last executing test programs: 2m17.19959744s ago: executing program 3 (id=141): ioprio_set$uid(0x3, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}) pipe(&(0x7f0000000380)={0xffffffffffffffff, <r2=>0xffffffffffffffff}) splice(r1, 0x0, r2, 0x0, 0xf3a, 0x0) write(r0, 0x0, 0x0) 2m17.094516761s ago: executing program 3 (id=143): r0 = syz_open_procfs(0x0, &(0x7f00000004c0)='ns\x00') fchdir(r0) r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) mount_setattr(r1, &(0x7f0000001d80)='.\x00', 0x0, &(0x7f0000000080)={0xb, 0x0, 0x40000}, 0x20) openat$cgroup_ro(r1, &(0x7f00000000c0)='devices.list\x00', 0x275a, 0x2) 2m17.030719292s ago: executing program 3 (id=145): syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00') r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000c40)={0x8000203d}) 2m16.964591622s ago: executing program 3 (id=146): memfd_create(0x0, 0x4) mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0) mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x18d811, 0x0) 2m16.916778063s ago: executing program 3 (id=148): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000240)=@migrate={0x27c, 0x21, 0x1, 0x0, 0x1, {{@in, @in6=@remote}}, [@migrate={0x219, 0x11, [{@in=@multicast1, @in=@local, @in=@local, @in=@broadcast, 0x3c, 0x4, 0x0, 0x3505, 0xa, 0x2}, {@in=@empty, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@multicast2, @in6=@empty, 0x6c, 0x1, 0x0, 0x3506, 0x2, 0x2}, {@in=@empty, @in=@private=0xa010100, @in6=@remote, @in6=@mcast2, 0x33, 0x2, 0x0, 0x0, 0xa, 0xa}, {@in=@local, @in6=@local, @in6=@empty, @in6=@private2, 0xff, 0x3, 0x0, 0x3503, 0x8, 0x2}, {@in=@broadcast, @in6=@ipv4={'\x00', '\xff\xff', @multicast2}, @in=@private, @in=@dev, 0x0, 0x1, 0x0, 0x3506, 0x2, 0xf}, {@in6=@mcast2, @in=@broadcast, @in6=@private2, @in6=@remote}]}, @policy_type={0xa}, @replay_esn_val={0x40, 0x17, {0x9, 0x70bd29, 0x70bd2d, 0x70bd27, 0x70bd28, 0x7f, [0x0, 0x7, 0x7, 0x5, 0x80, 0x0, 0x5, 0xfffffff7, 0x6]}}, @proto={0x5, 0x19, 0x6c}, @mark={0xc, 0x15, {0x35075d, 0x3}}]}, 0x27c}}, 0x0) 2m16.612273245s ago: executing program 3 (id=154): syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x2008006, &(0x7f0000000a40)={[{@numtail}, {@utf8no}, {@shortname_mixed}, {@utf8no}, {@utf8}, {@shortname_win95}, {@fat=@umask={'umask', 0x3d, 0x373}}, {@shortname_mixed}, {@numtail}, {@rodir}, {}, {@utf8no}, {@utf8}, {@shortname_mixed}, {@uni_xlate}]}, 0x25, 0x34f, &(0x7f0000000580)="$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") r0 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r1=>0x0}, &(0x7f0000cab000)=0xc) setfsuid(r1) openat$dir(0xffffffffffffff9c, &(0x7f0000000a00)='./file0\x00', 0x80040, 0x4) 2m16.611990595s ago: executing program 32 (id=154): syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x2008006, &(0x7f0000000a40)={[{@numtail}, {@utf8no}, {@shortname_mixed}, {@utf8no}, {@utf8}, {@shortname_win95}, {@fat=@umask={'umask', 0x3d, 0x373}}, {@shortname_mixed}, {@numtail}, {@rodir}, {}, {@utf8no}, {@utf8}, {@shortname_mixed}, {@uni_xlate}]}, 0x25, 0x34f, &(0x7f0000000580)="$eJzs3T9sG2UUAPDnXhKnESUekCqYDBsSqpogBpgSVUWqyABFFv8WLJryJzaVYmEpDHG8gComEAsSTGwdYOyMGBBiY2ClSKiAWOhWqRGHbJ/tc+xQZ3Boxe83RE/v+9597y6n3CVKvrzeiq1L83H51q2bsbhYiLm1c2txuxClOBFJ9OzFRB8tTM4DAPe422kaf6U9d5/9yVI/8uwHgPtX9/n/5qlhoniE4qsPzKIlAGDGpvz+//mJ2SszawsAmKGx5/9jI8MHfsw/N/idAADg/vXiK68+t74RcbFcXoyof9isNCvxzHB8/XK8HbXYjLOxHPsRvReF3ttC5+OzFzbOny13/FaKSqeiWYmot5qV3pvCetKtL8ZKLEcpq08H9UmnfqVbX46IvVZ3/agXmpX5WMrW/3kpNmM1luOhsfqICxvnV8vZASr1fn0roh2L/ZPo9H8mluPHN+JK1OJSdGqH/e+ulMvn0o2R+ua1YnceAAAAAAAAAAAAAAAAAAAAAADMwpnyQGmw/01abzU/uHhwQmlkf5xKbzjbH6jd2x8oLfZ357maHNwfaHR/nmZlLk78p2cOAAAAAAAAAAAAAAAAAAAA947GzkJUa7XN7cbO+1v5oJXLvPv9V9+ejP7QXFb6TjKsiiw5cpz+xNyRkxgskQ7K02RkThYkEf3Je9Vr1wcd5+cUB2cxVt4JimNDhaynaq126tFfP59U9Xcn2Otmkhi7LKNBIVs/N1R/sJNYjIj9w6oOD1bvMudGmqaHle9+Nl4VhYi5OHIbUwTf3Xzr4Scbp5/qZr7JNn14/Inll258+uUfW9VatHtXplZb2G7sp1McudPr+FCSu38K2XUuTLgTJgftYaa93dipJj/9+fIjH/9wYHIy+f5J85n3Dl/r64OZhV5QiCj1L8K/tTo/4eafHLx2Z3D3Hv0Td/qLter13V9+n7Yq90XCRh0AAAAAAAAAAAAAAAAAAHAscn8rfgRPvzC7jgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg+A3//38uaI9lpgnutGJ8qLi53Th08ZPHeqoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPyP/RMAAP//rShzCQ==") r0 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r1=>0x0}, &(0x7f0000cab000)=0xc) setfsuid(r1) openat$dir(0xffffffffffffff9c, &(0x7f0000000a00)='./file0\x00', 0x80040, 0x4) 1m15.074871998s ago: executing program 2 (id=2710): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f0000000000), 0xa, 0xbb8, &(0x7f00000017c0)="$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") bind$inet6(0xffffffffffffffff, 0x0, 0x0) syz_emit_ethernet(0x356, &(0x7f0000000d40)={@local, @empty, @void, {@llc_tr={0x11, {@snap={0xaa, 0xaa, "af", "5bddec", 0x88f7, "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"}}}}}, 0x0) 1m14.990915578s ago: executing program 2 (id=2713): r0 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000280)={0x41}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) bind$tipc(r0, 0x0, 0x0) 1m14.871426009s ago: executing program 2 (id=2720): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = openat$sysfs(0xffffff9c, &(0x7f0000000040)='/sys/kernel/notes', 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) finit_module(r0, 0x0, 0x3) 1m14.77864391s ago: executing program 2 (id=2724): mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0) mount$tmpfs(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x84000, 0x0) 1m14.74121474s ago: executing program 2 (id=2727): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000600)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000008c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10) pivot_root(&(0x7f0000000000)='.\x00', &(0x7f0000000080)='./file0/../file0\x00') 1m14.541741772s ago: executing program 2 (id=2733): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0xb) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)={0x28, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_STRSET_HEADER={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}]}]}, 0x28}}, 0x0) 1m14.541515792s ago: executing program 33 (id=2733): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0xb) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)={0x28, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_STRSET_HEADER={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}]}]}, 0x28}}, 0x0) 13.184876513s ago: executing program 4 (id=5450): bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f0000000300)='kfree\x00', r0, 0x0, 0x5}, 0x18) r1 = openat$selinux_user(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$selinux_user(r1, &(0x7f0000000080)=ANY=[@ANYBLOB='system_u:object_r:auth_cache_t r'], 0x27) 13.123712743s ago: executing program 4 (id=5453): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x2c) r1 = socket$inet6(0xa, 0x80803, 0x84) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000004c0)={{{@in6=@mcast2, @in=@private=0xa010101, 0x1, 0x0, 0x4e22, 0x0, 0xa}, {0x4ed2b3f1, 0x1, 0x0, 0x3000000, 0x0, 0x3, 0xffffffffffffffff, 0x8000000000}, {0x0, 0x1, 0x0, 0xfffffffffffffffc}, 0xfffffffc, 0x0, 0x1}, {{@in=@multicast2, 0xff80, 0x32}, 0xa, @in6=@mcast1, 0x0, 0x0, 0x0, 0x5, 0x2}}, 0xe8) connect$inet6(r1, &(0x7f00000000c0), 0x1c) 12.989798844s ago: executing program 4 (id=5454): openat$sysfs(0xffffffffffffff9c, &(0x7f0000000540)='/sys/power/pm_trace', 0x101400, 0x4) syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)) sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="4400000001010102000000000000000002000000240002800c000280040001003a00000014000180080001007f00000192000000000000000c001980080002"], 0x44}}, 0x0) 12.947974524s ago: executing program 4 (id=5457): mount(0x0, &(0x7f0000000100)='.\x00', &(0x7f00000000c0)='hugetlbfs\x00', 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) 12.923491925s ago: executing program 4 (id=5459): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x1, 0x0, 0x0, 0x40f00, 0x1a, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80400000, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0xffffffffffffffff}, 0x13) r1 = socket(0x25, 0x801, 0x0) sendto$inet6(r1, &(0x7f0000000200)="91", 0x1, 0x20004044, 0x0, 0x0) 12.493816278s ago: executing program 4 (id=5474): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x110e22fff6) ioctl$TUNGETVNETLE(r0, 0x40047440, &(0x7f00000017c0)) 12.493636148s ago: executing program 34 (id=5474): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x110e22fff6) ioctl$TUNGETVNETLE(r0, 0x40047440, &(0x7f00000017c0)) 9.077698153s ago: executing program 0 (id=5614): bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) write$selinux_context(r1, &(0x7f0000000340)='system_u:object_r:hugetlbfs_t:s0\x00', 0x1d) 9.050017863s ago: executing program 0 (id=5617): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10) r1 = fsopen(&(0x7f0000000440)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) fsmount(r1, 0x0, 0x4) 8.997731223s ago: executing program 0 (id=5621): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00'/12, @ANYRES32, @ANYBLOB="0d00ff0000000000830000000000000045"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'sit0\x00'}) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f3, &(0x7f0000000080)) 8.975730154s ago: executing program 0 (id=5623): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x4) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='configfs\x00', 0x0, 0x0) chroot(&(0x7f0000000000)='./file0/../file0\x00') mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0) pivot_root(&(0x7f0000000280)='./file0\x00', &(0x7f0000000240)='./file0/../file0\x00') 8.831185085s ago: executing program 0 (id=5629): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x7, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_bp={0x0, 0x7}, 0x120, 0x5dd8, 0x1000003, 0x0, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r0 = syz_clone(0x8d002240, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) bpf$PROG_LOAD(0x5, 0x0, 0x0) ptrace$pokeuser(0x6, r0, 0x358, 0x0) 8.569745427s ago: executing program 0 (id=5635): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = socket(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f000000000000000002000000000000000800010001000000040004"], 0x24}, 0x1, 0x0, 0x0, 0x4005}, 0x0) 8.568002937s ago: executing program 35 (id=5635): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = socket(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f000000000000000002000000000000000800010001000000040004"], 0x24}, 0x1, 0x0, 0x0, 0x4005}, 0x0) 2.053691815s ago: executing program 8 (id=5958): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000000)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}], 0x10) r1 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f00000000c0)=@sack_info={r2, 0x1, 0x7fff}, 0xc) 1.613816168s ago: executing program 1 (id=5977): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000080)={[{@delalloc}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nodioread_nolock}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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") r0 = open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0xdc) fallocate(r0, 0x0, 0x0, 0x8800000) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x14a) fallocate(r1, 0x20, 0x0, 0x8000) 1.390389739s ago: executing program 5 (id=5986): syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000800)='./file0\x00', 0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYRESHEX=0x0, @ANYRESOCT], 0x2, 0x699, &(0x7f0000000140)="$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") perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x2, @perf_bp={0x0, 0xa}, 0x1000, 0x5dd8, 0x0, 0x5, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x2) write$binfmt_script(r0, &(0x7f0000000300)={'#! ', './file0'}, 0xb) execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) 1.25366293s ago: executing program 5 (id=5992): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000010000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10) sync() 1.202846041s ago: executing program 8 (id=5994): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x6}, 0x1c) r1 = socket$inet6(0x10, 0x2, 0x4) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000001c0)='dctcp\x00', 0x6) sendto$inet6(r1, &(0x7f0000000080)="4c00000012001f15b9409b849ac00a00a5784002000000000000030038c88cc055c5ac27a6c5b068d0bf46d323452536005ad94a461cdbfee9bdb942352359a351d1ec0cffc8792cd8000080", 0x4c, 0x0, 0x0, 0x0) 1.081969882s ago: executing program 5 (id=6001): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000e00)='kfree\x00', r1, 0x0, 0x4ab}, 0x18) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000007c0)=ANY=[@ANYBLOB="540100001000130700000000000000000000000000000000ac1416aa0000000000000000000000004e2300004e2300000a0000005e00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000000000000000000000004d032000000ac1414bb000000000000000000000000010000000000000000000000000000000000000000000000000000000000000006000000000000000000000000000000ffffffffffffffff00000000000000000000000000000000000000080000000000000000000000000000100000000000000000000000000000000000feffffff0000000002000400000000000000000048000200656362286369706865725f6e756c6c29"], 0x154}, 0x1, 0x0, 0x0, 0x20000011}, 0x0) 1.032936312s ago: executing program 5 (id=6003): syz_open_dev$usbmon(&(0x7f0000000000), 0x80000001, 0x82002) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/bus/input/devices\x00', 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301) 767.110814ms ago: executing program 1 (id=6012): prctl$PR_SET_NAME(0xf, &(0x7f0000000a40)='GPL\x00') r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x2, &(0x7f0000010140)={[{@oldalloc}, {@noquota}, {@lazytime}, {@jqfmt_vfsv1}, {@i_version}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x4}}, {@stripe={'stripe', 0x3d, 0x20}}, {@lazytime}, {@max_batch_time={'max_batch_time', 0x3d, 0x7f}}, {@usrquota}, {@bsdgroups}]}, 0x1, 0x562, &(0x7f0000001080)="$eJzs3c1rHOUfAPDvbHb7/vs1hVJURAI9WKndNIkvFTzUo2ixoPe6JNNQsumW7KY0sWB7sBcvUgQRC+Jd7x6L/4B/RUELRUrQg5fIbGbTbbObt26abffzgWmfZ2aSZ77zzPfJMzu7bAADayT7pxDxckR8k0QcbttWjHzjyMp+Sw+vT2ZLEsvLn/6VRJKva+2f5P8fzCsvRcRvX0WcLKxtt76wOFOpVtO5vD7amL0yWl9YPHVptjKdTqeXxycmzrw9Mf7eu+/0LNY3zv/z/Sd3Pzzz9fGl7365f+R2EmfjUL6tPY6ncKO9MhIj+TkpxdkndhzrQWP9JNntA2BbhvI8L0U2BhwutbIeePF9GRHLwIBKtpj/e40X8IJozQNa9/Y9ug9+bjz4YOUGaG38xZXXRmJf897owFLy2J1Rdr873IP2szZ+/fPO7WyJ3r0OAbChGzcj4nSxuHb8S/Lxb/tOb2KfJ9sw/sGzczeb/7zZaf5TWJ3/RIf5z8EOubsdG+d/4X4Pmukqm/+933H+u/rQangor/2vOecrJRcvVdNsbPt/RJyI0t6svt7znDNL95a7bWuf/2VL1n5rLpgfx/3i3sd/ZqrSqDxNzO0e3Ix4peP8N1nt/6RD/2fn4/wm2ziW3nmt27aN499Zyz9FvN6x/x890UrWfz452rweRltXxVp/3zr2e7f2dzv+rP8PrB//cNL+vLa+9TZ+3Pdv2m3bdq//PclnzfKefN21SqMxNxaxJ/l47frxRz/bqrf2z+I/cXz98a/T9b8/Ij7fZPy3jv786vbj31lZ/FNb6v+tF+599MUP3drfXP+/1SydyNdsZvzb7AE+zbkDAAAAAACAflOIiEORFMqr5UKhXF55f8fROFCo1uqNkxdr85enovlZ2eEoFVpPug+3vR9iLH8/bKs+/kR9IiKORMS3Q/ub9fJkrTq128EDAAAAAAAAAAAAAAAAAABAnzjY5fP/mT+GdvvogB3nK79hcG2Y/734piegL/n7D4NL/sPgkv8wuOQ/DC75D4NL/sPgkv8wuOQ/AAAAAAAAAAAAAAAAAAAAAAAAAAAA9NT5c+eyZXnp4fXJrD51dWF+pnb11FRanynPzk+WJ2tzV8rTtdp0NS1P1mY3+n3VWu3K2HjMXxttpPXGaH1h8cJsbf5y48Kl2cp0eiEtPZOoAAAAAAAAAAAAAAAAAAAA4PlSX1icqVSr6VyPCoWI6OkvVFhTyPrtRrFfznOxPw5DoceF3R6ZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCR/wIAAP//f14x3A==") setxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f0000000280), &(0x7f000000a440)=ANY=[], 0x90f, 0x0) 473.683656ms ago: executing program 6 (id=6018): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10) r1 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0) fcntl$notify(r1, 0x402, 0x5) open(&(0x7f0000000140)='./file0\x00', 0xec40, 0x12) 455.271517ms ago: executing program 6 (id=6020): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000007f1600850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000280), 0x1, 0x0) writev(r2, &(0x7f0000000040)=[{&(0x7f0000002500)='\f7', 0x2}, {&(0x7f0000000000)='0', 0x1}], 0x2) 449.989896ms ago: executing program 7 (id=6021): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x8, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f00000004c0)='kfree\x00', r1}, 0x10) r2 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000840)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f0000000bc0)="0100000200373a4541062000a59ea940d2cb0b36b8f5020000a00000050000000000eb000000a5e5be21c44e", 0x2c, r2) 395.399557ms ago: executing program 6 (id=6022): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) fcntl$notify(r0, 0x402, 0x4) r1 = inotify_init() r2 = inotify_add_watch(r1, &(0x7f0000000280)='.\x00', 0x25000001) inotify_rm_watch(r1, r2) 394.710357ms ago: executing program 7 (id=6023): creat(&(0x7f00000000c0)='./bus\x00', 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x201000, 0x0) r0 = open(&(0x7f0000000540)='./bus\x00', 0x4000, 0x0) syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f0000001280)={[{@jqfmt_vfsv1}, {}, {@grpjquota}, {@data_journal}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@user_xattr}, {@nodelalloc}, {@debug}, {@noinit_itable}], [{@smackfstransmute={'smackfstransmute', 0x3d, 'data=journal'}}, {@rootcontext={'rootcontext', 0x3d, 'staff_u'}}, {@hash}]}, 0xfc, 0x58a, &(0x7f0000001340)="$eJzs3d9rW1UcAPDvTdPup66DMdQHGezByVy6tv6YIDgfRYcDfZ+hvSuj6TKadKx14PbgXnyRIYg4EP8A330c/gP+FQMdDBlFH0Sp3PSmy9b8aLtu6ZbPB257T85Nzvnm3HNyTm5CAhhYR7I/hYiXI+KbJOJAS14x8swjq8ct3786lW1JrKx8+mcSSX5b8/gk/78vT7wUEb9+FXG8sL7c2uLSbLlSSefz9Fh97tJYbXHpxIW58kw6k16cmJw89dbkxLvvvL1tsb5+9u/vP7n94amvjy5/9/PdgzeTOB3787zWOB7DtdbEkfK/+d5wnH7kwPFtKGwnydu+2O96sDlDeaMNRzYGHIghTQgD48uIWAEGVKL/w4BqzgOaa/ttWgc/M+59sLoAasQ+0hp/cfW9kdjdWBvtXU4eWhll693RbSg/K+OXP27dzLbo/j7Enh5pgE25dj0iThaL68f/JB//tu5k483j7h4tY9Bef6Cfbmfznzfazf8Ka/OfaDP/2dem725F7/5fuLsNxXSUzf/eazv/XRu6Rofy1AuNOd9wcv5CJT0ZES9GxLEY3pWlu13PObV8Z6VTXuv8L9uy8ptzwbwed4u7Hr7PdLlejoiRx4m76d71iFeK7eJP1to/adP+2fNxdoNlHE5vvdopr3f8T9bKTxGvtW3/ZO2YpPv1ybHG+TDWPCvW++vG4d86ld/v+LP239s9/tEk4r98uZjO1zZfxo+7/0k75W31/B9JPmvsNzvBlXK9Pj8eMZJ8vP72iQf3baabx2fxHzvaffxrd/5ni6/PNxj/jUM3Oh66E9p/unf7P7hev4WdOx998UOn8jfW/m829o7lt+TjX3v5ubLRCj7u8wcAAAAAAAA7SSEi9kdSKK3tFwql0urnOw7F3kKlWqsfP19duDgdje/KjsZwoXml+0DL5yHG88/DNtMTj6QnI+JgRHw7tKeRLk1VK9P9Dh4AAAAAAAAAAAAAAAAAAAB2iH0dvv+f+X2o37UDnrjGDxvs6nctgH7o+ZP/2/FLT8CO1LP/A88t/R8Gl/4Pg0v/h8HVrf8nT7EewNPn9R8Gl/4Pg6ul/+/pZz0AAAAAAAAAAAAAAAAAAAAAAAAAAADgOXH2zJlsW1m+f3UqS09fXlyYrV4+MZ3WZktzC1Olqer8pdJMtTpTSUtT1blej1epVi+NT8TClbF6WquP1RaXzs1VFy7Wz12YK8+k59LhpxIVAAAAAAAAAAAAAAAAAAAAPFtqi0uz5UolnX8Gdop9qvP70f/Yn3CAq7Z09+JOicLOYhTaZV3Pm3dzD9inAQkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA2vg/AAD//7i5MyQ=") preadv2(r0, &(0x7f0000003240)=[{&(0x7f0000001900)=""/104, 0x68}, {0x0}], 0x2, 0x0, 0x0, 0x8) 392.872457ms ago: executing program 6 (id=6024): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18) r1 = socket$inet6(0xa, 0x800000000000002, 0x0) setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8) sendto$inet6(r1, 0x0, 0x5c4, 0x404c844, &(0x7f0000000540)={0x2, 0x4e24, 0x0, @local}, 0x1c) 345.226227ms ago: executing program 6 (id=6025): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000a40)={[{@stripe={'stripe', 0x3d, 0x3}}, {@noauto_da_alloc}, {@jqfmt_vfsold}, {@data_err_ignore}, {@noauto_da_alloc}, {@delalloc}, {@resuid}, {@oldalloc}, {@jqfmt_vfsv1}]}, 0xfc, 0x550, &(0x7f0000000b00)="$eJzs3d9rW1UcAPDvTdv91nUwhvoghT04mUvX1h8TfJiPosOBvs/Q3pXRZBlNOtY6cHtwL77IEEQciH+A7z4O/wH/ioEOhoyiD75EbnrTZWvSZm22Zubzgduec89Nzz0593t6bk5CAhhaE9mPQsSrEfFtEnG4rWw08sKJteNWH16fzbYkGo3P/koiyfe1jk/y3wfzzCsR8dvXEScLG+utLa8slMrldDHPT9YrVyZryyunLlVK8+l8enl6ZubMOzPT77/3bt/a+ub5f3749O5HZ745vvr9L/eP3E7ibBzKy9rbsQM32jMTMZE/J2Nx9okDp/pQ2SBJdvsE2JaRPM7HIhsDDsdIHvXA/99XEdEAhlQi/mFIteYBrXv7Pt0HvzAefLh2A7Sx/aNrr43Evua90YHV5LE7o+x+d7wP9Wd1/PrnndvZFv17HQJgSzduRsTp0dGN41+Sj3/bd7qHY56sw/gHz8/dbP7zVqf5T2F9/hMd5j8HO8Tudmwd/4X7faimq2z+90HH+e/6otX4SJ57qTnnG0suXiqn2dj2ckSciLG9WX6z9Zwzq/ca3cra53/ZltXfmgvm53F/dO/jj5kr1Us7aXO7BzcjXus4/03W+z/p0P/Z83G+xzqOpXde71a2dfufrcbPEW907P9HK1rJ5uuTk83rYbJ1VWz0961jv3erf7fbn/X/gc3bP560r9fWnr6On/b9m3Yr2+71vyf5vJnek++7VqrXF6ci9iSfbNw//eixrXzr+Kz9J45vPv51uv73R8QXPbb/1tFbXQ8dhP6fe6r+f/rEvY+//LFb/b31/9vN1Il8Ty/jX68nuJPnDgAAAAAAAAZNISIORVIorqcLhWJx7f0dR+NAoVyt1U9erC5dnovmZ2XHY6zQWuk+3PZ+iKn8/bCt/PQT+ZmIOBIR343sb+aLs9Xy3G43HgAAAAAAAAAAAAAAAAAAAAbEwYh9nT7/n/ljZLfPDnjmfOU3DK/u8Z+X9OObnoCB5P8/DC/xD8NL/MPwEv8wvMQ/DC/xD8NL/MPwEv8AAAAAAAAAAAAAAAAAAAAAAAAAAADQV+fPncu2xurD67NZfu7q8tJC9eqpubS2UKwszRZnq4tXivPV6nw5Lc5WK1v9vXK1emVqOpauTdbTWn2ytrxyoVJduly/cKlSmk8vpGPPpVUAAAAAAAAAAAAAAAAAAADwYqktryyUyuV0UUJiW4nRwTgNiT4ndntkAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBH/gsAAP//sQI4ww==") r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00') write$binfmt_script(r0, &(0x7f0000001800)={'#! ', './cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0xff1) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600) 293.616748ms ago: executing program 8 (id=6026): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0xfffffffc, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) syz_mount_image$ext4(0x0, &(0x7f00000001c0)='./file0\x00', 0x1809049, 0x0, 0xff, 0x0, 0x0) lsetxattr$security_capability(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000200), 0x0, 0x0, 0x3) 293.018898ms ago: executing program 8 (id=6027): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000200)='kfree\x00', r0, 0x0, 0x80}, 0x18) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='setgroups\x00') close_range(r1, 0xffffffffffffffff, 0x0) 292.721757ms ago: executing program 7 (id=6028): r0 = socket$nl_audit(0x10, 0x3, 0x9) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10) sendmsg$AUDIT_USER_AVC(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x14, 0x453, 0x20, 0x70bd2b, 0x25dfdbfb, '\x00'}, 0x14}, 0x1, 0x0, 0x0, 0x4008140}, 0x880) 255.040748ms ago: executing program 1 (id=6029): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400ffd9b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x13, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 248.805618ms ago: executing program 8 (id=6030): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f00000003c0)={{0x80, 0x8}, 'port1\x00', 0x22, 0x0, 0xffff, 0x7, 0x598, 0x4000036e, 0x0, 0x0, 0x2}) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x1a0682) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000340)={0x8000000, 0x0, 0x0, 'queue1\x00'}) write$sndseq(r1, &(0x7f0000000000)=[{0x0, 0x0, 0x0, 0x0, @time, {0x0, 0xfd}, {0x80}, @raw8={"a357b6b140cbb6215dd33459"}}], 0x1c) 245.435528ms ago: executing program 7 (id=6031): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xfff, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) eventfd2(0x0, 0x0) 215.376098ms ago: executing program 1 (id=6032): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="18090000002300810000000000000000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = syz_open_dev$usbfs(&(0x7f0000000040), 0x400000001fc, 0x301) ioctl$USBDEVFS_REAPURB(r1, 0x4004550c, 0x0) ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000280)=@urb_type_control={0x2, {}, 0x0, 0x40, &(0x7f0000000000)={0x4b5a9da54893e123, 0x16, 0x8, 0x2}, 0x8, 0x7, 0x200, 0x0, 0x0, 0x20000, 0x0}) 200.569868ms ago: executing program 7 (id=6033): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10) add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff) 186.175608ms ago: executing program 8 (id=6034): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000005000000000000000000000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='contention_end\x00', r0}, 0x10) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0) write$binfmt_aout(r1, &(0x7f0000000200)=ANY=[], 0xff2e) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) 175.299119ms ago: executing program 6 (id=6035): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000080)='netlink_extack\x00', r0}, 0xd) r1 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000280)={0x4000}, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)={0x1c, 0x16, 0x1, 0x0, 0x0, {0xa}, [@nested={0x4}, @typed={0x4, 0x7}]}, 0x1c}}, 0x0) 174.996998ms ago: executing program 5 (id=6036): r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x10, &(0x7f0000000000)=@framed={{0x18, 0x8}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {}, {0x7, 0x0, 0xb, 0x7}}, @printk={@llx}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x1c) 37.131959ms ago: executing program 1 (id=6037): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1/file3\x00', 0x0) renameat2(0xffffffffffffff9c, &(0x7f0000000180)='./file1/file3\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) 30.883769ms ago: executing program 7 (id=6038): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) clock_settime(0x7, 0x0) 7.84732ms ago: executing program 5 (id=6039): r0 = socket$xdp(0x2c, 0x3, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r1, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c) mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, r1, 0x0) setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x201000, 0x1000}, 0x20) 0s ago: executing program 1 (id=6040): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]}) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) lsetxattr$security_selinux(&(0x7f00000001c0)='.\x00', &(0x7f0000000240), &(0x7f0000000280)='system_u:object_r:fsadm_exec_t:s0\x00', 0x1001, 0x0) kernel console output (not intermixed with test programs): m_r:sysadm_t pid=11436 comm="syz.0.3537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe1560cd169 code=0x7ffc0000 [ 118.688765][ T30] audit: type=1326 audit(2000000002.600:3859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11438 comm="syz.6.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8d7d6d169 code=0x7ffc0000 [ 118.715154][ T30] audit: type=1326 audit(2000000002.600:3860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11438 comm="syz.6.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8d7d6d169 code=0x7ffc0000 [ 118.740925][ T30] audit: type=1326 audit(2000000002.600:3861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11438 comm="syz.6.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7fb8d7d6d169 code=0x7ffc0000 [ 118.767896][ T30] audit: type=1326 audit(2000000002.600:3862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11438 comm="syz.6.3538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8d7d6d169 code=0x7ffc0000 [ 118.890805][ T3939] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x4 [ 118.898968][ T3939] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x2 [ 118.909003][ T3939] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 118.917058][ T3939] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 118.925885][ T3939] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 118.933979][ T3939] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 118.944665][ T3939] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 118.952503][ T3939] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 118.960688][ T3939] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 118.968830][ T3939] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 118.976634][ T3939] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 118.984445][ T3939] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 118.992281][ T3939] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 119.000343][ T3939] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 119.008057][ T3939] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 119.015817][ T3939] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 119.024522][ T3939] hid-generic 0000:3000000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [sy] on syz0 [ 119.024749][T11460] netlink: 'syz.6.3548': attribute type 21 has an invalid length. [ 119.046013][T11460] IPv6: NLM_F_CREATE should be specified when creating new route [ 119.084749][T11465] tipc: Started in network mode [ 119.090627][T11465] tipc: Node identity aaaaaaaaaaaa, cluster identity 4711 [ 119.098537][T11465] tipc: Enabled bearer <eth:syz_tun>, priority 10 [ 119.106758][T11465] netlink: 14 bytes leftover after parsing attributes in process `syz.6.3550'. [ 119.118326][T11465] tipc: Resetting bearer <eth:syz_tun> [ 119.133623][T11465] tipc: Disabling bearer <eth:syz_tun> [ 119.179786][T11469] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3552'. [ 119.264843][T11486] netlink: 100 bytes leftover after parsing attributes in process `syz.5.3556'. [ 119.613370][T11562] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.682138][T11562] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.741931][T11562] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.802208][T11562] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.849094][T11562] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 119.863830][T11562] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 119.879424][T11562] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 119.891803][T11562] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 119.995236][T11635] gtp0: entered promiscuous mode [ 120.001156][T11635] gtp0: entered allmulticast mode [ 120.021985][T11639] netlink: 40227 bytes leftover after parsing attributes in process `syz.5.3579'. [ 120.104634][T11649] netlink: 'syz.4.3584': attribute type 1 has an invalid length. [ 120.201852][T11659] ipvlan2: entered promiscuous mode [ 120.556807][T11686] SELinux: security_context_str_to_sid (u) failed with errno=-22 [ 120.695467][T11700] loop4: detected capacity change from 0 to 1764 [ 121.210603][T11647] syz.1.3583 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000 [ 121.225242][T11647] CPU: 0 UID: 0 PID: 11647 Comm: syz.1.3583 Not tainted 6.14.0-rc6-syzkaller #0 [ 121.225272][T11647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 121.225288][T11647] Call Trace: [ 121.225296][T11647] <TASK> [ 121.225307][T11647] dump_stack_lvl+0xf2/0x150 [ 121.225342][T11647] dump_stack+0x15/0x1a [ 121.225381][T11647] dump_header+0x83/0x2d0 [ 121.225406][T11647] oom_kill_process+0x341/0x4c0 [ 121.225491][T11647] out_of_memory+0x9af/0xbe0 [ 121.225574][T11647] ? css_next_descendant_pre+0x11c/0x140 [ 121.225626][T11647] mem_cgroup_out_of_memory+0x13e/0x190 [ 121.225708][T11647] try_charge_memcg+0x508/0x7f0 [ 121.225740][T11647] obj_cgroup_charge_pages+0xbd/0x1a0 [ 121.225854][T11647] __memcg_kmem_charge_page+0x9d/0x170 [ 121.225885][T11647] __alloc_frozen_pages_noprof+0x1bc/0x340 [ 121.225964][T11647] alloc_pages_mpol+0xb4/0x260 [ 121.225990][T11647] alloc_pages_noprof+0xe8/0x130 [ 121.226044][T11647] __vmalloc_node_range_noprof+0x6e5/0xe70 [ 121.226088][T11647] __kvmalloc_node_noprof+0x121/0x170 [ 121.226167][T11647] ? ip_set_alloc+0x1f/0x30 [ 121.226195][T11647] ip_set_alloc+0x1f/0x30 [ 121.226271][T11647] hash_netiface_create+0x273/0x730 [ 121.226304][T11647] ? __nla_parse+0x40/0x60 [ 121.226346][T11647] ? __pfx_hash_netiface_create+0x10/0x10 [ 121.226399][T11647] ip_set_create+0x3b1/0x970 [ 121.226487][T11647] ? __nla_parse+0x40/0x60 [ 121.226532][T11647] nfnetlink_rcv_msg+0x4a9/0x570 [ 121.226630][T11647] netlink_rcv_skb+0x12c/0x230 [ 121.226684][T11647] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 121.226751][T11647] nfnetlink_rcv+0x16c/0x15d0 [ 121.226780][T11647] ? kmem_cache_free+0xdc/0x2d0 [ 121.226805][T11647] ? nlmon_xmit+0x51/0x60 [ 121.226838][T11647] ? __kfree_skb+0x102/0x150 [ 121.226908][T11647] ? consume_skb+0x49/0x160 [ 121.226932][T11647] ? nlmon_xmit+0x51/0x60 [ 121.226970][T11647] ? dev_hard_start_xmit+0x3c1/0x3f0 [ 121.227001][T11647] ? __dev_queue_xmit+0xb6e/0x2090 [ 121.227075][T11647] ? ref_tracker_free+0x3a5/0x410 [ 121.227120][T11647] ? __netlink_deliver_tap+0x4c6/0x4f0 [ 121.227165][T11647] netlink_unicast+0x599/0x670 [ 121.227222][T11647] netlink_sendmsg+0x5cc/0x6e0 [ 121.227269][T11647] ? __pfx_netlink_sendmsg+0x10/0x10 [ 121.227378][T11647] __sock_sendmsg+0x140/0x180 [ 121.227422][T11647] ____sys_sendmsg+0x326/0x4b0 [ 121.227468][T11647] __sys_sendmsg+0x19d/0x230 [ 121.227517][T11647] __x64_sys_sendmsg+0x46/0x50 [ 121.227661][T11647] x64_sys_call+0x2734/0x2dc0 [ 121.227695][T11647] do_syscall_64+0xc9/0x1c0 [ 121.227799][T11647] ? clear_bhb_loop+0x55/0xb0 [ 121.227845][T11647] ? clear_bhb_loop+0x55/0xb0 [ 121.227881][T11647] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 121.227943][T11647] RIP: 0033:0x7fb8298cd169 [ 121.227963][T11647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 121.227982][T11647] RSP: 002b:00007fb827f37038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 121.228000][T11647] RAX: ffffffffffffffda RBX: 00007fb829ae5fa0 RCX: 00007fb8298cd169 [ 121.228016][T11647] RDX: 0000000000000000 RSI: 0000400000000040 RDI: 0000000000000003 [ 121.228031][T11647] RBP: 00007fb82994e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 121.228045][T11647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 121.228066][T11647] R13: 0000000000000000 R14: 00007fb829ae5fa0 R15: 00007ffe85a75e18 [ 121.228090][T11647] </TASK> [ 121.228098][T11647] memory: usage 307200kB, limit 307200kB, failcnt 232 [ 121.323742][T11730] loop5: detected capacity change from 0 to 1764 [ 121.327529][T11647] memory+swap: usage 307592kB, limit 9007199254740988kB, failcnt 0 [ 121.327549][T11647] kmem: usage 307192kB, limit 9007199254740988kB, failcnt 0 [ 121.387811][T11647] Memory cgroup stats for /syz1: [ 121.394189][T11647] cache 4096 [ 121.501210][T11735] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3622'. [ 121.502186][T11647] rss 0 [ 121.502195][T11647] shmem 0 [ 121.502201][T11647] mapped_file 0 [ 121.502207][T11647] dirty 0 [ 121.502213][T11647] writeback 0 [ 121.667548][T11647] workingset_refault_anon 1401 [ 121.673475][T11647] workingset_refault_file 164 [ 121.678495][T11647] swap 401408 [ 121.682064][T11647] swapcached 4096 [ 121.686125][T11647] pgpgin 136321 [ 121.689769][T11647] pgpgout 136319 [ 121.694298][T11647] pgfault 157834 [ 121.698211][T11647] pgmajfault 53 [ 121.701943][T11647] inactive_anon 0 [ 121.706030][T11647] active_anon 0 [ 121.710416][T11647] inactive_file 0 [ 121.714404][T11647] active_file 4096 [ 121.720750][T11647] unevictable 0 [ 121.725442][T11647] hierarchical_memory_limit 314572800 [ 121.731042][T11647] hierarchical_memsw_limit 9223372036854771712 [ 121.738367][T11647] total_cache 4096 [ 121.742910][T11647] total_rss 0 [ 121.746592][T11647] total_shmem 0 [ 121.750467][T11647] total_mapped_file 0 [ 121.755982][T11647] total_dirty 0 [ 121.760212][T11647] total_writeback 0 [ 121.764395][T11647] total_workingset_refault_anon 1401 [ 121.770012][T11647] total_workingset_refault_file 164 [ 121.780356][T11647] total_swap 401408 [ 121.784893][T11647] total_swapcached 4096 [ 121.789757][T11647] total_pgpgin 136321 [ 121.794682][T11647] total_pgpgout 136319 [ 121.799886][T11647] total_pgfault 157834 [ 121.804667][T11647] total_pgmajfault 53 [ 121.810332][T11647] total_inactive_anon 0 [ 121.815229][T11647] total_active_anon 0 [ 121.819302][T11647] total_inactive_file 0 [ 121.823844][T11647] total_active_file 4096 [ 121.831301][T11647] total_unevictable 0 [ 121.836836][T11647] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz1,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.3583,pid=11646,uid=0 [ 121.856405][T11647] Memory cgroup out of memory: Killed process 11646 (syz.1.3583) total-vm:95628kB, anon-rss:1044kB, file-rss:22056kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000 [ 122.058429][T11763] loop4: detected capacity change from 0 to 764 [ 122.078927][T11765] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3638'. [ 122.095585][T11767] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3639'. [ 122.333659][T11789] vlan2: entered allmulticast mode [ 122.333793][T11647] syz.1.3583 (11647) used greatest stack depth: 6304 bytes left [ 122.451805][T11811] binfmt_misc: register: failed to install interpreter file ./file1 [ 122.503610][T11819] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check. [ 122.555870][T11823] ������: renamed from vlan1 (while UP) [ 122.612299][T11831] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3671'. [ 122.832675][T11866] netlink: '+}[@': attribute type 1 has an invalid length. [ 122.840663][T11866] netlink: 16 bytes leftover after parsing attributes in process `+}[@'. [ 122.910967][ T7039] kernel write not supported for file /snd/seq (pid: 7039 comm: kworker/0:4) [ 122.996198][T11894] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 123.003299][T11894] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 123.012429][T11894] vhci_hcd vhci_hcd.0: Device attached [ 123.022152][T11897] vhci_hcd: connection closed [ 123.022301][ T37] vhci_hcd: stop threads [ 123.034198][ T37] vhci_hcd: release socket [ 123.039207][ T37] vhci_hcd: disconnect device [ 123.140000][T11908] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3707'. [ 123.296068][T11933] xt_CT: No such helper "snmp_trap" [ 123.341180][T11939] loop5: detected capacity change from 0 to 512 [ 123.348114][T11939] EXT4-fs: Ignoring removed i_version option [ 123.363021][T11939] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 123.376514][T11939] ext4 filesystem being mounted at /722/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 123.392575][T11939] EXT4-fs error (device loop5): ext4_do_update_inode:5154: inode #4: comm syz.5.3720: corrupted inode contents [ 123.405007][T11939] EXT4-fs (loop5): Remounting filesystem read-only [ 123.422323][ T3813] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 123.442173][T11944] blktrace: Concurrent blktraces are not allowed on sg0 [ 123.593422][T11954] xt_CT: No such helper "pptp" [ 123.690611][ T30] kauditd_printk_skb: 221 callbacks suppressed [ 123.690631][ T30] audit: type=1400 audit(2000000007.640:4081): avc: denied { create } for pid=11966 comm="syz.0.3732" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 123.698182][ T30] audit: type=1400 audit(2000000007.640:4082): avc: denied { write } for pid=11966 comm="syz.0.3732" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 123.741687][ T30] audit: type=1326 audit(2000000007.670:4083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11968 comm="syz.5.3733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 123.768026][ T30] audit: type=1326 audit(2000000007.670:4084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11968 comm="syz.5.3733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 123.792941][ T30] audit: type=1326 audit(2000000007.670:4085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11968 comm="syz.5.3733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 123.817737][ T30] audit: type=1326 audit(2000000007.670:4086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11968 comm="syz.5.3733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 123.842299][ T30] audit: type=1326 audit(2000000007.670:4087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11968 comm="syz.5.3733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 123.867115][ T30] audit: type=1326 audit(2000000007.670:4088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11968 comm="syz.5.3733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 123.890859][ T30] audit: type=1326 audit(2000000007.670:4089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11968 comm="syz.5.3733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 123.914741][ T30] audit: type=1326 audit(2000000007.690:4090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11968 comm="syz.5.3733" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 123.996278][T11983] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=11983 comm=syz.0.3740 [ 124.152951][T12003] SELinux: policydb version 0 does not match my version range 15-34 [ 124.164714][T12003] SELinux: failed to load policy [ 124.178042][T12009] netlink: 277 bytes leftover after parsing attributes in process `syz.4.3753'. [ 124.269851][T12022] netlink: 140 bytes leftover after parsing attributes in process `syz.4.3759'. [ 124.279383][T12022] netlink: 140 bytes leftover after parsing attributes in process `syz.4.3759'. [ 124.411920][T12046] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3771'. [ 124.468066][T12052] netlink: 'syz.0.3776': attribute type 2 has an invalid length. [ 124.476800][T12052] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3776'. [ 124.533562][T12064] 9pnet_fd: Insufficient options for proto=fd [ 124.590578][T12072] syzkaller1: entered promiscuous mode [ 124.596295][T12072] syzkaller1: entered allmulticast mode [ 124.663666][T12082] geneve0: entered allmulticast mode [ 124.769665][T12093] x_tables: ip_tables: udp match: only valid for protocol 17 [ 124.867601][T12098] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub [ 124.978711][T12110] tipc: Started in network mode [ 124.983834][T12110] tipc: Node identity aaaaaaaaaaaa, cluster identity 4711 [ 124.991167][T12110] tipc: Enabled bearer <eth:syz_tun>, priority 10 [ 125.009987][T12110] tipc: Resetting bearer <eth:syz_tun> [ 125.034571][T12110] tipc: Disabling bearer <eth:syz_tun> [ 125.055683][T12115] geneve0: entered allmulticast mode [ 125.217779][T12137] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 125.427241][T12163] loop5: detected capacity change from 0 to 764 [ 125.454210][T12163] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 125.687128][T12191] loop5: detected capacity change from 0 to 512 [ 125.723328][T12191] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.3841: bg 0: block 248: padding at end of block bitmap is not set [ 125.777429][T12191] EXT4-fs error (device loop5): ext4_acquire_dquot:6927: comm syz.5.3841: Failed to acquire dquot type 1 [ 125.803725][T12191] EXT4-fs (loop5): 1 truncate cleaned up [ 125.825555][T12191] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 125.838256][T12191] ext4 filesystem being mounted at /751/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 125.928680][ T3813] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 126.000591][T12213] usb usb6: usbfs: process 12213 (syz.6.3849) did not claim interface 0 before use [ 126.032827][T12221] loop5: detected capacity change from 0 to 1024 [ 126.063206][T12221] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 126.074670][T12221] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 126.105134][T12221] JBD2: no valid journal superblock found [ 126.111111][T12221] EXT4-fs (loop5): Could not load journal inode [ 126.147578][T12221] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�ue� W���Fct̝�3�L;-n�����9�;=�B�9g�=g&��K�"�D��$b���Y�X�;��:ݒ��^�-�$��<>���'�=��7I�.��wn����ju�J����pybn��s��Ξ��.) failed with errno=-22 [ 126.357878][T12242] netlink: 'syz.4.3863': attribute type 10 has an invalid length. [ 126.381897][T12242] bridge0: port 2(bridge_slave_1) entered disabled state [ 126.389727][T12242] bridge_slave_1: left allmulticast mode [ 126.395670][T12242] bridge_slave_1: left promiscuous mode [ 126.401611][T12242] bridge0: port 2(bridge_slave_1) entered disabled state [ 126.449902][T12242] bond0: (slave bridge_slave_1): Enslaving as an active interface with an up link [ 126.565622][T12259] xt_CT: No such helper "netbios-ns" [ 126.674283][T12275] geneve0: entered allmulticast mode [ 126.908158][T12309] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 127.389562][T12345] netlink: 'syz.6.3911': attribute type 10 has an invalid length. [ 127.423648][T12345] team0: Device hsr_slave_0 failed to register rx_handler [ 127.603284][ T56] tipc: Subscription rejected, illegal request [ 127.817787][T12375] __nla_validate_parse: 7 callbacks suppressed [ 127.817806][T12375] netlink: 32 bytes leftover after parsing attributes in process `syz.6.3924'. [ 128.038396][T12386] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 128.067614][T12386] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 128.174267][T12396] netlink: 56 bytes leftover after parsing attributes in process `syz.4.3934'. [ 128.353514][T12412] loop5: detected capacity change from 0 to 256 [ 128.436598][T12426] loop4: detected capacity change from 0 to 512 [ 128.443816][T12430] SELinux: Context system_u:object_r:tun_tap_device_t:s0 is not valid (left unmapped). [ 128.467535][T12426] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 128.486728][T12426] EXT4-fs (loop4): 1 truncate cleaned up [ 128.494670][T12426] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 128.544366][T12445] Invalid ELF header magic: != ELF [ 128.559274][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 128.602078][T12453] loop5: detected capacity change from 0 to 1024 [ 128.632712][T12453] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 128.644072][T12453] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 128.657277][T12453] JBD2: no valid journal superblock found [ 128.663181][T12453] EXT4-fs (loop5): Could not load journal inode [ 128.675103][T12453] SELinux: security_context_str_to_sid (�-�Xܘ7.H\��%�u@) failed with errno=-22 [ 128.685124][T12461] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3963'. [ 128.713552][ T30] kauditd_printk_skb: 205 callbacks suppressed [ 128.713570][ T30] audit: type=1400 audit(2000000012.660:4294): avc: denied { sqpoll } for pid=12464 comm="syz.5.3964" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 128.862269][ T30] audit: type=1400 audit(2000000012.810:4295): avc: denied { write } for pid=12471 comm="syz.0.3967" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 128.886307][T12474] loop5: detected capacity change from 0 to 512 [ 128.894487][T12474] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 128.907149][T12474] EXT4-fs (loop5): 1 orphan inode deleted [ 128.913007][T12474] EXT4-fs (loop5): 1 truncate cleaned up [ 128.919417][T12474] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 128.970257][ T3813] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 129.277147][ T30] audit: type=1326 audit(2000000013.220:4296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12494 comm="syz.1.3977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8298cd169 code=0x7ffc0000 [ 129.301055][ T30] audit: type=1326 audit(2000000013.220:4297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12494 comm="syz.1.3977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8298cd169 code=0x7ffc0000 [ 129.325064][ T30] audit: type=1326 audit(2000000013.270:4298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12494 comm="syz.1.3977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=269 compat=0 ip=0x7fb8298cd169 code=0x7ffc0000 [ 129.349004][ T30] audit: type=1326 audit(2000000013.270:4299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12494 comm="syz.1.3977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8298cd169 code=0x7ffc0000 [ 129.372903][ T30] audit: type=1326 audit(2000000013.270:4300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12494 comm="syz.1.3977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8298cd169 code=0x7ffc0000 [ 129.413876][ T30] audit: type=1400 audit(2000000013.350:4301): avc: denied { setopt } for pid=12501 comm="syz.1.3980" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 129.433461][ T30] audit: type=1400 audit(2000000013.350:4302): avc: denied { connect } for pid=12501 comm="syz.1.3980" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 129.545138][ T30] audit: type=1400 audit(2000000013.490:4303): avc: denied { nlmsg_write } for pid=12519 comm="syz.4.3987" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 129.638637][T12527] hub 4-0:1.0: USB hub found [ 129.643592][T12527] hub 4-0:1.0: 8 ports detected [ 129.687285][T12539] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3996'. [ 129.696338][T12539] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3996'. [ 129.712055][T12543] ipvlan2: entered promiscuous mode [ 129.718671][T12543] bridge0: port 2(ipvlan2) entered blocking state [ 129.725337][T12543] bridge0: port 2(ipvlan2) entered disabled state [ 129.732136][T12543] ipvlan2: entered allmulticast mode [ 129.737574][T12543] bridge0: entered allmulticast mode [ 129.743617][T12543] ipvlan2: left allmulticast mode [ 129.748682][T12543] bridge0: left allmulticast mode [ 129.761268][T12539] netdevsim netdevsim1 eth0: set [1, 1] type 2 family 0 port 20000 - 0 [ 129.769771][T12539] netdevsim netdevsim1 eth1: set [1, 1] type 2 family 0 port 20000 - 0 [ 129.778424][T12539] netdevsim netdevsim1 eth2: set [1, 1] type 2 family 0 port 20000 - 0 [ 129.787311][T12539] netdevsim netdevsim1 eth3: set [1, 1] type 2 family 0 port 20000 - 0 [ 129.795882][T12539] geneve2: entered promiscuous mode [ 129.801488][T12539] geneve2: entered allmulticast mode [ 129.828325][T12549] loop5: detected capacity change from 0 to 128 [ 129.928362][T12555] syzkaller0: entered promiscuous mode [ 129.933982][T12555] syzkaller0: entered allmulticast mode [ 130.003677][T12568] loop5: detected capacity change from 0 to 128 [ 130.010742][T12568] EXT4-fs: Ignoring removed nobh option [ 130.017846][T12568] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 130.040606][T12568] ext4 filesystem being mounted at /793/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 130.070306][T12573] netlink: 14 bytes leftover after parsing attributes in process `syz.4.4012'. [ 130.082193][ T3813] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 130.256252][T12599] syzkaller1: entered promiscuous mode [ 130.262123][T12599] syzkaller1: entered allmulticast mode [ 130.272936][T12599] PF_CAN: dropped non conform CAN skbuff: dev type 65534, len 26 [ 130.412941][T12622] IPv6: Can't replace route, no match found [ 130.450301][T12629] loop4: detected capacity change from 0 to 512 [ 130.457477][T12629] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 130.473336][T12629] EXT4-fs (loop4): 1 orphan inode deleted [ 130.479165][T12629] EXT4-fs (loop4): 1 truncate cleaned up [ 130.485805][T12629] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 130.529321][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 130.617220][T12651] hub 4-0:1.0: USB hub found [ 130.627071][T12651] hub 4-0:1.0: 8 ports detected [ 130.699692][T12670] ip6tnl2: entered promiscuous mode [ 130.705115][T12670] ip6tnl2: entered allmulticast mode [ 130.769605][T12679] loop6: detected capacity change from 0 to 1024 [ 130.777039][T12679] EXT4-fs: Ignoring removed nobh option [ 130.782833][T12679] EXT4-fs: Ignoring removed bh option [ 130.794099][T12679] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 130.826831][ T9649] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 131.629429][T12727] ipvlan2: entered promiscuous mode [ 131.642707][T12727] bridge0: port 1(ipvlan2) entered blocking state [ 131.649289][T12727] bridge0: port 1(ipvlan2) entered disabled state [ 131.659563][T12727] ipvlan2: entered allmulticast mode [ 131.665032][T12727] bridge0: entered allmulticast mode [ 131.672144][T12727] ipvlan2: left allmulticast mode [ 131.677226][T12727] bridge0: left allmulticast mode [ 131.752542][T12735] block device autoloading is deprecated and will be removed. [ 131.760386][T12735] syz.5.4088: attempt to access beyond end of device [ 131.760386][T12735] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 131.859724][T12749] SELinux: policydb version 645483306 does not match my version range 15-34 [ 131.877933][T12749] SELinux: failed to load policy [ 132.062649][T12785] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4112'. [ 132.071653][T12785] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4112'. [ 132.124527][T12792] ip6tnl2: entered promiscuous mode [ 132.129900][T12792] ip6tnl2: entered allmulticast mode [ 132.149404][T12795] IPv6: NLM_F_CREATE should be specified when creating new route [ 132.248761][T12810] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4124'. [ 132.277526][T12812] loop6: detected capacity change from 0 to 512 [ 132.284204][T12812] EXT4-fs: Ignoring removed oldalloc option [ 132.292317][T12812] EXT4-fs error (device loop6): ext4_xattr_inode_iget:436: comm syz.6.4125: Parent and EA inode have the same ino 15 [ 132.305055][T12812] EXT4-fs (loop6): Remounting filesystem read-only [ 132.311743][T12812] EXT4-fs warning (device loop6): ext4_evict_inode:259: couldn't mark inode dirty (err -5) [ 132.321918][T12812] EXT4-fs (loop6): 1 orphan inode deleted [ 132.327954][T12812] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 132.340132][T12812] SELinux: (dev loop6, type ext4) getxattr errno 5 [ 132.347088][T12812] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 132.872358][T12830] ip6tnl2: entered promiscuous mode [ 132.878204][T12830] ip6tnl2: entered allmulticast mode [ 133.091284][T12853] netlink: 61211 bytes leftover after parsing attributes in process `syz.5.4143'. [ 133.113215][T12857] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4146'. [ 133.122355][T12857] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4146'. [ 133.135665][T12857] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4146'. [ 133.160156][T12857] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4146'. [ 133.169196][T12857] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4146'. [ 133.191646][T12857] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4146'. [ 133.217269][T12857] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4146'. [ 133.226272][T12857] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4146'. [ 133.246484][T12857] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4146'. [ 133.295520][T12878] loop0: detected capacity change from 0 to 512 [ 133.302294][T12877] loop5: detected capacity change from 0 to 1024 [ 133.303404][T12878] EXT4-fs: Ignoring removed bh option [ 133.314850][T12878] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 133.321934][T12877] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 133.338860][T12878] EXT4-fs (loop0): 1 truncate cleaned up [ 133.347203][T12878] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 133.363030][T12877] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4115: comm syz.5.4154: Allocating blocks 481-513 which overlap fs metadata [ 133.380498][T12877] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4115: comm syz.5.4154: Allocating blocks 497-513 which overlap fs metadata [ 133.399458][T12877] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4115: comm syz.5.4154: Allocating blocks 497-513 which overlap fs metadata [ 133.422733][T12877] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117 [ 133.435170][T12877] EXT4-fs (loop5): This should not happen!! Data will be lost [ 133.435170][T12877] [ 133.451297][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 133.461755][ T37] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4115: comm kworker/u8:2: Allocating blocks 497-513 which overlap fs metadata [ 133.480248][ T37] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 12 with error 117 [ 133.492839][ T37] EXT4-fs (loop5): This should not happen!! Data will be lost [ 133.492839][ T37] [ 133.506564][ T3813] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 133.631759][T12911] sg_write: data in/out 28/14 bytes for SCSI command 0x0-- guessing data in; [ 133.631759][T12911] program syz.0.4170 not setting count and/or reply_len properly [ 133.713377][T12922] loop6: detected capacity change from 0 to 512 [ 133.728844][T12922] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 133.739151][T12922] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 133.747389][T12922] EXT4-fs (loop6): orphan cleanup on readonly fs [ 133.754600][T12924] usb usb6: usbfs: process 12924 (+}[@) did not claim interface 0 before use [ 133.771919][T12922] EXT4-fs warning (device loop6): ext4_enable_quotas:7145: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 133.789171][T12922] EXT4-fs (loop6): Cannot turn on quotas: error -22 [ 133.796340][T12922] EXT4-fs error (device loop6): ext4_ext_check_inode:524: inode #13: comm syz.6.4175: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 133.825990][ T30] kauditd_printk_skb: 148 callbacks suppressed [ 133.826008][ T30] audit: type=1400 audit(2000000017.770:4452): avc: denied { watch } for pid=12927 comm="syz.0.4178" path="/877/bus" dev="tmpfs" ino=4510 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 133.856142][T12922] EXT4-fs error (device loop6): ext4_orphan_get:1394: comm syz.6.4175: couldn't read orphan inode 13 (err -117) [ 133.879113][T12922] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 133.908096][T12922] EXT4-fs (loop6): shut down requested (1) [ 133.946865][ T9649] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 133.984462][ T30] audit: type=1400 audit(2000000017.920:4453): avc: denied { read } for pid=12938 comm="syz.0.4184" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 134.082157][T12952] loop6: detected capacity change from 0 to 2048 [ 134.096634][T12954] netlink: 'syz.4.4190': attribute type 10 has an invalid length. [ 134.117763][T12954] batadv_slave_0: left promiscuous mode [ 134.123479][T12954] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 134.135961][ T30] audit: type=1400 audit(2000000018.080:4454): avc: denied { write } for pid=12938 comm="syz.0.4184" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 134.147322][T12952] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 134.170243][T12952] ext4 filesystem being mounted at /231/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 134.183569][T12954] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link [ 134.271804][T12962] sd 0:0:1:0: device reset [ 134.282389][ T30] audit: type=1400 audit(2000000018.220:4455): avc: denied { ioctl } for pid=12951 comm="syz.6.4189" path="/231/file1/file1" dev="loop6" ino=15 ioctlcmd=0x5829 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 134.332848][ T30] audit: type=1400 audit(2000000018.270:4456): avc: denied { setcheckreqprot } for pid=12966 comm="syz.0.4196" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 134.401970][T12975] vhci_hcd: invalid port number 15 [ 134.407189][T12975] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 134.509877][T12963] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.4189: bg 0: block 345: padding at end of block bitmap is not set [ 134.529183][T12963] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117 [ 134.541983][T12963] EXT4-fs (loop6): This should not happen!! Data will be lost [ 134.541983][T12963] [ 134.581076][ T30] audit: type=1326 audit(2000000018.530:4457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12991 comm="syz.4.4207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63d0edd169 code=0x7ffc0000 [ 134.611838][ T30] audit: type=1326 audit(2000000018.550:4458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12991 comm="syz.4.4207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63d0edd169 code=0x7ffc0000 [ 134.616313][ T3399] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 2040 with error 28 [ 134.636115][ T30] audit: type=1326 audit(2000000018.560:4459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12991 comm="syz.4.4207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f63d0edd169 code=0x7ffc0000 [ 134.648182][ T3399] EXT4-fs (loop6): This should not happen!! Data will be lost [ 134.648182][ T3399] [ 134.648206][ T3399] EXT4-fs (loop6): Total free blocks count 0 [ 134.671698][ T30] audit: type=1326 audit(2000000018.560:4460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12991 comm="syz.4.4207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63d0edd169 code=0x7ffc0000 [ 134.671748][ T30] audit: type=1326 audit(2000000018.560:4461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12991 comm="syz.4.4207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63d0edd169 code=0x7ffc0000 [ 134.681394][ T3399] EXT4-fs (loop6): Free/Dirty block details [ 134.741582][ T3399] EXT4-fs (loop6): free_blocks=0 [ 134.746639][ T3399] EXT4-fs (loop6): dirty_blocks=2048 [ 134.752062][ T3399] EXT4-fs (loop6): Block reservation details [ 134.917318][T13011] loop6: detected capacity change from 0 to 512 [ 134.944344][T13011] EXT4-fs error (device loop6): ext4_xattr_block_get:596: inode #2: comm syz.6.4208: corrupted xattr block 255: invalid header [ 134.970635][T13011] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -117 [ 134.979554][T13011] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 134.994041][T13011] EXT4-fs error (device loop6): ext4_xattr_block_get:596: inode #2: comm syz.6.4208: corrupted xattr block 255: invalid header [ 135.007942][T13011] SELinux: (dev loop6, type ext4) getxattr errno 117 [ 135.016884][T13011] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 135.124333][T13036] loop5: detected capacity change from 0 to 1024 [ 135.148892][T13036] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 135.159892][T13036] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869) [ 135.182126][T13036] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 135.194493][T13036] EXT4-fs (loop5): invalid journal inode [ 135.217498][T13036] EXT4-fs (loop5): can't get journal size [ 135.224799][T13036] EXT4-fs error (device loop5): ext4_protect_reserved_inode:182: inode #3: comm syz.5.4227: blocks 2-2 from inode overlap system zone [ 135.248368][T13036] EXT4-fs (loop5): failed to initialize system zone (-117) [ 135.256097][T13036] EXT4-fs (loop5): mount failed [ 135.449097][T13081] vlan1: entered allmulticast mode [ 135.454403][T13081] bond0: entered allmulticast mode [ 135.459863][T13081] bond_slave_0: entered allmulticast mode [ 135.466113][T13081] bond_slave_1: entered allmulticast mode [ 135.472133][T13081] bridge_slave_1: entered allmulticast mode [ 135.478213][T13081] batadv_slave_0: entered allmulticast mode [ 135.486324][T13081] bridge0: port 2(vlan1) entered blocking state [ 135.492816][T13081] bridge0: port 2(vlan1) entered disabled state [ 135.500029][T13081] vlan1: entered promiscuous mode [ 135.505244][T13081] bond0: entered promiscuous mode [ 135.510414][T13081] bond_slave_0: entered promiscuous mode [ 135.516294][T13081] bond_slave_1: entered promiscuous mode [ 135.522453][T13081] bridge_slave_1: entered promiscuous mode [ 135.528468][T13081] batadv_slave_0: entered promiscuous mode [ 135.535184][T13081] bridge0: port 2(vlan1) entered blocking state [ 135.541530][T13081] bridge0: port 2(vlan1) entered forwarding state [ 135.548918][T13085] 9pnet_fd: Insufficient options for proto=fd [ 135.663010][T13099] loop4: detected capacity change from 0 to 2048 [ 135.682185][T13099] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 135.705933][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 135.829068][T13113] unsupported nlmsg_type 40 [ 135.975216][T13133] sd 0:0:1:0: device reset [ 136.061456][T13139] IPv6: NLM_F_CREATE should be specified when creating new route [ 136.138515][T13146] sch_tbf: peakrate 8 is lower than or equals to rate 12 ! [ 136.192197][T13063] 9pnet_fd: p9_fd_create_tcp (13063): problem connecting socket to 127.0.0.1 [ 136.450413][T13161] sd 0:0:1:0: device reset [ 136.488576][T13168] vhci_hcd: invalid port number 15 [ 136.493851][T13168] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 136.701105][T13191] sd 0:0:1:0: device reset [ 136.833466][T13212] vhci_hcd: default hub control req: 0000 v0000 i0000 l0 [ 136.978905][T13236] batadv_slave_1: entered promiscuous mode [ 137.681411][ T3939] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 137.720216][ T3939] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0 [ 137.815588][T13323] loop4: detected capacity change from 0 to 2048 [ 137.855733][T13323] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 137.910987][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.987159][T13339] loop4: detected capacity change from 0 to 736 [ 138.044943][T13339] rock: directory entry would overflow storage [ 138.051346][T13339] rock: sig=0x5850, size=36, remaining=14 [ 138.139747][T13362] __nla_validate_parse: 10 callbacks suppressed [ 138.139813][T13362] netlink: 12 bytes leftover after parsing attributes in process `+}[@'. [ 138.438211][T13392] netlink: 14 bytes leftover after parsing attributes in process `syz.1.4388'. [ 138.460608][T13392] bond0 (unregistering): left promiscuous mode [ 138.475562][T13392] bond0 (unregistering): Released all slaves [ 138.513003][T13394] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4389'. [ 138.522297][T13394] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0 [ 138.583895][T13400] loop5: detected capacity change from 0 to 512 [ 138.603549][T13400] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 138.625770][T13400] ext4 filesystem being mounted at /859/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 138.666285][ T3813] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.699244][T13416] loop5: detected capacity change from 0 to 512 [ 138.716046][T13416] EXT4-fs: Ignoring removed oldalloc option [ 138.722042][T13416] EXT4-fs: Ignoring removed i_version option [ 138.731527][T13416] EXT4-fs error (device loop5): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.5.4398: corrupted xattr block 95: invalid header [ 138.751430][T13416] EXT4-fs (loop5): Remounting filesystem read-only [ 138.758026][T13416] EXT4-fs warning (device loop5): ext4_evict_inode:259: couldn't mark inode dirty (err -5) [ 138.768462][T13416] EXT4-fs (loop5): 1 orphan inode deleted [ 138.775716][T13416] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 138.794302][T13416] SELinux: (dev loop5, type ext4) getxattr errno 5 [ 138.802899][T13416] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.005073][T13450] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4415'. [ 139.065443][T13463] xt_hashlimit: max too large, truncated to 1048576 [ 139.074619][T13463] Cannot find set identified by id 0 to match [ 139.121181][ T30] kauditd_printk_skb: 1461 callbacks suppressed [ 139.121200][ T30] audit: type=1400 audit(2000000023.070:5923): avc: denied { create } for pid=13467 comm="syz.5.4422" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1 [ 139.181758][ T30] audit: type=1400 audit(2000000023.110:5924): avc: denied { bind } for pid=13467 comm="syz.5.4422" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1 [ 139.330610][ T30] audit: type=1400 audit(2000000023.280:5925): avc: denied { getopt } for pid=13501 comm="syz.5.4438" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 139.368745][T13508] IPv6: NLM_F_CREATE should be specified when creating new route [ 139.389523][T13512] program syz.4.4443 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 139.481497][ T30] audit: type=1400 audit(2000000023.430:5926): avc: denied { mounton } for pid=13526 comm="syz.4.4452" path="/911/file0" dev="tmpfs" ino=4708 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 139.532812][T13533] syzkaller1: entered promiscuous mode [ 139.538493][T13533] syzkaller1: entered allmulticast mode [ 139.651720][T13550] veth1_to_team: entered promiscuous mode [ 139.718289][T13550] team0: Port device team_slave_1 removed [ 139.819028][ T30] audit: type=1326 audit(2000000023.760:5927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13568 comm="syz.5.4470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 139.844337][ T30] audit: type=1326 audit(2000000023.760:5928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13568 comm="syz.5.4470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 139.901092][ T30] audit: type=1326 audit(2000000023.760:5929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13568 comm="syz.5.4470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=37 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 139.925439][ T30] audit: type=1326 audit(2000000023.760:5930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13568 comm="syz.5.4470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 139.949885][ T30] audit: type=1400 audit(2000000023.830:5931): avc: denied { mounton } for pid=13571 comm="syz.0.4473" path="/932/file0" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1 [ 139.975529][ T30] audit: type=1326 audit(2000000023.840:5932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13568 comm="syz.5.4470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 140.004556][T13579] loop4: detected capacity change from 0 to 164 [ 140.033826][T13579] Unable to read rock-ridge attributes [ 140.073401][T13579] Unable to read rock-ridge attributes [ 140.202890][T13605] sd 0:0:1:0: device reset [ 140.346728][T13633] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4501'. [ 140.373580][T13633] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4501'. [ 140.412746][T13633] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4501'. [ 140.418810][T13640] loop5: detected capacity change from 0 to 2048 [ 140.465384][T13652] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4509'. [ 140.475217][T13640] loop5: p3 p4 < > [ 140.549212][T13663] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4515'. [ 140.623841][T13673] binfmt_misc: register: failed to install interpreter file ./file0 [ 140.871148][T13686] infiniband syz!: set active [ 140.876812][T13686] infiniband syz!: added team_slave_0 [ 140.889890][T13686] RDS/IB: syz!: added [ 140.894669][T13686] smc: adding ib device syz! with port count 1 [ 140.901190][T13686] smc: ib device syz! port 1 has pnetid [ 141.283107][T13698] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4529'. [ 141.408459][T13714] block device autoloading is deprecated and will be removed. [ 141.467592][T13722] SELinux: Context system_u:object_r:man_t:s0 is not valid (left unmapped). [ 141.625553][T13749] bridge_slave_1: entered promiscuous mode [ 141.632164][T13748] bridge_slave_1: left promiscuous mode [ 141.730425][T13766] program syz.1.4563 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 141.778511][T13772] rdma_op ffff888141522580 conn xmit_rdma 0000000000000000 [ 141.948829][T13796] loop5: detected capacity change from 0 to 512 [ 141.972495][T13796] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended [ 141.981651][T13796] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem [ 141.996486][T13796] EXT4-fs (loop5): orphan cleanup on readonly fs [ 142.003439][T13796] EXT4-fs error (device loop5): ext4_orphan_get:1415: comm syz.5.4578: bad orphan inode 15 [ 142.016904][T13796] ext4_test_bit(bit=14, block=18) = 1 [ 142.022535][T13796] is_bad_inode(inode)=0 [ 142.026715][T13796] NEXT_ORPHAN(inode)=1023 [ 142.031094][T13796] max_ino=32 [ 142.034429][T13796] i_nlink=0 [ 142.038005][T13796] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2977: inode #15: comm syz.5.4578: corrupted xattr block 19: e_value size too large [ 142.052720][T13796] EXT4-fs warning (device loop5): ext4_evict_inode:276: xattr delete (err -117) [ 142.063393][T13796] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 142.087784][ T3813] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 142.443977][T13818] Set syz1 is full, maxelem 65536 reached [ 142.514956][T13843] loop6: detected capacity change from 0 to 1024 [ 142.536357][T13843] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 142.589791][ T9649] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 142.672788][T13861] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 142.733907][T13873] netlink: 'syz.0.4612': attribute type 7 has an invalid length. [ 142.813703][ T25] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 142.823989][ T25] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0 [ 142.924660][T13903] netlink: 'syz.0.4626': attribute type 1 has an invalid length. [ 143.184357][T13984] IPv6: NLM_F_CREATE should be specified when creating new route [ 143.682606][T14031] xt_addrtype: ipv6 BLACKHOLE matching not supported [ 143.931269][T14066] (unnamed net_device) (uninitialized): option fail_over_mac: invalid value (15) [ 144.057221][T14085] loop5: detected capacity change from 0 to 1024 [ 144.071641][T14085] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 144.124720][ T3813] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 144.133962][ T30] kauditd_printk_skb: 177 callbacks suppressed [ 144.133977][ T30] audit: type=1326 audit(2000000028.080:6110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14073 comm="syz.1.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb8298c4127 code=0x7ffc0000 [ 144.181685][ T30] audit: type=1326 audit(2000000028.080:6111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14073 comm="syz.1.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb829869359 code=0x7ffc0000 [ 144.205846][ T30] audit: type=1326 audit(2000000028.080:6112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14073 comm="syz.1.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fb8298cd169 code=0x7ffc0000 [ 144.230110][ T30] audit: type=1326 audit(2000000028.080:6113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14073 comm="syz.1.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb8298c4127 code=0x7ffc0000 [ 144.255076][ T30] audit: type=1326 audit(2000000028.080:6114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14073 comm="syz.1.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb829869359 code=0x7ffc0000 [ 144.280746][ T30] audit: type=1326 audit(2000000028.080:6115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14073 comm="syz.1.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fb8298cd169 code=0x7ffc0000 [ 144.304787][ T30] audit: type=1326 audit(2000000028.090:6116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14073 comm="syz.1.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb8298c4127 code=0x7ffc0000 [ 144.329015][ T30] audit: type=1326 audit(2000000028.090:6117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14073 comm="syz.1.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb829869359 code=0x7ffc0000 [ 144.353270][ T30] audit: type=1326 audit(2000000028.090:6118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14073 comm="syz.1.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fb8298cd169 code=0x7ffc0000 [ 144.378284][ T30] audit: type=1326 audit(2000000028.110:6119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14073 comm="syz.1.4675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb8298c4127 code=0x7ffc0000 [ 144.994503][T14128] vhci_hcd: default hub control req: 800c v0000 i0000 l0 [ 145.090245][T14143] netlink: 'syz.0.4707': attribute type 4 has an invalid length. [ 145.110453][T14145] __nla_validate_parse: 8 callbacks suppressed [ 145.110475][T14145] netlink: 60 bytes leftover after parsing attributes in process `syz.6.4708'. [ 145.133664][T14145] netlink: 60 bytes leftover after parsing attributes in process `syz.6.4708'. [ 145.136675][T14147] loop5: detected capacity change from 0 to 1024 [ 145.160009][T14145] netlink: 60 bytes leftover after parsing attributes in process `syz.6.4708'. [ 145.169358][T14145] netlink: 60 bytes leftover after parsing attributes in process `syz.6.4708'. [ 145.184077][T14147] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 145.198467][T14145] netlink: 60 bytes leftover after parsing attributes in process `syz.6.4708'. [ 145.208306][T14145] netlink: 60 bytes leftover after parsing attributes in process `syz.6.4708'. [ 145.242353][ T3813] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 145.306586][T14165] netlink: 'syz.6.4717': attribute type 39 has an invalid length. [ 145.371043][T14174] loop4: detected capacity change from 0 to 512 [ 145.386011][T14174] EXT4-fs: Ignoring removed oldalloc option [ 145.392491][T14174] EXT4-fs: Ignoring removed i_version option [ 145.406479][T14174] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.4.4720: corrupted xattr block 95: invalid header [ 145.422381][T14174] EXT4-fs (loop4): Remounting filesystem read-only [ 145.429146][T14174] EXT4-fs warning (device loop4): ext4_evict_inode:259: couldn't mark inode dirty (err -5) [ 145.448137][T14174] EXT4-fs (loop4): 1 orphan inode deleted [ 145.467223][T14174] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 145.520160][T14174] SELinux: (dev loop4, type ext4) getxattr errno 5 [ 145.528857][T14174] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 145.991981][T14240] loop5: detected capacity change from 0 to 128 [ 146.113785][T14254] loop5: detected capacity change from 0 to 1024 [ 146.156095][T14254] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 146.251871][ T3813] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 146.332075][T14299] syzkaller1: entered promiscuous mode [ 146.337657][T14299] syzkaller1: entered allmulticast mode [ 146.381479][T14308] program syz.0.4777 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 146.425533][T14312] netlink: 6 bytes leftover after parsing attributes in process `syz.6.4780'. [ 146.633466][ T7039] IPVS: starting estimator thread 0... [ 146.720267][T14347] IPVS: using max 1872 ests per chain, 93600 per kthread [ 146.861640][T14378] netlink: 36 bytes leftover after parsing attributes in process `syz.0.4810'. [ 146.929454][T14386] SELinux: failure in selinux_parse_skb(), unable to parse packet [ 146.938938][T14388] hub 9-0:1.0: USB hub found [ 146.945136][T14388] hub 9-0:1.0: 8 ports detected [ 146.957615][T14390] netlink: 'syz.4.4816': attribute type 1 has an invalid length. [ 146.965551][T14390] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4816'. [ 146.975586][ T25] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 146.986621][ T25] hid-generic 0000:0000:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0 [ 147.215978][T14399] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4820'. [ 147.277591][T14396] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 147.287875][T14396] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 147.322902][T14417] Cannot find del_set index 4 as target [ 147.498655][T14442] loop6: detected capacity change from 0 to 1024 [ 147.506069][T14442] EXT4-fs (loop6): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 147.517139][T14442] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869) [ 147.527046][T14442] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 147.539633][T14442] EXT4-fs (loop6): invalid journal inode [ 147.546406][T14442] EXT4-fs (loop6): can't get journal size [ 147.555473][T14442] EXT4-fs error (device loop6): ext4_protect_reserved_inode:182: inode #3: comm syz.6.4840: blocks 2-2 from inode overlap system zone [ 147.569781][T14442] EXT4-fs (loop6): failed to initialize system zone (-117) [ 147.577219][T14442] EXT4-fs (loop6): mount failed [ 147.680759][T14440] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 147.691917][T14440] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 147.724669][T14465] sd 0:0:1:0: device reset [ 147.873756][T14483] loop6: detected capacity change from 0 to 2048 [ 147.880542][T14482] block device autoloading is deprecated and will be removed. [ 147.888225][T14482] syz.4.4859: attempt to access beyond end of device [ 147.888225][T14482] md34: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 147.901902][T14483] EXT4-fs: Ignoring removed nobh option [ 147.907620][T14483] EXT4-fs: Ignoring removed bh option [ 147.923850][T14483] EXT4-fs (loop6): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 147.945104][T14491] SELinux: syz.4.4863 (14491) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 147.965180][T14483] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 148.005198][T14498] IPv6: NLM_F_CREATE should be specified when creating new route [ 148.264640][T13973] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm kworker/u8:51: bg 0: block 234: padding at end of block bitmap is not set [ 148.281212][T13973] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1026 with error 117 [ 148.293913][T13973] EXT4-fs (loop6): This should not happen!! Data will be lost [ 148.293913][T13973] [ 148.308454][T14528] netlink: 'syz.0.4880': attribute type 13 has an invalid length. [ 148.317266][T14528] gretap0: refused to change device tx_queue_len [ 148.324060][T14528] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 148.333886][ T9649] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 148.437755][T14545] netlink: 'syz.6.4887': attribute type 13 has an invalid length. [ 148.608142][T14558] loop5: detected capacity change from 0 to 8192 [ 148.908276][T14604] 0�X���: renamed from caif0 [ 148.915075][T14604] 0�X���: entered allmulticast mode [ 148.920529][T14604] A link change request failed with some changes committed already. Interface 60�X��� may have been left with an inconsistent configuration, please check. [ 149.041871][T14625] loop6: detected capacity change from 0 to 764 [ 149.049433][T14625] rock: directory entry would overflow storage [ 149.055712][T14625] rock: sig=0x4654, size=5, remaining=4 [ 149.196345][T14640] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(6) [ 149.202894][T14640] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 149.210880][T14640] vhci_hcd vhci_hcd.0: Device attached [ 149.217717][T14641] vhci_hcd: cannot find the pending unlink 2 [ 149.223804][T14641] vhci_hcd: connection closed [ 149.224221][T13921] vhci_hcd: stop threads [ 149.233474][T13921] vhci_hcd: release socket [ 149.238081][T13921] vhci_hcd: disconnect device [ 149.765713][ T30] kauditd_printk_skb: 413 callbacks suppressed [ 149.765744][ T30] audit: type=1400 audit(2134217761.708:6533): avc: denied { write } for pid=14651 comm="syz.0.4936" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1 [ 149.811241][T14650] loop6: detected capacity change from 0 to 8192 [ 149.877427][ T30] audit: type=1326 audit(2134217761.818:6534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14660 comm="syz.5.4940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 149.901617][ T30] audit: type=1326 audit(2134217761.818:6535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14660 comm="syz.5.4940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 149.926242][ T30] audit: type=1326 audit(2134217761.848:6536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14660 comm="syz.5.4940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 149.950284][ T30] audit: type=1326 audit(2134217761.848:6537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14660 comm="syz.5.4940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 149.974132][ T30] audit: type=1326 audit(2134217761.848:6538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14660 comm="syz.5.4940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 149.998172][ T30] audit: type=1326 audit(2134217761.848:6539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14660 comm="syz.5.4940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 150.022066][ T30] audit: type=1326 audit(2134217761.848:6540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14660 comm="syz.5.4940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 150.045675][ T30] audit: type=1326 audit(2134217761.848:6541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14660 comm="syz.5.4940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 150.070590][ T30] audit: type=1326 audit(2134217761.848:6542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14660 comm="syz.5.4940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 150.133806][T14676] netlink: 'syz.4.4946': attribute type 3 has an invalid length. [ 150.279920][T14702] __nla_validate_parse: 8 callbacks suppressed [ 150.279957][T14702] netlink: 132 bytes leftover after parsing attributes in process `syz.4.4959'. [ 150.371461][T14714] netlink: 36 bytes leftover after parsing attributes in process `syz.5.4965'. [ 150.429785][T14723] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4969'. [ 150.621498][T14746] loop4: detected capacity change from 0 to 1024 [ 150.631367][T14749] loop5: detected capacity change from 0 to 512 [ 150.631502][T14746] EXT4-fs: Ignoring removed nomblk_io_submit option [ 150.644522][T14749] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 150.644780][T14746] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 150.665915][T14749] EXT4-fs (loop5): orphan cleanup on readonly fs [ 150.676708][T14749] EXT4-fs error (device loop5): ext4_acquire_dquot:6927: comm syz.5.4981: Failed to acquire dquot type 1 [ 150.683074][T14746] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 150.688894][T14749] EXT4-fs (loop5): 1 truncate cleaned up [ 150.701758][T14746] System zones: 0-1, 3-36 [ 150.703465][T14746] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 150.706646][T14749] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 150.757010][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 150.771478][T14755] loop6: detected capacity change from 0 to 1024 [ 150.779560][T14755] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 150.801374][T14755] EXT4-fs (loop6): revision level too high, forcing read-only mode [ 150.801567][T14758] xt_addrtype: ipv6 BLACKHOLE matching not supported [ 150.810467][T14755] EXT4-fs (loop6): orphan cleanup on readonly fs [ 150.823227][ T3813] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 150.833092][T14755] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5838: Corrupt filesystem [ 150.849984][T14755] EXT4-fs (loop6): Remounting filesystem read-only [ 150.856745][T14755] EXT4-fs (loop6): 1 orphan inode deleted [ 150.863378][T14755] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 150.875474][T14755] SELinux: (dev loop6, type ext4) getxattr errno 5 [ 150.884189][T14755] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 150.949805][T14768] loop4: detected capacity change from 0 to 1024 [ 150.973018][T14768] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 150.989907][T14768] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4115: comm syz.4.4987: Allocating blocks 385-513 which overlap fs metadata [ 151.007490][T14768] EXT4-fs (loop4): pa ffff8881065339a0: logic 16, phys. 129, len 24 [ 151.015662][T14768] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 8 [ 151.027515][T14768] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 52 with error 28 [ 151.039955][T14768] EXT4-fs (loop4): This should not happen!! Data will be lost [ 151.039955][T14768] [ 151.049683][T14768] EXT4-fs (loop4): Total free blocks count 0 [ 151.055720][T14768] EXT4-fs (loop4): Free/Dirty block details [ 151.061727][T14768] EXT4-fs (loop4): free_blocks=128 [ 151.067027][T14768] EXT4-fs (loop4): dirty_blocks=0 [ 151.072142][T14768] EXT4-fs (loop4): Block reservation details [ 151.078263][T14768] EXT4-fs (loop4): i_reserved_data_blocks=0 [ 151.144470][T14781] loop6: detected capacity change from 0 to 512 [ 151.151674][T14781] EXT4-fs: Ignoring removed i_version option [ 151.163004][T14781] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 151.175812][T14781] ext4 filesystem being mounted at /360/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 151.228403][ T9649] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 151.251889][T14793] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0' [ 151.547048][T14828] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5010'. [ 151.640345][T14840] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5017'. [ 151.657052][T14840] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5017'. [ 151.686234][T14840] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5017'. [ 151.696674][T14840] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5017'. [ 151.762373][T14853] loop4: detected capacity change from 0 to 512 [ 151.772454][T14840] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5017'. [ 151.783430][T14840] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5017'. [ 151.793307][T14853] EXT4-fs (loop4): Invalid default hash set in the superblock [ 151.801038][T14857] sd 0:0:1:0: device reset [ 152.008605][ T25] kernel write not supported for file bpf-prog (pid: 25 comm: kworker/1:0) [ 152.083434][T14901] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0 [ 152.238864][T14923] loop4: detected capacity change from 0 to 512 [ 152.313226][T14923] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 152.335999][T14923] ext4 filesystem being mounted at /1021/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 152.401029][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 152.433717][T14948] loop5: detected capacity change from 0 to 512 [ 152.466528][T14948] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 152.498835][T14948] ext4 filesystem being mounted at /997/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 152.512243][T14948] EXT4-fs error (device loop5): ext4_do_update_inode:5154: inode #2: comm syz.5.5064: corrupted inode contents [ 152.524454][T14948] EXT4-fs error (device loop5): ext4_dirty_inode:6042: inode #2: comm syz.5.5064: mark_inode_dirty error [ 152.538197][T14948] EXT4-fs error (device loop5): ext4_do_update_inode:5154: inode #2: comm syz.5.5064: corrupted inode contents [ 152.551753][T14948] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #2: comm syz.5.5064: mark_inode_dirty error [ 152.605132][ T3813] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 152.617413][T14965] netlink: 'syz.6.5071': attribute type 13 has an invalid length. [ 152.709798][T14965] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 152.780673][T14985] loop5: detected capacity change from 0 to 1024 [ 152.793623][T14985] EXT4-fs: Ignoring removed nomblk_io_submit option [ 152.803298][T14985] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 152.851635][T14985] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 152.880151][T14985] System zones: 0-1, 3-36 [ 152.894566][T14985] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 152.959315][ T3813] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 153.358455][T15032] loop5: detected capacity change from 0 to 1024 [ 153.425053][T15032] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 153.448841][T15032] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 153.489151][T15032] EXT4-fs (loop5): orphan cleanup on readonly fs [ 153.520778][T15032] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5838: Corrupt filesystem [ 153.569302][T15032] EXT4-fs (loop5): Remounting filesystem read-only [ 153.593245][T15032] EXT4-fs (loop5): 1 orphan inode deleted [ 153.627205][T15032] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 153.641776][T15032] SELinux: (dev loop5, type ext4) getxattr errno 5 [ 153.648799][T15032] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 153.818523][T15071] netlink: 'syz.0.5126': attribute type 1 has an invalid length. [ 153.838576][T15073] loop5: detected capacity change from 0 to 512 [ 153.872355][T15073] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 153.899620][T15073] ext4 filesystem being mounted at /1004/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 153.922362][ T3813] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 154.319820][T15091] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 154.328475][T15091] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 155.016924][T15122] Set syz1 is full, maxelem 65536 reached [ 155.044527][T15149] syz.6.5150: attempt to access beyond end of device [ 155.044527][T15149] md34: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 155.061101][ T30] kauditd_printk_skb: 212 callbacks suppressed [ 155.061121][ T30] audit: type=1326 audit(2134217766.998:6745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15150 comm="syz.1.5151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8298cd169 code=0x7ffc0000 [ 155.090980][ T30] audit: type=1326 audit(2134217767.008:6746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15150 comm="syz.1.5151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8298cd169 code=0x7ffc0000 [ 155.114588][ T30] audit: type=1326 audit(2134217767.008:6747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15150 comm="syz.1.5151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb8298cd169 code=0x7ffc0000 [ 155.138272][ T30] audit: type=1326 audit(2134217767.008:6748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15150 comm="syz.1.5151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8298cd169 code=0x7ffc0000 [ 155.162007][ T30] audit: type=1326 audit(2134217767.008:6749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15150 comm="syz.1.5151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8298cd169 code=0x7ffc0000 [ 155.185715][ T30] audit: type=1326 audit(2134217767.008:6750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15150 comm="syz.1.5151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7fb8298cd169 code=0x7ffc0000 [ 155.218299][ T30] audit: type=1326 audit(2134217767.008:6751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15150 comm="syz.1.5151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8298cd169 code=0x7ffc0000 [ 155.241901][ T30] audit: type=1326 audit(2134217767.008:6752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15150 comm="syz.1.5151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8298cd169 code=0x7ffc0000 [ 155.265489][ T30] audit: type=1326 audit(2134217767.008:6753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15150 comm="syz.1.5151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fb8298cd169 code=0x7ffc0000 [ 155.289193][ T30] audit: type=1326 audit(2134217767.008:6754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15150 comm="syz.1.5151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8298cd169 code=0x7ffc0000 [ 155.378298][T15174] __nla_validate_parse: 9 callbacks suppressed [ 155.378389][T15174] netlink: 24 bytes leftover after parsing attributes in process `syz.6.5162'. [ 155.598985][T15200] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6) [ 155.605684][T15200] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 155.613413][T15200] vhci_hcd vhci_hcd.0: Device attached [ 155.623202][T15201] vhci_hcd: cannot find the pending unlink 2 [ 155.629684][T15201] vhci_hcd: connection closed [ 155.629961][T13973] vhci_hcd: stop threads [ 155.639062][T13973] vhci_hcd: release socket [ 155.643643][T13973] vhci_hcd: disconnect device [ 155.702478][T15215] netlink: 172 bytes leftover after parsing attributes in process `syz.6.5175'. [ 155.956587][T15245] loop5: detected capacity change from 0 to 256 [ 155.963363][T15245] msdos: Bad value for 'gid' [ 155.967980][T15245] msdos: Bad value for 'gid' [ 156.028412][T15251] loop4: detected capacity change from 0 to 512 [ 156.037331][T15251] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5196: bg 0: block 35: padding at end of block bitmap is not set [ 156.051934][T15251] EXT4-fs (loop4): Remounting filesystem read-only [ 156.058493][T15251] EXT4-fs (loop4): 1 truncate cleaned up [ 156.064750][T15251] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 156.076816][T15251] SELinux: (dev loop4, type ext4) getxattr errno 5 [ 156.084909][T15251] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 156.202940][T15273] netlink: 80 bytes leftover after parsing attributes in process `syz.5.5205'. [ 156.329218][T15283] SELinux: failed to load policy [ 156.589743][T15308] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5222'. [ 156.745721][T15333] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5235'. [ 156.832435][T15344] netlink: 'syz.6.5239': attribute type 1 has an invalid length. [ 156.999921][T15352] netlink: 132 bytes leftover after parsing attributes in process `syz.0.5243'. [ 157.394328][T15404] program syz.6.5268 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 157.547716][T15409] netlink: 'syz.6.5270': attribute type 39 has an invalid length. [ 157.612400][T15413] loop6: detected capacity change from 0 to 512 [ 157.651341][T15413] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 157.672007][T15413] ext4 filesystem being mounted at /411/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 157.720303][T15413] EXT4-fs error (device loop6): ext4_do_update_inode:5154: inode #2: comm syz.6.5273: corrupted inode contents [ 157.737026][T15421] netlink: 16 bytes leftover after parsing attributes in process `syz.5.5275'. [ 157.755196][T15413] EXT4-fs error (device loop6): ext4_dirty_inode:6042: inode #2: comm syz.6.5273: mark_inode_dirty error [ 157.790425][T15413] EXT4-fs error (device loop6): ext4_do_update_inode:5154: inode #2: comm syz.6.5273: corrupted inode contents [ 157.806696][T15413] EXT4-fs error (device loop6): __ext4_ext_dirty:207: inode #2: comm syz.6.5273: mark_inode_dirty error [ 157.847140][T15428] loop4: detected capacity change from 0 to 128 [ 157.854935][ T9649] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 157.882401][T15435] loop6: detected capacity change from 0 to 128 [ 157.894606][T15428] ext4 filesystem being mounted at /1066/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 157.988307][T15453] loop5: detected capacity change from 0 to 512 [ 157.999628][T15453] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.5289: bg 0: block 35: padding at end of block bitmap is not set [ 158.015280][T15453] EXT4-fs (loop5): Remounting filesystem read-only [ 158.022219][T15453] EXT4-fs (loop5): 1 truncate cleaned up [ 158.028251][T15453] SELinux: (dev loop5, type ext4) getxattr errno 5 [ 158.047127][T15460] netlink: 16 bytes leftover after parsing attributes in process `syz.6.5293'. [ 158.056197][T15460] netlink: 16 bytes leftover after parsing attributes in process `syz.6.5293'. [ 158.070021][T15462] sctp: [Deprecated]: syz.0.5294 (pid 15462) Use of struct sctp_assoc_value in delayed_ack socket option. [ 158.070021][T15462] Use struct sctp_sack_info instead [ 158.144410][T15468] hub 2-0:1.0: USB hub found [ 158.149121][T15468] hub 2-0:1.0: 8 ports detected [ 158.155789][T15474] loop6: detected capacity change from 0 to 128 [ 158.277758][T15494] netlink: 64859 bytes leftover after parsing attributes in process `syz.6.5310'. [ 158.662836][T15488] Set syz1 is full, maxelem 65536 reached [ 159.349749][T15572] loop5: detected capacity change from 0 to 1024 [ 159.411559][T15582] program syz.5.5349 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 159.443976][T15586] IPVS: Error joining to the multicast group [ 159.482752][T15592] 9pnet_fd: Insufficient options for proto=fd [ 159.564808][T15598] tipc: Enabling of bearer <udp:s> rejected, failed to enable media [ 160.240175][T15695] loop5: detected capacity change from 0 to 128 [ 160.337087][T15713] sctp: [Deprecated]: syz.4.5399 (pid 15713) Use of struct sctp_assoc_value in delayed_ack socket option. [ 160.337087][T15713] Use struct sctp_sack_info instead [ 160.427152][ T30] kauditd_printk_skb: 318 callbacks suppressed [ 160.427249][ T30] audit: type=1326 audit(2000000000.440:7073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15722 comm="syz.5.5406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 160.458906][ T30] audit: type=1326 audit(2000000000.450:7074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15722 comm="syz.5.5406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 160.482682][ T30] audit: type=1326 audit(2000000000.450:7075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15722 comm="syz.5.5406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 160.506221][ T30] audit: type=1326 audit(2000000000.450:7076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15722 comm="syz.5.5406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 160.529822][ T30] audit: type=1326 audit(2000000000.450:7077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15722 comm="syz.5.5406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 160.553387][ T30] audit: type=1326 audit(2000000000.460:7078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15722 comm="syz.5.5406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 160.578553][ T30] audit: type=1400 audit(2000000000.480:7079): avc: denied { read } for pid=15704 comm="syz.6.5395" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 160.598220][ T30] audit: type=1326 audit(2000000000.570:7080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15722 comm="syz.5.5406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 160.621976][ T30] audit: type=1326 audit(2000000000.580:7081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15722 comm="syz.5.5406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 160.646407][ T30] audit: type=1326 audit(2000000000.620:7082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15722 comm="syz.5.5406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7fe62b9ed169 code=0x7ffc0000 [ 160.703326][T15735] __nla_validate_parse: 4 callbacks suppressed [ 160.703343][T15735] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5411'. [ 160.765527][T15746] netlink: 'syz.5.5416': attribute type 21 has an invalid length. [ 160.773647][T15746] netlink: 132 bytes leftover after parsing attributes in process `syz.5.5416'. [ 160.782762][T15746] netlink: 'syz.5.5416': attribute type 1 has an invalid length. [ 160.814940][T15751] xt_hashlimit: max too large, truncated to 1048576 [ 160.883619][T15763] loop5: detected capacity change from 0 to 764 [ 160.895551][T15763] rock: directory entry would overflow storage [ 160.901904][T15763] rock: sig=0x4f50, size=4, remaining=3 [ 160.907531][T15763] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 160.965502][T15773] loop4: detected capacity change from 0 to 2048 [ 160.975553][T15773] SELinux: security_context_str_to_sid (user_u) failed with errno=-22 [ 161.010600][T15780] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5432'. [ 161.161081][T15802] loop5: detected capacity change from 0 to 256 [ 161.263543][T15816] SELinux: syz.4.5450 (15816) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 161.460660][T15826] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5454'. [ 161.666338][T15852] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5467'. [ 162.036072][T15809] 9pnet_fd: p9_fd_create_tcp (15809): problem connecting socket to 127.0.0.1 [ 162.092432][T15867] chnl_net:caif_netlink_parms(): no params data found [ 162.135002][T15867] bridge0: port 1(bridge_slave_0) entered blocking state [ 162.142245][T15867] bridge0: port 1(bridge_slave_0) entered disabled state [ 162.149558][T15867] bridge_slave_0: entered allmulticast mode [ 162.156363][T15867] bridge_slave_0: entered promiscuous mode [ 162.163280][T15867] bridge0: port 2(bridge_slave_1) entered blocking state [ 162.170403][T15867] bridge0: port 2(bridge_slave_1) entered disabled state [ 162.177719][T15867] bridge_slave_1: entered allmulticast mode [ 162.184490][T15867] bridge_slave_1: entered promiscuous mode [ 162.203403][T15867] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 162.213912][T15867] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 162.235136][T15867] team0: Port device team_slave_0 added [ 162.241816][T15867] team0: Port device team_slave_1 added [ 162.261212][T15867] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 162.268725][T15867] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 162.295083][T15867] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 162.307153][T15867] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 162.314240][T15867] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 162.340248][T15867] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 162.367715][T15867] hsr_slave_0: entered promiscuous mode [ 162.373853][T15867] hsr_slave_1: entered promiscuous mode [ 162.379789][T15867] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 162.387652][T15867] Cannot create hsr debugfs directory [ 162.409463][T15903] netlink: 'syz.6.5486': attribute type 13 has an invalid length. [ 162.426706][T15903] gretap0: refused to change device tx_queue_len [ 162.433293][T15903] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 162.508020][T15867] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 162.521767][T15909] loop5: detected capacity change from 0 to 256 [ 162.523294][T15867] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 162.540928][T15867] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 162.556837][T15867] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 162.575242][T15867] bridge0: port 2(bridge_slave_1) entered blocking state [ 162.582441][T15867] bridge0: port 2(bridge_slave_1) entered forwarding state [ 162.589961][T15867] bridge0: port 1(bridge_slave_0) entered blocking state [ 162.597291][T15867] bridge0: port 1(bridge_slave_0) entered forwarding state [ 162.635208][T15867] 8021q: adding VLAN 0 to HW filter on device bond0 [ 162.648318][ T2828] bridge0: port 1(bridge_slave_0) entered disabled state [ 162.656927][ T2828] bridge0: port 2(bridge_slave_1) entered disabled state [ 162.674252][T15867] 8021q: adding VLAN 0 to HW filter on device team0 [ 162.685574][T13921] bridge0: port 1(bridge_slave_0) entered blocking state [ 162.692697][T13921] bridge0: port 1(bridge_slave_0) entered forwarding state [ 162.722934][T15923] loop6: detected capacity change from 0 to 1024 [ 162.732972][T13921] bridge0: port 2(bridge_slave_1) entered blocking state [ 162.740214][T13921] bridge0: port 2(bridge_slave_1) entered forwarding state [ 162.753747][T15923] EXT4-fs mount: 6 callbacks suppressed [ 162.753769][T15923] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 162.774765][T15923] ext4 filesystem being mounted at /444/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 162.832857][T15923] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 162.852832][T15923] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 27 with max blocks 1 with error 28 [ 162.865279][T15923] EXT4-fs (loop6): This should not happen!! Data will be lost [ 162.865279][T15923] [ 162.875010][T15923] EXT4-fs (loop6): Total free blocks count 0 [ 162.878484][T15867] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 162.881061][T15923] EXT4-fs (loop6): Free/Dirty block details [ 162.892445][T15938] loop5: detected capacity change from 0 to 512 [ 162.893809][T15923] EXT4-fs (loop6): free_blocks=4293918720 [ 162.905881][T15923] EXT4-fs (loop6): dirty_blocks=16 [ 162.909806][T15938] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.5500: corrupted in-inode xattr: invalid ea_ino [ 162.911223][T15923] EXT4-fs (loop6): Block reservation details [ 162.929094][T15938] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.5500: couldn't read orphan inode 15 (err -117) [ 162.930510][T15923] EXT4-fs (loop6): i_reserved_data_blocks=1 [ 162.944243][T15938] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 162.983319][ T3813] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 163.087281][ T9649] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 163.143068][T15867] veth0_vlan: entered promiscuous mode [ 163.152013][T15867] veth1_vlan: entered promiscuous mode [ 163.191148][T15867] veth0_macvtap: entered promiscuous mode [ 163.215211][T15867] veth1_macvtap: entered promiscuous mode [ 163.230347][T15867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 163.240977][T15867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 163.250913][T15867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 163.261485][T15867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 163.274908][T15867] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 163.286302][T15867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 163.296928][T15867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 163.307348][T15867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 163.317930][T15867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 163.327865][T15867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 163.338380][T15867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 163.352065][T15867] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 163.391471][T15867] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 163.400419][T15867] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 163.409296][T15867] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 163.418166][T15867] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 163.707111][T16005] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5522'. [ 163.730872][T16005] (unnamed net_device) (uninitialized): (slave dummy0): Device is not bonding slave [ 163.740549][T16005] (unnamed net_device) (uninitialized): option active_slave: invalid value (dummy0) [ 163.844395][T16024] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5532'. [ 163.883835][T16027] loop7: detected capacity change from 0 to 512 [ 163.924693][T16027] EXT4-fs (loop7): orphan cleanup on readonly fs [ 163.935027][T16027] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.5534: bg 0: block 248: padding at end of block bitmap is not set [ 163.951348][T16027] EXT4-fs error (device loop7): ext4_acquire_dquot:6927: comm syz.7.5534: Failed to acquire dquot type 1 [ 163.969620][T16027] EXT4-fs (loop7): 1 truncate cleaned up [ 163.976681][T16027] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 164.002261][T15867] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.110391][T16065] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.5547'. [ 164.114285][T16066] netlink: 1196 bytes leftover after parsing attributes in process `syz.7.5550'. [ 164.120159][T16059] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.5547'. [ 164.155508][T16068] loop7: detected capacity change from 0 to 512 [ 164.180700][T16068] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 164.193844][T16068] ext4 filesystem being mounted at /11/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 164.206986][T16068] EXT4-fs error (device loop7): ext4_do_update_inode:5154: inode #2: comm syz.7.5551: corrupted inode contents [ 164.219438][T16068] EXT4-fs error (device loop7): ext4_dirty_inode:6042: inode #2: comm syz.7.5551: mark_inode_dirty error [ 164.231266][T16068] EXT4-fs error (device loop7): ext4_do_update_inode:5154: inode #2: comm syz.7.5551: corrupted inode contents [ 164.243324][T16068] EXT4-fs error (device loop7): __ext4_ext_dirty:207: inode #2: comm syz.7.5551: mark_inode_dirty error [ 164.267208][T15867] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.302951][T16079] netlink: 'syz.1.5553': attribute type 29 has an invalid length. [ 164.312281][T16079] netlink: 'syz.1.5553': attribute type 29 has an invalid length. [ 164.399254][T16091] netlink: 'syz.7.5559': attribute type 1 has an invalid length. [ 164.433372][T16097] loop7: detected capacity change from 0 to 128 [ 164.439973][T16097] vfat: Unknown parameter '���0xffffffffffffffff00000000000000000000000����������' [ 164.780551][T16125] SELinux: syz.0.5578 (16125) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 164.885004][T16132] SELinux: ebitmap: truncated map [ 164.898260][T16132] SELinux: failed to load policy [ 165.153982][T16180] vlan0: entered promiscuous mode [ 165.159128][T16180] vlan0: entered allmulticast mode [ 165.203183][T16180] veth0_vlan: entered allmulticast mode [ 165.227166][T16184] loop7: detected capacity change from 0 to 1024 [ 165.233760][T16180] team0: Port device vlan0 added [ 165.266920][T16184] EXT4-fs: Ignoring removed orlov option [ 165.272788][T16184] EXT4-fs: Ignoring removed nomblk_io_submit option [ 165.311447][T16184] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 165.387686][T15867] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.504117][T16226] xt_addrtype: ipv6 BLACKHOLE matching not supported [ 165.513601][ T30] kauditd_printk_skb: 314 callbacks suppressed [ 165.513638][ T30] audit: type=1400 audit(2000000005.530:7395): avc: denied { mount } for pid=16224 comm="syz.0.5623" name="/" dev="configfs" ino=2080 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1 [ 165.557851][ T30] audit: type=1400 audit(2000000005.560:7396): avc: denied { search } for pid=16224 comm="syz.0.5623" name="/" dev="configfs" ino=2080 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 165.580329][ T30] audit: type=1400 audit(2000000005.570:7397): avc: denied { mounton } for pid=16224 comm="syz.0.5623" path="/" dev="configfs" ino=2080 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 165.604945][ T30] audit: type=1400 audit(2000000005.620:7398): avc: denied { unmount } for pid=3301 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1 [ 165.669277][ T30] audit: type=1326 audit(2000000005.680:7399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16235 comm="syz.6.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8d7d6d169 code=0x7ffc0000 [ 165.714304][ T30] audit: type=1326 audit(2000000005.680:7400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16235 comm="syz.6.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8d7d6d169 code=0x7ffc0000 [ 165.737987][ T30] audit: type=1326 audit(2000000005.680:7401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16235 comm="syz.6.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb8d7d6d169 code=0x7ffc0000 [ 165.761938][ T30] audit: type=1326 audit(2000000005.680:7402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16235 comm="syz.6.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8d7d6d169 code=0x7ffc0000 [ 165.785592][ T30] audit: type=1326 audit(2000000005.680:7403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16235 comm="syz.6.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8d7d6d169 code=0x7ffc0000 [ 165.809520][ T30] audit: type=1326 audit(2000000005.710:7404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16235 comm="syz.6.5631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb8d7d6d169 code=0x7ffc0000 [ 166.069528][T16284] SELinux: security policydb version 18 (MLS) not backwards compatible [ 166.090533][T16284] SELinux: failed to load policy [ 166.235737][T16263] chnl_net:caif_netlink_parms(): no params data found [ 166.263468][T16308] loop6: detected capacity change from 0 to 164 [ 166.271688][T16308] ISOFS: unable to read i-node block [ 166.277036][T16308] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 166.286448][T16308] isofs_fill_super: get root inode failed [ 166.316068][T16263] bridge0: port 1(bridge_slave_0) entered blocking state [ 166.323410][T16263] bridge0: port 1(bridge_slave_0) entered disabled state [ 166.341758][T16263] bridge_slave_0: entered allmulticast mode [ 166.348263][T16263] bridge_slave_0: entered promiscuous mode [ 166.359330][T16263] bridge0: port 2(bridge_slave_1) entered blocking state [ 166.366564][T16263] bridge0: port 2(bridge_slave_1) entered disabled state [ 166.373953][T16323] loop6: detected capacity change from 0 to 128 [ 166.374144][T16263] bridge_slave_1: entered allmulticast mode [ 166.386586][T16323] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 166.388702][T16263] bridge_slave_1: entered promiscuous mode [ 166.404383][T16328] loop5: detected capacity change from 0 to 512 [ 166.407472][T16323] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 166.423518][T16328] EXT4-fs error (device loop5): ext4_orphan_get:1389: inode #15: comm syz.5.5670: casefold flag without casefold feature [ 166.436598][T16328] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.5670: couldn't read orphan inode 15 (err -117) [ 166.449457][T16328] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 166.463475][T13915] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 166.483603][T16263] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 166.497591][T16263] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 166.511821][ T3813] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 166.567263][T16263] team0: Port device team_slave_0 added [ 166.574302][T16263] team0: Port device team_slave_1 added [ 166.611557][T16263] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 166.618555][T16263] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 166.644597][T16263] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 166.657885][T16263] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 166.664941][T16263] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 166.690907][T16263] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 166.732621][T16352] netlink: 'syz.6.5679': attribute type 3 has an invalid length. [ 166.760885][T16263] hsr_slave_0: entered promiscuous mode [ 166.767484][T16263] hsr_slave_1: entered promiscuous mode [ 166.767676][T16356] set match dimension is over the limit! [ 166.778604][T16263] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 166.827282][T16263] Cannot create hsr debugfs directory [ 166.835963][T16354] __nla_validate_parse: 3 callbacks suppressed [ 166.836008][T16354] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5680'. [ 166.924113][T16363] loop7: detected capacity change from 0 to 512 [ 166.932415][T16363] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem [ 166.942035][T16363] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002] [ 166.950358][T16363] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2240: inode #15: comm syz.7.5684: corrupted in-inode xattr: e_value size too large [ 166.966473][T16363] EXT4-fs error (device loop7): ext4_orphan_get:1394: comm syz.7.5684: couldn't read orphan inode 15 (err -117) [ 166.970154][T16263] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 166.979103][T16363] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 167.007919][T16263] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 167.018961][T15867] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 167.030841][T16263] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 167.040458][T16263] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 167.112742][T16263] 8021q: adding VLAN 0 to HW filter on device bond0 [ 167.129856][T16263] 8021q: adding VLAN 0 to HW filter on device team0 [ 167.144789][T13915] bridge0: port 1(bridge_slave_0) entered blocking state [ 167.151919][T13915] bridge0: port 1(bridge_slave_0) entered forwarding state [ 167.164633][T13973] bridge0: port 2(bridge_slave_1) entered blocking state [ 167.171766][T13973] bridge0: port 2(bridge_slave_1) entered forwarding state [ 167.267418][T16263] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 167.447323][T16263] veth0_vlan: entered promiscuous mode [ 167.462429][T16420] ieee802154 phy0 wpan0: encryption failed: -22 [ 167.476558][T16263] veth1_vlan: entered promiscuous mode [ 167.513613][T16263] veth0_macvtap: entered promiscuous mode [ 167.522374][T16426] program syz.1.5708 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 167.532694][T16426] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 167.542856][T16263] veth1_macvtap: entered promiscuous mode [ 167.560341][T16263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 167.570934][T16263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.580962][T16263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 167.591487][T16263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.601485][T16263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 167.601712][T16428] loop7: detected capacity change from 0 to 1024 [ 167.611967][T16263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.613562][T16263] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 167.632427][T16428] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 167.637090][T16263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 167.658097][T16263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.668030][T16263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 167.678586][T16263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.688606][T16263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 167.699067][T16263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.708985][T16263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 167.719511][T16263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.730850][T16263] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 167.735209][T15867] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 167.743516][T16263] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 167.755893][T16263] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 167.764735][T16263] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 167.773578][T16263] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 167.853943][T16445] rdma_op ffff8881175a0180 conn xmit_rdma 0000000000000000 [ 168.188084][T16500] loop7: detected capacity change from 0 to 512 [ 168.217017][T16500] EXT4-fs: Ignoring removed bh option [ 168.222577][T16500] EXT4-fs: Ignoring removed mblk_io_submit option [ 168.263171][T16508] loop6: detected capacity change from 0 to 128 [ 168.291064][T16500] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 168.292664][T16508] FAT-fs (loop6): Directory bread(block 32) failed [ 168.310530][T16508] FAT-fs (loop6): Directory bread(block 33) failed [ 168.317153][T16508] FAT-fs (loop6): Directory bread(block 34) failed [ 168.325245][T16508] FAT-fs (loop6): Directory bread(block 35) failed [ 168.332248][T16508] FAT-fs (loop6): Directory bread(block 36) failed [ 168.338826][T16508] FAT-fs (loop6): Directory bread(block 37) failed [ 168.339232][T16500] ext4 filesystem being mounted at /57/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 168.347555][T16508] FAT-fs (loop6): Directory bread(block 38) failed [ 168.362391][T16508] FAT-fs (loop6): Directory bread(block 39) failed [ 168.369014][T16508] FAT-fs (loop6): Directory bread(block 40) failed [ 168.369371][T16518] loop8: detected capacity change from 0 to 1024 [ 168.377309][T16508] FAT-fs (loop6): Directory bread(block 41) failed [ 168.449670][T15867] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 168.450006][T16518] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 168.482698][T16508] syz.6.5744: attempt to access beyond end of device [ 168.482698][T16508] loop6: rw=2049, sector=4108, nr_sectors = 4 limit=128 [ 168.496333][T16508] Buffer I/O error on dev loop6, logical block 1027, lost async page write [ 168.506299][T16508] syz.6.5744: attempt to access beyond end of device [ 168.506299][T16508] loop6: rw=2049, sector=4124, nr_sectors = 4 limit=128 [ 168.519866][T16508] Buffer I/O error on dev loop6, logical block 1031, lost async page write [ 168.529167][T16508] syz.6.5744: attempt to access beyond end of device [ 168.529167][T16508] loop6: rw=2049, sector=4128, nr_sectors = 508 limit=128 [ 168.546132][T16518] EXT4-fs error (device loop8): ext4_mb_mark_diskspace_used:4115: comm syz.8.5748: Allocating blocks 497-513 which overlap fs metadata [ 168.570946][T16518] EXT4-fs (loop8): pa ffff888106533af0: logic 256, phys. 385, len 8 [ 168.578983][T16518] EXT4-fs error (device loop8): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 1 [ 168.622511][ T25] kernel write not supported for file /1037/attr/exec (pid: 25 comm: kworker/1:0) [ 168.715947][T16263] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 168.739511][T16551] syzkaller1: entered promiscuous mode [ 168.745269][T16551] syzkaller1: entered allmulticast mode [ 168.900441][T16575] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5773'. [ 168.907674][T16569] SELinux: ebitmap: truncated map [ 168.917100][T16569] SELinux: failed to load policy [ 168.995526][T16588] loop8: detected capacity change from 0 to 256 [ 169.002864][T16591] SELinux: syz.5.5781 (16591) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 169.030271][T16588] FAT-fs (loop8): bogus sectors per cluster 0 [ 169.036492][T16588] FAT-fs (loop8): Can't find a valid FAT filesystem [ 169.316023][T16633] loop7: detected capacity change from 0 to 164 [ 169.323422][T16633] Unable to read rock-ridge attributes [ 169.329610][T16633] Unable to read rock-ridge attributes [ 169.337173][T16633] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 169.347691][T16633] block device autoloading is deprecated and will be removed. [ 169.355452][T16633] syz.7.5802: attempt to access beyond end of device [ 169.355452][T16633] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 169.356997][T16636] SELinux: failed to load policy [ 169.413995][T16642] netlink: 'syz.6.5806': attribute type 34 has an invalid length. [ 169.455939][T16648] netlink: 'syz.7.5809': attribute type 1 has an invalid length. [ 169.585445][T16660] loop7: detected capacity change from 0 to 8192 [ 169.604679][T16668] loop5: detected capacity change from 0 to 512 [ 169.674471][T16668] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 169.682629][T16668] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 169.731878][T16668] System zones: 0-1, 15-15, 18-18, 34-34 [ 169.740395][T16668] EXT4-fs (loop5): orphan cleanup on readonly fs [ 169.747159][T16668] EXT4-fs warning (device loop5): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 169.761804][T16668] EXT4-fs (loop5): Cannot turn on quotas: error -22 [ 169.783006][T16668] EXT4-fs error (device loop5): ext4_orphan_get:1415: comm syz.5.5818: bad orphan inode 16 [ 169.804370][T16668] ext4_test_bit(bit=15, block=18) = 1 [ 169.809821][T16668] is_bad_inode(inode)=0 [ 169.814114][T16668] NEXT_ORPHAN(inode)=0 [ 169.818243][T16668] max_ino=32 [ 169.821497][T16668] i_nlink=2 [ 169.870828][T16668] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 169.909453][T16701] netlink: 'syz.7.5830': attribute type 13 has an invalid length. [ 169.942305][ T3813] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 170.026390][T16709] SELinux: failed to load policy [ 170.032322][T16713] loop8: detected capacity change from 0 to 2048 [ 170.043524][T16701] bridge0: port 2(bridge_slave_1) entered disabled state [ 170.050815][T16701] bridge0: port 1(bridge_slave_0) entered disabled state [ 170.109764][T16713] EXT4-fs error (device loop8): ext4_ext_check_inode:524: inode #2: comm +}[@: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5) [ 170.134808][T16713] EXT4-fs (loop8): get root inode failed [ 170.140627][T16713] EXT4-fs (loop8): mount failed [ 170.153297][T16728] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 170.167542][T16728] vhci_hcd: default hub control req: 2307 v0008 i0002 l4096 [ 170.170947][T16701] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 170.201354][T16701] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 170.266140][T16701] netdevsim netdevsim7 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 170.271362][T16736] loop6: detected capacity change from 0 to 512 [ 170.275372][T16701] netdevsim netdevsim7 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 170.290828][T16701] netdevsim netdevsim7 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 170.299783][T16701] netdevsim netdevsim7 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 170.309905][T16736] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2240: inode #15: comm syz.6.5850: corrupted in-inode xattr: invalid ea_ino [ 170.326320][T16736] EXT4-fs error (device loop6): ext4_orphan_get:1394: comm syz.6.5850: couldn't read orphan inode 15 (err -117) [ 170.338959][T16736] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 170.386840][T16744] netlink: 'syz.5.5852': attribute type 1 has an invalid length. [ 170.400762][ T9649] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 170.503092][T16747] SELinux: failed to load policy [ 170.521605][ T30] kauditd_printk_skb: 146 callbacks suppressed [ 170.521623][ T30] audit: type=1400 audit(2000000010.540:7550): avc: denied { getopt } for pid=16755 comm="syz.5.5858" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 170.547622][T16748] loop8: detected capacity change from 0 to 8192 [ 170.559583][ T30] audit: type=1400 audit(2000000010.540:7551): avc: denied { connect } for pid=16755 comm="syz.5.5858" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 170.579380][ T30] audit: type=1400 audit(2000000010.540:7552): avc: denied { name_connect } for pid=16755 comm="syz.5.5858" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1 [ 170.600440][ T30] audit: type=1400 audit(2000000010.580:7553): avc: denied { create } for pid=16757 comm="syz.7.5859" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 170.620098][ T30] audit: type=1400 audit(2000000010.590:7554): avc: denied { setopt } for pid=16757 comm="syz.7.5859" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 170.639634][ T30] audit: type=1400 audit(2000000010.590:7555): avc: denied { bind } for pid=16757 comm="syz.7.5859" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 170.660586][ T30] audit: type=1400 audit(2000000010.590:7556): avc: denied { read } for pid=16757 comm="syz.7.5859" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 170.680432][ T30] audit: type=1400 audit(2000000010.640:7557): avc: denied { write } for pid=16757 comm="syz.7.5859" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 170.699871][ T30] audit: type=1400 audit(2000000010.650:7558): avc: denied { create } for pid=16759 comm="syz.6.5861" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 170.719682][ T30] audit: type=1400 audit(2000000010.650:7559): avc: denied { bind } for pid=16759 comm="syz.6.5861" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 170.831129][T16784] netlink: 24 bytes leftover after parsing attributes in process `syz.8.5871'. [ 170.953374][T16807] loop6: detected capacity change from 0 to 128 [ 170.992939][T16807] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 171.011035][T16807] ext4 filesystem being mounted at /525/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 171.076092][ T9649] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 171.166678][T16832] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5894'. [ 171.219957][T16840] loop7: detected capacity change from 0 to 128 [ 171.228097][T16840] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 171.240592][T16840] ext4 filesystem being mounted at /89/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 171.265818][T15867] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 171.318075][T16849] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5901'. [ 171.330543][T16849] ipvlan2: entered promiscuous mode [ 171.422604][T16858] SELinux: syz.1.5905 (16858) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 171.685685][T16896] loop7: detected capacity change from 0 to 2048 [ 171.714373][T16896] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 171.762514][T16906] loop5: detected capacity change from 0 to 512 [ 171.794009][T16910] loop6: detected capacity change from 0 to 512 [ 171.796687][T16896] EXT4-fs error (device loop7): ext4_find_extent:938: inode #2: comm syz.7.5924: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 171.818145][T16896] EXT4-fs (loop7): Remounting filesystem read-only [ 171.829594][T16906] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 171.842745][T16910] EXT4-fs (loop6): orphan cleanup on readonly fs [ 171.850968][T16910] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.5929: bg 0: block 248: padding at end of block bitmap is not set [ 171.852595][T16906] ext4 filesystem being mounted at /1175/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 171.879890][T16910] EXT4-fs error (device loop6): ext4_acquire_dquot:6927: comm syz.6.5929: Failed to acquire dquot type 1 [ 171.893437][T15867] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 171.904622][T16910] EXT4-fs (loop6): 1 truncate cleaned up [ 171.915592][T16910] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 171.938402][T16910] EXT4-fs (loop6): warning: mounting fs with errors, running e2fsck is recommended [ 171.959798][T16923] loop8: detected capacity change from 0 to 512 [ 171.960610][T16910] EXT4-fs error (device loop6): ext4_acquire_dquot:6927: comm syz.6.5929: Failed to acquire dquot type 1 [ 171.978777][T16923] EXT4-fs (loop8): orphan cleanup on readonly fs [ 171.979793][T16910] EXT4-fs warning (device loop6): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-28, ino=4). Please run e2fsck to fix. [ 171.985310][T16923] EXT4-fs (loop8): Cannot turn on journaled quota: type 0: error -13 [ 172.008423][T16923] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 172.030121][T16923] EXT4-fs error (device loop8): ext4_clear_blocks:876: inode #13: comm syz.8.5934: attempt to clear invalid blocks 2 len 1 [ 172.045228][T16923] EXT4-fs error (device loop8): ext4_free_branches:1023: inode #13: comm syz.8.5934: invalid indirect mapped block 1819239214 (level 0) [ 172.045716][ T9649] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 172.070465][T16923] EXT4-fs error (device loop8): ext4_free_branches:1023: inode #13: comm syz.8.5934: invalid indirect mapped block 1819239214 (level 1) [ 172.103373][T16923] EXT4-fs (loop8): 1 truncate cleaned up [ 172.110718][T16923] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 172.170414][T16923] EXT4-fs: Ignoring removed orlov option [ 172.176234][T16923] EXT4-fs: Ignoring sb option on remount [ 172.185322][T16923] EXT4-fs (loop8): warning: mounting fs with errors, running e2fsck is recommended [ 172.197055][T16923] EXT4-fs error (device loop8): __ext4_remount:6738: comm syz.8.5934: Abort forced by user [ 172.209534][T16923] EXT4-fs (loop8): Remounting filesystem read-only [ 172.216168][T16923] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 172.243790][T16263] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 172.496551][T16968] loop7: detected capacity change from 0 to 2048 [ 172.515619][T16968] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 172.593502][ T3813] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 172.625307][T16982] netlink: 'syz.6.5961': attribute type 10 has an invalid length. [ 172.651525][T16982] team0: Device hsr_slave_0 failed to register rx_handler [ 172.675593][T15867] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 172.789103][T17009] xt_cgroup: invalid path, errno=-2 [ 172.860606][T17020] loop6: detected capacity change from 0 to 1024 [ 172.942461][T17020] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 172.988397][ T9649] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 173.056554][T17038] loop5: detected capacity change from 0 to 164 [ 173.084747][T17038] syz.5.5986: attempt to access beyond end of device [ 173.084747][T17038] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 173.124955][T17038] syz.5.5986: attempt to access beyond end of device [ 173.124955][T17038] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 173.192367][T17048] IPv6: Can't replace route, no match found [ 173.363129][T17070] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6001'. [ 173.569542][T17090] netlink: 8 bytes leftover after parsing attributes in process `syz.7.6019'. [ 173.616000][T17090] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 173.743146][T17097] loop7: detected capacity change from 0 to 8192 [ 173.780748][T17097] loop7: p2 p3 p4 [ 173.784586][T17097] loop7: p2 start 452985600 is beyond EOD, truncated [ 173.791371][T17097] loop7: p3 size 33554432 extends beyond EOD, truncated [ 173.802533][T17097] loop7: p4 start 8388607 is beyond EOD, truncated [ 174.066548][T17129] loop7: detected capacity change from 0 to 1024 [ 174.080844][T17129] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22 [ 174.121240][T17132] loop6: detected capacity change from 0 to 1024 [ 174.140968][T17132] EXT4-fs: Ignoring removed oldalloc option [ 174.151716][T17132] EXT4-fs (loop6): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 174.193995][T17132] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 174.229442][T17132] SELinux: Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 174.263933][ T9649] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 174.358698][T17156] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 174.373718][T17156] vhci_hcd: default hub control req: 2316 v0008 i0002 l0 [ 174.439319][T13968] ================================================================== [ 174.447470][T13968] BUG: KCSAN: data-race in n_tty_flush_buffer / n_tty_lookahead_flow_ctrl [ 174.456025][T13968] [ 174.458355][T13968] write to 0xffffc9000886f270 of 8 bytes by task 17165 on cpu 0: [ 174.466096][T13968] n_tty_flush_buffer+0xaa/0x190 [ 174.471076][T13968] tty_ldisc_hangup+0x72/0x370 [ 174.475872][T13968] __tty_hangup+0x3b1/0x530 [ 174.480397][T13968] tty_ioctl+0x607/0xbe0 [ 174.484661][T13968] __se_sys_ioctl+0xc9/0x140 [ 174.489306][T13968] __x64_sys_ioctl+0x43/0x50 [ 174.493907][T13968] x64_sys_call+0x1690/0x2dc0 [ 174.498599][T13968] do_syscall_64+0xc9/0x1c0 [ 174.503125][T13968] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 174.509033][T13968] [ 174.511362][T13968] read-write to 0xffffc9000886f270 of 8 bytes by task 13968 on cpu 1: [ 174.519515][T13968] n_tty_lookahead_flow_ctrl+0x48/0x130 [ 174.525087][T13968] tty_port_default_lookahead_buf+0x8a/0xc0 [ 174.531002][T13968] flush_to_ldisc+0x31c/0x410 [ 174.535693][T13968] process_scheduled_works+0x4db/0xa20 [ 174.541198][T13968] worker_thread+0x51d/0x6f0 [ 174.545825][T13968] kthread+0x4ae/0x520 [ 174.549914][T13968] ret_from_fork+0x4b/0x60 [ 174.554348][T13968] ret_from_fork_asm+0x1a/0x30 [ 174.559132][T13968] [ 174.561466][T13968] value changed: 0x00000000000019ac -> 0x0000000000000000 [ 174.568589][T13968] [ 174.570918][T13968] Reported by Kernel Concurrency Sanitizer on: [ 174.577098][T13968] CPU: 1 UID: 0 PID: 13968 Comm: kworker/u8:46 Not tainted 6.14.0-rc6-syzkaller #0 [ 174.586390][T13968] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 174.596452][T13968] Workqueue: events_unbound flush_to_ldisc [ 174.602289][T13968] ================================================================== [ 175.060490][T13973] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 175.063117][ T7039] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 180.100428][T13968] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 180.180961][ T30] kauditd_printk_skb: 292 callbacks suppressed [ 180.180978][ T30] audit: type=1400 audit(2000000020.200:7848): avc: denied { egress } for pid=16 comm="ksoftirqd/0" saddr=fe80::1b daddr=ff02::2 netif=gretap0 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:netif_t tclass=netif permissive=1 [ 180.210732][ T30] audit: type=1400 audit(2000000020.200:7849): avc: denied { sendto } for pid=16 comm="ksoftirqd/0" saddr=fe80::1b daddr=ff02::2 netif=gretap0 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:node_t tclass=node permissive=1 [ 180.821003][ T2828] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration