last executing test programs: 37.85422448s ago: executing program 1 (id=1007): write$sndseq(0xffffffffffffffff, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x66, 0x0, 0x0, 0x11, 0x0, @empty, @empty=0xe0000001}, {0x0, 0x17c1, 0x8}}}}}, 0x0) 37.79431596s ago: executing program 1 (id=1010): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r0, 0x84, 0x80, &(0x7f00000002c0)="1a00000002000000", 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x3, @empty, 0x4}], 0x1c) sendto$inet6(r0, &(0x7f0000000040)='l', 0x1, 0x14, &(0x7f0000000100)={0xa, 0x4e23, 0x7, @loopback}, 0x1c) 36.91316746s ago: executing program 1 (id=1049): r0 = socket$inet(0x2, 0x3, 0x2) setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @local, @remote}, 0xc) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f00000000c0)=ANY=[@ANYBLOB="e0000002ac1414aa"], 0x1c) syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x64, 0x0, 0x0, 0x2, 0x0, @empty, @multicast2}, @timestamp_reply={0x11, 0x0, 0x0, 0xe000, 0x2, 0x2, 0x1000000}}}}}, 0x0) 36.84863984s ago: executing program 1 (id=1052): syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x9, &(0x7f0000000000)={[{@nombcache}, {@jqfmt_vfsv0}, {@abort}, {}, {@noquota}, {@usrjquota, 0x2e}], [], 0x2e}, 0x6, 0x48d, &(0x7f0000000980)="$eJzs3EtvG1UbAOB3xnV6/5qv3wV6AQIFEXFJmrRAF2xAIHWDhARIZRnStCpNG9QEiVYVTREqS9RfACyR+AWsYIOAFYgtSGyQEFKFuqGwGjT2TOpcHGzHjil+HsntOTNnfM47M8c+MyfjAAbWSP5PErErIr4fithTzy4vMFL/79bNy9O/37w8nUSWvfRrUiv3283L02XRcrudRWY0jUjfTeLAGvXOX7x0dmp2duZCkR9fOPfG+PzFS4+fOTd1eub0zPnJY8eOHpl46snJJ7oS5+68rfvfnju47/ir11+YPnH9ta8+yZfvKtY3xlE33PJ7b2+yfCRGlu/LBg9F/JRlWct1/N3tbkgnW/rYENpSiYj8cFXz/h97ohK3D96eeP6dvjYO6Kksy7Ktq5ZWysRiBvyDJdF0VbqpDQE2WflFn1//lq9NHH703Y1n6hdAedy3ild9zZZIizLVFde33TQSEScW//ggf8Wa9yEAALrrs3z889ha4780/t9Q7l9Rnxsajoh/R8TeiPhPRPw3Iv4XUSt7V0Tc3Wb9Iyvyq8c/3zabXumKfPz3dDG3dXv8N1SLvzBcKXK7a/FXk1NnZmcOF/tkNKpb8/zEOnV8/tx37y9lti1f1zj+y195/eVYsC79ZcuKG3QnpxamuhB6zY2rS4GuGP8mSzMBSUTsi4j9Hbx/vs/OPPLxwWbr/zr+dXRhnin7KOLh+vFfjBXxl5L15yfHt8XszOHx8qxY7etvrr3YrP4Nxd8FN65G7Fh1/kdj/MNJ43ztfPt1XPvhvabXNJ2e/0PJy7X0ULHsramFhQsTEUPJ4urlk7e3LfNl+Tz+0UNrxZ/W3uPDYrsDEZGfxPdExL0RcV/R9vsj4oGIOLRO/F8+++DrncffW3n8J9s6/u0nKme/+LRZ/a0d/6O11GixpJXPv1YbuJF9BwAAAHeKtPY38Ek6tpRO07GxiFdq93Z3pLNz8wuPnpp78/zJ+t/KD0c1Le90pQ33QyeKe8NlfnJF/kjtvnGWZdn2Wn5sem62V3PqQGt2Nun/uZ8r/W4d0HNtzaM1e6INuCO11f9XPy0E3ME8rw2Dq9X+X+1xO4DN5/sfBtda/f9KxK0+NAXYZL7/YXDp/zC49H8YXPo/DKSNPNe/XmLv8Y43zzZUe/n7Kh1u/mNP9sZ6iUqnm29t42cOepCIdM1V1YjoS3vaSqS9qyI/+drbKj+QrRa+0umJ3XZi2cfEUD8+mwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALrhzwAAAP//dNfhIw==") mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount(0x0, &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x31486c, 0x0) mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0) 36.591594313s ago: executing program 1 (id=1061): socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="12000000220000000400000002"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r1}, &(0x7f0000000040), &(0x7f0000000140)=r0}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1}, &(0x7f0000000580)=0x2, &(0x7f00000005c0)=r0}, 0x20) 36.330719916s ago: executing program 1 (id=1078): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f00000012c0)='sys_enter\x00', r1}, 0x10) fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='.\x00', 0xffffff70) 36.330620286s ago: executing program 32 (id=1078): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f00000012c0)='sys_enter\x00', r1}, 0x10) fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='.\x00', 0xffffff70) 36.195941527s ago: executing program 3 (id=1087): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10) setfsuid(0x0) 36.165887537s ago: executing program 3 (id=1088): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000008c0)={'macvtap0\x00', 0x0}) sendto$packet(r1, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x11, 0xb, r2, 0x1, 0xfd, 0x6, @multicast}, 0x14) 36.080376708s ago: executing program 3 (id=1091): r0 = socket$key(0xf, 0x3, 0x2) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f00000005c0)='syzkaller\x00', 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000003c0)='kfree\x00', r1, 0x0, 0x3}, 0x18) sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0202000311000000000000000000000005000500000000000a00000000000000fe8000000000000000000000000000bb000000000000000002000100000007000000000b000000000200090000000000000000000000000005000600000000000a00000000000000fe8800000000000000000000000000010000000000000000010018"], 0x88}}, 0x20000000) 35.91100859s ago: executing program 3 (id=1097): syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x9, &(0x7f0000000000)={[{@nombcache}, {@jqfmt_vfsv0}, {@abort}, {}, {@noquota}, {@usrjquota, 0x2e}], [], 0x2e}, 0x6, 0x48d, &(0x7f0000000980)="$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") mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount(0x0, &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x31486c, 0x0) mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0) 35.608873623s ago: executing program 3 (id=1106): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000dc0)={&(0x7f0000000300)='neigh_update\x00'}, 0x10) r0 = socket$kcm(0x1e, 0x5, 0x0) sendmsg$kcm(r0, &(0x7f0000000540)={&(0x7f0000000280)=@tipc=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000300)="80", 0xfdef}], 0x1}, 0x0) recvmsg(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000580)=""/248, 0xf8}], 0x1, &(0x7f0000000080)=""/19, 0x13}, 0x0) 33.603050314s ago: executing program 3 (id=1158): r0 = eventfd2(0x1, 0x80001) io_setup(0x6, &(0x7f0000000040)=0x0) io_getevents(r1, 0x1, 0x2, &(0x7f0000002a00)=[{}, {}], 0x0) io_submit(r1, 0x1, &(0x7f0000002900)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x7, 0x3511, r0, 0x0, 0x0, 0x0, 0x0, 0x1, r0}]) 33.587800404s ago: executing program 33 (id=1158): r0 = eventfd2(0x1, 0x80001) io_setup(0x6, &(0x7f0000000040)=0x0) io_getevents(r1, 0x1, 0x2, &(0x7f0000002a00)=[{}, {}], 0x0) io_submit(r1, 0x1, &(0x7f0000002900)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x7, 0x3511, r0, 0x0, 0x0, 0x0, 0x0, 0x1, r0}]) 1.414213696s ago: executing program 0 (id=2663): r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000280)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x3, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x9, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000400)='kfree\x00', r1}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0xc, &(0x7f0000000040)=@framed={{0x18, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) 1.360646556s ago: executing program 0 (id=2666): r0 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff) r1 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000200)) keyctl$KEYCTL_MOVE(0x1e, r0, 0xffffffffffffffff, r1, 0x0) 1.333057907s ago: executing program 0 (id=2680): r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x30080, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x5f21df7aec8d40fb, 0x0, 0x0, 0x5, 0x8, 0x2543}, 0x0, 0x0, r0, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x2, 0x1}, 0x1205, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0x40000000000000, r0, 0x0) syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0) 1.250834108s ago: executing program 0 (id=2675): r0 = socket$inet_udp(0x2, 0x2, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.stat\x00', 0x275a, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) getsockopt$inet_buf(r0, 0x0, 0x30, 0x0, &(0x7f0000000100)) 1.144258329s ago: executing program 0 (id=2678): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, @perf_bp={0x0}, 0x4c58, 0x2, 0x0, 0x1, 0x8, 0x1ffff, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x3) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r0}, 0x10) syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x0, 0x2, 0x4, 0x10000}, 0x0, 0x0) 1.144120718s ago: executing program 5 (id=2679): r0 = socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macsec0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001e80)=@newlink={0x44, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r2, 0x80}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_MACSEC_INC_SCI={0x5, 0xf, 0x40}, @IFLA_MACSEC_WINDOW={0x8}]}}}]}, 0x44}}, 0x0) 1.128002689s ago: executing program 5 (id=2682): r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) connect$llc(r0, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @multicast}, 0x10) r1 = dup(r0) mount$9p_fd(0x0, &(0x7f0000000180)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}}) 510.340705ms ago: executing program 2 (id=2706): rt_sigprocmask(0x0, &(0x7f0000000100)={[0xfffffffffffe]}, 0x0, 0x8) r0 = gettid() rt_sigtimedwait(&(0x7f0000000240)={[0xffffffffffffffff]}, 0x0, 0x0, 0x8) tkill(r0, 0x12) 421.650706ms ago: executing program 2 (id=2709): openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x802, 0x0, 0x0, 0x7}, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="200000005200010003000000000000000a0000000c00", @ANYRES32=r0], 0x20}}, 0x0) 396.475696ms ago: executing program 2 (id=2710): r0 = socket$inet_sctp(0x2, 0x800000000000001, 0x84) sendto$inet(r0, &(0x7f0000a34fff)='H', 0x1, 0x0, &(0x7f0000030ff0)={0x2, 0x0, @local={0xac, 0x14, 0xffffffffffffffff}}, 0x10) shutdown(r0, 0x1) setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000380)={0x0, 0x3}, 0xc) 354.671987ms ago: executing program 6 (id=2712): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) set_robust_list(&(0x7f0000000280)={0x0, 0xc8ac}, 0x18) 329.754057ms ago: executing program 4 (id=2713): openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x183822, 0x0) r0 = syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r1, r2, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xffffffffffffff31}) io_uring_enter(r0, 0x7a98, 0x0, 0x8, 0x0, 0x0) 301.005087ms ago: executing program 6 (id=2714): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00') writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000040)="dc", 0x1}], 0x8) 293.741708ms ago: executing program 2 (id=2715): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bond_slave_0\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000005e000100"/20, @ANYRES32=r2, @ANYRES8=r1], 0x1c}}, 0x0) 287.115007ms ago: executing program 4 (id=2716): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000004180)=ANY=[@ANYBLOB="02000000040000000700000002"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10) getrandom(0x0, 0x0, 0x2) 249.185468ms ago: executing program 5 (id=2717): write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce620300fe"], 0xfe1b) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001800599c6d0eab070004000523"], 0xfe33) r0 = socket$inet6(0x10, 0x3, 0x0) sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b) 232.652728ms ago: executing program 4 (id=2718): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x2, 0x4, 0x7ffc0002}]}) eventfd2(0x0, 0x0) 230.110328ms ago: executing program 2 (id=2719): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18) name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x1200) 205.247829ms ago: executing program 6 (id=2720): openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x802, 0x0, 0x0, 0x7}, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="200000005200010003000000000000000a0000000c00", @ANYRES32=r0], 0x20}}, 0x0) 200.929498ms ago: executing program 5 (id=2721): openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x107042, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = open(&(0x7f0000000200)='./file1\x00', 0x0, 0x0) getdents(r0, 0x0, 0x0) 170.470569ms ago: executing program 6 (id=2722): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000400)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) syz_clone3(&(0x7f00000006c0)={0x102102180, 0x0, 0x0, 0x0, {0x29}, 0x0, 0x0, 0x0, &(0x7f0000000680)=[0x0], 0x1}, 0x58) 161.832009ms ago: executing program 4 (id=2723): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000004180)=ANY=[@ANYBLOB="02000000040000000700000002"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10) vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0) 153.204929ms ago: executing program 2 (id=2724): syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f00000000c0)={[{@noauto_da_alloc}, {@init_itable_val={'init_itable', 0x3d, 0x6}}, {@dioread_nolock}, {@grpquota}]}, 0x5, 0x4dd, &(0x7f0000000c40)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc2}}) setxattr$system_posix_acl(&(0x7f0000000040)='./file1\x00', &(0x7f00000003c0)='system.posix_acl_access\x00', &(0x7f00000008c0)=ANY=[@ANYBLOB="020000000100010000000000040000000000000010000000000068e220"], 0x24, 0x2) 143.392439ms ago: executing program 5 (id=2725): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000e00)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a000020095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3c48, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f00005f5000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="020300001b0000000000000000000000040003000000000000000000000000000000000000000000000000000000000005000600000000000a00000000000000fe8000000000000000000000000000bb00000000000000000400040000000000000000000000000000000000000000000000000000000000020001000000000000000000000000ff05000500000000000a00000000000000fe8896380000000000000001000000010000000000000000030007000000000002004e24ac14141f0000000000000000020013"], 0xd8}}, 0x0) 113.283669ms ago: executing program 4 (id=2726): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) close_range(r0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000006c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0xc03e, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x4004000) 67.42276ms ago: executing program 4 (id=2727): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10) llistxattr(0x0, 0x0, 0x0) 57.35371ms ago: executing program 5 (id=2728): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000004180)=ANY=[@ANYBLOB="02000000040000000700000002"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10) getrandom(0x0, 0x0, 0x2) 38.76353ms ago: executing program 6 (id=2729): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bond_slave_0\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000005e000100"/20, @ANYRES32=r2, @ANYRES8=r1], 0x1c}}, 0x0) 18.24548ms ago: executing program 0 (id=2730): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) setsockopt$sock_int(r0, 0x1, 0x22, &(0x7f0000000080)=0xb, 0x4) bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) recvmmsg(r0, &(0x7f0000000440)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001140)=""/174, 0xae}, 0x101}], 0x1, 0x0, 0x0) 0s ago: executing program 6 (id=2731): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r0, 0x0) r1 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$CAN_RAW_ERR_FILTER(r1, 0x65, 0x7, &(0x7f00000001c0)=0x8, 0x4) kernel console output (not intermixed with test programs): d 1074025677 [ 45.383098][ T4831] dvmrp1: linktype set to 773 [ 45.450837][ T4839] loop1: detected capacity change from 0 to 512 [ 45.457616][ T4839] EXT4-fs: Ignoring removed oldalloc option [ 45.465274][ T4839] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.585: Parent and EA inode have the same ino 15 [ 45.477871][ T4839] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.585: Parent and EA inode have the same ino 15 [ 45.490582][ T4839] EXT4-fs (loop1): 1 orphan inode deleted [ 45.496810][ T4839] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 45.520699][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.780861][ T4889] SELinux: syz.1.609 (4889) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 45.907972][ T4907] netlink: 'syz.1.617': attribute type 13 has an invalid length. [ 45.924060][ T4909] loop3: detected capacity change from 0 to 512 [ 45.924378][ T4907] gretap0: refused to change device tx_queue_len [ 45.933033][ T4909] EXT4-fs error (device loop3): ext4_orphan_get:1393: inode #15: comm syz.3.618: iget: bad extended attribute block 1 [ 45.936863][ T4907] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 45.960055][ T4909] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.618: couldn't read orphan inode 15 (err -117) [ 45.977790][ T4909] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 46.004591][ T3307] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.018587][ T4912] loop1: detected capacity change from 0 to 512 [ 46.025512][ T4912] EXT4-fs: Ignoring removed oldalloc option [ 46.031535][ T4912] EXT4-fs: Ignoring removed mblk_io_submit option [ 46.038340][ T4912] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 46.049564][ T4912] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c118, mo2=0002] [ 46.057638][ T4912] System zones: 1-12 [ 46.062228][ T4912] EXT4-fs error (device loop1): ext4_iget_extra_inode:5035: inode #15: comm syz.1.619: corrupted in-inode xattr: e_value size too large [ 46.077991][ T4912] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.619: couldn't read orphan inode 15 (err -117) [ 46.090317][ T4918] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 46.092130][ T4912] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 46.198508][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.228225][ T4932] netdevsim netdevsim3: Direct firmware load for ÈöníñÆgkNšÄq>ä*x(Oˆ@ failed with error -2 [ 46.254841][ T4940] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.302447][ T4940] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.361676][ T4940] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.411564][ T4940] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.475436][ T4940] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.486830][ T4940] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.497732][ T4940] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.509697][ T4940] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.616696][ T4973] xt_CT: You must specify a L4 protocol and not use inversions on it [ 46.649910][ T4979] loop0: detected capacity change from 0 to 512 [ 46.660437][ T4979] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 46.674707][ T4979] ext4 filesystem being mounted at /138/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 46.712228][ T4979] EXT4-fs error (device loop0): ext4_readdir:264: inode #2: block 12: comm syz.0.651: path (unknown): bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0 [ 46.734442][ T4979] EXT4-fs (loop0): Remounting filesystem read-only [ 47.205962][ T5011] SELinux: syz.3.663 (5011) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 47.397119][ T5027] loop3: detected capacity change from 0 to 256 [ 47.407957][ T5027] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 47.416735][ T5027] FAT-fs (loop3): Filesystem has been set read-only [ 47.424630][ T5027] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 47.433491][ T5027] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 47.443677][ T5027] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 47.452657][ T5027] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 47.462969][ T5027] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 47.471943][ T5027] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 47.490531][ T5027] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 47.499712][ T5027] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 47.508422][ T5027] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 47.541123][ T5030] SELinux: Context system_u:object_r:net_conf_t:s0 is not valid (left unmapped). [ 47.564567][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.692810][ T5042] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 47.751759][ T5047] loop0: detected capacity change from 0 to 128 [ 47.759166][ T5047] EXT4-fs: Ignoring removed nobh option [ 47.775478][ T5047] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 47.809044][ T5047] ext4 filesystem being mounted at /143/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 47.847676][ T3311] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 47.936491][ T5059] loop0: detected capacity change from 0 to 764 [ 47.959823][ T5059] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 47.996564][ T4694] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.038175][ T4694] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.093838][ T4694] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.130735][ T4694] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.161991][ T5078] netlink: 'syz.0.696': attribute type 21 has an invalid length. [ 48.169959][ T5077] loop4: detected capacity change from 0 to 2048 [ 48.219319][ T5077] loop4: p3 p4 < > [ 48.281941][ T5092] loop1: detected capacity change from 0 to 512 [ 48.311974][ T5092] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 48.329990][ T5092] EXT4-fs (loop1): 1 truncate cleaned up [ 48.340125][ T5092] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 48.379134][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.408185][ T29] kauditd_printk_skb: 191 callbacks suppressed [ 48.408202][ T29] audit: type=1326 audit(1749918741.007:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5105 comm="syz.0.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae214e929 code=0x7ffc0000 [ 48.439185][ T29] audit: type=1326 audit(1749918741.007:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5105 comm="syz.0.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae214e929 code=0x7ffc0000 [ 48.462574][ T29] audit: type=1400 audit(1749918741.017:706): avc: denied { unmount } for pid=3307 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 48.484991][ T5108] loop4: detected capacity change from 0 to 512 [ 48.514588][ T5108] EXT4-fs: Ignoring removed oldalloc option [ 48.520875][ T5108] EXT4-fs: Ignoring removed mblk_io_submit option [ 48.539138][ T5108] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 48.554368][ T29] audit: type=1326 audit(1749918741.067:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5105 comm="syz.0.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbae214e929 code=0x7ffc0000 [ 48.577767][ T29] audit: type=1326 audit(1749918741.067:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5105 comm="syz.0.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae214e929 code=0x7ffc0000 [ 48.601077][ T29] audit: type=1326 audit(1749918741.067:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5105 comm="syz.0.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae214e929 code=0x7ffc0000 [ 48.624401][ T29] audit: type=1326 audit(1749918741.107:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5105 comm="syz.0.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbae214e929 code=0x7ffc0000 [ 48.647679][ T29] audit: type=1326 audit(1749918741.107:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5105 comm="syz.0.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae214e929 code=0x7ffc0000 [ 48.671005][ T29] audit: type=1326 audit(1749918741.107:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5105 comm="syz.0.710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae214e929 code=0x7ffc0000 [ 48.673137][ T5108] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c118, mo2=0002] [ 48.694212][ T29] audit: type=1400 audit(1749918741.107:713): avc: denied { read } for pid=5110 comm="syz.2.713" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 48.733079][ T5108] System zones: 1-12 [ 48.739232][ T5108] EXT4-fs error (device loop4): ext4_iget_extra_inode:5035: inode #15: comm syz.4.712: corrupted in-inode xattr: e_value size too large [ 48.785636][ T5108] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.712: couldn't read orphan inode 15 (err -117) [ 48.811676][ T5108] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 48.848782][ T5141] loop2: detected capacity change from 0 to 256 [ 48.874022][ T5141] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 48.882850][ T5141] FAT-fs (loop2): Filesystem has been set read-only [ 48.887529][ T5149] loop0: detected capacity change from 0 to 512 [ 48.898659][ T5141] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 48.902867][ T5149] EXT4-fs: Ignoring removed nobh option [ 48.907594][ T5141] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 48.925418][ T5141] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 48.934517][ T5141] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 48.944256][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.946405][ T5149] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 48.966063][ T5141] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 48.975211][ T5141] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 48.984288][ T5141] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 48.993153][ T5141] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 49.002028][ T5141] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 49.037684][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.175708][ T5181] loop1: detected capacity change from 0 to 512 [ 49.243674][ T5181] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 49.279719][ T5181] ext4 filesystem being mounted at /178/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 49.301475][ T5200] netlink: 'syz.3.747': attribute type 21 has an invalid length. [ 49.309768][ T5200] netlink: 'syz.3.747': attribute type 1 has an invalid length. [ 49.360265][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.390160][ T5204] program syz.1.749 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 49.444332][ T5194] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 49.458757][ T5194] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 49.505269][ T5218] ref_ctr_offset mismatch. inode: 0x3b7 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x1000000 [ 49.709198][ T5244] loop1: detected capacity change from 0 to 512 [ 49.722519][ T5246] mmap: syz.0.769 (5246) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 49.737714][ T5248] loop3: detected capacity change from 0 to 164 [ 49.749667][ T5248] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 49.759026][ T5248] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 49.759850][ T5244] EXT4-fs (loop1): 1 orphan inode deleted [ 49.779114][ T5248] Symlink component flag not implemented [ 49.780550][ T5244] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 49.784790][ T5248] Symlink component flag not implemented [ 49.797256][ T5248] Symlink component flag not implemented (7) [ 49.797266][ T5248] Symlink component flag not implemented (116) [ 49.817172][ T31] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:1: Failed to release dquot type 1 [ 49.817194][ T5244] ext4 filesystem being mounted at /183/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 49.993908][ T5265] loop2: detected capacity change from 0 to 1024 [ 50.029539][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.062163][ T5274] __nla_validate_parse: 18 callbacks suppressed [ 50.062181][ T5274] netlink: 1057 bytes leftover after parsing attributes in process `syz.4.782'. [ 50.089834][ T5276] loop1: detected capacity change from 0 to 512 [ 50.098246][ T5265] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 50.109817][ T5276] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 50.111851][ T5265] ext4 filesystem being mounted at /125/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 50.152318][ T5282] loop4: detected capacity change from 0 to 256 [ 50.158712][ T5276] EXT4-fs (loop1): 1 truncate cleaned up [ 50.164812][ T5276] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 50.193596][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.214582][ T5286] loop3: detected capacity change from 0 to 512 [ 50.225378][ T5286] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 50.246674][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.256867][ T5286] EXT4-fs (loop3): 1 truncate cleaned up [ 50.263448][ T5286] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 50.290556][ T5292] IPVS: sync thread started: state = MASTER, mcast_ifn = team_slave_1, syncid = 0, id = 0 [ 50.670215][ T5351] sg_write: data in/out 1729250402/1 bytes for SCSI command 0x2d-- guessing data in; [ 50.670215][ T5351] program syz.3.812 not setting count and/or reply_len properly [ 51.631159][ T5381] loop4: detected capacity change from 0 to 1024 [ 51.640130][ T5381] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 51.651152][ T5381] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 51.688852][ T5381] JBD2: no valid journal superblock found [ 51.694628][ T5381] EXT4-fs (loop4): Could not load journal inode [ 51.718063][ T5392] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check. [ 51.747106][ T5394] bridge0: port 3(vlan2) entered blocking state [ 51.753466][ T5394] bridge0: port 3(vlan2) entered disabled state [ 51.759892][ T5394] vlan2: entered allmulticast mode [ 51.765043][ T5394] bridge0: entered allmulticast mode [ 51.770902][ T5394] vlan2: left allmulticast mode [ 51.775774][ T5394] bridge0: left allmulticast mode [ 51.826865][ T5402] netlink: 188 bytes leftover after parsing attributes in process `syz.3.835'. [ 51.969344][ T5425] netlink: 8 bytes leftover after parsing attributes in process `syz.3.846'. [ 51.991825][ T5425] netlink: 'syz.3.846': attribute type 1 has an invalid length. [ 51.999554][ T5425] netlink: 'syz.3.846': attribute type 2 has an invalid length. [ 52.046325][ T5430] netlink: 16 bytes leftover after parsing attributes in process `syz.4.848'. [ 52.087670][ T5434] netlink: 4 bytes leftover after parsing attributes in process `syz.3.850'. [ 52.169357][ T5446] loop4: detected capacity change from 0 to 512 [ 52.176200][ T5444] loop2: detected capacity change from 0 to 512 [ 52.187450][ T5446] journal_path: Lookup failure for './file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa' [ 52.206930][ T5446] EXT4-fs: error: could not find journal device path [ 52.216325][ T5444] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.855: inode #15: comm syz.2.855: iget: illegal inode # [ 52.238849][ T5444] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.855: couldn't read orphan inode 15 (err -117) [ 52.388290][ T5474] netlink: 'syz.2.868': attribute type 13 has an invalid length. [ 52.436164][ T5474] bridge0: port 2(bridge_slave_1) entered disabled state [ 52.443394][ T5474] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.513344][ T5474] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 52.529363][ T5474] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 52.551108][ T5494] netlink: 'syz.0.878': attribute type 21 has an invalid length. [ 52.574390][ T5474] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 52.583088][ T5474] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 52.591695][ T5474] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 52.600167][ T5474] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 52.630920][ T5498] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 52.699629][ T5508] loop0: detected capacity change from 0 to 1024 [ 52.712147][ T5508] ext4 filesystem being mounted at /190/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 52.826915][ T5536] SELinux: Context Ü is not valid (left unmapped). [ 52.887921][ T5545] netlink: 300 bytes leftover after parsing attributes in process `syz.0.903'. [ 53.136038][ T5592] loop4: detected capacity change from 0 to 512 [ 53.143212][ T5592] EXT4-fs: Ignoring removed nobh option [ 53.160548][ T5592] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #3: comm syz.4.925: corrupted inode contents [ 53.172757][ T5592] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #3: comm syz.4.925: mark_inode_dirty error [ 53.186074][ T5592] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #3: comm syz.4.925: corrupted inode contents [ 53.198183][ T5592] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #3: comm syz.4.925: mark_inode_dirty error [ 53.211405][ T5592] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.925: Failed to acquire dquot type 0 [ 53.223827][ T5592] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #16: comm syz.4.925: corrupted inode contents [ 53.239107][ T5592] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #16: comm syz.4.925: mark_inode_dirty error [ 53.259212][ T5592] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #16: comm syz.4.925: corrupted inode contents [ 53.290794][ T5592] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #16: comm syz.4.925: mark_inode_dirty error [ 53.302553][ T5592] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #16: comm syz.4.925: corrupted inode contents [ 53.318336][ T5592] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem [ 53.329641][ T5592] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #16: comm syz.4.925: corrupted inode contents [ 53.347636][ T5592] EXT4-fs error (device loop4): ext4_truncate:4597: inode #16: comm syz.4.925: mark_inode_dirty error [ 53.358963][ T5592] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem [ 53.368340][ T5592] EXT4-fs (loop4): 1 truncate cleaned up [ 53.374629][ T5592] ext4 filesystem being mounted at /135/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 53.406527][ T5616] netlink: 132 bytes leftover after parsing attributes in process `syz.1.935'. [ 53.418656][ T5619] netlink: 'syz.4.936': attribute type 1 has an invalid length. [ 53.441471][ T29] kauditd_printk_skb: 156 callbacks suppressed [ 53.441488][ T29] audit: type=1326 audit(1749918746.047:867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5620 comm="syz.1.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa44cf5e929 code=0x7ffc0000 [ 53.473968][ T29] audit: type=1326 audit(1749918746.077:868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5620 comm="syz.1.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa44cf5e929 code=0x7ffc0000 [ 53.497305][ T29] audit: type=1326 audit(1749918746.077:869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5620 comm="syz.1.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa44cf5e929 code=0x7ffc0000 [ 53.520591][ T29] audit: type=1326 audit(1749918746.077:870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5620 comm="syz.1.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa44cf5e929 code=0x7ffc0000 [ 53.543837][ T29] audit: type=1326 audit(1749918746.077:871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5620 comm="syz.1.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa44cf5e929 code=0x7ffc0000 [ 53.567373][ T29] audit: type=1326 audit(1749918746.077:872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5620 comm="syz.1.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa44cf5e929 code=0x7ffc0000 [ 53.567584][ T5621] syz.1.937 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 53.590727][ T29] audit: type=1326 audit(1749918746.167:873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5620 comm="syz.1.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa44cf5e929 code=0x7ffc0000 [ 53.590761][ T29] audit: type=1326 audit(1749918746.167:874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5620 comm="syz.1.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7fa44cf5e929 code=0x7ffc0000 [ 53.648114][ T5623] SELinux: Context system_u:object_r:hald_sonypic_exec_t:s0 is not valid (left unmapped). [ 53.649299][ T29] audit: type=1326 audit(1749918746.207:875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5620 comm="syz.1.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa44cf5e929 code=0x7ffc0000 [ 53.681366][ T29] audit: type=1326 audit(1749918746.227:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5620 comm="syz.1.937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa44cf5e929 code=0x7ffc0000 [ 53.831794][ T5645] loop4: detected capacity change from 0 to 128 [ 53.841356][ T5645] ext4 filesystem being mounted at /144/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 54.220560][ T5664] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 54.288438][ T5679] loop0: detected capacity change from 0 to 128 [ 54.303520][ T5683] netlink: 12 bytes leftover after parsing attributes in process `syz.4.965'. [ 54.332804][ T5664] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 54.374815][ T5664] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 54.440496][ T5664] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 54.528380][ T5664] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.540964][ T5664] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.553808][ T5664] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.569841][ T5664] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 54.870698][ T5764] loop4: detected capacity change from 0 to 128 [ 54.880675][ T5763] xt_CT: You must specify a L4 protocol and not use inversions on it [ 55.036347][ T5792] loop0: detected capacity change from 0 to 512 [ 55.043947][ T5792] EXT4-fs: Ignoring removed nobh option [ 55.063235][ T5792] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #3: comm syz.0.1019: corrupted inode contents [ 55.079813][ T5792] EXT4-fs error (device loop0): ext4_dirty_inode:6459: inode #3: comm syz.0.1019: mark_inode_dirty error [ 55.091607][ T5792] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #3: comm syz.0.1019: corrupted inode contents [ 55.108655][ T5792] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #3: comm syz.0.1019: mark_inode_dirty error [ 55.123414][ T5792] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.1019: Failed to acquire dquot type 0 [ 55.139338][ T5792] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm syz.0.1019: corrupted inode contents [ 55.157635][ T5792] EXT4-fs error (device loop0): ext4_dirty_inode:6459: inode #16: comm syz.0.1019: mark_inode_dirty error [ 55.178894][ T5792] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm syz.0.1019: corrupted inode contents [ 55.193450][ T5792] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.1019: mark_inode_dirty error [ 55.207691][ T5792] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm syz.0.1019: corrupted inode contents [ 55.220177][ T5792] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem [ 55.231553][ T5792] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm syz.0.1019: corrupted inode contents [ 55.243735][ T5792] EXT4-fs error (device loop0): ext4_truncate:4597: inode #16: comm syz.0.1019: mark_inode_dirty error [ 55.255108][ T5792] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem [ 55.265865][ T5792] EXT4-fs (loop0): 1 truncate cleaned up [ 55.273969][ T5792] ext4 filesystem being mounted at /221/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 55.461242][ T5834] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 55.530881][ T5834] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 55.587441][ T5848] loop4: detected capacity change from 0 to 764 [ 55.595855][ T5834] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 55.608287][ T5848] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 55.662962][ T5852] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 55.680424][ T5834] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 55.716587][ T5858] loop3: detected capacity change from 0 to 512 [ 55.724610][ T5858] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 55.735683][ T5858] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1048: bg 0: block 254: padding at end of block bitmap is not set [ 55.741351][ T5834] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.751453][ T5858] EXT4-fs (loop3): Remounting filesystem read-only [ 55.762424][ T5834] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.764928][ T5858] EXT4-fs (loop3): 1 truncate cleaned up [ 55.791648][ T5834] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.803194][ T5834] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 55.815089][ T5861] loop4: detected capacity change from 0 to 128 [ 55.821714][ T5861] EXT4-fs: Ignoring removed nobh option [ 55.833429][ T5861] ext4 filesystem being mounted at /184/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 55.882358][ T5868] loop1: detected capacity change from 0 to 512 [ 55.905348][ T5868] EXT4-fs (loop1): orphan cleanup on readonly fs [ 55.911937][ T5868] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13 [ 55.923074][ T5873] loop4: detected capacity change from 0 to 512 [ 55.931674][ T5868] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 55.946129][ T5873] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 55.958455][ T5868] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #13: comm syz.1.1052: attempt to clear invalid blocks 2 len 1 [ 55.972591][ T5868] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.1052: invalid indirect mapped block 1819239214 (level 0) [ 55.987887][ T5873] EXT4-fs (loop4): 1 truncate cleaned up [ 56.007685][ T5868] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.1052: invalid indirect mapped block 1819239214 (level 1) [ 56.030253][ T5868] EXT4-fs (loop1): 1 truncate cleaned up [ 56.055068][ T5868] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended [ 56.084910][ T5868] EXT4-fs error (device loop1): __ext4_remount:6736: comm syz.1.1052: Abort forced by user [ 56.097564][ T5868] EXT4-fs (loop1): Remounting filesystem read-only [ 56.104201][ T5868] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 56.163151][ T5889] loop3: detected capacity change from 0 to 2048 [ 56.192179][ T5889] loop3: p3 p4 < > [ 56.193457][ T5893] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1064'. [ 56.253148][ T5899] loop2: detected capacity change from 0 to 128 [ 56.263500][ T5899] EXT4-fs: Ignoring removed nobh option [ 56.272234][ T5899] ext4 filesystem being mounted at /173/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 56.361508][ T12] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 56.416221][ T5927] loop2: detected capacity change from 0 to 512 [ 56.430667][ T12] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 56.441124][ T5927] EXT4-fs: Ignoring removed nobh option [ 56.480286][ T12] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 56.550545][ T12] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 56.679313][ T12] bridge_slave_1: left allmulticast mode [ 56.685140][ T12] bridge_slave_1: left promiscuous mode [ 56.690918][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.708881][ T12] bridge_slave_0: left allmulticast mode [ 56.714582][ T12] bridge_slave_0: left promiscuous mode [ 56.720377][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.807869][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 56.812479][ T5974] loop3: detected capacity change from 0 to 512 [ 56.829712][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 56.840907][ T5974] EXT4-fs (loop3): orphan cleanup on readonly fs [ 56.847288][ T5974] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -13 [ 56.856899][ T12] bond0 (unregistering): Released all slaves [ 56.868190][ T5974] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 56.893201][ T5974] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #13: comm syz.3.1097: attempt to clear invalid blocks 2 len 1 [ 56.907910][ T5974] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.1097: invalid indirect mapped block 1819239214 (level 0) [ 56.923800][ T5974] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.1097: invalid indirect mapped block 1819239214 (level 1) [ 56.938469][ T5974] EXT4-fs (loop3): 1 truncate cleaned up [ 56.949679][ T5974] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 56.967281][ T5974] EXT4-fs error (device loop3): __ext4_remount:6736: comm syz.3.1097: Abort forced by user [ 56.980765][ T12] hsr_slave_0: left promiscuous mode [ 56.986578][ T5974] EXT4-fs (loop3): Remounting filesystem read-only [ 56.986613][ T12] hsr_slave_1: left promiscuous mode [ 56.993178][ T5974] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 57.001701][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 57.014351][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 57.022522][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 57.030158][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 57.041041][ T12] veth1_macvtap: left promiscuous mode [ 57.046622][ T12] veth0_macvtap: left promiscuous mode [ 57.052493][ T12] veth1_vlan: left promiscuous mode [ 57.057935][ T12] veth0_vlan: left promiscuous mode [ 57.137533][ T12] team0 (unregistering): Port device team_slave_1 removed [ 57.149069][ T12] team0 (unregistering): Port device team_slave_0 removed [ 57.162239][ T5980] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 57.171435][ T5980] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 57.225685][ T6003] ref_ctr_offset mismatch. inode: 0x4d0 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x1000000 [ 57.253069][ T5934] chnl_net:caif_netlink_parms(): no params data found [ 57.291136][ T5934] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.298224][ T5934] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.305460][ T5934] bridge_slave_0: entered allmulticast mode [ 57.312173][ T5934] bridge_slave_0: entered promiscuous mode [ 57.319065][ T5934] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.326148][ T5934] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.333322][ T5934] bridge_slave_1: entered allmulticast mode [ 57.340004][ T5934] bridge_slave_1: entered promiscuous mode [ 57.356815][ T5934] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.367219][ T5934] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.387037][ T5934] team0: Port device team_slave_0 added [ 57.393607][ T5934] team0: Port device team_slave_1 added [ 57.410090][ T5934] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 57.417460][ T5934] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.443555][ T5934] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 57.454967][ T5934] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 57.461953][ T5934] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.487953][ T5934] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 57.530163][ T5934] hsr_slave_0: entered promiscuous mode [ 57.537852][ T5934] hsr_slave_1: entered promiscuous mode [ 57.544512][ T5934] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 57.552953][ T5934] Cannot create hsr debugfs directory [ 57.581408][ T6022] loop0: detected capacity change from 0 to 512 [ 57.586012][ T6020] netlink: 'syz.2.1117': attribute type 83 has an invalid length. [ 57.621980][ T6022] EXT4-fs (loop0): 1 orphan inode deleted [ 57.635522][ T6022] ext4 filesystem being mounted at /241/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 57.646334][ T2289] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:7: Failed to release dquot type 1 [ 57.663177][ T5934] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 57.672266][ T5934] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 57.681079][ T5934] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 57.689804][ T5934] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 57.707641][ T5934] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.714756][ T5934] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.722152][ T5934] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.729281][ T5934] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.758249][ T6038] ref_ctr_offset mismatch. inode: 0x403 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x1000000 [ 57.773749][ T6040] loop0: detected capacity change from 0 to 164 [ 57.781973][ T6040] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 57.792603][ T6040] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 57.794450][ T5934] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.809272][ T6040] Symlink component flag not implemented [ 57.814943][ T6040] Symlink component flag not implemented [ 57.821886][ T6040] Symlink component flag not implemented (7) [ 57.823956][ T5934] 8021q: adding VLAN 0 to HW filter on device team0 [ 57.827884][ T6040] Symlink component flag not implemented (116) [ 57.847510][ T2289] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.847972][ T6042] netlink: 1057 bytes leftover after parsing attributes in process `syz.2.1123'. [ 57.876671][ T56] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.883812][ T56] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.932274][ T6049] loop2: detected capacity change from 0 to 512 [ 57.955547][ T6049] ext4 filesystem being mounted at /198/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 58.004986][ T5934] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.199045][ T5934] veth0_vlan: entered promiscuous mode [ 58.210991][ T5934] veth1_vlan: entered promiscuous mode [ 58.234815][ T5934] veth0_macvtap: entered promiscuous mode [ 58.255380][ T5934] veth1_macvtap: entered promiscuous mode [ 58.287266][ T5934] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 58.299105][ T5934] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 58.313209][ T5934] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.321977][ T5934] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.330818][ T5934] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.339740][ T5934] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.445082][ T6102] netlink: 'syz.4.1151': attribute type 21 has an invalid length. [ 58.453053][ T6102] IPv6: NLM_F_CREATE should be specified when creating new route [ 58.641491][ T6116] loop2: detected capacity change from 0 to 512 [ 58.668978][ T29] kauditd_printk_skb: 83 callbacks suppressed [ 58.669036][ T29] audit: type=1326 audit(1749918751.267:957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6117 comm="syz.0.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae214e929 code=0x7ffc0000 [ 58.698706][ T29] audit: type=1326 audit(1749918751.267:958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6117 comm="syz.0.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae214e929 code=0x7ffc0000 [ 58.722055][ T29] audit: type=1326 audit(1749918751.267:959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6117 comm="syz.0.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7fbae214e929 code=0x7ffc0000 [ 58.745535][ T29] audit: type=1326 audit(1749918751.267:960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6117 comm="syz.0.1146" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae214e929 code=0x7ffc0000 [ 58.826646][ T6116] EXT4-fs (loop2): 1 orphan inode deleted [ 58.837004][ T6116] ext4 filesystem being mounted at /207/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 58.850320][ T29] audit: type=1400 audit(1749918751.417:961): avc: denied { setcurrent } for pid=6126 comm="syz.0.1159" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 58.869863][ T29] audit: type=1401 audit(1749918751.417:962): op=security_bounded_transition seresult=denied oldcontext=root:sysadm_r:sysadm_t newcontext=system_u:object_r:hugetlbfs_t [ 58.878981][ T51] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 58.896519][ T51] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:3: Failed to release dquot type 1 [ 58.918413][ T29] audit: type=1326 audit(1749918751.517:963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6133 comm="syz.5.1152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25b194e929 code=0x7ffc0000 [ 58.944139][ T29] audit: type=1326 audit(1749918751.517:964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6133 comm="syz.5.1152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25b194e929 code=0x7ffc0000 [ 58.950475][ T6116] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 58.967759][ T29] audit: type=1326 audit(1749918751.517:965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6133 comm="syz.5.1152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f25b194e929 code=0x7ffc0000 [ 59.029472][ T6136] tipc: Enabling of bearer rejected, failed to enable media [ 59.037997][ T6138] ref_ctr_offset mismatch. inode: 0x441 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x1000000 [ 59.092124][ T31] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 59.157709][ T6154] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1164'. [ 59.166803][ T6154] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1164'. [ 59.177547][ T31] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 59.242251][ T31] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 59.282547][ T6144] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 59.291459][ T6144] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 59.302333][ T31] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 59.362617][ T2289] tipc: Subscription rejected, illegal request [ 59.405564][ T31] bridge_slave_1: left allmulticast mode [ 59.411509][ T31] bridge_slave_1: left promiscuous mode [ 59.417349][ T31] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.425186][ T31] bridge_slave_0: left allmulticast mode [ 59.431142][ T31] bridge_slave_0: left promiscuous mode [ 59.436983][ T31] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.530632][ T31] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 59.540635][ T31] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 59.550334][ T31] bond0 (unregistering): Released all slaves [ 59.561799][ T6155] chnl_net:caif_netlink_parms(): no params data found [ 59.561970][ T6176] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 59.577950][ T6176] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 59.603754][ T31] hsr_slave_0: left promiscuous mode [ 59.609346][ T31] hsr_slave_1: left promiscuous mode [ 59.614925][ T31] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 59.622404][ T31] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 59.630271][ T31] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 59.637814][ T31] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 59.648980][ T31] veth1_macvtap: left promiscuous mode [ 59.654599][ T31] veth0_macvtap: left promiscuous mode [ 59.660181][ T31] veth1_vlan: left promiscuous mode [ 59.665681][ T31] veth0_vlan: left promiscuous mode [ 59.728036][ T31] team0 (unregistering): Port device team_slave_1 removed [ 59.737841][ T31] team0 (unregistering): Port device team_slave_0 removed [ 59.775980][ T6155] bridge0: port 1(bridge_slave_0) entered blocking state [ 59.783514][ T6155] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.790785][ T6155] bridge_slave_0: entered allmulticast mode [ 59.797318][ T6155] bridge_slave_0: entered promiscuous mode [ 59.804800][ T6155] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.811963][ T6155] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.819225][ T6155] bridge_slave_1: entered allmulticast mode [ 59.825621][ T6155] bridge_slave_1: entered promiscuous mode [ 59.848012][ T6155] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 59.865058][ T6155] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 59.893317][ T6155] team0: Port device team_slave_0 added [ 59.899891][ T6155] team0: Port device team_slave_1 added [ 59.914861][ T6155] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 59.921992][ T6155] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 59.948220][ T6155] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 59.959721][ T6155] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 59.966749][ T6155] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 59.992801][ T6155] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 60.036298][ T6155] hsr_slave_0: entered promiscuous mode [ 60.042573][ T6155] hsr_slave_1: entered promiscuous mode [ 60.049752][ T6155] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 60.061297][ T6155] Cannot create hsr debugfs directory [ 60.062132][ T6200] loop0: detected capacity change from 0 to 1024 [ 60.083892][ T6200] EXT4-fs (loop0): shut down requested (1) [ 60.188577][ T6155] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 60.200691][ T6155] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 60.222472][ T6155] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 60.241400][ T6155] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 60.252056][ T6219] tipc: Enabling of bearer rejected, failed to enable media [ 60.267994][ T6222] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1185'. [ 60.282634][ T6222] netlink: 'syz.0.1185': attribute type 1 has an invalid length. [ 60.290508][ T6222] netlink: 'syz.0.1185': attribute type 2 has an invalid length. [ 60.317124][ T6155] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.324231][ T6155] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.331560][ T6155] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.338762][ T6155] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.363226][ T56] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.372371][ T56] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.374832][ T6215] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 60.390814][ T6215] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 60.412732][ T6155] 8021q: adding VLAN 0 to HW filter on device bond0 [ 60.425325][ T6155] 8021q: adding VLAN 0 to HW filter on device team0 [ 60.435248][ T996] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.442441][ T996] bridge0: port 1(bridge_slave_0) entered forwarding state [ 60.453472][ T51] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.460737][ T51] bridge0: port 2(bridge_slave_1) entered forwarding state [ 60.556061][ T6155] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 60.577412][ T6251] loop4: detected capacity change from 0 to 1024 [ 60.607958][ T6251] EXT4-fs (loop4): shut down requested (1) [ 60.743947][ T6155] veth0_vlan: entered promiscuous mode [ 60.752385][ T6282] SELinux: syz.0.1205 (6282) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 60.754443][ T6155] veth1_vlan: entered promiscuous mode [ 60.772492][ T6286] futex_wake_op: syz.5.1207 tries to shift op by -1; fix this program [ 60.801492][ T6155] veth0_macvtap: entered promiscuous mode [ 60.808947][ T6155] veth1_macvtap: entered promiscuous mode [ 60.820422][ T6155] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 60.835191][ T6155] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 60.846977][ T6155] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.855844][ T6155] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.864637][ T6155] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.873451][ T6155] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 60.968468][ T6305] loop2: detected capacity change from 0 to 2048 [ 61.029406][ T6305] loop2: p3 p4 < > [ 61.047077][ T6322] syz.0.1221: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0 [ 61.061796][ T6322] CPU: 0 UID: 0 PID: 6322 Comm: syz.0.1221 Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(voluntary) [ 61.061833][ T6322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 61.061886][ T6322] Call Trace: [ 61.061894][ T6322] [ 61.061903][ T6322] __dump_stack+0x1d/0x30 [ 61.061928][ T6322] dump_stack_lvl+0xe8/0x140 [ 61.061947][ T6322] dump_stack+0x15/0x1b [ 61.061967][ T6322] warn_alloc+0x12b/0x1a0 [ 61.062128][ T6322] ? audit_log_end+0x1d7/0x1f0 [ 61.062155][ T6322] ? audit_log_end+0x1d7/0x1f0 [ 61.062177][ T6322] __vmalloc_node_range_noprof+0x9c/0xe00 [ 61.062228][ T6322] ? __pfx_avc_audit_post_callback+0x10/0x10 [ 61.062309][ T6322] ? __rcu_read_unlock+0x4f/0x70 [ 61.062415][ T6322] ? __perf_event_task_sched_in+0xa5b/0xac0 [ 61.062519][ T6322] ? perf_cgroup_switch+0x132/0x460 [ 61.062569][ T6322] ? update_load_avg+0x1da/0x820 [ 61.062595][ T6322] ? __list_add_valid_or_report+0x38/0xe0 [ 61.062629][ T6322] ? should_fail_ex+0x30/0x280 [ 61.062669][ T6322] ? xskq_create+0x36/0xe0 [ 61.062700][ T6322] vmalloc_user_noprof+0x7d/0xb0 [ 61.062765][ T6322] ? xskq_create+0x80/0xe0 [ 61.062800][ T6322] xskq_create+0x80/0xe0 [ 61.062828][ T6322] xsk_init_queue+0x95/0xf0 [ 61.062859][ T6322] xsk_setsockopt+0x35c/0x510 [ 61.062887][ T6322] ? __pfx_xsk_setsockopt+0x10/0x10 [ 61.062914][ T6322] __sys_setsockopt+0x181/0x200 [ 61.063040][ T6322] __x64_sys_setsockopt+0x64/0x80 [ 61.063083][ T6322] x64_sys_call+0x2bd5/0x2fb0 [ 61.063110][ T6322] do_syscall_64+0xd2/0x200 [ 61.063223][ T6322] ? arch_exit_to_user_mode_prepare+0x27/0x60 [ 61.063319][ T6322] ? clear_bhb_loop+0x40/0x90 [ 61.063345][ T6322] ? clear_bhb_loop+0x40/0x90 [ 61.063430][ T6322] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 61.063451][ T6322] RIP: 0033:0x7fbae214e929 [ 61.063589][ T6322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 61.063611][ T6322] RSP: 002b:00007fbae07b7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 61.063634][ T6322] RAX: ffffffffffffffda RBX: 00007fbae2375fa0 RCX: 00007fbae214e929 [ 61.063650][ T6322] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000003 [ 61.063665][ T6322] RBP: 00007fbae21d0b39 R08: 0000000000000004 R09: 0000000000000000 [ 61.063748][ T6322] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000 [ 61.063760][ T6322] R13: 0000000000000000 R14: 00007fbae2375fa0 R15: 00007ffd00593888 [ 61.063781][ T6322] [ 61.063794][ T6322] Mem-Info: [ 61.124550][ T6328] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1225'. [ 61.126202][ T6322] active_anon:3969 inactive_anon:1 isolated_anon:0 [ 61.126202][ T6322] active_file:5726 inactive_file:11171 isolated_file:0 [ 61.126202][ T6322] unevictable:0 dirty:279 writeback:0 [ 61.126202][ T6322] slab_reclaimable:3020 slab_unreclaimable:30471 [ 61.126202][ T6322] mapped:28819 shmem:344 pagetables:1042 [ 61.126202][ T6322] sec_pagetables:0 bounce:0 [ 61.126202][ T6322] kernel_misc_reclaimable:0 [ 61.126202][ T6322] free:1880069 free_pcp:10090 free_cma:0 [ 61.371372][ T6322] Node 0 active_anon:15876kB inactive_anon:4kB active_file:22904kB inactive_file:44684kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:115276kB dirty:1116kB writeback:0kB shmem:1376kB writeback_tmp:0kB kernel_stack:3296kB pagetables:4516kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 61.400346][ T6322] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 61.415433][ T6335] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 61.428931][ T6322] lowmem_reserve[]: 0 2882 7860 7860 [ 61.428965][ T6322] Node 0 DMA32 free:2947836kB boost:0kB min:4132kB low:7060kB high:9988kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2951364kB mlocked:0kB bounce:0kB free_pcp:3528kB local_pcp:3528kB free_cma:0kB [ 61.429026][ T6322] lowmem_reserve[]: 0 [ 61.438544][ T6335] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 61.442736][ T6322] 0 4978 4978 [ 61.488256][ T6322] Node 0 Normal free:4557080kB boost:0kB min:7188kB low:12284kB high:17380kB reserved_highatomic:0KB free_highatomic:0KB active_anon:15876kB inactive_anon:4kB active_file:22904kB inactive_file:44684kB unevictable:0kB writepending:1116kB present:5242880kB managed:5098232kB mlocked:0kB bounce:0kB free_pcp:36420kB local_pcp:15084kB free_cma:0kB [ 61.520415][ T6322] lowmem_reserve[]: 0 0 0 0 [ 61.525014][ T6322] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 61.537753][ T6322] Node 0 DMA32: 3*4kB (M) 4*8kB (M) 5*16kB (M) 2*32kB (M) 5*64kB (M) 4*128kB (M) 3*256kB (M) 4*512kB (M) 3*1024kB (M) 2*2048kB (M) 717*4096kB (M) = 2947836kB [ 61.554047][ T6322] Node 0 Normal: 718*4kB (ME) 126*8kB (UM) 65*16kB (UME) 41*32kB (UM) 43*64kB (UM) 34*128kB (UM) 21*256kB (UME) 6*512kB (UM) 5*1024kB (ME) 14*2048kB (UME) 1099*4096kB (UM) = 4557080kB [ 61.572650][ T6322] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 61.582050][ T6322] 17224 total pagecache pages [ 61.586735][ T6322] 4 pages in swap cache [ 61.591006][ T6322] Free swap = 124980kB [ 61.595197][ T6322] Total swap = 124996kB [ 61.599403][ T6322] 2097051 pages RAM [ 61.603201][ T6322] 0 pages HighMem/MovableOnly [ 61.607942][ T6322] 80812 pages reserved [ 61.713113][ T6353] netlink: 'syz.0.1236': attribute type 2 has an invalid length. [ 61.720910][ T6353] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1236'. [ 61.739719][ T6355] loop2: detected capacity change from 0 to 512 [ 61.746714][ T6355] journal_path: Lookup failure for './file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa' [ 61.766273][ T6355] EXT4-fs: error: could not find journal device path [ 61.782343][ T6357] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 61.824011][ T6361] futex_wake_op: syz.0.1240 tries to shift op by -1; fix this program [ 61.832794][ T6363] SELinux: syz.2.1241 (6363) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 62.591266][ T6388] loop4: detected capacity change from 0 to 1024 [ 62.610297][ T6388] ext4 filesystem being mounted at /230/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 62.648062][ T6395] futex_wake_op: syz.4.1252 tries to shift op by -1; fix this program [ 62.751844][ T6410] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1260'. [ 62.837372][ T6426] netlink: 300 bytes leftover after parsing attributes in process `syz.2.1265'. [ 63.007415][ T6454] vlan2: entered promiscuous mode [ 63.012593][ T6454] bridge0: entered promiscuous mode [ 63.017970][ T6454] vlan2: entered allmulticast mode [ 63.023203][ T6454] bridge0: entered allmulticast mode [ 63.125244][ T6469] program syz.0.1289 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 63.144722][ T6470] loop5: detected capacity change from 0 to 512 [ 63.262376][ T6470] ext4 filesystem being mounted at /34/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 63.272966][ T6473] SELinux: failed to load policy [ 63.297363][ T6470] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1288'. [ 63.505864][ T6517] loop4: detected capacity change from 0 to 512 [ 63.524705][ T6517] ext4 filesystem being mounted at /248/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 63.543493][ T6517] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1307'. [ 63.554831][ T6525] loop6: detected capacity change from 0 to 512 [ 63.563853][ T6525] EXT4-fs: Ignoring removed mblk_io_submit option [ 63.568076][ T6524] loop2: detected capacity change from 0 to 512 [ 63.571128][ T6525] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem [ 63.578003][ T6524] EXT4-fs: Ignoring removed mblk_io_submit option [ 63.591588][ T6525] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a04ec11c, mo2=0002] [ 63.591860][ T6524] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 63.599891][ T6525] System zones: 1-12 [ 63.611372][ T6524] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 63.613836][ T6525] EXT4-fs error (device loop6): ext4_iget_extra_inode:5035: inode #15: comm syz.6.1312: corrupted in-inode xattr: e_value size too large [ 63.621667][ T6524] EXT4-fs (loop2): orphan cleanup on readonly fs [ 63.636271][ T6525] EXT4-fs error (device loop6): ext4_orphan_get:1398: comm syz.6.1312: couldn't read orphan inode 15 (err -117) [ 63.656031][ T6524] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.1310: Invalid block bitmap block 0 in block_group 0 [ 63.686802][ T29] kauditd_printk_skb: 122 callbacks suppressed [ 63.686817][ T29] audit: type=1400 audit(1749918756.287:1088): avc: denied { read write } for pid=6530 comm="syz.4.1314" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 63.687300][ T6524] EXT4-fs (loop2): Remounting filesystem read-only [ 63.693090][ T29] audit: type=1400 audit(1749918756.287:1089): avc: denied { open } for pid=6530 comm="syz.4.1314" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 63.722048][ T6524] Quota error (device loop2): write_blk: dquota write failed [ 63.730389][ T29] audit: type=1400 audit(1749918756.327:1090): avc: denied { ioctl } for pid=6530 comm="syz.4.1314" path="/dev/ppp" dev="devtmpfs" ino=140 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 63.747377][ T6524] Quota error (device loop2): write_blk: dquota write failed [ 63.786528][ T6524] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota [ 63.797021][ T6524] EXT4-fs (loop2): 1 orphan inode deleted [ 63.831173][ T29] audit: type=1400 audit(1749918756.437:1091): avc: denied { create } for pid=6536 comm="syz.2.1317" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 63.868047][ T29] audit: type=1400 audit(1749918756.437:1092): avc: denied { ioctl } for pid=6536 comm="syz.2.1317" path="socket:[15503]" dev="sockfs" ino=15503 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 63.893325][ T29] audit: type=1400 audit(1749918756.467:1093): avc: denied { setopt } for pid=6538 comm="syz.2.1320" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 63.913060][ T29] audit: type=1400 audit(1749918756.467:1094): avc: denied { create } for pid=6538 comm="syz.2.1320" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 63.921652][ T6542] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1321'. [ 63.956410][ T6542] bond0: entered promiscuous mode [ 63.961709][ T6542] bond_slave_0: entered promiscuous mode [ 63.967568][ T6542] bond_slave_1: entered promiscuous mode [ 63.977976][ T6542] bond0: left promiscuous mode [ 63.982966][ T6542] bond_slave_0: left promiscuous mode [ 63.988524][ T6542] bond_slave_1: left promiscuous mode [ 64.099641][ T6551] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1335'. [ 64.118393][ T6554] loop4: detected capacity change from 0 to 256 [ 64.121543][ T6551] bond0: entered promiscuous mode [ 64.129775][ T6551] bond_slave_0: entered promiscuous mode [ 64.135484][ T6551] bond_slave_1: entered promiscuous mode [ 64.143210][ T6551] bond0: left promiscuous mode [ 64.148010][ T6551] bond_slave_0: left promiscuous mode [ 64.153545][ T6551] bond_slave_1: left promiscuous mode [ 64.577219][ T6589] loop0: detected capacity change from 0 to 512 [ 64.584463][ T6589] EXT4-fs: Ignoring removed nomblk_io_submit option [ 64.592466][ T6589] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 64.608332][ T6589] EXT4-fs (loop0): 1 truncate cleaned up [ 64.736569][ T6609] loop2: detected capacity change from 0 to 128 [ 64.752117][ T6613] loop0: detected capacity change from 0 to 512 [ 64.761450][ T6613] EXT4-fs: Ignoring removed mblk_io_submit option [ 64.768203][ T6613] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 64.786791][ T6613] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a04ec11c, mo2=0002] [ 64.796000][ T6613] System zones: 1-12 [ 64.801696][ T6613] EXT4-fs error (device loop0): ext4_iget_extra_inode:5035: inode #15: comm syz.0.1354: corrupted in-inode xattr: e_value size too large [ 64.817056][ T6613] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.1354: couldn't read orphan inode 15 (err -117) [ 64.971449][ T6648] loop2: detected capacity change from 0 to 512 [ 64.978235][ T6648] EXT4-fs: Ignoring removed mblk_io_submit option [ 64.985232][ T6648] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 64.994449][ T6648] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a04ec11c, mo2=0002] [ 65.002840][ T6648] System zones: 1-12 [ 65.007058][ T6648] EXT4-fs error (device loop2): ext4_iget_extra_inode:5035: inode #15: comm syz.2.1369: corrupted in-inode xattr: e_value size too large [ 65.021416][ T6648] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.1369: couldn't read orphan inode 15 (err -117) [ 65.097443][ T6659] random: crng reseeded on system resumption [ 65.236835][ T6687] loop6: detected capacity change from 0 to 512 [ 65.243902][ T6687] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 65.255381][ T6687] EXT4-fs error (device loop6): ext4_iget_extra_inode:5035: inode #17: comm syz.6.1383: corrupted in-inode xattr: invalid ea_ino [ 65.269034][ T6687] EXT4-fs error (device loop6): ext4_orphan_get:1398: comm syz.6.1383: couldn't read orphan inode 17 (err -117) [ 65.288795][ T6693] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1387'. [ 66.394734][ T6763] loop2: detected capacity change from 0 to 512 [ 66.404007][ T6763] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 66.414865][ T6763] EXT4-fs (loop2): invalid journal inode [ 66.422416][ T6763] EXT4-fs (loop2): can't get journal size [ 66.429726][ T6763] EXT4-fs (loop2): 1 truncate cleaned up [ 66.679464][ T6814] Zero length message leads to an empty skb [ 66.752368][ T6829] hub 5-0:1.0: USB hub found [ 66.757248][ T6829] hub 5-0:1.0: 8 ports detected [ 66.825178][ T6841] netlink: 'syz.2.1463': attribute type 1 has an invalid length. [ 66.838074][ T6843] loop0: detected capacity change from 0 to 512 [ 66.847196][ T6843] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 66.864880][ T6843] EXT4-fs (loop0): invalid journal inode [ 66.873054][ T6843] EXT4-fs (loop0): can't get journal size [ 66.889308][ T6843] EXT4-fs (loop0): 1 truncate cleaned up [ 66.941026][ T6859] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1461'. [ 66.950157][ T6859] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1461'. [ 66.964397][ T6859] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1461'. [ 66.989262][ T6865] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1465'. [ 66.996799][ T6859] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1461'. [ 67.007368][ T6859] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1461'. [ 67.026301][ T6859] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1461'. [ 67.078269][ T6859] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1461'. [ 67.087353][ T6859] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1461'. [ 67.097531][ T6859] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1461'. [ 67.138964][ T6880] syzkaller0: tun_chr_ioctl cmd 2147767520 [ 67.185869][ T6893] loop5: detected capacity change from 0 to 512 [ 67.212036][ T6893] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 67.228188][ T6893] EXT4-fs (loop5): invalid journal inode [ 67.236926][ T6893] EXT4-fs (loop5): can't get journal size [ 67.244545][ T6893] EXT4-fs (loop5): 1 truncate cleaned up [ 67.384392][ T6931] loop2: detected capacity change from 0 to 512 [ 67.423453][ T6931] EXT4-fs (loop2): 1 orphan inode deleted [ 67.434644][ T6941] syzkaller0: tun_chr_ioctl cmd 2147767520 [ 67.438229][ T6931] ext4 filesystem being mounted at /298/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 67.440892][ T12] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:0: Failed to release dquot type 1 [ 67.486933][ T6945] hub 5-0:1.0: USB hub found [ 67.492744][ T6945] hub 5-0:1.0: 8 ports detected [ 67.627390][ T6976] hub 5-0:1.0: USB hub found [ 67.637072][ T6976] hub 5-0:1.0: 8 ports detected [ 67.701576][ T6986] vhci_hcd: invalid port number 96 [ 67.706891][ T6986] vhci_hcd: default hub control req: 0000 vfffc i0060 l0 [ 67.763378][ T6994] loop4: detected capacity change from 0 to 128 [ 67.926789][ T7018] loop4: detected capacity change from 0 to 512 [ 67.934944][ T7018] EXT4-fs (loop4): orphan cleanup on readonly fs [ 67.941967][ T7018] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1525: bg 0: block 248: padding at end of block bitmap is not set [ 67.957907][ T7018] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.1525: Failed to acquire dquot type 1 [ 67.971253][ T7018] EXT4-fs (loop4): 1 truncate cleaned up [ 67.998022][ T7023] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=7023 comm=syz.4.1527 [ 68.735610][ T7057] loop2: detected capacity change from 0 to 512 [ 68.743071][ T29] kauditd_printk_skb: 260 callbacks suppressed [ 68.743086][ T29] audit: type=1400 audit(1749918761.347:1352): avc: denied { mounton } for pid=7056 comm="syz.2.1543" path="/306/bus" dev="tmpfs" ino=1591 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 68.761114][ T7059] loop6: detected capacity change from 0 to 128 [ 68.782488][ T29] audit: type=1400 audit(1749918761.387:1353): avc: denied { create } for pid=7054 comm="syz.5.1542" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 68.802451][ T29] audit: type=1400 audit(1749918761.387:1354): avc: denied { getopt } for pid=7054 comm="syz.5.1542" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 68.822128][ T29] audit: type=1400 audit(1749918761.387:1355): avc: denied { mount } for pid=7058 comm="syz.6.1544" name="/" dev="loop6" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 68.826129][ T7057] EXT4-fs mount: 63 callbacks suppressed [ 68.826145][ T7057] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 68.863710][ T29] audit: type=1400 audit(1749918761.467:1356): avc: denied { unmount } for pid=6155 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 68.883979][ T7057] ext4 filesystem being mounted at /306/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 68.894321][ T29] audit: type=1400 audit(1749918761.487:1357): avc: denied { mount } for pid=7056 comm="syz.2.1543" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 68.922180][ T29] audit: type=1400 audit(1749918761.527:1358): avc: denied { add_name } for pid=7056 comm="syz.2.1543" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 68.944752][ T7057] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #2: comm syz.2.1543: corrupted inode contents [ 68.956869][ T7057] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #2: comm syz.2.1543: mark_inode_dirty error [ 68.965836][ T29] audit: type=1400 audit(1749918761.527:1359): avc: denied { create } for pid=7056 comm="syz.2.1543" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 68.970652][ T7057] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #2: comm syz.2.1543: corrupted inode contents [ 68.988382][ T29] audit: type=1400 audit(1749918761.547:1360): avc: denied { mount } for pid=7063 comm="syz.5.1547" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 69.001486][ T7057] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #2: comm syz.2.1543: mark_inode_dirty error [ 69.022154][ T29] audit: type=1400 audit(1749918761.567:1361): avc: denied { unmount } for pid=5934 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 69.110253][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.240929][ T7099] loop2: detected capacity change from 0 to 1024 [ 69.248125][ T7099] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 69.261094][ T7099] EXT4-fs error (device loop2): ext4_map_blocks:816: inode #3: block 1: comm syz.2.1558: lblock 1 mapped to illegal pblock 1 (length 1) [ 69.275247][ T7099] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.1558: Failed to acquire dquot type 0 [ 69.287859][ T7099] EXT4-fs error (device loop2): ext4_free_blocks:6587: comm syz.2.1558: Freeing blocks not in datazone - block = 0, count = 4096 [ 69.304451][ T7099] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.1558: Invalid inode bitmap blk 0 in block_group 0 [ 69.317368][ T7099] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem [ 69.327336][ T2289] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:7: lblock 1 mapped to illegal pblock 1 (length 1) [ 69.327478][ T7099] EXT4-fs (loop2): 1 orphan inode deleted [ 69.354319][ T7099] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 69.366870][ T2289] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:7: Failed to release dquot type 0 [ 69.413725][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.470115][ T7121] loop6: detected capacity change from 0 to 512 [ 69.482396][ T7121] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 69.512612][ T7121] ext4 filesystem being mounted at /51/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 69.525643][ T7128] netlink: 'syz.2.1569': attribute type 83 has an invalid length. [ 69.571924][ T6155] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.721480][ T7151] netlink: 'syz.6.1580': attribute type 83 has an invalid length. [ 69.740652][ T7150] loop5: detected capacity change from 0 to 1024 [ 69.762113][ T7150] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 69.789423][ T7161] tun0: tun_chr_ioctl cmd 1074025678 [ 69.794876][ T7161] tun0: group set to 0 [ 69.802515][ T7150] EXT4-fs error (device loop5): ext4_map_blocks:816: inode #3: block 1: comm syz.5.1577: lblock 1 mapped to illegal pblock 1 (length 1) [ 69.816845][ T7150] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.1577: Failed to acquire dquot type 0 [ 69.829964][ T7150] EXT4-fs error (device loop5): ext4_free_blocks:6587: comm syz.5.1577: Freeing blocks not in datazone - block = 0, count = 4096 [ 69.851384][ T7150] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.1577: Invalid inode bitmap blk 0 in block_group 0 [ 69.882431][ T12] EXT4-fs error (device loop5): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1) [ 69.888644][ T7150] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem [ 69.910642][ T7150] EXT4-fs (loop5): 1 orphan inode deleted [ 69.916493][ T12] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:0: Failed to release dquot type 0 [ 69.917181][ T7150] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 70.029348][ T5934] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.082694][ T7200] loop2: detected capacity change from 0 to 512 [ 70.129887][ T7200] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 70.159594][ T7200] ext4 filesystem being mounted at /320/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 70.198119][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.287058][ C0] hrtimer: interrupt took 31801 ns [ 70.394645][ T7234] loop2: detected capacity change from 0 to 1024 [ 70.411251][ T7234] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 70.428078][ T7234] ext4 filesystem being mounted at /324/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 70.449830][ T7234] EXT4-fs error (device loop2): ext4_map_blocks:816: inode #15: block 1: comm syz.2.1614: lblock 1 mapped to illegal pblock 1 (length 15) [ 70.465326][ T7234] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117 [ 70.477824][ T7234] EXT4-fs (loop2): This should not happen!! Data will be lost [ 70.477824][ T7234] [ 70.523891][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.894822][ T7279] loop0: detected capacity change from 0 to 1024 [ 70.910774][ T7279] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 70.923082][ T7279] ext4 filesystem being mounted at /343/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 70.938327][ T7279] EXT4-fs error (device loop0): ext4_map_blocks:816: inode #15: block 1: comm syz.0.1631: lblock 1 mapped to illegal pblock 1 (length 15) [ 70.954153][ T7279] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 15 with error 117 [ 70.966699][ T7279] EXT4-fs (loop0): This should not happen!! Data will be lost [ 70.966699][ T7279] [ 71.008223][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.247982][ T7329] SELinux: failed to load policy [ 71.422094][ T7348] loop5: detected capacity change from 0 to 512 [ 71.453569][ T7348] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 71.468753][ T7348] ext4 filesystem being mounted at /92/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 71.493744][ T7348] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm syz.5.1662: corrupted inode contents [ 71.518951][ T7348] EXT4-fs error (device loop5): ext4_dirty_inode:6459: inode #2: comm syz.5.1662: mark_inode_dirty error [ 71.523527][ T7363] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 71.538352][ T7363] batadv_slave_0: entered promiscuous mode [ 71.542991][ T7348] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm syz.5.1662: corrupted inode contents [ 71.546807][ T7363] netlink: 'syz.6.1668': attribute type 2 has an invalid length. [ 71.565080][ T7348] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #2: comm syz.5.1662: mark_inode_dirty error [ 71.613097][ T5934] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.706555][ T7382] tun0: tun_chr_ioctl cmd 1074025678 [ 71.711960][ T7382] tun0: group set to 0 [ 71.801882][ T7398] serio: Serial port ptm0 [ 72.183828][ T7462] loop6: detected capacity change from 0 to 128 [ 72.232514][ T7462] syz.6.1715: attempt to access beyond end of device [ 72.232514][ T7462] loop6: rw=0, sector=121, nr_sectors = 120 limit=128 [ 72.265132][ T51] kworker/u8:3: attempt to access beyond end of device [ 72.265132][ T51] loop6: rw=1, sector=241, nr_sectors = 800 limit=128 [ 72.452181][ T7465] loop2: detected capacity change from 0 to 32768 [ 72.480825][ T7491] SELinux: failed to load policy [ 72.491562][ T7465] loop2: p1 p2 p3 < > [ 72.496005][ T7465] loop2: p1 size 242222080 extends beyond EOD, truncated [ 72.505266][ T7465] loop2: p2 start 4294967295 is beyond EOD, truncated [ 72.705955][ T7533] __nla_validate_parse: 14 callbacks suppressed [ 72.705969][ T7533] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1745'. [ 72.747163][ T7539] loop0: detected capacity change from 0 to 512 [ 72.755380][ T7539] EXT4-fs (loop0): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 72.781462][ T7539] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 72.809697][ T7546] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1750'. [ 72.846506][ T3311] EXT4-fs (loop0): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 72.867418][ T7550] syz.6.1751 (7550) used greatest stack depth: 9128 bytes left [ 72.990525][ T7578] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1765'. [ 72.998996][ T7580] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1766'. [ 73.008705][ T7580] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1766'. [ 73.309367][ C1] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0) [ 73.567435][ T7596] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1772'. [ 73.604534][ T7600] loop0: detected capacity change from 0 to 128 [ 73.664240][ T7600] syz.0.1774: attempt to access beyond end of device [ 73.664240][ T7600] loop0: rw=0, sector=121, nr_sectors = 120 limit=128 [ 73.717298][ T996] kworker/u8:5: attempt to access beyond end of device [ 73.717298][ T996] loop0: rw=1, sector=241, nr_sectors = 800 limit=128 [ 73.806606][ T7622] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1786'. [ 73.852159][ T29] kauditd_printk_skb: 182 callbacks suppressed [ 73.852176][ T29] audit: type=1400 audit(1749918766.457:1537): avc: denied { read } for pid=7629 comm="syz.5.1789" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 73.882638][ T29] audit: type=1400 audit(1749918766.457:1538): avc: denied { open } for pid=7629 comm="syz.5.1789" path="/dev/loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 73.928348][ T29] audit: type=1400 audit(1749918766.527:1539): avc: denied { connect } for pid=7636 comm="syz.4.1792" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 73.970801][ T7639] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1793'. [ 73.980091][ T7620] loop0: detected capacity change from 0 to 32768 [ 74.021244][ T29] audit: type=1400 audit(1749918766.627:1540): avc: denied { read } for pid=7645 comm="syz.6.1798" name="usbmon0" dev="devtmpfs" ino=141 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 74.044755][ T29] audit: type=1400 audit(1749918766.627:1541): avc: denied { open } for pid=7645 comm="syz.6.1798" path="/dev/usbmon0" dev="devtmpfs" ino=141 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 74.070889][ T7620] loop0: p1 p2 p3 < > [ 74.073212][ T7641] SELinux: failed to load policy [ 74.080040][ T7620] loop0: p1 size 242222080 extends beyond EOD, truncated [ 74.087943][ T7620] loop0: p2 start 4294967295 is beyond EOD, truncated [ 74.111969][ T29] audit: type=1400 audit(1749918766.627:1542): avc: denied { ioctl } for pid=7645 comm="syz.6.1798" path="/dev/usbmon0" dev="devtmpfs" ino=141 ioctlcmd=0x9207 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 74.175660][ T7658] netlink: 33912 bytes leftover after parsing attributes in process `syz.2.1802'. [ 74.207243][ T29] audit: type=1326 audit(1749918766.747:1543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7652 comm="syz.4.1801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94d7a4e929 code=0x7ffc0000 [ 74.230776][ T29] audit: type=1326 audit(1749918766.747:1544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7652 comm="syz.4.1801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94d7a4e929 code=0x7ffc0000 [ 74.254261][ T29] audit: type=1326 audit(1749918766.757:1545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7652 comm="syz.4.1801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94d7a4e929 code=0x7ffc0000 [ 74.277737][ T29] audit: type=1326 audit(1749918766.757:1546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7652 comm="syz.4.1801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94d7a4e929 code=0x7ffc0000 [ 74.355473][ T7674] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1810'. [ 74.437766][ T7683] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 74.450321][ T7686] SELinux: failed to load policy [ 74.469567][ T7683] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0' [ 74.705461][ T7723] SELinux: policydb magic number 0x0 does not match expected magic number 0xf97cff8c [ 74.730417][ T7723] SELinux: failed to load policy [ 74.810734][ T7749] loop6: detected capacity change from 0 to 512 [ 74.826468][ T7749] EXT4-fs (loop6): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 74.849347][ T7749] EXT4-fs warning (device loop6): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 74.879688][ T6155] EXT4-fs (loop6): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 74.939919][ T7765] serio: Serial port ptm0 [ 75.146237][ T7799] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0' [ 75.164036][ T7797] syz.6.1867 (7797) used greatest stack depth: 8592 bytes left [ 75.636406][ T7822] sctp: [Deprecated]: syz.4.1877 (pid 7822) Use of struct sctp_assoc_value in delayed_ack socket option. [ 75.636406][ T7822] Use struct sctp_sack_info instead [ 75.728650][ T7838] loop4: detected capacity change from 0 to 256 [ 75.743618][ T7838] FAT-fs (loop4): Directory bread(block 64) failed [ 75.750397][ T7838] FAT-fs (loop4): Directory bread(block 65) failed [ 75.757041][ T7838] FAT-fs (loop4): Directory bread(block 66) failed [ 75.771430][ T7838] FAT-fs (loop4): Directory bread(block 67) failed [ 75.783888][ T7838] FAT-fs (loop4): Directory bread(block 68) failed [ 75.791892][ T7838] FAT-fs (loop4): Directory bread(block 69) failed [ 75.798494][ T7838] FAT-fs (loop4): Directory bread(block 70) failed [ 75.807146][ T7838] FAT-fs (loop4): Directory bread(block 71) failed [ 75.814075][ T7838] FAT-fs (loop4): Directory bread(block 72) failed [ 75.820908][ T7844] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw [ 75.836323][ T7838] FAT-fs (loop4): Directory bread(block 73) failed [ 75.898455][ T7857] loop2: detected capacity change from 0 to 4096 [ 75.908297][ T7857] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 75.987854][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.017862][ T7878] loop2: detected capacity change from 0 to 512 [ 76.031770][ T7878] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 76.044551][ T7878] ext4 filesystem being mounted at /361/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 76.090092][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.267364][ T7925] program syz.4.1924 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 76.312939][ T7932] loop4: detected capacity change from 0 to 512 [ 76.330384][ T7932] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 76.349346][ T7932] ext4 filesystem being mounted at /373/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 76.366951][ T7932] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.392207][ T7944] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw [ 76.521224][ T7970] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7970 comm=syz.0.1945 [ 76.533859][ T7972] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw [ 76.577288][ T7976] loop4: detected capacity change from 0 to 512 [ 76.583739][ T7974] loop0: detected capacity change from 0 to 4096 [ 76.584156][ T7976] journal_path: Non-blockdev passed as './bus' [ 76.596526][ T7976] EXT4-fs: error: could not find journal device path [ 76.601424][ T7974] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 76.653974][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.706313][ T7992] loop4: detected capacity change from 0 to 1024 [ 76.714075][ T7992] EXT4-fs: Ignoring removed nobh option [ 76.719758][ T7992] EXT4-fs: Ignoring removed bh option [ 76.731599][ T7992] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 76.781584][ T7992] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.1955: Allocating blocks 497-513 which overlap fs metadata [ 76.819578][ T8001] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw [ 76.851323][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.873464][ T8009] tap0: tun_chr_ioctl cmd 1074025677 [ 76.879169][ T8009] tap0: linktype set to 823 [ 76.943583][ T8020] loop2: detected capacity change from 0 to 512 [ 76.950961][ T8020] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 76.960979][ T8020] EXT4-fs (loop2): invalid journal inode [ 76.966662][ T8020] EXT4-fs (loop2): can't get journal size [ 76.973313][ T8020] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e056c118, mo2=0002] [ 76.983217][ T8020] System zones: 1-12, 13-13 [ 76.988196][ T8020] EXT4-fs (loop2): 1 truncate cleaned up [ 76.994924][ T8020] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 77.032522][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.039943][ T8029] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 77.039943][ T8029] The task syz.6.1967 (8029) triggered the difference, watch for misbehavior. [ 77.826836][ T8063] __nla_validate_parse: 4 callbacks suppressed [ 77.826900][ T8063] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1985'. [ 77.892692][ T8070] netlink: 340 bytes leftover after parsing attributes in process `syz.0.1988'. [ 78.330063][ T8113] loop4: detected capacity change from 0 to 2048 [ 78.369451][ T8113] loop4: p3 p4 < > [ 78.392253][ T8126] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22 [ 78.436013][ T8132] SELinux: Context system_u:object_r:hwdata_t:s0 is not valid (left unmapped). [ 78.540507][ T8147] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT [ 78.593064][ T8150] loop6: detected capacity change from 0 to 2048 [ 78.639543][ T8150] loop6: p3 p4 < > [ 78.650542][ T8158] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22 [ 78.692070][ T8163] team0: entered promiscuous mode [ 78.709980][ T8163] C: entered promiscuous mode [ 78.715044][ T8163] team_slave_1: entered promiscuous mode [ 78.735732][ T8162] team0: left promiscuous mode [ 78.740926][ T8162] C: left promiscuous mode [ 78.745608][ T8162] team_slave_1: left promiscuous mode [ 78.871110][ T8192] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22 [ 78.948374][ T8201] loop6: detected capacity change from 0 to 1024 [ 78.957509][ T8201] EXT4-fs: Ignoring removed nobh option [ 78.963216][ T8201] EXT4-fs: Ignoring removed bh option [ 78.992093][ T8201] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 79.009639][ T8216] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2050'. [ 79.020968][ T29] kauditd_printk_skb: 138 callbacks suppressed [ 79.020984][ T29] audit: type=1400 audit(1749918771.627:1684): avc: denied { write } for pid=8215 comm="syz.5.2049" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 79.051162][ T29] audit: type=1400 audit(1749918771.627:1685): avc: denied { ioctl } for pid=8215 comm="syz.5.2049" path="/dev/sg0" dev="devtmpfs" ino=135 ioctlcmd=0x5393 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 79.089217][ T8201] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4113: comm syz.6.2045: Allocating blocks 497-513 which overlap fs metadata [ 79.194974][ T6155] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 79.202923][ T8240] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.211425][ T8240] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.293428][ T8252] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2062'. [ 79.302728][ T29] audit: type=1326 audit(1749918771.897:1686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8253 comm="syz.5.2063" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25b194e929 code=0x7ffc0000 [ 79.326239][ T29] audit: type=1326 audit(1749918771.897:1687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8253 comm="syz.5.2063" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25b194e929 code=0x7ffc0000 [ 79.349782][ T29] audit: type=1326 audit(1749918771.897:1688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8253 comm="syz.5.2063" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f25b194e929 code=0x7ffc0000 [ 79.373446][ T29] audit: type=1326 audit(1749918771.897:1689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8253 comm="syz.5.2063" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25b194e929 code=0x7ffc0000 [ 79.396996][ T29] audit: type=1326 audit(1749918771.897:1690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8253 comm="syz.5.2063" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25b194e929 code=0x7ffc0000 [ 79.420759][ T29] audit: type=1326 audit(1749918771.897:1691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8253 comm="syz.5.2063" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f25b194e929 code=0x7ffc0000 [ 79.474637][ T8256] loop6: detected capacity change from 0 to 4096 [ 79.483130][ T8256] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 79.498102][ T29] audit: type=1326 audit(1749918771.977:1692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8253 comm="syz.5.2063" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25b194e929 code=0x7ffc0000 [ 79.521549][ T29] audit: type=1326 audit(1749918771.977:1693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8253 comm="syz.5.2063" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25b194e929 code=0x7ffc0000 [ 79.591343][ T6155] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 79.680068][ T8268] loop5: detected capacity change from 0 to 1024 [ 79.703490][ T8268] EXT4-fs: Ignoring removed nobh option [ 79.709424][ T8268] EXT4-fs: Ignoring removed bh option [ 79.721250][ T8275] loop2: detected capacity change from 0 to 128 [ 79.727951][ T8275] EXT4-fs: Ignoring removed nobh option [ 79.740402][ T8275] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 79.753391][ T8268] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 79.766866][ T8275] ext4 filesystem being mounted at /395/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 79.785568][ T8275] EXT4-fs (loop2): shut down requested (1) [ 79.792354][ T8281] netlink: 7 bytes leftover after parsing attributes in process `syz.6.2073'. [ 79.810922][ T8281] netlink: 7 bytes leftover after parsing attributes in process `syz.6.2073'. [ 79.820463][ T3309] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 79.842533][ T8268] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4113: comm syz.5.2068: Allocating blocks 497-513 which overlap fs metadata [ 79.944823][ T5934] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 79.992540][ T8303] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 80.001354][ T8305] loop5: detected capacity change from 0 to 1024 [ 80.007437][ T8303] batadv_slave_1: entered promiscuous mode [ 80.008188][ T8305] EXT4-fs: Ignoring removed nomblk_io_submit option [ 80.026274][ T8303] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2085'. [ 80.063905][ T8305] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 80.118401][ T8318] delete_channel: no stack [ 80.124408][ T5934] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.183903][ T8326] loop0: detected capacity change from 0 to 1024 [ 80.199876][ T8326] EXT4-fs: Ignoring removed nobh option [ 80.205476][ T8326] EXT4-fs: Ignoring removed bh option [ 80.280935][ T8326] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 80.381924][ T8345] loop4: detected capacity change from 0 to 256 [ 80.390651][ T8347] netlink: 7 bytes leftover after parsing attributes in process `syz.5.2103'. [ 80.401309][ T8326] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4113: comm syz.0.2093: Allocating blocks 497-513 which overlap fs metadata [ 80.421693][ T8347] netlink: 7 bytes leftover after parsing attributes in process `syz.5.2103'. [ 80.500325][ T8359] bridge0: port 2(bridge_slave_1) entered disabled state [ 80.507615][ T8359] bridge0: port 1(bridge_slave_0) entered disabled state [ 80.580457][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.741383][ T8390] loop6: detected capacity change from 0 to 128 [ 80.752565][ T8386] loop4: detected capacity change from 0 to 4096 [ 80.759778][ T8390] EXT4-fs: Ignoring removed nobh option [ 80.777448][ T8390] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 80.803406][ T8386] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 80.819661][ T8390] ext4 filesystem being mounted at /170/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 80.843372][ T8394] delete_channel: no stack [ 80.858913][ T8390] EXT4-fs (loop6): shut down requested (1) [ 80.918142][ T6155] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 80.937952][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.054846][ T8412] loop2: detected capacity change from 0 to 1024 [ 81.063799][ T8412] EXT4-fs: Ignoring removed nobh option [ 81.069495][ T8412] EXT4-fs: Ignoring removed bh option [ 81.186712][ T8412] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 81.222041][ T8435] loop0: detected capacity change from 0 to 256 [ 81.380269][ T8412] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4113: comm syz.2.2126: Allocating blocks 497-513 which overlap fs metadata [ 81.545994][ T8453] loop4: detected capacity change from 0 to 1024 [ 81.663479][ T8453] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 81.674745][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.683938][ T8453] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 81.710764][ T8453] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000] [ 81.790447][ T8453] EXT4-fs error (device loop4): ext4_map_blocks:780: inode #3: block 2: comm syz.4.2150: lblock 2 mapped to illegal pblock 2 (length 1) [ 81.813796][ T8453] EXT4-fs (loop4): Remounting filesystem read-only [ 81.820575][ T8453] EXT4-fs (loop4): 1 orphan inode deleted [ 81.826943][ T8453] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 81.866014][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.964685][ T8474] netlink: 'syz.2.2152': attribute type 21 has an invalid length. [ 82.239141][ T8518] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2182'. [ 82.273375][ T8520] SELinux: failed to load policy [ 82.403565][ T8547] loop5: detected capacity change from 0 to 1024 [ 82.424572][ T8547] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 82.486866][ T8547] EXT4-fs error (device loop5): ext4_ext_check_inode:523: inode #11: comm syz.5.2196: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 82.540286][ T8547] EXT4-fs error (device loop5): ext4_orphan_get:1398: comm syz.5.2196: couldn't read orphan inode 11 (err -117) [ 82.575309][ T8547] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 82.613137][ T8547] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.2196: Invalid block bitmap block 0 in block_group 0 [ 82.640200][ T8547] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.2196: Failed to acquire dquot type 0 [ 82.711082][ T5934] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.743624][ T8603] SELinux: syz.0.2223 (8603) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 82.849153][ T8619] SELinux: Context  is not valid (left unmapped). [ 82.869097][ T8622] loop0: detected capacity change from 0 to 1024 [ 82.881338][ T8622] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 82.894744][ T8622] EXT4-fs error (device loop0): ext4_ext_check_inode:523: inode #11: comm syz.0.2232: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 82.925607][ T8622] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.2232: couldn't read orphan inode 11 (err -117) [ 82.936189][ T8629] syz_tun: entered allmulticast mode [ 82.944728][ T8628] syz_tun: left allmulticast mode [ 82.950701][ T8622] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 82.969724][ T8631] loop6: detected capacity change from 0 to 256 [ 82.977224][ T8631] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 82.991856][ T8622] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.2232: Invalid block bitmap block 0 in block_group 0 [ 83.006617][ T8622] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.2232: Failed to acquire dquot type 0 [ 83.020345][ T8633] loop6: detected capacity change from 0 to 1024 [ 83.027051][ T8633] EXT4-fs: inline encryption not supported [ 83.034179][ T8633] EXT4-fs: Ignoring removed bh option [ 83.051305][ T8633] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 83.093835][ T6155] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.105418][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.149545][ T8641] netlink: 'syz.6.2240': attribute type 21 has an invalid length. [ 83.204905][ T8653] netem: invalid attributes len -3 [ 83.291151][ T8669] loop6: detected capacity change from 0 to 1024 [ 83.300957][ T8671] program syz.5.2255 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 83.321892][ T8669] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 83.374138][ T6155] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.547186][ T8707] loop0: detected capacity change from 0 to 1024 [ 83.561053][ T8708] SELinux: syz.2.2271 (8708) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 83.582180][ T8707] EXT4-fs: inline encryption not supported [ 83.608754][ T8707] EXT4-fs: Ignoring removed bh option [ 83.624472][ T8707] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 83.712776][ T8726] __nla_validate_parse: 10 callbacks suppressed [ 83.712796][ T8726] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2278'. [ 83.779800][ T8738] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2285'. [ 83.788793][ T8738] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2285'. [ 83.799829][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.810956][ T8742] syz_tun: entered allmulticast mode [ 83.821240][ T8741] syz_tun: left allmulticast mode [ 83.849815][ T8744] loop2: detected capacity change from 0 to 2048 [ 83.891417][ T8744] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 83.941932][ T8765] netlink: 'syz.5.2296': attribute type 1 has an invalid length. [ 83.967982][ T8769] loop4: detected capacity change from 0 to 1024 [ 84.007421][ T8769] EXT4-fs: inline encryption not supported [ 84.025537][ T8769] EXT4-fs: Ignoring removed bh option [ 84.040257][ T8769] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 84.130118][ T8776] loop5: detected capacity change from 0 to 128 [ 84.136919][ T8776] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 84.170576][ T8780] netlink: 140 bytes leftover after parsing attributes in process `syz.4.2303'. [ 84.185239][ T8776] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 84.215290][ T29] kauditd_printk_skb: 73 callbacks suppressed [ 84.215308][ T29] audit: type=1400 audit(1749918776.807:1761): avc: denied { create } for pid=8784 comm="syz.2.2305" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 84.249397][ T29] audit: type=1400 audit(1749918776.847:1762): avc: denied { unlink } for pid=3309 comm="syz-executor" name="file0" dev="tmpfs" ino=2268 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 84.273622][ T12] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 84.287552][ T8792] loop4: detected capacity change from 0 to 128 [ 84.302218][ T8792] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 84.315704][ T8792] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 84.329157][ T29] audit: type=1326 audit(1749918776.927:1763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8793 comm="syz.5.2317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25b194e929 code=0x7ffc0000 [ 84.352604][ T29] audit: type=1326 audit(1749918776.927:1764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8793 comm="syz.5.2317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25b194e929 code=0x7ffc0000 [ 84.376136][ T29] audit: type=1326 audit(1749918776.927:1765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8793 comm="syz.5.2317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=244 compat=0 ip=0x7f25b194e929 code=0x7ffc0000 [ 84.383913][ T8798] loop2: detected capacity change from 0 to 1024 [ 84.399651][ T29] audit: type=1326 audit(1749918776.927:1766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8793 comm="syz.5.2317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25b194e929 code=0x7ffc0000 [ 84.429466][ T29] audit: type=1326 audit(1749918776.927:1767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8793 comm="syz.5.2317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25b194e929 code=0x7ffc0000 [ 84.453418][ T12] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 84.454650][ T29] audit: type=1326 audit(1749918777.037:1768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8799 comm="syz.5.2312" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f25b194e929 code=0x0 [ 84.491082][ T8802] loop6: detected capacity change from 0 to 1024 [ 84.499559][ T8802] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 84.511147][ T8802] EXT4-fs error (device loop6): ext4_ext_check_inode:523: inode #11: comm syz.6.2310: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 84.530127][ T8802] EXT4-fs error (device loop6): ext4_orphan_get:1398: comm syz.6.2310: couldn't read orphan inode 11 (err -117) [ 84.577065][ T8811] netem: invalid attributes len -3 [ 84.583061][ T8811] netem: change failed [ 84.589596][ T8796] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:483: comm syz.6.2310: Invalid block bitmap block 0 in block_group 0 [ 84.604255][ T8796] Quota error (device loop6): write_blk: dquota write failed [ 84.611697][ T8796] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota [ 84.623276][ T8796] EXT4-fs error (device loop6): ext4_acquire_dquot:6933: comm syz.6.2310: Failed to acquire dquot type 0 [ 84.645405][ T8815] loop4: detected capacity change from 0 to 2048 [ 84.718462][ T8827] netlink: 'syz.2.2322': attribute type 4 has an invalid length. [ 84.775863][ T8833] program syz.6.2325 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 84.826193][ T8838] netem: invalid attributes len -3 [ 84.856342][ T8842] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2330'. [ 84.933442][ T8856] netlink: 140 bytes leftover after parsing attributes in process `syz.2.2337'. [ 84.971023][ T8861] netlink: 'syz.4.2339': attribute type 1 has an invalid length. [ 85.081476][ T8875] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2345'. [ 85.201230][ T8893] loop4: detected capacity change from 0 to 1024 [ 85.220738][ T8893] ext4 filesystem being mounted at /463/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 85.234525][ T8893] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 85.286118][ T8903] loop2: detected capacity change from 0 to 128 [ 85.293086][ T8903] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 85.307445][ T8903] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 85.357120][ T8911] loop5: detected capacity change from 0 to 128 [ 85.379854][ T8911] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 85.397842][ T51] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 85.409168][ T8911] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 85.417882][ T8918] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2367'. [ 85.460038][ T51] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 85.616934][ T8954] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2383'. [ 85.694837][ T8964] loop6: detected capacity change from 0 to 2048 [ 85.756758][ T8964] Alternate GPT is invalid, using primary GPT. [ 85.763286][ T8964] loop6: p2 p3 p7 [ 85.980419][ T8985] SELinux: syz.6.2398 (8985) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 86.066966][ T8992] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2400'. [ 86.353761][ T9039] loop2: detected capacity change from 0 to 1024 [ 86.370384][ T9039] ext4 filesystem being mounted at /474/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 86.384758][ T9039] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 86.408992][ T9045] loop6: detected capacity change from 0 to 764 [ 86.419470][ T9045] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 86.622973][ T9091] netlink: 'syz.2.2448': attribute type 1 has an invalid length. [ 86.630884][ T9091] netlink: 'syz.2.2448': attribute type 2 has an invalid length. [ 86.837349][ T9117] binfmt_misc: register: failed to install interpreter file ./file0 [ 87.281023][ T9158] loop4: detected capacity change from 0 to 764 [ 87.289845][ T9158] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 87.291613][ T9161] binfmt_misc: register: failed to install interpreter file ./file0 [ 87.354984][ T9169] netlink: 'syz.0.2485': attribute type 1 has an invalid length. [ 87.362980][ T9169] netlink: 'syz.0.2485': attribute type 2 has an invalid length. [ 87.481570][ T9182] loop4: detected capacity change from 0 to 8192 [ 87.501168][ T9182] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 87.524604][ T9188] loop0: detected capacity change from 0 to 128 [ 87.675703][ T9208] loop6: detected capacity change from 0 to 512 [ 87.688459][ T9208] EXT4-fs: Ignoring removed nobh option [ 87.710357][ T9217] netlink: 'syz.4.2508': attribute type 21 has an invalid length. [ 87.720795][ T9208] EXT4-fs error (device loop6): ext4_do_update_inode:5568: inode #16: comm syz.6.2505: corrupted inode contents [ 87.722013][ T9215] loop0: detected capacity change from 0 to 2048 [ 87.742918][ T9208] EXT4-fs (loop6): Remounting filesystem read-only [ 87.749615][ T9208] EXT4-fs (loop6): 1 truncate cleaned up [ 87.755764][ T9208] ext4 filesystem being mounted at /274/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 87.772180][ T51] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 87.782767][ T51] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 87.803925][ T51] EXT4-fs (loop6): Quota write (off=8, len=24) cancelled because transaction is not started [ 87.998212][ T9249] loop0: detected capacity change from 0 to 512 [ 88.008778][ T9249] EXT4-fs: Ignoring removed nobh option [ 88.018143][ T9254] SELinux: syz.5.2524 (9254) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 88.033771][ T9249] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm syz.0.2523: corrupted inode contents [ 88.047329][ T9249] EXT4-fs (loop0): Remounting filesystem read-only [ 88.054105][ T9249] EXT4-fs (loop0): 1 truncate cleaned up [ 88.062774][ T9249] ext4 filesystem being mounted at /505/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 88.077169][ T51] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 88.087786][ T51] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 88.099540][ T51] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started [ 88.307329][ T9287] loop5: detected capacity change from 0 to 512 [ 88.314871][ T9287] EXT4-fs: Ignoring removed nobh option [ 88.347819][ T9287] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #16: comm syz.5.2541: corrupted inode contents [ 88.410943][ T9287] EXT4-fs (loop5): Remounting filesystem read-only [ 88.417589][ T9287] EXT4-fs (loop5): 1 truncate cleaned up [ 88.439769][ T51] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 88.450603][ T51] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 88.473673][ T9287] ext4 filesystem being mounted at /256/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 88.487349][ T51] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started [ 88.550486][ T9313] loop4: detected capacity change from 0 to 2048 [ 88.757793][ T9347] netlink: 'syz.2.2568': attribute type 1 has an invalid length. [ 88.790859][ T9353] loop6: detected capacity change from 0 to 2048 [ 89.431259][ T29] kauditd_printk_skb: 146 callbacks suppressed [ 89.431276][ T29] audit: type=1326 audit(2000000024.205:1897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9366 comm="syz.0.2573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae214e929 code=0x7ffc0000 [ 89.463382][ T9368] loop6: detected capacity change from 0 to 256 [ 89.487534][ T29] audit: type=1326 audit(2000000024.245:1898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9366 comm="syz.0.2573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbae214e929 code=0x7ffc0000 [ 89.487571][ T29] audit: type=1326 audit(2000000024.245:1899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9366 comm="syz.0.2573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae214e929 code=0x7ffc0000 [ 89.487604][ T29] audit: type=1326 audit(2000000024.245:1900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9366 comm="syz.0.2573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbae214e929 code=0x7ffc0000 [ 89.487699][ T29] audit: type=1326 audit(2000000024.245:1901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9366 comm="syz.0.2573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae214e929 code=0x7ffc0000 [ 89.487739][ T29] audit: type=1326 audit(2000000024.245:1902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9366 comm="syz.0.2573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae214e929 code=0x7ffc0000 [ 89.487947][ T29] audit: type=1326 audit(2000000024.245:1903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9366 comm="syz.0.2573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=305 compat=0 ip=0x7fbae214e929 code=0x7ffc0000 [ 89.488011][ T29] audit: type=1326 audit(2000000029.259:1904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9366 comm="syz.0.2573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae214e929 code=0x7ffc0000 [ 89.488042][ T29] audit: type=1326 audit(2000000029.259:1905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9366 comm="syz.0.2573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbae214e929 code=0x7ffc0000 [ 89.570650][ T29] audit: type=1400 audit(2000000029.339:1906): avc: denied { map } for pid=9383 comm="syz.6.2585" path="socket:[24740]" dev="sockfs" ino=24740 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1 [ 89.704121][ T9404] futex_wake_op: syz.0.2595 tries to shift op by -1; fix this program [ 89.788212][ T9398] 9pnet: Could not find request transport: r [ 89.826856][ T9406] loop0: detected capacity change from 0 to 8192 [ 89.931361][ T9422] __nla_validate_parse: 6 callbacks suppressed [ 89.931378][ T9422] netlink: 200 bytes leftover after parsing attributes in process `syz.5.2603'. [ 89.967189][ T9424] netlink: 'syz.6.2604': attribute type 1 has an invalid length. [ 90.177878][ T9453] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2617'. [ 90.186868][ T9453] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2617'. [ 90.197208][ T9453] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2617'. [ 90.220427][ T9453] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2617'. [ 90.229487][ T9453] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2617'. [ 90.252695][ T9453] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2617'. [ 90.284227][ T9453] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2617'. [ 90.293349][ T9453] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2617'. [ 90.303816][ T9453] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2617'. [ 90.730410][ T9561] vhci_hcd: invalid port number 96 [ 90.735665][ T9561] vhci_hcd: default hub control req: 0000 vfffc i0060 l0 [ 90.881017][ T9567] loop6: detected capacity change from 0 to 8192 [ 91.037320][ T9592] SELinux: syz.0.2652 (9592) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 91.345567][ T1036] IPVS: starting estimator thread 0... [ 91.444212][ T9640] loop2: detected capacity change from 0 to 1024 [ 91.455271][ T9640] EXT4-fs: Ignoring removed orlov option [ 91.463510][ T9640] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 91.468655][ T9621] IPVS: using max 2016 ests per chain, 100800 per kthread [ 91.490533][ T9640] EXT4-fs error (device loop2): ext4_ext_check_inode:523: inode #11: comm syz.2.2673: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 91.523653][ T9640] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.2673: couldn't read orphan inode 11 (err -117) [ 91.541634][ T9640] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.2673: Invalid block bitmap block 0 in block_group 0 [ 91.546763][ T9647] vhci_hcd: invalid port number 96 [ 91.560588][ T9647] vhci_hcd: default hub control req: 0000 vfffc i0060 l0 [ 91.563239][ T9640] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.2673: Failed to acquire dquot type 0 [ 91.595259][ T1036] IPVS: starting estimator thread 0... [ 91.604789][ T9532] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:62: Failed to release dquot type 0 [ 91.648154][ T9664] loop2: detected capacity change from 0 to 512 [ 91.657010][ T9661] syzkaller0: tun_chr_ioctl cmd 1074025677 [ 91.658073][ T9664] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 91.666454][ T9661] syzkaller0: linktype set to 6 [ 91.689069][ T9656] IPVS: using max 2352 ests per chain, 117600 per kthread [ 91.697569][ T9664] EXT4-fs (loop2): 1 truncate cleaned up [ 91.964075][ T9692] loop6: detected capacity change from 0 to 512 [ 91.990960][ T9694] loop2: detected capacity change from 0 to 512 [ 92.002036][ T9692] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 92.028293][ T9694] ext4 filesystem being mounted at /528/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 92.043312][ T9690] loop4: detected capacity change from 0 to 8192 [ 92.051985][ T9692] EXT4-fs (loop6): 1 truncate cleaned up [ 92.063786][ T9690] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 92.231653][ T9715] loop4: detected capacity change from 0 to 512 [ 92.250464][ T9715] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 92.263178][ T9715] EXT4-fs (loop4): invalid journal inode [ 92.279631][ T9715] EXT4-fs (loop4): can't get journal size [ 92.304528][ T9715] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e056c118, mo2=0002] [ 92.323878][ T9715] System zones: 1-12, 13-13 [ 92.336055][ T9715] EXT4-fs (loop4): 1 truncate cleaned up [ 92.583437][ T9754] loop2: detected capacity change from 0 to 512 [ 92.621589][ T9754] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.2724: bg 0: block 5: invalid block bitmap [ 92.662477][ T9754] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6548: Corrupt filesystem [ 92.675224][ T9754] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.2724: invalid indirect mapped block 3 (level 2) [ 92.698852][ T9754] EXT4-fs (loop2): 2 truncates cleaned up [ 92.712896][ T5934] ================================================================== [ 92.721100][ T5934] BUG: KCSAN: data-race in pollwake / pollwake [ 92.727254][ T5934] [ 92.729576][ T5934] write to 0xffffc9000155f9e0 of 4 bytes by interrupt on cpu 0: [ 92.737211][ T5934] pollwake+0xb6/0x100 [ 92.741282][ T5934] __wake_up_sync_key+0x4f/0x80 [ 92.746143][ T5934] sock_def_readable+0x70/0x190 [ 92.750993][ T5934] tcp_data_ready+0x1ae/0x290 [ 92.755677][ T5934] tcp_rcv_established+0xd28/0xef0 [ 92.760785][ T5934] tcp_v4_do_rcv+0x672/0x740 [ 92.765374][ T5934] tcp_v4_rcv+0x1bd7/0x1f60 [ 92.769885][ T5934] ip_protocol_deliver_rcu+0x397/0x780 [ 92.775352][ T5934] ip_local_deliver_finish+0x184/0x220 [ 92.780819][ T5934] ip_local_deliver+0xe8/0x1c0 [ 92.785594][ T5934] ip_sublist_rcv+0x56b/0x650 [ 92.791129][ T5934] ip_list_rcv+0x261/0x290 [ 92.795560][ T5934] __netif_receive_skb_list_core+0x4dc/0x500 [ 92.801540][ T5934] netif_receive_skb_list_internal+0x487/0x600 [ 92.807696][ T5934] napi_complete_done+0x1a3/0x410 [ 92.812740][ T5934] virtnet_poll+0x189f/0x1d10 [ 92.817420][ T5934] __napi_poll+0x63/0x3a0 [ 92.821752][ T5934] net_rx_action+0x391/0x830 [ 92.826344][ T5934] handle_softirqs+0xba/0x290 [ 92.831029][ T5934] __irq_exit_rcu+0x3a/0xc0 [ 92.835549][ T5934] common_interrupt+0x83/0x90 [ 92.840223][ T5934] asm_common_interrupt+0x26/0x40 [ 92.845247][ T5934] memcg1_commit_charge+0xda/0x1e0 [ 92.850361][ T5934] charge_memcg+0x9e/0xc0 [ 92.854695][ T5934] __mem_cgroup_charge+0x28/0xb0 [ 92.859640][ T5934] handle_mm_fault+0xee3/0x2be0 [ 92.864480][ T5934] do_user_addr_fault+0x636/0x1090 [ 92.869608][ T5934] exc_page_fault+0x62/0xa0 [ 92.874153][ T5934] asm_exc_page_fault+0x26/0x30 [ 92.879010][ T5934] [ 92.881326][ T5934] write to 0xffffc9000155f9e0 of 4 bytes by task 5934 on cpu 1: [ 92.888945][ T5934] pollwake+0xb6/0x100 [ 92.893020][ T5934] __wake_up_sync_key+0x4f/0x80 [ 92.897865][ T5934] anon_pipe_write+0x8ba/0xaa0 [ 92.902627][ T5934] vfs_write+0x4a0/0x8e0 [ 92.906876][ T5934] ksys_write+0xda/0x1a0 [ 92.911116][ T5934] __x64_sys_write+0x40/0x50 [ 92.915702][ T5934] x64_sys_call+0x2cdd/0x2fb0 [ 92.920376][ T5934] do_syscall_64+0xd2/0x200 [ 92.924869][ T5934] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.930768][ T5934] [ 92.933091][ T5934] value changed: 0x00000000 -> 0x00000001 [ 92.938824][ T5934] [ 92.941141][ T5934] Reported by Kernel Concurrency Sanitizer on: [ 92.947295][ T5934] CPU: 1 UID: 0 PID: 5934 Comm: syz-executor Not tainted 6.16.0-rc1-syzkaller-00203-g4774cfe3543a #0 PREEMPT(voluntary) [ 92.959878][ T5934] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 92.969930][ T5934] ================================================================== [ 92.984593][ T9754] EXT4-fs (loop2): shut down requested (1) [ 93.002706][ T9754] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop2 ino=15 [ 93.011684][ T9754] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop2 ino=15