last executing test programs: 36.760663969s ago: executing program 0 (id=21057): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0x80042, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x19) writev(r0, &(0x7f0000000000)=[{&(0x7f00000003c0)='!', 0x1}], 0x1) 36.711179264s ago: executing program 0 (id=21061): r0 = socket(0xa, 0x5, 0x0) listen(r0, 0x100) sendmsg$inet_sctp(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000008400000001"], 0x18, 0x4855}, 0x4008850) 36.638136761s ago: executing program 0 (id=21065): perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x8, 0x40008, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x9, 0x6}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) r0 = socket(0x10, 0x3, 0x9) sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000013c0)={{0x14, 0x3f4, 0x1, 0x0, 0x0, {0x5}}, [], {0x14}}, 0x28}, 0x1, 0x0, 0x0, 0x64841}, 0x40000) 36.54813482s ago: executing program 0 (id=21069): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0, 0x0, 0x8}, 0x18) request_key(&(0x7f0000000040)='user\x00', &(0x7f0000000080)={'syz', 0x0}, &(0x7f0000000140)='\\\\@[*#)\x00', 0xfffffffffffffffe) 36.54792034s ago: executing program 0 (id=21070): mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30) mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0) 36.494956465s ago: executing program 0 (id=21076): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xe) ioctl$TIOCSSOFTCAR(r0, 0x5433, 0x0) 20.439020275s ago: executing program 32 (id=21076): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xe) ioctl$TIOCSSOFTCAR(r0, 0x5433, 0x0) 16.713399004s ago: executing program 3 (id=21996): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x61980, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000200)='kfree\x00', r0, 0x0, 0x80}, 0x18) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000280)={0x2, &(0x7f0000000180)=[{0x61}, {0x6, 0x0, 0xfc, 0x9}]}) 16.694249206s ago: executing program 3 (id=21997): r0 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x200000c0, 0xffffffff, 0xfffffff8}, 0x10) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="2c0000001a000100000000000000000002202000000000000000000008000300", @ANYRES32=0x0, @ANYBLOB="080004"], 0x2c}}, 0x0) 16.676788168s ago: executing program 3 (id=21999): perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r0 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r0, &(0x7f0000000580)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1) 16.643237811s ago: executing program 3 (id=22002): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000280)={0x7fff, 0x0, 0x0, 0x2}, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001200010a"], 0x14}, 0x1, 0x0, 0x0, 0x20000081}, 0x4000) 16.600155546s ago: executing program 3 (id=22003): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8}) mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0) 16.600004416s ago: executing program 3 (id=22004): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x7, 0x0, 0x0, 0x40f00, 0x40}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0) 4.306819273s ago: executing program 5 (id=22613): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000002c0)='kmem_cache_free\x00', r0}, 0x10) renameat2(0xffffffffffffff9c, 0x0, 0xffffffffffffff9c, 0x0, 0x0) 4.164965177s ago: executing program 5 (id=22616): perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1d459d, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x183, 0x6}, 0x6025, 0x4005, 0xb, 0x0, 0x1, 0x1, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) syz_emit_ethernet(0x6e, &(0x7f00000005c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x38, 0x3a, 0x0, @remote, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x5dc, {0x0, 0x6, "8cb02b", 0x0, 0x2f, 0xff, @loopback={0x4000000}, @local, [@fragment={0x1d, 0x0, 0xd, 0x1, 0x0, 0xe, 0x68}]}}}}}}}, 0x0) 495.610001ms ago: executing program 33 (id=22004): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x7, 0x0, 0x0, 0x40f00, 0x40}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0) 454.256265ms ago: executing program 5 (id=22629): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020700000000000002030207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000100850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x18) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x20481e, &(0x7f0000000300), 0x0, 0x4f2, &(0x7f0000000600)="$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") 395.35457ms ago: executing program 2 (id=22623): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000080000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d0000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10) setfsuid(0x0) 329.597607ms ago: executing program 4 (id=22627): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000380), r0) sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000240)={0x24, r1, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@FOU_ATTR_PORT={0x6, 0x1, 0x4e24}, @FOU_ATTR_AF={0x5, 0x2, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x20040000) 311.650949ms ago: executing program 1 (id=22628): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)={0x30, r1, 0x1, 0xffffff7d, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0xc, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x5}]}]}, 0x30}}, 0x0) 303.04326ms ago: executing program 5 (id=22630): r0 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0xc, &(0x7f0000000040)=@assoc_value={0x0}, &(0x7f0000000000)=0x8) setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f0000000240)={0xffff, 0x1, 0x1, 0x1, r1}, 0x10) 291.590171ms ago: executing program 2 (id=22631): perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x3, 0x8, 0x2, 0x8001, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a300000000040000000030a01020000000000000000010000000900030073797a320000000014000480080002400000000008000140000000000900010073797a30000000006c000000060a010400000000000000000100000008000b40000000000900010073797a30000000004400048014000180090001006c617374"], 0xf4}}, 0x0) 268.539503ms ago: executing program 1 (id=22632): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0x80000020}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000001a00010000000000000000001c0000000000000000", @ANYRES32=r0], 0x30}}, 0x0) 263.569624ms ago: executing program 4 (id=22633): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f00000000c0)={0x9, 0x0, 0x0, 0xfffffffc}, 0x10) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@gettaction={0x18, 0x5a, 0x1, 0x0, 0xffff, {}, [@action_gd=@TCA_ACT_TAB={0x4}]}, 0x18}}, 0x0) 237.470726ms ago: executing program 5 (id=22634): sendmsg$key(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x2008042, &(0x7f00000000c0), 0x1, 0x571, &(0x7f0000000780)="$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") quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000140)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000280)={0x7, 0x6, 0x800077, 0x20800000000412, 0x6, 0x7, 0x3, 0x41, 0x1}) 194.02136ms ago: executing program 2 (id=22635): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000400)='sys_enter\x00', r0}, 0x18) getrandom(0x0, 0x0, 0x0) 188.065621ms ago: executing program 4 (id=22636): r0 = socket$inet6(0xa, 0x805, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000080)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private1}]}, &(0x7f00000002c0)=0x10) getsockopt$bt_hci(r0, 0x84, 0x81, &(0x7f0000000080)=""/4060, &(0x7f00000010c0)=0xfdc) 178.618882ms ago: executing program 1 (id=22637): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x3, 0x8, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006100000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00'}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r1, 0x27, 0x22, 0x0, &(0x7f00000002c0)="f8c348cc02cb29dcc8007f5b08009ccaa57b0fdf16e41d87a9a191192b98708c7c6f", 0x0, 0x4000, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50) 155.324504ms ago: executing program 2 (id=22638): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x20040, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10) unlink(&(0x7f0000000000)='./file0\x00') 128.837677ms ago: executing program 4 (id=22639): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x3, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10) add_key(&(0x7f0000000280)='rxrpc\x00', 0x0, &(0x7f0000000100)="01000000020000000000006bb55a2a630bf7c045f94cd977", 0x18, 0xffffffffffffffff) 96.14536ms ago: executing program 5 (id=22640): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x7}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = inotify_init1(0x800) fcntl$setown(r0, 0x8, 0xffffffffffffffff) 91.8883ms ago: executing program 1 (id=22641): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x4, &(0x7f0000000040)=0x3e, 0x4) getsockopt$inet6_tcp_int(r0, 0x6, 0x4, 0x0, &(0x7f0000000080)) 91.70948ms ago: executing program 2 (id=22642): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) ioctl$TUNGETVNETLE(r0, 0x800454dd, &(0x7f00000000c0)) 62.656023ms ago: executing program 4 (id=22643): unshare(0x22020400) r0 = mq_open(&(0x7f0000000380)='syz0\x00', 0x40, 0x43, 0x0) mq_timedsend(r0, 0x0, 0x0, 0x0, 0x0) 47.923035ms ago: executing program 1 (id=22644): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10) linkat(0xffffffffffffff9c, &(0x7f00000006c0)='./file2\x00', 0xffffffffffffff9c, 0x0, 0x0) 36.332976ms ago: executing program 4 (id=22645): bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x4, 0xe, &(0x7f0000000880)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000001c0), 0xfffffedf, 0x10, &(0x7f0000000040), 0xffffff95, 0x0, 0xffffffffffffffff, 0x10}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0x2000000, 0xe, 0x0, &(0x7f0000000240)="63eced000000000a9f33c9f7b9e5", 0x0, 0xc698, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 2.83539ms ago: executing program 2 (id=22646): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) sendmsg$inet(r1, &(0x7f0000000780)={&(0x7f0000000100)={0x2, 0x0, @local}, 0x10, &(0x7f00000000c0)=[{0x0}, {&(0x7f0000000180)="1f", 0x1}], 0x2}, 0x0) 0s ago: executing program 1 (id=22647): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) add_key(&(0x7f00000001c0)='ceph\x00', 0x0, &(0x7f0000000840)='\x00\x00\x00\x00\x00\x00\x00\x00\x00*\x00\x00', 0xc, 0xffffffffffffffff) kernel console output (not intermixed with test programs): XT4-fs (loop2): 1 truncate cleaned up [ 354.022751][T24611] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 354.085159][T24626] loop4: detected capacity change from 0 to 512 [ 354.095369][T24626] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.18825: bad orphan inode 15 [ 354.108612][T24626] ext4_test_bit(bit=14, block=5) = 0 [ 354.114999][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 354.151680][T24626] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 354.251100][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 354.367923][T24660] loop2: detected capacity change from 0 to 512 [ 354.368781][T24660] EXT4-fs: Ignoring removed bh option [ 354.392218][T24660] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 354.392379][T24660] ext4 filesystem being mounted at /3748/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 354.410225][T24660] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 354.424002][T24660] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000. [ 354.445919][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 354.671515][T24701] loop2: detected capacity change from 0 to 512 [ 354.685516][T24701] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 354.698494][T24701] ext4 filesystem being mounted at /3754/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 354.728961][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 354.770304][T24721] netlink: 'syz.1.18857': attribute type 1 has an invalid length. [ 354.832201][T24730] qrtr: Invalid version 255 [ 354.932544][T24750] loop4: detected capacity change from 0 to 512 [ 354.939646][T24750] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 354.962790][T24750] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 354.978697][T24750] ext4 filesystem being mounted at /3885/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 355.115174][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 355.203620][T24793] loop4: detected capacity change from 0 to 512 [ 355.222621][T24793] EXT4-fs: Ignoring removed mblk_io_submit option [ 355.239333][T24793] EXT4-fs: Ignoring removed nomblk_io_submit option [ 355.257758][T24793] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 355.269294][T24793] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 355.346809][T24793] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.18888: Allocating blocks 41-42 which overlap fs metadata [ 355.361688][T24793] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.18888: Allocating blocks 41-42 which overlap fs metadata [ 355.397178][T24793] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.18888: Failed to acquire dquot type 1 [ 355.411285][T24793] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt. [ 355.459888][T24831] loop2: detected capacity change from 0 to 8192 [ 355.468531][T24793] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #12: comm syz.4.18888: corrupted inode contents [ 355.482801][T24793] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #12: comm syz.4.18888: mark_inode_dirty error [ 355.496110][T24831] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 355.516673][T24793] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #12: comm syz.4.18888: corrupted inode contents [ 355.535265][T24793] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #12: comm syz.4.18888: mark_inode_dirty error [ 355.557556][T24793] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #12: comm syz.4.18888: corrupted inode contents [ 355.582672][T24846] loop2: detected capacity change from 0 to 2048 [ 355.589498][T24846] EXT4-fs: Ignoring removed bh option [ 355.595913][T24793] EXT4-fs error (device loop4) in ext4_orphan_del:301: Corrupt filesystem [ 355.609723][T24793] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #12: comm syz.4.18888: corrupted inode contents [ 355.622539][T24793] EXT4-fs error (device loop4): ext4_truncate:4637: inode #12: comm syz.4.18888: mark_inode_dirty error [ 355.639512][T24793] EXT4-fs error (device loop4) in ext4_process_orphan:343: Corrupt filesystem [ 355.650730][T24793] EXT4-fs (loop4): 1 truncate cleaned up [ 355.658604][T24846] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 355.662830][T24793] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 355.725295][T24793] EXT4-fs: Cannot change quota options when quota turned on [ 355.727614][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 355.767299][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 355.784004][T24873] loop3: detected capacity change from 0 to 512 [ 355.803605][T24873] EXT4-fs (loop3): orphan cleanup on readonly fs [ 355.812521][T24873] EXT4-fs warning (device loop3): ext4_xattr_inode_get:546: inode #11: comm syz.3.18919: ea_inode file size=4 entry size=6 [ 355.838059][T24873] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 355.859305][T24873] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #15: comm syz.3.18919: corrupted inode contents [ 355.874595][T24873] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #15: comm syz.3.18919: mark_inode_dirty error [ 355.887201][T24873] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #15: comm syz.3.18919: corrupted inode contents [ 355.901526][T24873] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2996: inode #15: comm syz.3.18919: mark_inode_dirty error [ 355.936702][T24873] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2999: inode #15: comm syz.3.18919: mark inode dirty (error -117) [ 355.951081][T24873] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117) [ 355.968792][T24873] EXT4-fs (loop3): 1 orphan inode deleted [ 355.975166][T24873] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 356.004733][T24892] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 356.024536][T24896] __vm_enough_memory: pid: 24896, comm: syz.4.18928, bytes: 21200091385856 not enough memory for the allocation [ 356.036931][ T3326] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 356.133950][T24921] qrtr: Invalid version 255 [ 356.359629][T24964] loop3: detected capacity change from 0 to 512 [ 356.382874][T24964] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 356.397949][T24964] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 356.412779][T24964] ext4 filesystem being mounted at /3719/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 356.529639][ T3326] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 356.845442][T25031] __nla_validate_parse: 7 callbacks suppressed [ 356.845463][T25031] netlink: 24 bytes leftover after parsing attributes in process `syz.1.18987'. [ 356.861557][T25031] netlink: 60 bytes leftover after parsing attributes in process `syz.1.18987'. [ 356.870671][T25031] netlink: 8 bytes leftover after parsing attributes in process `syz.1.18987'. [ 356.960773][T25042] program syz.0.18993 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 357.100722][T25060] netlink: 'syz.3.19003': attribute type 21 has an invalid length. [ 357.108813][T25060] netlink: 156 bytes leftover after parsing attributes in process `syz.3.19003'. [ 357.359612][ T29] kauditd_printk_skb: 25 callbacks suppressed [ 357.359629][ T29] audit: type=1400 audit(2000000505.520:16214): avc: denied { bind } for pid=25097 comm="syz.0.19020" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 357.398976][T25100] netlink: 16 bytes leftover after parsing attributes in process `syz.4.19022'. [ 357.515454][T25125] __vm_enough_memory: pid: 25125, comm: syz.3.19031, bytes: 21200278806528 not enough memory for the allocation [ 357.518446][T25126] netlink: 8 bytes leftover after parsing attributes in process `syz.1.19033'. [ 357.545894][ T29] audit: type=1400 audit(2000000505.688:16215): avc: denied { create } for pid=25127 comm="syz.4.19035" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=key permissive=1 [ 357.575929][ T29] audit: type=1400 audit(2000000505.688:16216): avc: denied { write } for pid=25127 comm="syz.4.19035" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=key permissive=1 [ 357.668752][ T29] audit: type=1326 audit(2000000505.810:16217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25147 comm="syz.4.19045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454243efc9 code=0x7ffc0000 [ 357.694786][ T29] audit: type=1326 audit(2000000505.828:16218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25147 comm="syz.4.19045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=263 compat=0 ip=0x7f454243efc9 code=0x7ffc0000 [ 357.721368][ T29] audit: type=1326 audit(2000000505.828:16219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25147 comm="syz.4.19045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454243efc9 code=0x7ffc0000 [ 357.745790][ T29] audit: type=1326 audit(2000000505.828:16220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25147 comm="syz.4.19045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454243efc9 code=0x7ffc0000 [ 357.815245][T25169] __vm_enough_memory: pid: 25169, comm: syz.0.19052, bytes: 21200455675904 not enough memory for the allocation [ 357.895176][T25179] A link change request failed with some changes committed already. Interface bond7 may have been left with an inconsistent configuration, please check. [ 358.018487][T25196] loop4: detected capacity change from 0 to 512 [ 358.040202][T25196] EXT4-fs (loop4): orphan cleanup on readonly fs [ 358.047250][T25196] EXT4-fs warning (device loop4): ext4_xattr_inode_get:546: inode #11: comm syz.4.19065: ea_inode file size=4 entry size=6 [ 358.061234][T25196] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #15: comm syz.4.19065: corrupted inode contents [ 358.074189][T25196] EXT4-fs error (device loop4): ext4_dirty_inode:6517: inode #15: comm syz.4.19065: mark_inode_dirty error [ 358.086466][T25196] EXT4-fs error (device loop4): ext4_do_update_inode:5632: inode #15: comm syz.4.19065: corrupted inode contents [ 358.098809][T25196] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2996: inode #15: comm syz.4.19065: mark_inode_dirty error [ 358.113553][T25200] __vm_enough_memory: pid: 25200, comm: syz.2.19067, bytes: 21200128118784 not enough memory for the allocation [ 358.127858][T25204] loop3: detected capacity change from 0 to 512 [ 358.134912][T25196] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2999: inode #15: comm syz.4.19065: mark inode dirty (error -117) [ 358.147851][T25204] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 358.160574][T25196] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -117) [ 358.161878][T25204] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 358.169860][T25196] EXT4-fs (loop4): 1 orphan inode deleted [ 358.189595][T25196] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 358.207798][T25204] EXT4-fs (loop3): 1 truncate cleaned up [ 358.216508][T25204] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 358.229070][ T29] audit: type=1326 audit(2000000506.315:16221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25207 comm="syz.2.19068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aeafeefc9 code=0x7ffc0000 [ 358.255591][ T29] audit: type=1326 audit(2000000506.315:16222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25207 comm="syz.2.19068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aeafeefc9 code=0x7ffc0000 [ 358.280787][ T29] audit: type=1326 audit(2000000506.315:16223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25207 comm="syz.2.19068" exe="/root/syz-executor" sig=0 arch=c000003e syscall=263 compat=0 ip=0x7f1aeafeefc9 code=0x7ffc0000 [ 358.339614][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 358.342148][ T3326] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 358.402747][T25222] A link change request failed with some changes committed already. Interface .` may have been left with an inconsistent configuration, please check. [ 358.447017][T25228] netlink: 8 bytes leftover after parsing attributes in process `syz.3.19077'. [ 358.785879][T25280] A link change request failed with some changes committed already. Interface bond2 may have been left with an inconsistent configuration, please check. [ 358.852403][T25294] SELinux: policydb string does not match my string SE Linux [ 358.872387][T25294] SELinux: failed to load policy [ 358.873506][T25297] netlink: 4 bytes leftover after parsing attributes in process `syz.3.19113'. [ 358.918815][T25316] program syz.3.19116 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 358.990762][T25327] loop4: detected capacity change from 0 to 2048 [ 359.008475][T25327] ext4 filesystem being mounted at /3931/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 359.590099][T25345] 9pnet_virtio: no channels available for device ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 359.594738][T25345] @0Ù: renamed from bond_slave_1 [ 359.700694][T25351] A link change request failed with some changes committed already. Interface .` may have been left with an inconsistent configuration, please check. [ 359.874536][T25387] netlink: 36 bytes leftover after parsing attributes in process `syz.3.19146'. [ 360.035964][T25420] netlink: 52 bytes leftover after parsing attributes in process `syz.0.19162'. [ 360.354345][T25470] hub 1-0:1.0: USB hub found [ 360.367161][T25470] hub 1-0:1.0: 8 ports detected [ 360.608030][T25510] loop4: detected capacity change from 0 to 512 [ 360.616761][T25510] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=684ec018, mo2=0002] [ 360.626580][T25510] System zones: 0-2, 18-18, 34-34 [ 360.636855][T25510] EXT4-fs (loop4): orphan cleanup on readonly fs [ 360.645497][T25510] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.19196: bad orphan inode 13 [ 360.673625][T25510] ext4_test_bit(bit=12, block=18) = 1 [ 360.679076][T25510] is_bad_inode(inode)=0 [ 360.683290][T25510] NEXT_ORPHAN(inode)=2130706432 [ 360.688201][T25510] max_ino=32 [ 360.691678][T25510] i_nlink=1 [ 360.698420][T25529] usb usb8: usbfs: process 25529 (syz.0.19207) did not claim interface 0 before use [ 360.700272][T25530] netlink: 'syz.1.19208': attribute type 29 has an invalid length. [ 360.723864][T25530] netlink: 'syz.1.19208': attribute type 29 has an invalid length. [ 361.107545][T25599] 9pnet_virtio: no channels available for device ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 361.257488][T25629] loop4: detected capacity change from 0 to 1024 [ 361.356451][T25629] EXT4-fs: Ignoring removed oldalloc option [ 361.362632][T25629] EXT4-fs: Ignoring removed bh option [ 361.382760][T25629] EXT4-fs error (device loop4): ext4_search_dir:1474: inode #12: block 7: comm syz.4.19252: bad entry in directory: inode out of bounds - offset=0, inode=1073741837, rec_len=16, size=56 fake=0 [ 361.555567][T25679] loop3: detected capacity change from 0 to 1024 [ 361.565825][T25679] EXT4-fs: Ignoring removed oldalloc option [ 361.582054][ T10] kernel read not supported for file /8031/schedstat (pid: 10 comm: kworker/0:1) [ 361.586267][T25679] EXT4-fs: Ignoring removed bh option [ 361.621798][T25679] EXT4-fs error (device loop3): ext4_search_dir:1474: inode #12: block 7: comm syz.3.19270: bad entry in directory: inode out of bounds - offset=0, inode=1073741837, rec_len=16, size=56 fake=0 [ 361.738603][T25706] loop3: detected capacity change from 0 to 512 [ 361.754247][T25706] EXT4-fs (loop3): too many log groups per flexible block group [ 361.771492][T25706] EXT4-fs (loop3): failed to initialize mballoc (-12) [ 361.778786][T25706] EXT4-fs (loop3): mount failed [ 361.809554][T25724] usb usb8: usbfs: process 25724 (syz.1.19288) did not claim interface 0 before use [ 361.846159][T25730] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.19291' sets config #0 [ 361.873016][T25730] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.19291' sets config #1 [ 362.078382][T25775] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.19312' sets config #0 [ 362.101867][T25775] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.19312' sets config #1 [ 362.294301][T25816] loop2: detected capacity change from 0 to 136 [ 362.311626][T25824] tipc: Enabling not permitted [ 362.317274][T25824] tipc: Enabling of bearer rejected, failed to enable media [ 362.369799][T25834] netlink: 'syz.4.19347': attribute type 29 has an invalid length. [ 362.388573][T25836] loop3: detected capacity change from 0 to 512 [ 362.395724][T25834] netlink: 'syz.4.19347': attribute type 29 has an invalid length. [ 362.409648][T25836] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=684ec018, mo2=0002] [ 362.425283][T25836] System zones: 0-2, 18-18, 34-34 [ 362.430655][T25836] EXT4-fs (loop3): orphan cleanup on readonly fs [ 362.446446][T25836] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.19338: bad orphan inode 13 [ 362.470228][T25836] ext4_test_bit(bit=12, block=18) = 1 [ 362.475709][T25836] is_bad_inode(inode)=0 [ 362.479952][T25836] NEXT_ORPHAN(inode)=2130706432 [ 362.484840][T25836] max_ino=32 [ 362.488106][T25836] i_nlink=1 [ 362.513529][T25836] __nla_validate_parse: 8 callbacks suppressed [ 362.513547][T25836] netlink: 124 bytes leftover after parsing attributes in process `syz.3.19338'. [ 362.529573][T25836] netlink: 40 bytes leftover after parsing attributes in process `syz.3.19338'. [ 362.549917][T25859] netlink: 88 bytes leftover after parsing attributes in process `syz.4.19346'. [ 362.671973][T25879] netlink: 'syz.0.19355': attribute type 29 has an invalid length. [ 362.693249][T25878] netlink: 64691 bytes leftover after parsing attributes in process `syz.3.19356'. [ 362.710514][T25879] netlink: 'syz.0.19355': attribute type 29 has an invalid length. [ 362.775428][T25893] netlink: 88 bytes leftover after parsing attributes in process `syz.0.19361'. [ 362.785377][T25887] loop2: detected capacity change from 0 to 512 [ 362.823042][T25887] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=684ec018, mo2=0002] [ 362.831268][T25887] System zones: 0-2, 18-18, 34-34 [ 362.842517][T25887] EXT4-fs (loop2): orphan cleanup on readonly fs [ 362.860639][T25887] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.19360: bad orphan inode 13 [ 362.871050][T25887] ext4_test_bit(bit=12, block=18) = 1 [ 362.876583][T25887] is_bad_inode(inode)=0 [ 362.880747][T25887] NEXT_ORPHAN(inode)=2130706432 [ 362.888291][T25887] max_ino=32 [ 362.891516][T25887] i_nlink=1 [ 362.898838][T25887] netlink: 124 bytes leftover after parsing attributes in process `syz.2.19360'. [ 362.908047][T25887] netlink: 40 bytes leftover after parsing attributes in process `syz.2.19360'. [ 362.951825][T25902] netlink: 4 bytes leftover after parsing attributes in process `syz.4.19364'. [ 363.057981][T25915] netlink: 24 bytes leftover after parsing attributes in process `syz.2.19372'. [ 363.067986][T25915] netlink: 24 bytes leftover after parsing attributes in process `syz.2.19372'. [ 363.090118][ T29] kauditd_printk_skb: 35 callbacks suppressed [ 363.090136][ T29] audit: type=1400 audit(2000000510.879:16259): avc: denied { create } for pid=25914 comm="syz.3.19371" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=appletalk_socket permissive=1 [ 363.397569][T25951] loop4: detected capacity change from 0 to 512 [ 363.409871][ T29] audit: type=1400 audit(2000000511.178:16260): avc: denied { create } for pid=25957 comm="syz.1.19389" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_fib_lookup_socket permissive=1 [ 363.436160][T25951] ext4 filesystem being mounted at /3991/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 363.472719][ T29] audit: type=1400 audit(2000000511.225:16261): avc: denied { rmdir } for pid=25950 comm="syz.4.19388" name="file0" dev="loop4" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 363.524711][T25973] loop4: detected capacity change from 0 to 512 [ 363.545641][T25973] EXT4-fs (loop4): too many log groups per flexible block group [ 363.553937][T25973] EXT4-fs (loop4): failed to initialize mballoc (-12) [ 363.562494][T25973] EXT4-fs (loop4): mount failed [ 363.675449][ T29] audit: type=1326 audit(2000000511.412:16262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26006 comm="syz.0.19405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac5c73efc9 code=0x7ffc0000 [ 363.701955][ T29] audit: type=1326 audit(2000000511.412:16263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26006 comm="syz.0.19405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac5c73efc9 code=0x7ffc0000 [ 363.727824][ T29] audit: type=1326 audit(2000000511.421:16264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26006 comm="syz.0.19405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fac5c73efc9 code=0x7ffc0000 [ 363.753868][ T29] audit: type=1326 audit(2000000511.421:16265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26006 comm="syz.0.19405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac5c73efc9 code=0x7ffc0000 [ 363.777595][ T29] audit: type=1326 audit(2000000511.421:16266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26006 comm="syz.0.19405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fac5c73efc9 code=0x7ffc0000 [ 363.803680][ T29] audit: type=1326 audit(2000000511.421:16267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26006 comm="syz.0.19405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac5c73efc9 code=0x7ffc0000 [ 363.829131][ T29] audit: type=1326 audit(2000000511.477:16268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26007 comm="syz.4.19406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454243efc9 code=0x7ffc0000 [ 363.946535][T26031] loop4: detected capacity change from 0 to 128 [ 363.989661][T26038] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 364.000127][T26038] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0 [ 364.011348][T26038] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0 [ 364.052291][T26038] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 364.062701][T26038] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0 [ 364.062999][T26052] loop4: detected capacity change from 0 to 764 [ 364.073787][T26038] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0 [ 364.137463][T26038] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 364.149519][T26038] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0 [ 364.159956][T26038] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0 [ 364.244326][T26038] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 364.254751][T26038] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0 [ 364.265163][T26038] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0 [ 364.281940][T26083] loop2: detected capacity change from 0 to 512 [ 364.293900][T26082] sch_fq: defrate 8 ignored. [ 364.295713][T26083] EXT4-fs: Ignoring removed oldalloc option [ 364.305082][T26083] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 364.332312][T26092] loop3: detected capacity change from 0 to 1024 [ 364.340031][T26092] EXT4-fs: Ignoring removed orlov option [ 364.346341][T26083] EXT4-fs (loop2): 1 truncate cleaned up [ 364.356309][T26092] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a002c118, mo2=0002] [ 364.373463][T26092] System zones: 0-1, 3-12 [ 364.398891][ T374] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 364.407976][ T374] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 364.416916][ T374] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 20000 - 0 [ 364.452599][ T374] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 364.461709][ T374] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 364.469946][ T374] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 20000 - 0 [ 364.485661][ T374] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 364.494027][ T374] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 364.503279][ T374] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 20000 - 0 [ 364.542526][ T374] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 364.550782][ T374] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 364.559108][ T374] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 20000 - 0 [ 364.624988][T26143] loop3: detected capacity change from 0 to 2048 [ 364.720202][T26176] loop4: detected capacity change from 0 to 512 [ 364.761864][T26176] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 364.794970][T26176] EXT4-fs error (device loop4): xattr_find_entry:337: inode #15: comm syz.4.19457: corrupted xattr entries [ 364.830627][T26176] EXT4-fs (loop4): Remounting filesystem read-only [ 364.837527][T26176] EXT4-fs (loop4): 1 truncate cleaned up [ 365.040798][T26239] sch_fq: defrate 8 ignored. [ 365.140090][T26259] loop2: detected capacity change from 0 to 512 [ 365.147488][T26259] journal_path: Non-blockdev passed as './bus' [ 365.154456][T26259] EXT4-fs: error: could not find journal device path [ 365.222940][ T3390] hid_parser_main: 33 callbacks suppressed [ 365.222963][ T3390] hid-generic 00A0:0006:0003.0003: unknown main item tag 0x0 [ 365.237208][ T3390] hid-generic 00A0:0006:0003.0003: unknown main item tag 0x0 [ 365.244630][ T3390] hid-generic 00A0:0006:0003.0003: unknown main item tag 0x0 [ 365.252151][ T3390] hid-generic 00A0:0006:0003.0003: unknown main item tag 0x0 [ 365.260381][ T3390] hid-generic 00A0:0006:0003.0003: unknown main item tag 0x0 [ 365.267828][ T3390] hid-generic 00A0:0006:0003.0003: unknown main item tag 0x0 [ 365.276089][ T3390] hid-generic 00A0:0006:0003.0003: unknown main item tag 0x0 [ 365.283572][ T3390] hid-generic 00A0:0006:0003.0003: unknown main item tag 0x0 [ 365.291746][ T3390] hid-generic 00A0:0006:0003.0003: unknown main item tag 0x0 [ 365.299333][ T3390] hid-generic 00A0:0006:0003.0003: unknown main item tag 0x0 [ 365.299597][T26274] sch_fq: defrate 8 ignored. [ 365.313931][ T3390] hid-generic 00A0:0006:0003.0003: hidraw0: HID v0.05 Device [syz1] on syz0 [ 365.397965][T26307] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 365.416811][T26307] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 365.768159][T26388] tipc: Enabled bearer , priority 14 [ 365.822911][T26396] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=26396 comm=syz.0.19551 [ 365.835708][T26396] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=26396 comm=syz.0.19551 [ 365.853355][T26405] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 365.900581][T26405] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 365.943566][T26405] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 366.018118][T26405] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 366.078318][ T1720] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 366.093405][ T1720] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 366.115468][ T1720] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 366.143977][ T1720] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 366.324051][T26487] loop3: detected capacity change from 0 to 512 [ 366.339633][T26489] program syz.4.19584 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 366.340363][T26487] EXT4-fs: Ignoring removed i_version option [ 366.359955][T26487] EXT4-fs mount: 22 callbacks suppressed [ 366.359971][T26487] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 366.429805][ T3326] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 366.517389][T26523] netlink: 'syz.3.19593': attribute type 1 has an invalid length. [ 366.526698][T26513] loop4: detected capacity change from 0 to 1024 [ 366.579383][T26513] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 366.633852][T26540] loop2: detected capacity change from 0 to 512 [ 366.642946][T26540] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 366.676741][T26540] EXT4-fs error (device loop2): xattr_find_entry:337: inode #15: comm syz.2.19597: corrupted xattr entries [ 366.699915][T26540] EXT4-fs (loop2): Remounting filesystem read-only [ 366.711462][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 366.718999][T26540] EXT4-fs (loop2): 1 truncate cleaned up [ 366.730243][T26540] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 366.782500][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 367.110660][T26627] random: crng reseeded on system resumption [ 367.124917][T26629] tipc: Enabled bearer , priority 14 [ 367.205671][T26637] loop3: detected capacity change from 0 to 512 [ 367.215353][T26637] journal_path: Non-blockdev passed as './bus' [ 367.221599][T26637] EXT4-fs: error: could not find journal device path [ 367.381823][T26675] pim6reg: left allmulticast mode [ 367.414978][T26679] tipc: Enabled bearer , priority 14 [ 367.617351][T26717] tipc: Enabled bearer , priority 14 [ 367.628052][T26722] pim6reg: left allmulticast mode [ 367.675260][T26731] loop3: detected capacity change from 0 to 1024 [ 367.682318][T26731] EXT4-fs: Ignoring removed nobh option [ 367.688366][T26731] EXT4-fs: dax option not supported [ 367.734875][T26750] loop2: detected capacity change from 0 to 128 [ 367.762681][T26750] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 367.779454][T26750] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 367.835253][T26757] tipc: Enabled bearer , priority 14 [ 367.845398][ T374] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 367.867515][T26763] random: crng reseeded on system resumption [ 368.098330][T26805] tipc: Enabled bearer , priority 10 [ 368.150180][T26813] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5) [ 368.156885][T26813] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 368.164684][T26813] vhci_hcd vhci_hcd.0: Device attached [ 368.183971][T26814] vhci_hcd: connection closed [ 368.184096][ T374] vhci_hcd: stop threads [ 368.185165][T26817] __nla_validate_parse: 32 callbacks suppressed [ 368.185183][T26817] netlink: 28 bytes leftover after parsing attributes in process `syz.1.19693'. [ 368.188920][ T374] vhci_hcd: release socket [ 368.188989][ T374] vhci_hcd: disconnect device [ 368.219286][ T2969] tipc: Node number set to 4269801494 [ 368.759034][T26832] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 368.769446][T26832] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0 [ 368.786753][T26834] loop3: detected capacity change from 0 to 512 [ 368.795832][T26834] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 368.808945][T26834] EXT4-fs (loop3): 1 truncate cleaned up [ 368.815207][T26834] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 368.838960][T26843] netlink: 40 bytes leftover after parsing attributes in process `syz.1.19702'. [ 368.850112][ T3326] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 368.870353][T26832] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 368.880768][T26832] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0 [ 368.944492][T26832] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 368.954980][T26832] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0 [ 368.981620][T26868] netlink: 8 bytes leftover after parsing attributes in process `syz.1.19707'. [ 368.990816][T26868] netlink: 8 bytes leftover after parsing attributes in process `syz.1.19707'. [ 369.040464][T26832] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 369.050997][T26832] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0 [ 369.067421][T26874] loop2: detected capacity change from 0 to 1024 [ 369.073836][T26880] netlink: 72 bytes leftover after parsing attributes in process `syz.1.19712'. [ 369.076358][T26874] EXT4-fs: Ignoring removed nobh option [ 369.089031][T26874] EXT4-fs: dax option not supported [ 369.115538][T26892] usb usb8: usbfs: process 26892 (syz.1.19713) did not claim interface 0 before use [ 369.168150][ T1720] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 369.177243][ T1720] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 256 - 0 [ 369.216308][ T1720] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 369.224604][ T1720] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 256 - 0 [ 369.245320][ T1720] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 369.253730][ T1720] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 256 - 0 [ 369.274168][ T1720] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 369.282514][ T1720] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 256 - 0 [ 369.516361][T26972] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 369.523079][T26972] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 369.531278][T26972] vhci_hcd vhci_hcd.0: Device attached [ 369.568114][T26972] vhci_hcd vhci_hcd.0: port 0 already used [ 369.585462][T26975] vhci_hcd: connection closed [ 369.586289][T32432] vhci_hcd: stop threads [ 369.596096][T32432] vhci_hcd: release socket [ 369.600555][T32432] vhci_hcd: disconnect device [ 369.676288][T26986] netlink: 40 bytes leftover after parsing attributes in process `syz.0.19743'. [ 369.749336][T26994] netlink: 'syz.0.19748': attribute type 11 has an invalid length. [ 370.187267][T27038] netlink: 8 bytes leftover after parsing attributes in process `syz.1.19759'. [ 370.225282][T27040] loop2: detected capacity change from 0 to 512 [ 370.239585][T27040] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 370.260831][T27040] EXT4-fs (loop2): 1 truncate cleaned up [ 370.272705][T27040] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 370.381504][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 370.391923][T27053] netlink: 248 bytes leftover after parsing attributes in process `syz.4.19766'. [ 370.401139][T27053] NCSI netlink: No device for ifindex 0 [ 370.484354][T27065] loop4: detected capacity change from 0 to 512 [ 370.495652][T27069] loop3: detected capacity change from 0 to 128 [ 370.504745][T27065] EXT4-fs warning (device loop4): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 370.516304][T27065] EXT4-fs warning (device loop4): dx_probe:849: Enable large directory feature to access it [ 370.526441][T27065] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.19770: Corrupt directory, running e2fsck is recommended [ 370.545206][T27069] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 370.557501][T27069] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 370.561103][T27065] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117 [ 370.597163][T27065] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #15: comm syz.4.19770: corrupted in-inode xattr: invalid ea_ino [ 370.632889][T27065] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.19770: couldn't read orphan inode 15 (err -117) [ 370.651476][T32432] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 370.672172][T27065] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 370.741473][T27093] netlink: 28 bytes leftover after parsing attributes in process `syz.3.19778'. [ 370.754773][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 370.915541][T27126] netlink: 'syz.2.19794': attribute type 11 has an invalid length. [ 371.010773][T27137] macvlan1: entered allmulticast mode [ 371.119423][T27149] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 371.130617][T27149] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 371.182345][T27149] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 371.193446][T27149] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 371.216056][T27160] netlink: 16 bytes leftover after parsing attributes in process `syz.3.19807'. [ 371.257101][T27149] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 371.268146][T27149] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 371.342800][T27149] netdevsim netdevsim4 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 371.353166][T27149] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 371.444720][ T1720] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 371.453085][ T1720] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 371.472693][T32432] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 371.481047][T32432] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 371.490096][T32432] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 371.498364][T32432] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 371.541534][T32432] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 371.549899][T32432] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 371.640562][T27220] macvlan1: entered allmulticast mode [ 371.726381][T27232] tipc: Bearer : already 2 bearers with priority 10 [ 371.733925][T27232] tipc: Bearer : trying with adjusted priority [ 371.741015][T27232] tipc: Enabling of bearer rejected, max 3 bearers permitted [ 371.788215][T27236] NCSI netlink: No device for ifindex 0 [ 371.821981][T27239] can0: slcan on ttyS3. [ 371.875978][T27239] can0 (unregistered): slcan off ttyS3. [ 371.893378][T27252] loop3: detected capacity change from 0 to 512 [ 371.926253][T27252] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 371.940437][T27252] ext4 filesystem being mounted at /3895/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 371.985881][ T3326] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 372.172140][ T29] kauditd_printk_skb: 54 callbacks suppressed [ 372.172157][ T29] audit: type=1326 audit(2000000519.362:16323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27290 comm="syz.4.19858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454243efc9 code=0x7ffc0000 [ 372.202102][ T29] audit: type=1326 audit(2000000519.362:16324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27290 comm="syz.4.19858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454243efc9 code=0x7ffc0000 [ 372.227744][ T29] audit: type=1326 audit(2000000519.427:16325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27290 comm="syz.4.19858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f454243efc9 code=0x7ffc0000 [ 372.251598][ T29] audit: type=1326 audit(2000000519.427:16326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27290 comm="syz.4.19858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454243efc9 code=0x7ffc0000 [ 372.275478][ T29] audit: type=1326 audit(2000000519.427:16327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27290 comm="syz.4.19858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454243efc9 code=0x7ffc0000 [ 372.300817][ T29] audit: type=1326 audit(2000000519.493:16328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27290 comm="syz.4.19858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f454243efc9 code=0x7ffc0000 [ 372.324584][ T29] audit: type=1326 audit(2000000519.493:16329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27290 comm="syz.4.19858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454243efc9 code=0x7ffc0000 [ 372.348537][ T29] audit: type=1326 audit(2000000519.493:16330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27290 comm="syz.4.19858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454243efc9 code=0x7ffc0000 [ 372.412566][T27309] netlink: 'syz.4.19866': attribute type 8 has an invalid length. [ 372.444052][T27313] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 372.450617][T27313] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 372.458917][T27313] vhci_hcd vhci_hcd.0: Device attached [ 372.502126][T27313] vhci_hcd vhci_hcd.0: port 0 already used [ 372.523926][T27314] vhci_hcd: connection closed [ 372.524065][ T1720] vhci_hcd: stop threads [ 372.533332][ T1720] vhci_hcd: release socket [ 372.537984][ T1720] vhci_hcd: disconnect device [ 372.573165][T27341] tipc: Enabling of bearer rejected, failed to enable media [ 372.661235][ T29] audit: type=1326 audit(2000000519.829:16331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27353 comm="syz.0.19885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac5c73efc9 code=0x7ffc0000 [ 372.690522][ T29] audit: type=1326 audit(2000000519.829:16332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27353 comm="syz.0.19885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac5c73efc9 code=0x7ffc0000 [ 372.692620][T27360] netlink: 'syz.1.19888': attribute type 10 has an invalid length. [ 372.898624][T27392] netlink: 'syz.4.19905': attribute type 36 has an invalid length. [ 373.025735][T27409] can0: slcan on ttyS3. [ 373.073616][T27409] can0 (unregistered): slcan off ttyS3. [ 373.118793][T20627] hid_parser_main: 5 callbacks suppressed [ 373.118815][T20627] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x4 [ 373.133207][T20627] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x2 [ 373.152366][T20627] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x3 [ 373.162575][T20627] hid-generic 0000:3000000:0000.0004: hidraw0: HID v0.00 Device [sy] on syz0 [ 373.195934][T27445] netlink: 'syz.4.19924': attribute type 3 has an invalid length. [ 373.254182][T27457] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 373.260787][T27457] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 373.269070][T27457] vhci_hcd vhci_hcd.0: Device attached [ 373.284941][T27467] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 373.294945][T27467] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 373.299230][T27457] vhci_hcd vhci_hcd.0: port 0 already used [ 373.304922][T27467] netdevsim netdevsim1 eth3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 373.314787][T27459] vhci_hcd: connection closed [ 373.324574][ T374] vhci_hcd: stop threads [ 373.334062][ T374] vhci_hcd: release socket [ 373.338530][ T374] vhci_hcd: disconnect device [ 373.399007][T27467] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 373.408894][T27467] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 373.419410][T27467] netdevsim netdevsim1 eth2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 373.485756][T27467] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 373.495635][T27467] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 373.505498][T27467] netdevsim netdevsim1 eth1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 373.525034][T27505] loop4: detected capacity change from 0 to 128 [ 373.591929][T27518] loop4: detected capacity change from 0 to 1024 [ 373.609515][T27467] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 373.619424][T27467] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 373.629257][T27467] netdevsim netdevsim1 eth0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 373.642244][T27518] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 373.657157][T27518] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.19941: bg 0: block 464: padding at end of block bitmap is not set [ 373.672388][T27518] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 373.693040][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 373.745067][ T52] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 373.753405][ T52] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 373.761651][ T52] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 20000 - 0 [ 373.775368][ T52] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 373.783667][ T52] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 373.792011][ T52] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 20000 - 0 [ 373.806801][T32432] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 373.815139][T32432] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 373.823476][T32432] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 20000 - 0 [ 373.840380][T32432] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 373.848789][T32432] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 373.857100][T32432] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 20000 - 0 [ 373.873506][T27555] loop4: detected capacity change from 0 to 512 [ 373.886594][T27555] journal_path: Lookup failure for './file0/file0' [ 373.893186][T27555] EXT4-fs: error: could not find journal device path [ 373.910157][T27560] netlink: 'syz.3.19952': attribute type 36 has an invalid length. [ 373.947028][T27565] __nla_validate_parse: 5 callbacks suppressed [ 373.947050][T27565] netlink: 4 bytes leftover after parsing attributes in process `syz.1.19954'. [ 373.978839][T27571] netlink: 'syz.0.19957': attribute type 8 has an invalid length. [ 374.005776][T27575] netdevsim netdevsim4 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 374.015660][T27575] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 374.058806][T27575] netdevsim netdevsim4 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 374.068786][T27575] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 374.095490][T27596] delete_channel: no stack [ 374.100195][T27596] delete_channel: no stack [ 374.111712][T27575] netdevsim netdevsim4 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 374.121594][T27575] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 374.159467][T27602] loop2: detected capacity change from 0 to 164 [ 374.167431][T27602] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 374.179157][T27602] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 374.189476][T27575] netdevsim netdevsim4 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 374.199449][T27575] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 374.259715][ T1720] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 374.268021][ T1720] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 374.285146][ T1720] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 374.293488][ T1720] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 374.306753][ T1720] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 374.315687][ T1720] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 374.332399][ T1720] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 374.340675][ T1720] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 374.401186][T27650] netlink: 47 bytes leftover after parsing attributes in process `syz.3.19985'. [ 374.479273][T27667] netlink: 'syz.1.19990': attribute type 3 has an invalid length. [ 374.488387][T27669] netdevsim netdevsim0 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 374.498285][T27669] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0 [ 374.551387][T27669] netdevsim netdevsim0 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 374.561307][T27669] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0 [ 374.615665][T27669] netdevsim netdevsim0 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 374.625652][T27669] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0 [ 374.690244][T27669] netdevsim netdevsim0 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 374.700183][T27669] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0 [ 374.723959][T19729] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x4 [ 374.731753][T19729] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x2 [ 374.739878][T19729] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x3 [ 374.748383][T19729] hid-generic 0000:3000000:0000.0005: hidraw0: HID v0.00 Device [sy] on syz0 [ 374.770468][ T52] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 374.778797][ T52] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 256 - 0 [ 374.804353][ T52] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 374.812749][ T52] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 256 - 0 [ 374.821984][ T52] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 374.830271][ T52] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 256 - 0 [ 374.857933][T27749] vhci_hcd: invalid port number 96 [ 374.863240][T27749] vhci_hcd: default hub control req: 0300 vfffa i0060 l0 [ 374.898194][T27759] netlink: 8 bytes leftover after parsing attributes in process `syz.4.20022'. [ 374.902032][ T52] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 374.915535][ T52] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 256 - 0 [ 374.973378][T27772] loop4: detected capacity change from 0 to 512 [ 374.991958][T27777] netlink: 4 bytes leftover after parsing attributes in process `syz.0.20031'. [ 375.004032][T27772] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 375.017264][T27781] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.20027'. [ 375.025601][T27772] ext4 filesystem being mounted at /4126/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 375.027333][T27766] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.20027'. [ 375.056840][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 375.130615][T27800] delete_channel: no stack [ 375.136405][T27800] delete_channel: no stack [ 375.141423][T27801] random: crng reseeded on system resumption [ 375.323118][T27831] netlink: 'syz.1.20054': attribute type 10 has an invalid length. [ 375.347871][T27836] netlink: 124 bytes leftover after parsing attributes in process `syz.3.20057'. [ 375.361598][T27831] netlink: 'syz.1.20054': attribute type 10 has an invalid length. [ 375.372791][T27831] dummy0: entered promiscuous mode [ 375.389576][T27831] dummy0: entered allmulticast mode [ 375.406334][T27843] loop4: detected capacity change from 0 to 164 [ 375.413481][T27831] .`: (slave dummy0): Enslaving as an active interface with an up link [ 375.422827][T27843] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 375.432939][T27843] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 375.498250][T27850] loop3: detected capacity change from 0 to 512 [ 375.535514][T27850] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 375.549109][T27850] ext4 filesystem being mounted at /3937/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 375.586562][T27864] netlink: 24 bytes leftover after parsing attributes in process `syz.4.20067'. [ 375.601003][ T3326] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 375.628273][T27864] IPVS: Error connecting to the multicast addr [ 375.753679][T27891] loop4: detected capacity change from 0 to 512 [ 375.769610][T27891] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 375.797683][T27891] ext4 filesystem being mounted at /4142/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 375.837601][ T3316] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 375.931967][T27922] vhci_hcd: invalid port number 96 [ 375.937158][T27922] vhci_hcd: default hub control req: 0300 vfffa i0060 l0 [ 375.950644][T27928] loop3: detected capacity change from 0 to 512 [ 375.978461][T27928] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 376.023633][T27928] ext4 filesystem being mounted at /3943/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 376.081044][ T3326] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 376.190473][T27952] netlink: 47 bytes leftover after parsing attributes in process `syz.0.20101'. [ 376.206535][T27950] random: crng reseeded on system resumption [ 376.411355][T27978] netlink: 124 bytes leftover after parsing attributes in process `syz.4.20113'. [ 376.478261][T27992] random: crng reseeded on system resumption [ 376.619303][T28018] IPVS: Error connecting to the multicast addr [ 376.724250][T28034] netlink: 'syz.0.20133': attribute type 10 has an invalid length. [ 376.762982][T28034] team0: Port device dummy0 added [ 376.783560][T28034] team0: Port device dummy0 removed [ 376.790918][T28034] dummy0: entered promiscuous mode [ 376.799704][T28034] dummy0: entered allmulticast mode [ 376.811368][T28034] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 376.829296][T32432] bridge0: port 1(bond0) entered blocking state [ 376.835727][T32432] bridge0: port 1(bond0) entered forwarding state [ 376.973826][T28071] IPVS: Error connecting to the multicast addr [ 377.401690][T28160] tipc: Enabling of bearer rejected, media not registered [ 377.439141][T28166] team0: Port device dummy0 added [ 377.463950][T28166] team0: Port device dummy0 removed [ 377.487444][T28166] dummy0: entered promiscuous mode [ 377.510632][T28166] dummy0: entered allmulticast mode [ 377.516480][T28166] .`: (slave dummy0): Enslaving as an active interface with an up link [ 377.789568][ T29] kauditd_printk_skb: 6 callbacks suppressed [ 377.789584][ T29] audit: type=1326 audit(2000000524.627:16339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28228 comm="syz.1.20217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d515eefc9 code=0x7ffc0000 [ 377.826249][ T29] audit: type=1326 audit(2000000524.655:16340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28228 comm="syz.1.20217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f1d515eefc9 code=0x7ffc0000 [ 377.850087][ T29] audit: type=1326 audit(2000000524.655:16341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28228 comm="syz.1.20217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d515eefc9 code=0x7ffc0000 [ 377.873948][ T29] audit: type=1326 audit(2000000524.655:16342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28228 comm="syz.1.20217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d515eefc9 code=0x7ffc0000 [ 378.283307][T28293] vhci_hcd: invalid port number 96 [ 378.288694][T28293] vhci_hcd: default hub control req: 2000 vfffc i0060 l7 [ 378.590281][ T29] audit: type=1326 audit(2000000525.366:16343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28332 comm="syz.2.20264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aeafeefc9 code=0x7ffc0000 [ 378.614287][ T29] audit: type=1326 audit(2000000525.366:16344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28332 comm="syz.2.20264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aeafeefc9 code=0x7ffc0000 [ 378.639311][ T29] audit: type=1326 audit(2000000525.376:16345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28332 comm="syz.2.20264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=253 compat=0 ip=0x7f1aeafeefc9 code=0x7ffc0000 [ 378.663133][ T29] audit: type=1326 audit(2000000525.376:16346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28332 comm="syz.2.20264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aeafeefc9 code=0x7ffc0000 [ 378.686869][ T29] audit: type=1326 audit(2000000525.394:16347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28332 comm="syz.2.20264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aeafeefc9 code=0x7ffc0000 [ 379.305377][T28407] siw: device registration error -23 [ 379.313924][T28407] smc: removing ib device syz2 [ 379.390640][ T29] audit: type=1400 audit(2000000526.114:16348): avc: denied { view } for pid=28424 comm="syz.3.20290" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1 [ 379.465352][T28434] tipc: Enabling of bearer rejected, failed to enable media [ 379.600325][T28452] SELinux: Context @“|Á0®A•ÙWiäS‰¾Ñ±4À$€ œÔEtÚyÖgB±E¼EÇAŠ2zL³»—p{c|^;tݾîHRן臟Áñg is not valid (left unmapped). [ 379.675561][T28474] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 379.687930][T28474] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 379.836454][T28527] __nla_validate_parse: 17 callbacks suppressed [ 379.836474][T28527] netlink: 20 bytes leftover after parsing attributes in process `syz.0.20322'. [ 381.253352][T28718] netlink: 20 bytes leftover after parsing attributes in process `syz.1.20380'. [ 381.428851][T28757] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 381.444464][T28750] hub 2-0:1.0: USB hub found [ 381.449574][T28750] hub 2-0:1.0: 8 ports detected [ 381.597633][T28791] netlink: 4 bytes leftover after parsing attributes in process `syz.2.20412'. [ 381.866839][T28841] netlink: 4 bytes leftover after parsing attributes in process `syz.4.20436'. [ 381.901081][T28848] random: crng reseeded on system resumption [ 381.935100][T28854] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 381.950311][T28854] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 382.074111][T28871] sg_read: process 8519 (syz.4.20449) changed security contexts after opening file descriptor, this is not allowed. [ 382.763665][T28908] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 382.783169][T28908] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 383.229718][ T29] kauditd_printk_skb: 29 callbacks suppressed [ 383.229735][ T29] audit: type=1326 audit(2000000529.706:16378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28974 comm="syz.1.20495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d515eefc9 code=0x7ffc0000 [ 383.264005][ T29] audit: type=1326 audit(2000000529.743:16379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28974 comm="syz.1.20495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d515eefc9 code=0x7ffc0000 [ 383.290333][ T29] audit: type=1326 audit(2000000529.743:16380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28974 comm="syz.1.20495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f1d515eefc9 code=0x7ffc0000 [ 383.316037][ T29] audit: type=1326 audit(2000000529.743:16381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28974 comm="syz.1.20495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d515eefc9 code=0x7ffc0000 [ 383.324426][T28983] netlink: 4 bytes leftover after parsing attributes in process `syz.2.20501'. [ 383.343084][ T29] audit: type=1326 audit(2000000529.743:16382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28974 comm="syz.1.20495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d515eefc9 code=0x7ffc0000 [ 383.379339][ T29] audit: type=1400 audit(2000000529.828:16383): avc: denied { write } for pid=28985 comm="syz.3.20502" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1 [ 383.425637][T28992] netlink: 1 bytes leftover after parsing attributes in process `syz.1.20505'. [ 383.544013][T29019] netlink: 8 bytes leftover after parsing attributes in process `syz.1.20515'. [ 383.553157][T29019] validate_nla: 5 callbacks suppressed [ 383.553174][T29019] netlink: 'syz.1.20515': attribute type 1 has an invalid length. [ 383.566608][T29019] netlink: 'syz.1.20515': attribute type 1 has an invalid length. [ 383.636105][T29032] netlink: 104 bytes leftover after parsing attributes in process `syz.3.20521'. [ 383.701655][T29041] xt_l2tp: invalid flags combination: 8 [ 383.923032][T29075] netlink: 1 bytes leftover after parsing attributes in process `syz.4.20549'. [ 384.067591][T29100] netlink: 8 bytes leftover after parsing attributes in process `syz.3.20554'. [ 384.076797][T29100] netlink: 'syz.3.20554': attribute type 1 has an invalid length. [ 384.084625][T29100] netlink: 'syz.3.20554': attribute type 1 has an invalid length. [ 384.444841][T29159] netlink: 'syz.2.20583': attribute type 1 has an invalid length. [ 384.466127][T29163] netlink: 'syz.4.20585': attribute type 11 has an invalid length. [ 384.487755][T29165] random: crng reseeded on system resumption [ 384.539587][ T29] audit: type=1326 audit(2000000530.941:16384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29172 comm="syz.3.20590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f372e40efc9 code=0x7ffc0000 [ 384.566299][ T29] audit: type=1326 audit(2000000530.941:16385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29172 comm="syz.3.20590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f372e40efc9 code=0x7ffc0000 [ 384.593362][ T29] audit: type=1326 audit(2000000530.987:16386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29172 comm="syz.3.20590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7f372e40efc9 code=0x7ffc0000 [ 384.619046][ T29] audit: type=1326 audit(2000000530.987:16387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29172 comm="syz.3.20590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f372e40efc9 code=0x7ffc0000 [ 385.086149][T29220] netlink: 'syz.3.20613': attribute type 3 has an invalid length. [ 385.225568][T29236] xt_l2tp: invalid flags combination: 8 [ 385.244908][T29238] __nla_validate_parse: 3 callbacks suppressed [ 385.244950][T29238] netlink: 12 bytes leftover after parsing attributes in process `syz.1.20617'. [ 385.463180][T29259] netlink: 128 bytes leftover after parsing attributes in process `syz.0.20629'. [ 385.463199][T29259] netlink: 'syz.0.20629': attribute type 1 has an invalid length. [ 385.529937][T29266] netlink: 'syz.4.20635': attribute type 3 has an invalid length. [ 385.546001][T29268] netlink: 'syz.1.20634': attribute type 11 has an invalid length. [ 386.106292][T29316] netlink: 4 bytes leftover after parsing attributes in process `syz.2.20654'. [ 386.297504][T29359] netlink: 65039 bytes leftover after parsing attributes in process `syz.0.20675'. [ 386.463605][T29387] bridge0: port 2(veth0_to_bridge) entered blocking state [ 386.470866][T29387] bridge0: port 2(veth0_to_bridge) entered disabled state [ 386.495741][T29387] veth0_to_bridge: entered allmulticast mode [ 386.514402][T29387] veth0_to_bridge: entered promiscuous mode [ 386.547350][T29399] tipc: Enabling of bearer rejected, failed to enable media [ 386.555833][T29403] netlink: 240 bytes leftover after parsing attributes in process `syz.1.20697'. [ 386.610016][T29409] netlink: 83992 bytes leftover after parsing attributes in process `syz.0.20701'. [ 386.635034][T29409] netlink: zone id is out of range [ 386.640267][T29409] netlink: zone id is out of range [ 386.661028][T29409] netlink: set zone limit has 8 unknown bytes [ 386.694368][T29427] bridge0: port 2(veth0_to_bridge) entered blocking state [ 386.704308][T29427] bridge0: port 2(veth0_to_bridge) entered disabled state [ 386.712146][T29427] veth0_to_bridge: entered allmulticast mode [ 386.720726][T29427] veth0_to_bridge: entered promiscuous mode [ 386.727873][T29427] bridge0: port 2(veth0_to_bridge) entered blocking state [ 386.735069][T29427] bridge0: port 2(veth0_to_bridge) entered forwarding state [ 386.868728][T29445] 9pnet_fd: Insufficient options for proto=fd [ 387.094112][T29489] netlink: 4 bytes leftover after parsing attributes in process `syz.0.20736'. [ 387.713118][T29609] netlink: 83992 bytes leftover after parsing attributes in process `syz.2.20790'. [ 387.724856][T29609] netlink: zone id is out of range [ 387.730017][T29609] netlink: zone id is out of range [ 387.746029][T29609] netlink: set zone limit has 8 unknown bytes [ 388.072067][T29649] smc: net device bond0 applied user defined pnetid SYZ0 [ 388.558144][T29731] tipc: Enabling of bearer rejected, failed to enable media [ 388.559361][T29732] ipt_rpfilter: only valid in 'raw' or 'mangle' table, not '' [ 388.605619][ T29] kauditd_printk_skb: 36 callbacks suppressed [ 388.605645][ T29] audit: type=1400 audit(2000000534.738:16424): avc: denied { getopt } for pid=29737 comm="syz.3.20850" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 388.732530][ T29] audit: type=1400 audit(2000000534.859:16425): avc: denied { connect } for pid=29762 comm="syz.3.20862" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 388.770891][ T29] audit: type=1326 audit(2000000534.859:16426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29764 comm="syz.2.20864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aeafeefc9 code=0x7ffc0000 [ 388.794734][ T29] audit: type=1326 audit(2000000534.878:16427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29764 comm="syz.2.20864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=63 compat=0 ip=0x7f1aeafeefc9 code=0x7ffc0000 [ 388.818391][ T29] audit: type=1326 audit(2000000534.878:16428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29764 comm="syz.2.20864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aeafeefc9 code=0x7ffc0000 [ 388.842346][ T29] audit: type=1326 audit(2000000534.878:16429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29764 comm="syz.2.20864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aeafeefc9 code=0x7ffc0000 [ 388.881967][T29773] netlink: 324 bytes leftover after parsing attributes in process `syz.3.20868'. [ 388.896085][T29776] .`: (slave dummy0): Releasing backup interface [ 388.904615][T29779] netlink: 104 bytes leftover after parsing attributes in process `syz.4.20870'. [ 388.915082][T29776] dummy0: left promiscuous mode [ 388.922434][T29776] dummy0: left allmulticast mode [ 388.954674][T29787] validate_nla: 4 callbacks suppressed [ 388.954763][T29787] netlink: 'syz.2.20869': attribute type 10 has an invalid length. [ 388.957095][T29776] team0: Port device dummy0 added [ 388.986924][T29787] team0: Port device dummy0 removed [ 388.999836][T29787] dummy0: entered promiscuous mode [ 389.005534][T29787] dummy0: entered allmulticast mode [ 389.012250][T29787] .`: (slave dummy0): Enslaving as an active interface with an up link [ 389.214341][T29820] /dev/loop2: Can't lookup blockdev [ 389.921585][T29872] usb usb8: usbfs: process 29872 (syz.2.20914) did not claim interface 0 before use [ 390.293829][ T29] audit: type=1400 audit(2000000536.318:16430): avc: denied { lock } for pid=29950 comm="syz.3.20950" path="/dev/input/event1" dev="devtmpfs" ino=243 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 390.498979][T29990] tipc: Bearer : already 2 bearers with priority 10 [ 390.506287][T29990] tipc: Bearer : trying with adjusted priority [ 390.513132][T29990] tipc: Enabling of bearer rejected, max 3 bearers permitted [ 390.547290][T29989] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter' [ 390.777613][T30034] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0) [ 390.789676][T30034] SELinux: failed to load policy [ 390.891181][ T29] audit: type=1400 audit(2000000536.880:16431): avc: denied { mount } for pid=30054 comm="syz.1.20998" name="/" dev="ramfs" ino=147168 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1 [ 391.022179][T30084] random: crng reseeded on system resumption [ 391.310528][T30146] netlink: 'syz.2.21030': attribute type 3 has an invalid length. [ 391.629811][T30192] ipvlan3: entered promiscuous mode [ 391.740964][T30223] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=30223 comm=syz.0.21065 [ 391.741786][ T29] audit: type=1400 audit(2000000537.665:16432): avc: denied { nlmsg_write } for pid=30222 comm="syz.0.21065" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1 [ 392.059529][ T29] audit: type=1326 audit(2000000537.964:16433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30269 comm="syz.3.21088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f372e40efc9 code=0x7ffc0000 [ 392.296229][T30302] __nla_validate_parse: 8 callbacks suppressed [ 392.296250][T30302] netlink: 8 bytes leftover after parsing attributes in process `syz.1.21103'. [ 392.311678][T30302] netlink: 4 bytes leftover after parsing attributes in process `syz.1.21103'. [ 392.320816][T30302] netlink: 'syz.1.21103': attribute type 18 has an invalid length. [ 392.328726][T30302] netlink: 8 bytes leftover after parsing attributes in process `syz.1.21103'. [ 392.652749][T30356] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1536) ! [ 393.929676][T30546] netlink: 83992 bytes leftover after parsing attributes in process `syz.4.21180'. [ 393.952089][T30546] netlink: zone id is out of range [ 393.959353][T30546] netlink: zone id is out of range [ 393.975739][T30546] netlink: set zone limit has 8 unknown bytes [ 394.072974][T30559] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3) [ 394.079697][T30559] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 394.087270][T30559] vhci_hcd vhci_hcd.0: Device attached [ 394.095017][T30561] usbip_core: unknown command [ 394.099811][T30561] vhci_hcd: unknown pdu 2844066640 [ 394.105139][T30561] usbip_core: unknown command [ 394.113014][ T374] vhci_hcd: stop threads [ 394.117343][ T374] vhci_hcd: release socket [ 394.121774][ T374] vhci_hcd: disconnect device [ 394.316666][T30572] netlink: 240 bytes leftover after parsing attributes in process `syz.3.21190'. [ 394.443924][T30580] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.21194'. [ 394.466397][ T29] kauditd_printk_skb: 26 callbacks suppressed [ 394.466418][ T29] audit: type=1326 audit(2000000540.218:16460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30581 comm="syz.1.21195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d515eefc9 code=0x7ffc0000 [ 394.467478][ T29] audit: type=1326 audit(2000000540.218:16461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30581 comm="syz.1.21195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f1d515eefc9 code=0x7ffc0000 [ 394.467526][ T29] audit: type=1326 audit(2000000540.218:16462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30581 comm="syz.1.21195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d515eefc9 code=0x7ffc0000 [ 394.499285][ T29] audit: type=1326 audit(2000000540.237:16463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30581 comm="syz.1.21195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d515eefc9 code=0x7ffc0000 [ 394.500505][T30584] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0) [ 394.500532][T30584] SELinux: failed to load policy [ 394.714769][ T29] audit: type=1326 audit(2000000540.452:16464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30588 comm="syz.1.21199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d515eefc9 code=0x7ffc0000 [ 394.714834][ T29] audit: type=1326 audit(2000000540.452:16465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30588 comm="syz.1.21199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d515eefc9 code=0x7ffc0000 [ 394.715900][ T29] audit: type=1326 audit(2000000540.452:16466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30588 comm="syz.1.21199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1d515eefc9 code=0x7ffc0000 [ 394.716068][ T29] audit: type=1326 audit(2000000540.452:16467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30588 comm="syz.1.21199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d515eefc9 code=0x7ffc0000 [ 394.716193][ T29] audit: type=1326 audit(2000000540.452:16468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30588 comm="syz.1.21199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d515eefc9 code=0x7ffc0000 [ 394.716528][ T29] audit: type=1326 audit(2000000540.452:16469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30588 comm="syz.1.21199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=232 compat=0 ip=0x7f1d515eefc9 code=0x7ffc0000 [ 395.370764][T30660] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0) [ 395.379646][T30660] SELinux: failed to load policy [ 395.876806][T30700] tipc: Bearer : already 2 bearers with priority 10 [ 395.886384][T30700] tipc: Bearer : trying with adjusted priority [ 395.893527][T30700] tipc: Enabling of bearer rejected, max 3 bearers permitted [ 396.034169][T30711] ipt_rpfilter: only valid in 'raw' or 'mangle' table, not '' [ 396.275627][T30741] tipc: Enabling of bearer rejected, failed to enable media [ 396.566172][T30770] usb usb8: usbfs: process 30770 (syz.1.21284) did not claim interface 0 before use [ 396.647061][T30779] usb usb3: usbfs: process 30779 (syz.1.21288) did not claim interface 0 before use [ 396.676757][T30779] vhci_hcd: default hub control req: 010b v0000 i0000 l0 [ 396.840759][T30797] netlink: 60 bytes leftover after parsing attributes in process `syz.2.21295'. [ 397.141286][T30810] netlink: 'syz.2.21312': attribute type 10 has an invalid length. [ 397.187986][T30813] netlink: 'syz.2.21312': attribute type 10 has an invalid length. [ 397.269725][T30810] .`: (slave dummy0): Releasing backup interface [ 397.276564][T30810] dummy0: left promiscuous mode [ 397.285760][T30810] dummy0: left allmulticast mode [ 397.304763][T30810] team0: Port device dummy0 added [ 397.327391][T30813] team0: Port device dummy0 removed [ 397.337205][T30813] dummy0: entered promiscuous mode [ 397.356798][T30813] dummy0: entered allmulticast mode [ 397.379143][T30813] .`: (slave dummy0): Enslaving as an active interface with an up link [ 397.449475][T30823] netlink: 'syz.3.21307': attribute type 10 has an invalid length. [ 397.467103][T30823] netlink: 'syz.3.21307': attribute type 10 has an invalid length. [ 397.662915][T30839] vhci_hcd: invalid port number 129 [ 397.668300][T30839] vhci_hcd: default hub control req: 020f v0004 i0081 l0 [ 398.278556][T30911] netlink: 'syz.1.21347': attribute type 10 has an invalid length. [ 398.326219][T30911] .`: (slave dummy0): Releasing backup interface [ 398.332600][T30916] netlink: 'syz.1.21347': attribute type 10 has an invalid length. [ 398.348274][T30911] dummy0: left promiscuous mode [ 398.356238][T30911] dummy0: left allmulticast mode [ 398.366604][T30916] dummy0: entered promiscuous mode [ 398.371944][T30916] dummy0: entered allmulticast mode [ 398.377822][T30916] .`: (slave dummy0): Enslaving as an active interface with an up link [ 398.505172][T30937] random: crng reseeded on system resumption [ 398.622029][T30953] IPVS: ip_vs_edit_dest(): lower threshold is higher than upper threshold [ 399.052715][T30994] can0: slcan on ptm0. [ 399.119216][T30993] can0 (unregistered): slcan off ptm0. [ 399.208995][T31012] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 ! [ 399.226152][T31011] netlink: 'syz.1.21386': attribute type 10 has an invalid length. [ 399.276072][T31019] netlink: 'syz.1.21386': attribute type 10 has an invalid length. [ 399.304537][T31011] .`: (slave dummy0): Releasing backup interface [ 399.319858][T31011] dummy0: left promiscuous mode [ 399.333050][T31011] dummy0: left allmulticast mode [ 399.343305][T31019] dummy0: entered promiscuous mode [ 399.357574][T31019] dummy0: entered allmulticast mode [ 399.385725][T31019] .`: (slave dummy0): Enslaving as an active interface with an up link [ 399.422061][T31033] vhci_hcd: invalid port number 129 [ 399.427328][T31033] vhci_hcd: default hub control req: 020f v0004 i0081 l0 [ 399.570669][T31051] binfmt_misc: register: failed to install interpreter file ./file0 [ 399.971387][ T29] kauditd_printk_skb: 36 callbacks suppressed [ 399.971405][ T29] audit: type=1326 audit(2000000545.363:16506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31088 comm="syz.1.21423" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f1d515eefc9 code=0x0 [ 400.190321][ T29] audit: type=1326 audit(2000000545.578:16507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31126 comm="syz.4.21430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454243efc9 code=0x7ffc0000 [ 400.221574][ T29] audit: type=1326 audit(2000000545.596:16508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31126 comm="syz.4.21430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7f454243efc9 code=0x7ffc0000 [ 400.245493][ T29] audit: type=1326 audit(2000000545.596:16509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31126 comm="syz.4.21430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454243efc9 code=0x7ffc0000 [ 400.269203][ T29] audit: type=1326 audit(2000000545.596:16510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31126 comm="syz.4.21430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454243efc9 code=0x7ffc0000 [ 400.407968][T31151] netlink: 104 bytes leftover after parsing attributes in process `syz.2.21438'. [ 400.440252][T31153] can0: slcan on ptm0. [ 400.500303][T31152] can0 (unregistered): slcan off ptm0. [ 400.539625][ T29] audit: type=1400 audit(2000000545.896:16511): avc: denied { mounton } for pid=31168 comm="syz.3.21444" path="/4222/file0" dev="tmpfs" ino=21453 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 400.539729][T31169] tmpfs: Bad value for 'mpol' [ 400.654360][T31180] netlink: 'syz.4.21449': attribute type 11 has an invalid length. [ 400.662472][T31180] netlink: 32 bytes leftover after parsing attributes in process `syz.4.21449'. [ 400.689149][ T29] audit: type=1400 audit(2000000546.036:16512): avc: denied { append } for pid=31185 comm="syz.2.21452" name="ptp0" dev="devtmpfs" ino=247 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 400.795031][T31197] netlink: 14593 bytes leftover after parsing attributes in process `syz.2.21457'. [ 400.969480][T31221] bond5: option lacp_rate: invalid value (12) [ 400.988854][T31221] bond5 (unregistering): Released all slaves [ 401.110908][T31304] netlink: 32 bytes leftover after parsing attributes in process `syz.1.21474'. [ 401.499872][T31357] netlink: 8 bytes leftover after parsing attributes in process `syz.2.21495'. [ 401.575349][T31361] IPVS: Error connecting to the multicast addr [ 401.720266][T31380] netlink: 68 bytes leftover after parsing attributes in process `syz.1.21505'. [ 401.890476][ T29] audit: type=1400 audit(2000000547.168:16513): avc: denied { ioctl } for pid=31393 comm="syz.1.21513" path="socket:[151893]" dev="sockfs" ino=151893 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 402.518355][T31488] netlink: 108 bytes leftover after parsing attributes in process `syz.3.21543'. [ 402.592706][ T29] audit: type=1326 audit(2000000547.813:16514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31496 comm="syz.4.21549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454243efc9 code=0x7ffc0000 [ 402.632627][ T29] audit: type=1326 audit(2000000547.813:16515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=31496 comm="syz.4.21549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f454243efc9 code=0x7ffc0000 [ 402.746040][T31509] netlink: 4 bytes leftover after parsing attributes in process `syz.2.21555'. [ 402.828353][T31522] netlink: 8 bytes leftover after parsing attributes in process `syz.2.21561'. [ 403.909445][ T10] kernel read not supported for file /sysvipc/msg (pid: 10 comm: kworker/0:1) [ 404.164114][T31653] netlink: 71 bytes leftover after parsing attributes in process `syz.3.21622'. [ 404.362258][ T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 404.369792][ T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 404.377261][ T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 404.384727][ T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 404.392408][ T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 404.399999][ T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 404.407517][ T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 404.414987][ T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 404.422483][ T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 404.429998][ T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 404.454499][ T10] hid-generic 0000:0000:0000.0006: hidraw0: HID v0.00 Device [syz0] on syz1 [ 405.286828][T31816] block device autoloading is deprecated and will be removed. [ 405.339322][T31829] netlink: 'syz.1.21700': attribute type 12 has an invalid length. [ 405.347367][T31829] netlink: 'syz.1.21700': attribute type 11 has an invalid length. [ 405.822021][ T29] kauditd_printk_skb: 31 callbacks suppressed [ 405.822039][ T29] audit: type=1400 audit(2000000550.834:16547): avc: denied { read write } for pid=3325 comm="syz-executor" name="loop2" dev="devtmpfs" ino=2833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 406.016202][T31883] __nla_validate_parse: 3 callbacks suppressed [ 406.016222][T31883] netlink: 68 bytes leftover after parsing attributes in process `syz.1.21725'. [ 406.035288][T31883] netlink: 8 bytes leftover after parsing attributes in process `syz.1.21725'. [ 406.184156][T31900] netlink: 224 bytes leftover after parsing attributes in process `syz.1.21732'. [ 406.194265][T31900] netlink: 16 bytes leftover after parsing attributes in process `syz.1.21732'. [ 406.493438][T31934] netlink: 'syz.4.21749': attribute type 1 has an invalid length. [ 406.501569][T31934] netlink: 'syz.4.21749': attribute type 2 has an invalid length. [ 406.529520][T31934] netlink: 8 bytes leftover after parsing attributes in process `syz.4.21749'. [ 406.594732][T31945] netlink: 'syz.1.21753': attribute type 10 has an invalid length. [ 406.597768][T31946] netlink: 8 bytes leftover after parsing attributes in process `syz.4.21754'. [ 406.602817][T31945] netlink: 152 bytes leftover after parsing attributes in process `syz.1.21753'. [ 406.623083][T31946] netlink: 12 bytes leftover after parsing attributes in process `syz.4.21754'. [ 406.954728][T31989] tmpfs: Bad value for 'mpol' [ 406.971905][T31991] netlink: 104 bytes leftover after parsing attributes in process `syz.3.21776'. [ 407.017157][T31995] netlink: 8 bytes leftover after parsing attributes in process `syz.4.21779'. [ 407.027021][T31995] netlink: 'syz.4.21779': attribute type 12 has an invalid length. [ 407.027453][T31999] block device autoloading is deprecated and will be removed. [ 407.036480][T31995] netlink: 'syz.4.21779': attribute type 11 has an invalid length. [ 407.178250][T32018] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5) [ 407.184926][T32018] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 407.194770][T32018] vhci_hcd vhci_hcd.0: Device attached [ 407.227546][T32024] vhci_hcd: connection closed [ 407.227799][T32440] vhci_hcd: stop threads [ 407.236946][T32440] vhci_hcd: release socket [ 407.241375][T32440] vhci_hcd: disconnect device [ 407.274449][T32033] smc: net device bond0 applied user defined pnetid SYZ2 [ 407.867084][T32112] netlink: 'syz.2.21821': attribute type 9 has an invalid length. [ 408.081423][ T29] audit: type=1400 audit(2000000552.957:16548): avc: denied { mounton } for pid=32138 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 408.215155][T32157] netlink: 'syz.4.21839': attribute type 11 has an invalid length. [ 408.382138][T32207] bond6: option lacp_rate: invalid value (12) [ 408.391597][T32207] bond6 (unregistering): Released all slaves [ 408.416615][ T52] netdevsim netdevsim0 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 408.426557][ T52] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0 [ 408.501760][ T52] netdevsim netdevsim0 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 408.511658][ T52] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0 [ 408.546033][T32138] chnl_net:caif_netlink_parms(): no params data found [ 408.578768][ T52] netdevsim netdevsim0 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 408.588799][ T52] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0 [ 408.628408][T32138] bridge0: port 1(bridge_slave_0) entered blocking state [ 408.635551][T32138] bridge0: port 1(bridge_slave_0) entered disabled state [ 408.642986][T32138] bridge_slave_0: entered allmulticast mode [ 408.651424][T32138] bridge_slave_0: entered promiscuous mode [ 408.658229][T32138] bridge0: port 2(bridge_slave_1) entered blocking state [ 408.665336][T32138] bridge0: port 2(bridge_slave_1) entered disabled state [ 408.674619][T32138] bridge_slave_1: entered allmulticast mode [ 408.681286][T32138] bridge_slave_1: entered promiscuous mode [ 408.697565][ T52] netdevsim netdevsim0 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 408.707514][ T52] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0 [ 408.727047][T32138] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 408.739403][T32138] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 408.764470][T32138] team0: Port device team_slave_0 added [ 408.771449][T32138] team0: Port device team_slave_1 added [ 408.794227][T32138] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 408.803037][T32138] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 408.830684][T32138] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 408.842635][T32138] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 408.851777][T32138] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 408.879773][T32138] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 408.919035][T32138] hsr_slave_0: entered promiscuous mode [ 408.925471][T32138] hsr_slave_1: entered promiscuous mode [ 408.931534][T32138] debugfs: 'hsr0' already exists in 'hsr' [ 408.938957][T32138] Cannot create hsr debugfs directory [ 408.996601][ T52] veth0_to_bridge: left allmulticast mode [ 409.002554][ T52] veth0_to_bridge: left promiscuous mode [ 409.008464][ T52] bridge0: port 2(veth0_to_bridge) entered disabled state [ 409.016471][ T52] bond0: left allmulticast mode [ 409.023072][ T52] dummy0: left allmulticast mode [ 409.028219][ T52] bond0: left promiscuous mode [ 409.033157][ T52] dummy0: left promiscuous mode [ 409.038299][ T52] bridge0: port 1(bond0) entered disabled state [ 409.049656][ T52] tipc: Resetting bearer [ 409.094369][ T52] tipc: Disabling bearer [ 409.100518][ T2969] SELinux: failure in sel_netif_sid_slow(), invalid network interface (72) [ 409.138100][ T52] dvmrp1 (unregistering): left allmulticast mode [ 409.409282][T32619] loop2: detected capacity change from 0 to 512 [ 409.423732][T32619] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #18: comm syz.2.21870: iget: bad extra_isize 90 (inode size 256) [ 409.441187][T32619] EXT4-fs (loop2): Remounting filesystem read-only [ 409.447934][T32619] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -30) [ 409.457033][T32619] EXT4-fs (loop2): 1 orphan inode deleted [ 409.463313][T32619] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 409.466543][T32626] ip6t_rpfilter: unknown options [ 409.491951][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 409.504203][ T52] bond0 (unregistering): (slave dummy0): Releasing backup interface [ 409.516230][ T52] bond0 (unregistering): Released all slaves [ 409.525587][ T52] bond1 (unregistering): Released all slaves [ 409.535807][ T52] bond2 (unregistering): Released all slaves [ 409.544580][ T52] bond3 (unregistering): Released all slaves [ 409.553924][ T52] bond4 (unregistering): Released all slaves [ 409.562956][ T52] bond5 (unregistering): Released all slaves [ 409.573580][ T52] bond6 (unregistering): Released all slaves [ 409.582710][ T52] bond7 (unregistering): Released all slaves [ 409.655179][ T52] tipc: Disabling bearer [ 409.660542][ T52] tipc: Disabling bearer [ 409.665869][ T52] tipc: Left network mode [ 409.710945][ T52] hsr_slave_0: left promiscuous mode [ 409.891771][T32138] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 409.911095][T32138] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 409.930469][T32138] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 409.952612][T32138] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 410.035259][T32138] 8021q: adding VLAN 0 to HW filter on device bond0 [ 410.054129][T32138] 8021q: adding VLAN 0 to HW filter on device team0 [ 410.074942][ T374] bridge0: port 1(bridge_slave_0) entered blocking state [ 410.082142][ T374] bridge0: port 1(bridge_slave_0) entered forwarding state [ 410.091661][T32729] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=40 sclass=netlink_audit_socket pid=32729 comm=syz.1.21901 [ 410.108161][ T374] bridge0: port 2(bridge_slave_1) entered blocking state [ 410.115290][ T374] bridge0: port 2(bridge_slave_1) entered forwarding state [ 410.124997][T32732] xt_connbytes: Forcing CT accounting to be enabled [ 410.132812][ T29] audit: type=1400 audit(2000000554.874:16549): avc: denied { egress } for pid=2969 comm="kworker/0:2" daddr=ff02::16 netif=gretap0 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:netif_t tclass=netif permissive=1 [ 410.155607][ T29] audit: type=1400 audit(2000000554.874:16550): avc: denied { sendto } for pid=2969 comm="kworker/0:2" daddr=ff02::16 netif=gretap0 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:node_t tclass=node permissive=1 [ 410.191674][T32138] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 410.218892][ T3390] hid_parser_main: 33 callbacks suppressed [ 410.218921][ T3390] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0 [ 410.232366][ T3390] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0 [ 410.241200][ T3390] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0 [ 410.248678][ T3390] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0 [ 410.254021][T32138] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 410.256151][ T3390] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0 [ 410.271822][ T3390] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0 [ 410.279240][ T3390] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0 [ 410.288097][ T3390] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0 [ 410.295668][ T3390] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0 [ 410.304592][ T3390] hid-generic 0003:0003:0000.0007: unknown main item tag 0x0 [ 410.316181][ T3390] hid-generic 0003:0003:0000.0007: hidraw0: USB HID v0.00 Device [syz0] on syz1 [ 410.329506][ T52] IPVS: stop unused estimator thread 0... [ 410.392463][T32763] tipc: Enabling of bearer rejected, max 3 bearers permitted [ 410.549773][T32138] veth0_vlan: entered promiscuous mode [ 410.579007][T32138] veth1_vlan: entered promiscuous mode [ 410.635247][T32138] veth0_macvtap: entered promiscuous mode [ 410.649128][T32138] veth1_macvtap: entered promiscuous mode [ 410.675749][T32138] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 410.702605][T32138] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 410.738560][ T31] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 410.754758][ T31] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 410.784963][ T31] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 410.785010][ T29] audit: type=1400 audit(2000000555.482:16551): avc: denied { mounton } for pid=32138 comm="syz-executor" path="/root/syzkaller.6MXauF/syz-tmp" dev="sda1" ino=2047 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 410.802250][ T31] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 410.906545][ T29] audit: type=1400 audit(2000000555.520:16552): avc: denied { mounton } for pid=32138 comm="syz-executor" path="/root/syzkaller.6MXauF/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 410.933800][ T29] audit: type=1400 audit(2000000555.520:16553): avc: denied { mounton } for pid=32138 comm="syz-executor" path="/root/syzkaller.6MXauF/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=154921 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 410.961743][ T29] audit: type=1400 audit(2000000555.529:16554): avc: denied { mounton } for pid=32138 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=536 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 410.985031][ T29] audit: type=1400 audit(2000000555.529:16555): avc: denied { mount } for pid=32138 comm="syz-executor" name="/" dev="gadgetfs" ino=3674 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 411.268696][ T29] audit: type=1326 audit(2000000555.941:16556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=435 comm="syz.3.21967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f372e40efc9 code=0x7ffc0000 [ 411.292406][ T29] audit: type=1326 audit(2000000555.941:16557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=435 comm="syz.3.21967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=245 compat=0 ip=0x7f372e40efc9 code=0x7ffc0000 [ 411.316050][ T29] audit: type=1326 audit(2000000555.941:16558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=435 comm="syz.3.21967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f372e40efc9 code=0x7ffc0000 [ 411.339993][ T29] audit: type=1326 audit(2000000555.941:16559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=435 comm="syz.3.21967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f372e40efc9 code=0x7ffc0000 [ 411.393527][ T449] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5) [ 411.400093][ T449] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 411.407796][ T449] vhci_hcd vhci_hcd.0: Device attached [ 411.423567][ T450] vhci_hcd: connection closed [ 411.423755][ T52] vhci_hcd: stop threads [ 411.432968][ T52] vhci_hcd: release socket [ 411.437480][ T52] vhci_hcd: disconnect device [ 412.228797][ T561] usb usb7: usbfs: process 561 (syz.5.22025) did not claim interface 0 before use [ 412.250568][ T565] loop2: detected capacity change from 0 to 512 [ 412.323759][ T565] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 412.336885][ T565] ext4 filesystem being mounted at /4422/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 412.348449][ T3390] hid-generic 0008:0006:0007.0008: hidraw0: HID v0.0b Device [syz1] on syz1 [ 412.369676][ T565] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.22027: bg 0: block 145: padding at end of block bitmap is not set [ 412.447871][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 412.859704][ T659] __nla_validate_parse: 23 callbacks suppressed [ 412.859722][ T659] netlink: 8 bytes leftover after parsing attributes in process `syz.2.22066'. [ 412.943640][ T669] 9pnet_fd: Insufficient options for proto=fd [ 412.951612][ T667] smc: net device ip_vti0 erased user defined pnetid SYZ0 [ 412.958924][ T667] smc: net device bond0 erased user defined pnetid SYZ0 [ 413.140885][ T693] loop5: detected capacity change from 0 to 512 [ 413.163861][ T693] EXT4-fs: Ignoring removed nomblk_io_submit option [ 413.202783][ T693] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 413.218179][ T693] ext4 filesystem being mounted at /30/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 413.249732][ T693] EXT4-fs warning (device loop5): ext4_group_extend:1886: will only finish group (16384 blocks, 16256 new) [ 413.270815][ T693] EXT4-fs warning (device loop5): ext4_group_extend:1891: can't read last block, resize aborted [ 413.312927][ T710] netlink: 'syz.1.22089': attribute type 142 has an invalid length. [ 413.322365][ T710] netlink: 16 bytes leftover after parsing attributes in process `syz.1.22089'. [ 413.333795][T32138] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 413.373640][ T717] netlink: 68 bytes leftover after parsing attributes in process `syz.5.22092'. [ 413.384697][ T717] netlink: 8 bytes leftover after parsing attributes in process `syz.5.22092'. [ 413.647997][ T752] netlink: 'syz.5.22108': attribute type 10 has an invalid length. [ 413.656013][ T752] netlink: 168 bytes leftover after parsing attributes in process `syz.5.22108'. [ 413.681281][ T754] netlink: 104 bytes leftover after parsing attributes in process `syz.1.22109'. [ 413.846336][ T770] loop5: detected capacity change from 0 to 764 [ 413.854223][ T770] rock: directory entry would overflow storage [ 413.860397][ T770] rock: sig=0x4654, size=5, remaining=4 [ 413.919153][ T781] netlink: 'syz.1.22121': attribute type 1 has an invalid length. [ 414.134982][ T808] loop2: detected capacity change from 0 to 512 [ 414.150633][ T811] loop5: detected capacity change from 0 to 764 [ 414.158868][ T808] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 414.169394][ T808] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002] [ 414.181965][ T808] EXT4-fs (loop2): orphan cleanup on readonly fs [ 414.186200][ T811] netlink: 36 bytes leftover after parsing attributes in process `syz.5.22135'. [ 414.188416][ T808] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.22133: bad orphan inode 267 [ 414.208354][ T808] EXT4-fs (loop2): Remounting filesystem read-only [ 414.250417][ T808] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 414.349596][ T808] EXT4-fs warning (device loop2): dx_probe:861: inode #2: comm syz.2.22133: dx entry: limit 0 != root limit 125 [ 414.361613][ T808] EXT4-fs warning (device loop2): dx_probe:934: inode #2: comm syz.2.22133: Corrupt directory, running e2fsck is recommended [ 414.377069][ T830] vlan2: entered promiscuous mode [ 414.382234][ T830] gretap0: entered promiscuous mode [ 414.417878][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 414.472604][ T29] audit: type=1400 audit(2000000558.924:16560): avc: denied { bind } for pid=840 comm="syz.5.22145" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 414.538066][ T29] audit: type=1400 audit(2000000558.990:16561): avc: denied { shutdown } for pid=849 comm="syz.4.22148" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 414.621013][ T858] xt_CT: You must specify a L4 protocol and not use inversions on it [ 414.696670][ T870] netlink: 'syz.2.22157': attribute type 6 has an invalid length. [ 414.831717][T19729] hid-generic 0101:0002:0002.0009: item fetching failed at offset 0/1 [ 414.844262][T19729] hid-generic 0101:0002:0002.0009: probe with driver hid-generic failed with error -22 [ 414.892420][ T897] netlink: 'syz.4.22170': attribute type 1 has an invalid length. [ 414.983426][ T915] netlink: 20 bytes leftover after parsing attributes in process `syz.1.22176'. [ 415.069286][ T29] audit: type=1400 audit(2000000559.485:16562): avc: denied { nlmsg_read } for pid=924 comm="syz.5.22182" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1 [ 415.114109][ T932] netlink: 332 bytes leftover after parsing attributes in process `syz.5.22185'. [ 415.124516][ T932] netlink: 'syz.5.22185': attribute type 9 has an invalid length. [ 415.133908][ T932] netlink: 108 bytes leftover after parsing attributes in process `syz.5.22185'. [ 415.240132][ T943] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 415.272174][ T29] audit: type=1400 audit(2000000559.672:16563): avc: denied { create } for pid=949 comm="syz.1.22194" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=udp_socket permissive=1 [ 415.347432][ T943] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 415.410668][ T943] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 415.495328][ T943] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 415.532748][ T983] netlink: 'syz.4.22206': attribute type 58 has an invalid length. [ 415.577183][ T31] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 415.598533][ T31] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 415.621595][ T31] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 415.632953][ T31] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 415.764147][ T1016] ip6t_rpfilter: unknown options [ 415.788316][ T1020] xt_socket: unknown flags 0x50 [ 415.855123][ T1027] macsec0: entered promiscuous mode [ 415.860393][ T1027] bridge0: entered promiscuous mode [ 415.893137][ T1027] bridge0: port 3(macsec0) entered blocking state [ 415.899988][ T1027] bridge0: port 3(macsec0) entered disabled state [ 415.908632][ T1027] macsec0: entered allmulticast mode [ 415.913958][ T1027] bridge0: entered allmulticast mode [ 415.922770][ T1035] vhci_hcd: invalid port number 96 [ 415.928127][ T1035] vhci_hcd: default hub control req: 2000 vfffc i0060 l7 [ 415.961106][ T1027] macsec0: left allmulticast mode [ 415.966202][ T1027] bridge0: left allmulticast mode [ 415.972416][ T1027] bridge0: left promiscuous mode [ 416.086586][ T1059] netlink: 'syz.5.22236': attribute type 3 has an invalid length. [ 416.386998][ T1112] loop2: detected capacity change from 0 to 1024 [ 416.410845][ T1112] EXT4-fs (loop2): orphan cleanup on readonly fs [ 416.425664][ T1112] Quota error (device loop2): find_block_dqentry: Quota for id 0 referenced but not present [ 416.435905][ T1112] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0 [ 416.445432][ T1112] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.22257: Failed to acquire dquot type 0 [ 416.457398][ T1112] EXT4-fs (loop2): 1 truncate cleaned up [ 416.463716][ T1112] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 416.496507][ T1124] xt_socket: unknown flags 0x50 [ 416.501804][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 416.504636][ T1120] xt_connbytes: Forcing CT accounting to be enabled [ 416.545540][ T1130] loop2: detected capacity change from 0 to 512 [ 416.740972][ T1159] xt_socket: unknown flags 0x50 [ 416.871623][ T29] audit: type=1400 audit(2000000561.178:16564): avc: denied { read } for pid=1174 comm="syz.5.22284" name="file0" dev="tmpfs" ino=459 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 416.975980][ T1187] tipc: Enabled bearer , priority 14 [ 417.069161][ T1201] loop5: detected capacity change from 0 to 512 [ 417.084008][ T1201] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2 [ 417.101197][ T1201] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #13: comm syz.5.22297: iget: bad i_size value: 12154757448730 [ 417.115608][ T1201] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.22297: couldn't read orphan inode 13 (err -117) [ 417.129903][ T1201] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 417.171491][T32138] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 417.641245][ T1298] hugetlbfs: Bad value 'e' for mount option 'size' [ 417.641245][ T1298] [ 417.982845][ T1343] loop5: detected capacity change from 0 to 512 [ 418.004681][ T1343] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 418.024934][ T1343] EXT4-fs (loop5): orphan cleanup on readonly fs [ 418.043440][ T1343] EXT4-fs error (device loop5): ext4_do_update_inode:5632: inode #16: comm syz.5.22348: corrupted inode contents [ 418.070055][ T1343] EXT4-fs (loop5): Remounting filesystem read-only [ 418.077691][ T1343] EXT4-fs (loop5): 1 truncate cleaned up [ 418.083656][ T374] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 418.094291][ T374] Quota error (device loop5): write_blk: dquota write failed [ 418.103120][ T374] Quota error (device loop5): remove_free_dqentry: Can't write block (5) with free entries [ 418.113403][ T374] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 418.125416][ T374] Quota error (device loop5): write_blk: dquota write failed [ 418.132854][ T374] Quota error (device loop5): free_dqentry: Can't move quota data block (5) to free list [ 418.144117][ T374] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started [ 418.154286][ T374] Quota error (device loop5): v2_write_file_info: Can't write info structure [ 418.164630][ T374] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 418.175179][ T1343] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 418.201993][T32138] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 418.263316][ T1358] loop5: detected capacity change from 0 to 1024 [ 418.272105][ T1358] EXT4-fs: inline encryption not supported [ 418.278072][ T1358] EXT4-fs: Ignoring removed i_version option [ 418.294355][ T1358] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 418.321683][T32138] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 418.401935][ T1381] __nla_validate_parse: 13 callbacks suppressed [ 418.401955][ T1381] netlink: 16 bytes leftover after parsing attributes in process `syz.2.22362'. [ 418.464604][ T1388] loop2: detected capacity change from 0 to 164 [ 418.472681][ T1388] rock: directory entry would overflow storage [ 418.478936][ T1388] rock: sig=0x66, size=4, remaining=3 [ 418.888413][ T1451] loop5: detected capacity change from 0 to 2048 [ 418.933538][ T1451] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 418.940406][ T1456] netlink: 8 bytes leftover after parsing attributes in process `syz.4.22396'. [ 418.963655][ T1451] ext4 filesystem being mounted at /124/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 419.087362][ T1470] loop2: detected capacity change from 0 to 512 [ 419.112152][ T1470] Quota error (device loop2): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 419.122263][ T1470] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 419.132228][ T1470] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.22403: Failed to acquire dquot type 1 [ 419.145691][ T1473] usb usb6: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 419.153135][ T1473] vhci_hcd: invalid port number 96 [ 419.158301][ T1473] vhci_hcd: default hub control req: 0311 v0005 i0060 l7 [ 419.198952][ T1470] Quota error (device loop2): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 419.209199][ T1470] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.22403: Failed to acquire dquot type 1 [ 419.269255][ T1470] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.22403: bg 0: block 248: padding at end of block bitmap is not set [ 419.279565][ T1483] netlink: 'syz.1.22407': attribute type 46 has an invalid length. [ 419.305160][ T1470] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 419.327198][ T1470] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.22403: Failed to acquire dquot type 1 [ 419.365024][ T1470] EXT4-fs (loop2): 1 orphan inode deleted [ 419.381016][ T1470] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 419.403349][ T1470] ext4 filesystem being mounted at /4495/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 419.460202][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 419.472203][ T31] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm kworker/u8:1: bg 0: block 345: padding at end of block bitmap is not set [ 419.502319][ T31] EXT4-fs (loop5): Remounting filesystem read-only [ 419.510415][ T374] EXT4-fs warning (device loop5): ext4_convert_unwritten_extents:4984: inode #15: block 1: len 15: ext4_ext_map_blocks returned -30 [ 419.568991][ T1505] netlink: 24 bytes leftover after parsing attributes in process `syz.4.22416'. [ 419.641555][T32138] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 419.726125][ T1524] loop2: detected capacity change from 0 to 128 [ 419.751309][ T1525] devtmpfs: Too few inodes for current use [ 419.751587][ T1524] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 419.772580][ T1524] ext4 filesystem being mounted at /4500/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 419.831543][ T3325] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 419.959679][ T1555] Dead loop on virtual device ip6_vti0, fix it urgently! [ 419.977413][ T1561] loop2: detected capacity change from 0 to 256 [ 420.279910][ T1587] netlink: 'syz.2.22445': attribute type 10 has an invalid length. [ 420.287895][ T1587] netlink: 168 bytes leftover after parsing attributes in process `syz.2.22445'. [ 420.580349][ T1619] netlink: 4 bytes leftover after parsing attributes in process `syz.2.22462'. [ 420.603529][ T1619] 8021q: adding VLAN 0 to HW filter on device ipvlan2 [ 420.623027][ T1619] team0: Device ipvlan2 is already an upper device of the team interface [ 420.738825][ T1646] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.22470'. [ 421.102435][ T1671] netlink: 72 bytes leftover after parsing attributes in process `syz.2.22482'. [ 421.111531][ T1671] netlink: 36 bytes leftover after parsing attributes in process `syz.2.22482'. [ 421.144721][ T1671] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 421.199209][ T1676] netlink: 148 bytes leftover after parsing attributes in process `syz.2.22484'. [ 421.282846][ T1683] netlink: 424 bytes leftover after parsing attributes in process `syz.2.22498'. [ 421.974029][ T1745] vlan3: entered promiscuous mode [ 421.979154][ T1745] gretap0: entered promiscuous mode [ 422.071112][ T1763] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 422.081138][ T1763] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 422.091008][ T1763] netdevsim netdevsim1 eth3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 422.129544][ T1763] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 422.139512][ T1763] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 422.149642][ T1763] netdevsim netdevsim1 eth2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 422.215098][ T1763] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 422.225076][ T1763] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 422.234930][ T1763] netdevsim netdevsim1 eth1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 422.270118][ T1763] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 422.280018][ T1763] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 422.291306][ T1763] netdevsim netdevsim1 eth0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 422.330825][ T1795] loop5: detected capacity change from 0 to 2048 [ 422.361028][T32432] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 422.369330][T32432] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 422.377556][T32432] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 20000 - 0 [ 422.387274][ T1795] Alternate GPT is invalid, using primary GPT. [ 422.393558][ T1795] loop5: p1 p2 p3 [ 422.397460][ T1795] loop5: partition table partially beyond EOD, truncated [ 422.410812][T32432] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 422.419361][T32432] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 422.427864][T32432] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 20000 - 0 [ 422.457867][T32432] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 422.466238][T32432] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 422.474500][T32432] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 20000 - 0 [ 422.492477][T32432] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 422.500699][T32432] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 422.509001][T32432] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 20000 - 0 [ 422.526915][ T1821] loop5: detected capacity change from 0 to 512 [ 422.535333][ T1821] EXT4-fs warning (device loop5): read_mmp_block:115: Error -74 while reading MMP block 13 [ 422.629060][ T1840] 9p: Unknown Cache mode or invalid value f [ 423.155942][ T1898] netlink: 'syz.2.22574': attribute type 2 has an invalid length. [ 423.200247][ T1903] 8021q: adding VLAN 0 to HW filter on device bond0 [ 423.663930][ T1978] loop2: detected capacity change from 0 to 512 [ 423.677060][ T1979] bridge0: entered promiscuous mode [ 423.695704][ T1978] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 423.698649][ T1979] macsec1: entered promiscuous mode [ 423.713248][ T1979] bridge0: port 3(macsec1) entered blocking state [ 423.719726][ T1979] bridge0: port 3(macsec1) entered disabled state [ 423.726464][ T1979] macsec1: entered allmulticast mode [ 423.731849][ T1979] bridge0: entered allmulticast mode [ 423.738105][ T1979] macsec1: left allmulticast mode [ 423.743195][ T1979] bridge0: left allmulticast mode [ 423.749091][ T1979] bridge0: left promiscuous mode [ 423.762800][ T1978] EXT4-fs (loop2): 1 truncate cleaned up [ 423.770609][ T1978] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 423.812178][ T1994] __nla_validate_parse: 3 callbacks suppressed [ 423.812194][ T1994] netlink: 8 bytes leftover after parsing attributes in process `syz.1.22609'. [ 423.827514][ T1994] netlink: 8 bytes leftover after parsing attributes in process `syz.1.22609'. [ 423.873921][ T3325] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 423.959388][ T2008] netlink: 12 bytes leftover after parsing attributes in process `syz.1.22606'. [ 423.968529][ T2008] netlink: 'syz.1.22606': attribute type 1 has an invalid length. [ 423.976372][ T2008] netlink: 24 bytes leftover after parsing attributes in process `syz.1.22606'. [ 423.991944][ T2009] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.22603'. [ 424.031962][ T29] kauditd_printk_skb: 9 callbacks suppressed [ 424.031979][ T29] audit: type=1326 audit(2000000567.875:16571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2012 comm="syz.5.22602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa10fa4efc9 code=0x7ffc0000 [ 424.111690][ T2017] netlink: 'syz.2.22610': attribute type 10 has an invalid length. [ 424.125687][ T29] audit: type=1326 audit(2000000567.903:16572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2012 comm="syz.5.22602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=232 compat=0 ip=0x7fa10fa4efc9 code=0x7ffc0000 [ 424.150897][ T29] audit: type=1326 audit(2000000567.903:16573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2012 comm="syz.5.22602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa10fa4efc9 code=0x7ffc0000 [ 424.176050][ T29] audit: type=1326 audit(2000000567.903:16574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2012 comm="syz.5.22602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa10fa4efc9 code=0x7ffc0000 [ 427.982649][ T2044] loop5: detected capacity change from 0 to 512 [ 428.017852][ T2044] EXT4-fs (loop5): too many log groups per flexible block group [ 428.033735][ T2044] EXT4-fs (loop5): failed to initialize mballoc (-12) [ 428.042405][ T2044] EXT4-fs (loop5): mount failed [ 428.108284][T32432] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 428.145204][ T2081] netlink: 4 bytes leftover after parsing attributes in process `syz.2.22631'. [ 428.154358][ T2081] netlink: 4 bytes leftover after parsing attributes in process `syz.2.22631'. [ 428.157209][ T2084] netlink: 'syz.4.22633': attribute type 1 has an invalid length. [ 428.184897][ T2088] loop5: detected capacity change from 0 to 512 [ 428.192989][T32432] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 428.237296][ T2088] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 428.253908][ T2088] ext4 filesystem being mounted at /174/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 428.288927][T32432] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 428.321517][T32138] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 428.363158][T32432] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 428.442040][ T31] ================================================================== [ 428.450182][ T31] BUG: KCSAN: data-race in alloc_pid / copy_process [ 428.456792][ T31] [ 428.459115][ T31] read-write to 0xffffffff8685feb8 of 4 bytes by task 32440 on cpu 0: [ 428.467265][ T31] alloc_pid+0x539/0x720 [ 428.471527][ T31] copy_process+0xe25/0x2000 [ 428.476134][ T31] kernel_clone+0x16c/0x5c0 [ 428.480655][ T31] user_mode_thread+0x7d/0xb0 [ 428.485366][ T31] call_usermodehelper_exec_work+0x41/0x160 [ 428.491351][ T31] process_scheduled_works+0x4ce/0x9d0 [ 428.496839][ T31] worker_thread+0x582/0x770 [ 428.501537][ T31] kthread+0x489/0x510 [ 428.505644][ T31] ret_from_fork+0x122/0x1b0 [ 428.510242][ T31] ret_from_fork_asm+0x1a/0x30 [ 428.515016][ T31] [ 428.517345][ T31] read to 0xffffffff8685feb8 of 4 bytes by task 31 on cpu 1: [ 428.524715][ T31] copy_process+0x17fc/0x2000 [ 428.529439][ T31] kernel_clone+0x16c/0x5c0 [ 428.533958][ T31] user_mode_thread+0x7d/0xb0 [ 428.538675][ T31] call_usermodehelper_exec_work+0x41/0x160 [ 428.544586][ T31] process_scheduled_works+0x4ce/0x9d0 [ 428.550171][ T31] worker_thread+0x582/0x770 [ 428.554767][ T31] kthread+0x489/0x510 [ 428.558847][ T31] ret_from_fork+0x122/0x1b0 [ 428.563445][ T31] ret_from_fork_asm+0x1a/0x30 [ 428.568221][ T31] [ 428.570546][ T31] value changed: 0x80000147 -> 0x80000148 [ 428.576299][ T31] [ 428.578627][ T31] Reported by Kernel Concurrency Sanitizer on: [ 428.584780][ T31] CPU: 1 UID: 0 PID: 31 Comm: kworker/u8:1 Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 428.596071][ T31] Tainted: [W]=WARN [ 428.599871][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 428.609931][ T31] Workqueue: events_unbound call_usermodehelper_exec_work [ 428.617054][ T31] ================================================================== SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 428.678738][ T29] audit: type=1400 audit(2000000572.196:16575): avc: denied { write } for pid=3305 comm="syz-executor" path="pipe:[2527]" dev="pipefs" ino=2527 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1 [ 428.833441][T32432] tipc: Disabling bearer [ 429.367927][T32432] bond1 (unregistering): Released all slaves [ 429.376057][T32432] bond0 (unregistering): Released all slaves [ 429.384913][T32432] bond2 (unregistering): Released all slaves [ 429.393400][T32432] bond3 (unregistering): Released all slaves [ 429.402142][T32432] bond4 (unregistering): Released all slaves [ 429.431455][T17178] tipc: Resetting bearer [ 429.449291][T17178] tipc: Disabling bearer [ 429.470191][T32432] tipc: Left network mode [ 429.493415][T32432] macvlan1 (unregistering): left allmulticast mode [ 429.882961][T32432] IPVS: stop unused estimator thread 0... [ 429.947655][T32432] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 429.988829][T32432] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 430.063376][T32432] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 430.127355][T32432] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 430.440681][T32432] netdevsim netdevsim4 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 430.450514][T32432] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 430.491127][T32432] netdevsim netdevsim4 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 430.501067][T32432] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 430.576036][T32432] netdevsim netdevsim4 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 430.585890][T32432] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 430.629417][T32432] netdevsim netdevsim4 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 430.639261][T32432] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 430.707907][T32432] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 430.717820][T32432] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 430.728315][T32432] netdevsim netdevsim1 eth3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 430.768491][T32432] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 430.778396][T32432] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 430.788255][T32432] netdevsim netdevsim1 eth2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 430.854452][T32432] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 430.864332][T32432] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 430.874132][T32432] netdevsim netdevsim1 eth1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 430.939691][T32432] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 430.949639][T32432] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 430.959531][T32432] netdevsim netdevsim1 eth0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 431.006823][T32432] bridge_slave_1: left allmulticast mode [ 431.012538][T32432] bridge_slave_1: left promiscuous mode [ 431.018221][T32432] bridge0: port 2(bridge_slave_1) entered disabled state [ 431.026381][T32432] bridge_slave_0: left allmulticast mode [ 431.032071][T32432] bridge_slave_0: left promiscuous mode [ 431.037751][T32432] bridge0: port 1(bridge_slave_0) entered disabled state [ 431.050827][T32432] .`: left allmulticast mode [ 431.055444][T32432] bond_slave_0: left allmulticast mode [ 431.060982][T32432] @0Ù: left allmulticast mode [ 431.065837][T32432] dummy0: left allmulticast mode [ 431.070834][T32432] .`: left promiscuous mode [ 431.075333][T32432] bond_slave_0: left promiscuous mode [ 431.080828][T32432] @0Ù: left promiscuous mode [ 431.085592][T32432] dummy0: left promiscuous mode [ 431.090618][T32432] bridge0: port 3(.`) entered disabled state [ 431.097182][T32432] bridge_slave_1: left allmulticast mode [ 431.102909][T32432] bridge_slave_1: left promiscuous mode [ 431.108593][T32432] bridge0: port 2(bridge_slave_1) entered disabled state [ 431.116192][T32432] bridge_slave_0: left allmulticast mode [ 431.121895][T32432] bridge_slave_0: left promiscuous mode [ 431.127506][T32432] bridge0: port 1(bridge_slave_0) entered disabled state [ 431.140528][T32432] $Hÿ: left allmulticast mode [ 431.145500][T32432] $Hÿ: left promiscuous mode [ 431.150361][T32432] bridge0: port 1($Hÿ) entered disabled state [ 431.159471][T32432] veth0_to_bridge: left allmulticast mode [ 431.165260][T32432] veth0_to_bridge: left promiscuous mode [ 431.171192][T32432] bridge0: port 2(veth0_to_bridge) entered disabled state [ 431.179650][T32432] .`: left allmulticast mode [ 431.184347][T32432] dummy0: left allmulticast mode [ 431.189294][T32432] .`: left promiscuous mode [ 431.193817][T32432] dummy0: left promiscuous mode [ 431.199431][T32432] bridge0: port 1(.`) entered disabled state [ 431.210158][T32432] tipc: Resetting bearer [ 431.304790][T32432] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 431.314949][T32432] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 431.325194][T32432] bond0 (unregistering): Released all slaves [ 431.333195][T32432] bond1 (unregistering): Released all slaves [ 431.368620][T32432] bond0 (unregistering): Released all slaves [ 431.376715][T32432] tipc: Disabling bearer [ 431.860041][T32432] .` (unregistering): (slave bond_slave_0): Releasing backup interface [ 431.869258][T32432] .` (unregistering): (slave c@0Ù): Releasing backup interface [ 431.877704][T32432] .` (unregistering): (slave dummy0): Releasing backup interface [ 431.885926][T32432] .` (unregistering): Released all slaves [ 431.894340][T32432] bond1 (unregistering): Released all slaves [ 431.902863][T32432] bond2 (unregistering): Released all slaves [ 431.911182][T32432] bond3 (unregistering): Released all slaves [ 431.919430][T32432] bond4 (unregistering): Released all slaves [ 431.928722][T32432] bond0 (unregistering): Released all slaves [ 431.936779][T32432] bond5 (unregistering): Released all slaves [ 431.945073][T32432] tipc: Disabling bearer [ 432.361836][T32432] $Hÿ (unregistering): Released all slaves [ 432.370978][T32432] bond0 (unregistering): Released all slaves [ 432.379334][T32432] bond1 (unregistering): Released all slaves [ 432.387554][T32432] bond2 (unregistering): Released all slaves [ 432.395714][T32432] bond3 (unregistering): Released all slaves [ 432.404108][T32432] bond4 (unregistering): Released all slaves [ 432.412363][T32432] bond5 (unregistering): Released all slaves [ 432.420668][T32432] bond6 (unregistering): Released all slaves [ 432.429119][T32432] bond7 (unregistering): Released all slaves [ 432.437755][T32432] bond8 (unregistering): Released all slaves [ 432.446294][T32432] tipc: Disabling bearer [ 432.474764][T32432] dvmrp1 (unregistering): left allmulticast mode [ 432.917986][T32432] .` (unregistering): (slave dummy0): Releasing backup interface [ 432.926666][T32432] .` (unregistering): Released all slaves [ 432.934728][T32432] smc: removing net device bond0 with user defined pnetid SYZ2 [ 432.942630][T32432] bond0 (unregistering): Released all slaves [ 432.951104][T32432] bond1 (unregistering): Released all slaves [ 432.959060][T32432] bond2 (unregistering): Released all slaves [ 432.967235][T32432] bond3 (unregistering): Released all slaves [ 432.975446][T32432] bond4 (unregistering): Released all slaves [ 432.983267][T32432] bond5 (unregistering): Released all slaves [ 433.048998][T32432] tipc: Disabling bearer [ 433.054429][T32432] tipc: Left network mode [ 433.058999][T32432] tipc: Disabling bearer [ 433.064392][T32432] tipc: Left network mode [ 433.068949][T32432] tipc: Disabling bearer [ 433.074692][T32432] tipc: Disabling bearer [ 433.080076][T32432] tipc: Left network mode [ 433.091008][T32432] IPVS: stopping backup sync thread 19697 ... [ 433.097241][T32432] IPVS: stopping backup sync thread 19369 ... [ 433.103409][T32432] IPVS: stopping backup sync thread 20217 ... [ 433.111293][T32432] hsr_slave_0: left promiscuous mode [ 433.117008][T32432] hsr_slave_1: left promiscuous mode [ 433.122778][T32432] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 433.130159][T32432] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 433.137706][T32432] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 433.145118][T32432] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 433.154497][T32432] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 433.162061][T32432] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 433.170943][T32432] hsr_slave_0: left promiscuous mode [ 433.178181][T32432] hsr_slave_0: left promiscuous mode [ 433.186879][T32432] veth1_macvtap: left promiscuous mode [ 433.192355][T32432] veth0_macvtap: left promiscuous mode [ 433.198001][T32432] veth1_vlan: left promiscuous mode [ 433.203217][T32432] veth0_vlan: left promiscuous mode [ 433.275080][T32432] team0 (unregistering): Port device team_slave_1 removed [ 433.284769][T32432] team0 (unregistering): Port device team_slave_0 removed [ 433.329354][T32432] macvlan1 (unregistering): left allmulticast mode [ 433.350041][T32432] team0 (unregistering): Port device team_slave_1 removed [ 433.360154][T32432] team0 (unregistering): Port device team_slave_0 removed [ 433.438470][T32432] pim6reg (unregistering): left allmulticast mode [ 436.124722][T32432] IPVS: stop unused estimator thread 0... [ 436.130872][T32432] IPVS: stop unused estimator thread 0... [ 436.232947][T32432] ------------[ cut here ]------------ [ 436.238438][T32432] WARNING: CPU: 0 PID: 32432 at net/xfrm/xfrm_state.c:3306 xfrm_state_fini+0x179/0x1f0 [ 436.248136][T32432] Modules linked in: [ 436.252113][T32432] CPU: 0 UID: 0 PID: 32432 Comm: kworker/u8:9 Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 436.263686][T32432] Tainted: [W]=WARN [ 436.267487][T32432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 436.277572][T32432] Workqueue: netns cleanup_net [ 436.282365][T32432] RIP: 0010:xfrm_state_fini+0x179/0x1f0 [ 436.287941][T32432] Code: 48 8d bb 70 0e 00 00 e8 35 4c b7 fc 48 8b bb 70 0e 00 00 e8 e9 f8 c3 fc 5b 41 5e 41 5f 5d e9 3e 57 b5 00 cc e8 e8 f2 9b fc 90 <0f> 0b 90 e9 d9 fe ff ff e8 da f2 9b fc 90 0f 0b 90 4c 89 f7 e8 fe [ 436.307694][T32432] RSP: 0018:ffffc900128dbc60 EFLAGS: 00010293 [ 436.313816][T32432] RAX: ffffffff84bb5528 RBX: ffff88810b9e9800 RCX: ffff888138778000 [ 436.321822][T32432] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88810b9ea640 [ 436.329840][T32432] RBP: ffffffff86c90e80 R08: 0001ffff8684802f R09: 0000000000000000 [ 436.337869][T32432] R10: ffffc900128dbbe8 R11: 0001c900128dbbe8 R12: ffffffff86c90ea0 [ 436.345938][T32432] R13: ffff88810b9e9828 R14: ffff88810b9ea640 R15: ffff88810b9e9800 [ 436.353926][T32432] FS: 0000000000000000(0000) GS:ffff8882aee13000(0000) knlGS:0000000000000000 [ 436.362903][T32432] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 436.369490][T32432] CR2: 000055e5e4f7e660 CR3: 0000000006834000 CR4: 00000000003506f0 [ 436.377513][T32432] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 436.385500][T32432] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 [ 436.393486][T32432] Call Trace: [ 436.396769][T32432] [ 436.399761][T32432] xfrm_net_exit+0x2d/0x60 [ 436.404270][T32432] ops_undo_list+0x27b/0x410 [ 436.408977][T32432] cleanup_net+0x2f4/0x4f0 [ 436.413480][T32432] process_scheduled_works+0x4ce/0x9d0 [ 436.418977][T32432] worker_thread+0x582/0x770 [ 436.423602][T32432] kthread+0x489/0x510 [ 436.427684][T32432] ? finish_task_switch+0xad/0x2b0 [ 436.432874][T32432] ? __pfx_worker_thread+0x10/0x10 [ 436.438105][T32432] ? __pfx_kthread+0x10/0x10 [ 436.442768][T32432] ret_from_fork+0x122/0x1b0 [ 436.447393][T32432] ? __pfx_kthread+0x10/0x10 [ 436.451991][T32432] ret_from_fork_asm+0x1a/0x30 [ 436.456838][T32432] [ 436.459953][T32432] ---[ end trace 0000000000000000 ]--- [ 436.466481][T32432] ------------[ cut here ]------------ [ 436.471960][T32432] WARNING: CPU: 1 PID: 32432 at net/xfrm/xfrm_state.c:3306 xfrm_state_fini+0x179/0x1f0 [ 436.481887][T32432] Modules linked in: [ 436.485793][T32432] CPU: 1 UID: 0 PID: 32432 Comm: kworker/u8:9 Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 436.497378][T32432] Tainted: [W]=WARN [ 436.501195][T32432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 436.511319][T32432] Workqueue: netns cleanup_net [ 436.516149][T32432] RIP: 0010:xfrm_state_fini+0x179/0x1f0 [ 436.521751][T32432] Code: 48 8d bb 70 0e 00 00 e8 35 4c b7 fc 48 8b bb 70 0e 00 00 e8 e9 f8 c3 fc 5b 41 5e 41 5f 5d e9 3e 57 b5 00 cc e8 e8 f2 9b fc 90 <0f> 0b 90 e9 d9 fe ff ff e8 da f2 9b fc 90 0f 0b 90 4c 89 f7 e8 fe [ 436.541433][T32432] RSP: 0018:ffffc900128dbc60 EFLAGS: 00010293 [ 436.547503][T32432] RAX: ffffffff84bb5528 RBX: ffff88810b9e8000 RCX: ffff888138778000 [ 436.555602][T32432] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88810b9e8e40 [ 436.563613][T32432] RBP: ffffffff86c90e80 R08: 0001ffff8684802f R09: 0000000000000000 [ 436.571644][T32432] R10: ffffc900128dbbe8 R11: 0001c900128dbbe8 R12: ffffffff86c90ea0 [ 436.579726][T32432] R13: ffff88810b9e8028 R14: ffff88810b9e8e40 R15: ffff88810b9e8000 [ 436.587729][T32432] FS: 0000000000000000(0000) GS:ffff8882aef13000(0000) knlGS:0000000000000000 [ 436.596720][T32432] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 436.603305][T32432] CR2: 000055e5f976b168 CR3: 0000000006834000 CR4: 00000000003506f0 [ 436.611381][T32432] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 436.619511][T32432] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 [ 436.627498][T32432] Call Trace: [ 436.630839][T32432] [ 436.633770][T32432] xfrm_net_exit+0x2d/0x60 [ 436.638202][T32432] ops_undo_list+0x27b/0x410 [ 436.642863][T32432] cleanup_net+0x2f4/0x4f0 [ 436.647296][T32432] process_scheduled_works+0x4ce/0x9d0 [ 436.652812][T32432] worker_thread+0x582/0x770 [ 436.657467][T32432] kthread+0x489/0x510 [ 436.661570][T32432] ? finish_task_switch+0xad/0x2b0 [ 436.666754][T32432] ? __pfx_worker_thread+0x10/0x10 [ 436.671888][T32432] ? __pfx_kthread+0x10/0x10 [ 436.676487][T32432] ret_from_fork+0x122/0x1b0 [ 436.681088][T32432] ? __pfx_kthread+0x10/0x10 [ 436.685765][T32432] ret_from_fork_asm+0x1a/0x30 [ 436.690678][T32432] [ 436.693750][T32432] ---[ end trace 0000000000000000 ]--- [ 436.700036][T32432] ------------[ cut here ]------------ [ 436.705512][T32432] WARNING: CPU: 1 PID: 32432 at net/xfrm/xfrm_state.c:3313 xfrm_state_fini+0x1b9/0x1f0 [ 436.715296][T32432] Modules linked in: [ 436.719190][T32432] CPU: 1 UID: 0 PID: 32432 Comm: kworker/u8:9 Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 436.730743][T32432] Tainted: [W]=WARN [ 436.734555][T32432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 436.744649][T32432] Workqueue: netns cleanup_net [ 436.749468][T32432] RIP: 0010:xfrm_state_fini+0x1b9/0x1f0 [ 436.755039][T32432] Code: 4b b7 fc 4d 8b 3e e9 06 ff ff ff e8 c1 f2 9b fc 90 0f 0b 90 4c 89 f7 e8 e5 4b b7 fc 4d 8b 3e e9 24 ff ff ff e8 a8 f2 9b fc 90 <0f> 0b 90 4c 89 f7 e8 cc 4b b7 fc 4d 8b 3e e9 42 ff ff ff e8 8f f2 [ 436.774658][T32432] RSP: 0018:ffffc900128dbc60 EFLAGS: 00010293 [ 436.780745][T32432] RAX: ffffffff84bb5568 RBX: ffff88810b9e8000 RCX: ffff888138778000 [ 436.788729][T32432] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88810ada4cc0 [ 436.796701][T32432] RBP: 0000000000000040 R08: 000188810b9e8e5f R09: 0000000000000000 [ 436.804771][T32432] R10: ffff88810ada4d40 R11: 000188810ada4d3f R12: ffffffff86c90ea0 [ 436.812758][T32432] R13: ffff88810b9e8028 R14: ffff88810b9e8e58 R15: ffff88810ada4cc0 [ 436.820773][T32432] FS: 0000000000000000(0000) GS:ffff8882aef13000(0000) knlGS:0000000000000000 [ 436.829741][T32432] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 436.836369][T32432] CR2: 000055e5f976b168 CR3: 0000000006834000 CR4: 00000000003506f0 [ 436.844369][T32432] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 436.852354][T32432] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 [ 436.860348][T32432] Call Trace: [ 436.863646][T32432] [ 436.866579][T32432] xfrm_net_exit+0x2d/0x60 [ 436.871032][T32432] ops_undo_list+0x27b/0x410 [ 436.875695][T32432] cleanup_net+0x2f4/0x4f0 [ 436.880128][T32432] process_scheduled_works+0x4ce/0x9d0 [ 436.885627][T32432] worker_thread+0x582/0x770 [ 436.890264][T32432] kthread+0x489/0x510 [ 436.894373][T32432] ? finish_task_switch+0xad/0x2b0 [ 436.899566][T32432] ? __pfx_worker_thread+0x10/0x10 [ 436.904722][T32432] ? __pfx_kthread+0x10/0x10 [ 436.909336][T32432] ret_from_fork+0x122/0x1b0 [ 436.913975][T32432] ? __pfx_kthread+0x10/0x10 [ 436.918668][T32432] ret_from_fork_asm+0x1a/0x30 [ 436.923538][T32432] [ 436.926574][T32432] ---[ end trace 0000000000000000 ]--- [ 436.932689][T32432] ------------[ cut here ]------------ [ 436.938150][T32432] WARNING: CPU: 1 PID: 32432 at net/xfrm/xfrm_state.c:3315 xfrm_state_fini+0x1d2/0x1f0 [ 436.947892][T32432] Modules linked in: [ 436.951813][T32432] CPU: 1 UID: 0 PID: 32432 Comm: kworker/u8:9 Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 436.963495][T32432] Tainted: [W]=WARN [ 436.967314][T32432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 436.977452][T32432] Workqueue: netns cleanup_net [ 436.982304][T32432] RIP: 0010:xfrm_state_fini+0x1d2/0x1f0 [ 436.987889][T32432] Code: 4b b7 fc 4d 8b 3e e9 24 ff ff ff e8 a8 f2 9b fc 90 0f 0b 90 4c 89 f7 e8 cc 4b b7 fc 4d 8b 3e e9 42 ff ff ff e8 8f f2 9b fc 90 <0f> 0b 90 4c 89 f7 e8 b3 4b b7 fc 4d 8b 3e e9 60 ff ff ff 66 66 2e [ 437.007553][T32432] RSP: 0018:ffffc900128dbc60 EFLAGS: 00010293 [ 437.013637][T32432] RAX: ffffffff84bb5581 RBX: ffff88810b9e8000 RCX: ffff888138778000 [ 437.021650][T32432] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88810ada4c80 [ 437.029674][T32432] RBP: 0000000000000040 R08: 000188810b9e8e57 R09: 0000000000000000 [ 437.037655][T32432] R10: ffff88810ada4d00 R11: 000188810ada4cff R12: ffffffff86c90ea0 [ 437.045819][T32432] R13: ffff88810b9e8028 R14: ffff88810b9e8e50 R15: ffff88810ada4c80 [ 437.053868][T32432] FS: 0000000000000000(0000) GS:ffff8882aef13000(0000) knlGS:0000000000000000 [ 437.062809][T32432] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 437.069422][T32432] CR2: 000055e5f976b168 CR3: 0000000006834000 CR4: 00000000003506f0 [ 437.077403][T32432] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 437.085494][T32432] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 [ 437.093511][T32432] Call Trace: [ 437.096798][T32432] [ 437.099740][T32432] xfrm_net_exit+0x2d/0x60 [ 437.104180][T32432] ops_undo_list+0x27b/0x410 [ 437.108874][T32432] cleanup_net+0x2f4/0x4f0 [ 437.113328][T32432] process_scheduled_works+0x4ce/0x9d0 [ 437.118828][T32432] worker_thread+0x582/0x770 [ 437.123489][T32432] kthread+0x489/0x510 [ 437.127562][T32432] ? finish_task_switch+0xad/0x2b0 [ 437.132776][T32432] ? __pfx_worker_thread+0x10/0x10 [ 437.137887][T32432] ? __pfx_kthread+0x10/0x10 [ 437.142553][T32432] ret_from_fork+0x122/0x1b0 [ 437.147148][T32432] ? __pfx_kthread+0x10/0x10 [ 437.151810][T32432] ret_from_fork_asm+0x1a/0x30 [ 437.156780][T32432] [ 437.159797][T32432] ---[ end trace 0000000000000000 ]---