last executing test programs: 4m59.931933169s ago: executing program 32 (id=6445): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000002c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48) r1 = socket$netlink(0x10, 0x3, 0x9) setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f00000017c0)=r0, 0x4) syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r1) 4m53.448241323s ago: executing program 33 (id=6258): perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, @perf_bp={0x0, 0xe}, 0x0, 0xfff, 0x8, 0x1, 0x10000, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) unshare(0xa000200) semtimedop(0x0, &(0x7f00000002c0)=[{0x4, 0x4, 0x1000}], 0x1, 0x0) unshare(0x20060400) 4m39.855242057s ago: executing program 34 (id=6954): mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0xf4) r1 = dup2(r0, r0) ioctl$BLKTRACESETUP(r1, 0xc030128a, 0x0) 4m22.856278357s ago: executing program 35 (id=7445): r0 = socket$igmp6(0xa, 0x3, 0x2) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'bridge0\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00', {0xff}, {}, 0x0, 0x0, 0x0, 0x4b}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0xfffffffe, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528) r1 = socket$igmp6(0xa, 0x3, 0x2) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x170, 0xffffffff, 0xffffffff, 0x170, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0x0, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528) 4m14.344015047s ago: executing program 36 (id=7671): r0 = memfd_create(&(0x7f00000000c0)='-B\xd5N4\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\x8a\xd7Uw\x00\xbc\xa92\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x19\xea\xef\xe3\xe1@\x84\x13\xefZb:\x8f\t\x01B\xec\xde\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@Ip]D\xd6\r\xac\v#co\xd5\xb9\xc806\xa8\x99\xffs7\xa1b1\xb1;i)j\x0e\x1e\xedI\xa2\x80\x89\x1d\xd9p!\xc86s\xe07(\xee\xf9<\"\xf0\xc8\xae\x96J\xe2]\x01\x86\xb7.<\xf5N\xd3\x94W1\xff\x18z>\xa7q,\xf7\x96\xb8{\x8e\xbf4\xe0\x95\x1ce\xe4\x85\xcdi\xed\xd3>\xeb\xa5\xaf\x87\x90@\xd1\xbd`^\xfa\xb6\x9cj\x13/\xc5\\W\x04\br\x17X\xe3\xfb\xc8\xd4\xaeX\xc9s\xd18\xd9L\xbf\xa0\xa6\xdf2\a\x99i\xb1/\x19@\x1cq\xeb?\xc1z:\x913\xfa8\xac\xd3q\xe4vPGU', 0x1) r1 = dup(r0) write$binfmt_elf32(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c464a030103ff0700000000000002000300040000003e0300006c00a926b87d61920c6b0000fe03200001", @ANYRES8=r0], 0x79) execveat(r1, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) 3m54.88352006s ago: executing program 37 (id=7769): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000080)='cgroup.kill\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f00000001c0)=ANY=[@ANYBLOB='-', @ANYRESOCT], 0x44) 3m51.05683447s ago: executing program 38 (id=8233): sendmsg$NFT_MSG_GETRULE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000540)=ANY=[@ANYBLOB="78000000070a010200000000000000000a000006090002007379063d00000000889269060a129b305800040008000180090001006d657461000000004400028008000140000056d6080003400000000008000140000000010800014000000009080001400000000b080002400000001e080001"], 0x78}, 0x1, 0x0, 0x0, 0x20048055}, 0x1000c080) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r0) sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000580)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000040200f2c8dc1b000000180001801400020073797a5f74756e0000000000000000000c000280"], 0x38}, 0x1, 0x0, 0x0, 0x20000844}, 0x0) 3m31.10075165s ago: executing program 39 (id=8294): r0 = socket(0x10, 0x3, 0x0) write(r0, &(0x7f0000000080)="1400000052004f030e789e7ee2ce2fa4ff612d27", 0x14) fcntl$setstatus(r0, 0x4, 0x2c00) recvmmsg(r0, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0}}], 0x344, 0x10122, 0x0) 3m28.789774294s ago: executing program 40 (id=8327): mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000003, 0xc3072, 0xffffffffffffffff, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='pagemap\x00') pread64(r0, &(0x7f0000001240)=""/102400, 0x19000, 0x1000000300) 2m49.563145655s ago: executing program 41 (id=9250): r0 = shmat(0x0, &(0x7f0000ffd000/0x2000)=nil, 0x6000) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000001, 0x13, r1, 0x0) shmdt(r0) 2m40.28179759s ago: executing program 7 (id=9675): r0 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r0, &(0x7f0000000280)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x1, 0x2, 0x10, {0x2, 0x4e24, @multicast1}}, 0x80, 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x200008c0) sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e23, @multicast2}}, 0x80, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x10) close(0x3) 2m40.253936271s ago: executing program 7 (id=9676): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00') write$binfmt_script(r0, &(0x7f0000007c40)={'#! ', './cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0xff1) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x800700, &(0x7f0000000580)={[{@grpjquota}, {@stripe={'stripe', 0x3d, 0x3}}, {@norecovery}, {@noinit_itable}, {@init_itable_val={'init_itable', 0x3d, 0x1}}, {@minixdf}, {@usrjquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@errors_continue}, {@dioread_lock}, {@noblock_validity}, {@noquota}]}, 0x3, 0x465, &(0x7f0000000f00)="$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") syz_mount_image$vfat(&(0x7f00000001c0), &(0x7f0000000280)='./bus\x00', 0x850c0d, 0x0, 0x2, 0x0, &(0x7f00000007c0)) 2m40.075547972s ago: executing program 7 (id=9681): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', 0x0}) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000040)={'batadv0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=@newlink={0x44, 0x10, 0x401, 0x20000, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8003}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}, 0x1, 0x0, 0x0, 0x240008c4}, 0x4054) 2m39.782433939s ago: executing program 7 (id=9694): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet_smc(0x2b, 0x1, 0x0) listen(r1, 0xffffffff) poll(&(0x7f0000000000)=[{r0, 0x30c}, {r1, 0x408}], 0x2, 0x80000000) 2m39.723132692s ago: executing program 7 (id=9697): mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30) mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0) mount$bpf(0x0, &(0x7f00000021c0)='./file0\x00', 0x0, 0x20, 0x0) 2m39.686770784s ago: executing program 7 (id=9698): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x41, &(0x7f0000000100)={[{@lazytime}, {@noload}, {@bh}, {@noquota}, {@noblock_validity}, {}, {@mblk_io_submit}, {@acl}, {@discard}], [], 0x3d}, 0x1, 0x522, &(0x7f00000007c0)="$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") getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f0000000100)={0x0, 0x9, 0x5, 0x9, 0x2, 0x80000001}, 0x0) r0 = socket$inet6(0xa, 0x3, 0x5) sendmmsg(r0, &(0x7f0000000a80)=[{{&(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x7080000, @mcast2, 0x200, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="080100000000000029"], 0x108}}], 0x1, 0xc040) 2m27.032948444s ago: executing program 42 (id=9609): r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x0) fcntl$setlease(r0, 0x400, 0x1) creat(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x141) rename(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000002c0)='./file1\x00') 2m24.532928978s ago: executing program 43 (id=9698): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x41, &(0x7f0000000100)={[{@lazytime}, {@noload}, {@bh}, {@noquota}, {@noblock_validity}, {}, {@mblk_io_submit}, {@acl}, {@discard}], [], 0x3d}, 0x1, 0x522, &(0x7f00000007c0)="$eJzs3UFsI1cZAOB/HHu72U2bFDhAJUqhRdkVrJ00tI16KEVCcKoElPsSEieK4sRR7LSbqIKsOHBEQgiQOJULFyROnJBQJS4cEVIlOIMAgRBs4YAEdCrb43Q3GSfZjWNn4++TJvPmeeb97zma8byZp5kARtZTEfFyRLybpun1iJjM8gvZFHudqbXeO3feWGxNSaTpq/9IIsnyumWlbY/E1WyzyxHxlS9GfD05HLexs7u2UKtVt7LlSnN9s9LY2b2xur6wUl2pbszNzT4//8L8c/MzfWnnRES89Pm/fP87P/nCS7/89Ot/vPm3a99Isvw40I77VDzqw07TS+3v4u4Nth4w2HlUbLcwM563xtihnNtnXCcAAHr7QER8IiKux2SMHX06CwAAADyE0s9OxP+S7r27Qy71yAcAAAAeIoX2GNikUM7G+05EoVAuR3sM74fiSqFWbzQ/tVzf3ljqjJWdilJhebVWncnGCk9FKWktz7bT7y8/e2B5LiIej4jvTY63l8uL9drSsC9+AAAAwIi4eqD//+/JTv8fAAAAuGCmhl0BAAAA4Mzp/wMAAMDFp/8PAAAAF9qXXnmlNaXd918vvbazvVZ/7cZStbFWXt9eLC/WtzbLK/X6SvuZfevHlVer1zc/ExvbtyrNaqNZaezs3lyvb280b67e8wpsAAAAYIAe/9hbv08iYu/F8fbUculkm55wNeC8Ku6nkmyes1v/4bHO/M8DqhQwEGPDrgAwNMVhVwAYmtKwKwAMXXLM5z0H7/wmm3+8v/UBAAD6b/oj+ff/j78uuFcYQPWAM+T+H4wu+z+MrvZ5/klH8jrjhwul5AwARt6p7/8fK03vq0IAAEDfTbSnpFDOLu9NRKFQLkc82n4tQClZXq1VZyLisYj43WTpkdbybHvL5Ng+AwAAAAAAAAAAAAAAAAAAAAAAAADQkaZJpAAAAMCFFlH4a/KrzrP8pyefmTh4feBS8p/JyF4R+vqPXv3BrYVmc2u2lf/P/fzmD7P8Z4dxBQMAAABGQvF+Vu7207v9eAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADop3fuvLHYnQYZ9++fi4ipvPjFuNyeX45SRFz5VxLFu7ZLImKsD/HHW38+nBc/aVVrP2Re/PE3Tx9/7/aR8WMq+xby4l89fXgYaW+1jj8v5+1/hXiqPc/f/4oR9yw/qN7Hv9g//o312P8fPWGMJ97+WaVn/NsRTxTzjz/d+EmP+E/nFfjzbx/K+tpXd3d7xU/fjJjO/f1J7olVaa5vVho7uzdW1xdWqivVjbm52efnX5h/bn6msrxaq2Z/c2N896O/ePeo9l/pEX/qmPY/k1PepZy8/799684HO8lSXvxrT+fE//WPszUOxy9kv32fzNKtz6e76b1O+m5P/vS3Tx7V/qUe7T/u/3+tV6EHXP/yt/50wlUBgAFo7OyuLdRq1a3zkXgx+l5yq4c/9HY9fIn/pueiGmeb+GZfC0zTNG3tU6coJ4nBfQnJ0VUd9pEJAADot/dP+oddEwAAAAAAAAAAAAAAAAAAABhdg3jS2MGYe/uppB+P0AYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6Iv3AgAA//8ZWuAG") getsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f0000000100)={0x0, 0x9, 0x5, 0x9, 0x2, 0x80000001}, 0x0) r0 = socket$inet6(0xa, 0x3, 0x5) sendmmsg(r0, &(0x7f0000000a80)=[{{&(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x7080000, @mcast2, 0x200, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="080100000000000029"], 0x108}}], 0x1, 0xc040) 1m53.141487188s ago: executing program 5 (id=10651): socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000006c0)={0xffffffffffffffff}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) close_range(r1, 0xffffffffffffffff, 0x2) dup3(r0, r1, 0x80000) 1m53.10322229s ago: executing program 5 (id=10653): r0 = syz_open_procfs(0x0, &(0x7f0000000100)='comm\x00') write$binfmt_script(r0, &(0x7f0000000300)={'#! ', './file0', [], 0xa, "3dd18c3784"}, 0x10) r1 = syz_open_procfs(0x0, &(0x7f0000000140)='status\x00') preadv(r1, &(0x7f0000000000)=[{&(0x7f0000000240)=""/135, 0x87}], 0x1, 0x0, 0x0) 1m53.050922883s ago: executing program 5 (id=10655): perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x4, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e000000080000000000180003801400038010"], 0x44}}, 0x0) 1m52.900589692s ago: executing program 5 (id=10658): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x21c91c, &(0x7f0000000500)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800000}}, {@noblock_validity}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x200000}}, {@jqfmt_vfsold}, {@noinit_itable}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xe4a}}, {@noauto_da_alloc}, {@sysvgroups}, {@resgid, 0x32}]}, 0x1, 0x4e0, &(0x7f0000001a40)="$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") r0 = syz_open_procfs(0x0, &(0x7f0000000040)='mounts\x00') mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0) preadv(r0, &(0x7f00000001c0)=[{&(0x7f00000039c0)=""/4088, 0xff8}], 0x1, 0x15f, 0x0) 1m52.398751221s ago: executing program 5 (id=10668): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file0\x00', 0xc8d0, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x1, 0x30e, &(0x7f0000000f00)="$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") mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000) r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0) getdents(r0, &(0x7f0000002840)=""/4096, 0x1000) 1m52.011224903s ago: executing program 5 (id=10680): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$ARPT_SO_SET_REPLACE(r0, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3e8, 0x0, 0x0, 0x130, 0x300, 0x300, 0x300, 0x7fffffe, 0x0, {[{{@arp={@local, @empty, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pimreg\x00', 'veth0_to_bridge\x00'}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f67b23ffdfa27f907a03732da3acbc6518e62a77ca06f258762e88c0d9f9d2f413b94a105f4bdf01425ce81c5d000000000000000500ffffffff00"}}}, {{@arp={@multicast2, @empty, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_to_team\x00', 'ip6tnl0\x00'}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE3={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438) 1m51.949035596s ago: executing program 44 (id=10680): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$ARPT_SO_SET_REPLACE(r0, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3e8, 0x0, 0x0, 0x130, 0x300, 0x300, 0x300, 0x7fffffe, 0x0, {[{{@arp={@local, @empty, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pimreg\x00', 'veth0_to_bridge\x00'}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f67b23ffdfa27f907a03732da3acbc6518e62a77ca06f258762e88c0d9f9d2f413b94a105f4bdf01425ce81c5d000000000000000500ffffffff00"}}}, {{@arp={@multicast2, @empty, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_to_team\x00', 'ip6tnl0\x00'}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE3={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438) 1m43.591831559s ago: executing program 4 (id=10968): capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff, 0x6}) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000), 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7050000080000a8c5000000a5000000180100002020640500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b300000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x35, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r1, 0xffff0000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 1m43.524212262s ago: executing program 4 (id=10970): r0 = perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x7, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="620ac4ff000000007110b300000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000003000000850000000400000095"], &(0x7f0000000480)='GPL\x00'}, 0x94) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) 1m43.443891837s ago: executing program 4 (id=10974): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x2000000020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) time(0x0) listxattr(0x0, 0x0, 0x0) 1m43.363467481s ago: executing program 4 (id=10977): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x21c91c, &(0x7f0000000500)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800000}}, {@noblock_validity}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x200000}}, {@jqfmt_vfsold}, {@noinit_itable}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0xe4a}}, {@noauto_da_alloc}, {@sysvgroups}, {@resgid, 0x32}]}, 0x1, 0x4e0, &(0x7f0000001a40)="$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") r0 = syz_open_procfs(0x0, &(0x7f0000000040)='mounts\x00') mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0) preadv(r0, &(0x7f00000001c0)=[{&(0x7f00000039c0)=""/4088, 0xff8}], 0x1, 0x15f, 0x0) 1m42.760085436s ago: executing program 4 (id=10987): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x19) io_setup(0x4, &(0x7f0000000600)=0x0) io_submit(r1, 0x1, &(0x7f0000000700)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0xfffb, r0, 0x0, 0x0, 0x100}]) 1m42.266280135s ago: executing program 4 (id=11006): r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x800000, 0xfffffffffffffffb}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) syz_mount_image$vfat(&(0x7f0000000500), &(0x7f0000000340)='./cgroup.cpu/cgroup.procs\x00', 0x2002080, &(0x7f0000000500)=ANY=[], 0x0, 0x2e4, &(0x7f0000000a00)="$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") 1m42.200535848s ago: executing program 45 (id=11006): r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x9, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x800000, 0xfffffffffffffffb}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000440)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) syz_mount_image$vfat(&(0x7f0000000500), &(0x7f0000000340)='./cgroup.cpu/cgroup.procs\x00', 0x2002080, &(0x7f0000000500)=ANY=[], 0x0, 0x2e4, &(0x7f0000000a00)="$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") 1m34.600300387s ago: executing program 1 (id=11183): r0 = memfd_secret(0x80000) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x13, r0, 0x0) mremap(&(0x7f000040b000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f00004b3000/0x4000)=nil) mremap(&(0x7f0000000000/0x9000)=nil, 0x600000, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil) 1m34.523562771s ago: executing program 1 (id=11185): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10000, &(0x7f0000000100)={[{@grpid}, {@auto_da_alloc}, {@lazytime}, {@journal_dev={'journal_dev', 0x3d, 0x6}}]}, 0x7, 0x4d4, &(0x7f0000000180)="$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") r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000001ec0), 0xffffffffffffffff) sendmsg$TIPC_NL_PUBL_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="030f00b0e600000000000700000030000280"], 0x44}}, 0x0) 1m34.378065429s ago: executing program 1 (id=11188): r0 = socket(0x10, 0x803, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xe}, {0xffff, 0xffff}, {0xffe0, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0xffffffffffffff1f, 0x2, {0x1, 0x1000}}}]}, 0x38}}, 0x0) 1m34.272658356s ago: executing program 1 (id=11192): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000001c0)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_NEW_SEC_KEY(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000200)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000fedbdf251700000008000300", @ANYRES32=r2, @ANYBLOB="4800308014000400403a050c5baee2004ef2b6d713459a7a280001801c00038006000300a1aa000006000100017ffffffe000200020000000800010000000400050002"], 0x64}}, 0x0) 1m34.207274279s ago: executing program 1 (id=11194): mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30) mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0) mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x84000, 0x0) 1m34.156931642s ago: executing program 1 (id=11195): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r1}, 0xc) 1m19.096207931s ago: executing program 46 (id=11195): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r1}, 0xc) 42.715732988s ago: executing program 9 (id=12803): r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x8, 0x0, 0x1003, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x32) writev(r0, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x180204}], 0x1) 42.660861021s ago: executing program 9 (id=12805): ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000bc0), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000f00)={0x4c, r1, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40000}, 0x14) 42.635423172s ago: executing program 9 (id=12806): perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x43, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff7, 0x1, @perf_config_ext={0x182, 0x6}, 0x602d, 0x4005, 0xb, 0x0, 0x1, 0x1, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = gettid() mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) process_vm_writev(r0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0) 41.993231229s ago: executing program 9 (id=12817): mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) chroot(&(0x7f0000000000)='./file0/../file0\x00') mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0) mount(0x0, &(0x7f0000000d40)='./file0/../file0/../file0\x00', &(0x7f0000000040)='sysfs\x00', 0x10, 0x0) 41.967093391s ago: executing program 9 (id=12818): socket$inet6_icmp(0xa, 0x2, 0x3a) perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x7, 0x80210, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0}, 0x100b28, 0x4, 0x0, 0x5, 0x8, 0x20008, 0xd, 0x0, 0x0, 0x0, 0x20000005}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x2) bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000001200)=ANY=[@ANYRESOCT], 0x0) 41.62846388s ago: executing program 9 (id=12825): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000040)=0x92c, 0x4) recvmmsg(r0, &(0x7f0000004c00)=[{{0x0, 0x0, 0x0}, 0xb393}], 0x1, 0x0, 0x0) setsockopt$sock_int(r0, 0x1, 0x28, &(0x7f0000000180)=0x5094, 0x4) 41.62839296s ago: executing program 47 (id=12825): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000040)=0x92c, 0x4) recvmmsg(r0, &(0x7f0000004c00)=[{{0x0, 0x0, 0x0}, 0xb393}], 0x1, 0x0, 0x0) setsockopt$sock_int(r0, 0x1, 0x28, &(0x7f0000000180)=0x5094, 0x4) 896.581049ms ago: executing program 8 (id=14168): unshare(0x4020400) r0 = getpid() r1 = syz_pidfd_open(r0, 0x0) open_by_handle_at(r1, &(0x7f0000002580)=ANY=[@ANYBLOB='\f\x00'], 0x0) 894.712109ms ago: executing program 8 (id=14169): bind$l2tp(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @loopback}, 0x10) r0 = syz_io_uring_setup(0x1f87, &(0x7f0000000080)={0x0, 0x0, 0x13580}, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x9, 0x0, @fd_index=0x9, 0x100, 0x0, 0xbab, 0x4}) io_uring_enter(r0, 0x15f1, 0xff9c, 0x69, 0x0, 0x0) 853.954491ms ago: executing program 6 (id=14171): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0xffff, @local}]}, &(0x7f0000000440)=0x10) getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000400)={r1, 0xa52}, &(0x7f0000000480)=0x8) 778.198515ms ago: executing program 6 (id=14173): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x80, 0x0, 0x7ffc1ffb}]}) capset(0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000e, 0x30, 0xffffffffffffffff, 0xafea3000) mknod$loop(&(0x7f00000000c0)='./file0\x00', 0x40, 0x0) 771.747326ms ago: executing program 8 (id=14174): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008032, 0xffffffffffffffff, 0xcd0b3000) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) ioctl$PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, 0x0) 642.011514ms ago: executing program 3 (id=14175): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuacct.usage_percpu_user\x00', 0x26e1, 0x0) close(r0) openat$ppp(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) read$msr(r0, &(0x7f0000000180)=""/11, 0xb) 579.713877ms ago: executing program 6 (id=14176): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)=@bridge_dellink={0x34, 0x11, 0x5, 0x0, 0x300, {0x7, 0x0, 0x0, r2, 0x1}, [@IFLA_IFALIAS={0x14, 0x14, 'veth0_macvtap\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0) 522.326221ms ago: executing program 3 (id=14179): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.time_recursive\x00', 0x275a, 0x0) copy_file_range(r1, 0x0, r0, 0x0, 0xfffffffffffffff8, 0x0) 499.048972ms ago: executing program 6 (id=14181): unshare(0x8040600) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0900000002000000e27f00000300000012"], 0x50) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000280)={{r0, 0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000040)='%ps \x00'}, 0x20) bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000300)={r1, 0x0, 0x0}, 0x20) 477.769813ms ago: executing program 3 (id=14183): mkdir(&(0x7f0000000000)='./file0\x00', 0x16e) perf_event_open(&(0x7f00000005c0)={0x2, 0x80, 0x44, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4050, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x528, 0x0, @perf_config_ext={0xe, 0xfffffffffffffffe}, 0x0, 0x40000000, 0xd2, 0x9, 0x103fb, 0x1ff, 0x1ff, 0x0, 0x0, 0x0, 0x400000000000007}, 0x0, 0x1, 0xffffffffffffffff, 0x9) r0 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x8) mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) 424.546386ms ago: executing program 0 (id=14184): r0 = socket(0x1e, 0x4, 0x0) setsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, &(0x7f0000000480), 0x4) recvmmsg(r0, &(0x7f0000000800)=[{{0x0, 0x39, &(0x7f0000000580)=[{&(0x7f0000001e40)=""/174, 0xae}], 0x1, &(0x7f0000001fc0)=""/65, 0x41}, 0x1}], 0x1, 0x40002122, 0x0) sendmsg$tipc(r0, &(0x7f0000000100)={&(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x3, {0x1, 0x1, 0x2}}, 0x10, &(0x7f0000000380)=[{&(0x7f00000000c0)="e8", 0x1}], 0x1}, 0x4800) 413.474166ms ago: executing program 6 (id=14185): syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f0000002f40)={[{@nodelalloc}, {@dioread_lock}, {@barrier_val={'barrier', 0x3d, 0x4}}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x7e}}, {@lazytime}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x10}}, {@bh}, {@init_itable}]}, 0xfc, 0x570, &(0x7f0000000540)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.current\x00', 0x275a, 0x0) r0 = open(&(0x7f00000000c0)='.\x00', 0x8000, 0x50) getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8) 408.988476ms ago: executing program 3 (id=14186): perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x27, 0x6, 0x0, 0x0, 0x0, 0x9, 0x690bb, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x1, @perf_bp={0x0, 0x8}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x3, 0x1, 0x2, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x1) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="20010000", @ANYRES16=r1, @ANYBLOB="050000000000000000000f0000000800", @ANYRES32, @ANYBLOB="47000e00800000000802110000000802"], 0x120}, 0x1, 0x0, 0x0, 0x90}, 0x0) 376.996259ms ago: executing program 2 (id=14187): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r0, &(0x7f0000000140), &(0x7f0000000000)=""/6, 0x2}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r1}, 0xc) 349.54668ms ago: executing program 2 (id=14188): r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) r1 = add_key$keyring(&(0x7f0000000200), &(0x7f0000000140)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, &(0x7f0000000240)='asymmetric\x00', &(0x7f00000001c0)=@secondary) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f00000000c0)='asymmetric\x00', &(0x7f0000000280)=@chain={'key_or_keyring:', r1}) 287.621484ms ago: executing program 0 (id=14189): perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x27, 0x6, 0x0, 0x0, 0x0, 0x9, 0x690bb, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x1, @perf_bp={0x0, 0x8}, 0x0, 0x32, 0x43a1bd76, 0x7, 0x3, 0x1, 0x2, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x1) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000900), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_GET(r0, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000940)={0x28, r1, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x14, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x20040050}, 0x0) 249.795576ms ago: executing program 3 (id=14190): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'pim6reg\x00', 0x1}) ioctl$TUNSETPERSIST(r0, 0x400454c9, 0x1) ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x18) 230.223967ms ago: executing program 8 (id=14191): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000020303000000000000080000000000000800010001"], 0x1c}, 0x1, 0x0, 0x0, 0x400c000}, 0x0) sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x1c, 0x2, 0x3, 0x3, 0x0, 0x0, {0x0, 0x0, 0x10}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}]}, 0x1c}}, 0x0) sendmsg$NFQNL_MSG_VERDICT(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="20000000010301"], 0x20}}, 0x0) 219.372748ms ago: executing program 2 (id=14192): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000240)=0x2, 0x4) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f00000002c0)=@req3={0x10000, 0x1, 0x100, 0x100}, 0x1c) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000000)=@req3={0xad7f, 0x0, 0x2, 0x0, 0x43, 0x80000000, 0x80000001}, 0x1c) 191.533799ms ago: executing program 0 (id=14193): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast2, @in6=@loopback, 0x0, 0x8, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa9, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x40800000000000, 0x800000000000002}}, [@tmpl={0x44, 0x5, [{{@in=@local, 0x0, 0x3c}, 0x0, @in=@broadcast, 0x2, 0x4, 0x3}]}]}, 0xfc}}, 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000001100)=@migrate={0xec, 0x21, 0x1, 0x0, 0x0, {{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, @in6=@dev={0xfe, 0x80, '\x00', 0x3a}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0xa0, 0x2e}}, [@migrate={0x9c, 0x11, [{@in6=@dev={0xfe, 0x80, '\x00', 0xb}, @in=@loopback, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, @in6=@loopback, 0x3c, 0x4, 0x0, 0x0, 0xa, 0xa}, {@in=@private=0xa010101, @in6=@rand_addr=' \x01\x00', @in=@dev={0xac, 0x14, 0x14, 0x39}, @in6=@private2, 0x3c, 0x4, 0x0, 0x0, 0x8, 0x2}]}]}, 0xec}, 0x1, 0x0, 0x0, 0x40000}, 0x0) 108.375564ms ago: executing program 8 (id=14194): socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f00000000c0)=[{0x20, 0x0, 0x2, 0xfffff010}, {0x20, 0x0, 0x20, 0xfffff034}, {0x6}]}, 0x10) sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x4c, 0x12, 0x613, 0x70bd26, 0x25dfdbfd, {0x6, 0xff, 0x1, 0xfc, {0x4e24, 0x4e2b, [0x4, 0xfffffffa, 0x6, 0x8], [0x400007, 0x8, 0x61, 0xb94], 0x0, [0x1, 0x4]}, 0x1, 0x8005}}, 0x4c}, 0x1, 0x0, 0x0, 0xc0}, 0x0) sendmmsg(r0, &(0x7f0000000180), 0x4000190, 0x0) 108.188064ms ago: executing program 2 (id=14195): sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) r0 = socket(0xa, 0x3, 0x3a) setsockopt$MRT6_FLUSH(r0, 0x29, 0xd0, &(0x7f0000000080)=0x6, 0x4) 107.977034ms ago: executing program 0 (id=14196): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000280)={@private1, 0x800, 0x0, 0x103, 0x1}, 0x20) setreuid(0xee01, 0xee01) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@mcast1, 0x800, 0x0, 0x103, 0x1}, 0x20) 97.103634ms ago: executing program 2 (id=14197): r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x105042, 0x189) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2000000, 0x4012011, r0, 0x0) r1 = socket$kcm(0xa, 0x922000000003, 0x11) setsockopt$sock_attach_bpf(r1, 0x29, 0x24, &(0x7f00000000c0), 0x4) 68.557966ms ago: executing program 0 (id=14198): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000640)={'batadv_slave_0\x00', 0x0}) sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000680)={0x34, r1, 0x1, 0x70bd2b, 0x25dfdbfd, {}, [@ETHTOOL_A_PAUSE_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000090}, 0x44014) 64.818697ms ago: executing program 3 (id=14199): perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x27, 0x6, 0x0, 0x0, 0x0, 0x9, 0x690bb, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x1, @perf_bp={0x0, 0x8}, 0x880, 0x34, 0x43a1bd76, 0x7, 0x3, 0x1, 0x2, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x1) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010029bd70000000000049c3a2"], 0x64}, 0x1, 0x0, 0x0, 0x4004840}, 0x44000) 56.821947ms ago: executing program 2 (id=14200): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x52) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000300)={r0}, 0xc) 55.311767ms ago: executing program 6 (id=14201): unshare(0x60600) pipe(&(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000001800)='\x00', 0x1}], 0x1, 0x2) vmsplice(r0, &(0x7f00000001c0)=[{&(0x7f0000001480)="fb", 0x1}], 0x1, 0xe) 35.133518ms ago: executing program 8 (id=14202): r0 = socket$inet6(0xa, 0x800000000000002, 0x0) setsockopt$sock_linger(r0, 0x1, 0x3d, &(0x7f0000000080)={0xb}, 0x8) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e27, 0x9, @remote, 0x9}, 0x1c) write(r0, 0x0, 0x0) 0s ago: executing program 0 (id=14203): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x40000000, @private1, 0x7}, 0x1c) shutdown(r0, 0x1) getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000080), &(0x7f0000000140)=0x4) kernel console output (not intermixed with test programs): pid=2351 comm="syz.0.12049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f549724aeb9 code=0x7ffc0000 [ 419.797407][ T2359] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=2359 comm=syz.8.12052 [ 419.888093][ T2367] loop3: detected capacity change from 0 to 512 [ 419.909149][ T2367] EXT4-fs (loop3): 1 truncate cleaned up [ 419.929994][ T2367] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 420.042786][ T1047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 420.085884][ T2392] netlink: 48 bytes leftover after parsing attributes in process `syz.3.12067'. [ 420.107477][ T2384] hub 6-0:1.0: USB hub found [ 420.114738][ T2384] hub 6-0:1.0: 8 ports detected [ 420.317338][ T2416] loop6: detected capacity change from 0 to 512 [ 420.326396][ T2418] netlink: 'syz.0.12079': attribute type 9 has an invalid length. [ 420.337706][ T2416] EXT4-fs: Ignoring removed orlov option [ 420.376560][ T2416] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem [ 420.397866][ T2416] EXT4-fs error (device loop6): ext4_iget_extra_inode:5073: inode #15: comm syz.6.12078: corrupted in-inode xattr: e_value size too large [ 420.415902][ T2416] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.12078: couldn't read orphan inode 15 (err -117) [ 420.435027][ T2424] netlink: 'syz.0.12081': attribute type 29 has an invalid length. [ 420.448552][ T2416] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 420.495610][T27799] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 420.520318][ T2428] netlink: 'syz.3.12084': attribute type 2 has an invalid length. [ 420.528270][ T2428] netlink: 100 bytes leftover after parsing attributes in process `syz.3.12084'. [ 420.569460][ T2430] loop8: detected capacity change from 0 to 256 [ 420.589607][ T2430] FAT-fs (loop8): error, clusters badly computed (0 != 128) [ 420.597054][ T2430] FAT-fs (loop8): Filesystem has been set read-only [ 420.603878][ T2430] FAT-fs (loop8): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 421.009179][ T2478] program syz.9.12104 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 421.206854][ T2501] loop9: detected capacity change from 0 to 128 [ 421.306808][ T2512] loop3: detected capacity change from 0 to 128 [ 421.360445][ T2512] FAT-fs (loop3): error, invalid FAT chain (i_pos 548, last_block 8) [ 421.368628][ T2512] FAT-fs (loop3): Filesystem has been set read-only [ 421.385280][ T2512] FAT-fs (loop3): error, corrupted file size (i_pos 548, 522) [ 421.393699][ T2517] bond2 (unregistering): Released all slaves [ 421.415833][ T2522] geneve2: entered promiscuous mode [ 421.421179][ T2522] geneve2: entered allmulticast mode [ 421.488355][ T2530] loop8: detected capacity change from 0 to 512 [ 421.510462][ T2530] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 421.548994][ T2534] delete_channel: no stack [ 421.560379][ T2536] netlink: 24 bytes leftover after parsing attributes in process `syz.9.12131'. [ 421.830929][T20874] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 421.839133][T20874] hid-generic 0000:0000:0000.0008: hidraw0: HID v0.00 Device [syz0] on syz0 [ 421.895906][ T2576] program syz.9.12148 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 421.932916][ T2571] fido_id[2571]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 422.041139][ T2592] loop8: detected capacity change from 0 to 128 [ 422.108310][ T2595] loop8: detected capacity change from 0 to 512 [ 422.331534][T30680] udevd[30680]: symlink '../../loop9' '/dev/disk/by-diskseq/1306.tmp-b7:9' failed: Read-only file system [ 422.369640][T30680] udevd[30680]: symlink '../../loop9' '/dev/disk/by-diskseq/1306.tmp-b7:9' failed: Read-only file system [ 422.405542][T30680] udevd[30680]: symlink '../../loop9' '/dev/disk/by-diskseq/1306.tmp-b7:9' failed: Read-only file system [ 422.443829][T30680] udevd[30680]: symlink '../../loop9' '/dev/disk/by-diskseq/1306.tmp-b7:9' failed: Read-only file system [ 422.459890][ T2616] loop6: detected capacity change from 0 to 1024 [ 422.478588][ T2616] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 422.498679][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-diskseq/1315.tmp-b7:6' failed: Read-only file system [ 422.514653][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system [ 422.530254][T27799] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 422.546349][T30680] udevd[30680]: symlink '../../loop9' '/dev/disk/by-diskseq/1306.tmp-b7:9' failed: Read-only file system [ 422.573912][ T2627] netlink: 20 bytes leftover after parsing attributes in process `syz.6.12170'. [ 422.575057][T27668] udevd[27668]: symlink '../../loop4' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system [ 422.633934][T27668] udevd[27668]: symlink '../../loop6' '/dev/disk/by-diskseq/1315.tmp-b7:6' failed: Read-only file system [ 422.650176][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1314.tmp-b7:8' failed: Read-only file system [ 422.743492][ T2635] SELinux: failed to load policy [ 422.782688][ T2640] EXT4-fs: Ignoring removed oldalloc option [ 422.800188][ T2640] EXT4-fs error (device loop8): ext4_xattr_inode_iget:437: comm syz.8.12178: Parent and EA inode have the same ino 15 [ 422.818594][ T2640] EXT4-fs error (device loop8): ext4_xattr_inode_iget:437: comm syz.8.12178: Parent and EA inode have the same ino 15 [ 422.843463][ T2640] EXT4-fs (loop8): 1 orphan inode deleted [ 422.870167][ T2640] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 422.896592][ T29] kauditd_printk_skb: 69 callbacks suppressed [ 422.896608][ T29] audit: type=1400 audit(2000000042.560:3390): avc: denied { unlink } for pid=2639 comm="syz.8.12178" name="file1" dev="loop8" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 422.925966][ T2640] EXT4-fs warning (device loop8): __ext4_unlink:3276: inode #15: comm syz.8.12178: Deleting file 'file1' with no links [ 422.959790][T31624] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 423.238179][ T2674] tap0: tun_chr_ioctl cmd 1074025673 [ 423.341482][T30680] loop8: p1 < > p3 [ 423.345946][T30680] loop8: p3 size 134217728 extends beyond EOD, truncated [ 423.365561][ T2682] loop8: p1 < > p3 [ 423.370165][ T2682] loop8: p3 size 134217728 extends beyond EOD, truncated [ 423.579602][ T2706] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 423.600382][ T2706] ext4 filesystem being mounted at /501/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 423.650581][T27985] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 423.666918][ T2716] EXT4-fs (loop3): 1 truncate cleaned up [ 423.673218][ T2716] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 423.698011][ T2716] EXT4-fs error (device loop3): ext4_generic_delete_entry:2666: inode #2: block 13: comm syz.3.12200: bad entry in directory: inode out of bounds - offset=0, inode=131074, rec_len=12, size=1024 fake=1 [ 423.719185][ T2716] EXT4-fs error (device loop3) in ext4_delete_entry:2737: Corrupt filesystem [ 423.728304][ T2716] EXT4-fs warning (device loop3): ext4_rename_delete:3729: inode #2: comm syz.3.12200: Deleting old file: nlink 4, error=-117 [ 423.743169][ T2716] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.12200: bg 0: block 465: padding at end of block bitmap is not set [ 423.758385][ T2716] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6689: Corrupt filesystem [ 423.768244][ T2716] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.12200: invalid indirect mapped block 234881024 (level 0) [ 423.816548][ T1047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 423.830403][ T29] audit: type=1400 audit(2000000043.480:3391): avc: denied { getopt } for pid=2724 comm="syz.0.12204" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 423.831463][ T2726] EXT4-fs (loop9): orphan cleanup on readonly fs [ 423.891595][ T2726] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.12202: bg 0: block 248: padding at end of block bitmap is not set [ 423.944711][ T2726] Quota error (device loop9): write_blk: dquota write failed [ 423.952263][ T2726] Quota error (device loop9): qtree_write_dquot: Error -117 occurred while creating quota [ 423.962476][ T2726] EXT4-fs error (device loop9): ext4_acquire_dquot:6986: comm syz.9.12202: Failed to acquire dquot type 1 [ 423.974683][ T2726] EXT4-fs (loop9): 1 truncate cleaned up [ 423.981558][ T2726] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 424.007587][ T2746] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12212'. [ 424.020039][ T29] audit: type=1400 audit(2000000043.690:3392): avc: denied { setopt } for pid=2743 comm="syz.8.12211" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 424.050241][ T2726] EXT4-fs (loop9): shut down requested (0) [ 424.086025][T27985] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 424.160650][ T2758] netlink: 44 bytes leftover after parsing attributes in process `syz.8.12218'. [ 424.169807][ T2758] netlink: 43 bytes leftover after parsing attributes in process `syz.8.12218'. [ 424.179007][ T2758] netlink: 'syz.8.12218': attribute type 6 has an invalid length. [ 424.186848][ T2758] netlink: 'syz.8.12218': attribute type 5 has an invalid length. [ 424.194760][ T2758] netlink: 43 bytes leftover after parsing attributes in process `syz.8.12218'. [ 424.279648][ T2762] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 424.332158][T31624] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 424.408157][ T2776] SELinux: failed to load policy [ 424.470235][ T2788] netlink: 1367 bytes leftover after parsing attributes in process `syz.9.12231'. [ 424.488124][ T2790] program syz.8.12233 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 424.506963][ T2792] set_capacity_and_notify: 8 callbacks suppressed [ 424.506981][ T2792] loop9: detected capacity change from 0 to 128 [ 424.554569][ T2795] loop9: detected capacity change from 0 to 1024 [ 424.569628][ T2795] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 424.587779][ T29] audit: type=1400 audit(2000000044.260:3393): avc: denied { watch } for pid=2794 comm="syz.9.12235" path="/509/file1/file1" dev="loop9" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 424.621692][T27985] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 424.809046][ T2828] netlink: 8 bytes leftover after parsing attributes in process `syz.8.12242'. [ 424.966308][ T2844] loop6: detected capacity change from 0 to 1024 [ 424.997658][ T2844] ext4 filesystem being mounted at /519/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 425.169871][ T2844] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.12249: bg 0: block 112: padding at end of block bitmap is not set [ 425.338871][ T2844] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 1 with error 117 [ 425.351361][ T2844] EXT4-fs (loop6): This should not happen!! Data will be lost [ 425.351361][ T2844] [ 425.378422][ T2844] EXT4-fs warning (device loop6): ext4_resize_begin:82: There are errors in the filesystem, so online resizing is not allowed [ 425.643033][ T2862] loop6: detected capacity change from 0 to 512 [ 425.659353][ T2862] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 425.698641][ T2862] EXT4-fs (loop6): 1 truncate cleaned up [ 425.706981][ T2862] EXT4-fs (loop6): shut down requested (0) [ 425.712999][ T29] audit: type=1400 audit(2000000045.370:3394): avc: denied { connect } for pid=2863 comm="syz.0.12258" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 425.733151][ T29] audit: type=1400 audit(2000000045.370:3395): avc: denied { write } for pid=2863 comm="syz.0.12258" path="socket:[105982]" dev="sockfs" ino=105982 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 426.011643][ T2895] loop8: detected capacity change from 0 to 128 [ 426.095806][ T2904] program syz.9.12276 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 426.152322][ T29] audit: type=1400 audit(2000000045.820:3396): avc: denied { getopt } for pid=2900 comm="syz.0.12274" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 426.312927][ T2924] loop3: detected capacity change from 0 to 2048 [ 426.329798][ T29] audit: type=1400 audit(2000000046.000:3397): avc: denied { create } for pid=2931 comm="syz.0.12290" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 426.426469][ T2942] netem: incorrect ge model size [ 426.431622][ T2942] netem: change failed [ 426.537846][ T2957] pimreg: entered allmulticast mode [ 426.548795][ T2960] loop9: detected capacity change from 0 to 128 [ 426.556099][ T2957] pimreg: left allmulticast mode [ 426.619742][ T2966] loop9: detected capacity change from 0 to 512 [ 426.655241][ T2971] netlink: 24 bytes leftover after parsing attributes in process `syz.8.12306'. [ 426.680949][ T2974] sctp: [Deprecated]: syz.3.12307 (pid 2974) Use of struct sctp_assoc_value in delayed_ack socket option. [ 426.680949][ T2974] Use struct sctp_sack_info instead [ 426.788314][ T2984] loop9: detected capacity change from 0 to 512 [ 426.839538][ T2984] EXT4-fs (loop9): revision level too high, forcing read-only mode [ 426.847564][ T2984] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 426.866936][ T2984] System zones: 0-1, 15-15, 18-18, 34-34 [ 426.890886][ T2984] EXT4-fs (loop9): orphan cleanup on readonly fs [ 426.910933][ T2984] EXT4-fs warning (device loop9): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 426.925669][ T2984] EXT4-fs (loop9): Cannot turn on quotas: error -22 [ 426.945487][ T2984] EXT4-fs (loop9): 1 truncate cleaned up [ 427.066585][ T3007] loop3: detected capacity change from 0 to 4096 [ 427.229782][ T3026] ext4 filesystem being mounted at /311/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 427.316439][ T3047] netlink: 'syz.8.12332': attribute type 4 has an invalid length. [ 427.342644][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-diskseq/1355.tmp-b7:6' failed: Read-only file system [ 427.381316][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1356.tmp-b7:8' failed: Read-only file system [ 427.423640][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1356.tmp-b7:8' failed: Read-only file system [ 427.441455][T27668] udevd[27668]: symlink '../../loop6' '/dev/disk/by-diskseq/1355.tmp-b7:6' failed: Read-only file system [ 427.473291][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-diskseq/1355.tmp-b7:6' failed: Read-only file system [ 427.494760][ T3064] EXT4-fs: Ignoring removed orlov option [ 427.504345][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-diskseq/1357.tmp-b7:6' failed: Read-only file system [ 427.518559][T27668] udevd[27668]: symlink '../../loop8' '/dev/disk/by-diskseq/1356.tmp-b7:8' failed: Read-only file system [ 427.526254][ T3064] EXT4-fs error (device loop6): ext4_ext_check_inode:523: inode #4: comm syz.6.12341: pblk 98 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0) [ 427.548873][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system [ 427.562961][ T3064] EXT4-fs error (device loop6): ext4_quota_enable:7180: comm syz.6.12341: Bad quota inode: 4, type: 1 [ 427.574325][ T3064] EXT4-fs warning (device loop6): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 427.589295][ T3064] EXT4-fs (loop6): mount failed [ 427.609585][T30680] udevd[30680]: symlink '../../loop4' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system [ 427.623415][T27668] udevd[27668]: symlink '../../loop8' '/dev/disk/by-diskseq/1356.tmp-b7:8' failed: Read-only file system [ 427.625288][ T3064] netlink: 140 bytes leftover after parsing attributes in process `syz.6.12341'. [ 427.689514][ T3075] netlink: 12 bytes leftover after parsing attributes in process `syz.0.12346'. [ 427.745993][ T3085] EXT4-fs: Ignoring removed nomblk_io_submit option [ 427.754971][ T3085] EXT4-fs (loop8): revision level too high, forcing read-only mode [ 427.763068][ T3085] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c000e128, mo2=0002] [ 427.772700][ T3085] EXT4-fs (loop8): orphan cleanup on readonly fs [ 427.781821][ T3085] EXT4-fs warning (device loop8): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 427.796494][ T3085] EXT4-fs (loop8): Cannot turn on quotas: error -22 [ 427.804208][ T3085] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.12351: bg 0: block 40: padding at end of block bitmap is not set [ 427.824481][ T3085] EXT4-fs (loop8): Remounting filesystem read-only [ 427.832201][ T3085] EXT4-fs (loop8): 1 truncate cleaned up [ 428.049897][ T3098] netlink: 'syz.8.12356': attribute type 8 has an invalid length. [ 428.114367][ T3111] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 428.150902][ T3114] ISOFS: unable to read i-node block [ 428.345339][ T3141] vhci_hcd vhci_hcd.3: default hub control req: 8013 v0000 i0000 l31125 [ 428.470536][ T3162] ext4 filesystem being mounted at /119/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 428.503444][ T3170] netlink: 4 bytes leftover after parsing attributes in process `syz.8.12384'. [ 428.684528][ T3197] program syz.3.12397 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 428.754410][ T3395] IPVS: starting estimator thread 0... [ 428.775887][ T29] kauditd_printk_skb: 4 callbacks suppressed [ 428.775907][ T29] audit: type=1400 audit(2000000051.445:3400): avc: denied { setopt } for pid=3208 comm="syz.3.12402" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 428.857204][ T3207] IPVS: using max 2208 ests per chain, 110400 per kthread [ 428.920419][ T29] audit: type=1400 audit(2000000051.595:3401): avc: denied { accept } for pid=3223 comm="syz.0.12409" lport=43807 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 429.037463][ T29] audit: type=1400 audit(2000000051.705:3402): avc: denied { read } for pid=3237 comm="syz.8.12414" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 429.538661][ T3264] set_capacity_and_notify: 8 callbacks suppressed [ 429.538691][ T3264] loop6: detected capacity change from 0 to 1024 [ 429.553474][ T3264] EXT4-fs: Ignoring removed orlov option [ 429.699740][ T29] audit: type=1326 audit(2000000052.375:3403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3275 comm="syz.8.12433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feecfc9aeb9 code=0x7ffc0000 [ 429.723396][ T29] audit: type=1326 audit(2000000052.375:3404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3275 comm="syz.8.12433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feecfc9aeb9 code=0x7ffc0000 [ 429.747145][ T29] audit: type=1326 audit(2000000052.375:3405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3275 comm="syz.8.12433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7feecfc9aeb9 code=0x7ffc0000 [ 429.770781][ T29] audit: type=1326 audit(2000000052.375:3406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3275 comm="syz.8.12433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feecfc9aeb9 code=0x7ffc0000 [ 429.794342][ T29] audit: type=1326 audit(2000000052.375:3407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3275 comm="syz.8.12433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feecfc9aeb9 code=0x7ffc0000 [ 429.817998][ T29] audit: type=1326 audit(2000000052.375:3408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3275 comm="syz.8.12433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=333 compat=0 ip=0x7feecfc9aeb9 code=0x7ffc0000 [ 429.852520][ T29] audit: type=1326 audit(2000000052.515:3409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3275 comm="syz.8.12433" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feecfc9aeb9 code=0x7ffc0000 [ 430.062102][ T3306] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=24 sclass=netlink_audit_socket pid=3306 comm=syz.0.12445 [ 430.299597][ T3337] program syz.0.12457 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 430.322826][ T3338] veth0_vlan: entered allmulticast mode [ 430.339587][ T3338] veth0_vlan: left promiscuous mode [ 430.345468][ T3338] veth0_vlan: entered promiscuous mode [ 430.392352][ T3344] netlink: 548 bytes leftover after parsing attributes in process `syz.6.12461'. [ 430.444230][ T3346] loop3: detected capacity change from 0 to 1764 [ 430.793354][ T3384] tap0: tun_chr_ioctl cmd 2147767517 [ 430.818527][ T3388] bond2: entered promiscuous mode [ 430.824408][ T3388] 8021q: adding VLAN 0 to HW filter on device bond2 [ 430.832640][ T3388] team0: Port device bond2 added [ 431.135780][ T3431] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12498'. [ 431.272425][ T3450] loop8: detected capacity change from 0 to 164 [ 431.294446][ T3450] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 431.357893][ T3453] loop8: detected capacity change from 0 to 1024 [ 431.383294][ T3453] EXT4-fs (loop8): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 431.394481][ T3453] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 431.424958][ T3453] JBD2: no valid journal superblock found [ 431.431253][ T3453] EXT4-fs (loop8): Could not load journal inode [ 431.470082][ T3453] SELinux: security_context_str_to_sid (Ð-šXܘ7.H\¹ÿ %ºu@) failed with errno=-22 [ 431.503016][ T3460] loop9: detected capacity change from 0 to 128 [ 431.572461][ T3462] loop8: detected capacity change from 0 to 512 [ 431.615754][ T3462] ext4 filesystem being mounted at /367/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 431.759666][ T3476] loop6: detected capacity change from 0 to 512 [ 431.789243][ T3476] ext4 filesystem being mounted at /569/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 431.820884][ T3476] EXT4-fs error (device loop6): ext4_xattr_block_get:597: inode #12: comm syz.6.12517: corrupted xattr block 6: invalid header [ 431.844878][ T3476] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop6 ino=12 [ 431.855428][ T3476] EXT4-fs error (device loop6): ext4_xattr_block_get:597: inode #12: comm syz.6.12517: corrupted xattr block 6: invalid header [ 431.871898][ T3476] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop6 ino=12 [ 431.881369][ T3476] EXT4-fs error (device loop6): ext4_xattr_block_get:597: inode #12: comm syz.6.12517: corrupted xattr block 6: invalid header [ 431.996560][ T3476] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop6 ino=12 [ 432.019841][ T3476] EXT4-fs error (device loop6): ext4_xattr_block_get:597: inode #12: comm syz.6.12517: corrupted xattr block 6: invalid header [ 432.068384][ T3476] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop6 ino=12 [ 432.085557][ T3490] tap0: tun_chr_ioctl cmd 1074025675 [ 432.091063][ T3490] tap0: persist disabled [ 432.103071][ T3476] EXT4-fs error (device loop6): ext4_xattr_block_get:597: inode #12: comm syz.6.12517: corrupted xattr block 6: invalid header [ 432.134829][ T3476] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop6 ino=12 [ 432.157257][ T3476] EXT4-fs error (device loop6): ext4_xattr_block_get:597: inode #12: comm syz.6.12517: corrupted xattr block 6: invalid header [ 432.311204][ T3496] loop6: detected capacity change from 0 to 736 [ 432.350536][ T3498] netlink: 24 bytes leftover after parsing attributes in process `syz.3.12525'. [ 432.386979][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-diskseq/1383.tmp-b7:6' failed: Read-only file system [ 432.404978][T27668] udevd[27668]: symlink '../../loop9' '/dev/disk/by-diskseq/1378.tmp-b7:9' failed: Read-only file system [ 432.451335][T27662] udevd[27662]: symlink '../../loop3' '/dev/disk/by-diskseq/1372.tmp-b7:3' failed: Read-only file system [ 432.471767][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-label/CDROM.tmp-b7:6' failed: Read-only file system [ 432.483811][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-uuid/2022-11-22-16-59-57-00.tmp-b7:6' failed: Read-only file system [ 432.519785][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-diskseq/1383.tmp-b7:6' failed: Read-only file system [ 432.586640][T27668] udevd[27668]: symlink '../../loop9' '/dev/disk/by-diskseq/1378.tmp-b7:9' failed: Read-only file system [ 432.600105][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-diskseq/1383.tmp-b7:6' failed: Read-only file system [ 432.612537][T27662] udevd[27662]: symlink '../../loop3' '/dev/disk/by-diskseq/1372.tmp-b7:3' failed: Read-only file system [ 432.669607][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-diskseq/1384.tmp-b7:6' failed: Read-only file system [ 432.740125][ T3521] netlink: 24 bytes leftover after parsing attributes in process `syz.3.12537'. [ 432.759883][ T3521] netlink: 24 bytes leftover after parsing attributes in process `syz.3.12537'. [ 432.856901][ T3535] pimreg0: tun_chr_ioctl cmd 1074025678 [ 432.862605][ T3535] pimreg0: group set to 1 [ 432.940842][ T3523] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 432.956296][ T3523] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 433.018570][ T3545] netlink: 84 bytes leftover after parsing attributes in process `syz.6.12548'. [ 433.027865][ T3545] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 433.416769][ T3569] batadv_slave_0: entered promiscuous mode [ 433.434693][ T3566] batadv_slave_0: left promiscuous mode [ 433.799641][ T29] kauditd_printk_skb: 31 callbacks suppressed [ 433.799699][ T29] audit: type=1400 audit(2000000056.475:3441): avc: denied { name_bind } for pid=3594 comm="syz.8.12571" src=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1 [ 433.830778][ T3602] ieee802154 phy0 wpan0: encryption failed: -22 [ 433.875565][ T3608] netem: change failed [ 434.336355][ T3631] loop9: detected capacity change from 0 to 512 [ 434.377767][ T3631] ext4 filesystem being mounted at /553/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 434.526370][ T3655] netlink: 20 bytes leftover after parsing attributes in process `syz.9.12598'. [ 434.614092][ T3669] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3669 comm=syz.6.12602 [ 434.680338][ T3673] loop3: detected capacity change from 0 to 1024 [ 434.711327][ T3673] EXT4-fs: Ignoring removed orlov option [ 434.859463][ T3698] program syz.3.12617 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 434.908737][ T29] audit: type=1400 audit(2000000057.575:3442): avc: denied { mount } for pid=3704 comm="syz.9.12621" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 435.153562][ T29] audit: type=1400 audit(2000000057.815:3443): avc: denied { create } for pid=3737 comm="syz.3.12637" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=udp_socket permissive=1 [ 435.203493][ T3741] tap0: tun_chr_ioctl cmd 1074025677 [ 435.216908][ T3741] tap0: linktype set to 805 [ 435.266077][ T3746] program syz.6.12640 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 435.299670][ T29] audit: type=1326 audit(2000000057.975:3444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3749 comm="syz.0.12642" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f549724aeb9 code=0x7ffc0000 [ 435.323495][ T29] audit: type=1326 audit(2000000057.975:3445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3749 comm="syz.0.12642" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7f549724aeb9 code=0x7ffc0000 [ 435.347317][ T29] audit: type=1326 audit(2000000057.975:3446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3749 comm="syz.0.12642" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f549724aeb9 code=0x7ffc0000 [ 435.377742][ T29] audit: type=1326 audit(2000000058.025:3447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3749 comm="syz.0.12642" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f549724aeb9 code=0x7ffc0000 [ 435.708743][ T3780] netlink: 8 bytes leftover after parsing attributes in process `syz.9.12657'. [ 435.744040][ T3782] netlink: 104 bytes leftover after parsing attributes in process `syz.3.12658'. [ 435.744650][ T29] audit: type=1400 audit(2000000058.415:3448): avc: denied { nlmsg_read } for pid=3781 comm="syz.3.12658" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 435.872997][ T3787] loop9: detected capacity change from 0 to 512 [ 436.003238][ T3762] sctp: [Deprecated]: syz.0.12648 (pid 3762) Use of int in max_burst socket option. [ 436.003238][ T3762] Use struct sctp_assoc_value instead [ 436.165970][ T3816] netlink: 4 bytes leftover after parsing attributes in process `syz.0.12673'. [ 436.341434][ T3843] loop8: detected capacity change from 0 to 256 [ 436.539596][ T3861] xt_CT: You must specify a L4 protocol and not use inversions on it [ 436.671542][ T3877] program syz.8.12702 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 436.953304][ T3894] netlink: 277 bytes leftover after parsing attributes in process `syz.3.12710'. [ 437.027934][ T3900] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12713'. [ 437.095761][ T3905] loop9: detected capacity change from 0 to 256 [ 437.136018][ T29] audit: type=1400 audit(2000000059.805:3449): avc: denied { module_load } for pid=3904 comm="syz.9.12715" path="/570/file0/file1" dev="loop9" ino=169 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=system permissive=1 [ 437.141959][ T3905] Invalid ELF header magic: != ELF [ 437.230935][ T3915] loop8: detected capacity change from 0 to 512 [ 437.309779][ T3923] loop9: detected capacity change from 0 to 1024 [ 437.316943][ T3923] EXT4-fs: Ignoring removed mblk_io_submit option [ 437.324530][ T3923] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 437.334130][ T3923] EXT4-fs (loop9): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 437.352889][ T3923] EXT4-fs error (device loop9): ext4_ext_check_inode:523: inode #11: comm syz.9.12723: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 437.373296][ T3923] EXT4-fs error (device loop9): ext4_orphan_get:1396: comm syz.9.12723: couldn't read orphan inode 11 (err -117) [ 437.390229][ T3923] EXT4-fs error (device loop9): ext4_read_block_bitmap_nowait:483: comm syz.9.12723: Invalid block bitmap block 0 in block_group 0 [ 437.398242][T30680] udevd[30680]: symlink '../../loop9' '/dev/disk/by-diskseq/1396.tmp-b7:9' failed: Read-only file system [ 437.409978][T27668] udevd[27668]: symlink '../../loop8' '/dev/disk/by-diskseq/1394.tmp-b7:8' failed: Read-only file system [ 437.429584][T30680] udevd[30680]: symlink '../../loop9' '/dev/disk/by-label/syzkal\xff\xff\xff\xff\xff\xff\xff\x7f.tmp-b7:9' failed: Read-only file system [ 437.446546][T27668] udevd[27668]: symlink '../../loop8' '/dev/disk/by-diskseq/1394.tmp-b7:8' failed: Read-only file system [ 437.457653][ T3923] Quota error (device loop9): write_blk: dquota write failed [ 437.468954][T27668] udevd[27668]: symlink '../../loop8' '/dev/disk/by-diskseq/1397.tmp-b7:8' failed: Read-only file system [ 437.473346][T30680] udevd[30680]: symlink '../../loop9' '/dev/disk/by-diskseq/1396.tmp-b7:9' failed: Read-only file system [ 437.493175][ T3923] EXT4-fs error (device loop9): ext4_acquire_dquot:6986: comm syz.9.12723: Failed to acquire dquot type 0 [ 437.537267][ T3932] EXT4-fs error (device loop9): ext4_read_inode_bitmap:139: comm syz.9.12723: Invalid inode bitmap blk 137438953472 in block_group 0 [ 437.555107][T30680] udevd[30680]: symlink '../../loop9' '/dev/disk/by-label/syzkal\xff\xff\xff\xff\xff\xff\xff\x7f.tmp-b7:9' failed: Read-only file system [ 437.592788][ T37] EXT4-fs error (device loop9): __ext4_get_inode_loc:4830: comm kworker/u8:2: Invalid inode table block 8589934593 in block_group 0 [ 437.627928][T30680] udevd[30680]: symlink '../../loop9' '/dev/disk/by-diskseq/1396.tmp-b7:9' failed: Read-only file system [ 437.653924][T30680] udevd[30680]: symlink '../../loop9' '/dev/disk/by-diskseq/1396.tmp-b7:9' failed: Read-only file system [ 437.654242][T27668] udevd[27668]: symlink '../../loop8' '/dev/disk/by-diskseq/1397.tmp-b7:8' failed: Read-only file system [ 437.726985][ T3943] futex_wake_op: syz.3.12731 tries to shift op by 35; fix this program [ 438.067586][T21108] usb usb8-port5: attempt power cycle [ 438.204506][ T3972] netlink: 8 bytes leftover after parsing attributes in process `syz.6.12745'. [ 438.213665][ T3972] netlink: 'syz.6.12745': attribute type 5 has an invalid length. [ 438.258902][ T3976] netlink: 52 bytes leftover after parsing attributes in process `syz.6.12747'. [ 438.391692][ T3984] netlink: 8 bytes leftover after parsing attributes in process `syz.6.12751'. [ 438.455929][ T3990] loop6: detected capacity change from 0 to 512 [ 438.463678][ T3990] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 438.480083][ T3990] ext4 filesystem being mounted at /621/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 438.713841][ T4021] loop8: detected capacity change from 0 to 256 [ 438.727919][ T4021] netlink: 64859 bytes leftover after parsing attributes in process `syz.8.12769'. [ 439.025488][ T29] kauditd_printk_skb: 4 callbacks suppressed [ 439.025508][ T29] audit: type=1400 audit(2000000061.695:3453): avc: denied { mount } for pid=4058 comm="syz.3.12784" name="/" dev="configfs" ino=988 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1 [ 439.072734][ T29] audit: type=1400 audit(2000000061.695:3454): avc: denied { search } for pid=4058 comm="syz.3.12784" name="/" dev="configfs" ino=988 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 439.095005][ T29] audit: type=1400 audit(2000000061.695:3455): avc: denied { setattr } for pid=4058 comm="syz.3.12784" name="/" dev="configfs" ino=988 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 439.141438][ T4063] loop8: detected capacity change from 0 to 512 [ 439.179879][ T4063] EXT4-fs mount: 36 callbacks suppressed [ 439.179894][ T4063] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 439.198657][ T4063] ext4 filesystem being mounted at /437/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 439.213022][ T4063] netlink: 340 bytes leftover after parsing attributes in process `syz.8.12786'. [ 439.243511][T31624] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 439.384633][ T4084] loop8: detected capacity change from 0 to 8192 [ 439.604182][ T4093] ext4: Unknown parameter 'barrier2' [ 439.641802][ T29] audit: type=1400 audit(2000000062.315:3456): avc: denied { mount } for pid=4092 comm="syz.6.12798" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1 [ 439.684396][ T29] audit: type=1400 audit(2000000062.345:3457): avc: denied { unmount } for pid=27799 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1 [ 439.897389][T21108] usb usb8-port5: unable to enumerate USB device [ 440.205318][ T4126] netlink: 'syz.0.12813': attribute type 10 has an invalid length. [ 440.471786][ T29] audit: type=1400 audit(2000000063.145:3458): avc: denied { getopt } for pid=4132 comm="syz.6.12816" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 440.953374][ T29] audit: type=1400 audit(2000000063.625:3459): avc: denied { write } for pid=4157 comm="syz.6.12828" name="rtc0" dev="devtmpfs" ino=244 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 441.190797][ T4151] chnl_net:caif_netlink_parms(): no params data found [ 441.257552][ T4151] bridge0: port 1(bridge_slave_0) entered blocking state [ 441.264824][ T4151] bridge0: port 1(bridge_slave_0) entered disabled state [ 441.272290][ T4151] bridge_slave_0: entered allmulticast mode [ 441.279226][ T4151] bridge_slave_0: entered promiscuous mode [ 441.286173][ T4151] bridge0: port 2(bridge_slave_1) entered blocking state [ 441.293310][ T4151] bridge0: port 2(bridge_slave_1) entered disabled state [ 441.301102][ T4151] bridge_slave_1: entered allmulticast mode [ 441.308050][ T4151] bridge_slave_1: entered promiscuous mode [ 441.326777][ T4151] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 441.337383][ T4151] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 441.358389][ T4151] team0: Port device team_slave_0 added [ 441.368280][ T4151] team0: Port device team_slave_1 added [ 441.393768][ T4151] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 441.400820][ T4151] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 441.427030][ T4151] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 441.438665][ T4151] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 441.446118][ T4151] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 441.472261][ T4151] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 441.500930][ T4151] hsr_slave_0: entered promiscuous mode [ 441.507186][ T4151] hsr_slave_1: entered promiscuous mode [ 441.513201][ T4151] debugfs: 'hsr0' already exists in 'hsr' [ 441.519126][ T4151] Cannot create hsr debugfs directory [ 441.884453][ T4228] __nla_validate_parse: 1 callbacks suppressed [ 441.884473][ T4228] netlink: 268 bytes leftover after parsing attributes in process `syz.6.12844'. [ 441.900206][ T4151] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 441.922682][ T4151] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 441.935418][ T4151] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 441.951899][ T4151] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 441.964296][ T29] audit: type=1400 audit(2000000064.615:3460): avc: denied { getopt } for pid=4232 comm="syz.3.12845" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 442.063483][ T4246] set_capacity_and_notify: 1 callbacks suppressed [ 442.063503][ T4246] loop6: detected capacity change from 0 to 2048 [ 442.087610][ T4246] EXT4-fs: Ignoring removed mblk_io_submit option [ 442.109847][ T4151] 8021q: adding VLAN 0 to HW filter on device bond0 [ 442.147728][ T4151] 8021q: adding VLAN 0 to HW filter on device team0 [ 442.156099][ T4246] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 442.190004][ T1657] bridge0: port 1(bridge_slave_0) entered blocking state [ 442.197198][ T1657] bridge0: port 1(bridge_slave_0) entered forwarding state [ 442.208466][ T4246] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.12846: bg 0: block 234: padding at end of block bitmap is not set [ 442.242548][ T1657] bridge0: port 2(bridge_slave_1) entered blocking state [ 442.249768][ T1657] bridge0: port 2(bridge_slave_1) entered forwarding state [ 442.266677][ T4246] EXT4-fs (loop6): Remounting filesystem read-only [ 442.329177][T27799] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 442.361829][ T4278] loop8: detected capacity change from 0 to 256 [ 442.375293][ T29] audit: type=1400 audit(2000000065.045:3461): avc: denied { ioctl } for pid=4279 comm="syz.3.12856" path="socket:[110280]" dev="sockfs" ino=110280 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 442.414397][T27668] udevd[27668]: symlink '../../loop4' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system [ 442.453623][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1410.tmp-b7:8' failed: Read-only file system [ 442.467700][T27668] udevd[27668]: symlink '../../loop6' '/dev/disk/by-diskseq/1409.tmp-b7:6' failed: Read-only file system [ 442.509395][T27662] udevd[27662]: symlink '../../loop3' '/dev/disk/by-diskseq/1388.tmp-b7:3' failed: Read-only file system [ 442.519615][ T29] audit: type=1400 audit(2000000065.155:3462): avc: denied { bind } for pid=4285 comm="syz.6.12854" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 442.561707][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1410.tmp-b7:8' failed: Read-only file system [ 442.589722][T27668] udevd[27668]: symlink '../../loop6' '/dev/disk/by-diskseq/1409.tmp-b7:6' failed: Read-only file system [ 442.615789][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1410.tmp-b7:8' failed: Read-only file system [ 442.630807][T27668] udevd[27668]: symlink '../../loop6' '/dev/disk/by-diskseq/1411.tmp-b7:6' failed: Read-only file system [ 442.651161][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1410.tmp-b7:8' failed: Read-only file system [ 442.708913][T30680] udevd[30680]: symlink '../../loop3' '/dev/disk/by-diskseq/1388.tmp-b7:3' failed: Read-only file system [ 442.727731][ T4303] netlink: 64 bytes leftover after parsing attributes in process `syz.6.12861'. [ 442.735546][ T4151] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 442.978098][ T4151] veth0_vlan: entered promiscuous mode [ 443.007464][ T4151] veth1_vlan: entered promiscuous mode [ 443.042845][ T4355] loop8: detected capacity change from 0 to 512 [ 443.058983][ T4355] EXT4-fs: Ignoring removed nomblk_io_submit option [ 443.069597][ T4355] EXT4-fs (loop8): revision level too high, forcing read-only mode [ 443.077665][ T4355] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01d, mo2=0102] [ 443.087895][ T4358] vlan2: entered promiscuous mode [ 443.092998][ T4358] geneve1: entered promiscuous mode [ 443.098822][ T4358] vlan2: entered allmulticast mode [ 443.103979][ T4358] geneve1: entered allmulticast mode [ 443.118312][ T4151] veth0_macvtap: entered promiscuous mode [ 443.135053][ T4151] veth1_macvtap: entered promiscuous mode [ 443.141418][ T4355] EXT4-fs (loop8): couldn't mount RDWR because of unsupported optional features (80) [ 443.150998][ T4355] EXT4-fs (loop8): Skipping orphan cleanup due to unknown ROCOMPAT features [ 443.166305][ T4355] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 443.183408][ T4151] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 443.211794][ T4355] EXT4-fs warning (device loop8): dx_probe:861: inode #2: comm syz.8.12876: dx entry: limit 65535 != root limit 120 [ 443.224163][ T4355] EXT4-fs warning (device loop8): dx_probe:934: inode #2: comm syz.8.12876: Corrupt directory, running e2fsck is recommended [ 443.250007][ T4355] EXT4-fs error (device loop8): ext4_readdir:264: inode #2: block 3: comm syz.8.12876: path /460/file0: bad entry in directory: directory entry overrun - offset=0, inode=4294967295, rec_len=65552, size=1024 fake=0 [ 443.271937][ T4151] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 443.283199][ T4376] EXT4-fs error (device loop8): htree_dirblock_to_tree:1080: inode #2: block 3: comm syz.8.12876: bad entry in directory: directory entry overrun - offset=0, inode=4294967295, rec_len=65552, size=1024 fake=0 [ 443.316893][ T1657] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 443.345868][ T1657] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 443.380645][T31624] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 443.397183][ T1657] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 443.434595][ T1657] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 443.485492][ T4397] bond0: (slave macvlan2): Error -98 calling set_mac_address [ 443.701235][ T4400] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 443.701380][ T4400] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 443.766365][ T4429] netlink: 24 bytes leftover after parsing attributes in process `syz.6.12886'. [ 443.766418][ T4429] netlink: 24 bytes leftover after parsing attributes in process `syz.6.12886'. [ 444.481234][ T4489] netlink: 12 bytes leftover after parsing attributes in process `syz.8.12903'. [ 444.500795][ T4489] netlink: 12 bytes leftover after parsing attributes in process `syz.8.12903'. [ 444.714540][ T4523] netlink: 8 bytes leftover after parsing attributes in process `syz.8.12913'. [ 444.756980][ T4523] netlink: 8 bytes leftover after parsing attributes in process `syz.8.12913'. [ 444.768285][ T4530] random: crng reseeded on system resumption [ 444.775204][ T29] kauditd_printk_skb: 26 callbacks suppressed [ 444.775221][ T29] audit: type=1400 audit(2000000067.445:3489): avc: denied { write } for pid=4528 comm="syz.3.12916" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 444.797456][ T4523] netlink: 8 bytes leftover after parsing attributes in process `syz.8.12913'. [ 444.805098][ T29] audit: type=1400 audit(2000000067.445:3490): avc: denied { open } for pid=4528 comm="syz.3.12916" path="/dev/snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 444.839005][ T4523] netlink: 8 bytes leftover after parsing attributes in process `syz.8.12913'. [ 444.914672][ T29] audit: type=1400 audit(2000000067.525:3491): avc: denied { ioctl } for pid=4528 comm="syz.3.12916" path="/dev/snapshot" dev="devtmpfs" ino=90 ioctlcmd=0x3313 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 444.969170][ T4544] loop6: detected capacity change from 0 to 128 [ 445.108572][ T4565] loop3: detected capacity change from 0 to 512 [ 445.131698][ T4565] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 445.185953][ T4565] EXT4-fs (loop3): 1 truncate cleaned up [ 445.186632][ T29] audit: type=1400 audit(2000000067.855:3492): avc: denied { write } for pid=4570 comm="syz.6.12930" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 445.221942][ T4565] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 445.279488][ T4580] bond0: entered promiscuous mode [ 445.284656][ T4580] bond_slave_0: entered promiscuous mode [ 445.290520][ T4580] bond_slave_1: entered promiscuous mode [ 445.299921][ T1047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 445.320940][ T4580] batadv0: entered promiscuous mode [ 445.335881][ T4580] batadv0: left promiscuous mode [ 445.376514][ T4580] bond0: left promiscuous mode [ 445.381452][ T4580] bond_slave_0: left promiscuous mode [ 445.387022][ T4580] bond_slave_1: left promiscuous mode [ 445.458054][ T4602] netlink: 'syz.3.12938': attribute type 1 has an invalid length. [ 445.560284][ T4614] loop6: detected capacity change from 0 to 512 [ 445.582483][ T4614] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 445.619631][ T4614] EXT4-fs (loop6): 1 truncate cleaned up [ 445.653041][ T4614] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 445.707556][ T4614] EXT4-fs error (device loop6): ext4_generic_delete_entry:2666: inode #2: block 13: comm syz.6.12942: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 445.772127][ T4614] EXT4-fs error (device loop6) in ext4_delete_entry:2737: Corrupt filesystem [ 445.807765][ T4614] EXT4-fs warning (device loop6): ext4_rename_delete:3729: inode #2: comm syz.6.12942: Deleting old file: nlink 4, error=-117 [ 445.917523][ T4643] tap0: tun_chr_ioctl cmd 35108 [ 445.935556][T27799] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 445.958061][ T4644] loop2: detected capacity change from 0 to 128 [ 445.975602][ T4631] Set syz1 is full, maxelem 65536 reached [ 446.001028][ T4644] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 446.022189][ T4644] ext4 filesystem being mounted at /10/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 446.107504][ T4649] loop3: detected capacity change from 0 to 164 [ 446.116441][ T4655] netlink: 'syz.8.12958': attribute type 8 has an invalid length. [ 446.124538][ T4655] sch_fq: defrate 0 ignored. [ 446.204671][ T4151] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 446.249705][ T4669] loop2: detected capacity change from 0 to 128 [ 446.304424][ T4673] loop6: detected capacity change from 0 to 512 [ 446.311364][ T4669] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 446.330073][ T4669] ext4 filesystem being mounted at /11/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 446.377027][ T4151] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 446.404572][ T29] audit: type=1400 audit(2000000069.065:3493): avc: denied { mount } for pid=4679 comm="syz.6.12969" name="/" dev="hugetlbfs" ino=111796 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1 [ 446.449440][ T29] audit: type=1400 audit(2000000069.075:3494): avc: denied { read } for pid=4681 comm="syz.8.12971" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1 [ 446.481437][ T29] audit: type=1400 audit(2000000069.155:3495): avc: denied { unmount } for pid=27799 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1 [ 446.876254][ T29] audit: type=1326 audit(2000000069.545:3496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4707 comm="syz.8.12980" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7feecfc9aeb9 code=0x0 [ 446.946149][ T4713] __nla_validate_parse: 4 callbacks suppressed [ 446.946173][ T4713] netlink: 60 bytes leftover after parsing attributes in process `syz.2.12982'. [ 447.117310][ T4734] set_capacity_and_notify: 2 callbacks suppressed [ 447.117341][ T4734] loop2: detected capacity change from 0 to 512 [ 447.133667][ T4734] EXT4-fs (loop2): orphan cleanup on readonly fs [ 447.142658][ T4734] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.12991: bg 0: block 248: padding at end of block bitmap is not set [ 447.157555][ T4734] Quota error (device loop2): write_blk: dquota write failed [ 447.165032][ T4734] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 447.175046][ T4734] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm syz.2.12991: Failed to acquire dquot type 1 [ 447.188949][ T4734] EXT4-fs (loop2): 1 truncate cleaned up [ 447.208712][ T4734] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 447.248715][ T4734] EXT4-fs (loop2): shut down requested (0) [ 447.278713][ T4151] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 447.435890][T30680] udevd[30680]: symlink '../../loop2' '/dev/disk/by-diskseq/1434.tmp-b7:2' failed: Read-only file system [ 447.468713][ T4752] ------------[ cut here ]------------ [ 447.474376][ T4752] verifier bug: REG INVARIANTS VIOLATION (true_reg1): range bounds violation u64=[0x0, 0x0] s64=[0x0, 0x0] u32=[0x80632f4, 0x0] s32=[0x0, 0x0] var_off=(0x0, 0x0) [ 447.478891][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-diskseq/1427.tmp-b7:6' failed: Read-only file system [ 447.490662][ T4752] WARNING: kernel/bpf/verifier.c:2748 at reg_bounds_sanity_check+0x15b/0x660, CPU#1: syz.0.13000/4752 [ 447.512879][ T4752] Modules linked in: [ 447.516908][ T4752] CPU: 1 UID: 0 PID: 4752 Comm: syz.0.13000 Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 447.528531][ T4752] Tainted: [W]=WARN [ 447.532467][ T4752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 447.542724][ T4752] RIP: 0010:reg_bounds_sanity_check+0x27d/0x660 [ 447.549115][ T4752] Code: 24 78 4c 8b 44 24 70 4c 8b 4c 24 60 41 ff 74 24 20 41 55 53 ff 74 24 68 ff 74 24 78 ff b4 24 90 00 00 00 ff b4 24 b0 00 00 00 <67> 48 0f b9 3a 48 83 c4 38 4c 8b ac 24 98 00 00 00 49 8d 85 80 08 [ 447.568890][ T4752] RSP: 0018:ffffc90003167388 EFLAGS: 00010246 [ 447.575130][T30680] udevd[30680]: symlink '../../loop2' '/dev/disk/by-diskseq/1434.tmp-b7:2' failed: Read-only file system [ 447.586421][ T4752] RAX: ffff88810268ed90 RBX: 0000000000000000 RCX: 0000000000000000 [ 447.594484][ T4752] RDX: ffffffff867f0650 RSI: ffffffff866bb3e5 RDI: ffffffff86fb96f0 [ 447.602549][ T4752] RBP: ffff8881256b72e0 R08: 0000000000000000 R09: 0000000000000000 [ 447.610621][ T4752] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8881256b72a0 [ 447.618982][ T4752] R13: 0000000000000000 R14: ffff8881256b72ec R15: ffff8881256b72d8 [ 447.626998][ T4752] FS: 00007f5495ca76c0(0000) GS:ffff8882aec57000(0000) knlGS:0000000000000000 [ 447.636154][ T4752] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 447.638484][ T4758] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13002'. [ 447.642807][ T4752] CR2: 00007f87b0ca4b30 CR3: 000000010caf6000 CR4: 00000000003506f0 [ 447.651854][ T4758] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13002'. [ 447.659987][ T4752] DR0: 0000000000000000 DR1: 000000000000afe8 DR2: 0000000000000000 [ 447.676961][ T4752] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 [ 447.685007][ T4752] Call Trace: [ 447.688378][ T4752] [ 447.691364][ T4752] reg_set_min_max+0x1c8/0x260 [ 447.696349][ T4752] check_cond_jmp_op+0x13bd/0x1a80 [ 447.701753][ T4752] do_check+0x440c/0x9060 [ 447.706536][ T4752] do_check_common+0xd0f/0x1630 [ 447.711501][ T4752] bpf_check+0x2f6d/0xc7e0 [ 447.716016][ T4752] ? __alloc_frozen_pages_noprof+0x18a/0x350 [ 447.722106][ T4752] ? alloc_pages_bulk_noprof+0x4a1/0x520 [ 447.727828][ T4752] ? __vmap_pages_range_noflush+0xb9c/0xcc0 [ 447.733789][ T4752] ? _find_next_zero_bit+0x29/0xa0 [ 447.739075][ T4752] ? _find_next_zero_bit+0x64/0xa0 [ 447.744265][ T4752] ? pcpu_block_refresh_hint+0x10b/0x170 [ 447.750040][ T4752] ? pcpu_block_update_hint_alloc+0x640/0x660 [ 447.756194][ T4752] ? css_rstat_updated+0xbb/0x280 [ 447.761396][ T4752] ? mod_memcg_state+0x182/0x260 [ 447.766378][ T4752] ? __rcu_read_unlock+0x4e/0x70 [ 447.771432][ T4752] ? pcpu_memcg_post_alloc_hook+0xec/0x170 [ 447.778052][ T4752] ? pcpu_alloc_noprof+0xb08/0x1010 [ 447.783363][ T4752] ? should_fail_ex+0x30/0x280 [ 447.786115][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1430.tmp-b7:8' failed: Read-only file system [ 447.788343][ T4752] ? __kmalloc_noprof+0x2a3/0x580 [ 447.788398][ T4752] ? security_bpf_prog_load+0x60/0x140 [ 447.788431][ T4752] ? selinux_bpf_prog_load+0xac/0xd0 [ 447.788472][ T4752] ? security_bpf_prog_load+0x9e/0x140 [ 447.788548][ T4752] bpf_prog_load+0xf76/0x1140 [ 447.825944][ T4752] ? security_bpf+0x2b/0x90 [ 447.830610][ T4752] __sys_bpf+0x469/0x7b0 [ 447.834957][ T4752] __x64_sys_bpf+0x41/0x50 [ 447.839572][ T4752] x64_sys_call+0x28e1/0x3000 [ 447.844380][ T4752] do_syscall_64+0xc0/0x2a0 [ 447.849095][ T4752] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 447.855056][ T4752] RIP: 0033:0x7f549724aeb9 [ 447.859565][ T4752] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 447.879360][ T4752] RSP: 002b:00007f5495ca7028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 447.887948][ T4752] RAX: ffffffffffffffda RBX: 00007f54974c5fa0 RCX: 00007f549724aeb9 [ 447.896145][ T4752] RDX: 0000000000000048 RSI: 00002000000054c0 RDI: 0000000000000005 [ 447.904220][ T4752] RBP: 00007f54972b8c1f R08: 0000000000000000 R09: 0000000000000000 [ 447.912334][ T4752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 447.920445][ T4752] R13: 00007f54974c6038 R14: 00007f54974c5fa0 R15: 00007ffe85a837f8 [ 447.927447][T30680] udevd[30680]: symlink '../../loop3' '/dev/disk/by-diskseq/1432.tmp-b7:3' failed: Read-only file system [ 447.928545][ T4752] [ 447.943378][ T4752] ---[ end trace 0000000000000000 ]--- [ 447.981751][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1430.tmp-b7:8' failed: Read-only file system [ 448.008274][T27668] udevd[27668]: symlink '../../loop6' '/dev/disk/by-diskseq/1427.tmp-b7:6' failed: Read-only file system [ 448.031616][T30680] udevd[30680]: symlink '../../loop3' '/dev/disk/by-diskseq/1432.tmp-b7:3' failed: Read-only file system [ 448.055129][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-diskseq/1427.tmp-b7:6' failed: Read-only file system [ 448.080815][ T4775] program syz.8.13008 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 448.110481][T30680] udevd[30680]: symlink '../../loop2' '/dev/disk/by-diskseq/1434.tmp-b7:2' failed: Read-only file system [ 448.132500][ T4777] loop2: detected capacity change from 0 to 512 [ 448.173625][ T4777] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 448.217607][ T4777] ext4 filesystem being mounted at /24/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 448.295702][ T4151] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 448.633419][ T4833] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13034'. [ 448.642695][ T4833] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13034'. [ 448.808043][ T4845] team0: No ports can be present during mode change [ 449.255584][ T4873] loop2: detected capacity change from 0 to 1024 [ 449.301747][ T4873] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 449.336024][ T4151] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 449.595783][ T4903] loop3: detected capacity change from 0 to 1024 [ 449.627642][ T4903] EXT4-fs: Ignoring removed orlov option [ 449.749329][ T4903] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a002c118, mo2=0002] [ 449.759343][ T4903] System zones: 0-1, 3-12 [ 449.778718][ T4903] EXT4-fs (loop3): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 449.797381][ T29] kauditd_printk_skb: 8 callbacks suppressed [ 449.797399][ T29] audit: type=1400 audit(2000000072.475:3505): avc: denied { accept } for pid=4908 comm="syz.8.13070" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 449.852091][ T1047] EXT4-fs (loop3): unmounting filesystem 00000000-0500-0000-0000-000000000000. [ 449.887707][ T29] audit: type=1400 audit(2000000072.495:3506): avc: denied { rmdir } for pid=4902 comm="syz.3.13067" name="control" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 450.093841][ T4930] netlink: 4 bytes leftover after parsing attributes in process `syz.8.13077'. [ 450.185701][ T4940] netlink: 4 bytes leftover after parsing attributes in process `syz.2.13081'. [ 450.388720][ T4956] loop2: detected capacity change from 0 to 256 [ 450.418080][ T4954] loop3: detected capacity change from 0 to 1024 [ 450.455097][ T4959] loop2: detected capacity change from 0 to 128 [ 450.464859][ T4954] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 450.477834][ T4954] ext4 filesystem being mounted at /268/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 450.514369][ T4959] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 450.536292][ T4954] EXT4-fs error (device loop3): ext4_free_blocks:6728: comm syz.3.13089: Freeing blocks not in datazone - block = 0, count = 16 [ 450.557764][ T4959] ext4 filesystem being mounted at /48/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 450.568881][ T4954] EXT4-fs (loop3): Remounting filesystem read-only [ 450.645098][ T1047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 450.656260][ T4151] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 450.692327][ T4972] loop8: detected capacity change from 0 to 512 [ 450.707489][ T4972] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 450.784031][ T4981] loop8: detected capacity change from 0 to 128 [ 450.830279][ T29] audit: type=1400 audit(2000000073.495:3507): avc: denied { setopt } for pid=4978 comm="syz.8.13099" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 450.878778][ T4985] netlink: 8 bytes leftover after parsing attributes in process `syz.8.13101'. [ 450.897531][ T4980] loop3: detected capacity change from 0 to 4096 [ 450.970195][ T4980] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 451.001770][ T1047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 451.025994][ T4993] x_tables: ip6_tables: mh match: only valid for protocol 135 [ 451.147350][ T29] audit: type=1326 audit(2000000073.815:3508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5008 comm="syz.6.13112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e6078aeb9 code=0x7ffc0000 [ 451.171084][ T29] audit: type=1326 audit(2000000073.815:3509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5008 comm="syz.6.13112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e6078aeb9 code=0x7ffc0000 [ 451.194876][ T29] audit: type=1326 audit(2000000073.815:3510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5008 comm="syz.6.13112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2e6078aeb9 code=0x7ffc0000 [ 451.218484][ T29] audit: type=1326 audit(2000000073.815:3511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5008 comm="syz.6.13112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e6078aeb9 code=0x7ffc0000 [ 451.242105][ T29] audit: type=1326 audit(2000000073.815:3512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5008 comm="syz.6.13112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e6078aeb9 code=0x7ffc0000 [ 451.265792][ T29] audit: type=1326 audit(2000000073.815:3513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5008 comm="syz.6.13112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2e6078aeb9 code=0x7ffc0000 [ 451.289486][ T29] audit: type=1326 audit(2000000073.815:3514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5008 comm="syz.6.13112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e6078aeb9 code=0x7ffc0000 [ 451.335892][ T5018] delete_channel: no stack [ 451.511072][ T5029] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 451.577292][ T5032] bpf: Bad value for 'uid' [ 451.958463][ T5061] netlink: 36 bytes leftover after parsing attributes in process `syz.2.13136'. [ 451.977842][ T5063] netlink: 260 bytes leftover after parsing attributes in process `syz.8.13137'. [ 452.178020][ T5084] macvtap1: entered promiscuous mode [ 452.183488][ T5084] bridge0: entered promiscuous mode [ 452.189127][ T5084] macvtap1: entered allmulticast mode [ 452.194580][ T5084] bridge0: entered allmulticast mode [ 452.201222][ T5084] bridge0: port 3(macvtap1) entered blocking state [ 452.207914][ T5084] bridge0: port 3(macvtap1) entered disabled state [ 452.223573][ T5084] bridge0: left allmulticast mode [ 452.228798][ T5084] bridge0: left promiscuous mode [ 452.295913][ T5094] blktrace: Concurrent blktraces are not allowed on sg0 [ 452.380069][ T5105] set_capacity_and_notify: 3 callbacks suppressed [ 452.380091][ T5105] loop8: detected capacity change from 0 to 128 [ 452.393901][ T5105] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 452.418315][ T5105] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 452.431699][ T5105] ieee802154 phy0 wpan0: encryption failed: -22 [ 452.446994][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1459.tmp-b7:8' failed: Read-only file system [ 452.459184][T27668] udevd[27668]: symlink '../../loop2' '/dev/disk/by-diskseq/1447.tmp-b7:2' failed: Read-only file system [ 452.480248][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1459.tmp-b7:8' failed: Read-only file system [ 452.502918][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1459.tmp-b7:8' failed: Read-only file system [ 452.529468][T27668] udevd[27668]: symlink '../../loop2' '/dev/disk/by-diskseq/1447.tmp-b7:2' failed: Read-only file system [ 452.542017][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1459.tmp-b7:8' failed: Read-only file system [ 452.566818][ T5118] loop8: detected capacity change from 0 to 1024 [ 452.582463][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1461.tmp-b7:8' failed: Read-only file system [ 452.598522][ T5118] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 452.606110][T27668] udevd[27668]: symlink '../../loop6' '/dev/disk/by-diskseq/1455.tmp-b7:6' failed: Read-only file system [ 452.615184][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-label/syzkaller.tmp-b7:8' failed: Read-only file system [ 452.650740][T31624] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 452.669318][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-diskseq/1455.tmp-b7:6' failed: Read-only file system [ 452.989349][ T5155] netlink: 188 bytes leftover after parsing attributes in process `syz.3.13179'. [ 453.259634][ T5187] loop3: detected capacity change from 0 to 256 [ 453.279570][ T5191] netlink: 20 bytes leftover after parsing attributes in process `syz.0.13195'. [ 453.291983][ T5191] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13195'. [ 453.478809][ T5203] netlink: 48 bytes leftover after parsing attributes in process `syz.0.13201'. [ 453.502750][ T5203] netlink: 'syz.0.13201': attribute type 8 has an invalid length. [ 453.571567][ T5210] loop2: detected capacity change from 0 to 256 [ 453.663315][ T5215] loop8: detected capacity change from 0 to 512 [ 453.687179][ T5215] EXT4-fs (loop8): 1 orphan inode deleted [ 453.694501][ T5215] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 453.756141][T31624] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 453.917513][ T5229] netlink: 16 bytes leftover after parsing attributes in process `syz.6.13214'. [ 454.039771][ T5238] program syz.6.13216 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 454.060050][ T5242] loop2: detected capacity change from 0 to 128 [ 454.410587][ T5270] loop3: detected capacity change from 0 to 512 [ 454.427843][ T5270] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 454.448651][ T5270] EXT4-fs (loop3): 1 truncate cleaned up [ 454.483190][ T5270] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 454.610057][ T1047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 454.683248][ T5285] loop6: detected capacity change from 0 to 1764 [ 455.046531][ T5305] netlink: 'syz.6.13244': attribute type 1 has an invalid length. [ 455.982345][ T29] kauditd_printk_skb: 46 callbacks suppressed [ 455.982366][ T29] audit: type=1400 audit(2000000078.655:3561): avc: denied { setattr } for pid=5352 comm="syz.3.13265" name="file0" dev="tmpfs" ino=1523 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 456.047509][ T5357] netlink: 68 bytes leftover after parsing attributes in process `syz.0.13267'. [ 456.081463][ T5361] netlink: 104 bytes leftover after parsing attributes in process `syz.6.13269'. [ 456.135953][ T5365] netlink: 68 bytes leftover after parsing attributes in process `syz.3.13271'. [ 456.182092][ T29] audit: type=1326 audit(2000000078.855:3562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5316 comm="syz.2.13249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87b0a3aeb9 code=0x7fc00000 [ 456.227652][ T5369] ieee802154 phy0 wpan0: encryption failed: -22 [ 456.437281][ T5399] tap0: tun_chr_ioctl cmd 1074025677 [ 456.452750][ T5399] tap0: linktype set to 0 [ 456.547458][ T29] audit: type=1400 audit(2000000079.215:3563): avc: denied { bind } for pid=5418 comm="syz.3.13298" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 456.613759][T21108] kernel write not supported for file [eventfd] (pid: 21108 comm: kworker/1:7) [ 456.666562][ T5431] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 456.757986][ T5446] netlink: 'syz.8.13311': attribute type 1 has an invalid length. [ 456.828418][T21118] kernel read not supported for file /sysvipc/msg (pid: 21118 comm: kworker/1:17) [ 457.235665][ T5487] gre1: entered promiscuous mode [ 457.240786][ T5487] gre1: entered allmulticast mode [ 457.254454][ T5487] team0: Device gre1 is of different type [ 457.308257][ T5493] sch_tbf: burst 6 is lower than device ip6gre0 mtu (1448) ! [ 457.469553][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-diskseq/1474.tmp-b7:6' failed: Read-only file system [ 457.495730][T27668] udevd[27668]: symlink '../../loop2' '/dev/disk/by-diskseq/1470.tmp-b7:2' failed: Read-only file system [ 457.546519][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-diskseq/1474.tmp-b7:6' failed: Read-only file system [ 457.572281][T27668] udevd[27668]: symlink '../../loop2' '/dev/disk/by-diskseq/1470.tmp-b7:2' failed: Read-only file system [ 457.602184][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-diskseq/1474.tmp-b7:6' failed: Read-only file system [ 457.625696][T27668] udevd[27668]: symlink '../../loop2' '/dev/disk/by-diskseq/1470.tmp-b7:2' failed: Read-only file system [ 457.638164][ T5523] __nla_validate_parse: 1 callbacks suppressed [ 457.638187][ T5523] netlink: 8 bytes leftover after parsing attributes in process `syz.6.13344'. [ 457.685535][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-diskseq/1474.tmp-b7:6' failed: Read-only file system [ 457.716123][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-diskseq/1474.tmp-b7:6' failed: Read-only file system [ 457.772553][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-diskseq/1474.tmp-b7:6' failed: Read-only file system [ 457.812426][T27668] udevd[27668]: symlink '../../loop8' '/dev/disk/by-diskseq/1467.tmp-b7:8' failed: Read-only file system [ 458.000218][ T5548] loop3: detected capacity change from 0 to 736 [ 458.369729][ T5578] bridge0: port 2(bridge_slave_1) entered forwarding state [ 458.407492][ T5578] bridge0: port 2(bridge_slave_1) entered disabled state [ 458.606437][ T5603] netlink: 182 bytes leftover after parsing attributes in process `syz.2.13382'. [ 458.633791][ T5604] random: crng reseeded on system resumption [ 458.823412][ T29] audit: type=1326 audit(2000000081.495:3564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5629 comm="syz.3.13395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781305aeb9 code=0x7ffc0000 [ 458.847007][ T29] audit: type=1326 audit(2000000081.495:3565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5629 comm="syz.3.13395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=111 compat=0 ip=0x7f781305aeb9 code=0x7ffc0000 [ 458.869442][ T5634] netlink: 'syz.6.13397': attribute type 25 has an invalid length. [ 458.870781][ T29] audit: type=1326 audit(2000000081.495:3566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5629 comm="syz.3.13395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781305aeb9 code=0x7ffc0000 [ 458.878621][ T5634] netlink: 'syz.6.13397': attribute type 7 has an invalid length. [ 458.902060][ T29] audit: type=1326 audit(2000000081.495:3567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5629 comm="syz.3.13395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=315 compat=0 ip=0x7f781305aeb9 code=0x7ffc0000 [ 458.909938][ T5634] netlink: 'syz.6.13397': attribute type 1 has an invalid length. [ 458.933695][ T29] audit: type=1326 audit(2000000081.495:3568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5629 comm="syz.3.13395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781305aeb9 code=0x7ffc0000 [ 458.941501][ T5634] netlink: 156 bytes leftover after parsing attributes in process `syz.6.13397'. [ 458.974186][ T29] audit: type=1326 audit(2000000081.495:3569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5629 comm="syz.3.13395" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781305aeb9 code=0x7ffc0000 [ 459.077626][T21108] IPVS: starting estimator thread 0... [ 459.083209][ T29] audit: type=1400 audit(2000000081.755:3570): avc: denied { map } for pid=5649 comm="syz.3.13402" path="socket:[114407]" dev="sockfs" ino=114407 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1 [ 459.142997][ T5655] loop2: detected capacity change from 0 to 1024 [ 459.162455][ T5655] EXT4-fs: Ignoring removed bh option [ 459.187183][ T5651] IPVS: using max 1968 ests per chain, 98400 per kthread [ 459.202735][ T5655] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 459.243052][ T5655] EXT4-fs error (device loop2): ext4_read_inline_dir:1486: inode #12: block 7: comm syz.2.13408: path /110/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=40, inode=14, rec_len=40, size=80 fake=0 [ 459.284326][ T5655] EXT4-fs (loop2): Remounting filesystem read-only [ 459.308878][ T4151] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 459.325148][ T5675] dummy0: entered promiscuous mode [ 459.336829][ T5675] dummy0: left promiscuous mode [ 460.126158][ T5722] macvlan0: entered allmulticast mode [ 460.131809][ T5722] veth1_vlan: entered allmulticast mode [ 460.482401][ T5681] syz.0.13417 (5681) used greatest stack depth: 6400 bytes left [ 460.631629][ T5752] netlink: 64 bytes leftover after parsing attributes in process `syz.8.13447'. [ 460.704297][ T5763] loop2: detected capacity change from 0 to 512 [ 460.713259][ T5763] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 460.759179][ T5763] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.13451: bad orphan inode 11 [ 460.800300][ T5763] ext4_test_bit(bit=10, block=4) = 1 [ 460.805655][ T5763] is_bad_inode(inode)=0 [ 460.810022][ T5763] NEXT_ORPHAN(inode)=2080374784 [ 460.814906][ T5763] max_ino=32 [ 460.818165][ T5763] i_nlink=0 [ 460.831626][ T5763] EXT4-fs (loop2): 1 truncate cleaned up [ 460.839431][ T5763] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 460.893592][ T4151] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 460.990406][ T5786] batman_adv: batadv0: Adding interface: dummy0 [ 460.996730][ T5786] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 461.032382][ T5786] batman_adv: batadv0: Interface activated: dummy0 [ 461.286346][ T5772] loop8: detected capacity change from 0 to 512 [ 461.320053][ T5772] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode [ 461.373932][ T5772] EXT4-fs (loop8): 1 truncate cleaned up [ 461.404532][ T5772] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 461.445613][ T5809] loop3: detected capacity change from 0 to 512 [ 461.503519][ T5809] EXT4-fs: Ignoring removed i_version option [ 461.509690][ T5809] EXT4-fs: Ignoring removed bh option [ 461.547184][ T5809] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 461.565019][T31624] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 461.568755][ T5809] ext4 filesystem being mounted at /328/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 461.639861][ T1047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 461.896241][ T5848] loop3: detected capacity change from 0 to 256 [ 461.910798][ T5850] loop8: detected capacity change from 0 to 128 [ 461.994026][ T5858] loop3: detected capacity change from 0 to 512 [ 462.001620][ T5860] netlink: 28 bytes leftover after parsing attributes in process `syz.8.13495'. [ 462.010777][ T5860] unsupported nla_type 24929 [ 462.030672][ T5858] EXT4-fs: Ignoring removed oldalloc option [ 462.055826][ T5858] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: comm syz.3.13494: Parent and EA inode have the same ino 15 [ 462.068806][ T5864] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5) [ 462.075362][ T5864] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 462.082937][ T5864] vhci_hcd vhci_hcd.0: Device attached [ 462.104277][ T5858] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: comm syz.3.13494: Parent and EA inode have the same ino 15 [ 462.148009][ T5865] vhci_hcd: connection closed [ 462.148273][T22925] vhci_hcd vhci_hcd.2: stop threads [ 462.158387][T22925] vhci_hcd vhci_hcd.2: release socket [ 462.163784][T22925] vhci_hcd vhci_hcd.2: disconnect device [ 462.179271][ T5858] EXT4-fs (loop3): 1 orphan inode deleted [ 462.201962][ T5858] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 462.228143][ T29] kauditd_printk_skb: 1 callbacks suppressed [ 462.228164][ T29] audit: type=1326 audit(2000000084.905:3572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5871 comm="syz.8.13499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feecfc9aeb9 code=0x7ffc0000 [ 462.258051][ T29] audit: type=1326 audit(2000000084.905:3573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5871 comm="syz.8.13499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feecfc9aeb9 code=0x7ffc0000 [ 462.282588][ T29] audit: type=1326 audit(2000000084.905:3574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5871 comm="syz.8.13499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7feecfc9aeb9 code=0x7ffc0000 [ 462.288115][ T5876] netlink: 188 bytes leftover after parsing attributes in process `syz.6.13500'. [ 462.309606][ T29] audit: type=1326 audit(2000000084.985:3575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5871 comm="syz.8.13499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feecfc9aeb9 code=0x7ffc0000 [ 462.315431][ T5876] netlink: 24 bytes leftover after parsing attributes in process `syz.6.13500'. [ 462.338890][ T29] audit: type=1326 audit(2000000084.985:3576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5871 comm="syz.8.13499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feecfc9aeb9 code=0x7ffc0000 [ 462.402461][ T29] audit: type=1326 audit(2000000085.025:3577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5878 comm="syz.8.13499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7feecfc5b78e code=0x7ffc0000 [ 462.434661][ T1047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 462.481213][T30680] udevd[30680]: symlink '../../loop4' '/dev/disk/by-label/syzkaller.tmp-b7:3' failed: Read-only file system [ 462.509375][T27662] udevd[27662]: symlink '../../loop6' '/dev/disk/by-diskseq/1474.tmp-b7:6' failed: Read-only file system [ 462.514945][T27668] udevd[27668]: symlink '../../loop8' '/dev/disk/by-diskseq/1488.tmp-b7:8' failed: Read-only file system [ 462.532349][ T29] audit: type=1326 audit(2000000085.185:3578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5878 comm="syz.8.13499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7feecfc9aeb9 code=0x7ffc0000 [ 462.539276][T30680] udevd[30680]: symlink '../../loop3' '/dev/disk/by-diskseq/1489.tmp-b7:3' failed: Read-only file system [ 462.580836][ T5888] loop8: detected capacity change from 0 to 128 [ 462.609295][ T29] audit: type=1326 audit(2000000085.275:3579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5889 comm="syz.3.13506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781305aeb9 code=0x7ffc0000 [ 462.609470][ T5888] FAT-fs (loop8): error, fat_get_cluster: invalid cluster chain (i_pos 323) [ 462.632948][ T29] audit: type=1326 audit(2000000085.275:3580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5889 comm="syz.3.13506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781305aeb9 code=0x7ffc0000 [ 462.632984][ T29] audit: type=1326 audit(2000000085.275:3581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5889 comm="syz.3.13506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f781305aeb9 code=0x7ffc0000 [ 462.641731][ T5888] FAT-fs (loop8): Filesystem has been set read-only [ 462.691758][T27668] udevd[27668]: symlink '../../loop8' '/dev/disk/by-diskseq/1491.tmp-b7:8' failed: Read-only file system [ 462.710048][T30680] udevd[30680]: symlink '../../loop3' '/dev/disk/by-diskseq/1489.tmp-b7:3' failed: Read-only file system [ 462.727522][ T5888] FAT-fs (loop8): error, fat_get_cluster: invalid cluster chain (i_pos 323) [ 462.738744][ T5888] FAT-fs (loop8): error, fat_get_cluster: invalid cluster chain (i_pos 323) [ 462.749886][T30680] udevd[30680]: symlink '../../loop3' '/dev/disk/by-diskseq/1490.tmp-b7:3' failed: Read-only file system [ 462.767777][ T5888] FAT-fs (loop8): error, fat_get_cluster: invalid cluster chain (i_pos 323) [ 462.778579][ T5888] FAT-fs (loop8): error, fat_get_cluster: invalid cluster chain (i_pos 323) [ 462.787790][ T5888] FAT-fs (loop8): error, fat_get_cluster: invalid cluster chain (i_pos 323) [ 462.796974][ T5888] FAT-fs (loop8): error, fat_get_cluster: invalid cluster chain (i_pos 323) [ 462.806170][ T5888] FAT-fs (loop8): error, fat_get_cluster: invalid cluster chain (i_pos 323) [ 462.836077][T30680] udevd[30680]: symlink '../../loop2' '/dev/disk/by-diskseq/1480.tmp-b7:2' failed: Read-only file system [ 462.885436][T30680] udevd[30680]: symlink '../../loop2' '/dev/disk/by-diskseq/1480.tmp-b7:2' failed: Read-only file system [ 462.906980][ T5901] netlink: 56 bytes leftover after parsing attributes in process `syz.2.13510'. [ 462.952326][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1491.tmp-b7:8' failed: Read-only file system [ 463.065891][ T5913] pimreg3: entered allmulticast mode [ 463.172785][ T5921] loop2: detected capacity change from 0 to 512 [ 463.181412][ T5921] EXT4-fs: Ignoring removed mblk_io_submit option [ 463.188905][ T5921] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 463.198746][ T5921] EXT4-fs (loop2): group descriptors corrupted! [ 463.295253][ T5929] loop2: detected capacity change from 0 to 256 [ 463.446103][ T5947] loop2: detected capacity change from 0 to 128 [ 463.514820][ T5955] netlink: 16 bytes leftover after parsing attributes in process `syz.0.13534'. [ 463.560120][ T5955] bond0: entered promiscuous mode [ 463.565370][ T5955] bond_slave_0: entered promiscuous mode [ 463.571243][ T5955] bond_slave_1: entered promiscuous mode [ 463.577153][ T5955] bond0: left promiscuous mode [ 463.581967][ T5955] bond_slave_0: left promiscuous mode [ 463.587552][ T5955] bond_slave_1: left promiscuous mode [ 463.825967][ T5981] loop6: detected capacity change from 0 to 128 [ 464.006596][ T5988] loop8: detected capacity change from 0 to 4096 [ 464.098200][ T5988] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 464.112014][ T5985] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 464.177934][ T5985] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 464.212025][T31624] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 464.444966][ T6000] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 464.452521][ T6000] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 464.540058][ T6002] netlink: 48 bytes leftover after parsing attributes in process `syz.6.13555'. [ 464.637736][ T6008] netlink: 40 bytes leftover after parsing attributes in process `syz.8.13553'. [ 464.659373][ T6008] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 464.666643][ T6008] IPv6: NLM_F_CREATE should be set when creating new route [ 464.674059][ T6008] IPv6: NLM_F_CREATE should be set when creating new route [ 464.848664][ T6021] loop8: detected capacity change from 0 to 164 [ 464.866642][ T6021] ISOFS: unable to read i-node block [ 464.875613][ T6024] loop3: detected capacity change from 0 to 1024 [ 464.882942][ T6021] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 464.890690][ T6024] EXT4-fs: Ignoring removed nobh option [ 464.897743][ T6024] EXT4-fs: Ignoring removed nomblk_io_submit option [ 464.943245][ T6024] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 465.011113][ T6041] loop8: detected capacity change from 0 to 128 [ 465.054488][ T6044] netlink: 'syz.0.13573': attribute type 4 has an invalid length. [ 465.106991][ T1047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 465.145156][ T6049] loop3: detected capacity change from 0 to 736 [ 465.220633][ T6052] netlink: 'syz.8.13577': attribute type 12 has an invalid length. [ 465.334053][ T6061] netlink: 'syz.2.13581': attribute type 1 has an invalid length. [ 465.336034][ T6036] syz.6.13569 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN), order=0, oom_score_adj=1000 [ 465.342008][ T6061] netlink: 'syz.2.13581': attribute type 2 has an invalid length. [ 465.356194][ T6036] CPU: 1 UID: 0 PID: 6036 Comm: syz.6.13569 Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 465.356262][ T6036] Tainted: [W]=WARN [ 465.356301][ T6036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 465.356370][ T6036] Call Trace: [ 465.356428][ T6036] [ 465.356460][ T6036] __dump_stack+0x1d/0x30 [ 465.356547][ T6036] dump_stack_lvl+0x95/0xd0 [ 465.356698][ T6036] dump_stack+0x15/0x1b [ 465.356767][ T6036] dump_header+0x80/0x240 [ 465.356990][ T6036] oom_kill_process+0x295/0x350 [ 465.357081][ T6036] out_of_memory+0x97d/0xb80 [ 465.357178][ T6036] try_charge_memcg+0x62e/0xa10 [ 465.357349][ T6036] obj_cgroup_charge_pages+0x23/0xc0 [ 465.357468][ T6036] __memcg_kmem_charge_page+0x9e/0x170 [ 465.357583][ T6036] __alloc_frozen_pages_noprof+0x18a/0x350 [ 465.357716][ T6036] alloc_pages_mpol+0xb3/0x260 [ 465.357958][ T6036] alloc_pages_noprof+0x8f/0x130 [ 465.358108][ T6036] __vmalloc_node_range_noprof+0xa46/0x12b0 [ 465.358151][ T6036] __kvmalloc_node_noprof+0x471/0x680 [ 465.358221][ T6036] ? ip_set_alloc+0x24/0x30 [ 465.358338][ T6036] ? ip_set_alloc+0x24/0x30 [ 465.358446][ T6036] ip_set_alloc+0x24/0x30 [ 465.358551][ T6036] hash_netiface_create+0x282/0x740 [ 465.358734][ T6036] ? __pfx_hash_netiface_create+0x10/0x10 [ 465.358847][ T6036] ip_set_create+0x3cf/0x970 [ 465.359084][ T6036] ? __nla_parse+0x40/0x60 [ 465.359252][ T6036] nfnetlink_rcv_msg+0x509/0x5d0 [ 465.359436][ T6036] netlink_rcv_skb+0x123/0x220 [ 465.359583][ T6036] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 465.359761][ T6036] nfnetlink_rcv+0x167/0x1720 [ 465.359918][ T6036] ? __list_del_entry_valid_or_report+0x65/0x130 [ 465.360022][ T6036] ? __rmqueue_pcplist+0x9b6/0xb80 [ 465.360133][ T6036] ? _raw_spin_lock_bh+0x56/0xb0 [ 465.360252][ T6036] ? should_fail_ex+0x30/0x280 [ 465.360374][ T6036] ? selinux_nlmsg_lookup+0x99/0x890 [ 465.360450][ T6036] ? __rcu_read_unlock+0x33/0x70 [ 465.360659][ T6036] ? __netlink_lookup+0x276/0x2b0 [ 465.360747][ T6036] netlink_unicast+0x5c0/0x690 [ 465.360864][ T6036] netlink_sendmsg+0x5c8/0x6f0 [ 465.360966][ T6036] ? __pfx_netlink_sendmsg+0x10/0x10 [ 465.361042][ T6036] ____sys_sendmsg+0x5af/0x600 [ 465.361120][ T6036] ___sys_sendmsg+0x195/0x1e0 [ 465.361247][ T6036] __x64_sys_sendmsg+0xd4/0x160 [ 465.361334][ T6036] x64_sys_call+0x17ba/0x3000 [ 465.361427][ T6036] do_syscall_64+0xc0/0x2a0 [ 465.361567][ T6036] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 465.361707][ T6036] RIP: 0033:0x7f2e6078aeb9 [ 465.361757][ T6036] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 465.361822][ T6036] RSP: 002b:00007f2e5f1e7028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 465.361904][ T6036] RAX: ffffffffffffffda RBX: 00007f2e60a05fa0 RCX: 00007f2e6078aeb9 [ 465.362017][ T6036] RDX: 0000000000000880 RSI: 0000200000000040 RDI: 0000000000000003 [ 465.362081][ T6036] RBP: 00007f2e607f8c1f R08: 0000000000000000 R09: 0000000000000000 [ 465.362128][ T6036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 465.362172][ T6036] R13: 00007f2e60a06038 R14: 00007f2e60a05fa0 R15: 00007ffe3be65708 [ 465.362265][ T6036] [ 465.362503][ T6036] memory: usage 307200kB, limit 307200kB, failcnt 410 [ 465.684510][ T6036] memory+swap: usage 307824kB, limit 9007199254740988kB, failcnt 0 [ 465.692476][ T6036] kmem: usage 305344kB, limit 9007199254740988kB, failcnt 0 [ 465.699995][ T6036] Memory cgroup stats for /syz6: [ 465.871752][ T6036] cache 0 [ 465.879883][ T6036] rss 6197248 [ 465.883209][ T6036] shmem 0 [ 465.886228][ T6036] mapped_file 0 [ 465.889765][ T6036] dirty 0 [ 465.892823][ T6036] writeback 0 [ 465.896128][ T6036] workingset_refault_anon 25 [ 465.900854][ T6036] workingset_refault_file 0 [ 465.905444][ T6036] swap 614400 [ 465.908797][ T6036] swapcached 45056 [ 465.912587][ T6036] pgpgin 174537 [ 465.916157][ T6036] pgpgout 173023 [ 465.919780][ T6036] pgfault 255327 [ 465.923383][ T6036] pgmajfault 18 [ 465.926906][ T6036] inactive_anon 28672 [ 465.930953][ T6036] active_anon 24576 [ 465.934828][ T6036] inactive_file 5365760 [ 465.939126][ T6036] active_file 782336 [ 465.943091][ T6036] unevictable 0 [ 465.946574][ T6036] hierarchical_memory_limit 314572800 [ 465.952050][ T6036] hierarchical_memsw_limit 9223372036854771712 [ 465.958449][ T6036] total_cache 0 [ 465.961936][ T6036] total_rss 6197248 [ 465.965773][ T6036] total_shmem 0 [ 465.969345][ T6036] total_mapped_file 0 [ 465.973371][ T6036] total_dirty 0 [ 465.976847][ T6036] total_writeback 0 [ 465.980723][ T6036] total_workingset_refault_anon 25 [ 465.985851][ T6036] total_workingset_refault_file 0 [ 465.990998][ T6036] total_swap 614400 [ 465.994871][ T6036] total_swapcached 45056 [ 465.999181][ T6036] total_pgpgin 174537 [ 466.003244][ T6036] total_pgpgout 173023 [ 466.007412][ T6036] total_pgfault 255327 [ 466.011565][ T6036] total_pgmajfault 18 [ 466.015649][ T6036] total_inactive_anon 28672 [ 466.020222][ T6036] total_active_anon 24576 [ 466.024635][ T6036] total_inactive_file 5365760 [ 466.029396][ T6036] total_active_file 782336 [ 466.033874][ T6036] total_unevictable 0 [ 466.037915][ T6036] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz6,task_memcg=/syz6,task=syz.6.13569,pid=6034,uid=0 [ 466.052785][ T6036] Memory cgroup out of memory: Killed process 6034 (syz.6.13569) total-vm:96180kB, anon-rss:10552kB, file-rss:22076kB, shmem-rss:0kB, UID:0 pgtables:152kB oom_score_adj:1000 [ 466.223148][ T6096] loop6: detected capacity change from 0 to 512 [ 466.254770][ T6096] EXT4-fs: Ignoring removed mblk_io_submit option [ 466.295610][ T6096] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=885ec129, mo2=0006] [ 466.307273][ T6096] EXT4-fs error (device loop6): ext4_read_inode_bitmap:139: comm syz.6.13596: Invalid inode bitmap blk 4 in block_group 0 [ 466.334762][ T6101] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 466.420540][ T6101] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 466.451921][ T6096] EXT4-fs (loop6): Remounting filesystem read-only [ 466.500530][ T6096] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 466.526639][ T37] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 466.619873][T27799] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 466.879408][ T6143] tap0: tun_chr_ioctl cmd 2147767521 [ 467.025612][ T6152] netlink: 332 bytes leftover after parsing attributes in process `syz.6.13622'. [ 467.070664][ T6156] netlink: 'syz.3.13625': attribute type 12 has an invalid length. [ 467.078695][ T6156] netlink: 132 bytes leftover after parsing attributes in process `syz.3.13625'. [ 467.301390][ T6177] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 467.331168][ T6177] ext4 filesystem being mounted at /352/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 467.416746][ T6191] program syz.2.13640 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 467.491507][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1509.tmp-b7:8' failed: Read-only file system [ 467.525254][T27668] udevd[27668]: symlink '../../loop2' '/dev/disk/by-diskseq/1498.tmp-b7:2' failed: Read-only file system [ 467.545280][ T1047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 467.592740][T27668] udevd[27668]: symlink '../../loop4' '/dev/disk/by-label/syzkaller.tmp-b7:3' failed: Read-only file system [ 467.606597][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1509.tmp-b7:8' failed: Read-only file system [ 467.634116][T27662] udevd[27662]: symlink '../../loop2' '/dev/disk/by-diskseq/1498.tmp-b7:2' failed: Read-only file system [ 467.642633][T27668] udevd[27668]: symlink '../../loop3' '/dev/disk/by-diskseq/1515.tmp-b7:3' failed: Read-only file system [ 467.686739][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1517.tmp-b7:8' failed: Read-only file system [ 467.728707][T27668] udevd[27668]: symlink '../../loop3' '/dev/disk/by-diskseq/1515.tmp-b7:3' failed: Read-only file system [ 467.744192][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1517.tmp-b7:8' failed: Read-only file system [ 467.770274][T27668] udevd[27668]: symlink '../../loop8' '/dev/disk/by-diskseq/1517.tmp-b7:8' failed: Read-only file system [ 468.062725][ T6250] erspan0: entered promiscuous mode [ 468.132835][ T6258] netlink: 'syz.8.13672': attribute type 1 has an invalid length. [ 468.670343][ T29] kauditd_printk_skb: 282 callbacks suppressed [ 468.670364][ T29] audit: type=1400 audit(2000000091.345:3864): avc: denied { ioctl } for pid=6301 comm="syz.3.13692" path="socket:[117566]" dev="sockfs" ino=117566 ioctlcmd=0x89e1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 468.892481][ T6316] set_capacity_and_notify: 4 callbacks suppressed [ 468.892503][ T6316] loop6: detected capacity change from 0 to 128 [ 469.036646][ T6324] netlink: 383 bytes leftover after parsing attributes in process `syz.0.13703'. [ 469.045923][ T6324] openvswitch: netlink: ufid size 36 bytes exceeds the range (1, 16) [ 469.054201][ T6324] openvswitch: netlink: Message has 4 unknown bytes. [ 469.214869][ T6336] loop2: detected capacity change from 0 to 512 [ 469.232671][ T6336] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.13708: invalid indirect mapped block 4294967295 (level 1) [ 469.250256][ T6336] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.13708: invalid indirect mapped block 4294967295 (level 1) [ 469.267030][ T6336] EXT4-fs (loop2): 2 truncates cleaned up [ 469.273522][ T6336] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 469.315629][ T4151] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 469.348855][ T6343] loop3: detected capacity change from 0 to 128 [ 469.371869][ T6343] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 469.417218][ T6343] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 469.445297][ T6349] loop8: detected capacity change from 0 to 256 [ 469.484735][ T6349] FAT-fs (loop8): Directory bread(block 64) failed [ 469.501489][ T6349] FAT-fs (loop8): Directory bread(block 65) failed [ 469.514279][ T6349] FAT-fs (loop8): Directory bread(block 66) failed [ 469.521185][ T6349] FAT-fs (loop8): Directory bread(block 67) failed [ 469.528137][ T6349] FAT-fs (loop8): Directory bread(block 68) failed [ 469.534687][ T6349] FAT-fs (loop8): Directory bread(block 69) failed [ 469.555678][ T6349] FAT-fs (loop8): Directory bread(block 70) failed [ 469.567185][ T6349] FAT-fs (loop8): Directory bread(block 71) failed [ 469.573864][ T6349] FAT-fs (loop8): Directory bread(block 72) failed [ 469.583944][ T6349] FAT-fs (loop8): Directory bread(block 73) failed [ 469.630911][ T1657] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 469.813428][ T6370] loop3: detected capacity change from 0 to 512 [ 469.845888][ T6370] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 469.855095][ T6370] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 469.917065][ T6370] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended [ 470.009629][ T6389] netlink: 28 bytes leftover after parsing attributes in process `syz.2.13731'. [ 470.015551][ T6370] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 470.018776][ T6389] netlink: 28 bytes leftover after parsing attributes in process `syz.2.13731'. [ 470.052958][ T6370] System zones: 0-2, 18-18, 34-35 [ 470.107941][ T6370] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 470.168379][ T6400] loop8: detected capacity change from 0 to 512 [ 470.178346][ T6370] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 470.311997][ T6400] EXT4-fs: Ignoring removed mblk_io_submit option [ 470.327261][ T6400] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 470.371671][ T1047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 470.381115][ T6400] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e02c, mo2=0002] [ 470.403453][ T6400] System zones: 1-12 [ 470.410961][ T6405] delete_channel: no stack [ 470.415631][ T6400] EXT4-fs (loop8): orphan cleanup on readonly fs [ 470.461270][ T6400] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.13734: bg 0: block 361: padding at end of block bitmap is not set [ 470.533097][ T6400] EXT4-fs (loop8): Remounting filesystem read-only [ 470.550665][ T6400] EXT4-fs (loop8): 1 truncate cleaned up [ 470.568014][ T6400] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 470.618640][ T6423] syzkaller0: tun_chr_ioctl cmd 1074025677 [ 470.628716][ T6423] syzkaller0: linktype set to 773 [ 470.670048][T31624] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 470.959298][ T6462] netlink: 24 bytes leftover after parsing attributes in process `syz.8.13763'. [ 471.497030][ T6497] loop3: detected capacity change from 0 to 512 [ 471.514627][ T6497] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 471.536641][ T6497] ext4 filesystem being mounted at /370/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 471.616210][ T6503] loop2: detected capacity change from 0 to 2048 [ 471.648779][ T6503] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 471.680685][ T6508] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22 [ 471.688892][ T29] audit: type=1400 audit(2000000094.355:3865): avc: denied { setattr } for pid=6502 comm="syz.2.13781" name="file0" dev="loop2" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 471.711787][ T29] audit: type=1400 audit(2000000094.355:3866): avc: denied { unlink } for pid=6502 comm="syz.2.13781" name="file0" dev="loop2" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 471.737652][ T4151] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 471.784299][ T1047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 471.879973][ T6520] netlink: 'syz.3.13787': attribute type 27 has an invalid length. [ 471.887990][ T6520] netlink: 20 bytes leftover after parsing attributes in process `syz.3.13787'. [ 471.900908][ T6520] bond0: option tlb_dynamic_lb: mode dependency failed, not supported in mode balance-rr(0) [ 471.972010][ T6535] 9p: Bad value for 'rfdno' [ 472.084431][ T6554] loop2: detected capacity change from 0 to 512 [ 472.091847][ T6554] EXT4-fs (loop2): external journal device major/minor numbers have changed [ 472.101201][ T6554] EXT4-fs (loop2): filesystem has both journal inode and journal device! [ 472.349415][ T29] audit: type=1400 audit(2000000095.025:3867): avc: denied { compute_member } for pid=6583 comm="syz.2.13818" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 472.419545][ T6588] loop8: detected capacity change from 0 to 128 [ 472.476660][ T29] audit: type=1326 audit(2000000095.145:3868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6589 comm="syz.8.13821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feecfc9aeb9 code=0x7ffc0000 [ 472.500380][ T29] audit: type=1326 audit(2000000095.145:3869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6589 comm="syz.8.13821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feecfc9aeb9 code=0x7ffc0000 [ 472.524353][ T29] audit: type=1326 audit(2000000095.145:3870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6589 comm="syz.8.13821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=8 compat=0 ip=0x7feecfc9aeb9 code=0x7ffc0000 [ 472.547820][ T29] audit: type=1326 audit(2000000095.145:3871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6589 comm="syz.8.13821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feecfc9aeb9 code=0x7ffc0000 [ 472.571589][ T29] audit: type=1326 audit(2000000095.145:3872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6589 comm="syz.8.13821" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feecfc9aeb9 code=0x7ffc0000 [ 472.611213][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1541.tmp-b7:8' failed: Read-only file system [ 472.625443][ T6594] xt_time: invalid argument - start or stop time greater than 23:59:59 [ 472.653222][T27668] udevd[27668]: symlink '../../loop2' '/dev/disk/by-diskseq/1540.tmp-b7:2' failed: Read-only file system [ 472.654847][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1542.tmp-b7:8' failed: Read-only file system [ 472.681240][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1542.tmp-b7:8' failed: Read-only file system [ 472.704319][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1542.tmp-b7:8' failed: Read-only file system [ 472.796829][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1542.tmp-b7:8' failed: Read-only file system [ 472.820673][T27668] udevd[27668]: symlink '../../loop6' '/dev/disk/by-diskseq/1522.tmp-b7:6' failed: Read-only file system [ 472.843899][ T6606] netlink: 774 bytes leftover after parsing attributes in process `syz.6.13828'. [ 472.860593][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1542.tmp-b7:8' failed: Read-only file system [ 472.931434][ T6610] netlink: 8 bytes leftover after parsing attributes in process `syz.6.13830'. [ 472.949480][T27668] udevd[27668]: symlink '../../loop6' '/dev/disk/by-diskseq/1522.tmp-b7:6' failed: Read-only file system [ 472.964598][ T6610] netlink: 8 bytes leftover after parsing attributes in process `syz.6.13830'. [ 473.025817][ T6610] netlink: 8 bytes leftover after parsing attributes in process `syz.6.13830'. [ 473.067525][ T6610] netlink: 8 bytes leftover after parsing attributes in process `syz.6.13830'. [ 473.110850][T30680] udevd[30680]: symlink '../../loop3' '/dev/disk/by-diskseq/1538.tmp-b7:3' failed: Read-only file system [ 473.229586][ T6625] EXT4-fs: Ignoring removed nomblk_io_submit option [ 473.248767][ T6625] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 473.248962][ T6615] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 473.257144][ T6625] System zones: 0-1, 3-36 [ 473.275975][ T6625] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 473.289180][ T6615] ext4 filesystem being mounted at /378/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 473.335097][T31624] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 473.439814][ T1047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 473.493331][ T6638] EXT4-fs: Ignoring removed nobh option [ 473.563807][ T6638] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 473.597377][ T6638] ext4 filesystem being mounted at /706/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 473.631257][T14355] Bluetooth: hci0: sending frame failed (-49) [ 473.637838][ T3643] Bluetooth: hci0: Opcode 0x1003 failed: -49 [ 473.667459][T31624] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 473.858448][ T29] audit: type=1326 audit(2000000096.535:3873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6677 comm="syz.2.13861" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f87b0a3aeb9 code=0x0 [ 473.897137][ T6679] FAT-fs (loop8): error, invalid access to FAT (entry 0x0fff0000) [ 473.905057][ T6679] FAT-fs (loop8): Filesystem has been set read-only [ 473.978417][ T6694] bond1: option ad_actor_system: mode dependency failed, not supported in mode balance-rr(0) [ 473.990190][ T6694] bond1 (unregistering): Released all slaves [ 474.041503][ T6702] set_capacity_and_notify: 5 callbacks suppressed [ 474.041527][ T6702] loop6: detected capacity change from 0 to 256 [ 474.115802][ T6709] loop8: detected capacity change from 0 to 512 [ 474.124218][ T6709] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 474.140861][ T6709] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 474.157435][ T6709] ext4 filesystem being mounted at /712/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 474.195951][ T6709] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.13873: bg 0: block 217: padding at end of block bitmap is not set [ 474.221028][ T6709] EXT4-fs (loop8): Remounting filesystem read-only [ 474.249452][T31624] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 474.259949][T22925] Quota error (device loop8): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync! [ 474.273046][T22925] Quota error (device loop8): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync! [ 474.341730][ T6724] C: renamed from team_slave_0 (while UP) [ 474.361760][ T6724] netlink: 'syz.8.13877': attribute type 8 has an invalid length. [ 474.369820][ T6724] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 474.411171][ T29] audit: type=1400 audit(2000000097.085:3874): avc: denied { read } for pid=21118 comm="kworker/1:17" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=118261 scontext=system_u:system_r:kernel_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 474.541864][ T6745] sctp: [Deprecated]: syz.8.13889 (pid 6745) Use of int in max_burst socket option. [ 474.541864][ T6745] Use struct sctp_assoc_value instead [ 474.576847][ T6748] ipvlan0: entered promiscuous mode [ 474.629780][ T6753] loop6: detected capacity change from 0 to 128 [ 474.650975][ T6753] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 474.709051][ T6753] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 474.774149][ T6766] __nla_validate_parse: 2 callbacks suppressed [ 474.774179][ T6766] netlink: 488 bytes leftover after parsing attributes in process `syz.8.13900'. [ 474.789692][ T6766] netlink: 488 bytes leftover after parsing attributes in process `syz.8.13900'. [ 474.858610][ T6772] loop8: detected capacity change from 0 to 512 [ 474.873981][ T6772] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended [ 474.883139][ T6772] EXT4-fs (loop8): mounting ext2 file system using the ext4 subsystem [ 474.898769][ T6772] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 474.907005][ T6772] System zones: 0-2, 18-18, 34-34 [ 474.917468][ T6772] EXT4-fs error (device loop8): ext4_orphan_get:1391: comm syz.8.13902: inode #15: comm syz.8.13902: iget: illegal inode # [ 474.934451][ T6772] EXT4-fs error (device loop8): ext4_orphan_get:1396: comm syz.8.13902: couldn't read orphan inode 15 (err -117) [ 474.938656][ T6775] syzkaller1: tun_chr_ioctl cmd 1074025677 [ 474.961732][ T6772] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 474.990901][ T6775] syzkaller1: linktype set to 270 [ 475.017264][ T6772] EXT4-fs error (device loop8): ext4_find_dest_de:2050: inode #2: block 3: comm syz.8.13902: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1 [ 475.067944][T31624] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 475.103649][ T6787] loop2: detected capacity change from 0 to 512 [ 475.155239][ T6787] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.13910: bg 0: block 248: padding at end of block bitmap is not set [ 475.230169][ T6787] Quota error (device loop2): write_blk: dquota write failed [ 475.237748][ T6787] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 475.310256][ T29] audit: type=1326 audit(2000000097.975:3875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6800 comm="syz.6.13914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e6078aeb9 code=0x7ffc0000 [ 475.333889][ T29] audit: type=1326 audit(2000000097.985:3876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6800 comm="syz.6.13914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e6078aeb9 code=0x7ffc0000 [ 475.342367][ T6787] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm syz.2.13910: Failed to acquire dquot type 1 [ 475.357588][ T29] audit: type=1326 audit(2000000097.985:3877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6800 comm="syz.6.13914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e6078aeb9 code=0x7ffc0000 [ 475.392437][ T29] audit: type=1326 audit(2000000097.985:3878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6800 comm="syz.6.13914" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2e6078aeb9 code=0x7ffc0000 [ 475.420498][ T6787] EXT4-fs (loop2): 1 truncate cleaned up [ 475.487856][ T6787] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 475.500788][ T6787] ext4 filesystem being mounted at /208/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 475.509925][ T6807] netlink: 7 bytes leftover after parsing attributes in process `syz.6.13917'. [ 475.606269][ T4151] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 475.627559][ T52] EXT4-fs error (device loop2): ext4_release_dquot:7022: comm kworker/u8:3: Failed to release dquot type 1 [ 475.805765][ T6841] netlink: 24 bytes leftover after parsing attributes in process `syz.8.13933'. [ 476.124377][ T6881] loop8: detected capacity change from 0 to 4096 [ 476.143676][ T6890] program syz.6.13957 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 476.150985][ T6881] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 476.201073][T31624] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 476.381003][ T6914] team0: Device gtp0 is of different type [ 477.226058][ T6983] netlink: 28 bytes leftover after parsing attributes in process `syz.3.13996'. [ 477.340678][ T6997] loop8: detected capacity change from 0 to 1024 [ 477.362173][ T6997] EXT4-fs: inline encryption not supported [ 477.368187][ T6997] EXT4-fs: Ignoring removed oldalloc option [ 477.377589][ T6997] EXT4-fs: inline encryption not supported [ 477.383759][ T6997] EXT4-fs: Ignoring removed orlov option [ 477.424401][ T6997] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 477.466763][ T6997] IPVS: set_ctl: invalid protocol: 12078 108.101.49.0:0 [ 477.484814][T31624] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 477.618909][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1566.tmp-b7:8' failed: Read-only file system [ 477.648955][T27668] udevd[27668]: symlink '../../loop2' '/dev/disk/by-diskseq/1562.tmp-b7:2' failed: Read-only file system [ 477.680435][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1566.tmp-b7:8' failed: Read-only file system [ 477.722634][T27668] udevd[27668]: symlink '../../loop6' '/dev/disk/by-diskseq/1558.tmp-b7:6' failed: Read-only file system [ 477.772037][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1566.tmp-b7:8' failed: Read-only file system [ 477.832292][T27668] udevd[27668]: symlink '../../loop2' '/dev/disk/by-diskseq/1562.tmp-b7:2' failed: Read-only file system [ 477.855795][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1566.tmp-b7:8' failed: Read-only file system [ 477.883558][T27662] udevd[27662]: symlink '../../loop6' '/dev/disk/by-diskseq/1558.tmp-b7:6' failed: Read-only file system [ 477.924318][T30680] udevd[30680]: symlink '../../loop8' '/dev/disk/by-diskseq/1566.tmp-b7:8' failed: Read-only file system [ 477.956655][T27668] udevd[27668]: symlink '../../loop2' '/dev/disk/by-diskseq/1562.tmp-b7:2' failed: Read-only file system [ 477.996393][ T7064] netlink: 12 bytes leftover after parsing attributes in process `syz.2.14030'. [ 478.588539][ T7138] netlink: 8 bytes leftover after parsing attributes in process `syz.0.14057'. [ 478.742930][ T7150] loop6: detected capacity change from 0 to 164 [ 478.764767][ T7150] Unable to read rock-ridge attributes [ 478.772727][ T7150] Unable to read rock-ridge attributes [ 478.796580][ T7150] syz.6.14063: attempt to access beyond end of device [ 478.796580][ T7150] loop6: rw=8912896, sector=263328, nr_sectors = 4 limit=164 [ 478.813084][ T7153] loop3: detected capacity change from 0 to 1024 [ 478.820926][ T7150] syz.6.14063: attempt to access beyond end of device [ 478.820926][ T7150] loop6: rw=8388608, sector=263328, nr_sectors = 4 limit=164 [ 478.877551][ T7153] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 478.894063][ T7162] netlink: 4 bytes leftover after parsing attributes in process `syz.8.14067'. [ 478.912490][ T7153] ext4 filesystem being mounted at /412/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 478.952772][ T7167] loop8: detected capacity change from 0 to 512 [ 478.963414][ T7167] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode [ 478.992896][ T7167] EXT4-fs (loop8): 1 truncate cleaned up [ 478.999129][ T7167] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 479.031063][ T7168] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 479.064784][ T29] kauditd_printk_skb: 94 callbacks suppressed [ 479.064804][ T29] audit: type=1400 audit(2000000101.725:3972): avc: denied { quotaon } for pid=7165 comm="syz.8.14070" name="file0" dev="loop8" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 479.072682][ T7168] ext4 filesystem being mounted at /864/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 479.112441][ T1047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 479.124097][T31624] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 479.165241][T27799] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 479.189213][ T7188] set_capacity_and_notify: 1 callbacks suppressed [ 479.189229][ T7188] loop8: detected capacity change from 0 to 128 [ 479.210316][ T7190] random: crng reseeded on system resumption [ 479.322110][ T7202] loop3: detected capacity change from 0 to 1024 [ 479.331760][ T7202] EXT4-fs: Ignoring removed bh option [ 479.360185][ T7202] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 479.400668][ T7202] EXT4-fs error (device loop3): ext4_find_dest_de:2050: inode #2: block 16: comm syz.3.14085: bad entry in directory: directory entry overrun - offset=24, inode=267, rec_len=1024, size=1024 fake=0 [ 479.436703][ T7213] loop2: detected capacity change from 0 to 1024 [ 479.453518][ T7202] EXT4-fs (loop3): Remounting filesystem read-only [ 479.478184][ T7213] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 479.489357][ T1047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 479.500602][ T7213] ext4 filesystem being mounted at /239/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 479.550250][ T7213] EXT4-fs: Ignoring removed orlov option [ 479.556253][ T7213] EXT4-fs (loop2): stripe (1787) is not aligned with cluster size (16), stripe is disabled [ 479.569938][ T7213] EXT4-fs (loop2): can't enable nombcache during remount [ 479.619356][ T4151] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 479.787283][ T7244] loop3: detected capacity change from 0 to 1024 [ 479.794295][ T7244] EXT4-fs: Ignoring removed orlov option [ 479.800203][ T7244] EXT4-fs: Ignoring removed nomblk_io_submit option [ 479.816824][ T7248] loop6: detected capacity change from 0 to 512 [ 479.836924][ T7244] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 479.852910][ T7248] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 479.892994][ T29] audit: type=1400 audit(2000000102.565:3973): avc: denied { lock } for pid=7246 comm="syz.6.14104" path="/874/file0/file1" dev="loop6" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 479.928559][T27799] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 479.969841][ T1047] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 480.059446][ T7267] netlink: 44 bytes leftover after parsing attributes in process `syz.6.14111'. [ 480.108890][ T7272] loop6: detected capacity change from 0 to 512 [ 480.181811][ T7276] loop6: detected capacity change from 0 to 128 [ 480.554595][ T7301] netlink: 27 bytes leftover after parsing attributes in process `syz.8.14126'. [ 480.809872][ T7316] 9p: Bad value for 'rfdno' [ 481.040439][ T7343] loop2: detected capacity change from 0 to 164 [ 481.088663][ T7345] pim6reg: entered allmulticast mode [ 481.102883][ T7345] pim6reg: left allmulticast mode [ 481.323437][ T7373] netlink: 45 bytes leftover after parsing attributes in process `syz.3.14160'. [ 481.763969][ T29] audit: type=1326 audit(2000000104.425:3974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7401 comm="syz.6.14173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e6078aeb9 code=0x7ffc0000 [ 481.787872][ T29] audit: type=1326 audit(2000000104.425:3975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7401 comm="syz.6.14173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e6078aeb9 code=0x7ffc0000 [ 481.811581][ T29] audit: type=1326 audit(2000000104.435:3976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7401 comm="syz.6.14173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7f2e6078aeb9 code=0x7ffc0000 [ 481.835111][ T29] audit: type=1326 audit(2000000104.435:3977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7401 comm="syz.6.14173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e6078aeb9 code=0x7ffc0000 [ 481.858778][ T29] audit: type=1326 audit(2000000104.435:3978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7401 comm="syz.6.14173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e6078aeb9 code=0x7ffc0000 [ 481.882431][ T29] audit: type=1326 audit(2000000104.435:3979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7401 comm="syz.6.14173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f2e6078aeb9 code=0x7ffc0000 [ 481.933548][T21104] kernel read not supported for file /vcs (pid: 21104 comm: kworker/0:11) [ 482.101646][ T7429] loop6: detected capacity change from 0 to 1024 [ 482.147709][ T7429] EXT4-fs: Ignoring removed bh option [ 482.157028][ T29] audit: type=1326 audit(2000000104.435:3980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7401 comm="syz.6.14173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e6078aeb9 code=0x7ffc0000 [ 482.181183][ T29] audit: type=1326 audit(2000000104.435:3981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7401 comm="syz.6.14173" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f2e6078aeb9 code=0x7ffc0000 [ 482.265268][ T7429] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 482.285867][ T7444] netlink: 12 bytes leftover after parsing attributes in process `syz.8.14191'. [ 482.306428][ T7440] pim6reg: tun_chr_ioctl cmd 1074025680 [ 482.309808][ T7429] EXT4-fs error (device loop6): ext4_find_dest_de:2050: inode #2: block 16: comm syz.6.14185: bad entry in directory: directory entry overrun - offset=24, inode=267, rec_len=1024, size=1024 fake=0 [ 482.377276][ T7429] EXT4-fs (loop6): Remounting filesystem read-only [ 482.437769][T27799] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 482.471361][T27799] ================================================================== [ 482.479517][T27799] BUG: KCSAN: data-race in __xa_clear_mark / xas_find_marked [ 482.487028][T27799] [ 482.489400][T27799] read-write to 0xffff88811b2a5470 of 8 bytes by interrupt on cpu 0: [ 482.497496][T27799] __xa_clear_mark+0xf5/0x1e0 [ 482.502230][T27799] __folio_end_writeback+0xf4/0x360 [ 482.507475][T27799] folio_end_writeback_no_dropbehind+0x6d/0x1d0 [ 482.513749][T27799] folio_end_writeback+0x1c/0x70 [ 482.518717][T27799] end_buffer_async_write+0x156/0x1f0 [ 482.524118][T27799] end_bio_bh_io_sync+0x79/0xa0 [ 482.528995][T27799] bio_endio+0x37a/0x410 [ 482.533268][T27799] blk_update_request+0x338/0x730 [ 482.538322][T27799] blk_mq_end_request+0x26/0x50 [ 482.543200][T27799] lo_complete_rq+0x98/0x140 [ 482.547813][T27799] blk_done_softirq+0x77/0xb0 [ 482.552517][T27799] handle_softirqs+0xb9/0x280 [ 482.557244][T27799] run_ksoftirqd+0x1c/0x30 [ 482.561695][T27799] smpboot_thread_fn+0x32a/0x510 [ 482.566696][T27799] kthread+0x488/0x510 [ 482.570799][T27799] ret_from_fork+0x148/0x280 [ 482.575427][T27799] ret_from_fork_asm+0x1a/0x30 [ 482.580228][T27799] [ 482.582574][T27799] read to 0xffff88811b2a5470 of 8 bytes by task 27799 on cpu 1: [ 482.590347][T27799] xas_find_marked+0x213/0x620 [ 482.595174][T27799] filemap_get_folios_tag+0xfa/0x510 [ 482.600497][T27799] filemap_write_and_wait_range+0x1f5/0x370 [ 482.606418][T27799] sync_blockdev+0x35/0x50 [ 482.610961][T27799] ext4_put_super+0x610/0x7d0 [ 482.615664][T27799] generic_shutdown_super+0xe6/0x210 [ 482.620984][T27799] kill_block_super+0x2a/0x70 [ 482.625686][T27799] ext4_kill_sb+0x42/0x80 [ 482.630051][T27799] deactivate_locked_super+0x75/0x1c0 [ 482.635458][T27799] deactivate_super+0x97/0xa0 [ 482.640170][T27799] cleanup_mnt+0x2bb/0x330 [ 482.644631][T27799] __cleanup_mnt+0x19/0x20 [ 482.649082][T27799] task_work_run+0x130/0x1a0 [ 482.653716][T27799] exit_to_user_mode_loop+0x1f7/0x6f0 [ 482.659144][T27799] do_syscall_64+0x1d3/0x2a0 [ 482.663764][T27799] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 482.669687][T27799] [ 482.672040][T27799] value changed: 0x0000000010000007 -> 0x0000000000000000 [ 482.679167][T27799] [ 482.681512][T27799] Reported by Kernel Concurrency Sanitizer on: [ 482.687794][T27799] CPU: 1 UID: 0 PID: 27799 Comm: syz-executor Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 482.699365][T27799] Tainted: [W]=WARN [ 482.703186][T27799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 482.713268][T27799] ================================================================== [ 482.730831][ T7467] sctp: [Deprecated]: syz.0.14203 (pid 7467) Use of int in max_burst socket option. [ 482.730831][ T7467] Use struct sctp_assoc_value instead [ 482.759764][T30680] udevd[30680]: symlink '../../loop2' '/dev/disk/by-diskseq/1590.tmp-b7:2' failed: Read-only file system [ 482.773330][T27668] udevd[27668]: symlink '../../loop8' '/dev/disk/by-diskseq/1576.tmp-b7:8' failed: Read-only file system [ 482.795525][T30680] udevd[30680]: symlink '../../loop4' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system [ 482.803957][T27668] udevd[27668]: symlink '../../loop3' '/dev/disk/by-diskseq/1584.tmp-b7:3' failed: Read-only file system [ 482.822188][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-diskseq/1591.tmp-b7:6' failed: Read-only file system [ 482.839568][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-diskseq/1591.tmp-b7:6' failed: Read-only file system [ 482.854993][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-diskseq/1592.tmp-b7:6' failed: Read-only file system [ 482.869846][T30680] udevd[30680]: symlink '../../loop6' '/dev/disk/by-diskseq/1592.tmp-b7:6' failed: Read-only file system