last executing test programs: 1m17.755266598s ago: executing program 0 (id=4901): bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x3, &(0x7f0000001200)=ANY=[@ANYRES16], 0x0, 0x5, 0x0, 0x0, 0x0, 0x26, '\x00', 0x0, @fallback=0x22}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c034055b67dafe6c8dc3d5d0f65acc0d06d1a1434e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622e03b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab0300817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c690220b87b20581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd713089856f756436303767d2e24f29e5dad9796edb697a8ad004eea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014751c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff22dc518afc9ffc2cc788bee1b47683db01a2f9398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa407e2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae526aca54183fb01c73f979ca9857399537f5831808b0dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a0c93d47018c12e7ba8188a22e8b15c3e233db00002e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e4845535a8b90dfae158b94f50adab188dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b4896c7aabf4df517d90bdc01e73835d50200a90800c66ee2b1ad76dff9f9003f07000099d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987595ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e547f7ad33850d9feccd0111a2e3700845dee734fe7da3770845cf442d488afd80e17000000000000000000000000000000000000000000000000000005202000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a12489c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db08407081c6281e2d8429a8639034a75f4c7df3ea8fc2018d07af14915f29b719f54926fc32468f65bd06b4092140faed0c329be610c3082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b4c8787361f3289f86ae826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce1d9bc7ef3e3f40c14089c82759106f422582b42e3e8484ea5a6ad9aa520000afe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da357f9e93ce055019c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734137ff47257f164391c672b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb74b5589829b6b0679b5d6fccbecfae5553d9950d48c774eaa35b24fce69a20d8bc410d9f48bf7eac90529cd6af061c9e53addddc620ce73c5d177e3d097159f2768636fc10276c6a0adc57483b3f7083f66b87ef296ee85e9bb70a3009a5d30f479e293a3302e11350ea857b37e76ca2f50378e4092ce2c574ad278b9b7b717c571afb2077b019fd9d89efd59b41f051ec5a8ff87ecc8df917a1e386d849fcd10e2f9ca52e02339c2f4666b0c545e25f1cd62421c28d25994be0cff7271a0dee38d7ac4ac736b090e1d29f981fd9086e4000000000000646174b55d251f7f8ca5ccc22a5efb33b237eff5597a3c3a5f3a9bb54abb40e54593e1a7ce4cfa17b3c3fe91c06363496341eae20dcc59b6179b32ddddef5c34000096a54c0c571a91878f61f74912e2299e5501d4d6943bfd74c856511726f0ac8f7d17f1c6b4451c1bcdc6b6e1700e4cd87709d97afc5423c96fa981873d4369b04bbf1fb9f68f17991540868e408201ad1a74179e489aa61f021a437a3fa935588be2068f7ff9b253106326fde795e530b93626cc68e06e602198724249b4445eef08401cd1a3e266db41474e69902e4d8f5da4e94cc36794258fd4032de7ab36bc24c5efd5c8495c1ccd580033c55725f2d60354f8ad5914a0155eaa743350ddb388f486b6de0549ef3b1b3c3b7d4d3a830ff39885776119408029be3788dd8422b1ab7b4c9d5b7d8682fd759c713108e1bdfc64b9121bbf07099def5c0ce3c861ae4b5cad8bba5a0b6059b9ef90c2f96a59320309e25df89484522bb1d6eaa92164f9e4042cb689a45a898354c17b08705205a9189772bcbcb6414e44b33a2470d3bc16f761c33f565b9da5e7991ad8482579cc1b16c1fcec815a5482ae8b1779c5e339971a6ec1217bcfd1ef24284de8a0a9f068f297037d6478c2434a9a18dcc6c7c791e444a79d7ce37f9cf2826b47ad8ca6a2fa254aa02cd098026798a6d336348af0fc11fa2809a5ebbe17ca4d0f889d518f64ee50f562b5fdb1f76d4a7fe14701f8ed0c6a55d66a6efea3e449e6b478abc5b196dd5308cb20c4e2a0bd702651bb39f10523102dcd8ece692159028f314e0d6bfa400475c6699fdc40efe0948e3cef7419a7f113134e5ee20fd87c4521ccfbd32d6f147f743d30866bdd86ca8bf0c7bcc475f4ed53517aaa51f1c151d859a7f0b53abd332c84bdad313e82ac3777a6f7f649ff8a25f6dfe09cb29213896b49a825257bf143e9fa3bbd47009e66fe5705b3ef2b40a182e408c680727d64e00e1ce508f8fd64ac6c84ccc28fc333067de63b9bb5daaa12ce60ee3779ded79651be69d2a413cd948a873dd7ad7017b150828cf100d3df8537f22aff58343c9ee966fceb594bbe10b911427f76a25a219be2f85287b7f83d323a30991067ad1369792166062085ff20c5fb9f6e4f78dd09c7d2d6ca3c8a5d0d26ccbe576f44a1bc94194817"], &(0x7f0000000340)='syzkaller\x00'}, 0x1b) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe80, 0x6002, &(0x7f0000000640)="b9ff03076844268cb89e14f088a847e0ffff200000000002000aac14140ce0", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x48) 1m17.753176568s ago: executing program 0 (id=4903): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000000)='sys_enter\x00'}, 0x18) r0 = syz_open_dev$evdev(&(0x7f0000000240), 0x20000, 0x0) ioctl$EVIOCGLED(r0, 0x80284504, &(0x7f0000000000)=""/56) 1m17.732500619s ago: executing program 0 (id=4905): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf83, 0x3}, 0x1c) 1m17.704930531s ago: executing program 0 (id=4907): r0 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', 0x0}) sendto$packet(r0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x11, 0x0, r1}, 0x14) 1m17.684196622s ago: executing program 0 (id=4918): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8}) mknodat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x8, 0x8) 1m17.665242024s ago: executing program 0 (id=4909): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000ac0)='sys_enter\x00', r0, 0x0, 0x400}, 0x18) ustat(0x801, &(0x7f0000000240)) 1m1.613911771s ago: executing program 32 (id=4909): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000ac0)='sys_enter\x00', r0, 0x0, 0x400}, 0x18) ustat(0x801, &(0x7f0000000240)) 53.996082113s ago: executing program 1 (id=6091): mmap(&(0x7f0000ff4000/0xc000)=nil, 0xc000, 0x1000003, 0x20031, 0xffffffffffffffff, 0xffffe000) mbind(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, &(0x7f0000000000)=0x3, 0x9, 0x0) get_mempolicy(0x0, 0x0, 0x7fffffffffffffff, &(0x7f0000ffd000/0x2000)=nil, 0x2) 53.935504687s ago: executing program 1 (id=6098): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r0) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0500feffffff000000000f00000008000300", @ANYRES32, @ANYBLOB="39000e0080000700080211000000ffffffffffff0802110000000000000000000000000064005098839a"], 0x6c}}, 0x0) 53.876204391s ago: executing program 1 (id=6105): syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000280)='./file1\x00', 0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYRES32], 0x1, 0x2b2, &(0x7f00000006c0)="$eJzs3NFLU28cx/Hvz6mbE91+EEFB9aVu6uag6w+oEQrRoDAn1UVwzLMaO21yzlgsIncT3fZ3SJfdBdU/4E100313EgTdeBGd8Jwd3XTa1M2t+X6BnO/xeT4+jzrlewSf9XtvnhZyrpEzyzIUUxkSqcmGSHKzqvuvfh3y61FpVJMr4z+/nrt7/8GtdCYzM6c6m56/mlLVyQsfnr14e/FTeXzh3eT7qKwlH67/SH1bO712Zv33/JO8q3lXi6WymrpYKpXNRdvSpbxbMFTv2JbpWpovupbTNJ6zS8vLVTWLSxPxZcdyXTWLVS1YVS2XtOxU1Xxs5otqGIZOxOVkG25jTnZ1bs5M7znsRTq6I3RetPl2rNUcx0nXWg9mV7u1LwAA0L/27/+DXn/v/j+zEFw73P+L0P93Sa3p7i/9PwaC46TNeP3ntxn9PwAAAAAAAAAAAAAAAAAAAAAA/4INz0t4npcIr+FbVERiIhLe93qf6I5Dfv+v9Wi76LCGf9yLidivK9lKNrgG4+mc5MUWS6YkIb/810NdUM/ezMxMqW+k/iE38yuVbMQ/m8DPh5Kt8uf/nw7yKh83c5V6fkTijeunJCGnWq+f2s6HxyGsVLKjcvlSQ96QhHx+JCWxZcl/XW/nX06r3rid2bH+mD8PAAAAAIBBYOiWZPPzb3D2o+FPiMnu8SB/gL8P7Hi+Hpaz7RxRCQAAAAAAjsytPi+Ytm05hyiiInKE+KAWEemLbeworotIH2zjuIqYiATv0cPEv2/F20p5bcwZFpGef1kOUPT6NxMAAACATttu+g8Q+vKqizsCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAODkafc8sHD+rqFwYJ94w3KRY/8EAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgD7yJwAA//+j7Rqj") r0 = open(&(0x7f0000000400)='./file0\x00', 0x64842, 0x0) pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3) 53.806377766s ago: executing program 1 (id=6109): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000efffffff850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10) getrlimit(0xe, &(0x7f0000000740)) 53.801615826s ago: executing program 1 (id=6113): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8}) mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0) 53.74320031s ago: executing program 1 (id=6115): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010000000900000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x8}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 37.467595423s ago: executing program 33 (id=6115): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010000000900000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x8}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 14.108895681s ago: executing program 5 (id=7531): bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000580)={0xffffffffffffffff, 0x0, 0x2f, 0x0, &(0x7f0000000080)="f6f4e9a10000502468da5eb1c6b2feff8833c0000000000000c548dc7914cb11ad63bf3707164aac031971c4be105e", 0x0, 0x86, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB="d0000000", @ANYRES16=r1, @ANYBLOB="010000000000000000000100000008000100000000000400048008000c8004000b800800020001000000a00008801c000780080077144ebb00000800060000000000080005000000000024000780080005000000000008"], 0xd0}}, 0x0) 14.046641915s ago: executing program 5 (id=7533): r0 = syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x3f0, 0x6c17, 0x40, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x12, 0x7, 0x1, 0x3, 0x0, "", {{}, [{}]}}}]}}]}}, 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000400)={0x34, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)={0x20, 0x0, 0x1}}) 13.389429259s ago: executing program 5 (id=7571): r0 = openat(0xffffffffffffff9c, &(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x2, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0xffffffffffffff54}, 0x18) sendfile(r0, r0, 0x0, 0x6) 13.36555129s ago: executing program 5 (id=7572): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4056, &(0x7f0000000200)={[{@noload}, {@nombcache}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}, {@errors_remount}, {@lazytime}, {@minixdf}, {@noquota}, {@usrjquota}]}, 0x1, 0x451, &(0x7f0000000680)="$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") creat(&(0x7f0000000040)='./bus\x00', 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x185641, 0x0) quotactl$Q_SETINFO(0xffffffff80000601, &(0x7f00000000c0)=@filename='./bus\x00', 0xee01, &(0x7f0000000100)={0x2, 0x5, 0x0, 0xd}) 13.290011195s ago: executing program 5 (id=7575): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000300)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], 0x0}, 0x94) mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x810004, &(0x7f0000000ac0)='\x06\x00\x00\x00\x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x04\xc3\x00\x00\x00\x00\x00\x00\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x000x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') io_submit(r0, 0x1, &(0x7f0000000040)=[&(0x7f0000004280)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x2}]) 1.265237097s ago: executing program 3 (id=8036): open$dir(&(0x7f0000000080)='./file0\x00', 0x20040, 0x0) r0 = inotify_init() inotify_add_watch(r0, &(0x7f00000000c0)='./file0\x00', 0x420) inotify_add_watch(r0, &(0x7f0000000040)='./file0\x00', 0x10000000) 1.2179082s ago: executing program 3 (id=8039): r0 = socket$inet_sctp(0x2, 0x5, 0x84) close(r0) socket$caif_seqpacket(0x25, 0x5, 0x5) setsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, 0x0, 0x0) 1.156074845s ago: executing program 3 (id=8043): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) ppoll(&(0x7f0000000000)=[{r1, 0x8463}], 0x1, 0x0, 0x0, 0x0) close(r0) 581.489712ms ago: executing program 6 (id=8081): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f00000002c0)={[{@sysvgroups}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000}}, {@usrjquota}, {@acl}, {@grpjquota}]}, 0xff, 0x23f, &(0x7f0000000540)="$eJzs3T1oLFUYBuB3Zne95t5FrtoI4g+IiAbCtRNsYqMQkBBEBBUiIjZKIsQEu8TKxkJrlVQ2QeyMlpIm2CiCVdQUsRE0WBgstFiZnURisuLPxh1xngdmZ2b3nPnOMPOe3WbYAK11Nclskk6S6SS9JMXpBnfWy9Xj3c2p3cVkMHjsh2LYrt6vnfS7kmQjyQNJdsoiL3STte2nDn7ae+Se11d7d7+7/eTURE/y2OHB/qNH78y/9sHc/WufffHdfJHZ9H93XhevGPFet0hu+jeK/UcU3aZHwF+x8Mr7X1a5vznJXcP891KmvnhvrFy308t9b/9R3ze///zWSY4VuHiDQa/6DtwYAK1TJumnKGeS1NtlOTNT/4b/qnO5fHF55eXp55dXl55reqYCLko/2X/4o0sfXjmT/287df6B/68q/48vbH1dbR91mh4NMBG31asq/9PPrN8b+YfWkX9oL/mH9pJ/aC/5h/aSf2gv+Yf2kn9oL/mH9pJ/aK/T+QcA2mVwqeknkIGmND3/AAAAAAAAAAAAAAAAAAAA521O7S6eLJOq+clbyeFDSbqj6neG/0ecXD98vfxjUTX7TVF3G8vTd4x5gDG91/DT1zd802z9T29vtv76UrLxapJr3e75+684vv/+uRv/5PPes2MW+JuKM/sPPjHZ+mf9stVs/bm95ONq/rk2av4pc8twPXr+6VfXb8z6L/085gEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACYmF8DAAD//xFQbUc=") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108) getdents64(r0, 0x0, 0x0) getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000) 497.077788ms ago: executing program 6 (id=8084): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000080)='sys_enter\x00', r0, 0x0, 0x8001}, 0x18) mknodat$loop(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x20, 0x1) unlink(&(0x7f0000000100)='./file0\x00') 429.309383ms ago: executing program 6 (id=8089): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000080000000c"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) syz_emit_ethernet(0xfffffffffffffe30, 0x0, 0x0) 428.354012ms ago: executing program 6 (id=8092): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000280), 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000005c0)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x11, &(0x7f0000000100)=@framed={{0x18, 0x2, 0x0, 0x0, 0x400}, [@call={0x85, 0x0, 0x0, 0x36}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000008c0)={r1, 0x0, 0xe, 0x0, &(0x7f0000000600)="87fc5d85da21530562070095c108", 0x0, 0x8011, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, 0x40}, 0x50) 393.331115ms ago: executing program 4 (id=8095): r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc) close(r0) socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002f80)=@ipv6_deladdrlabel={0x1c, 0x49, 0x135, 0x70bd26, 0x25dfdbfd, {0xa, 0x0, 0x1, 0x0, 0x0, 0x8}}, 0x1c}, 0x1, 0x0, 0x0, 0x400405d}, 0x20000000) 329.357439ms ago: executing program 7 (id=8096): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000400)='kfree\x00', r0, 0x0, 0x18}, 0x18) r1 = syz_io_uring_setup(0x6de4, &(0x7f0000000180)={0x0, 0x117a, 0x100, 0x2, 0x250}, &(0x7f00000000c0), &(0x7f0000000000)) io_uring_register$IORING_REGISTER_BUFFERS2(r1, 0xf, &(0x7f00000024c0)={0x2, 0x0, 0x0, &(0x7f0000000080)=[{0x0}, {&(0x7f0000000240)=""/191, 0xbf}], &(0x7f0000002480)=[0x0, 0x2]}, 0x20) 329.115959ms ago: executing program 4 (id=8097): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000a0db000000000000000000850000000e000000c50000002a00000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)=ANY=[@ANYBLOB="3c010000100013040000000000000000e000000100000000000000000000000020010000000000000000000000000002000000004e2400000200002000000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="fe8000000000000000000000000000aa0000000032000000fe8000000000000000000000000000aa0000000000000000000000000000000003000000000000000000000000000000050000000000000000000000000000000800000000020000000000000000000000000000000000000700000000000000cc000000000000000000000000000000f7000000000000000000000000000000000000000a00010300000000000000004c001200"], 0x13c}}, 0x0) 322.03966ms ago: executing program 7 (id=8099): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000004000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000001c0)='kfree\x00', r1}, 0x10) bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000600)={0x3, 0x4, 0x4, 0xa, 0x0, r0, 0x8, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x5}, 0x50) 294.560611ms ago: executing program 7 (id=8100): r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000100)={{{@in=@private=0xa010101, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa417}, {}, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2}, {{@in6=@rand_addr=' \x01\x00', 0x2, 0x32}, 0x0, @in=@multicast2}}, 0xe4) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000180)={{{@in6=@private2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x2}}, {{@in6=@loopback, 0x0, 0x6c}}}, 0xe8) close(r0) 294.398302ms ago: executing program 4 (id=8101): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x33, &(0x7f0000000000)=0x7, 0x4) setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000240)=0xf2b, 0x4) getsockopt$inet6_buf(r0, 0x29, 0x6, 0x0, &(0x7f0000000080)) 271.679423ms ago: executing program 4 (id=8102): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/bus/input/devices\x00', 0x0, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0x4}, 0x18) preadv(r0, &(0x7f00000015c0)=[{&(0x7f0000001600)=""/4078, 0xe0}], 0x1, 0xf3, 0x3) 258.543184ms ago: executing program 3 (id=8103): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff}) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000024000000080000000b"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1, 0xffffffffffffffff}, &(0x7f0000000340), &(0x7f0000000380)=r0}, 0x20) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000040)={r2, &(0x7f0000000000), 0x0}, 0x20) 240.447405ms ago: executing program 4 (id=8104): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000980)=ANY=[@ANYBLOB="18000000000000040000000000000000850000000e000000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000400)='io_uring_cqe_overflow\x00', r0}, 0x10) r1 = syz_io_uring_setup(0x5078, &(0x7f0000000300)={0x0, 0xe58, 0x10100, 0xfffffffc, 0xffffffff}, &(0x7f0000000280), &(0x7f0000000000)) io_uring_enter(r1, 0xb15, 0xffffbffe, 0x8, 0x0, 0x0) 220.725636ms ago: executing program 2 (id=8105): capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x21000000}) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sock_ops=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) name_to_handle_at(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0) open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x200000000000000) 220.331806ms ago: executing program 3 (id=8106): r0 = memfd_create(&(0x7f0000000cc0)='\x103q}2[\xe0\x9a\xee\xaf\x03\x97\x9et\v\"|Ma\x86\xe7\xc0\x14\x9f\xb9h\xb1\x96\xe7=I\x860S6\xb5\xa8\xc2\x95Je%\xfeG\'\b\x00\xd5\xfd\xa9\r\xac7V\xf2\x93A\x94k\xcd\t\x00\x90\xbe\xd6\x05\xb6&\xd0\x9daA\xc5\x9c_\xd4\x18,\f\xd4s\xb2\x99/\xc0\x9a\xf2Oc\xc0c\agB!\xb0\xb8n\x01\x9bT\x95\x10\x86\xe8$\x7f\r[\xf9\x0e1v\xb1\n\x88\v\x95uy\xb5:`\x8b\nC\x18A;\xaa%\xaf\xc7\xa3\xac\xa2D\xb5\xe2\xe1\xdc(\xfd\x05\x9fB\x84O\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1a\xa0\x17\xe3\xac\xe9\xc9\xa7\x8a\x1b\x03\"&\xac\xcap>\xccZ\x01\xbc\x18\xc1\xb9\xe9\v\x8b\x9c\xb4Q\xd4\x96EV<>\x99\xca\xb3\xe0\xc4tL\xed\xf5W\x9f#\xcf\x8a\x84\xed\x9f/\xd4\xbb\xea;-Dp\xd8\xf8\xd0F\x90\xf8\x92Ip6\xf4\x16\xe8\x14\xe0\x96!\x92-F\xe2\x14D\x91\xa8b\x04\xdd\x1d\a\xdc\xe0\x18\x85{\x80Q\xf6k\x96\xfaQ\x9fW\vO\xf0\xe4O\\\xceS\xe2_\x16\x05\x049d\x06#\x88\xc3\xdf\x85O\x1c\xc3\xad?r\xd7\x0e\x00\xd7\x83\xb0\x88\x9c\xf6Y-F\x98\xdd\x9c~\xfd\x95\xc3\xb6lC\xaa\"Y\xa2K\xecz\x84:*\xf5Y\xd1\x9b1\xbd\x9b\x15\xd4\xec\x02o\x01&\xaa\x90w\xc4\xc7\x8en\xb5\x1ag\xab&?\xbe\xcb\xe8v\xa8\xe0\xa4\x81sW\xacf\x149\xd2}\xef\x03Ga\x9a$4\x8c\xa5!p\x83\x05\x96%\x02%\xabj\n\b\xc8NC\x91}&y\xd3\xe1\xeep\'\xc5\xab\x19GsX5\x8c\n\x9fh\xee;4\xb1%V\xe0\xa9\x8e\xf30:\xd8\x18N~G\x139\xcaf2\x02F1\xc6\x82\x00E\xae\x9d\x17\x871N:\xb4\xea \x8e\xdelP\x83\x1f\'\xe2\xd6\xc0\xc3\xfc\xc9677u\xf3RUP@o>\xee\xb8\xa3\t\x02\xb7\\,\xebK\xed\x1b\xc9e\xb3\x16\xce\x9bI\xdb\xfa\x82\x85\t\x9bg\xd0s\xe2\f{\x8cp~;\xf8\x96\xf2\x91\x06\xd7\x80t\xfc\xf8\xd2\x12N\x1cB7^\xfd4\xae\xb0V\\w\b!\xae\x1baTv\xc0z\x19\xc5\xc8w\xba\x97N\x9a`\x8f\xfc\x9ee\xf9\x00\x1cQA\x14]\r\xd4\"\xc2\x12GD\xdb{\x17fNo\xb3\x1d\xbb\xcaI\x05\xff\x8d\xf4_\x1a\vqA\xb7\x0ed<\x98\xee\xb8\x19\xec\x9f\xee\xe1_\xacG\x8b\xa3\xc3\x13\x80\x0f\xf4I\xdeAwG\xbdkno\xa2\b\x126\x97\x9b\xf9|P\xd94\v\x15\xcb\xc0\x9d\x11\xf3\x18\xae!2\x1b\x12\xa9\xc8~\xb7S\x94\xb5\xc7;\xa90D>s\xe9\xa4N\xf8\xdb\xab\xa0\x94~\xa1]b\xa4\xe5\xe2e\x1c\x8b\xd2\xc7Md\x93\x02\xd8\xb0,\xeb\x03\xaa\v\xed\x9bR\x8a\x80\xc2\x1f\x17ej\x973wv\x83a\xe06\x96\xde\xbc%UH\xf8S\xf1\xa1g\x02\xc4\xc3\xa4\xa8\x96\t\xfex\x02Y\x8e\xae\xf5m\xca\xa0i\x80O\x11\xac\xb7$\xdb\xbc\xb0\xcb\xacqU\xb5*\x00\x00\x00\x00\x00\x00\x00\f\xda\xf8oV\x89\xd3\x1f\x99+\xe5\x04\x00\x00\x00\x00\x00\x00\x00\xf2\xcc\xd3\x94\xca\xd4\x00\x00\x00\x00\x00\x00\x00\x00\x00~A9\xf6IBu2L\x9e\xa2\xbb\xa9s\xab\x90\x06\xc6!p\x9e?~\xf9\xe6\xae*\v\xa3\xd9\xcfJ\t}\xd4:\xe4\xbe\x1c\x10\n\xc6hPO\xeagxKN\'z]*\x93\xf7\b\x91\xd0\xff\xd9\xc6a\xb5q\x9c\xa1Go\xd58\x93\xe0,\x9f\xe4\xa9\xd9A\x9e\x95e\x98\xd0V\x9d\xed\x97\xf1\xc5\xce\xf5\x90!D\x9a\xd8\x10\xbbx\r8\xff\x8bNUK\xebA\xe5\x92f\xc4\xd1\xa8\x15\xbf\xb5iW\xdb.kbf*\x89\xf0\xecq m-~\xbbf?\xec=\xd2\xe2\x1e\xca\xc5kz\x8e9\xd6\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xa3d5V\x80\x1a\x90\x10\xe3\xdf%\xfdz\xf7\x9aE\xe6\x9b\x00'/993, 0x3) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000000)={0x0, 0x2, 0x6, 0x1000000}) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x4000, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800) 205.430007ms ago: executing program 7 (id=8107): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000001700000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18) syz_emit_ethernet(0x56, &(0x7f0000000000)={@local, @local, @val, {@ipv6={0x86dd, @generic={0x0, 0x6, '\x00', 0x18, 0x0, 0x1, @rand_addr=' \x01\x00', @dev, {[@hopopts={0x2f, 0x1, '\x00', [@calipso={0x7, 0x8, {0x0, 0x0, 0x0, 0xd600}}]}]}}}}}, 0x0) 180.689899ms ago: executing program 2 (id=8108): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000240)=0x10) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x6, &(0x7f0000000300)={r1, @in={{0x2, 0x4e22, @rand_addr=0x64010101}}}, &(0x7f00000001c0)=0x84) 180.482479ms ago: executing program 4 (id=8109): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0xfc2, &(0x7f0000001c00)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xfb4, 0x2, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0xfa0, 0x0, @wg=@data={0x4, 0x7407, 0x4, "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"}}}}}}, 0x0) recvmmsg(r0, &(0x7f00000019c0)=[{{0x0, 0x0, 0x0}, 0x2}], 0x1, 0x10000, 0x0) 162.49399ms ago: executing program 7 (id=8110): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file2\x00', 0x0, &(0x7f0000000040), 0x1, 0xba6, &(0x7f0000000c00)="$eJzs3M1rXFUUAPDzXj7bRicVEeumEZEWxGlaSbFFsJWKGxeCboWGdFJCph8kkZo0i4n+A6KuBTeCWpQu7LobBbdutG4tLoQisVEQ0cibjyQ2M0naTvJq8vvBzbt3zpvcc/KYeffCTALYsQayH2nEvog4nUQU6o+nEdFd7fVGVGrnLczPjvwxPzuSxOLi678mkUTE7fnZkcbvSurHPfVBb0R891ISj7y7et7J6Znx4XK5NFEfH5o6d/HQ5PTMs2Pnhs+WzpbOHz76/NCRoaODx4baVuufP5249vuTr/xc+euzv6/89sEnSZyIvnpsZR3tMhADS3+TlTojYrjdk+Wko17PyjqTznWelG5yUgAAtJSuWMM9FoXoiOXFWyG+/j7X5AAAAIC2WOyIWAQAAAC2ucT+HwAAALa5xucAbs/PjjRavp9I2Fq3TkZEf63+hXqrRTqjUj32RldE7L6dxMqvtSa1p923gYi4+eOxL7MWm/Q95LVU5iLi8WbXP6nW31/9Fvfq+tOIGGzD/AN3jP9P9Z9ow/x51w/AznT9ZO1Gtvr+ly6tf6LJ/a+zyb3rXuR9/2us/xZWrf+W6+9osf57bYNzXP70o0utYln9L1x7+YtGy+bPjvdV1F24NRfxRGez+pOl+pMW9Z/e4ByFfy6VWsXyrn/x44gD0bz+hmTt/090aHSsXBqs/Ww6x9y3Q5+3mj/v+rPrv7tF/etd/4sbnOPNU6eutoqtX3/6S3fyRrXXXX/k7eGpqYnDEd3Jq6sfP7J2Lo1zGr8jq//gU2u//pvVn70nVOp/h2wvMFc/ZuN37pjzxSuXv1qr/mzvl+f1P3OP1/+9Dc7x9DfvH2wVW7n/zVo2/82kthcGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIY0IvoiSYtL/TQtFiP2RMSjsTstX5icemb0wlvnz2SxiP7oSkfHyqXBiCjUxkk2PlztL4+P3DF+LiL2RsSHhV3VcXHkQvlM3sUDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACwZE9E9EWSFiMijYiFQpoWi3lnBQAAALRdf94JAAAAAJvO/h8AAAC2P/t/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANtne/ddvJBFROb6r2jLd9VhXrpkBmy3NOwEgNx15JwDkpjPvBIDc3OUe33IBtqFknXhvy0hP23MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4MF1YN/1G0lEVI7vqrZMdz3W1fQZ+7cwO2AzpXknAOSmY61g59blAWw9L3HYuZrv8YGdJFkn3rt8TuW/kZ5NywkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAB09ftSVpMSLSaj9Ni8WIhyKiP7qS0bFyaTAiHo6IHwpdPdm4J++kAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaLvJ6Znx4XK5NKGjo5NvJ3kw0qh18n5nAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgD5PTM+PD5XJpYjLvTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIC8TU7PjA+Xy6WJDXSu3s3JKzp51wgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQH7+DQAA//+LYA3r") r0 = open(&(0x7f00000000c0)='./file1\x00', 0x14927e, 0x6) fallocate(r0, 0x0, 0x0, 0x1001f0) fallocate(r0, 0x8, 0x0, 0x10000) 161.95569ms ago: executing program 6 (id=8111): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x24, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) modify_ldt$write(0x1, &(0x7f0000000040)={0x4, 0x1000, 0x2000}, 0x10) syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0) 111.203644ms ago: executing program 2 (id=8113): r0 = socket(0x200000000000011, 0x2, 0x0) bind$packet(r0, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @random="518440db9de1"}, 0x14) syz_emit_ethernet(0x33, &(0x7f0000000000)={@random="e90c610faca2", @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x25, 0x0, 0xe000, 0x3, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x11, 0x0, @opaque="24dc6170e1e0318539"}}}}}, 0x0) syz_emit_ethernet(0x2e, &(0x7f0000000b40)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1f}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x0, 0x2, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0xc, 0x0, @gue={{0x1, 0x1, 0x3, 0xb, 0x100, @void}}}}}}}, 0x0) 41.173168ms ago: executing program 6 (id=8114): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18) lsetxattr$security_selinux(&(0x7f00000001c0)='.\x00', &(0x7f0000000240), &(0x7f0000000280)='system_u:object_r:fsadm_exec_t:s0\x00', 0x1001, 0x0) 40.912168ms ago: executing program 2 (id=8115): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xb, &(0x7f0000000900)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x9}, 0x18) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000000340)=ANY=[], 0x8) 40.736838ms ago: executing program 2 (id=8116): r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000356ffc)=0xffffffffffffff40, 0x4) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x33, &(0x7f00000a2000)={0x1, &(0x7f0000f07000)=[{0x6}]}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x33, &(0x7f00000a2000)={0x1, &(0x7f0000f07000)=[{0x6}]}, 0x10) 5.58743ms ago: executing program 2 (id=8117): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10) r1 = perf_event_open(&(0x7f0000001480)={0x2, 0x80, 0x5a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x101, 0x7, 0x0, 0xd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000380)='cpu==-||!') 0s ago: executing program 7 (id=8118): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000004700)={'team0\x00', 0x0}) sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000000100)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="050427bd7000fedbdf250100000008000100", @ANYRES32=r2, @ANYBLOB="4800028044000100240001006d6f6465000000000000000000000000000000000000000000000000000000000500030005c70000110004"], 0x64}, 0x1, 0x0, 0x0, 0x4000401}, 0x4040084) kernel console output (not intermixed with test programs): 2 comm="syz.3.5072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 131.146250][T14431] System zones: 0-2, 18-18, 34-35 [ 131.219709][T14440] loop4: detected capacity change from 0 to 512 [ 131.249407][T14442] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5076'. [ 131.252713][T14440] journal_path: Non-blockdev passed as './bus' [ 131.264761][T14440] EXT4-fs: error: could not find journal device path [ 131.511999][T14472] tmpfs: Bad value for 'mpol' [ 131.690513][T14485] netlink: 'syz.2.5096': attribute type 6 has an invalid length. [ 131.701481][T14487] vhci_hcd: invalid port number 236 [ 131.941649][T14511] xt_limit: Overflow, try lower: 324382443/4200216956 [ 132.506697][T14574] loop4: detected capacity change from 0 to 1024 [ 132.513747][T14574] EXT4-fs (loop4): couldn't mount as ext2 due to feature incompatibilities [ 132.963935][T14592] 8021q: adding VLAN 0 to HW filter on device ipvlan2 [ 133.458037][T14644] netlink: 'syz.2.5171': attribute type 30 has an invalid length. [ 133.905712][T14690] loop9: detected capacity change from 0 to 7 [ 133.932766][T14694] 8021q: adding VLAN 0 to HW filter on device ipvlan0 [ 133.948022][T14699] loop4: detected capacity change from 0 to 512 [ 133.950689][T14690] Buffer I/O error on dev loop9, logical block 0, async page read [ 133.962963][T14690] Buffer I/O error on dev loop9, logical block 0, async page read [ 133.963777][T14699] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 133.970842][T14690] loop9: unable to read partition table [ 133.970876][T14690] loop_reread_partitions: partition scan of loop9 (被xڬdGݡ [ 133.970876][T14690] ) failed (rc=-5) [ 134.007061][T14699] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.5197: invalid indirect mapped block 4294967295 (level 0) [ 134.043504][T14699] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.5197: invalid indirect mapped block 4294967295 (level 1) [ 134.086160][T14699] EXT4-fs (loop4): 1 orphan inode deleted [ 134.091977][T14699] EXT4-fs (loop4): 1 truncate cleaned up [ 134.133220][T14699] EXT4-fs mount: 20 callbacks suppressed [ 134.133253][T14699] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 134.169978][T14709] __nla_validate_parse: 7 callbacks suppressed [ 134.170011][T14709] netlink: 7 bytes leftover after parsing attributes in process `syz.3.5200'. [ 134.213208][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 134.243187][T14709] netlink: 7 bytes leftover after parsing attributes in process `syz.3.5200'. [ 134.263411][ T1037] Process accounting resumed [ 134.435357][T14737] loop4: detected capacity change from 0 to 512 [ 134.465333][T14737] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 134.497520][T14737] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #13: comm syz.4.5213: iget: bad i_size value: 12154757448730 [ 134.537513][T14737] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.5213: couldn't read orphan inode 13 (err -117) [ 134.553382][T14745] netlink: 'syz.3.5217': attribute type 11 has an invalid length. [ 134.587049][T14737] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 134.648856][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 134.817216][T14777] netlink: 'syz.4.5232': attribute type 1 has an invalid length. [ 135.197777][T14822] netlink: 340 bytes leftover after parsing attributes in process `syz.3.5255'. [ 135.418480][T14856] netlink: 'syz.1.5271': attribute type 66 has an invalid length. [ 135.925163][ T29] kauditd_printk_skb: 22 callbacks suppressed [ 135.925180][ T29] audit: type=1326 audit(1759923622.904:1597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14912 comm="syz.3.5300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 135.996783][ T29] audit: type=1326 audit(1759923622.942:1598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14912 comm="syz.3.5300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 136.020360][ T29] audit: type=1326 audit(1759923622.942:1599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14912 comm="syz.3.5300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 136.044668][ T29] audit: type=1326 audit(1759923622.942:1600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14912 comm="syz.3.5300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 136.069094][ T29] audit: type=1326 audit(1759923622.942:1601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14912 comm="syz.3.5300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 136.092735][ T29] audit: type=1400 audit(1759923622.942:1602): avc: denied { mounton } for pid=14917 comm="syz.4.5301" path="/1083/file0" dev="tmpfs" ino=5532 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 136.210852][T14941] tracefs: Bad value for 'uid' [ 136.215726][T14941] tracefs: Bad value for 'uid' [ 136.325697][T14955] loop4: detected capacity change from 0 to 512 [ 136.332722][T14955] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 136.357453][ T29] audit: type=1326 audit(1759923623.306:1603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14957 comm="syz.3.5319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 136.381150][ T29] audit: type=1326 audit(1759923623.306:1604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14957 comm="syz.3.5319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 136.405088][ T29] audit: type=1326 audit(1759923623.306:1605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14957 comm="syz.3.5319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 136.429333][T14955] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.5318: invalid indirect mapped block 4294967295 (level 0) [ 136.429484][T14955] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.5318: invalid indirect mapped block 4294967295 (level 1) [ 136.431739][T14955] EXT4-fs (loop4): 1 orphan inode deleted [ 136.444702][ T29] audit: type=1326 audit(1759923623.306:1606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14957 comm="syz.3.5319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 136.458535][T14955] EXT4-fs (loop4): 1 truncate cleaned up [ 136.506139][T14955] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 136.541407][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.072444][T15026] netlink: 'syz.1.5351': attribute type 3 has an invalid length. [ 137.127676][T15030] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5353'. [ 137.211611][T15040] netlink: 'syz.1.5358': attribute type 1 has an invalid length. [ 137.474484][T15077] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5376'. [ 137.530166][T15082] loop4: detected capacity change from 0 to 512 [ 137.554905][T15082] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 137.574324][T15082] EXT4-fs (loop4): orphan cleanup on readonly fs [ 137.589174][T15082] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #16: comm +}[@: corrupted inode contents [ 137.611984][T15094] netlink: 4768 bytes leftover after parsing attributes in process `syz.3.5382'. [ 137.618805][T15082] EXT4-fs (loop4): Remounting filesystem read-only [ 137.639387][T15082] EXT4-fs (loop4): 1 truncate cleaned up [ 137.645203][ T1765] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 137.655810][ T1765] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 137.680263][ T1765] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started [ 137.701924][T15082] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 137.750618][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.195339][T15119] loop4: detected capacity change from 0 to 1024 [ 138.230409][T15119] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 138.239001][T15123] tracefs: Bad value for 'uid' [ 138.247235][T15123] tracefs: Bad value for 'uid' [ 138.252913][T15119] ext4 filesystem being mounted at /1108/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 138.286637][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 138.323052][T15125] 9pnet: Could not find request transport: 0xffffffffffffffff [ 138.481824][T15146] bond1: option lacp_rate: invalid value (12) [ 138.509897][T15146] bond1 (unregistering): Released all slaves [ 139.323194][T15241] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5448'. [ 139.526471][T15266] random: crng reseeded on system resumption [ 140.159749][T15325] netlink: 104 bytes leftover after parsing attributes in process `syz.2.5486'. [ 140.436198][T15352] netlink: 'syz.4.5499': attribute type 29 has an invalid length. [ 140.445901][T15352] netlink: 'syz.4.5499': attribute type 29 has an invalid length. [ 140.774457][T15386] loop4: detected capacity change from 0 to 512 [ 140.928988][T15404] random: crng reseeded on system resumption [ 141.670618][ T29] kauditd_printk_skb: 24 callbacks suppressed [ 141.670637][ T29] audit: type=1400 audit(1759923628.283:1625): avc: denied { write } for pid=15476 comm="syz.2.5560" name="cgroup.procs" dev="cgroup" ino=151 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:sendmail_exec_t:s0" [ 141.881304][ T29] audit: type=1400 audit(1759923628.480:1626): avc: denied { setattr } for pid=15501 comm="syz.1.5574" name="file0" dev="tmpfs" ino=5776 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 142.064770][T15522] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5581'. [ 142.148443][T15531] netlink: 'syz.4.5596': attribute type 8 has an invalid length. [ 142.203228][ T29] audit: type=1326 audit(1759923628.779:1627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15536 comm="syz.3.5588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 142.227004][ T29] audit: type=1326 audit(1759923628.779:1628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15536 comm="syz.3.5588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 142.251549][ T29] audit: type=1326 audit(1759923628.779:1629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15536 comm="syz.3.5588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 142.275314][ T29] audit: type=1326 audit(1759923628.779:1630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15536 comm="syz.3.5588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 142.299802][ T29] audit: type=1326 audit(1759923628.779:1631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15536 comm="syz.3.5588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 142.323376][ T29] audit: type=1326 audit(1759923628.779:1632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15536 comm="syz.3.5588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 142.347706][ T29] audit: type=1326 audit(1759923628.779:1633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15536 comm="syz.3.5588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 142.371423][ T29] audit: type=1326 audit(1759923628.779:1634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15536 comm="syz.3.5588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 142.396388][T15538] netlink: 'syz.4.5589': attribute type 1 has an invalid length. [ 142.404269][T15538] netlink: 16126 bytes leftover after parsing attributes in process `syz.4.5589'. [ 142.600108][T15575] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5608'. [ 143.363079][ T37] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.443113][ T37] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.464213][T15669] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5649'. [ 143.475211][T15672] 8021q: VLANs not supported on team0 [ 143.489071][ T37] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.542095][ T37] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.657048][ T37] bridge_slave_1: left allmulticast mode [ 143.662738][ T37] bridge_slave_1: left promiscuous mode [ 143.668553][ T37] bridge0: port 2(bridge_slave_1) entered disabled state [ 143.683771][ T37] bridge_slave_0: left allmulticast mode [ 143.689537][ T37] bridge_slave_0: left promiscuous mode [ 143.695274][ T37] bridge0: port 1(bridge_slave_0) entered disabled state [ 143.807893][T15713] usb usb8: usbfs: process 15713 (syz.4.5669) did not claim interface 0 before use [ 143.817624][ T37] $H (unregistering): (slave bond_slave_0): Releasing backup interface [ 143.827054][ T37] bond_slave_0: left promiscuous mode [ 143.836382][ T37] $H (unregistering): (slave bond_slave_1): Releasing backup interface [ 143.847271][ T37] bond_slave_1: left promiscuous mode [ 143.863882][ T37] $H (unregistering): (slave dummy0): Releasing backup interface [ 143.876616][ T37] dummy0: left promiscuous mode [ 143.885101][ T37] $H (unregistering): Released all slaves [ 143.898547][T15649] chnl_net:caif_netlink_parms(): no params data found [ 143.929297][ T37] tipc: Disabling bearer [ 143.929881][T15732] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5680'. [ 143.944344][T15732] netlink: 'syz.4.5680': attribute type 5 has an invalid length. [ 143.952127][T15732] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5680'. [ 143.961547][ T37] tipc: Disabling bearer [ 143.967553][ T37] tipc: Left network mode [ 143.998103][ T37] IPVS: stopping backup sync thread 4160 ... [ 144.022011][ T37] hsr_slave_0: left promiscuous mode [ 144.028148][ T37] hsr_slave_1: left promiscuous mode [ 144.034820][ T37] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 144.042288][ T37] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 144.060871][ T37] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 144.069113][ T37] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 144.078656][ T37] veth1_macvtap: left promiscuous mode [ 144.084235][ T37] veth0_macvtap: left promiscuous mode [ 144.089876][ T37] veth1_vlan: left promiscuous mode [ 144.096366][ T37] veth0_vlan: left promiscuous mode [ 144.159236][ T37] team0 (unregistering): Port device team_slave_1 removed [ 144.168899][ T37] team0 (unregistering): Port device team_slave_0 removed [ 144.233013][T15649] bridge0: port 1(bridge_slave_0) entered blocking state [ 144.240505][T15649] bridge0: port 1(bridge_slave_0) entered disabled state [ 144.260819][T15649] bridge_slave_0: entered allmulticast mode [ 144.268024][T15649] bridge_slave_0: entered promiscuous mode [ 144.289290][T15649] bridge0: port 2(bridge_slave_1) entered blocking state [ 144.296485][T15649] bridge0: port 2(bridge_slave_1) entered disabled state [ 144.304078][T15649] bridge_slave_1: entered allmulticast mode [ 144.332187][T15649] bridge_slave_1: entered promiscuous mode [ 144.338835][T15777] loop4: detected capacity change from 0 to 512 [ 144.341789][T15778] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4) [ 144.351806][T15778] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 144.351954][T15777] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 144.360843][T15778] vhci_hcd vhci_hcd.0: Device attached [ 144.369351][T15777] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 144.380223][T15779] vhci_hcd: connection closed [ 144.383930][ T31] vhci_hcd: stop threads [ 144.387953][T15777] EXT4-fs (loop4): 1 truncate cleaned up [ 144.388626][ T31] vhci_hcd: release socket [ 144.388638][ T31] vhci_hcd: disconnect device [ 144.410284][T15649] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 144.421806][T15649] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 144.431507][T15777] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 144.437743][T15777] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #2: block 4: comm syz.4.5700: lblock 0 mapped to illegal pblock 4 (length 1) [ 144.459876][T15777] EXT4-fs (loop4): Remounting filesystem read-only [ 144.477822][T15649] team0: Port device team_slave_0 added [ 144.484190][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 144.484957][T15649] team0: Port device team_slave_1 added [ 144.512535][T15649] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 144.519534][T15649] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 144.530153][T15788] devpts: Unknown parameter 'fsname' [ 144.546270][T15649] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 144.568020][T15649] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 144.575019][T15649] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 144.601897][T15649] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 144.633290][T15790] loop4: detected capacity change from 0 to 8192 [ 144.643213][T15649] hsr_slave_0: entered promiscuous mode [ 144.650682][T15649] hsr_slave_1: entered promiscuous mode [ 144.776915][T15649] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 144.787868][T15649] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 144.804913][T15649] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 144.818360][T15649] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 144.827854][T15815] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5716'. [ 144.859526][T15825] hugetlbfs: Bad value 'e' for mount option 'size' [ 144.859526][T15825] [ 144.894898][T15649] 8021q: adding VLAN 0 to HW filter on device bond0 [ 144.919876][T15649] 8021q: adding VLAN 0 to HW filter on device team0 [ 144.935491][ T37] bridge0: port 1(bridge_slave_0) entered blocking state [ 144.942696][ T37] bridge0: port 1(bridge_slave_0) entered forwarding state [ 144.958155][T15833] vhci_hcd: invalid port number 96 [ 144.962378][ T37] bridge0: port 2(bridge_slave_1) entered blocking state [ 144.963429][T15833] vhci_hcd: default hub control req: 0300 vfffa i0060 l0 [ 144.970412][ T37] bridge0: port 2(bridge_slave_1) entered forwarding state [ 144.996640][T15649] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 145.114752][T15858] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5732'. [ 145.123939][T15858] netlink: 55 bytes leftover after parsing attributes in process `syz.1.5732'. [ 145.138926][T15649] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 145.396138][T15649] veth0_vlan: entered promiscuous mode [ 145.405620][T15649] veth1_vlan: entered promiscuous mode [ 145.469428][T15649] veth0_macvtap: entered promiscuous mode [ 145.486376][T15649] veth1_macvtap: entered promiscuous mode [ 145.509590][T15649] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 145.530218][T15649] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 145.544244][ T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 145.554999][ T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 145.578521][ T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 145.609439][ T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 145.665320][T15923] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5756'. [ 145.758232][T15937] netlink: 104 bytes leftover after parsing attributes in process `syz.5.5762'. [ 145.837757][T15948] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5768'. [ 145.877472][T15959] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5773'. [ 145.982796][T15974] loop5: detected capacity change from 0 to 1024 [ 146.001126][T15974] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 146.025052][T15974] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 146.056645][T15974] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 146.076560][T15974] EXT4-fs (loop5): orphan cleanup on readonly fs [ 146.083214][T15974] EXT4-fs error (device loop5): ext4_free_blocks:6706: comm syz.5.5780: Freeing blocks not in datazone - block = 0, count = 4096 [ 146.098250][T15974] EXT4-fs (loop5): Remounting filesystem read-only [ 146.104894][T15974] EXT4-fs (loop5): 1 orphan inode deleted [ 146.111343][T15974] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 146.156797][T15649] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 146.168639][T15995] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5792'. [ 146.355007][T16014] netlink: 'syz.2.5800': attribute type 10 has an invalid length. [ 146.442000][T16026] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5806'. [ 146.451227][T16026] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5806'. [ 146.505273][T16032] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5809'. [ 146.642819][T16048] netlink: 44 bytes leftover after parsing attributes in process `syz.4.5816'. [ 146.790728][T16062] random: crng reseeded on system resumption [ 146.829528][T16064] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5824'. [ 146.921333][T16076] loop5: detected capacity change from 0 to 1024 [ 146.962856][T16076] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 146.975526][T16076] ext4 filesystem being mounted at /14/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 147.008020][T15649] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 147.212853][T16113] geneve0: entered allmulticast mode [ 147.277741][T16120] xt_nfacct: accounting object `\$9ZM#mU|^c\F9YⳈ' does not exist [ 147.379230][T16137] IPv6: sit1: Disabled Multicast RS [ 147.488343][T16156] block device autoloading is deprecated and will be removed. [ 147.541082][T16165] random: crng reseeded on system resumption [ 147.573699][ T29] kauditd_printk_skb: 29 callbacks suppressed [ 147.573714][ T29] audit: type=1400 audit(1759923633.812:1664): avc: denied { read write } for pid=3314 comm="syz-executor" name="loop3" dev="devtmpfs" ino=701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 147.603249][ T29] audit: type=1400 audit(1759923633.812:1665): avc: denied { open } for pid=3314 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 147.630791][T16171] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 147.638043][ T29] audit: type=1400 audit(1759923633.812:1666): avc: denied { ioctl } for pid=3314 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=701 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 147.688682][T16180] ieee802154 phy0 wpan0: encryption failed: -22 [ 147.839898][ T29] audit: type=1400 audit(1759923634.056:1667): avc: denied { audit_write } for pid=16204 comm="syz.2.5892" capability=29 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 147.862015][ T29] audit: type=1107 audit(1759923634.056:1668): pid=16204 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='' [ 147.885352][ T29] audit: type=1400 audit(1759923634.102:1669): avc: denied { ioctl } for pid=16210 comm="syz.3.5894" path="socket:[46670]" dev="sockfs" ino=46670 ioctlcmd=0x89ed scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 147.897178][T16213] IPVS: Error connecting to the multicast addr [ 148.211756][ T1037] Process accounting resumed [ 148.235379][T16265] Process accounting resumed [ 148.478163][T16314] 9pnet_rdma: rdma_create_trans (16314): problem binding to privport: 13 [ 148.660959][T16334] tc_dump_action: action bad kind [ 148.721826][T16346] netlink: 'syz.1.5960': attribute type 6 has an invalid length. [ 148.856240][T16370] bridge0: port 1(veth0_to_bridge) entered blocking state [ 148.863603][T16370] bridge0: port 1(veth0_to_bridge) entered disabled state [ 148.886384][T16370] veth0_to_bridge: entered allmulticast mode [ 148.893468][T16370] veth0_to_bridge: entered promiscuous mode [ 149.081475][T16403] netlink: 'syz.3.5989': attribute type 1 has an invalid length. [ 149.206709][T16171] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 149.250493][T16171] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 149.290637][T16434] loop4: detected capacity change from 0 to 1024 [ 149.312411][T16434] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 149.325667][T16434] ext4 filesystem being mounted at /1235/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 149.348174][T16171] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 149.405150][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 149.437232][ T1765] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 149.465025][ T1765] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 149.490097][ T1765] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 149.508468][ T1765] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 149.590879][T16470] loop5: detected capacity change from 0 to 1024 [ 149.613547][T16470] Quota error (device loop5): do_check_range: Getting block 64 out of range 1-5 [ 149.622705][T16470] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0 [ 149.632273][T16470] EXT4-fs error (device loop5): ext4_acquire_dquot:6945: comm syz.5.6019: Failed to acquire dquot type 0 [ 149.647441][T16470] EXT4-fs error (device loop5): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 149.662401][T16470] EXT4-fs error (device loop5): ext4_do_update_inode:5624: inode #13: comm syz.5.6019: corrupted inode contents [ 149.663297][T16476] loop4: detected capacity change from 0 to 1024 [ 149.681926][T16470] EXT4-fs error (device loop5): ext4_dirty_inode:6509: inode #13: comm syz.5.6019: mark_inode_dirty error [ 149.694027][T16470] EXT4-fs error (device loop5): ext4_do_update_inode:5624: inode #13: comm syz.5.6019: corrupted inode contents [ 149.706613][T16470] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #13: comm syz.5.6019: mark_inode_dirty error [ 149.719465][T16470] EXT4-fs error (device loop5): ext4_do_update_inode:5624: inode #13: comm syz.5.6019: corrupted inode contents [ 149.729364][T16476] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 149.744600][T16470] EXT4-fs error (device loop5) in ext4_orphan_del:301: Corrupt filesystem [ 149.753359][T16470] EXT4-fs error (device loop5): ext4_do_update_inode:5624: inode #13: comm syz.5.6019: corrupted inode contents [ 149.768220][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 149.771304][T16470] EXT4-fs error (device loop5): ext4_truncate:4637: inode #13: comm syz.5.6019: mark_inode_dirty error [ 149.788754][T16470] EXT4-fs error (device loop5) in ext4_process_orphan:343: Corrupt filesystem [ 149.800662][T16470] EXT4-fs (loop5): 1 truncate cleaned up [ 149.810281][T16470] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 149.867096][T15649] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 150.195889][ T29] audit: type=1107 audit(1759923636.254:1670): pid=16513 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='' [ 150.419386][ T29] audit: type=1400 audit(1759923636.469:1671): avc: denied { ioctl } for pid=16549 comm="syz.1.6057" path="/dev/usbmon0" dev="devtmpfs" ino=141 ioctlcmd=0x9204 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 151.052981][T16664] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 151.183894][T16682] loop3: detected capacity change from 0 to 512 [ 151.204291][T16682] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 151.219450][T16682] EXT4-fs warning (device loop3): dx_probe:837: inode #2: comm syz.3.6123: Unimplemented hash flags: 0x0001 [ 151.230999][T16682] EXT4-fs warning (device loop3): dx_probe:934: inode #2: comm syz.3.6123: Corrupt directory, running e2fsck is recommended [ 151.244431][T16682] EXT4-fs error (device loop3): ext4_readdir:264: inode #2: block 3: comm syz.3.6123: path /1235/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 151.278987][T16692] __nla_validate_parse: 18 callbacks suppressed [ 151.279018][T16692] netlink: 536 bytes leftover after parsing attributes in process `syz.4.6127'. [ 151.299004][T16692] netlink: 32 bytes leftover after parsing attributes in process `syz.4.6127'. [ 151.316716][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 151.327897][T16695] netlink: 296 bytes leftover after parsing attributes in process `syz.5.6128'. [ 151.341051][T16696] loop4: detected capacity change from 0 to 512 [ 151.432123][T16706] loop3: detected capacity change from 0 to 1024 [ 151.475246][T16706] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 151.507903][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 151.561574][T16723] loop3: detected capacity change from 0 to 2048 [ 151.572986][T16725] loop5: detected capacity change from 0 to 164 [ 151.579762][T16723] EXT4-fs: Ignoring removed bh option [ 151.591445][T16725] rock: directory entry would overflow storage [ 151.597643][T16725] rock: sig=0x5252, size=5, remaining=3 [ 151.603438][T16725] isofs_fill_super: root inode is not a directory. Corrupted media? [ 151.614756][T16723] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 151.663221][T16731] loop4: detected capacity change from 0 to 512 [ 151.685510][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 151.699218][T16731] EXT4-fs: Ignoring removed orlov option [ 151.711056][T16731] EXT4-fs (loop4): VFS: Can't find ext4 filesystem [ 151.784459][T16740] netlink: 224 bytes leftover after parsing attributes in process `syz.5.6149'. [ 151.793698][T16740] netlink: 16 bytes leftover after parsing attributes in process `syz.5.6149'. [ 151.938015][T16759] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.990526][T16759] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 152.038464][T16759] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 152.092643][T16759] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 152.151611][ T1765] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 152.174266][ T1765] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 152.192634][ T1765] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 152.208760][ T1765] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 152.471252][T16799] loop4: detected capacity change from 0 to 1024 [ 152.499987][T16799] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 152.512473][T16799] ext4 filesystem being mounted at /1269/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 152.531021][T16799] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: block 3: comm syz.4.6175: lblock 3 mapped to illegal pblock 3 (length 1) [ 152.545579][T16799] EXT4-fs error (device loop4): ext4_ext_remove_space:2955: inode #15: comm syz.4.6175: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0) [ 152.583060][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 152.735288][T16823] netlink: 67 bytes leftover after parsing attributes in process `syz.2.6187'. [ 152.824466][T16831] loop4: detected capacity change from 0 to 512 [ 152.836155][T16829] netlink: 60 bytes leftover after parsing attributes in process `syz.2.6191'. [ 152.865233][T16831] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.6190: bad orphan inode 11862016 [ 152.880831][T16831] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 152.895301][T16831] ext4 filesystem being mounted at /1272/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 152.943779][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 153.152561][T16854] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 153.178951][ T29] kauditd_printk_skb: 25 callbacks suppressed [ 153.178972][ T29] audit: type=1400 audit(1759923639.042:1697): avc: denied { read } for pid=16857 comm="syz.5.6202" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 153.309239][T16854] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 153.364762][ T29] audit: type=1400 audit(1759923639.229:1698): avc: denied { remount } for pid=16879 comm="syz.2.6215" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1 [ 153.391370][T16883] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6214'. [ 153.402106][T16854] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 153.419270][T16884] loop5: detected capacity change from 0 to 512 [ 153.450381][T16884] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 153.463341][T16854] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 153.465959][T16889] netlink: 128 bytes leftover after parsing attributes in process `syz.4.6218'. [ 153.492300][T16884] EXT4-fs warning (device loop5): dx_probe:837: inode #2: comm syz.5.6216: Unimplemented hash flags: 0x0001 [ 153.504871][T16884] EXT4-fs warning (device loop5): dx_probe:934: inode #2: comm syz.5.6216: Corrupt directory, running e2fsck is recommended [ 153.529453][ T1765] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.530695][T16884] EXT4-fs error (device loop5): ext4_readdir:264: inode #2: block 3: comm syz.5.6216: path /64/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0 [ 153.567038][ T1765] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.597948][ T1765] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.634300][ T1765] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.652154][T16895] loop3: detected capacity change from 0 to 128 [ 153.683276][T15649] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 153.701606][T16901] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6223'. [ 153.710791][T16901] tipc: Enabling of bearer rejected, failed to enable media [ 153.790380][T16913] loop3: detected capacity change from 0 to 1024 [ 153.807508][T16913] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 153.825343][T16913] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 153.880519][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 153.945280][ T29] audit: type=1400 audit(1759923639.772:1699): avc: denied { listen } for pid=16921 comm="syz.2.6234" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 154.188761][T16948] sctp: [Deprecated]: syz.2.6244 (pid 16948) Use of int in max_burst socket option. [ 154.188761][T16948] Use struct sctp_assoc_value instead [ 154.268917][ T29] audit: type=1400 audit(1759923640.071:1700): avc: denied { connect } for pid=16957 comm="syz.3.6250" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 154.716413][T16996] SELinux: security_context_str_to_sid (r) failed with errno=-22 [ 154.963986][ T29] audit: type=1400 audit(1759923640.717:1701): avc: denied { bind } for pid=17021 comm="syz.4.6279" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 155.158962][T17044] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5) [ 155.165524][T17044] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 155.173847][T17044] vhci_hcd vhci_hcd.0: Device attached [ 155.230000][T17046] vhci_hcd: connection closed [ 155.230246][ T31] vhci_hcd: stop threads [ 155.240019][ T31] vhci_hcd: release socket [ 155.244465][ T31] vhci_hcd: disconnect device [ 155.265742][T17061] loop5: detected capacity change from 0 to 128 [ 155.284542][T17061] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 155.307711][T17061] ext4 filesystem being mounted at /88/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 155.328113][T17066] loop3: detected capacity change from 0 to 1764 [ 155.382306][T17061] EXT4-fs warning (device loop5): __ext4_ioctl:1551: Setting inode version is not supported with metadata_csum enabled. [ 155.415789][ T29] audit: type=1400 audit(1759923641.137:1702): avc: denied { listen } for pid=17071 comm="syz.3.6302" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 155.439561][T15649] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 167.376206][ T29] audit: type=1400 audit(1759923652.326:1703): avc: denied { write } for pid=17077 comm="syz.2.6305" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 167.431554][T17083] loop3: detected capacity change from 0 to 2048 [ 167.492471][T17083] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 167.519910][T17083] ext4 filesystem being mounted at /1268/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 167.541493][ T29] audit: type=1400 audit(1759923652.476:1704): avc: denied { ioctl } for pid=17098 comm="syz.2.6312" path="socket:[50624]" dev="sockfs" ino=50624 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 167.597225][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 167.619081][ T8962] syz_tun (unregistering): left allmulticast mode [ 167.777512][T17132] loop4: detected capacity change from 0 to 512 [ 167.789786][T17087] chnl_net:caif_netlink_parms(): no params data found [ 167.826159][ T29] audit: type=1400 audit(1759923652.757:1705): avc: denied { setopt } for pid=17143 comm="syz.2.6330" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 167.853491][T17132] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 167.857482][ T29] audit: type=1400 audit(1759923652.757:1706): avc: denied { connect } for pid=17143 comm="syz.2.6330" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 167.886532][T17132] ext4 filesystem being mounted at /1293/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 167.930352][T17087] bridge0: port 1(bridge_slave_0) entered blocking state [ 167.937549][T17087] bridge0: port 1(bridge_slave_0) entered disabled state [ 167.949031][T17132] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #2: block 3: comm syz.4.6325: lblock 8 mapped to illegal pblock 3 (length 26) [ 167.971232][ T29] audit: type=1326 audit(1759923652.888:1707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17152 comm="syz.5.6334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f338854eec9 code=0x7ffc0000 [ 167.987907][T17087] bridge_slave_0: entered allmulticast mode [ 167.994790][ T29] audit: type=1326 audit(1759923652.888:1708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17152 comm="syz.5.6334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f338854eec9 code=0x7ffc0000 [ 168.024003][T17087] bridge_slave_0: entered promiscuous mode [ 168.024541][ T29] audit: type=1326 audit(1759923652.888:1709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17152 comm="syz.5.6334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=432 compat=0 ip=0x7f338854eec9 code=0x7ffc0000 [ 168.041459][T17087] bridge0: port 2(bridge_slave_1) entered blocking state [ 168.053827][ T29] audit: type=1326 audit(1759923652.888:1710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17152 comm="syz.5.6334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f338854eec9 code=0x7ffc0000 [ 168.061634][T17087] bridge0: port 2(bridge_slave_1) entered disabled state [ 168.084355][ T29] audit: type=1326 audit(1759923652.888:1711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17152 comm="syz.5.6334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f338854eec9 code=0x7ffc0000 [ 168.118266][T17132] EXT4-fs (loop4): Remounting filesystem read-only [ 168.125171][T17087] bridge_slave_1: entered allmulticast mode [ 168.144750][T17087] bridge_slave_1: entered promiscuous mode [ 168.163932][T17161] __nla_validate_parse: 1 callbacks suppressed [ 168.163950][T17161] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6336'. [ 168.180487][T17161] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6336'. [ 168.189651][T17161] netlink: 'syz.2.6336': attribute type 12 has an invalid length. [ 168.197522][T17161] netlink: 'syz.2.6336': attribute type 11 has an invalid length. [ 168.208632][T17087] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 168.218713][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 168.234135][T17087] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 168.252303][ T31] veth0_to_bridge: left allmulticast mode [ 168.258066][ T31] veth0_to_bridge: left promiscuous mode [ 168.264764][ T31] bridge0: port 1(veth0_to_bridge) entered disabled state [ 168.354348][ T29] audit: type=1400 audit(1759923653.243:1712): avc: denied { create } for pid=17184 comm="syz.4.6349" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=udp_socket permissive=1 [ 168.384719][ T31] bond0 (unregistering): (slave dummy0): Releasing backup interface [ 168.401290][ T31] bond0 (unregistering): Released all slaves [ 168.416802][ T31] bond1 (unregistering): Released all slaves [ 168.474221][T17087] team0: Port device team_slave_0 added [ 168.482732][T17087] team0: Port device team_slave_1 added [ 168.504089][ T31] tipc: Disabling bearer [ 168.517060][ T31] tipc: Left network mode [ 168.529524][T17087] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 168.536540][T17087] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 168.562630][T17087] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 168.574530][T17087] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 168.581506][T17087] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 168.607616][T17087] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 168.627467][ T31] IPVS: stopping backup sync thread 8307 ... [ 168.670556][ T31] hsr_slave_0: left promiscuous mode [ 168.676189][ T31] hsr_slave_1: left promiscuous mode [ 168.687165][ T31] pim6reg99999999 (unregistering): left allmulticast mode [ 168.829779][T17087] hsr_slave_0: entered promiscuous mode [ 168.847889][T17087] hsr_slave_1: entered promiscuous mode [ 168.856767][T17087] debugfs: 'hsr0' already exists in 'hsr' [ 168.863245][T17087] Cannot create hsr debugfs directory [ 169.051441][T17087] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 169.066805][T17087] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 169.097256][T17087] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 169.108101][T17087] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 169.176903][ T31] IPVS: stop unused estimator thread 0... [ 169.214148][T17087] 8021q: adding VLAN 0 to HW filter on device bond0 [ 169.229467][T17087] 8021q: adding VLAN 0 to HW filter on device team0 [ 169.243518][T17280] loop5: detected capacity change from 0 to 512 [ 169.255438][ T37] bridge0: port 1(bridge_slave_0) entered blocking state [ 169.262713][ T37] bridge0: port 1(bridge_slave_0) entered forwarding state [ 169.279381][ T37] bridge0: port 2(bridge_slave_1) entered blocking state [ 169.286647][ T37] bridge0: port 2(bridge_slave_1) entered forwarding state [ 169.311590][T17283] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.6391'. [ 169.347578][T17294] bridge0: port 3($H) entered blocking state [ 169.354217][T17294] bridge0: port 3($H) entered disabled state [ 169.375575][T17294] $H: entered allmulticast mode [ 169.380787][T17294] bond_slave_0: entered allmulticast mode [ 169.386732][T17294] bond_slave_1: entered allmulticast mode [ 169.468715][T17087] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 169.579308][T17332] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6411'. [ 169.668419][T17087] veth0_vlan: entered promiscuous mode [ 169.680832][T17087] veth1_vlan: entered promiscuous mode [ 169.698274][T17087] veth0_macvtap: entered promiscuous mode [ 169.714176][T17087] veth1_macvtap: entered promiscuous mode [ 169.727707][T17087] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 169.740759][T17087] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 169.753956][ T12] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 169.768676][ T12] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 169.783148][ T12] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 169.799904][ T37] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 170.010675][T17393] loop6: detected capacity change from 0 to 2048 [ 170.018239][T17393] EXT4-fs: dax option not supported [ 170.128423][T17407] netlink: 16255 bytes leftover after parsing attributes in process `syz.6.6443'. [ 170.207264][T17415] netlink: 60 bytes leftover after parsing attributes in process `syz.6.6447'. [ 170.216461][T17415] netlink: 16 bytes leftover after parsing attributes in process `syz.6.6447'. [ 170.225473][T17415] netlink: 60 bytes leftover after parsing attributes in process `syz.6.6447'. [ 170.449773][T17444] loop4: detected capacity change from 0 to 1024 [ 170.481676][T17444] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 170.536089][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 171.088210][T17517] loop6: detected capacity change from 0 to 512 [ 171.139694][T17517] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 171.174428][T17517] ext4 filesystem being mounted at /25/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 171.256209][T17087] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 171.431066][T17549] sctp: [Deprecated]: syz.3.6511 (pid 17549) Use of int in maxseg socket option. [ 171.431066][T17549] Use struct sctp_assoc_value instead [ 171.592393][T17572] macvlan2: entered promiscuous mode [ 171.597923][T17572] macvlan2: entered allmulticast mode [ 171.603461][T17572] gretap0: entered allmulticast mode [ 171.635525][T17580] loop5: detected capacity change from 0 to 1024 [ 171.672486][T17580] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 171.702116][T17580] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.6525: Invalid block bitmap block 0 in block_group 0 [ 171.707943][T17595] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6532'. [ 171.718847][T17596] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6531'. [ 171.724865][T17580] EXT4-fs error (device loop5): ext4_acquire_dquot:6945: comm syz.5.6525: Failed to acquire dquot type 0 [ 171.745332][T17591] loop4: detected capacity change from 0 to 1024 [ 171.752074][T17591] EXT4-fs: Ignoring removed nobh option [ 171.758974][T17591] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 171.771171][T17580] EXT4-fs error (device loop5): ext4_free_blocks:6706: comm syz.5.6525: Freeing blocks not in datazone - block = 0, count = 4096 [ 171.794263][T17580] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.6525: Invalid inode bitmap blk 0 in block_group 0 [ 171.798220][T17591] EXT4-fs error (device loop4): ext4_ext_check_inode:523: inode #11: comm syz.4.6530: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 171.808486][T17580] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem [ 171.833097][ T31] EXT4-fs error (device loop5): ext4_release_dquot:6981: comm kworker/u8:1: Failed to release dquot type 0 [ 171.837008][T17580] EXT4-fs (loop5): 1 orphan inode deleted [ 171.875970][T17591] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.6530: couldn't read orphan inode 11 (err -117) [ 171.879569][T17580] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 171.901769][T17591] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 171.911614][T17591] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.6530: Invalid block bitmap block 0 in block_group 0 [ 171.932460][T17591] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.6530: Failed to acquire dquot type 0 [ 171.963115][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 172.026932][T15649] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 172.038540][T17619] nftables ruleset with unbound set [ 172.060375][T17621] loop3: detected capacity change from 0 to 512 [ 172.102022][T17625] vlan2: entered promiscuous mode [ 172.107124][T17625] gretap0: entered promiscuous mode [ 172.111753][T17621] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 172.120721][T17621] EXT4-fs (loop3): orphan cleanup on readonly fs [ 172.157210][T17621] EXT4-fs warning (device loop3): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 172.236595][T17621] EXT4-fs (loop3): Cannot turn on quotas: error -117 [ 172.285229][T17621] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.6544: bg 0: block 40: padding at end of block bitmap is not set [ 172.325703][T17621] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 172.337326][T17621] EXT4-fs (loop3): 1 truncate cleaned up [ 172.343364][T17621] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 172.374382][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 172.513430][T17679] netlink: 'syz.6.6570': attribute type 7 has an invalid length. [ 172.521338][T17679] netlink: 'syz.6.6570': attribute type 8 has an invalid length. [ 172.522379][T17672] loop5: detected capacity change from 0 to 8192 [ 172.606744][T17693] 9p: Unknown access argument : -22 [ 172.812262][T17727] loop3: detected capacity change from 0 to 512 [ 172.822911][T17729] loop4: detected capacity change from 0 to 512 [ 172.838461][T17727] EXT4-fs (loop3): bad s_want_extra_isize: 288 [ 172.851528][T17729] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.6595: casefold flag without casefold feature [ 172.869109][T17729] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.6595: couldn't read orphan inode 15 (err -117) [ 172.881941][T17729] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 172.883891][T17737] loop6: detected capacity change from 0 to 512 [ 172.921221][T17744] netlink: 'syz.2.6602': attribute type 21 has an invalid length. [ 172.927594][T17737] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 172.940494][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 172.941669][T17737] EXT4-fs (loop6): 1 truncate cleaned up [ 172.956078][T17737] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 173.006889][ T29] kauditd_printk_skb: 12 callbacks suppressed [ 173.006911][ T29] audit: type=1400 audit(1759923657.593:1719): avc: denied { ioctl } for pid=17750 comm="syz.4.6605" path="socket:[53123]" dev="sockfs" ino=53123 ioctlcmd=0x8903 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 173.043641][T17757] netlink: 'syz.5.6608': attribute type 4 has an invalid length. [ 173.079206][T17087] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 173.243946][ T29] audit: type=1326 audit(1759923657.818:1720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17784 comm="syz.3.6622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 173.267590][ T29] audit: type=1326 audit(1759923657.818:1721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17784 comm="syz.3.6622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 173.296649][ T29] audit: type=1326 audit(1759923657.865:1722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17784 comm="syz.3.6622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 173.320377][ T29] audit: type=1326 audit(1759923657.865:1723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17784 comm="syz.3.6622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 173.344186][ T29] audit: type=1326 audit(1759923657.865:1724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17784 comm="syz.3.6622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 173.375741][ T29] audit: type=1326 audit(1759923657.874:1725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17784 comm="syz.3.6622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 173.399201][ T29] audit: type=1326 audit(1759923657.874:1726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17784 comm="syz.3.6622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 173.423923][ T29] audit: type=1326 audit(1759923657.986:1727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17784 comm="syz.3.6622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e18f1eec9 code=0x7ffc0000 [ 173.622388][T17804] __nla_validate_parse: 14 callbacks suppressed [ 173.622405][T17804] netlink: 24 bytes leftover after parsing attributes in process `syz.5.6632'. [ 173.664081][ T29] audit: type=1326 audit(1759923658.211:1728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17806 comm="syz.4.6634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f307b1feec9 code=0x7ffc0000 [ 173.843674][T17826] loop3: detected capacity change from 0 to 128 [ 173.863899][T17826] FAT-fs (loop3): error, invalid FAT chain (i_pos 548, last_block 8) [ 173.872073][T17826] FAT-fs (loop3): Filesystem has been set read-only [ 173.923127][T17832] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 173.959492][T17836] ipvlan2: entered promiscuous mode [ 174.076657][T17848] netlink: 'syz.5.6653': attribute type 1 has an invalid length. [ 174.229913][T17753] syz.2.6607 (17753) used greatest stack depth: 8088 bytes left [ 174.407936][T17893] netlink: 16 bytes leftover after parsing attributes in process `syz.5.6685'. [ 174.407960][T17893] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 174.407981][T17893] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:1) [ 174.408039][T17893] bridge_slave_0: default FDB implementation only supports local addresses [ 174.561055][T17911] program syz.4.6683 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 174.732634][T17937] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 174.735181][T17937] A link change request failed with some changes committed already. Interface batadv_slave_1 may have been left with an inconsistent configuration, please check. [ 175.006023][T17959] loop4: detected capacity change from 0 to 512 [ 175.016860][T17959] EXT4-fs error (device loop4): ext4_xattr_inode_iget:446: comm syz.4.6707: error while reading EA inode 32 err=-116 [ 175.016988][T17959] EXT4-fs (loop4): Remounting filesystem read-only [ 175.017007][T17959] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 175.017037][T17959] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -30) [ 175.017068][T17959] EXT4-fs (loop4): 1 orphan inode deleted [ 175.017675][T17959] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 175.141909][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 175.181658][T17972] loop6: detected capacity change from 0 to 128 [ 175.196541][T17972] syz.6.6713: attempt to access beyond end of device [ 175.196541][T17972] loop6: rw=2049, sector=145, nr_sectors = 8 limit=128 [ 175.196601][T17972] syz.6.6713: attempt to access beyond end of device [ 175.196601][T17972] loop6: rw=2049, sector=161, nr_sectors = 8 limit=128 [ 175.196665][T17972] syz.6.6713: attempt to access beyond end of device [ 175.196665][T17972] loop6: rw=2049, sector=177, nr_sectors = 24 limit=128 [ 175.196717][T17972] syz.6.6713: attempt to access beyond end of device [ 175.196717][T17972] loop6: rw=2049, sector=209, nr_sectors = 8 limit=128 [ 175.196830][T17972] syz.6.6713: attempt to access beyond end of device [ 175.196830][T17972] loop6: rw=2049, sector=225, nr_sectors = 8 limit=128 [ 175.196909][T17972] syz.6.6713: attempt to access beyond end of device [ 175.196909][T17972] loop6: rw=2049, sector=241, nr_sectors = 8 limit=128 [ 175.196953][T17972] syz.6.6713: attempt to access beyond end of device [ 175.196953][T17972] loop6: rw=2049, sector=257, nr_sectors = 8 limit=128 [ 175.196993][T17972] syz.6.6713: attempt to access beyond end of device [ 175.196993][T17972] loop6: rw=2049, sector=273, nr_sectors = 8 limit=128 [ 175.197040][T17972] syz.6.6713: attempt to access beyond end of device [ 175.197040][T17972] loop6: rw=2049, sector=289, nr_sectors = 9 limit=128 [ 175.381914][T17988] sd 0:0:1:0: device reset [ 175.625047][T18025] netlink: 44 bytes leftover after parsing attributes in process `syz.4.6739'. [ 175.634176][T18025] netlink: 'syz.4.6739': attribute type 1 has an invalid length. [ 175.695260][T18041] netlink: 60 bytes leftover after parsing attributes in process `syz.3.6738'. [ 175.704688][T18029] netlink: 60 bytes leftover after parsing attributes in process `syz.3.6738'. [ 175.749994][T18047] usb usb3: usbfs: process 18047 (syz.5.6750) did not claim interface 0 before use [ 176.316315][T18144] netlink: 'syz.5.6794': attribute type 11 has an invalid length. [ 176.324288][T18144] netlink: 56 bytes leftover after parsing attributes in process `syz.5.6794'. [ 176.570752][T18182] tipc: Enabling of bearer rejected, failed to enable media [ 176.635983][T18192] macvtap1: entered promiscuous mode [ 176.641343][T18192] syz_tun: entered promiscuous mode [ 176.660578][T18198] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6820'. [ 176.670830][T18192] syz_tun: left promiscuous mode [ 176.769792][T18212] loop6: detected capacity change from 0 to 512 [ 176.786746][T18212] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 176.799464][T18212] ext4 filesystem being mounted at /79/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 176.835007][T17087] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 176.906439][T18231] netem: change failed [ 177.015075][T18250] loop4: detected capacity change from 0 to 512 [ 177.039596][T18250] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 177.065627][T18250] EXT4-fs (loop4): orphan cleanup on readonly fs [ 177.101113][T18250] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #16: comm syz.4.6845: corrupted inode contents [ 177.127960][T18267] loop3: detected capacity change from 0 to 256 [ 177.135672][T18250] EXT4-fs (loop4): Remounting filesystem read-only [ 177.142551][T18250] EXT4-fs (loop4): 1 truncate cleaned up [ 177.156318][ T166] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 177.167057][ T166] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 177.180287][ T166] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started [ 177.193059][T18267] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000001) [ 177.194365][T18250] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 177.236365][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 177.426872][T18303] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6865'. [ 177.745510][T18338] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6883'. [ 177.914430][T18362] netlink: 108 bytes leftover after parsing attributes in process `syz.2.6894'. [ 177.998504][T18373] netlink: 'syz.5.6900': attribute type 12 has an invalid length. [ 177.998527][T18373] netlink: 'syz.5.6900': attribute type 11 has an invalid length. [ 178.099818][T18383] loop5: detected capacity change from 0 to 1024 [ 178.129142][T18383] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 178.168361][T15649] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 178.478915][T18415] loop3: detected capacity change from 0 to 128 [ 178.644787][T18445] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 178.689345][T18445] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 178.871715][T18457] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 178.918763][ T29] kauditd_printk_skb: 61 callbacks suppressed [ 178.918782][ T29] audit: type=1400 audit(1759923663.132:1784): avc: denied { map } for pid=18460 comm="syz.6.6942" path="socket:[55442]" dev="sockfs" ino=55442 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 179.056877][T18467] syz_tun: entered promiscuous mode [ 179.089377][T18467] macsec1: entered allmulticast mode [ 179.094754][T18467] syz_tun: entered allmulticast mode [ 179.123562][T18467] syz_tun: left allmulticast mode [ 179.128669][T18467] syz_tun: left promiscuous mode [ 179.286183][T18489] __nla_validate_parse: 10 callbacks suppressed [ 179.286206][T18489] netlink: 47 bytes leftover after parsing attributes in process `syz.2.6955'. [ 179.411354][T18506] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6965'. [ 179.441048][T18510] netlink: 16402 bytes leftover after parsing attributes in process `syz.5.6961'. [ 179.442513][T18512] netlink: 'syz.2.6967': attribute type 1 has an invalid length. [ 179.476715][T18502] netlink: 16402 bytes leftover after parsing attributes in process `syz.5.6961'. [ 179.587484][ T29] audit: type=1326 audit(1759923663.758:1785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18523 comm="syz.5.6974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f338854eec9 code=0x7ffc0000 [ 179.611147][ T29] audit: type=1326 audit(1759923663.758:1786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18523 comm="syz.5.6974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f338854eec9 code=0x7ffc0000 [ 179.615399][T18525] vhci_hcd: invalid port number 236 [ 179.634765][ T29] audit: type=1326 audit(1759923663.758:1787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18523 comm="syz.5.6974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f338854eec9 code=0x7ffc0000 [ 179.664913][T18525] vhci_hcd: invalid port number 236 [ 179.674911][ T29] audit: type=1326 audit(1759923663.758:1788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18523 comm="syz.5.6974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f338854eec9 code=0x7ffc0000 [ 179.699323][ T29] audit: type=1326 audit(1759923663.758:1789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18523 comm="syz.5.6974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7f338854eec9 code=0x7ffc0000 [ 179.741678][ T29] audit: type=1326 audit(1759923663.899:1790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18523 comm="syz.5.6974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f338854eec9 code=0x7ffc0000 [ 179.766010][ T29] audit: type=1326 audit(1759923663.899:1791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18523 comm="syz.5.6974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f338854eec9 code=0x7ffc0000 [ 179.832026][T18539] netlink: 27 bytes leftover after parsing attributes in process `syz.5.6981'. [ 179.947775][T18552] loop9: detected capacity change from 0 to 8 [ 179.956297][ C1] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 179.966549][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 179.975868][ C1] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1 [ 179.986121][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 180.009250][T18552] loop9: unable to read partition table [ 180.015897][T18552] loop_reread_partitions: partition scan of loop9 (被xڬdGݡ [ 180.015897][T18552] ) failed (rc=-5) [ 180.050132][T18566] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6994'. [ 180.143705][ T29] audit: type=1400 audit(1759923664.282:1792): avc: denied { ioctl } for pid=18583 comm="syz.5.7003" path="net:[4026532383]" dev="nsfs" ino=4026532383 ioctlcmd=0xb707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 180.200253][T18590] netlink: 16178 bytes leftover after parsing attributes in process `syz.3.7005'. [ 180.244800][T18601] netlink: 80 bytes leftover after parsing attributes in process `syz.4.7011'. [ 180.435291][T18641] loop5: detected capacity change from 0 to 512 [ 180.462474][T18641] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 180.499130][T18641] ext4 filesystem being mounted at /256/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 180.515204][T18650] netlink: 148 bytes leftover after parsing attributes in process `syz.3.7031'. [ 180.525649][T18650] netlink: 40 bytes leftover after parsing attributes in process `syz.3.7031'. [ 180.559812][T18641] EXT4-fs error (device loop5): ext4_do_update_inode:5624: inode #2: comm syz.5.7029: corrupted inode contents [ 180.596058][T18641] EXT4-fs error (device loop5): ext4_dirty_inode:6509: inode #2: comm syz.5.7029: mark_inode_dirty error [ 180.610427][T18641] EXT4-fs error (device loop5): ext4_do_update_inode:5624: inode #2: comm syz.5.7029: corrupted inode contents [ 180.626820][T18641] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #2: comm syz.5.7029: mark_inode_dirty error [ 180.630187][ T29] audit: type=1400 audit(1759923664.731:1793): avc: denied { recv } for pid=3315 comm="syz-executor" saddr=10.128.0.163 src=30036 daddr=10.128.1.218 dest=59484 netif=eth0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1 [ 180.733647][T15649] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 181.185882][T18735] loop5: detected capacity change from 0 to 512 [ 181.210621][T18735] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 181.231593][T18735] ext4 filesystem being mounted at /268/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 181.358745][T18756] loop3: detected capacity change from 0 to 4096 [ 181.372917][T18756] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 181.462310][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 181.586949][T15649] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 181.853375][T18789] bridge0: port 3(bond0) entered blocking state [ 181.859953][T18789] bridge0: port 3(bond0) entered disabled state [ 181.867486][T18789] bond0: entered promiscuous mode [ 181.868898][T18791] netlink: 'syz.6.7099': attribute type 1 has an invalid length. [ 181.872651][T18789] bond_slave_0: entered promiscuous mode [ 181.872925][T18789] bond_slave_1: entered promiscuous mode [ 181.873043][T18789] dummy0: entered promiscuous mode [ 182.036938][T18810] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5) [ 182.043514][T18810] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 182.051194][T18810] vhci_hcd vhci_hcd.0: Device attached [ 182.074062][T18811] vhci_hcd: connection closed [ 182.074218][ T12] vhci_hcd: stop threads [ 182.083210][ T12] vhci_hcd: release socket [ 182.088405][ T12] vhci_hcd: disconnect device [ 182.090854][T18818] loop5: detected capacity change from 0 to 1024 [ 182.100115][T18818] EXT4-fs: Ignoring removed i_version option [ 182.106488][T18818] EXT4-fs: Ignoring removed nobh option [ 182.118746][T18818] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 182.159247][T15649] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 182.896424][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 183.566956][T18961] SELinux: Context system_u:object_r:pam_console_exec_t:s0 is not valid (left unmapped). [ 183.811518][T18922] syz.3.7155 invoked oom-killer: gfp_mask=0x402d02(GFP_NOIO|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN|__GFP_ACCOUNT), order=0, oom_score_adj=1000 [ 183.826111][T18922] CPU: 0 UID: 0 PID: 18922 Comm: syz.3.7155 Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 183.826154][T18922] Tainted: [W]=WARN [ 183.826163][T18922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 183.826243][T18922] Call Trace: [ 183.826253][T18922] [ 183.826266][T18922] __dump_stack+0x1d/0x30 [ 183.826297][T18922] dump_stack_lvl+0xe8/0x140 [ 183.826326][T18922] dump_stack+0x15/0x1b [ 183.826351][T18922] dump_header+0x81/0x220 [ 183.826445][T18922] oom_kill_process+0x342/0x400 [ 183.826533][T18922] out_of_memory+0x979/0xb80 [ 183.826578][T18922] try_charge_memcg+0x5e6/0x9e0 [ 183.826640][T18922] obj_cgroup_charge_pages+0xa6/0x150 [ 183.826820][T18922] __memcg_kmem_charge_page+0x9f/0x170 [ 183.826885][T18922] __alloc_frozen_pages_noprof+0x188/0x360 [ 183.826940][T18922] alloc_pages_mpol+0xb3/0x260 [ 183.827038][T18922] ? alloc_pages_noprof+0xf4/0x130 [ 183.827074][T18922] alloc_pages_noprof+0x90/0x130 [ 183.827102][T18922] __vmalloc_node_range_noprof+0x7a5/0xed0 [ 183.827175][T18922] __kvmalloc_node_noprof+0x483/0x670 [ 183.827250][T18922] ? ip_set_alloc+0x24/0x30 [ 183.827284][T18922] ? ip_set_alloc+0x24/0x30 [ 183.827318][T18922] ? __kmalloc_cache_noprof+0x249/0x4a0 [ 183.827429][T18922] ip_set_alloc+0x24/0x30 [ 183.827464][T18922] hash_netiface_create+0x282/0x740 [ 183.827506][T18922] ? __pfx_hash_netiface_create+0x10/0x10 [ 183.827546][T18922] ip_set_create+0x3c9/0x970 [ 183.827663][T18922] ? __nla_parse+0x40/0x60 [ 183.827714][T18922] nfnetlink_rcv_msg+0x4c3/0x590 [ 183.827781][T18922] netlink_rcv_skb+0x123/0x220 [ 183.827819][T18922] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 183.827862][T18922] nfnetlink_rcv+0x167/0x16c0 [ 183.828021][T18922] ? kmem_cache_free+0xe4/0x3d0 [ 183.828065][T18922] ? __kfree_skb+0x109/0x150 [ 183.828223][T18922] ? nlmon_xmit+0x4f/0x60 [ 183.828254][T18922] ? consume_skb+0x49/0x150 [ 183.828289][T18922] ? nlmon_xmit+0x4f/0x60 [ 183.828383][T18922] ? dev_hard_start_xmit+0x3b0/0x3e0 [ 183.828504][T18922] ? __dev_queue_xmit+0x1200/0x2000 [ 183.828545][T18922] ? __dev_queue_xmit+0x182/0x2000 [ 183.828589][T18922] ? ref_tracker_free+0x37d/0x3e0 [ 183.828647][T18922] ? __netlink_deliver_tap+0x4dc/0x500 [ 183.828754][T18922] netlink_unicast+0x5bd/0x690 [ 183.828873][T18922] netlink_sendmsg+0x58b/0x6b0 [ 183.828919][T18922] ? __pfx_netlink_sendmsg+0x10/0x10 [ 183.828961][T18922] __sock_sendmsg+0x142/0x180 [ 183.828989][T18922] ____sys_sendmsg+0x31e/0x4e0 [ 183.829074][T18922] ___sys_sendmsg+0x17b/0x1d0 [ 183.829174][T18922] __x64_sys_sendmsg+0xd4/0x160 [ 183.829222][T18922] x64_sys_call+0x191e/0x3000 [ 183.829253][T18922] do_syscall_64+0xd2/0x200 [ 183.829304][T18922] ? arch_exit_to_user_mode_prepare+0x27/0x80 [ 183.829344][T18922] ? irqentry_exit_to_user_mode+0x7b/0xa0 [ 183.829375][T18922] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 183.829480][T18922] RIP: 0033:0x7f6e18f1eec9 [ 183.829508][T18922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 183.829535][T18922] RSP: 002b:00007f6e1797f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 183.829563][T18922] RAX: ffffffffffffffda RBX: 00007f6e19175fa0 RCX: 00007f6e18f1eec9 [ 183.829581][T18922] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003 [ 183.829599][T18922] RBP: 00007f6e18fa1f91 R08: 0000000000000000 R09: 0000000000000000 [ 183.829631][T18922] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 183.829648][T18922] R13: 00007f6e19176038 R14: 00007f6e19175fa0 R15: 00007ffda140b2d8 [ 183.829685][T18922] [ 183.830046][T18922] memory: usage 307200kB, limit 307200kB, failcnt 88 [ 184.190552][T18922] memory+swap: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 184.190574][T18922] kmem: usage 305904kB, limit 9007199254740988kB, failcnt 0 [ 184.190591][T18922] Memory cgroup stats for /syz3: [ 184.213715][T18922] cache 65536 [ 184.222117][T18922] rss 1130496 [ 184.225645][T18922] shmem 0 [ 184.228817][T18922] mapped_file 65536 [ 184.232724][T18922] dirty 65536 [ 184.236070][T18922] writeback 53248 [ 184.239766][T18922] workingset_refault_anon 0 [ 184.244324][T18922] workingset_refault_file 0 [ 184.248840][T18922] swap 28672 [ 184.252061][T18922] swapcached 94208 [ 184.255832][T18922] pgpgin 121131 [ 184.259391][T18922] pgpgout 120814 [ 184.263009][T18922] pgfault 195358 [ 184.266773][T18922] pgmajfault 3 [ 184.270398][T18922] inactive_anon 1036288 [ 184.274572][T18922] active_anon 188416 [ 184.278528][T18922] inactive_file 0 [ 184.282170][T18922] active_file 73728 [ 184.286083][T18922] unevictable 0 [ 184.289578][T18922] hierarchical_memory_limit 314572800 [ 184.294959][T18922] hierarchical_memsw_limit 9223372036854771712 [ 184.301157][T18922] total_cache 65536 [ 184.304979][T18922] total_rss 1130496 [ 184.308827][T18922] total_shmem 0 [ 184.312296][T18922] total_mapped_file 65536 [ 184.316647][T18922] total_dirty 65536 [ 184.320506][T18922] total_writeback 53248 [ 184.324878][T18922] total_workingset_refault_anon 0 [ 184.330004][T18922] total_workingset_refault_file 0 [ 184.335050][T18922] total_swap 28672 [ 184.338833][T18922] total_swapcached 94208 [ 184.343128][T18922] total_pgpgin 121131 [ 184.347135][T18922] total_pgpgout 120814 [ 184.351344][T18922] total_pgfault 195358 [ 184.355440][T18922] total_pgmajfault 3 [ 184.359387][T18922] total_inactive_anon 1036288 [ 184.364151][T18922] total_active_anon 188416 [ 184.368580][T18922] total_inactive_file 0 [ 184.372819][T18922] total_active_file 73728 [ 184.377348][T18922] total_unevictable 0 [ 184.381479][T18922] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.7155,pid=18918,uid=0 [ 184.396303][T18922] Memory cgroup out of memory: Killed process 18918 (syz.3.7155) total-vm:95872kB, anon-rss:1136kB, file-rss:22184kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000 [ 184.545411][T19020] gretap0: entered promiscuous mode [ 184.553171][T19020] vlan4: entered promiscuous mode [ 184.692720][T19029] __nla_validate_parse: 7 callbacks suppressed [ 184.692745][T19029] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7208'. [ 184.711038][ T29] kauditd_printk_skb: 124 callbacks suppressed [ 184.711054][ T29] audit: type=1400 audit(1759923668.548:1918): avc: denied { append } for pid=19034 comm="syz.4.7211" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 184.742522][ T29] audit: type=1400 audit(1759923668.548:1919): avc: denied { open } for pid=19034 comm="syz.4.7211" path="/dev/sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 184.812901][ T29] audit: type=1400 audit(1759923668.604:1920): avc: denied { ioctl } for pid=19034 comm="syz.4.7211" path="/dev/sg0" dev="devtmpfs" ino=135 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 184.884526][ T29] audit: type=1400 audit(1759923668.670:1921): avc: denied { create } for pid=19038 comm="syz.2.7213" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=rawip_socket permissive=1 [ 184.919796][ T29] audit: type=1400 audit(1759923668.745:1922): avc: denied { read } for pid=19052 comm="syz.5.7216" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 184.920552][T19053] sd 0:0:1:0: device reset [ 184.964057][ T29] audit: type=1400 audit(1759923668.791:1923): avc: denied { ioctl } for pid=19054 comm="syz.3.7219" path="socket:[57519]" dev="sockfs" ino=57519 ioctlcmd=0x890b scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 185.191292][T19087] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7238'. [ 185.258636][ T29] audit: type=1400 audit(1759923669.053:1924): avc: denied { create } for pid=19094 comm="syz.5.7241" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 185.293503][ T29] audit: type=1400 audit(1759923669.081:1925): avc: denied { listen } for pid=19094 comm="syz.5.7241" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 185.313863][ T29] audit: type=1400 audit(1759923669.081:1926): avc: denied { ioctl } for pid=19094 comm="syz.5.7241" path="socket:[57583]" dev="sockfs" ino=57583 ioctlcmd=0x89eb scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 185.366790][T19102] can0: slcan on ptm1. [ 185.396122][ T29] audit: type=1326 audit(1759923669.184:1927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19105 comm="syz.6.7246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8802ceec9 code=0x7ffc0000 [ 185.441113][T19101] can0 (unregistered): slcan off ptm1. [ 185.515529][T19109] netlink: 60 bytes leftover after parsing attributes in process `syz.2.7247'. [ 185.524781][T19108] netlink: 60 bytes leftover after parsing attributes in process `syz.2.7247'. [ 185.827508][T19151] loop5: detected capacity change from 0 to 256 [ 186.016074][T19167] loop6: detected capacity change from 0 to 1024 [ 186.016501][T19167] EXT4-fs: Ignoring removed orlov option [ 186.028672][T19167] EXT4-fs: Ignoring removed nomblk_io_submit option [ 186.070194][T19167] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 186.102464][T19176] loop3: detected capacity change from 0 to 512 [ 186.102839][T19176] EXT4-fs: Ignoring removed oldalloc option [ 186.118010][T19176] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: comm syz.3.7277: Parent and EA inode have the same ino 15 [ 186.118195][T19176] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: comm syz.3.7277: Parent and EA inode have the same ino 15 [ 186.130813][T19176] EXT4-fs (loop3): 1 orphan inode deleted [ 186.131167][T19176] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 186.136100][T17087] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 186.232658][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 186.380237][T19198] veth5: entered promiscuous mode [ 186.407583][T19200] loop9: detected capacity change from 0 to 8 [ 186.407890][ C0] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 186.407917][ C0] Buffer I/O error on dev loop9, logical block 0, async page read [ 186.408037][ C0] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 186.442422][ C0] Buffer I/O error on dev loop9, logical block 0, async page read [ 186.450299][T19200] loop9: unable to read partition table [ 186.450326][T19200] loop_reread_partitions: partition scan of loop9 (被xڬdGݡ [ 186.450326][T19200] ) failed (rc=-5) [ 186.520142][T19207] loop4: detected capacity change from 0 to 1024 [ 186.520483][T19207] EXT4-fs: Ignoring removed orlov option [ 186.520580][T19207] EXT4-fs: Ignoring removed nomblk_io_submit option [ 186.544391][T19207] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 186.639003][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 186.713901][T19233] devpts: Bad value for 'gid' [ 186.713918][T19233] devpts: Bad value for 'gid' [ 186.944654][T19262] 9pnet_fd: Insufficient options for proto=fd [ 187.073685][T19281] loop3: detected capacity change from 0 to 736 [ 187.118634][T19287] vhci_hcd: default hub control req: 800f v0000 i0000 l31125 [ 187.213942][T19301] random: crng reseeded on system resumption [ 187.317879][T19313] netlink: 'syz.5.7339': attribute type 3 has an invalid length. [ 187.408234][T19326] SELinux: policydb version 0 does not match my version range 15-35 [ 187.416468][T19326] SELinux: failed to load policy [ 187.496393][T19336] netlink: 'syz.5.7350': attribute type 15 has an invalid length. [ 187.539700][T19344] program syz.6.7354 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 187.565205][T19346] support for cryptoloop has been removed. Use dm-crypt instead. [ 187.577254][T19350] netlink: 20 bytes leftover after parsing attributes in process `syz.2.7357'. [ 187.607443][T19355] bond0: (slave macsec1): Error -34 calling dev_set_mtu [ 187.895775][ T166] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 187.906432][ T166] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 187.929100][ T166] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 187.952324][ T166] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 188.032440][T19422] vlan1: entered promiscuous mode [ 188.037536][T19422] gretap0: entered promiscuous mode [ 188.049602][T19426] loop4: detected capacity change from 0 to 128 [ 188.057699][T19426] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 188.070756][T19426] ext4 filesystem being mounted at /1501/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 188.100607][ T3315] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 188.158303][T19434] loop6: detected capacity change from 0 to 2048 [ 188.164827][T19438] netlink: 'syz.3.7398': attribute type 322 has an invalid length. [ 188.191252][T19434] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 188.242284][T17087] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 188.278136][T19456] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 188.293266][T19460] netlink: 24 bytes leftover after parsing attributes in process `syz.2.7409'. [ 188.343679][T19456] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 188.392791][T19456] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 188.432737][T19478] xt_l2tp: invalid flags combination: 8 [ 188.465181][T19456] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 188.533436][ T166] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 188.566142][ T37] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 188.586437][ T37] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 188.597215][ T37] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 188.659491][T19510] netlink: 80 bytes leftover after parsing attributes in process `syz.6.7434'. [ 188.867638][T19553] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.7455'. [ 189.404599][T19590] loop5: detected capacity change from 0 to 512 [ 189.412034][T19590] EXT4-fs: dax option not supported [ 189.664135][T19634] syz_tun: entered promiscuous mode [ 189.669576][T19634] macvtap1: entered promiscuous mode [ 189.683964][T19634] syz_tun: left promiscuous mode [ 189.693874][T19636] netlink: 'syz.6.7494': attribute type 13 has an invalid length. [ 189.746555][T19636] bridge0: port 2(bridge_slave_1) entered disabled state [ 189.753865][T19636] bridge0: port 1(bridge_slave_0) entered disabled state [ 189.825423][T19636] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 189.887978][T19638] netlink: 'syz.2.7495': attribute type 46 has an invalid length. [ 189.896482][ T166] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 189.907657][ T166] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 189.929090][ T166] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 189.938133][ T166] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 190.101391][ T29] kauditd_printk_skb: 74 callbacks suppressed [ 190.101410][ T29] audit: type=1326 audit(1759923673.600:2002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19669 comm="syz.2.7509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fddaeec9 code=0x7ffc0000 [ 190.164985][T19673] netlink: 36 bytes leftover after parsing attributes in process `syz.5.7511'. [ 190.205305][ T29] audit: type=1326 audit(1759923673.600:2003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19669 comm="syz.2.7509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fddaeec9 code=0x7ffc0000 [ 190.228979][ T29] audit: type=1326 audit(1759923673.600:2004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19669 comm="syz.2.7509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f55fddaeec9 code=0x7ffc0000 [ 190.252955][ T29] audit: type=1326 audit(1759923673.647:2005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19669 comm="syz.2.7509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fddaeec9 code=0x7ffc0000 [ 190.276595][ T29] audit: type=1326 audit(1759923673.647:2006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19669 comm="syz.2.7509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f55fddaeec9 code=0x7ffc0000 [ 190.300375][ T29] audit: type=1326 audit(1759923673.647:2007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19669 comm="syz.2.7509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fddaeec9 code=0x7ffc0000 [ 190.324256][ T29] audit: type=1326 audit(1759923673.647:2008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19669 comm="syz.2.7509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fddaeec9 code=0x7ffc0000 [ 190.347884][ T29] audit: type=1400 audit(1759923673.666:2009): avc: denied { write } for pid=19676 comm="syz.6.7513" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 190.392555][T19684] loop3: detected capacity change from 0 to 512 [ 190.399633][ T29] audit: type=1400 audit(1759923673.843:2010): avc: denied { shutdown } for pid=19682 comm="syz.5.7515" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 190.431602][T19684] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.7516: casefold flag without casefold feature [ 190.472595][T19684] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.7516: couldn't read orphan inode 15 (err -117) [ 190.486414][T19684] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 190.613814][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 190.667511][T19710] pim6reg: tun_chr_ioctl cmd 1074025680 [ 190.708721][T19716] netlink: 92 bytes leftover after parsing attributes in process `syz.5.7531'. [ 190.718478][T19716] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7531'. [ 190.765480][T19720] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7532'. [ 190.786112][T19720] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7532'. [ 190.822026][T19723] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 190.834665][ T29] audit: type=1400 audit(1759923674.264:2011): avc: denied { read write } for pid=19722 comm="syz.5.7533" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 190.864929][T19723] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 191.082878][T19759] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7551'. [ 191.118502][T19765] atomic_op ffff888121e50d28 conn xmit_atomic 0000000000000000 [ 191.167734][T19775] loop6: detected capacity change from 0 to 512 [ 191.175547][T19775] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 191.184929][T19777] can0: slcan on ptm0. [ 191.187321][T19775] EXT4-fs (loop6): 1 truncate cleaned up [ 191.196462][T19775] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 191.223767][T17087] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.233959][T19776] can0 (unregistered): slcan off ptm0. [ 191.267695][T19783] netlink: 28 bytes leftover after parsing attributes in process `syz.6.7562'. [ 191.468663][T19805] loop5: detected capacity change from 0 to 512 [ 191.478570][T19805] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 191.491622][T19805] EXT4-fs (loop5): 1 truncate cleaned up [ 191.497917][T19805] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 191.538388][T15649] EXT4-fs error (device loop5): ext4_readdir:264: inode #11: block 54: comm syz-executor: path /356/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0 [ 191.561081][T15649] EXT4-fs (loop5): Remounting filesystem read-only [ 191.600969][T17568] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.664099][T19816] loop6: detected capacity change from 0 to 128 [ 191.672377][T19816] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 191.685512][T19816] ext4 filesystem being mounted at /250/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 191.709876][T17087] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 191.771397][ T12] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 191.802636][ T1037] hid_parser_main: 73 callbacks suppressed [ 191.802655][ T1037] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 191.816718][ T1037] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 191.824183][ T1037] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 191.831715][ T1037] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 191.839925][ T1037] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 191.847495][ T1037] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 191.855735][ T1037] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 191.863164][ T1037] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 191.870757][ T1037] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 191.878900][ T1037] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 191.921227][ T12] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 191.935715][ T1037] hid-generic 0000:0000:0000.0004: hidraw0: HID v0.03 Device [syz1] on syz1 [ 191.983900][ T12] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 192.055480][ T12] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 192.093702][T19845] loop3: detected capacity change from 0 to 512 [ 192.135621][T19845] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 192.155384][T19845] EXT4-fs (loop3): orphan cleanup on readonly fs [ 192.165431][T19845] EXT4-fs error (device loop3): ext4_do_update_inode:5624: inode #16: comm +}[@: corrupted inode contents [ 192.201787][T19845] EXT4-fs (loop3): Remounting filesystem read-only [ 192.211760][ T12] bridge_slave_1: left allmulticast mode [ 192.217577][ T12] bridge_slave_1: left promiscuous mode [ 192.223379][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 192.242228][T19845] EXT4-fs (loop3): 1 truncate cleaned up [ 192.248023][ T1765] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 192.258796][ T1765] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 192.272022][ T12] bridge_slave_0: left allmulticast mode [ 192.277729][ T12] bridge_slave_0: left promiscuous mode [ 192.283466][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 192.292264][ T1765] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started [ 192.303788][T19845] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 192.336219][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 192.424254][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 192.438295][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 192.448632][ T12] bond0 (unregistering): Released all slaves [ 192.487694][T19827] chnl_net:caif_netlink_parms(): no params data found [ 192.501838][ T12] hsr_slave_0: left promiscuous mode [ 192.516714][ T12] hsr_slave_1: left promiscuous mode [ 192.522548][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 192.530684][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 192.539305][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 192.546791][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 192.569279][ T12] veth1_macvtap: left promiscuous mode [ 192.575638][ T12] veth0_macvtap: left promiscuous mode [ 192.581311][ T12] veth1_vlan: left promiscuous mode [ 192.586603][ T12] veth0_vlan: left promiscuous mode [ 192.674221][ T12] team0 (unregistering): Port device team_slave_1 removed [ 192.685464][ T12] team0 (unregistering): Port device team_slave_0 removed [ 192.798447][T19827] bridge0: port 1(bridge_slave_0) entered blocking state [ 192.805659][T19827] bridge0: port 1(bridge_slave_0) entered disabled state [ 192.829092][T19827] bridge_slave_0: entered allmulticast mode [ 192.848716][T19827] bridge_slave_0: entered promiscuous mode [ 192.856854][T19827] bridge0: port 2(bridge_slave_1) entered blocking state [ 192.864894][T19827] bridge0: port 2(bridge_slave_1) entered disabled state [ 192.890509][T19827] bridge_slave_1: entered allmulticast mode [ 192.903711][T19827] bridge_slave_1: entered promiscuous mode [ 192.947225][T19827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 192.969110][T19827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 193.006565][T19827] team0: Port device team_slave_0 added [ 193.063241][T19827] team0: Port device team_slave_1 added [ 193.095568][T19827] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 193.102576][T19827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 193.129236][T19827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 193.191804][T19930] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7624'. [ 193.204837][T19827] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 193.211882][T19827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 193.237840][T19827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 193.272983][T19932] loop3: detected capacity change from 0 to 764 [ 193.273385][T19827] hsr_slave_0: entered promiscuous mode [ 193.285645][T19827] hsr_slave_1: entered promiscuous mode [ 193.298586][T19932] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 193.342101][T19932] Symlink component flag not implemented [ 193.349495][T19932] Symlink component flag not implemented (7) [ 193.447274][T19827] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 193.460252][T19951] loop4: detected capacity change from 0 to 512 [ 193.466940][T19951] EXT4-fs: Ignoring removed nomblk_io_submit option [ 193.476167][T19827] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 193.485834][T19827] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 193.492960][T19951] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 193.505391][T19827] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 193.514695][T19951] EXT4-fs (loop4): 1 truncate cleaned up [ 193.523429][T19951] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 193.606102][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 193.630976][T19827] 8021q: adding VLAN 0 to HW filter on device bond0 [ 193.650196][T19827] 8021q: adding VLAN 0 to HW filter on device team0 [ 193.673090][ T166] bridge0: port 1(bridge_slave_0) entered blocking state [ 193.680260][ T166] bridge0: port 1(bridge_slave_0) entered forwarding state [ 193.697278][T19971] loop4: detected capacity change from 0 to 1024 [ 193.711244][ T166] bridge0: port 2(bridge_slave_1) entered blocking state [ 193.714660][T19971] EXT4-fs: Ignoring removed orlov option [ 193.718542][ T166] bridge0: port 2(bridge_slave_1) entered forwarding state [ 193.724266][T19971] EXT4-fs: Ignoring removed nobh option [ 193.737076][T19971] EXT4-fs: Ignoring removed bh option [ 193.743098][T19972] netlink: 28 bytes leftover after parsing attributes in process `syz.2.7641'. [ 193.752405][T19972] netlink: 28 bytes leftover after parsing attributes in process `syz.2.7641'. [ 193.797060][T19827] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 193.807576][T19827] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 193.839872][T19980] 9pnet_fd: Insufficient options for proto=fd [ 193.840622][T19971] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 193.880812][T19984] lo speed is unknown, defaulting to 1000 [ 193.892474][T19984] lo speed is unknown, defaulting to 1000 [ 193.902676][T19984] lo speed is unknown, defaulting to 1000 [ 193.906573][T19971] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.7639: Allocating blocks 449-513 which overlap fs metadata [ 193.909148][T19984] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 193.934927][T19984] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 193.950463][T19984] lo speed is unknown, defaulting to 1000 [ 193.956032][T19827] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 193.963738][T19970] EXT4-fs (loop4): pa ffff8881072aa230: logic 48, phys. 177, len 21 [ 193.968885][T19984] lo speed is unknown, defaulting to 1000 [ 193.972012][T19970] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4 [ 193.990469][T19984] lo speed is unknown, defaulting to 1000 [ 193.993551][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.002756][T19984] lo speed is unknown, defaulting to 1000 [ 194.016648][T19984] lo speed is unknown, defaulting to 1000 [ 194.070014][T20006] loop6: detected capacity change from 0 to 512 [ 194.087836][T20006] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem [ 194.098538][T20006] EXT4-fs (loop6): invalid journal inode [ 194.105170][T20006] EXT4-fs (loop6): can't get journal size [ 194.120435][T20006] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e056c118, mo2=0002] [ 194.128555][T20006] System zones: 1-12, 13-13 [ 194.134556][T20006] EXT4-fs (loop6): 1 truncate cleaned up [ 194.146074][T20006] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 194.179790][T17087] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.242316][T19827] veth0_vlan: entered promiscuous mode [ 194.259936][T19827] veth1_vlan: entered promiscuous mode [ 194.300923][T19827] veth0_macvtap: entered promiscuous mode [ 194.311732][T19827] veth1_macvtap: entered promiscuous mode [ 194.324872][T19827] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 194.347761][T19827] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 194.364824][ T1765] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.374441][ T1765] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.395271][ T12] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.417079][ T12] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.478799][T20045] loop4: detected capacity change from 0 to 512 [ 194.505276][T20045] EXT4-fs: Ignoring removed oldalloc option [ 194.519488][T20045] EXT4-fs error (device loop4): ext4_xattr_inode_iget:437: comm syz.4.7666: Parent and EA inode have the same ino 15 [ 194.533260][T20045] EXT4-fs error (device loop4): ext4_xattr_inode_iget:437: comm syz.4.7666: Parent and EA inode have the same ino 15 [ 194.547998][T20045] EXT4-fs (loop4): 1 orphan inode deleted [ 194.548927][T20053] loop7: detected capacity change from 0 to 512 [ 194.554190][T20045] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 194.582688][T20053] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 194.602422][T20053] ext4 filesystem being mounted at /1/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 194.631991][T19827] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.642835][ T3315] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.739184][T20074] loop4: detected capacity change from 0 to 512 [ 194.754262][T20074] EXT4-fs (loop4): failed to initialize system zone (-117) [ 194.805722][T20074] EXT4-fs (loop4): mount failed [ 195.142861][T20111] IPv6: NLM_F_CREATE should be specified when creating new route [ 195.188564][T20115] loop6: detected capacity change from 0 to 512 [ 195.201670][T20115] EXT4-fs (loop6): revision level too high, forcing read-only mode [ 195.209760][T20115] EXT4-fs (loop6): orphan cleanup on readonly fs [ 195.218326][T20115] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #16: comm syz.6.7695: corrupted inode contents [ 195.231478][T20115] EXT4-fs (loop6): Remounting filesystem read-only [ 195.238406][T20115] EXT4-fs (loop6): 1 truncate cleaned up [ 195.244886][ T12] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 195.255678][ T12] EXT4-fs (loop6): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 195.266383][ T12] EXT4-fs (loop6): Quota write (off=8, len=24) cancelled because transaction is not started [ 195.804259][T20123] random: crng reseeded on system resumption [ 196.166499][T20168] loop4: detected capacity change from 0 to 512 [ 196.227941][T20168] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 196.236324][T20168] EXT4-fs (loop4): orphan cleanup on readonly fs [ 196.245955][T20168] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #16: comm syz.4.7719: corrupted inode contents [ 196.259760][T20168] EXT4-fs (loop4): Remounting filesystem read-only [ 196.266589][T20168] EXT4-fs (loop4): 1 truncate cleaned up [ 196.272894][ T1765] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 196.283542][ T1765] __quota_error: 153 callbacks suppressed [ 196.283560][ T1765] Quota error (device loop4): write_blk: dquota write failed [ 196.296849][ T1765] Quota error (device loop4): remove_free_dqentry: Can't write block (5) with free entries [ 196.307023][ T1765] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 196.317636][ T1765] Quota error (device loop4): write_blk: dquota write failed [ 196.325085][ T1765] Quota error (device loop4): free_dqentry: Can't move quota data block (5) to free list [ 196.335215][ T1765] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started [ 196.345427][ T1765] Quota error (device loop4): v2_write_file_info: Can't write info structure [ 196.356359][ T1765] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 196.393835][ T29] audit: type=1326 audit(1759923679.466:2153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20180 comm="syz.2.7724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fddaeec9 code=0x7ffc0000 [ 196.464507][T20186] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7726'. [ 196.475332][ T29] audit: type=1326 audit(1759923679.503:2154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20180 comm="syz.2.7724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=158 compat=0 ip=0x7f55fddaeec9 code=0x7ffc0000 [ 196.499662][ T29] audit: type=1326 audit(1759923679.503:2155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20180 comm="syz.2.7724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55fddaeec9 code=0x7ffc0000 [ 196.511770][T20184] loop6: detected capacity change from 0 to 8192 [ 196.568198][T20190] SELinux: Context system_u:object_r:tun_tap_device_t:s0 is not valid (left unmapped). [ 196.569246][ T29] audit: type=1400 audit(1759923679.643:2156): avc: denied { relabelfrom } for pid=20189 comm="syz.3.7728" name="NETLINK" dev="sockfs" ino=61604 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1 [ 196.701907][T20204] loop7: detected capacity change from 0 to 512 [ 196.717485][T20204] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 196.741551][T20204] EXT4-fs error (device loop7): ext4_get_branch:178: inode #11: block 4294967295: comm syz.7.7735: invalid block [ 196.754124][T20204] EXT4-fs error (device loop7): ext4_free_branches:1023: inode #11: comm syz.7.7735: invalid indirect mapped block 4294967295 (level 1) [ 196.778948][T20204] EXT4-fs error (device loop7): ext4_free_branches:1023: inode #11: comm syz.7.7735: invalid indirect mapped block 4294967295 (level 1) [ 196.804190][T20204] EXT4-fs (loop7): 2 truncates cleaned up [ 196.868280][T20219] loop4: detected capacity change from 0 to 128 [ 196.895169][T20219] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 196.920890][T20219] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 196.931832][T20222] SELinux: failed to load policy [ 197.018271][ T37] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 197.047624][T20241] netlink: 'syz.4.7751': attribute type 11 has an invalid length. [ 197.055559][T20241] netlink: 44 bytes leftover after parsing attributes in process `syz.4.7751'. [ 197.233809][T20269] unsupported nla_type 52263 [ 197.399489][T20297] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 197.552274][T20316] loop6: detected capacity change from 0 to 512 [ 197.568852][T20318] 9pnet: Could not find request transport: 0xffffffffffffffff [ 197.609362][T20316] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c01c, mo2=0002] [ 197.637207][T20316] System zones: 0-2, 18-18, 34-35 [ 197.644555][T20316] ext4 filesystem being mounted at /299/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 197.773369][T20350] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7800'. [ 197.843382][T20357] pimreg: entered allmulticast mode [ 197.861685][T20354] loop7: detected capacity change from 0 to 8192 [ 197.868354][T20357] pimreg: left allmulticast mode [ 197.892564][T20362] 9p: Unknown access argument : -22 [ 198.170136][T20386] netlink: 16 bytes leftover after parsing attributes in process `syz.6.7817'. [ 198.187575][T20388] netlink: 'syz.2.7818': attribute type 3 has an invalid length. [ 198.552224][T20423] 9pnet: Could not find request transport: t [ 198.664542][T20436] netlink: 16 bytes leftover after parsing attributes in process `syz.6.7840'. [ 198.673539][T20436] netlink: 16 bytes leftover after parsing attributes in process `syz.6.7840'. [ 198.683528][T20436] netlink: 712 bytes leftover after parsing attributes in process `syz.6.7840'. [ 198.730854][T20439] pim6reg: tun_chr_ioctl cmd 1074025680 [ 198.838355][T20445] loop6: detected capacity change from 0 to 512 [ 198.852764][T20445] EXT4-fs (loop6): orphan cleanup on readonly fs [ 198.877303][T20445] EXT4-fs warning (device loop6): ext4_xattr_inode_get:560: inode #11: comm syz.6.7844: EA inode hash validation failed [ 198.898600][T20445] EXT4-fs warning (device loop6): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 198.921868][T20445] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #15: comm syz.6.7844: corrupted inode contents [ 198.941736][T20445] EXT4-fs error (device loop6): ext4_dirty_inode:6509: inode #15: comm syz.6.7844: mark_inode_dirty error [ 198.973974][T20445] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #15: comm syz.6.7844: corrupted inode contents [ 199.005895][T20445] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2996: inode #15: comm syz.6.7844: mark_inode_dirty error [ 199.053769][T20445] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2999: inode #15: comm syz.6.7844: mark inode dirty (error -117) [ 199.080708][T20445] EXT4-fs warning (device loop6): ext4_evict_inode:274: xattr delete (err -117) [ 199.100776][T20445] EXT4-fs (loop6): 1 orphan inode deleted [ 199.511924][T20490] netlink: 92 bytes leftover after parsing attributes in process `syz.7.7865'. [ 199.527385][T20493] loop6: detected capacity change from 0 to 1024 [ 199.563293][T20490] netlink: 24 bytes leftover after parsing attributes in process `syz.7.7865'. [ 199.563375][T20493] EXT4-fs error (device loop6): ext4_acquire_dquot:6945: comm gtp: Failed to acquire dquot type 0 [ 199.594296][T20493] EXT4-fs error (device loop6): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 199.645265][T20493] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #13: comm gtp: corrupted inode contents [ 199.689831][T20501] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7870'. [ 199.700883][T20493] EXT4-fs error (device loop6): ext4_dirty_inode:6509: inode #13: comm gtp: mark_inode_dirty error [ 199.731439][T20493] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #13: comm gtp: corrupted inode contents [ 199.760497][T20493] EXT4-fs error (device loop6): __ext4_ext_dirty:206: inode #13: comm gtp: mark_inode_dirty error [ 199.798092][T20493] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #13: comm gtp: corrupted inode contents [ 199.812973][T20493] EXT4-fs error (device loop6) in ext4_orphan_del:301: Corrupt filesystem [ 199.860122][T20493] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #13: comm gtp: corrupted inode contents [ 199.893149][T20493] EXT4-fs error (device loop6): ext4_truncate:4637: inode #13: comm gtp: mark_inode_dirty error [ 199.913749][T20493] EXT4-fs error (device loop6) in ext4_process_orphan:343: Corrupt filesystem [ 199.935728][T20493] EXT4-fs (loop6): 1 truncate cleaned up [ 199.941800][T20493] EXT4-fs mount: 10 callbacks suppressed [ 199.941820][T20493] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 200.049194][T17087] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 200.157035][T20548] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 200.248447][T20561] syzkaller1: tun_chr_ioctl cmd 2147767520 [ 200.313799][T20569] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 200.325185][T20569] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 200.499941][T20591] sctp: [Deprecated]: syz.7.7907 (pid 20591) Use of int in max_burst socket option deprecated. [ 200.499941][T20591] Use struct sctp_assoc_value instead [ 200.599009][T20611] loop7: detected capacity change from 0 to 128 [ 200.608695][T20611] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 200.632371][T20611] ext4 filesystem being mounted at /42/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 200.661073][T19827] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 201.110531][T20689] sctp: [Deprecated]: syz.7.7947 (pid 20689) Use of int in max_burst socket option. [ 201.110531][T20689] Use struct sctp_assoc_value instead [ 201.431628][T20721] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 201.446455][T20721] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 201.584849][T20741] loop7: detected capacity change from 0 to 128 [ 201.974680][T20765] netlink: 'syz.6.7981': attribute type 3 has an invalid length. [ 202.004743][T20767] devpts: Bad value for 'gid' [ 202.004765][T20767] devpts: Bad value for 'gid' [ 202.059586][T20771] netlink: 'syz.6.7993': attribute type 3 has an invalid length. [ 202.068722][ T29] kauditd_printk_skb: 116 callbacks suppressed [ 202.068741][ T29] audit: type=1400 audit(1759923684.789:2271): avc: denied { create } for pid=20772 comm="syz.2.7984" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1 [ 202.068824][ T29] audit: type=1400 audit(1759923684.789:2272): avc: denied { ioctl } for pid=20772 comm="syz.2.7984" path="socket:[63487]" dev="sockfs" ino=63487 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1 [ 202.187032][T20784] loop3: detected capacity change from 0 to 256 [ 202.276743][T20791] __nla_validate_parse: 9 callbacks suppressed [ 202.276763][T20791] netlink: 36 bytes leftover after parsing attributes in process `syz.6.7992'. [ 202.677581][T20802] macvtap1: entered promiscuous mode [ 202.683709][T20802] macvtap1: entered allmulticast mode [ 202.701783][T20802] dummy0: entered allmulticast mode [ 202.718721][T20802] dummy0: entered promiscuous mode [ 202.729536][T20802] team0: Device macvtap1 failed to register rx_handler [ 202.747364][T20802] dummy0: left allmulticast mode [ 202.752400][T20802] dummy0: left promiscuous mode [ 202.818771][T20814] IPv6: NLM_F_CREATE should be specified when creating new route [ 202.838875][ T29] audit: type=1326 audit(1759923685.509:2273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20816 comm="syz.6.8004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8802ceec9 code=0x7ffc0000 [ 202.889284][ T29] audit: type=1326 audit(1759923685.537:2274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20816 comm="syz.6.8004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8802ceec9 code=0x7ffc0000 [ 202.910970][ T166] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 202.914083][ T29] audit: type=1326 audit(1759923685.537:2275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20816 comm="syz.6.8004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe8802ceec9 code=0x7ffc0000 [ 202.923297][ T166] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 202.946280][ T29] audit: type=1326 audit(1759923685.537:2276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20816 comm="syz.6.8004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8802ceec9 code=0x7ffc0000 [ 202.978510][ T29] audit: type=1326 audit(1759923685.537:2277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20816 comm="syz.6.8004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8802ceec9 code=0x7ffc0000 [ 203.002867][ T29] audit: type=1326 audit(1759923685.537:2278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20816 comm="syz.6.8004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe8802cd710 code=0x7ffc0000 [ 203.007959][ T166] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 203.026432][ T29] audit: type=1326 audit(1759923685.537:2279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20816 comm="syz.6.8004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8802ceec9 code=0x7ffc0000 [ 203.042964][ T166] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 203.059306][ T29] audit: type=1326 audit(1759923685.537:2280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20816 comm="syz.6.8004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8802ceec9 code=0x7ffc0000 [ 203.179742][T20838] loop3: detected capacity change from 0 to 512 [ 203.193234][T20838] EXT4-fs (loop3): failed to initialize system zone (-117) [ 203.212171][T20838] EXT4-fs (loop3): mount failed [ 203.280130][T20852] program syz.7.8019 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 203.572487][T20886] netlink: 28 bytes leftover after parsing attributes in process `syz.6.8035'. [ 203.581644][T20886] netlink: 28 bytes leftover after parsing attributes in process `syz.6.8035'. [ 203.642350][T20895] loop6: detected capacity change from 0 to 1024 [ 203.650895][T20895] EXT4-fs: Ignoring removed orlov option [ 203.658486][T20895] EXT4-fs: Ignoring removed nobh option [ 203.664149][T20895] EXT4-fs: Ignoring removed bh option [ 203.678729][T20895] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 203.728367][T20895] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4193: comm syz.6.8040: Allocating blocks 449-513 which overlap fs metadata [ 203.739929][T20915] syzkaller1: tun_chr_ioctl cmd 1074025672 [ 203.748194][T20915] syzkaller1: ignored: set checksum enabled [ 203.767912][T20894] EXT4-fs (loop6): pa ffff88810725e8c0: logic 48, phys. 177, len 21 [ 203.776024][T20894] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 4 [ 203.798580][T17087] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.943398][T20942] IPv6: NLM_F_CREATE should be specified when creating new route [ 204.223033][T20986] loop6: detected capacity change from 0 to 128 [ 204.244075][T20986] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 204.264146][T20986] ext4 filesystem being mounted at /386/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 204.296334][T17087] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 204.413220][T21010] netlink: 'syz.7.8090': attribute type 10 has an invalid length. [ 204.697753][T21047] loop7: detected capacity change from 0 to 4096 [ 204.728460][T21047] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 204.807987][T21057] SELinux: Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped). [ 204.829457][T19827] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 204.874034][T21063] team0: No ports can be present during mode change [ 204.892397][T21049] ================================================================== [ 204.900526][T21049] BUG: KCSAN: data-race in __filemap_remove_folio / folio_mapping [ 204.908361][T21049] [ 204.910711][T21049] write to 0xffffea0004c66318 of 8 bytes by task 21037 on cpu 1: [ 204.918471][T21049] __filemap_remove_folio+0x1a5/0x2a0 [ 204.923865][T21049] filemap_remove_folio+0x6d/0x1d0 [ 204.929001][T21049] truncate_inode_folio+0x42/0x50 [ 204.934040][T21049] shmem_undo_range+0x244/0xa80 [ 204.938910][T21049] shmem_fallocate+0x799/0x840 [ 204.943693][T21049] vfs_fallocate+0x3b6/0x400 [ 204.948301][T21049] file_ioctl+0x453/0x530 [ 204.952655][T21049] do_vfs_ioctl+0x7ca/0xe10 [ 204.957254][T21049] __se_sys_ioctl+0x82/0x140 [ 204.961869][T21049] __x64_sys_ioctl+0x43/0x50 [ 204.966505][T21049] x64_sys_call+0x1816/0x3000 [ 204.971201][T21049] do_syscall_64+0xd2/0x200 [ 204.975716][T21049] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 204.981628][T21049] [ 204.983964][T21049] read to 0xffffea0004c66318 of 8 bytes by task 21049 on cpu 0: [ 204.991605][T21049] folio_mapping+0xa1/0xe0 [ 204.996052][T21049] evict_folios+0x2b4b/0x3590 [ 205.000756][T21049] try_to_shrink_lruvec+0x5b5/0x950 [ 205.005976][T21049] shrink_lruvec+0x22e/0x1b50 [ 205.010667][T21049] shrink_node+0x686/0x2120 [ 205.015189][T21049] do_try_to_free_pages+0x3f6/0xcd0 [ 205.020416][T21049] try_to_free_mem_cgroup_pages+0x1ab/0x410 [ 205.026333][T21049] try_charge_memcg+0x358/0x9e0 [ 205.031207][T21049] obj_cgroup_charge_pages+0xa6/0x150 [ 205.036608][T21049] __memcg_kmem_charge_page+0x9f/0x170 [ 205.042093][T21049] __alloc_frozen_pages_noprof+0x188/0x360 [ 205.047926][T21049] alloc_pages_mpol+0xb3/0x260 [ 205.052716][T21049] alloc_pages_noprof+0x90/0x130 [ 205.057663][T21049] __vmalloc_node_range_noprof+0x7a5/0xed0 [ 205.063500][T21049] __kvmalloc_node_noprof+0x483/0x670 [ 205.068905][T21049] ip_set_alloc+0x24/0x30 [ 205.073250][T21049] hash_netiface_create+0x282/0x740 [ 205.078482][T21049] ip_set_create+0x3c9/0x970 [ 205.083089][T21049] nfnetlink_rcv_msg+0x4c3/0x590 [ 205.088040][T21049] netlink_rcv_skb+0x123/0x220 [ 205.092942][T21049] nfnetlink_rcv+0x167/0x16c0 [ 205.097632][T21049] netlink_unicast+0x5bd/0x690 [ 205.102408][T21049] netlink_sendmsg+0x58b/0x6b0 [ 205.107193][T21049] __sock_sendmsg+0x142/0x180 [ 205.111883][T21049] ____sys_sendmsg+0x31e/0x4e0 [ 205.116669][T21049] ___sys_sendmsg+0x17b/0x1d0 [ 205.121370][T21049] __x64_sys_sendmsg+0xd4/0x160 [ 205.126245][T21049] x64_sys_call+0x191e/0x3000 [ 205.130960][T21049] do_syscall_64+0xd2/0x200 [ 205.135475][T21049] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 205.141392][T21049] [ 205.143732][T21049] value changed: 0xffff88810420ed88 -> 0x0000000000000000 [ 205.150846][T21049] [ 205.153191][T21049] Reported by Kernel Concurrency Sanitizer on: [ 205.159350][T21049] CPU: 0 UID: 0 PID: 21049 Comm: syz.3.8106 Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 205.170735][T21049] Tainted: [W]=WARN [ 205.174542][T21049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 205.184624][T21049] ================================================================== [ 205.634806][T21049] syz.3.8106 (21049) used greatest stack depth: 6408 bytes left