] audit: type=1326 audit(1764482467.492:1617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3974 comm="syz.0.171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339ff7f749 code=0x7ffc0000 [ 37.303166][ T29] audit: type=1326 audit(1764482467.492:1619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3974 comm="syz.0.171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f339ff363b6 code=0x7ffc0000 [ 37.326507][ T29] audit: type=1326 audit(1764482467.492:1621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3974 comm="syz.0.171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f339ff7f34b code=0x7ffc0000 [ 37.349859][ T29] audit: type=1326 audit(1764482467.492:1620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3974 comm="syz.0.171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339ff7f749 code=0x7ffc0000 [ 37.373238][ T29] audit: type=1326 audit(1764482467.492:1622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3974 comm="syz.0.171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=25 compat=0 ip=0x7f339ff7f749 code=0x7ffc0000 [ 37.513213][ T3985] lo speed is unknown, defaulting to 1000 [ 37.520170][ T3985] lo speed is unknown, defaulting to 1000 [ 37.526434][ T3985] lo speed is unknown, defaulting to 1000 [ 37.561380][ T3985] infiniband sz1: set active [ 37.566130][ T3985] infiniband sz1: added lo [ 37.571245][ T3376] lo speed is unknown, defaulting to 1000 [ 37.598179][ T3985] RDS/IB: sz1: added [ 37.604471][ T3985] smc: adding ib device sz1 with port count 1 [ 37.613149][ T3985] smc: ib device sz1 port 1 has no pnetid [ 37.619337][ T3376] lo speed is unknown, defaulting to 1000 [ 37.625474][ T3985] lo speed is unknown, defaulting to 1000 [ 37.661559][ T3985] lo speed is unknown, defaulting to 1000 [ 37.696976][ T3985] lo speed is unknown, defaulting to 1000 [ 37.733430][ T3985] lo speed is unknown, defaulting to 1000 [ 37.768432][ T3985] lo speed is unknown, defaulting to 1000 [ 37.856676][ T3991] loop0: detected capacity change from 0 to 512 [ 37.865836][ T3991] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 38.021158][ T3991] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 38.049237][ T3991] ext4 filesystem being mounted at /47/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 38.257266][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 38.597661][ T4015] loop1: detected capacity change from 0 to 512 [ 38.605469][ T4015] FAT-fs (loop1): bogus number of FAT sectors [ 38.611649][ T4015] FAT-fs (loop1): Can't find a valid FAT filesystem [ 38.669206][ T4022] loop2: detected capacity change from 0 to 512 [ 38.730462][ T4022] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.184: bg 0: block 248: padding at end of block bitmap is not set [ 38.753975][ T4032] loop4: detected capacity change from 0 to 1024 [ 38.761953][ T4022] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.184: Failed to acquire dquot type 1 [ 38.764460][ T4023] vhci_hcd: invalid port number 96 [ 38.778373][ T4023] vhci_hcd: default hub control req: 2000 vfffc i0060 l7 [ 38.814811][ T4032] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 38.869375][ T4022] EXT4-fs (loop2): 1 truncate cleaned up [ 38.886299][ T4022] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 38.899380][ T4022] ext4 filesystem being mounted at /31/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 38.957359][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 38.981359][ T4050] loop3: detected capacity change from 0 to 256 [ 38.988090][ T4050] vfat: Unknown parameter '01777777777777777777777' [ 38.999038][ T4050] IPv6: NLM_F_CREATE should be specified when creating new route [ 39.020483][ T4022] netlink: 'syz.2.184': attribute type 1 has an invalid length. [ 39.028451][ T4022] __nla_validate_parse: 2 callbacks suppressed [ 39.028464][ T4022] netlink: 224 bytes leftover after parsing attributes in process `syz.2.184'. [ 39.293287][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 39.438190][ T4069] serio: Serial port ptm0 [ 39.457944][ T4071] loop2: detected capacity change from 0 to 1024 [ 39.479400][ T4071] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 39.557925][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 39.842240][ T4080] loop1: detected capacity change from 0 to 512 [ 39.853602][ T4080] FAT-fs (loop1): bogus number of FAT sectors [ 39.859727][ T4080] FAT-fs (loop1): Can't find a valid FAT filesystem [ 40.050380][ T4081] vhci_hcd: invalid port number 96 [ 40.055854][ T4081] vhci_hcd: default hub control req: 2000 vfffc i0060 l7 [ 40.161533][ T4092] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8192 sclass=netlink_route_socket pid=4092 comm=syz.3.205 [ 40.169527][ T4091] loop0: detected capacity change from 0 to 8192 [ 40.219232][ T4094] netlink: 12 bytes leftover after parsing attributes in process `syz.0.208'. [ 40.257530][ T4097] loop0: detected capacity change from 0 to 512 [ 40.272865][ T4099] loop4: detected capacity change from 0 to 128 [ 40.302952][ T4097] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.209: bg 0: block 248: padding at end of block bitmap is not set [ 40.324252][ T4097] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.209: Failed to acquire dquot type 1 [ 40.336719][ T4097] EXT4-fs (loop0): 1 truncate cleaned up [ 40.343083][ T4097] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 40.355788][ T4097] ext4 filesystem being mounted at /57/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 40.372152][ T4097] netlink: 'syz.0.209': attribute type 1 has an invalid length. [ 40.379925][ T4097] netlink: 224 bytes leftover after parsing attributes in process `syz.0.209'. [ 40.500920][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 40.528946][ T4107] loop2: detected capacity change from 0 to 8192 [ 40.565223][ T4109] netlink: 12 bytes leftover after parsing attributes in process `syz.0.213'. [ 40.736006][ T4118] loop0: detected capacity change from 0 to 128 [ 40.807642][ T4124] loop2: detected capacity change from 0 to 1024 [ 40.815249][ T4124] EXT4-fs: Ignoring removed nomblk_io_submit option [ 40.832777][ T4126] loop0: detected capacity change from 0 to 1024 [ 40.851326][ T4124] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 40.909503][ T4126] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 41.018902][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 41.104073][ T4139] loop0: detected capacity change from 0 to 512 [ 41.138264][ T4139] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.224: bg 0: block 248: padding at end of block bitmap is not set [ 41.186603][ T4139] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.224: Failed to acquire dquot type 1 [ 41.203233][ T4145] loop4: detected capacity change from 0 to 128 [ 41.238338][ T4139] EXT4-fs (loop0): 1 truncate cleaned up [ 41.238851][ T4139] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 41.238962][ T4139] ext4 filesystem being mounted at /64/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 41.251486][ T4139] netlink: 'syz.0.224': attribute type 1 has an invalid length. [ 41.251503][ T4139] netlink: 224 bytes leftover after parsing attributes in process `syz.0.224'. [ 41.387169][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 41.608101][ T4161] bridge0: port 3(batadv1) entered blocking state [ 41.614982][ T4161] bridge0: port 3(batadv1) entered disabled state [ 41.638806][ T4161] batadv1: entered allmulticast mode [ 41.644761][ T4161] batadv1: entered promiscuous mode [ 41.924821][ T4175] loop0: detected capacity change from 0 to 128 [ 42.092344][ T4177] 9p: Unknown access argument : -22 [ 42.168624][ T12] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled [ 42.177882][ T12] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled [ 42.198649][ T4180] 9p: Unknown access argument : -22 [ 42.370389][ T4182] loop0: detected capacity change from 0 to 8192 [ 42.927155][ T4124] syz.2.221 (4124) used greatest stack depth: 7304 bytes left [ 42.939206][ T4186] lo speed is unknown, defaulting to 1000 [ 42.985435][ T29] kauditd_printk_skb: 1244 callbacks suppressed [ 42.985454][ T29] audit: type=1400 audit(1764482473.312:2861): avc: denied { create } for pid=4183 comm="syz.0.239" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 43.018850][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 43.336938][ T4202] 9p: Unknown access argument : -22 [ 43.410469][ T4204] loop3: detected capacity change from 0 to 128 [ 43.523427][ T4206] loop3: detected capacity change from 0 to 1024 [ 43.550565][ T4206] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 43.667986][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.188594][ T4219] loop0: detected capacity change from 0 to 128 [ 44.246654][ T29] audit: type=1400 audit(1764482474.582:2862): avc: denied { bind } for pid=4211 comm="syz.3.246" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 44.677570][ T4227] loop4: detected capacity change from 0 to 2048 [ 44.687274][ T4228] loop0: detected capacity change from 0 to 128 [ 44.697461][ T29] audit: type=1400 audit(1764482474.612:2863): avc: denied { setopt } for pid=4211 comm="syz.3.246" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 44.717468][ T29] audit: type=1326 audit(1764482474.622:2864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4211 comm="syz.3.246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f110d96f749 code=0x7ffc0000 [ 44.729175][ T4230] loop1: detected capacity change from 0 to 1024 [ 44.741096][ T29] audit: type=1326 audit(1764482474.622:2865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4211 comm="syz.3.246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f110d96f749 code=0x7ffc0000 [ 44.771431][ T29] audit: type=1326 audit(1764482474.622:2866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4211 comm="syz.3.246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f110d96f749 code=0x7ffc0000 [ 44.779654][ T4227] EXT4-fs: Ignoring removed nomblk_io_submit option [ 44.795271][ T29] audit: type=1326 audit(1764482474.622:2867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4211 comm="syz.3.246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f110d96f749 code=0x7ffc0000 [ 44.825792][ T29] audit: type=1326 audit(1764482474.622:2868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4211 comm="syz.3.246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f110d96f749 code=0x7ffc0000 [ 44.849248][ T29] audit: type=1326 audit(1764482474.622:2869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4211 comm="syz.3.246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f110d96f749 code=0x7ffc0000 [ 44.872597][ T29] audit: type=1326 audit(1764482474.622:2870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4211 comm="syz.3.246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f110d96f749 code=0x7ffc0000 [ 44.908922][ T4230] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 44.989255][ T4227] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 45.026102][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.040976][ T4227] EXT4-fs error (device loop4): ext4_read_inline_dir:1476: inode #12: block 5: comm syz.4.253: path /45/file1/file0: bad entry in directory: directory entry overrun - offset=24, inode=13, rec_len=7952, size=80 fake=0 [ 45.062396][ T4227] EXT4-fs (loop4): Remounting filesystem read-only [ 45.088630][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.234988][ T4257] serio: Serial port ptm0 [ 45.414295][ T4275] Zero length message leads to an empty skb [ 45.825580][ T4323] loop2: detected capacity change from 0 to 512 [ 45.851995][ T4323] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.294: bg 0: block 248: padding at end of block bitmap is not set [ 45.878539][ T4323] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.294: Failed to acquire dquot type 1 [ 45.892088][ T4318] loop0: detected capacity change from 0 to 8192 [ 45.908264][ T4323] EXT4-fs (loop2): 1 truncate cleaned up [ 45.914350][ T4323] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 45.937698][ T4323] ext4 filesystem being mounted at /53/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 45.968863][ T4323] netlink: 'syz.2.294': attribute type 1 has an invalid length. [ 45.976624][ T4323] netlink: 224 bytes leftover after parsing attributes in process `syz.2.294'. [ 45.983301][ T4329] loop4: detected capacity change from 0 to 512 [ 46.008184][ T4329] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 46.106576][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.122289][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.188799][ T4350] loop2: detected capacity change from 0 to 128 [ 46.203066][ T4352] loop4: detected capacity change from 0 to 1024 [ 46.213219][ T4348] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 46.266181][ T4352] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 46.321848][ T4358] loop0: detected capacity change from 0 to 512 [ 46.332962][ T4352] ext4 filesystem being mounted at /50/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 46.375816][ T4358] FAT-fs (loop0): error, corrupted directory (invalid entries) [ 46.585279][ T4352] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4352 comm=syz.4.303 [ 46.676815][ T385] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: comm kworker/u8:5: lblock 0 mapped to illegal pblock 0 (length 1) [ 46.694287][ T385] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 46.706803][ T385] EXT4-fs (loop4): This should not happen!! Data will be lost [ 46.706803][ T385] [ 46.730306][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 47.127363][ T4417] 9p: Unknown access argument : -22 [ 47.199841][ T4421] loop4: detected capacity change from 0 to 1024 [ 47.235401][ T4421] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 47.252999][ T4423] hub 9-0:1.0: USB hub found [ 47.257781][ T4423] hub 9-0:1.0: 8 ports detected [ 47.271940][ T4423] netlink: 20 bytes leftover after parsing attributes in process `syz.1.320'. [ 47.281074][ T4423] netlink: 20 bytes leftover after parsing attributes in process `syz.1.320'. [ 47.346849][ T4423] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 47.378228][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.475083][ T4439] loop4: detected capacity change from 0 to 2048 [ 47.524179][ T4439] EXT4-fs: Ignoring removed nomblk_io_submit option [ 47.560410][ T4439] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 47.617169][ T4439] EXT4-fs error (device loop4): ext4_read_inline_dir:1476: inode #12: block 5: comm syz.4.325: path /54/file1/file0: bad entry in directory: directory entry overrun - offset=24, inode=13, rec_len=7952, size=80 fake=0 [ 47.643936][ T4453] sctp: [Deprecated]: syz.2.330 (pid 4453) Use of struct sctp_assoc_value in delayed_ack socket option. [ 47.643936][ T4453] Use struct sctp_sack_info instead [ 47.662284][ T4439] EXT4-fs (loop4): Remounting filesystem read-only [ 47.669181][ T4447] loop1: detected capacity change from 0 to 8192 [ 47.678378][ T4453] capability: warning: `syz.2.330' uses 32-bit capabilities (legacy support in use) [ 47.774107][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.844487][ T4465] loop1: detected capacity change from 0 to 512 [ 47.870898][ T4465] FAT-fs (loop1): bogus number of FAT sectors [ 47.877026][ T4465] FAT-fs (loop1): Can't find a valid FAT filesystem [ 48.001952][ T4473] vhci_hcd: invalid port number 96 [ 48.007266][ T4473] vhci_hcd: default hub control req: 2000 vfffc i0060 l7 [ 48.027124][ T29] kauditd_printk_skb: 452 callbacks suppressed [ 48.027141][ T29] audit: type=1400 audit(1764482478.362:3321): avc: denied { module_load } for pid=4477 comm="syz.3.342" path="/sys/kernel/notes" dev="sysfs" ino=213 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1 [ 48.058575][ T4479] loop4: detected capacity change from 0 to 128 [ 48.085445][ T29] audit: type=1326 audit(1764482478.422:3322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4476 comm="syz.4.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eddedf749 code=0x7ffc0000 [ 48.108968][ T29] audit: type=1326 audit(1764482478.422:3323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4476 comm="syz.4.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eddedf749 code=0x7ffc0000 [ 48.140735][ T29] audit: type=1326 audit(1764482478.422:3324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4476 comm="syz.4.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eddedf749 code=0x7ffc0000 [ 48.164249][ T29] audit: type=1326 audit(1764482478.422:3325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4476 comm="syz.4.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eddedf749 code=0x7ffc0000 [ 48.187810][ T29] audit: type=1326 audit(1764482478.482:3326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4476 comm="syz.4.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2eddedf749 code=0x7ffc0000 [ 48.211209][ T29] audit: type=1326 audit(1764482478.482:3327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4476 comm="syz.4.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eddedf749 code=0x7ffc0000 [ 48.234839][ T29] audit: type=1326 audit(1764482478.482:3328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4476 comm="syz.4.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eddedf749 code=0x7ffc0000 [ 48.258207][ T29] audit: type=1326 audit(1764482478.482:3329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4476 comm="syz.4.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eddedf749 code=0x7ffc0000 [ 48.281680][ T29] audit: type=1326 audit(1764482478.482:3331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4476 comm="syz.4.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2eddedf749 code=0x7ffc0000 [ 48.384974][ T4487] loop2: detected capacity change from 0 to 512 [ 48.419853][ T4487] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.344: bg 0: block 248: padding at end of block bitmap is not set [ 48.446983][ T4487] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.344: Failed to acquire dquot type 1 [ 48.544488][ T4487] EXT4-fs (loop2): 1 truncate cleaned up [ 48.550783][ T4487] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 48.563758][ T4487] ext4 filesystem being mounted at /64/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 48.588295][ T4487] netlink: 'syz.2.344': attribute type 1 has an invalid length. [ 48.595971][ T4487] netlink: 224 bytes leftover after parsing attributes in process `syz.2.344'. [ 48.698941][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.885277][ T4494] loop2: detected capacity change from 0 to 2048 [ 48.926231][ T4494] EXT4-fs: Ignoring removed nomblk_io_submit option [ 48.981491][ T4500] loop4: detected capacity change from 0 to 512 [ 49.000087][ T4500] msdos: Unknown parameter 'erross' [ 49.010145][ T4494] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 49.062752][ T4500] loop4: detected capacity change from 0 to 512 [ 49.148783][ T4494] EXT4-fs error (device loop2): ext4_read_inline_dir:1476: inode #12: block 5: comm syz.2.346: path /66/file1/file0: bad entry in directory: directory entry overrun - offset=24, inode=13, rec_len=7952, size=80 fake=0 [ 49.189265][ T4500] EXT4-fs warning (device loop4): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 49.237147][ T4500] EXT4-fs (loop4): mount failed [ 49.242501][ T4494] EXT4-fs (loop2): Remounting filesystem read-only [ 49.307371][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.414048][ T4540] loop1: detected capacity change from 0 to 128 [ 49.445222][ T4541] loop4: detected capacity change from 0 to 128 [ 49.716652][ T4574] loop0: detected capacity change from 0 to 128 [ 49.773544][ T4570] loop3: detected capacity change from 0 to 8192 [ 49.887073][ T4587] loop1: detected capacity change from 0 to 512 [ 49.897412][ T4587] ext4: Unknown parameter 'measure' [ 50.007283][ T4597] 9p: Unknown access argument : -22 [ 50.457985][ T4621] loop4: detected capacity change from 0 to 8192 [ 50.591268][ T4627] loop2: detected capacity change from 0 to 128 [ 50.784766][ T4643] loop4: detected capacity change from 0 to 2048 [ 50.797404][ T4643] EXT4-fs: Ignoring removed nomblk_io_submit option [ 50.883155][ T4643] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 50.919234][ T4643] EXT4-fs error (device loop4): ext4_read_inline_dir:1476: inode #12: block 5: comm syz.4.404: path /72/file1/file0: bad entry in directory: directory entry overrun - offset=24, inode=13, rec_len=7952, size=80 fake=0 [ 50.960260][ T4643] EXT4-fs (loop4): Remounting filesystem read-only [ 51.012643][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.105926][ T4662] loop3: detected capacity change from 0 to 1024 [ 51.141127][ T4662] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 51.231221][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.458929][ T4697] loop1: detected capacity change from 0 to 512 [ 51.480222][ T4697] FAT-fs (loop1): bogus number of FAT sectors [ 51.486403][ T4697] FAT-fs (loop1): Can't find a valid FAT filesystem [ 51.630249][ T4703] vhci_hcd: invalid port number 96 [ 51.635437][ T4703] vhci_hcd: default hub control req: 2000 vfffc i0060 l7 [ 51.682573][ T4708] loop3: detected capacity change from 0 to 1024 [ 51.712025][ T4708] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 51.759381][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.857543][ T4719] loop3: detected capacity change from 0 to 128 [ 52.045912][ T4739] serio: Serial port ptm1 [ 52.103066][ T4746] netlink: 'syz.4.443': attribute type 1 has an invalid length. [ 52.110962][ T4746] netlink: 12 bytes leftover after parsing attributes in process `syz.4.443'. [ 52.117428][ T4748] loop3: detected capacity change from 0 to 128 [ 52.185697][ T4752] loop4: detected capacity change from 0 to 128 [ 52.327999][ T4764] loop4: detected capacity change from 0 to 256 [ 52.352084][ T4764] FAT-fs (loop4): Directory bread(block 64) failed [ 52.358882][ T4764] FAT-fs (loop4): Directory bread(block 65) failed [ 52.365571][ T4764] FAT-fs (loop4): Directory bread(block 66) failed [ 52.372387][ T4764] FAT-fs (loop4): Directory bread(block 67) failed [ 52.379317][ T4764] FAT-fs (loop4): Directory bread(block 68) failed [ 52.386060][ T4764] FAT-fs (loop4): Directory bread(block 69) failed [ 52.392941][ T4764] FAT-fs (loop4): Directory bread(block 70) failed [ 52.407485][ T4764] FAT-fs (loop4): Directory bread(block 71) failed [ 52.414193][ T4764] FAT-fs (loop4): Directory bread(block 72) failed [ 52.420869][ T4764] FAT-fs (loop4): Directory bread(block 73) failed [ 52.543217][ T4780] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 53.004867][ T4788] loop3: detected capacity change from 0 to 1024 [ 53.037000][ T4789] loop2: detected capacity change from 0 to 128 [ 53.046787][ T4788] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 53.078945][ T4798] loop0: detected capacity change from 0 to 512 [ 53.096549][ T4798] FAT-fs (loop0): bogus number of FAT sectors [ 53.102721][ T4798] FAT-fs (loop0): Can't find a valid FAT filesystem [ 53.123650][ T4800] loop2: detected capacity change from 0 to 128 [ 53.146711][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 53.207981][ T4805] loop2: detected capacity change from 0 to 512 [ 53.214599][ T4803] loop4: detected capacity change from 0 to 8192 [ 53.247612][ T4807] loop3: detected capacity change from 0 to 164 [ 53.254994][ T3487] loop4: p1 < > p3 < > p4 < > [ 53.259863][ T3487] loop4: partition table partially beyond EOD, truncated [ 53.269696][ T4805] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.464: bg 0: block 248: padding at end of block bitmap is not set [ 53.284957][ T3487] loop4: p3 start 327168 is beyond EOD, truncated [ 53.285202][ T4807] Unable to read rock-ridge attributes [ 53.293972][ T4802] vhci_hcd: invalid port number 96 [ 53.297692][ T29] kauditd_printk_skb: 1154 callbacks suppressed [ 53.297706][ T29] audit: type=1400 audit(1764482483.642:4482): avc: denied { mount } for pid=4806 comm="syz.3.462" name="/" dev="loop3" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1 [ 53.302169][ T4802] vhci_hcd: default hub control req: 2000 vfffc i0060 l7 [ 53.320019][ T4807] Unable to read rock-ridge attributes [ 53.334147][ T4805] Quota error (device loop2): write_blk: dquota write failed [ 53.346182][ T4807] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 53.351221][ T4805] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 53.368827][ T4805] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.464: Failed to acquire dquot type 1 [ 53.375842][ T4807] Unable to read rock-ridge attributes [ 53.387953][ T4803] loop4: p1 < > p3 < > p4 < > [ 53.392872][ T4803] loop4: partition table partially beyond EOD, truncated [ 53.402331][ T29] audit: type=1400 audit(1764482483.742:4483): avc: denied { unmount } for pid=3317 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1 [ 53.412110][ T4803] loop4: p3 start 327168 is beyond EOD, truncated [ 53.424655][ T4805] EXT4-fs (loop2): 1 truncate cleaned up [ 53.436392][ T4805] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 53.449590][ T4805] ext4 filesystem being mounted at /95/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 53.473116][ T4805] netlink: 'syz.2.464': attribute type 1 has an invalid length. [ 53.480910][ T4805] netlink: 224 bytes leftover after parsing attributes in process `syz.2.464'. [ 53.523342][ T4815] serio: Serial port ptm1 [ 53.567269][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 53.586264][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 53.613757][ T3302] udevd[3302]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 53.642418][ T29] audit: type=1326 audit(1764482483.982:4484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4823 comm="syz.2.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0236ff749 code=0x7ffc0000 [ 53.666179][ T29] audit: type=1326 audit(1764482483.982:4485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4823 comm="syz.2.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0236ff749 code=0x7ffc0000 [ 53.718012][ T4829] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 53.718012][ T4829] program syz.3.472 not setting count and/or reply_len properly [ 53.723624][ T29] audit: type=1326 audit(1764482484.042:4486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4823 comm="syz.2.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=79 compat=0 ip=0x7ff0236ff749 code=0x7ffc0000 [ 53.758007][ T29] audit: type=1326 audit(1764482484.042:4487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4823 comm="syz.2.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0236ff749 code=0x7ffc0000 [ 53.781403][ T29] audit: type=1326 audit(1764482484.042:4488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4823 comm="syz.2.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff0236ff749 code=0x7ffc0000 [ 53.804802][ T29] audit: type=1326 audit(1764482484.042:4489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4823 comm="syz.2.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7ff0236ff749 code=0x7ffc0000 [ 53.826248][ T4835] loop4: detected capacity change from 0 to 4096 [ 53.863193][ T4835] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 53.936564][ T4846] netlink: 20 bytes leftover after parsing attributes in process `syz.4.474'. [ 53.957800][ T4843] loop2: detected capacity change from 0 to 128 [ 54.091566][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 54.153932][ T4868] loop2: detected capacity change from 0 to 128 [ 54.179650][ T4870] loop4: detected capacity change from 0 to 1024 [ 54.201896][ T4872] loop3: detected capacity change from 0 to 1024 [ 54.221311][ T4870] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 54.248956][ T4872] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 54.250127][ T4870] ext4 filesystem being mounted at /87/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 54.265872][ T4874] SELinux: Context ׸ýÿX7ªÞd¹Q¬‰YI{C´¨pUèÒ–hÙ»ŒÐ r: is not valid (left unmapped). [ 54.299411][ T4870] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: block 3: comm syz.4.482: lblock 3 mapped to illegal pblock 3 (length 3) [ 54.318236][ T4870] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117 [ 54.330684][ T4870] EXT4-fs (loop4): This should not happen!! Data will be lost [ 54.330684][ T4870] [ 54.362022][ T4880] loop2: detected capacity change from 0 to 128 [ 54.364410][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 54.395971][ T4885] netlink: 96 bytes leftover after parsing attributes in process `syz.1.492'. [ 54.443413][ T385] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: block 8: comm kworker/u8:5: lblock 8 mapped to illegal pblock 8 (length 8) [ 54.517383][ T385] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117 [ 54.529773][ T385] EXT4-fs (loop4): This should not happen!! Data will be lost [ 54.529773][ T385] [ 54.555940][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 54.592250][ T4906] loop1: detected capacity change from 0 to 1024 [ 54.703496][ T4912] 9p: Unknown access argument : -22 [ 54.706565][ T4914] loop4: detected capacity change from 0 to 1024 [ 54.726761][ T4906] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 54.771113][ T4914] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 54.794715][ T4923] 9p: Unknown access argument : -22 [ 54.929311][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 54.964162][ T4916] bridge_slave_0: left allmulticast mode [ 54.969898][ T4916] bridge_slave_0: left promiscuous mode [ 54.975793][ T4916] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.986326][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 55.069266][ T4920] netlink: 'syz.0.501': attribute type 10 has an invalid length. [ 55.077071][ T4920] netlink: 40 bytes leftover after parsing attributes in process `syz.0.501'. [ 55.150923][ T4925] serio: Serial port ptm0 [ 55.228982][ T4916] bridge_slave_1: left allmulticast mode [ 55.234767][ T4916] bridge_slave_1: left promiscuous mode [ 55.240615][ T4916] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.349967][ T4916] bond0: (slave bond_slave_0): Releasing backup interface [ 55.400813][ T4916] bond0: (slave bond_slave_1): Releasing backup interface [ 55.430350][ T4916] team0: Port device team_slave_0 removed [ 55.464923][ T4916] team0: Port device team_slave_1 removed [ 55.489596][ T4916] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 55.497020][ T4916] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 55.543753][ T4916] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 55.551291][ T4916] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 55.563184][ T4916] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 55.603406][ T4920] batman_adv: batadv0: Adding interface: veth1_vlan [ 55.610076][ T4920] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 55.648744][ T4920] batman_adv: batadv0: Interface activated: veth1_vlan [ 55.740317][ T4938] loop1: detected capacity change from 0 to 512 [ 55.774905][ T4936] loop0: detected capacity change from 0 to 128 [ 55.853719][ T4944] loop1: detected capacity change from 0 to 2048 [ 55.892032][ T4944] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 55.943948][ T4950] lo speed is unknown, defaulting to 1000 [ 55.950730][ T4950] lo speed is unknown, defaulting to 1000 [ 55.956768][ T4950] lo speed is unknown, defaulting to 1000 [ 56.035866][ T4953] loop4: detected capacity change from 0 to 1024 [ 56.041014][ T4950] infiniband syz2: set active [ 56.046945][ T4950] infiniband syz2: added lo [ 56.051692][ T1053] lo speed is unknown, defaulting to 1000 [ 56.073547][ T4950] RDS/IB: syz2: added [ 56.084980][ T4950] smc: adding ib device syz2 with port count 1 [ 56.117303][ T4950] smc: ib device syz2 port 1 has pnetid SYZ (user defined) [ 56.124974][ T3389] lo speed is unknown, defaulting to 1000 [ 56.170851][ T4950] lo speed is unknown, defaulting to 1000 [ 56.241841][ T4950] lo speed is unknown, defaulting to 1000 [ 56.351103][ T4950] lo speed is unknown, defaulting to 1000 [ 56.457100][ T4970] syzkaller1: entered promiscuous mode [ 56.462850][ T4970] syzkaller1: entered allmulticast mode [ 56.470083][ T4950] lo speed is unknown, defaulting to 1000 [ 56.536519][ T4950] lo speed is unknown, defaulting to 1000 [ 56.757179][ T4972] loop4: detected capacity change from 0 to 128 [ 56.888939][ T4980] serio: Serial port ptm0 [ 57.143363][ T4993] FAULT_INJECTION: forcing a failure. [ 57.143363][ T4993] name failslab, interval 1, probability 0, space 0, times 0 [ 57.156245][ T4993] CPU: 1 UID: 0 PID: 4993 Comm: syz.1.527 Not tainted syzkaller #0 PREEMPT(voluntary) [ 57.156346][ T4993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 57.156375][ T4993] Call Trace: [ 57.156383][ T4993] [ 57.156392][ T4993] __dump_stack+0x1d/0x30 [ 57.156420][ T4993] dump_stack_lvl+0xe8/0x140 [ 57.156440][ T4993] dump_stack+0x15/0x1b [ 57.156514][ T4993] should_fail_ex+0x265/0x280 [ 57.156537][ T4993] should_failslab+0x8c/0xb0 [ 57.156568][ T4993] __kmalloc_node_noprof+0xaa/0x580 [ 57.156597][ T4993] ? qdisc_alloc+0x65/0x440 [ 57.156693][ T4993] qdisc_alloc+0x65/0x440 [ 57.156731][ T4993] ? nla_strcmp+0xc3/0xe0 [ 57.156756][ T4993] qdisc_create+0xf5/0x9e0 [ 57.156782][ T4993] tc_modify_qdisc+0xf9c/0x1480 [ 57.156901][ T4993] ? __pfx_tc_modify_qdisc+0x10/0x10 [ 57.156929][ T4993] rtnetlink_rcv_msg+0x65a/0x6d0 [ 57.156959][ T4993] netlink_rcv_skb+0x123/0x220 [ 57.157065][ T4993] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 57.157100][ T4993] rtnetlink_rcv+0x1c/0x30 [ 57.157142][ T4993] netlink_unicast+0x5c0/0x690 [ 57.157172][ T4993] netlink_sendmsg+0x58b/0x6b0 [ 57.157197][ T4993] ? __pfx_netlink_sendmsg+0x10/0x10 [ 57.157220][ T4993] __sock_sendmsg+0x145/0x180 [ 57.157250][ T4993] ____sys_sendmsg+0x31e/0x4e0 [ 57.157346][ T4993] ___sys_sendmsg+0x17b/0x1d0 [ 57.157449][ T4993] __x64_sys_sendmsg+0xd4/0x160 [ 57.157477][ T4993] x64_sys_call+0x191e/0x3000 [ 57.157541][ T4993] do_syscall_64+0xd2/0x200 [ 57.157577][ T4993] ? arch_exit_to_user_mode_prepare+0x27/0x80 [ 57.157608][ T4993] ? irqentry_exit_to_user_mode+0x7b/0xa0 [ 57.157660][ T4993] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 57.157696][ T4993] RIP: 0033:0x7f96156af749 [ 57.157780][ T4993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 57.157799][ T4993] RSP: 002b:00007f961410f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 57.157822][ T4993] RAX: ffffffffffffffda RBX: 00007f9615905fa0 RCX: 00007f96156af749 [ 57.157837][ T4993] RDX: 0000000000000000 RSI: 00002000000007c0 RDI: 0000000000000006 [ 57.157849][ T4993] RBP: 00007f961410f090 R08: 0000000000000000 R09: 0000000000000000 [ 57.157860][ T4993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 57.157894][ T4993] R13: 00007f9615906038 R14: 00007f9615905fa0 R15: 00007ffccc49d218 [ 57.157917][ T4993] [ 57.516244][ T5002] netlink: 'syz.1.531': attribute type 3 has an invalid length. [ 57.524026][ T5002] netlink: 12 bytes leftover after parsing attributes in process `syz.1.531'. [ 57.568060][ T5002] netlink: 'syz.1.531': attribute type 3 has an invalid length. [ 57.575841][ T5002] netlink: 12 bytes leftover after parsing attributes in process `syz.1.531'. [ 57.636382][ T5017] loop3: detected capacity change from 0 to 512 [ 57.657450][ T5017] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 57.667371][ T1763] Bluetooth: hci0: Frame reassembly failed (-84) [ 57.678669][ T5017] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.537: invalid indirect mapped block 4294967295 (level 0) [ 57.693000][ T5017] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.537: invalid indirect mapped block 4294967295 (level 1) [ 57.708037][ T5017] EXT4-fs (loop3): 1 orphan inode deleted [ 57.713793][ T5017] EXT4-fs (loop3): 1 truncate cleaned up [ 57.724975][ T5017] netlink: 8 bytes leftover after parsing attributes in process `syz.3.537'. [ 57.737333][ T5017] 9pnet_fd: Insufficient options for proto=fd [ 57.740791][ T5025] loop0: detected capacity change from 0 to 1024 [ 57.745889][ T5017] EXT4-fs error (device loop3): ext4_find_dest_de:2052: inode #2: block 13: comm syz.3.537: bad entry in directory: rec_len is too small for name_len - offset=12, inode=2, rec_len=12, size=1024 fake=0 [ 57.951584][ T5053] loop3: detected capacity change from 0 to 512 [ 57.961081][ T5051] loop4: detected capacity change from 0 to 512 [ 57.979604][ T5051] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 57.995788][ T5055] loop0: detected capacity change from 0 to 1024 [ 57.997732][ T5053] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.550: bg 0: block 248: padding at end of block bitmap is not set [ 58.013461][ T5051] EXT4-fs (loop4): 1 orphan inode deleted [ 58.017299][ T5053] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.550: Failed to acquire dquot type 1 [ 58.022826][ T5051] EXT4-fs (loop4): 1 truncate cleaned up [ 58.035344][ T5051] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 58.047454][ T5055] EXT4-fs error (device loop0): ext4_xattr_inode_iget:441: comm syz.0.551: inode #2048: comm syz.0.551: iget: illegal inode # [ 58.055066][ T5051] EXT4-fs (loop4): Remounting filesystem read-only [ 58.071184][ T5055] EXT4-fs error (device loop0): ext4_xattr_inode_iget:446: comm syz.0.551: error while reading EA inode 2048 err=-117 [ 58.086886][ T5053] EXT4-fs (loop3): 1 truncate cleaned up [ 58.094227][ T5053] ext4 filesystem being mounted at /118/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 58.145547][ T5053] netlink: 'syz.3.550': attribute type 1 has an invalid length. [ 58.150805][ T5064] loop0: detected capacity change from 0 to 1024 [ 58.153423][ T5053] netlink: 224 bytes leftover after parsing attributes in process `syz.3.550'. [ 58.218496][ T5070] netlink: 124 bytes leftover after parsing attributes in process `syz.0.555'. [ 58.257725][ T5072] loop4: detected capacity change from 0 to 128 [ 58.331074][ T5076] loop0: detected capacity change from 0 to 1024 [ 58.438495][ T29] kauditd_printk_skb: 264 callbacks suppressed [ 58.438512][ T29] audit: type=1400 audit(1764482488.772:4752): avc: denied { create } for pid=5082 comm="syz.0.560" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 58.464602][ T5083] loop0: detected capacity change from 0 to 512 [ 58.473328][ T5083] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 58.482113][ T5083] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 58.496370][ T5085] loop3: detected capacity change from 0 to 128 [ 58.530342][ T1763] kworker/u8:7: attempt to access beyond end of device [ 58.530342][ T1763] loop4: rw=1, sector=153, nr_sectors = 8 limit=128 [ 58.547618][ T1763] kworker/u8:7: attempt to access beyond end of device [ 58.547618][ T1763] loop4: rw=1, sector=169, nr_sectors = 8 limit=128 [ 58.561168][ T29] audit: type=1326 audit(1764482488.892:4753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5084 comm="syz.3.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f110d96f749 code=0x7ffc0000 [ 58.584853][ T29] audit: type=1326 audit(1764482488.892:4754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5084 comm="syz.3.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f110d96f749 code=0x7ffc0000 [ 58.608302][ T29] audit: type=1326 audit(1764482488.892:4755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5084 comm="syz.3.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f110d96f749 code=0x7ffc0000 [ 58.631968][ T29] audit: type=1326 audit(1764482488.892:4756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5084 comm="syz.3.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f110d96f749 code=0x7ffc0000 [ 58.648301][ T1763] kworker/u8:7: attempt to access beyond end of device [ 58.648301][ T1763] loop4: rw=1, sector=185, nr_sectors = 8 limit=128 [ 58.655551][ T29] audit: type=1326 audit(1764482488.892:4757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5084 comm="syz.3.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f110d96f749 code=0x7ffc0000 [ 58.675635][ T1763] kworker/u8:7: attempt to access beyond end of device [ 58.675635][ T1763] loop4: rw=1, sector=201, nr_sectors = 8 limit=128 [ 58.692527][ T29] audit: type=1326 audit(1764482488.892:4758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5084 comm="syz.3.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f110d96f749 code=0x7ffc0000 [ 58.706821][ T1763] kworker/u8:7: attempt to access beyond end of device [ 58.706821][ T1763] loop4: rw=1, sector=217, nr_sectors = 8 limit=128 [ 58.729799][ T29] audit: type=1326 audit(1764482488.892:4759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5084 comm="syz.3.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f110d96f749 code=0x7ffc0000 [ 58.746434][ T1763] kworker/u8:7: attempt to access beyond end of device [ 58.746434][ T1763] loop4: rw=1, sector=233, nr_sectors = 8 limit=128 [ 58.766400][ T29] audit: type=1326 audit(1764482488.892:4760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5084 comm="syz.3.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f110d96f749 code=0x7ffc0000 [ 58.782828][ T1763] kworker/u8:7: attempt to access beyond end of device [ 58.782828][ T1763] loop4: rw=1, sector=249, nr_sectors = 8 limit=128 [ 58.803097][ T29] audit: type=1326 audit(1764482488.892:4761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5084 comm="syz.3.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f110d96f749 code=0x7ffc0000 [ 58.808220][ T5083] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4193: comm syz.0.560: Allocating blocks 41-42 which overlap fs metadata [ 58.816908][ T1763] kworker/u8:7: attempt to access beyond end of device [ 58.816908][ T1763] loop4: rw=1, sector=265, nr_sectors = 8 limit=128 [ 58.840246][ T5083] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4193: comm syz.0.560: Allocating blocks 41-42 which overlap fs metadata [ 58.853949][ T1763] kworker/u8:7: attempt to access beyond end of device [ 58.853949][ T1763] loop4: rw=1, sector=281, nr_sectors = 8 limit=128 [ 58.867708][ T5083] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.560: Failed to acquire dquot type 1 [ 58.881485][ T1763] kworker/u8:7: attempt to access beyond end of device [ 58.881485][ T1763] loop4: rw=1, sector=297, nr_sectors = 8 limit=128 [ 58.897274][ T5083] EXT4-fs error (device loop0): mb_free_blocks:2017: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt. [ 58.933219][ T5083] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #12: comm syz.0.560: corrupted inode contents [ 58.962077][ T5083] EXT4-fs error (device loop0): ext4_dirty_inode:6517: inode #12: comm syz.0.560: mark_inode_dirty error [ 58.985465][ T5083] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #12: comm syz.0.560: corrupted inode contents [ 59.026336][ T5083] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #12: comm syz.0.560: mark_inode_dirty error [ 59.045335][ T5083] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #12: comm syz.0.560: corrupted inode contents [ 59.071802][ T5083] EXT4-fs error (device loop0) in ext4_orphan_del:301: Corrupt filesystem [ 59.089774][ T5083] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #12: comm syz.0.560: corrupted inode contents [ 59.102046][ T5083] EXT4-fs error (device loop0): ext4_truncate:4637: inode #12: comm syz.0.560: mark_inode_dirty error [ 59.113782][ T5083] EXT4-fs error (device loop0) in ext4_process_orphan:343: Corrupt filesystem [ 59.123343][ T5083] EXT4-fs (loop0): 1 truncate cleaned up [ 59.420633][ T5113] loop0: detected capacity change from 0 to 8192 [ 59.435283][ T5095] lo speed is unknown, defaulting to 1000 [ 59.472661][ T5095] lo speed is unknown, defaulting to 1000 [ 59.492077][ T5118] capability: warning: `syz.0.573' uses deprecated v2 capabilities in a way that may be insecure [ 59.648046][ T5125] loop0: detected capacity change from 0 to 8192 [ 59.710294][ T5125] loop0: p1 < > p3 < > p4 < > [ 59.710366][ T5125] loop0: partition table partially beyond EOD, truncated [ 59.715611][ T5125] loop0: p3 start 327168 is beyond EOD, truncated [ 59.738237][ T3639] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 60.002113][ T5134] loop1: detected capacity change from 0 to 128 [ 60.018557][ T5136] loop4: detected capacity change from 0 to 2048 [ 60.025641][ T5136] EXT4-fs: Ignoring removed nomblk_io_submit option [ 60.048424][ T5136] EXT4-fs error (device loop4): ext4_read_inline_dir:1476: inode #12: block 5: comm syz.4.581: path /107/file1/file0: bad entry in directory: directory entry overrun - offset=24, inode=13, rec_len=7952, size=80 fake=0 [ 60.081806][ T5136] EXT4-fs (loop4): Remounting filesystem read-only [ 60.159527][ T5141] bridge_slave_0: left allmulticast mode [ 60.165261][ T5141] bridge_slave_0: left promiscuous mode [ 60.171164][ T5141] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.200204][ T5141] bridge_slave_1: left allmulticast mode [ 60.205642][ T5145] 9p: Unknown access argument : -22 [ 60.206003][ T5141] bridge_slave_1: left promiscuous mode [ 60.206291][ T5141] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.251397][ T5141] bond0: (slave bond_slave_0): Releasing backup interface [ 60.293857][ T5141] bond0: (slave bond_slave_1): Releasing backup interface [ 60.315147][ T5149] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 60.331935][ T5141] team0: Port device team_slave_0 removed [ 60.370503][ T5141] team0: Port device team_slave_1 removed [ 60.387599][ T5141] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 60.395447][ T5141] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 60.409693][ T5141] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 60.417119][ T5141] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 60.427953][ T5141] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 60.593825][ T5164] loop4: detected capacity change from 0 to 1024 [ 60.983069][ T5175] FAULT_INJECTION: forcing a failure. [ 60.983069][ T5175] name failslab, interval 1, probability 0, space 0, times 0 [ 60.995988][ T5175] CPU: 1 UID: 0 PID: 5175 Comm: syz.1.591 Not tainted syzkaller #0 PREEMPT(voluntary) [ 60.996037][ T5175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 60.996079][ T5175] Call Trace: [ 60.996088][ T5175] [ 60.996098][ T5175] __dump_stack+0x1d/0x30 [ 60.996180][ T5175] dump_stack_lvl+0xe8/0x140 [ 60.996205][ T5175] dump_stack+0x15/0x1b [ 60.996225][ T5175] should_fail_ex+0x265/0x280 [ 60.996249][ T5175] should_failslab+0x8c/0xb0 [ 60.996338][ T5175] kmem_cache_alloc_node_noprof+0x57/0x4a0 [ 60.996372][ T5175] ? __alloc_skb+0x101/0x320 [ 60.996400][ T5175] __alloc_skb+0x101/0x320 [ 60.996495][ T5175] netlink_alloc_large_skb+0xbf/0xf0 [ 60.996527][ T5175] netlink_sendmsg+0x3cf/0x6b0 [ 60.996547][ T5175] ? __pfx_netlink_sendmsg+0x10/0x10 [ 60.996644][ T5175] __sock_sendmsg+0x145/0x180 [ 60.996674][ T5175] ____sys_sendmsg+0x31e/0x4e0 [ 60.996779][ T5175] ___sys_sendmsg+0x17b/0x1d0 [ 60.996816][ T5175] __x64_sys_sendmsg+0xd4/0x160 [ 60.996847][ T5175] x64_sys_call+0x191e/0x3000 [ 60.996866][ T5175] do_syscall_64+0xd2/0x200 [ 60.996889][ T5175] ? arch_exit_to_user_mode_prepare+0x27/0x80 [ 60.996926][ T5175] ? irqentry_exit_to_user_mode+0x7b/0xa0 [ 60.997025][ T5175] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 60.997055][ T5175] RIP: 0033:0x7f96156af749 [ 60.997074][ T5175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 60.997094][ T5175] RSP: 002b:00007f9614025038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 60.997117][ T5175] RAX: ffffffffffffffda RBX: 00007f9615906090 RCX: 00007f96156af749 [ 60.997131][ T5175] RDX: 0000000000008844 RSI: 0000200000000080 RDI: 0000000000000004 [ 60.997161][ T5175] RBP: 00007f9614025090 R08: 0000000000000000 R09: 0000000000000000 [ 60.997172][ T5175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 60.997183][ T5175] R13: 00007f9615906128 R14: 00007f9615906090 R15: 00007ffccc49d218 [ 60.997201][ T5175] [ 61.315634][ T5183] netlink: 96 bytes leftover after parsing attributes in process `syz.2.593'. [ 61.784911][ T5199] loop4: detected capacity change from 0 to 8192 [ 62.166042][ T5215] 9p: Unknown access argument : -22 [ 62.367050][ T5217] loop3: detected capacity change from 0 to 2048 [ 62.401205][ T5217] EXT4-fs: Ignoring removed nomblk_io_submit option [ 62.476036][ T5217] EXT4-fs error (device loop3): ext4_read_inline_dir:1476: inode #12: block 5: comm syz.3.606: path /124/file1/file0: bad entry in directory: directory entry overrun - offset=24, inode=13, rec_len=7952, size=80 fake=0 [ 62.592242][ T5217] EXT4-fs (loop3): Remounting filesystem read-only [ 62.914145][ T5230] loop3: detected capacity change from 0 to 512 [ 63.010417][ T5230] ext4 filesystem being mounted at /127/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 63.269733][ T5237] lo speed is unknown, defaulting to 1000 [ 63.319114][ T5237] lo speed is unknown, defaulting to 1000 [ 63.488406][ T29] kauditd_printk_skb: 1169 callbacks suppressed [ 63.488437][ T29] audit: type=1326 audit(1764482493.802:5927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5228 comm="syz.4.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f2eddedf749 code=0x7ffc0000 [ 63.518335][ T29] audit: type=1326 audit(1764482493.812:5928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5228 comm="syz.4.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f2eddedf749 code=0x7ffc0000 [ 63.541644][ T29] audit: type=1326 audit(1764482493.822:5929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5228 comm="syz.4.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f2eddedf749 code=0x7ffc0000 [ 64.358236][ T29] audit: type=1326 audit(1764482493.912:5930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5228 comm="syz.4.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f2eddedf749 code=0x7ffc0000 [ 64.381753][ T29] audit: type=1326 audit(1764482493.922:5931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5228 comm="syz.4.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f2eddedf749 code=0x7ffc0000 [ 64.405544][ T29] audit: type=1326 audit(1764482493.932:5932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5228 comm="syz.4.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f2eddedf749 code=0x7ffc0000 [ 64.429285][ T29] audit: type=1326 audit(1764482493.942:5933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5228 comm="syz.4.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f2eddedf749 code=0x7ffc0000 [ 64.429362][ T29] audit: type=1326 audit(1764482493.962:5934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5228 comm="syz.4.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f2eddedf749 code=0x7ffc0000 [ 64.429431][ T29] audit: type=1326 audit(1764482493.972:5935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5228 comm="syz.4.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f2eddedf749 code=0x7ffc0000 [ 64.429548][ T29] audit: type=1326 audit(1764482494.002:5936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5228 comm="syz.4.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f2eddedf749 code=0x7ffc0000 [ 64.894138][ T5266] netlink: 'syz.0.623': attribute type 1 has an invalid length. [ 64.901966][ T5266] netlink: 'syz.0.623': attribute type 2 has an invalid length. [ 64.930055][ T5272] loop2: detected capacity change from 0 to 1024 [ 65.063440][ T5279] loop3: detected capacity change from 0 to 512 [ 65.098504][ T5279] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 65.114440][ T5282] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 65.183196][ T5279] bio_check_eod: 102 callbacks suppressed [ 65.183216][ T5279] syz.3.627: attempt to access beyond end of device [ 65.183216][ T5279] loop3: rw=2049, sector=656, nr_sectors = 32 limit=512 [ 65.218576][ T5279] syz.3.627: attempt to access beyond end of device [ 65.218576][ T5279] loop3: rw=2049, sector=720, nr_sectors = 32 limit=512 [ 65.259052][ T5279] syz.3.627: attempt to access beyond end of device [ 65.259052][ T5279] loop3: rw=2049, sector=784, nr_sectors = 32 limit=512 [ 65.273317][ T5279] syz.3.627: attempt to access beyond end of device [ 65.273317][ T5279] loop3: rw=2049, sector=848, nr_sectors = 32 limit=512 [ 65.640107][ T5328] loop0: detected capacity change from 0 to 8192 [ 65.679356][ T3302] loop0: p1 < > p3 < > p4 < > [ 65.684214][ T3302] loop0: partition table partially beyond EOD, truncated [ 65.692850][ T3302] loop0: p3 start 327168 is beyond EOD, truncated [ 65.734318][ T5328] loop0: p1 < > p3 < > p4 < > [ 65.739221][ T5328] loop0: partition table partially beyond EOD, truncated [ 65.789041][ T5328] loop0: p3 start 327168 is beyond EOD, truncated [ 65.905406][ T5343] netlink: 96 bytes leftover after parsing attributes in process `syz.3.643'. [ 65.921755][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 65.925846][ T3302] udevd[3302]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 66.006562][ T3302] udevd[3302]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 66.011598][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 66.311956][ T5369] loop0: detected capacity change from 0 to 8192 [ 66.358959][ T3302] loop0: p1 < > p3 < > p4 < > [ 66.363799][ T3302] loop0: partition table partially beyond EOD, truncated [ 66.373098][ T3302] loop0: p3 start 327168 is beyond EOD, truncated [ 66.401394][ T5369] loop0: p1 < > p3 < > p4 < > [ 66.406220][ T5369] loop0: partition table partially beyond EOD, truncated [ 66.419689][ T5369] loop0: p3 start 327168 is beyond EOD, truncated [ 66.481894][ T5358] udevd[5358]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 66.493745][ T3302] udevd[3302]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 66.516369][ T5358] udevd[5358]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 66.526654][ T3302] udevd[3302]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 66.682417][ T5388] netlink: 96 bytes leftover after parsing attributes in process `syz.0.660'. [ 67.168344][ T5423] loop1: detected capacity change from 0 to 128 [ 67.179264][ T5405] loop3: detected capacity change from 0 to 8192 [ 67.209621][ T5425] loop4: detected capacity change from 0 to 2048 [ 67.218189][ T3300] loop3: p1 < > p3 < > p4 < > [ 67.222999][ T3300] loop3: partition table partially beyond EOD, truncated [ 67.235965][ T5425] EXT4-fs: Ignoring removed nomblk_io_submit option [ 67.259548][ T3300] loop3: p3 start 327168 is beyond EOD, truncated [ 67.283709][ T5405] loop3: p1 < > p3 < > p4 < > [ 67.283866][ T5425] EXT4-fs mount: 29 callbacks suppressed [ 67.283879][ T5425] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 67.288614][ T5405] loop3: partition table partially beyond EOD, truncated [ 67.315010][ T5405] loop3: p3 start 327168 is beyond EOD, truncated [ 67.327339][ T5434] netlink: 124 bytes leftover after parsing attributes in process `syz.1.680'. [ 67.348420][ T5425] EXT4-fs error (device loop4): ext4_read_inline_dir:1476: inode #12: block 5: comm syz.4.676: path /128/file1/file0: bad entry in directory: directory entry overrun - offset=24, inode=13, rec_len=7952, size=80 fake=0 [ 67.348614][ T5425] EXT4-fs (loop4): Remounting filesystem read-only [ 67.420866][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 67.431767][ T5436] loop2: detected capacity change from 0 to 8192 [ 67.447576][ T5440] netlink: 124 bytes leftover after parsing attributes in process `syz.3.682'. [ 67.511673][ T3302] loop2: p1 < > p3 < > p4 < > [ 67.516727][ T3302] loop2: partition table partially beyond EOD, truncated [ 67.535963][ T5358] udevd[5358]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory [ 67.550233][ T3721] udevd[3721]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory [ 67.573053][ T3302] loop2: p3 start 327168 is beyond EOD, truncated [ 67.599114][ T5436] loop2: p1 < > p3 < > p4 < > [ 67.603942][ T5436] loop2: partition table partially beyond EOD, truncated [ 67.639137][ T5436] loop2: p3 start 327168 is beyond EOD, truncated [ 67.732217][ T5462] loop2: detected capacity change from 0 to 2048 [ 67.740163][ T5462] EXT4-fs: Ignoring removed nomblk_io_submit option [ 67.751947][ T5462] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 67.753504][ T5454] loop4: detected capacity change from 0 to 8192 [ 67.836942][ T5462] EXT4-fs error (device loop2): ext4_read_inline_dir:1476: inode #12: block 5: comm syz.2.694: path /132/file1/file0: bad entry in directory: directory entry overrun - offset=24, inode=13, rec_len=7952, size=80 fake=0 [ 67.858301][ T5468] loop3: detected capacity change from 0 to 128 [ 67.874259][ T5460] loop1: detected capacity change from 0 to 8192 [ 67.893122][ T5462] EXT4-fs (loop2): Remounting filesystem read-only [ 67.918834][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 67.930258][ T3300] loop1: p1 < > p3 < > p4 < > [ 67.935055][ T3300] loop1: partition table partially beyond EOD, truncated [ 67.968913][ T3300] loop1: p3 start 327168 is beyond EOD, truncated [ 68.005795][ T5460] loop1: p1 < > p3 < > p4 < > [ 68.010825][ T5460] loop1: partition table partially beyond EOD, truncated [ 68.023027][ T5460] loop1: p3 start 327168 is beyond EOD, truncated [ 68.169554][ T5495] loop2: detected capacity change from 0 to 2048 [ 68.193982][ T5495] EXT4-fs: Ignoring removed nomblk_io_submit option [ 68.256600][ T5495] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 68.298913][ T5495] EXT4-fs error (device loop2): ext4_read_inline_dir:1476: inode #12: block 5: comm syz.2.707: path /135/file1/file0: bad entry in directory: directory entry overrun - offset=24, inode=13, rec_len=7952, size=80 fake=0 [ 68.322954][ T5495] EXT4-fs (loop2): Remounting filesystem read-only [ 68.342428][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.501031][ T5521] loop4: detected capacity change from 0 to 8192 [ 68.561953][ T5521] loop4: p1 < > p3 < > p4 < > [ 68.566916][ T5521] loop4: partition table partially beyond EOD, truncated [ 68.576665][ T29] kauditd_printk_skb: 658 callbacks suppressed [ 68.576682][ T29] audit: type=1400 audit(1764482498.912:6595): avc: denied { write } for pid=5496 comm="syz.0.708" path="socket:[10056]" dev="sockfs" ino=10056 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 68.613204][ T5521] loop4: p3 start 327168 is beyond EOD, truncated [ 68.706032][ T29] audit: type=1326 audit(1764482499.042:6596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5537 comm="syz.1.723" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f96156af749 code=0x0 [ 68.737123][ T5541] loop4: detected capacity change from 0 to 2048 [ 68.745805][ T5541] EXT4-fs: Ignoring removed nomblk_io_submit option [ 68.761069][ T5541] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 68.775818][ T5541] EXT4-fs error (device loop4): ext4_read_inline_dir:1476: inode #12: block 5: comm syz.4.724: path /141/file1/file0: bad entry in directory: directory entry overrun - offset=24, inode=13, rec_len=7952, size=80 fake=0 [ 68.798467][ T5541] EXT4-fs (loop4): Remounting filesystem read-only [ 68.812331][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.928237][ T5550] loop4: detected capacity change from 0 to 128 [ 68.980300][ T5560] netlink: 124 bytes leftover after parsing attributes in process `syz.4.731'. [ 69.154204][ T5571] loop0: detected capacity change from 0 to 2048 [ 69.161262][ T5571] EXT4-fs: Ignoring removed nomblk_io_submit option [ 69.180846][ T5571] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 69.214349][ T29] audit: type=1326 audit(1764482499.552:6597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5576 comm="syz.4.738" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2eddedf749 code=0x0 [ 69.237801][ T5571] EXT4-fs error (device loop0): ext4_read_inline_dir:1476: inode #12: block 5: comm syz.0.736: path /164/file1/file0: bad entry in directory: directory entry overrun - offset=24, inode=13, rec_len=7952, size=80 fake=0 [ 69.268528][ T5579] 9p: Unknown access argument : -22 [ 69.310112][ T5571] EXT4-fs (loop0): Remounting filesystem read-only [ 69.362738][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.424267][ T5589] loop2: detected capacity change from 0 to 512 [ 69.440209][ T5589] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.742: bg 0: block 248: padding at end of block bitmap is not set [ 69.459549][ T5589] Quota error (device loop2): write_blk: dquota write failed [ 69.467196][ T5589] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 69.477224][ T5589] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.742: Failed to acquire dquot type 1 [ 69.494226][ T5594] loop0: detected capacity change from 0 to 128 [ 69.517474][ T5589] EXT4-fs (loop2): 1 truncate cleaned up [ 69.524740][ T5589] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 69.537595][ T5589] ext4 filesystem being mounted at /139/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 69.569211][ T5589] netlink: 'syz.2.742': attribute type 1 has an invalid length. [ 69.577030][ T5589] netlink: 224 bytes leftover after parsing attributes in process `syz.2.742'. [ 69.657164][ T5600] loop1: detected capacity change from 0 to 1024 [ 69.675840][ T5602] netlink: 96 bytes leftover after parsing attributes in process `syz.0.746'. [ 69.687410][ T5600] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 69.716559][ T5606] loop0: detected capacity change from 0 to 128 [ 69.737366][ T29] audit: type=1326 audit(1764482500.062:6598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5605 comm="syz.0.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339ff7f749 code=0x7ffc0000 [ 69.760946][ T29] audit: type=1326 audit(1764482500.072:6599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5605 comm="syz.0.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339ff7f749 code=0x7ffc0000 [ 69.784719][ T29] audit: type=1326 audit(1764482500.072:6600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5605 comm="syz.0.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339ff7f749 code=0x7ffc0000 [ 69.788233][ T5600] ext4 filesystem being mounted at /135/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 69.808319][ T29] audit: type=1326 audit(1764482500.072:6601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5605 comm="syz.0.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f339ff7f749 code=0x7ffc0000 [ 69.828261][ T5600] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: block 3: comm syz.1.745: lblock 3 mapped to illegal pblock 3 (length 3) [ 69.842348][ T29] audit: type=1326 audit(1764482500.072:6602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5605 comm="syz.0.747" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f339ff7f749 code=0x7ffc0000 [ 69.901181][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.917100][ T5600] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117 [ 69.919578][ T5608] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5608 comm=syz.1.745 [ 69.929532][ T5600] EXT4-fs (loop1): This should not happen!! Data will be lost [ 69.929532][ T5600] [ 70.083386][ T5616] loop4: detected capacity change from 0 to 512 [ 70.097386][ T49] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: block 8: comm kworker/u8:3: lblock 8 mapped to illegal pblock 8 (length 8) [ 70.138019][ T49] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117 [ 70.150671][ T49] EXT4-fs (loop1): This should not happen!! Data will be lost [ 70.150671][ T49] [ 70.170006][ T5616] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 70.212153][ T5616] ext4 filesystem being mounted at /150/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 70.230035][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 70.337528][ T5627] loop1: detected capacity change from 0 to 2048 [ 70.355959][ T5627] EXT4-fs: Ignoring removed nomblk_io_submit option [ 70.391135][ T5627] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 70.497464][ T5633] lo speed is unknown, defaulting to 1000 [ 70.549151][ T5633] lo speed is unknown, defaulting to 1000 [ 70.643231][ T5627] EXT4-fs error (device loop1): ext4_read_inline_dir:1476: inode #12: block 5: comm syz.1.752: path /136/file1/file0: bad entry in directory: directory entry overrun - offset=24, inode=13, rec_len=7952, size=80 fake=0 [ 70.727320][ T5627] EXT4-fs (loop1): Remounting filesystem read-only [ 71.007878][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.068803][ T5637] loop0: detected capacity change from 0 to 1024 [ 71.161419][ T5642] loop2: detected capacity change from 0 to 128 [ 71.201292][ T5637] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 71.523399][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.827405][ T5658] loop2: detected capacity change from 0 to 8192 [ 71.848292][ T5666] netlink: 'syz.0.766': attribute type 18 has an invalid length. [ 71.856526][ T5666] netlink: 4 bytes leftover after parsing attributes in process `syz.0.766'. [ 71.868730][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.899680][ T3302] loop2: p1 < > p3 < > p4 < > [ 71.904537][ T3302] loop2: partition table partially beyond EOD, truncated [ 71.934396][ T3302] loop2: p3 start 327168 is beyond EOD, truncated [ 71.967338][ T5658] loop2: p1 < > p3 < > p4 < > [ 71.972181][ T5658] loop2: partition table partially beyond EOD, truncated [ 71.995376][ T5658] loop2: p3 start 327168 is beyond EOD, truncated [ 71.998237][ T5671] netlink: 'syz.1.765': attribute type 6 has an invalid length. [ 72.015144][ T5666] netlink: 14 bytes leftover after parsing attributes in process `syz.0.766'. [ 72.025529][ T1763] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 72.041705][ T5675] loop4: detected capacity change from 0 to 1024 [ 72.048487][ T5666] hsr_slave_0: left promiscuous mode [ 72.054668][ T5666] hsr_slave_1: left promiscuous mode [ 72.070426][ T1763] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 72.070442][ T5675] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 72.092456][ T31] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 72.109155][ T31] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 72.177379][ T5358] udevd[5358]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 72.187669][ T3302] udevd[3302]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 72.224833][ T3300] udevd[3300]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 72.241680][ T3302] udevd[3302]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 72.283857][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.329008][ T5687] loop0: detected capacity change from 0 to 512 [ 72.369356][ T5687] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.775: bg 0: block 248: padding at end of block bitmap is not set [ 72.448055][ T5687] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.775: Failed to acquire dquot type 1 [ 72.486631][ T5699] loop2: detected capacity change from 0 to 1024 [ 72.495796][ T5687] EXT4-fs (loop0): 1 truncate cleaned up [ 72.509801][ T5699] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 72.549685][ T5687] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 72.572489][ T5687] ext4 filesystem being mounted at /177/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 72.591993][ T5687] netlink: 'syz.0.775': attribute type 1 has an invalid length. [ 72.599888][ T5687] netlink: 224 bytes leftover after parsing attributes in process `syz.0.775'. [ 72.679492][ T3318] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.721104][ T5707] loop1: detected capacity change from 0 to 512 [ 72.727856][ T5707] EXT4-fs: Ignoring removed mblk_io_submit option [ 72.734521][ T5707] EXT4-fs: inline encryption not supported [ 72.742434][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.760260][ T5707] EXT4-fs: test_dummy_encryption option not supported [ 72.828386][ T5713] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 72.837948][ T5713] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 72.860220][ T5719] loop0: detected capacity change from 0 to 512 [ 72.878200][ T5719] EXT4-fs: Ignoring removed oldalloc option [ 72.898336][ T5725] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 72.906633][ T5719] EXT4-fs (loop0): 1 truncate cleaned up [ 72.915179][ T5719] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 72.941787][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.051013][ T5739] loop3: detected capacity change from 0 to 512 [ 73.058086][ T5739] EXT4-fs: Ignoring removed oldalloc option [ 73.072139][ T5739] EXT4-fs (loop3): 1 truncate cleaned up [ 73.091983][ T5739] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 73.102582][ T5742] netlink: 24 bytes leftover after parsing attributes in process `syz.0.797'. [ 73.107407][ T5739] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.796: invalid indirect mapped block 234881024 (level 0) [ 73.127769][ T5739] EXT4-fs (loop3): Remounting filesystem read-only [ 73.152708][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.218736][ T5754] tmpfs: Unknown parameter 'grpquota' [ 73.344436][ T5780] syzkaller0: entered promiscuous mode [ 73.350161][ T5780] syzkaller0: entered allmulticast mode [ 73.517293][ T5794] loop3: detected capacity change from 0 to 512 [ 73.538975][ T5794] EXT4-fs: Ignoring removed nomblk_io_submit option [ 73.560706][ T5794] EXT4-fs error (device loop3): ext4_iget_extra_inode:5075: inode #15: comm syz.3.812: corrupted in-inode xattr: e_value size too large [ 73.597999][ T5794] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.812: couldn't read orphan inode 15 (err -117) [ 73.715849][ T5794] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 73.725397][ T5803] loop4: detected capacity change from 0 to 512 [ 73.790716][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.819529][ T5807] TCP: TCP_TX_DELAY enabled [ 73.842715][ T5803] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 73.868222][ T5803] EXT4-fs (loop4): invalid journal inode [ 73.902031][ T5803] EXT4-fs (loop4): can't get journal size [ 73.908651][ T5803] EXT4-fs (loop4): 1 truncate cleaned up [ 73.920292][ T5814] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 73.944542][ T5816] loop3: detected capacity change from 0 to 512 [ 73.945311][ T5803] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 73.951102][ T5814] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 73.971275][ T29] kauditd_printk_skb: 188 callbacks suppressed [ 73.971291][ T29] audit: type=1400 audit(1764482504.302:6789): avc: denied { create } for pid=5802 comm="syz.4.814" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=chr_file permissive=1 [ 74.039036][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.060157][ T5816] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.078720][ T5816] ext4 filesystem being mounted at /164/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 74.094900][ T29] audit: type=1400 audit(1764482504.432:6790): avc: denied { connect } for pid=5821 comm="syz.0.823" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 74.114906][ T29] audit: type=1400 audit(1764482504.432:6791): avc: denied { write } for pid=5821 comm="syz.0.823" path="socket:[12445]" dev="sockfs" ino=12445 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 74.136645][ T5816] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.820: corrupted inode contents [ 74.205243][ T5816] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #2: comm syz.3.820: mark_inode_dirty error [ 74.220853][ T5816] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.820: corrupted inode contents [ 74.235910][ T5826] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.820: corrupted inode contents [ 74.240832][ T5828] lo speed is unknown, defaulting to 1000 [ 74.264234][ T5826] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #2: comm syz.3.820: mark_inode_dirty error [ 74.276113][ T5826] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.820: corrupted inode contents [ 74.289412][ T5826] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.820: mark_inode_dirty error [ 74.301950][ T5826] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.820: corrupted inode contents [ 74.319088][ T5828] lo speed is unknown, defaulting to 1000 [ 74.327654][ T5826] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #2: comm syz.3.820: mark_inode_dirty error [ 74.353276][ T5816] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.820: corrupted inode contents [ 74.376159][ T5835] cgroup: Invalid name [ 74.389711][ T5831] loop4: detected capacity change from 0 to 8192 [ 74.396881][ T5831] msdos: Unknown parameter 'A' [ 74.452107][ T29] audit: type=1400 audit(1764482504.792:6792): avc: denied { getopt } for pid=5836 comm="syz.0.828" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 74.488027][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.584323][ T5848] netlink: 4 bytes leftover after parsing attributes in process `syz.4.833'. [ 74.604208][ T5853] loop1: detected capacity change from 0 to 256 [ 74.629747][ T5853] FAT-fs (loop1): codepage cp932 not found [ 74.641554][ T5858] loop3: detected capacity change from 0 to 1024 [ 74.683521][ T386] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 74.692475][ T5848] netlink: 4 bytes leftover after parsing attributes in process `syz.4.833'. [ 74.698725][ T5858] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 74.705449][ T386] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 74.742211][ T31] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 74.761752][ T5858] ext4 filesystem being mounted at /167/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 74.772625][ T5865] loop1: detected capacity change from 0 to 1024 [ 74.775164][ T5866] bridge1: entered promiscuous mode [ 74.784353][ T5866] bridge1: entered allmulticast mode [ 74.809595][ T5870] netlink: 16 bytes leftover after parsing attributes in process `syz.0.842'. [ 74.811828][ T5865] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 74.837489][ T5866] team0: Port device bridge1 added [ 74.849483][ T31] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 74.870004][ T5866] bridge0: port 1(team0) entered blocking state [ 74.876370][ T5866] bridge0: port 1(team0) entered disabled state [ 74.883654][ T29] audit: type=1400 audit(1764482505.222:6793): avc: denied { execute } for pid=5855 comm="syz.3.836" path="/167/file1/file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 74.887149][ T5858] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.836: bg 0: block 112: padding at end of block bitmap is not set [ 74.926986][ T5865] EXT4-fs (loop1): shut down requested (0) [ 74.935867][ T5866] team0: entered allmulticast mode [ 74.943040][ T5858] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 1 with error 117 [ 74.955613][ T5858] EXT4-fs (loop3): This should not happen!! Data will be lost [ 74.955613][ T5858] [ 74.981252][ T29] audit: type=1400 audit(1764482505.282:6794): avc: denied { read } for pid=2986 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 74.982197][ T5866] team0: entered promiscuous mode [ 75.003393][ T29] audit: type=1400 audit(1764482505.282:6795): avc: denied { search } for pid=2986 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 75.003432][ T29] audit: type=1400 audit(1764482505.282:6796): avc: denied { search } for pid=2986 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 75.049155][ T5866] netlink: 40 bytes leftover after parsing attributes in process `syz.4.840'. [ 75.052260][ T29] audit: type=1400 audit(1764482505.282:6797): avc: denied { add_name } for pid=2986 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 75.082149][ T29] audit: type=1400 audit(1764482505.282:6798): avc: denied { create } for pid=2986 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 75.103522][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.103711][ T5877] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #15: block 8: comm syz.3.836: lblock 8 mapped to illegal pblock 8 (length 1) [ 75.130768][ T5866] netlink: 4 bytes leftover after parsing attributes in process `syz.4.840'. [ 75.141557][ T5866] team0: left allmulticast mode [ 75.146525][ T5866] team0: left promiscuous mode [ 75.146666][ T5879] loop0: detected capacity change from 0 to 8192 [ 75.152027][ T5866] bridge0: port 1(team0) entered disabled state [ 75.181769][ T5866] batadv1: left allmulticast mode [ 75.186847][ T5866] batadv1: left promiscuous mode [ 75.192101][ T5866] bridge0: port 3(batadv1) entered disabled state [ 75.209795][ T5879] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 75.221043][ T386] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #15: comm kworker/u8:6: lblock 0 mapped to illegal pblock 0 (length 1) [ 75.235340][ T386] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 75.247731][ T386] EXT4-fs (loop3): This should not happen!! Data will be lost [ 75.247731][ T386] [ 75.264396][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 75.283138][ T5879] 9pnet_fd: Insufficient options for proto=fd [ 75.374680][ T5893] loop0: detected capacity change from 0 to 128 [ 75.409554][ T5893] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 75.483473][ T5893] ext4 filesystem being mounted at /210/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 75.538699][ T3313] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 75.554502][ T5903] loop3: detected capacity change from 0 to 256 [ 75.585813][ T5903] FAT-fs (loop3): codepage cp950 not found [ 75.617450][ T5908] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 75.633324][ T5908] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 75.754722][ T5928] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 75.756048][ T5927] netlink: 24 bytes leftover after parsing attributes in process `syz.1.866'. [ 75.775014][ T5928] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 75.799510][ T5930] loop3: detected capacity change from 0 to 1024 [ 75.809472][ T5930] EXT4-fs: Ignoring removed bh option [ 75.840844][ T5930] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 75.868619][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.956090][ T5949] loop3: detected capacity change from 0 to 512 [ 75.964186][ T5949] EXT4-fs: Ignoring removed nobh option [ 75.988794][ T5949] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #16: comm syz.3.876: corrupted inode contents [ 76.000842][ T5949] EXT4-fs (loop3): Remounting filesystem read-only [ 76.007532][ T5949] EXT4-fs (loop3): 1 truncate cleaned up [ 76.013936][ T5949] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 76.026744][ T386] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 76.028447][ T5949] ext4 filesystem being mounted at /177/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 76.037493][ T386] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 76.059127][ T386] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started [ 76.079016][ T5949] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.199876][ T5963] IPVS: Scheduler module ip_vs_ not found [ 76.339486][ T5984] loop3: detected capacity change from 0 to 128 [ 76.346939][ T5982] loop4: detected capacity change from 0 to 1024 [ 76.368952][ T5982] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 76.379963][ T5982] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869) [ 76.409544][ T5982] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 76.423295][ T5990] syz.3.891: attempt to access beyond end of device [ 76.423295][ T5990] loop3: rw=2049, sector=545, nr_sectors = 8 limit=128 [ 76.437083][ T5990] syz.3.891: attempt to access beyond end of device [ 76.437083][ T5990] loop3: rw=2049, sector=561, nr_sectors = 24 limit=128 [ 76.451049][ T5982] EXT4-fs error (device loop4): ext4_ext_check_inode:523: inode #3: comm syz.4.890: pblk 82 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0) [ 76.471919][ T5990] syz.3.891: attempt to access beyond end of device [ 76.471919][ T5990] loop3: rw=2049, sector=593, nr_sectors = 16 limit=128 [ 76.492382][ T5982] EXT4-fs (loop4): no journal found [ 76.493854][ T5990] syz.3.891: attempt to access beyond end of device [ 76.493854][ T5990] loop3: rw=2049, sector=617, nr_sectors = 8 limit=128 [ 76.497828][ T5982] EXT4-fs (loop4): can't get journal size [ 76.520346][ T5990] syz.3.891: attempt to access beyond end of device [ 76.520346][ T5990] loop3: rw=2049, sector=633, nr_sectors = 8 limit=128 [ 76.565629][ T5982] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 76.594941][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.637067][ T5984] syz.3.891: attempt to access beyond end of device [ 76.637067][ T5984] loop3: rw=2049, sector=145, nr_sectors = 8 limit=128 [ 76.661479][ T6012] loop0: detected capacity change from 0 to 128 [ 76.668222][ T5984] syz.3.891: attempt to access beyond end of device [ 76.668222][ T5984] loop3: rw=2049, sector=161, nr_sectors = 8 limit=128 [ 76.687577][ T5984] syz.3.891: attempt to access beyond end of device [ 76.687577][ T5984] loop3: rw=2049, sector=177, nr_sectors = 8 limit=128 [ 76.687970][ T6014] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 76.702568][ T5984] syz.3.891: attempt to access beyond end of device [ 76.702568][ T5984] loop3: rw=2049, sector=193, nr_sectors = 8 limit=128 [ 76.727998][ T6014] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 76.738675][ T5984] syz.3.891: attempt to access beyond end of device [ 76.738675][ T5984] loop3: rw=2049, sector=209, nr_sectors = 8 limit=128 [ 76.971889][ T6033] loop0: detected capacity change from 0 to 1764 [ 76.979164][ T6039] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 76.993704][ T6039] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 77.003729][ T6041] syzkaller0: entered promiscuous mode [ 77.009349][ T6041] syzkaller0: entered allmulticast mode [ 77.188915][ T6064] netlink: 'syz.2.927': attribute type 7 has an invalid length. [ 77.196624][ T6064] __nla_validate_parse: 1 callbacks suppressed [ 77.196637][ T6064] netlink: 8 bytes leftover after parsing attributes in process `syz.2.927'. [ 77.272521][ T6072] syz.1.932 uses obsolete (PF_INET,SOCK_PACKET) [ 77.283939][ T6072] PF_CAN: dropped non conform CAN XL skbuff: dev type 280, len 40 [ 77.401841][ T6089] netlink: 12 bytes leftover after parsing attributes in process `syz.0.936'. [ 77.429038][ T6093] loop1: detected capacity change from 0 to 512 [ 77.440997][ T6089] netlink: 20 bytes leftover after parsing attributes in process `syz.0.936'. [ 77.451040][ T6093] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 77.480673][ T6093] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 77.511157][ T6093] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.941: bg 0: block 248: padding at end of block bitmap is not set [ 77.553542][ T6103] program syz.4.945 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 77.567879][ T6093] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.941: Failed to acquire dquot type 1 [ 77.586400][ T6104] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 77.602312][ T6093] EXT4-fs (loop1): 1 truncate cleaned up [ 77.616618][ T6093] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 77.683321][ T6104] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 77.695877][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0008-000000000000. [ 77.732198][ T6111] netlink: 12 bytes leftover after parsing attributes in process `syz.1.948'. [ 77.768496][ T6104] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 77.797872][ T6115] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 77.823381][ T6104] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 77.840113][ T6115] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 77.882825][ T1763] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.908373][ T1763] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.920374][ T31] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.952555][ T31] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 78.189963][ T6137] loop3: detected capacity change from 0 to 128 [ 78.213731][ T6137] netlink: 12 bytes leftover after parsing attributes in process `syz.3.961'. [ 78.256638][ T6145] program syz.0.965 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 78.416446][ T6164] netlink: 4 bytes leftover after parsing attributes in process `syz.2.966'. [ 78.429395][ T6163] tipc: Started in network mode [ 78.434455][ T6163] tipc: Node identity ee47bd2d52b1, cluster identity 4711 [ 78.441737][ T6163] tipc: Enabled bearer , priority 0 [ 78.449367][ T6162] tipc: Resetting bearer [ 78.471289][ T6162] tipc: Disabling bearer [ 78.768879][ T6194] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 78.810902][ T6198] syzkaller0: entered promiscuous mode [ 78.816775][ T6198] syzkaller0: entered allmulticast mode [ 78.944883][ T6204] lo speed is unknown, defaulting to 1000 [ 79.023332][ T6204] lo speed is unknown, defaulting to 1000 [ 79.205894][ T6245] loop2: detected capacity change from 0 to 164 [ 79.216875][ T6245] ISOFS: unable to read i-node block [ 79.220952][ T6247] team_slave_0: entered promiscuous mode [ 79.227959][ T6247] team_slave_1: entered promiscuous mode [ 79.235315][ T6247] team0: Device vlan2 is already an upper device of the team interface [ 79.244753][ T6247] team_slave_0: left promiscuous mode [ 79.250361][ T6247] team_slave_1: left promiscuous mode [ 79.272277][ T29] kauditd_printk_skb: 43 callbacks suppressed [ 79.272330][ T29] audit: type=1400 audit(1764482509.612:6834): avc: denied { getopt } for pid=6249 comm="syz.4.1011" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 79.306738][ T6252] loop2: detected capacity change from 0 to 128 [ 79.319086][ T6252] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1012'. [ 79.509413][ T6272] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1022'. [ 79.736051][ T6300] loop3: detected capacity change from 0 to 128 [ 79.744449][ T6300] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 79.757533][ T6300] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 79.834387][ T6307] loop4: detected capacity change from 0 to 1024 [ 79.842038][ T6307] EXT4-fs: inline encryption not supported [ 79.868506][ T6310] lo speed is unknown, defaulting to 1000 [ 79.872936][ T6307] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 79.900080][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 79.903514][ T6310] lo speed is unknown, defaulting to 1000 [ 79.917840][ T6314] loop3: detected capacity change from 0 to 512 [ 79.925205][ T6314] EXT4-fs: inline encryption not supported [ 79.942683][ T6314] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 79.956028][ T6314] ext4 filesystem being mounted at /224/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 80.021524][ T6322] loop4: detected capacity change from 0 to 512 [ 80.039867][ T3317] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.054581][ T6322] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 80.075294][ T6322] ext4 filesystem being mounted at /191/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 80.099323][ T29] audit: type=1400 audit(1764482510.442:6835): avc: denied { setattr } for pid=6321 comm="syz.4.1040" name=".pending_reads" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 80.181331][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.325195][ T6343] loop0: detected capacity change from 0 to 1024 [ 80.348797][ T6343] EXT4-fs: inline encryption not supported [ 80.386737][ T6343] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 80.446268][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.473747][ T29] audit: type=1400 audit(1764482510.802:6836): avc: denied { read } for pid=6347 comm="syz.1.1050" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 80.509973][ T6350] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 80.533091][ T6350] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 80.542549][ T29] audit: type=1400 audit(1764482510.812:6837): avc: denied { map } for pid=6347 comm="syz.1.1050" path="/dev/sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 80.682141][ T6370] loop0: detected capacity change from 0 to 1024 [ 80.744595][ T6370] EXT4-fs: inline encryption not supported [ 80.809565][ T6370] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 80.863131][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.884344][ T6389] loop1: detected capacity change from 0 to 256 [ 80.903915][ T6389] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 81.221794][ T6406] tap0: tun_chr_ioctl cmd 1074025677 [ 81.234099][ T6406] tap0: linktype set to 270 [ 81.317957][ T6416] loop1: detected capacity change from 0 to 1024 [ 81.340217][ T6416] EXT4-fs: inline encryption not supported [ 81.358492][ T3302] ================================================================== [ 81.366616][ T3302] BUG: KCSAN: data-race in _copy_to_iter / _copy_to_iter [ 81.373718][ T3302] [ 81.376047][ T3302] write to 0xffff8881469e1000 of 1024 bytes by task 1763 on cpu 1: [ 81.384032][ T3302] _copy_to_iter+0x602/0xe70 [ 81.388627][ T3302] copy_page_to_iter+0x18f/0x2d0 [ 81.393568][ T3302] shmem_file_read_iter+0x2d6/0x540 [ 81.398788][ T3302] lo_rw_aio+0x6a0/0x760 [ 81.403038][ T3302] loop_process_work+0x52d/0xa60 [ 81.407978][ T3302] loop_workfn+0x31/0x40 [ 81.412224][ T3302] process_scheduled_works+0x4ce/0x9d0 [ 81.417694][ T3302] worker_thread+0x582/0x770 [ 81.422372][ T3302] kthread+0x489/0x510 [ 81.426452][ T3302] ret_from_fork+0x122/0x1b0 [ 81.431043][ T3302] ret_from_fork_asm+0x1a/0x30 [ 81.435808][ T3302] [ 81.438134][ T3302] read to 0xffff8881469e1000 of 512 bytes by task 3302 on cpu 0: [ 81.445848][ T3302] _copy_to_iter+0x130/0xe70 [ 81.450438][ T3302] copy_page_to_iter+0x18f/0x2d0 [ 81.455470][ T3302] filemap_read+0x407/0xa00 [ 81.459983][ T3302] blkdev_read_iter+0x22d/0x2e0 [ 81.464835][ T3302] vfs_read+0x64c/0x770 [ 81.469089][ T3302] ksys_read+0xda/0x1a0 [ 81.473255][ T3302] __x64_sys_read+0x40/0x50 [ 81.477759][ T3302] x64_sys_call+0x27c0/0x3000 [ 81.482440][ T3302] do_syscall_64+0xd2/0x200 [ 81.487119][ T3302] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 81.493062][ T3302] [ 81.495391][ T3302] Reported by Kernel Concurrency Sanitizer on: [ 81.501670][ T3302] CPU: 0 UID: 0 PID: 3302 Comm: udevd Not tainted syzkaller #0 PREEMPT(voluntary) [ 81.511141][ T3302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 81.521383][ T3302] ================================================================== [ 81.591146][ T6416] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 81.616343][ T3320] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.