last executing test programs: 46.994372505s ago: executing program 3 (id=877): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000440)='kfree\x00', r1}, 0x18) r2 = syz_open_procfs(0x0, &(0x7f0000000380)='map_files\x00') getdents64(r2, &(0x7f0000000fc0)=""/224, 0xe0) 46.922345325s ago: executing program 3 (id=881): r0 = socket(0x10, 0x3, 0x9) connect$netlink(r0, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x25dfdbfc}, 0xc) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001000)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x17) sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={&(0x7f0000000080), 0xc, &(0x7f0000000180)={&(0x7f0000002100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [], {0x14}}, 0x28}}, 0x0) 46.815405296s ago: executing program 3 (id=886): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001740)={0x11, 0xf, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000000000000000000000100000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000800008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000084000000b70000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xf, 0x0, 0x7ffc1ffb}]}) statfs(&(0x7f0000000200)='.\x00', &(0x7f0000000440)=""/137) 46.768947516s ago: executing program 3 (id=892): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x9}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000700)={[{@grpid}, {@orlov}]}, 0xff, 0x48f, &(0x7f0000000b80)="$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") r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x103902, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc4042, 0x1ff) sendfile(r1, r0, 0x0, 0xfffa83) 46.575368527s ago: executing program 3 (id=902): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x6c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x2c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x6c}}, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x29, 0x1, 0x0, 0x0, 0x0, 0x4, 0x510, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x9}, 0x0, 0x10000, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000040)={0x0, 0xf5ff, &(0x7f0000000080)={&(0x7f0000000340)={0x68, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x4}]}, 0x68}}, 0x0) 46.24427492s ago: executing program 3 (id=910): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r1, 0x0, 0xde6}, 0x18) sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000003280)=ANY=[@ANYBLOB="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"], 0xb98}, 0x1, 0x0, 0x0, 0x20000000}, 0x40800) 46.23888162s ago: executing program 32 (id=910): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r1, 0x0, 0xde6}, 0x18) sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000003280)=ANY=[@ANYBLOB="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"], 0xb98}, 0x1, 0x0, 0x0, 0x20000000}, 0x40800) 1.718625849s ago: executing program 2 (id=2697): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7030000003e7400850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x201, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x3}]}], {0x14}}, 0x64}, 0x1, 0x0, 0x0, 0x890}, 0x0) 1.60788884s ago: executing program 2 (id=2703): bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x19, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0, 0x0, 0xb}, 0x18) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) bind$xdp(0xffffffffffffffff, &(0x7f0000000100)={0x2c, 0x2}, 0x10) sendmsg$NFT_BATCH(r1, &(0x7f0000000200)={0x0, 0x35, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c0003800800014000000000080002400000000018000380140001007465616d3000000000000000000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c00038014"], 0xfc}}, 0x0) 1.56936016s ago: executing program 2 (id=2705): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xf, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) r1 = socket$inet6(0xa, 0x3, 0x3c) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x5000, 0x0, @loopback, 0x5}, 0x1c) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000100)=',', 0xffdf}], 0x1) 1.462500431s ago: executing program 2 (id=2719): unshare(0x6a040000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000740)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_DELFLOWTABLE={0x48, 0x18, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x3}, [@NFTA_FLOWTABLE_HOOK={0x1c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'wg2\x00'}]}]}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x70}, 0x1, 0x0, 0x0, 0x40044}, 0x20008000) 1.419396211s ago: executing program 1 (id=2710): r0 = io_uring_setup(0x70c5, &(0x7f0000000180)={0x0, 0x0, 0x10, 0x8000001}) r1 = socket(0x2b, 0x1, 0x1) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @local, 0x3}, 0x1c) sendmsg$NL80211_CMD_GET_STATION(r1, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000001880)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x240000c4) setsockopt$inet6_mreq(r1, 0x29, 0x1e, &(0x7f00000000c0)={@mcast2}, 0x14) close_range(r0, 0xffffffffffffffff, 0x0) 1.329088642s ago: executing program 0 (id=2714): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) shutdown(r0, 0x1) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20, 0x2, @empty, 0x2}, 0x1c) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='lo\x00', 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x1, @empty, 0x8}, 0x1c) sendmmsg$inet6(r0, &(0x7f00000000c0)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x2, @empty, 0xfffffffe}, 0x1c, 0x0}}], 0x1, 0x240c089d) 1.203602542s ago: executing program 1 (id=2715): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB], 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) r2 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r2, &(0x7f0000000780)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000008000000", @ANYRES32=0x0, @ANYBLOB="ac1414aaffffffff0000000010000000000000000000000007"], 0x30}}], 0x1, 0x4000804) 1.203026962s ago: executing program 0 (id=2726): unshare(0x6020400) r0 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x88) r2 = openat$cgroup_int(r1, &(0x7f0000000040)='cpu.idle\x00', 0x2, 0x0) sendfile(r2, r2, 0x0, 0x10000a006) 1.179205942s ago: executing program 1 (id=2716): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x7, 0x24f0, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x6}, 0x0, 0x10000, 0x0, 0x1, 0xa, 0x20006, 0x5, 0x0, 0x0, 0x0, 0x7fffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}) writev(r0, &(0x7f0000000040)=[{&(0x7f0000000100)="2e9b3d0007e03dd65193dfb6c575963f86ddf0fd26d4eef23248000000f858dbb8a19052343f", 0x26}, {&(0x7f0000000080)="051a3018b64b673868a6b7afa2a700000e8000658f06000000000000", 0x1c}], 0x2) 1.162774303s ago: executing program 0 (id=2718): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10) sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x2, &(0x7f0000000100)=[{0x6, 0x1, 0x8, 0x6381}, {0x6, 0x6, 0x0, 0x7}]}, 0x10) recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25) 1.124052943s ago: executing program 5 (id=2720): perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x7, 0x441e, 0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x2020005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x50) process_vm_writev(0x0, &(0x7f0000000500)=[{0x0}, {0xffffffffffffffff}, {0xfffffffffffffffc}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x0, 0x0, 0x0) 1.053541523s ago: executing program 2 (id=2721): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r1}, 0x10) mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000005c0)={0x0, 0xffffffffffffffff, 0x0, 0x31, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30) mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0) 1.032100923s ago: executing program 2 (id=2722): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) unshare(0x2a020400) syz_clone(0x2c9a4080, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc) 980.090894ms ago: executing program 5 (id=2723): r0 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) recvmsg$can_j1939(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000e40)=[{&(0x7f0000000180)=""/140, 0x8c}], 0x1}, 0x0) bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1}, 0x18) connect$can_j1939(r0, &(0x7f0000000140)={0x1d, r1}, 0x18) sendmmsg(r0, &(0x7f000000a200)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000002c0)="220733d69b211bb4a3", 0x9}], 0x1}}], 0x1, 0x60000800) 926.819404ms ago: executing program 1 (id=2727): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000540)={0x1, &(0x7f0000000000)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x4}, 0x18) sync() 879.023394ms ago: executing program 5 (id=2729): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) socket(0x1e, 0x1, 0x800000) r1 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r1, &(0x7f0000000000)={0x18, 0x0, {0x1, @remote, 'lo\x00'}}, 0x1e) close(r1) 869.200475ms ago: executing program 1 (id=2730): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x20085e, &(0x7f0000000100), 0x1, 0x502, &(0x7f0000000a00)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x107042, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x187842, 0x3) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000080)={0x3920e, r0, 0x2, 0x0, 0x2}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000740)='./file1\x00', 0x0, 0x15) lseek(r2, 0x5, 0x3) 845.288375ms ago: executing program 5 (id=2731): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="1801000000000800000000005e002200850000006d00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'geneve1\x00', 0x0}) r3 = socket$packet(0x11, 0x3, 0x300) sendto$packet(r3, &(0x7f0000000440)="800000800000210ee7decd7a0000", 0xe, 0x40, &(0x7f0000000000)={0x11, 0x8100, r2, 0x1, 0xd8, 0x6, @broadcast}, 0x14) 802.986805ms ago: executing program 5 (id=2732): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000040000000c"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000880)=ANY=[@ANYBLOB="1800"/14, @ANYRES32=r0], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) unshare(0x2040400) r2 = fsopen(&(0x7f0000000400)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0) 769.187365ms ago: executing program 5 (id=2734): r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000003c0)=0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r2) sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)={0x1c, r3, 0x1, 0x123, 0x234, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r1}]}, 0x1c}}, 0x0) write$nci(r0, &(0x7f0000000640)=ANY=[@ANYBLOB="71040101"], 0x4) 734.089345ms ago: executing program 1 (id=2735): r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f0000000040)=0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r2) sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001ac0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010023010000340200000200000008000100", @ANYRES32=r1], 0x1c}}, 0x0) write$nci(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="610304dd32604194f4617ffa080602060912c90e2fb26b3d4fd2be1e"], 0x1c) 458.396257ms ago: executing program 4 (id=2740): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4b, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18) munmap(&(0x7f0000001000/0x3000)=nil, 0x3000) r2 = syz_open_dev$tty1(0xc, 0x4, 0x3) ioctl$KDFONTOP_SET(r2, 0x4b72, &(0x7f0000000080)={0x0, 0x3000000, 0x8, 0x1b, 0x100, &(0x7f00000000c0)="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"}) 388.200338ms ago: executing program 4 (id=2741): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000200)={[{@barrier}, {@nodioread_nolock}, {@lazytime}, {@barrier}, {@auto_da_alloc}, {@nodioread_nolock}]}, 0x1, 0x599, &(0x7f0000001280)="$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") socket$inet6_sctp(0xa, 0x5, 0x84) socket$inet_sctp(0x2, 0x5, 0x84) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000300)={0x0, 0x0, 0x0}, &(0x7f0000000380)=0xc) chown(&(0x7f0000000040)='./file0\x00', 0x0, r1) 372.702537ms ago: executing program 4 (id=2742): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001780)=ANY=[@ANYBLOB="0200000004000000060000000500"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10) syz_emit_ethernet(0xbe, 0x0, 0x0) r2 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000000)="2e00000029008188e6b62aa73772cc9f1ba1f848430000005e140602000006020e00280010000700028000001294", 0x2e}], 0x1}, 0x0) 328.556098ms ago: executing program 4 (id=2743): r0 = syz_open_dev$sg(&(0x7f0000000740), 0x0, 0x18b203) r1 = fcntl$dupfd(r0, 0x0, r0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r2}, 0x18) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001280)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)=ANY=[], 0x28}], 0x1}, 0x0) ioctl$SG_IO(r1, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x300, 0x0, 0x0, 0x0}) 284.307838ms ago: executing program 4 (id=2744): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000002c0)='mm_page_alloc\x00', r1}, 0x10) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$AUTOFS_IOC_FAIL(r2, 0x4c80, 0xffffffffffffffb6) 282.141288ms ago: executing program 0 (id=2745): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r1}, 0x18) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000780)='./bus\x00', 0x0, &(0x7f0000000440), 0x64, 0x516, &(0x7f0000001100)="$eJzs3cFrHG0ZAPBnNru1adMv+dSDfuDnp62kRbubNLYNHmoF0VNBrfcak00I2WRDdtM2oWiCf4AgooInvXgR/AMEKXjxKEJBz4qKItqq4EE7sruTNE12k227zabJ7wez8847M/s877YzmXdmmAngxHovIm5GxNM0TS9FxHBWn8uG2GgNjeWePH4w3RiSSNPbf08iyeq2vivJxmez1U5HxFe+GPH1ZG/c2tr6wlSlUl7Jpkv1xeVSbW398vzi1Fx5rrw0MTF+bfL65NXJsZ6081xE3Pj8n7/37Z984cYvPnXvD3f+evEbjbSGsvk72/GC8vvNbDW90Pwtdq6w8pLBjqJ8s4WZwXZLDOyp2XzNOQEA0F7jGP/9EfHxiLgUwzGw/+EsAAAA8AZKPzsU/00i0vZOdagHAAAA3iC55j2wSa6Y3QswFLlcsdi6h/eDcSZXqdbqn5ytri7NtO6VHYlCbna+Uh7L7hUeiULSmB5vlp9NX9k1PRERb0fEd4cHm9PF6Wplpt8nPwAAAOCEOLur//+v4Vb/HwAAADhmRvqdAAAAAPDa6f8DAADA8af/DwAAAMfal27dagzp1vuvZ+6urS5U716eKdcWiour08Xp6spyca5anWs+s2/xoO+rVKvLn46l1fulerlWL9XW1u8sVleX6nfmn3sFNgAAAHCI3v7ow98lEbHxmcHm0HCqu1W7XAw4qvLbpSQbt9msf/9Wa/ynQ0oKOBQD/U4A6Jt8vxMA+qbQ7wSAvksOmN/x5p1fZ+OP9TYfAACg90Y/3Pn6f27fNTf2nw0ceV1vxJuvNw/g8Ln+DydX8/p/t3fyOuKHY6XgCABOvFe+/n+gNH2hhAAAgJ4bag5Jrpid3huKXK5YjDjXfC1AIZmdr5THIuKtiPjtcOF9jenx5prJgX0GAAAAAAAAAAAAAAAAAAAAAAAAAKAlTZNIAQAAgGMtIveX5JetZ/mPDl8Y2n1+4FTyn+HIXhF674e3v39/ql5fGW/U/2O7vv6DrP5KP85gAAAAwInwQi/w3+qnb/XjAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKCXnjx+ML01HGbcv30uIkbaxc/H6eb4dBQi4sw/k8jvWC+JiIEexB9sfHyoXfykkdZ2yHbxB3sQf2Nz3/gxkv0K7eKf7UF8OMkeNvY/N9ttf7l4rzluv/3lI56bflmd93+xvf8b6LD9nzvw2//d/Hzn0c9KHeNvRryTb7//2YqfdIh/vss2fu2r6+ud5qU/ihht+/cneS5Wqb64XKqtrV+eX5yaK8+VlyYmxq9NXp+8OjlWmp2vlLPPtjG+85GfP92v/Wc6xB85oP0Xumz//x7df/yBVrHQLv7F823i/+rH2RJ74+eyv32fyMqN+aNb5Y1Wead3f/qbd/dr/0yH9h/073+xy/Zf+vK3/tjlogDAIaitrS9MVSrllWNbaPTSj0AaCkew8M09NRuv8L8lTdO0sU29QmJJHIWfpVno954JAADotWcH/f3OBAAAAAAAAAAAAAAAAAAAAE6uw3ic2O6YG9ulpBeP0AYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6In/BwAA//81JNmM") open(&(0x7f0000000040)='./bus\x00', 0x605c3, 0x0) 216.222808ms ago: executing program 4 (id=2746): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000180)={[{@noblock_validity}, {}, {@sysvgroups}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@resgid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0) truncate(&(0x7f0000000900)='./file1\x00', 0x3000000) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0) r1 = getpid() process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}], 0x1, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0) 63.019669ms ago: executing program 0 (id=2747): r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000001800), 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000000)={{0x0, 0x2}}) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000380), 0x101040) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000300)={{0x0, 0x3, 0x0, 0x0, 0x1}}) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000003c0)={0x9c9, 0x0, 0x0, 'queue0\x00', 0x200000}) 0s ago: executing program 0 (id=2748): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) capset(&(0x7f0000000080)={0x20080522}, &(0x7f0000000180)={0x200000, 0x200000, 0x0, 0x0, 0x4}) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x121202, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000003c0)=0x1) kernel console output (not intermixed with test programs): 28 bytes leftover after parsing attributes in process `syz.2.1130'. [ 67.437474][T14152] netlink: 196 bytes leftover after parsing attributes in process `syz.2.1130'. [ 67.516681][T14162] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1135'. [ 67.700413][T14168] loop1: detected capacity change from 0 to 512 [ 67.730472][T14168] ext4 filesystem being mounted at /212/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 67.899796][T14208] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1166'. [ 67.980079][T14198] loop2: detected capacity change from 0 to 512 [ 67.999584][T14198] ext4 filesystem being mounted at /256/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 68.268526][T14235] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1167'. [ 68.281107][T14239] program syz.4.1171 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 68.451737][T14248] loop0: detected capacity change from 0 to 1024 [ 68.478273][T14248] EXT4-fs: Ignoring removed bh option [ 68.484199][T14191] Set syz1 is full, maxelem 65536 reached [ 68.501908][T14248] EXT4-fs: inline encryption not supported [ 68.530944][T14248] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 68.583985][T14250] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1175'. [ 68.593089][T14250] netlink: 196 bytes leftover after parsing attributes in process `syz.5.1175'. [ 68.623256][T14248] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 68.647628][T14248] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 2: comm syz.0.1174: lblock 2 mapped to illegal pblock 2 (length 1) [ 68.698022][T14250] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1175'. [ 68.710070][T14248] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 48: comm syz.0.1174: lblock 0 mapped to illegal pblock 48 (length 1) [ 68.732487][T14261] netlink: 'syz.2.1180': attribute type 4 has an invalid length. [ 68.761354][T14248] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.1174: Failed to acquire dquot type 0 [ 68.793095][T14261] .`: renamed from bond0 (while UP) [ 68.801925][T14248] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6313: Corrupt filesystem [ 68.832367][T14248] EXT4-fs error (device loop0): ext4_evict_inode:254: inode #11: comm syz.0.1174: mark_inode_dirty error [ 68.848156][T14248] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 68.869741][T14271] vhci_hcd: invalid port number 96 [ 68.874951][T14271] vhci_hcd: default hub control req: 0300 vfffa i0060 l0 [ 68.902508][T14248] EXT4-fs (loop0): 1 orphan inode deleted [ 68.920300][ T3854] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:66: lblock 1 mapped to illegal pblock 1 (length 1) [ 68.976149][ T3854] EXT4-fs error (device loop0): ext4_release_dquot:6981: comm kworker/u8:66: Failed to release dquot type 0 [ 68.988471][T14247] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 1: comm syz.0.1174: lblock 1 mapped to illegal pblock 1 (length 1) [ 69.084393][ T3318] EXT4-fs error (device loop0): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 69.138404][ T3318] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6313: Corrupt filesystem [ 69.173658][ T3318] EXT4-fs error (device loop0): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error [ 69.254176][ T29] kauditd_printk_skb: 301 callbacks suppressed [ 69.254194][ T29] audit: type=1326 audit(1762427278.116:1802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14302 comm="syz.5.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 69.284661][ T29] audit: type=1326 audit(1762427278.116:1803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14302 comm="syz.5.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 69.362105][ T29] audit: type=1326 audit(1762427278.116:1804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14302 comm="syz.5.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 69.385978][ T29] audit: type=1326 audit(1762427278.116:1805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14302 comm="syz.5.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 69.409546][ T29] audit: type=1326 audit(1762427278.116:1806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14302 comm="syz.5.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 69.433712][ T29] audit: type=1326 audit(1762427278.126:1807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14302 comm="syz.5.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 69.457498][ T29] audit: type=1326 audit(1762427278.126:1808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14302 comm="syz.5.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 69.481193][ T29] audit: type=1326 audit(1762427278.176:1809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14302 comm="syz.5.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 69.504713][ T29] audit: type=1326 audit(1762427278.176:1810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14302 comm="syz.5.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 69.528376][ T29] audit: type=1326 audit(1762427278.186:1811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14302 comm="syz.5.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 69.600126][T14323] netlink: 'syz.2.1210': attribute type 1 has an invalid length. [ 69.833080][T14350] loop1: detected capacity change from 0 to 512 [ 69.851094][T14350] EXT4-fs mount: 78 callbacks suppressed [ 69.851125][T14350] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 69.878314][T14350] ext4 filesystem being mounted at /228/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 69.906804][T14351] loop0: detected capacity change from 0 to 512 [ 69.920194][T14355] netlink: 'syz.5.1224': attribute type 4 has an invalid length. [ 69.951135][T14351] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 69.973244][T14355] .`: renamed from bond0 (while UP) [ 69.997689][T14351] ext4 filesystem being mounted at /216/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 70.098459][T14365] netlink: 'syz.5.1226': attribute type 1 has an invalid length. [ 70.355942][T14390] netdevsim netdevsim2: Direct firmware load for ./file0/file1 failed with error -2 [ 70.446662][T14404] xt_CT: You must specify a L4 protocol and not use inversions on it [ 70.572566][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.621241][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.636563][T14435] netlink: 'syz.4.1261': attribute type 1 has an invalid length. [ 70.644594][T14435] netlink: 'syz.4.1261': attribute type 1 has an invalid length. [ 70.691088][T14442] macvtap0: refused to change device tx_queue_len [ 70.833720][T14467] loop5: detected capacity change from 0 to 128 [ 70.878062][T14472] loop1: detected capacity change from 0 to 512 [ 70.903188][T14471] netlink: 'syz.4.1279': attribute type 1 has an invalid length. [ 70.922105][T14472] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 70.949798][T14478] macvtap0: refused to change device tx_queue_len [ 70.968271][T14472] ext4 filesystem being mounted at /231/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 71.133083][T14498] batadv_slave_1: entered promiscuous mode [ 71.156317][T14498] batadv_slave_1: left promiscuous mode [ 71.167990][T14495] loop2: detected capacity change from 0 to 8192 [ 71.203096][ T5472] hid-generic 0000:FFFFFFFF:0000.0001: unknown main item tag 0x0 [ 71.211063][ T5472] hid-generic 0000:FFFFFFFF:0000.0001: unknown main item tag 0x0 [ 71.218878][ T5472] hid-generic 0000:FFFFFFFF:0000.0001: unknown main item tag 0x0 [ 71.226774][ T5472] hid-generic 0000:FFFFFFFF:0000.0001: unknown main item tag 0x0 [ 71.234629][ T5472] hid-generic 0000:FFFFFFFF:0000.0001: unknown main item tag 0x0 [ 71.242430][ T5472] hid-generic 0000:FFFFFFFF:0000.0001: unknown main item tag 0x0 [ 71.250336][ T5472] hid-generic 0000:FFFFFFFF:0000.0001: unknown main item tag 0x0 [ 71.258522][ T5472] hid-generic 0000:FFFFFFFF:0000.0001: unknown main item tag 0x0 [ 71.266291][ T5472] hid-generic 0000:FFFFFFFF:0000.0001: unknown main item tag 0x0 [ 71.274224][ T5472] hid-generic 0000:FFFFFFFF:0000.0001: unknown main item tag 0x0 [ 71.282749][T14514] loop5: detected capacity change from 0 to 512 [ 71.285730][ T5472] hid-generic 0000:FFFFFFFF:0000.0001: hidraw0: HID v0.00 Device [] on [ 71.291648][T14514] EXT4-fs error (device loop5): ext4_orphan_get:1418: comm syz.5.1299: bad orphan inode 15 [ 71.311190][T14514] ext4_test_bit(bit=14, block=5) = 0 [ 71.317471][T14514] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 71.384811][ T7691] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.423571][T14529] batadv_slave_1: entered promiscuous mode [ 71.424956][T14531] loop0: detected capacity change from 0 to 128 [ 71.437339][T14531] FAT-fs (loop0): Invalid FSINFO signature: 0x00005252, 0x61417272 (sector = 7) [ 71.456839][T14529] batadv_slave_1: left promiscuous mode [ 71.473017][T14533] loop9: detected capacity change from 0 to 7 [ 71.480228][T14533] Buffer I/O error on dev loop9, logical block 0, async page read [ 71.488774][T14533] Buffer I/O error on dev loop9, logical block 0, async page read [ 71.501729][T14533] loop9: unable to read partition table [ 71.513400][T14533] loop_reread_partitions: partition scan of loop9 (被xڬdGݡ [ 71.513400][T14533]  H) failed (rc=-5) [ 71.515432][T14535] mmap: syz.0.1307 (14535) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 71.606582][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.645765][T14549] netlink: 'syz.0.1315': attribute type 1 has an invalid length. [ 71.811721][T14574] netlink: 'syz.0.1322': attribute type 1 has an invalid length. [ 71.867299][ T3394] hid-generic 0000:FFFFFFFF:0000.0002: hidraw0: HID v0.00 Device [] on [ 71.934634][T14589] bridge0: port 2(bridge_slave_1) entered disabled state [ 71.950333][T14578] loop2: detected capacity change from 0 to 512 [ 71.971702][T14578] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 72.011422][T14578] ext4 filesystem being mounted at /302/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 72.107179][T14608] loop1: detected capacity change from 0 to 512 [ 72.157852][T14608] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 72.196909][T14608] EXT4-fs (loop1): orphan cleanup on readonly fs [ 72.210070][T14620] veth2: entered promiscuous mode [ 72.215191][T14620] veth2: entered allmulticast mode [ 72.224202][T14608] EXT4-fs error (device loop1): ext4_do_update_inode:5632: inode #16: comm syz.1.1336: corrupted inode contents [ 72.268201][T14608] EXT4-fs (loop1): Remounting filesystem read-only [ 72.275545][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.285173][T14608] EXT4-fs (loop1): 1 truncate cleaned up [ 72.291596][ T3838] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 72.302400][ T3838] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 72.315425][ T3838] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started [ 72.337968][T14608] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 72.378721][T14632] loop4: detected capacity change from 0 to 128 [ 72.399472][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.415557][T14632] __nla_validate_parse: 12 callbacks suppressed [ 72.415579][T14632] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1348'. [ 72.556421][T14644] loop1: detected capacity change from 0 to 1764 [ 72.608588][T14650] loop2: detected capacity change from 0 to 512 [ 72.635478][T14650] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 72.653821][T14650] ext4 filesystem being mounted at /306/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 72.710344][T14656] syzkaller1: entered promiscuous mode [ 72.715869][T14656] syzkaller1: entered allmulticast mode [ 72.760986][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.029730][T14687] atomic_op ffff88812c4a2128 conn xmit_atomic 0000000000000000 [ 73.126039][T14709] loop0: detected capacity change from 0 to 512 [ 73.149901][T14709] EXT4-fs warning (device loop0): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 73.176784][T14709] EXT4-fs (loop0): mount failed [ 73.177438][T14712] loop2: detected capacity change from 0 to 1764 [ 73.183232][T14719] sctp: [Deprecated]: syz.5.1385 (pid 14719) Use of int in max_burst socket option deprecated. [ 73.183232][T14719] Use struct sctp_assoc_value instead [ 73.371602][T14740] loop4: detected capacity change from 0 to 512 [ 73.391068][T14740] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 73.393784][T14742] loop1: detected capacity change from 0 to 512 [ 73.422209][T14748] loop2: detected capacity change from 0 to 512 [ 73.434800][T14740] ext4 filesystem being mounted at /291/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 73.441910][T14742] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 73.475468][T14748] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 73.491084][T14748] EXT4-fs (loop2): orphan cleanup on readonly fs [ 73.497149][T14754] loop0: detected capacity change from 0 to 512 [ 73.499823][T14748] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #16: comm syz.2.1398: corrupted inode contents [ 73.508910][T14742] EXT4-fs (loop1): 1 truncate cleaned up [ 73.516434][T14748] EXT4-fs (loop2): Remounting filesystem read-only [ 73.523782][T14754] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 73.529353][T14748] EXT4-fs (loop2): 1 truncate cleaned up [ 73.547540][ T3846] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 73.548045][T14742] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 73.558301][ T3846] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 73.583064][ T3846] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started [ 73.605547][T14754] ext4 filesystem being mounted at /251/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 73.611504][T14748] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 73.629726][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.670273][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.702924][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.715385][T14759] loop1: detected capacity change from 0 to 2048 [ 73.749404][T14759] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 73.780504][T14759] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 73.849892][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.860522][T14771] xt_TPROXY: Can be used only with -p tcp or -p udp [ 73.913569][T14776] loop1: detected capacity change from 0 to 2048 [ 73.949351][T14776] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none. [ 74.003870][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000900. [ 74.073787][T14801] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1419'. [ 74.074058][T14804] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1421'. [ 74.106032][T14801] dummy0: entered promiscuous mode [ 74.122402][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.127600][T14801] macsec1: entered promiscuous mode [ 74.192018][T14812] loop4: detected capacity change from 0 to 1024 [ 74.205744][T14812] EXT4-fs: Ignoring removed orlov option [ 74.226785][T14812] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.260596][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.310861][ T29] kauditd_printk_skb: 228 callbacks suppressed [ 74.310878][ T29] audit: type=1326 audit(1762427283.176:2027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14832 comm="syz.5.1435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 74.347216][ T29] audit: type=1326 audit(1762427283.176:2028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14832 comm="syz.5.1435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 74.371398][ T29] audit: type=1400 audit(1762427283.206:2029): avc: denied { map } for pid=14831 comm="syz.4.1433" path="socket:[14824]" dev="sockfs" ino=14824 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 74.396192][ T29] audit: type=1400 audit(1762427283.206:2030): avc: denied { read write } for pid=14831 comm="syz.4.1433" path="socket:[14824]" dev="sockfs" ino=14824 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 74.425810][T14837] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22 [ 74.426742][ T29] audit: type=1326 audit(1762427283.256:2031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14832 comm="syz.5.1435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 74.434161][T14837] netdevsim netdevsim1: Direct firmware load for . failed with error -22 [ 74.457763][ T29] audit: type=1326 audit(1762427283.256:2032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14832 comm="syz.5.1435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 74.490329][ T29] audit: type=1326 audit(1762427283.286:2033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14832 comm="syz.5.1435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 74.513976][ T29] audit: type=1326 audit(1762427283.286:2034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14832 comm="syz.5.1435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 74.538390][ T29] audit: type=1326 audit(1762427283.286:2035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14832 comm="syz.5.1435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 74.574084][T14846] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1439'. [ 74.614313][T14846] dummy0: entered promiscuous mode [ 74.621078][T14846] macsec1: entered promiscuous mode [ 74.628828][T14838] loop2: detected capacity change from 0 to 512 [ 74.670545][T14856] loop4: detected capacity change from 0 to 512 [ 74.679453][T14838] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.712235][T14838] ext4 filesystem being mounted at /327/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 74.723638][T14856] EXT4-fs (loop4): fragment/cluster size (8192) != block size (4096) [ 74.737491][ T29] audit: type=1400 audit(1762427283.596:2036): avc: denied { getopt } for pid=14852 comm="syz.0.1442" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 74.833489][T14861] ieee802154 phy0 wpan0: encryption failed: -22 [ 74.909652][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.921947][T14866] loop1: detected capacity change from 0 to 2048 [ 74.947143][T14866] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 75.050037][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.264158][T14927] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1473'. [ 75.289762][T14929] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1475'. [ 75.289739][T14933] netlink: 'syz.0.1476': attribute type 10 has an invalid length. [ 75.307028][T14933] ipvlan0: entered allmulticast mode [ 75.312604][T14933] veth0_vlan: entered allmulticast mode [ 75.321344][T14933] team0: Device ipvlan0 failed to register rx_handler [ 75.331277][T14935] netlink: 232 bytes leftover after parsing attributes in process `syz.4.1477'. [ 75.346817][T14937] binfmt_misc: register: failed to install interpreter file ./file0 [ 75.695498][T14983] loop4: detected capacity change from 0 to 512 [ 75.723547][T14988] netlink: 'syz.1.1500': attribute type 1 has an invalid length. [ 75.724447][T14983] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 75.762332][T14995] loop5: detected capacity change from 0 to 1024 [ 75.825821][T14983] ext4 filesystem being mounted at /310/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 75.853469][T14995] EXT4-fs: Ignoring removed nomblk_io_submit option [ 75.897392][T14995] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 75.974294][ T7691] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.994513][T15018] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1511'. [ 76.112573][T15035] loop0: detected capacity change from 0 to 1024 [ 76.119850][T15035] EXT4-fs: Ignoring removed nomblk_io_submit option [ 76.128922][T15035] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c855c01c, mo2=0003] [ 76.143035][T15035] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 76.189764][T15042] loop5: detected capacity change from 0 to 128 [ 76.197967][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.202190][T15042] FAT-fs (loop5): Directory bread(block 32) failed [ 76.217177][T15042] FAT-fs (loop5): Directory bread(block 33) failed [ 76.217210][T15042] FAT-fs (loop5): Directory bread(block 34) failed [ 76.217227][T15042] FAT-fs (loop5): Directory bread(block 35) failed [ 76.217248][T15042] FAT-fs (loop5): Directory bread(block 36) failed [ 76.217271][T15042] FAT-fs (loop5): Directory bread(block 37) failed [ 76.217382][T15042] FAT-fs (loop5): Directory bread(block 38) failed [ 76.217406][T15042] FAT-fs (loop5): Directory bread(block 39) failed [ 76.217437][T15042] FAT-fs (loop5): Directory bread(block 40) failed [ 76.217479][T15042] FAT-fs (loop5): Directory bread(block 41) failed [ 76.289998][ T3770] kworker/u8:10: attempt to access beyond end of device [ 76.289998][ T3770] loop5: rw=1, sector=4108, nr_sectors = 4 limit=128 [ 76.319251][T15045] netlink: 'syz.5.1524': attribute type 10 has an invalid length. [ 76.319276][T15045] ipvlan0: entered allmulticast mode [ 76.319339][T15045] veth0_vlan: entered allmulticast mode [ 76.320940][T15045] team0: Device ipvlan0 failed to register rx_handler [ 76.445443][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.628270][T15070] netlink: 'syz.0.1534': attribute type 1 has an invalid length. [ 76.643366][T15072] SELinux: Context @ is not valid (left unmapped). [ 76.730847][T15078] netlink: 'syz.4.1538': attribute type 10 has an invalid length. [ 76.748922][T15078] ipvlan0: entered allmulticast mode [ 76.748941][T15078] veth0_vlan: entered allmulticast mode [ 76.751929][T15078] team0: Device ipvlan0 failed to register rx_handler [ 76.775131][T15080] SELinux: security_context_str_to_sid (+I%hQ*)cJ}BXYVOR6@x#R{a7ǽMU&,f}f`-ن,XK) failed with errno=-22 [ 76.817151][T15083] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1541'. [ 76.817308][T15083] IPVS: Error connecting to the multicast addr [ 76.892499][T15091] loop5: detected capacity change from 0 to 1024 [ 76.911794][T15091] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 76.911882][T15091] ext4 filesystem being mounted at /126/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 76.938713][T15091] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1545: bg 0: block 112: padding at end of block bitmap is not set [ 76.939024][T15091] EXT4-fs error (device loop5): ext4_free_blocks:6706: comm syz.5.1545: Freeing blocks not in datazone - block = 0, count = 16 [ 77.051605][ T7691] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 77.256144][T15105] loop2: detected capacity change from 0 to 1024 [ 77.256532][T15105] EXT4-fs: Ignoring removed nomblk_io_submit option [ 77.356799][T15105] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 77.389826][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.454776][T15130] loop2: detected capacity change from 0 to 128 [ 77.502517][T15130] FAT-fs (loop2): Directory bread(block 32) failed [ 77.509912][T15130] FAT-fs (loop2): Directory bread(block 33) failed [ 77.516495][T15130] FAT-fs (loop2): Directory bread(block 34) failed [ 77.535673][T15130] FAT-fs (loop2): Directory bread(block 35) failed [ 77.542937][T15130] FAT-fs (loop2): Directory bread(block 36) failed [ 77.581964][T15130] FAT-fs (loop2): Directory bread(block 37) failed [ 77.600307][T15130] FAT-fs (loop2): Directory bread(block 38) failed [ 77.650419][T15130] FAT-fs (loop2): Directory bread(block 39) failed [ 77.657027][T15130] FAT-fs (loop2): Directory bread(block 40) failed [ 77.663656][T15130] FAT-fs (loop2): Directory bread(block 41) failed [ 77.750946][T15139] loop5: detected capacity change from 0 to 512 [ 77.838295][T15150] syzkaller1: entered promiscuous mode [ 77.844066][T15150] syzkaller1: entered allmulticast mode [ 77.879321][T15139] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 77.898148][ T3846] kworker/u8:65: attempt to access beyond end of device [ 77.898148][ T3846] loop2: rw=1, sector=4108, nr_sectors = 4 limit=128 [ 77.915435][T15139] ext4 filesystem being mounted at /127/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 78.169114][T15128] Set syz1 is full, maxelem 65536 reached [ 78.238304][T15173] IPVS: wrr: UDP 224.0.0.2:0 - no destination available [ 78.245685][ T4372] IPVS: starting estimator thread 0... [ 78.300241][ T7691] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.337801][T15183] IPVS: using max 1920 ests per chain, 96000 per kthread [ 78.465563][T15215] syzkaller1: entered promiscuous mode [ 78.472041][T15215] syzkaller1: entered allmulticast mode [ 78.580012][T15230] loop0: detected capacity change from 0 to 1024 [ 78.591425][T15230] EXT4-fs: Ignoring removed mblk_io_submit option [ 78.623258][T15230] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 78.696087][T15230] EXT4-fs error (device loop0): mb_free_blocks:2017: group 0, inode 18: block 241:freeing already freed block (bit 15); block bitmap corrupt. [ 78.713837][T15230] EXT4-fs (loop0): Remounting filesystem read-only [ 78.760740][T15253] wireguard0: entered promiscuous mode [ 78.766337][T15253] wireguard0: entered allmulticast mode [ 78.806184][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.897381][T15264] SELinux: security_context_str_to_sid ({Zzb(a`j*L'3:ki>'Ӂx) failed with errno=-22 [ 78.954200][T15279] loop4: detected capacity change from 0 to 128 [ 78.973226][T15279] FAT-fs (loop4): Directory bread(block 32) failed [ 78.982059][T15279] FAT-fs (loop4): Directory bread(block 33) failed [ 78.997273][T15279] FAT-fs (loop4): Directory bread(block 34) failed [ 79.008552][T15281] netlink: '+}[@': attribute type 6 has an invalid length. [ 79.016984][T15279] FAT-fs (loop4): Directory bread(block 35) failed [ 79.023726][T15279] FAT-fs (loop4): Directory bread(block 36) failed [ 79.031383][T15279] FAT-fs (loop4): Directory bread(block 37) failed [ 79.048154][T15279] FAT-fs (loop4): Directory bread(block 38) failed [ 79.066461][T15279] FAT-fs (loop4): Directory bread(block 39) failed [ 79.073828][T15279] FAT-fs (loop4): Directory bread(block 40) failed [ 79.090523][T15279] FAT-fs (loop4): Directory bread(block 41) failed [ 79.228533][ T3846] kworker/u8:65: attempt to access beyond end of device [ 79.228533][ T3846] loop4: rw=1, sector=4108, nr_sectors = 4 limit=128 [ 79.330625][T15324] netlink: 'syz.5.1650': attribute type 34 has an invalid length. [ 79.377027][T15331] loop4: detected capacity change from 0 to 512 [ 79.405184][ T29] kauditd_printk_skb: 183 callbacks suppressed [ 79.405298][ T29] audit: type=1400 audit(1762427288.266:2220): avc: denied { mounton } for pid=15329 comm="syz.4.1653" path="/syzcgroup/cpu/syz4/cgroup.procs" dev="cgroup" ino=249 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object" [ 79.439619][T15331] SELinux: security_context_str_to_sid (re) failed with errno=-22 [ 79.485132][ T29] audit: type=1400 audit(1762427288.346:2221): avc: denied { mount } for pid=15342 comm="syz.4.1658" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 79.533555][ T29] audit: type=1326 audit(1762427288.396:2222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15340 comm="syz.2.1657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6541d5f6c9 code=0x7ffc0000 [ 79.568108][ T29] audit: type=1326 audit(1762427288.426:2223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15340 comm="syz.2.1657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=23 compat=0 ip=0x7f6541d5f6c9 code=0x7ffc0000 [ 79.591751][ T29] audit: type=1326 audit(1762427288.426:2224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15340 comm="syz.2.1657" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6541d5f6c9 code=0x7ffc0000 [ 79.648637][ T29] audit: type=1326 audit(1762427288.506:2225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15356 comm="syz.5.1667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 79.672561][ T29] audit: type=1326 audit(1762427288.506:2226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15356 comm="syz.5.1667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 79.696139][ T29] audit: type=1326 audit(1762427288.506:2227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15356 comm="syz.5.1667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 79.719657][ T29] audit: type=1326 audit(1762427288.506:2228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15356 comm="syz.5.1667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 79.743275][ T29] audit: type=1326 audit(1762427288.506:2229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15356 comm="syz.5.1667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f167b45f6c9 code=0x7ffc0000 [ 79.807067][T15371] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1680'. [ 79.854321][T15381] netlink: '+}[@': attribute type 6 has an invalid length. [ 79.987340][T15405] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1687'. [ 80.094779][ T3395] hid_parser_main: 116 callbacks suppressed [ 80.094862][ T3395] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 80.108462][ T3395] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 80.115885][ T3395] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 80.126630][ T3395] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 80.134280][ T3395] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 80.141863][ T3395] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 80.149655][ T3395] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 80.157314][ T3395] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 80.164798][ T3395] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 80.172287][ T3395] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 80.186772][ T3395] hid-generic 0000:0000:0000.0003: hidraw0: HID v8.00 Device [syz0] on syz0 [ 80.290617][T15442] loop2: detected capacity change from 0 to 1024 [ 80.301342][T15442] EXT4-fs: Ignoring removed orlov option [ 80.340179][T15442] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 80.356502][T15453] netlink: 'syz.0.1710': attribute type 1 has an invalid length. [ 80.361366][T15457] netlink: 340 bytes leftover after parsing attributes in process `syz.4.1711'. [ 80.418591][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.587076][T15485] loop1: detected capacity change from 0 to 1024 [ 80.593854][T15485] EXT4-fs: Ignoring removed orlov option [ 80.620818][T15485] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 80.683342][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.891246][T15536] netlink: 340 bytes leftover after parsing attributes in process `syz.2.1747'. [ 81.098884][T15570] netlink: 'syz.2.1762': attribute type 21 has an invalid length. [ 81.106810][T15570] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1762'. [ 81.116195][T15570] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1762'. [ 81.195164][T15578] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1766'. [ 81.275911][T15590] loop2: detected capacity change from 0 to 128 [ 81.288977][T15576] loop1: detected capacity change from 0 to 512 [ 81.334373][T15576] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 81.372532][T15576] ext4 filesystem being mounted at /320/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 81.619806][T15624] ALSA: seq fatal error: cannot create timer (-19) [ 81.701518][T15641] loop0: detected capacity change from 0 to 512 [ 81.719859][T15641] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 81.733009][T15641] ext4 filesystem being mounted at /330/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 81.749121][T15641] EXT4-fs (loop0): shut down requested (0) [ 81.770132][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.910360][T15667] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1805'. [ 81.919392][T15667] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1805'. [ 81.929379][T15669] netlink: 5 bytes leftover after parsing attributes in process `syz.5.1807'. [ 81.938788][T15669] 0{X: renamed from gretap0 (while UP) [ 81.948691][T15669] 0{X: entered allmulticast mode [ 81.954822][T15669] A link change request failed with some changes committed already. Interface 30{X may have been left with an inconsistent configuration, please check. [ 82.013999][T15678] xt_TPROXY: Can be used only with -p tcp or -p udp [ 82.026933][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.036597][T15680] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 ! [ 82.074373][T15684] loop4: detected capacity change from 0 to 1024 [ 82.081963][T15684] EXT4-fs: Ignoring removed bh option [ 82.108637][T15684] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 82.143348][T15699] loop1: detected capacity change from 0 to 512 [ 82.150693][T15684] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4193: comm syz.4.1814: Allocating blocks 385-513 which overlap fs metadata [ 82.165405][T15684] EXT4-fs (loop4): pa ffff888106e73380: logic 16, phys. 129, len 24 [ 82.173672][T15684] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 8 [ 82.176069][T15699] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 82.197514][T15699] ext4 filesystem being mounted at /323/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 82.216730][T15699] EXT4-fs (loop1): shut down requested (0) [ 82.233978][T15706] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=15706 comm=syz.5.1820 [ 82.250325][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.260221][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.347343][T15722] lo speed is unknown, defaulting to 1000 [ 82.353534][T15722] lo speed is unknown, defaulting to 1000 [ 82.360537][T15722] lo speed is unknown, defaulting to 1000 [ 82.366452][T15717] ALSA: seq fatal error: cannot create timer (-19) [ 82.366750][T15722] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 82.381231][T15722] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 82.395033][T15722] lo speed is unknown, defaulting to 1000 [ 82.401273][T15722] lo speed is unknown, defaulting to 1000 [ 82.407485][T15722] lo speed is unknown, defaulting to 1000 [ 82.414373][T15722] lo speed is unknown, defaulting to 1000 [ 82.420668][T15722] lo speed is unknown, defaulting to 1000 [ 82.505927][T15741] vhci_hcd: invalid port number 23 [ 82.529790][T15743] loop5: detected capacity change from 0 to 1024 [ 82.548166][T15743] EXT4-fs: Ignoring removed nomblk_io_submit option [ 82.560844][T15743] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 82.595256][T15757] loop0: detected capacity change from 0 to 512 [ 82.640029][T15760] loop4: detected capacity change from 0 to 164 [ 82.655945][ T7691] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.667690][T15757] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 82.681763][T15760] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 82.692779][T15757] ext4 filesystem being mounted at /343/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 82.708707][T15760] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 82.720710][T15760] Symlink component flag not implemented [ 82.726528][T15760] Symlink component flag not implemented [ 82.734946][T15760] Symlink component flag not implemented (7) [ 82.741212][T15760] Symlink component flag not implemented (116) [ 82.752544][T15757] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 82.782697][T15757] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 33 with error 28 [ 82.795118][T15757] EXT4-fs (loop0): This should not happen!! Data will be lost [ 82.795118][T15757] [ 82.804844][T15757] EXT4-fs (loop0): Total free blocks count 0 [ 82.810941][T15757] EXT4-fs (loop0): Free/Dirty block details [ 82.816958][T15757] EXT4-fs (loop0): free_blocks=65280 [ 82.822384][T15773] vhci_hcd: invalid port number 23 [ 82.822900][T15757] EXT4-fs (loop0): dirty_blocks=33 [ 82.833302][T15757] EXT4-fs (loop0): Block reservation details [ 82.839436][T15757] EXT4-fs (loop0): i_reserved_data_blocks=33 [ 82.870180][T15776] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 82.881468][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.950624][T15793] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.958110][T15793] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.036585][T15807] loop1: detected capacity change from 0 to 512 [ 83.049022][T15808] loop4: detected capacity change from 0 to 512 [ 83.057666][T15808] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 83.073345][T15807] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 83.092730][T15807] ext4 filesystem being mounted at /332/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 83.098229][T15808] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 83.121647][T15808] EXT4-fs (loop4): failed to initialize system zone (-117) [ 83.129251][T15808] EXT4-fs (loop4): mount failed [ 83.134780][T15807] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 83.151609][T15807] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 33 with error 28 [ 83.164385][T15807] EXT4-fs (loop1): This should not happen!! Data will be lost [ 83.164385][T15807] [ 83.174178][T15807] EXT4-fs (loop1): Total free blocks count 0 [ 83.180380][T15807] EXT4-fs (loop1): Free/Dirty block details [ 83.186332][T15807] EXT4-fs (loop1): free_blocks=65280 [ 83.191954][T15807] EXT4-fs (loop1): dirty_blocks=33 [ 83.197248][T15807] EXT4-fs (loop1): Block reservation details [ 83.203743][T15807] EXT4-fs (loop1): i_reserved_data_blocks=33 [ 83.252994][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.445389][T15841] loop5: detected capacity change from 0 to 512 [ 83.463848][T15841] ext4 filesystem being mounted at /209/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 83.580056][T15871] loop4: detected capacity change from 0 to 512 [ 83.596171][T15868] loop0: detected capacity change from 0 to 2048 [ 83.605016][T15870] wireguard0: entered promiscuous mode [ 83.610733][T15870] wireguard0: entered allmulticast mode [ 83.627100][T15871] ------------[ cut here ]------------ [ 83.633019][T15871] EA inode 11 i_nlink=2 [ 83.633252][T15871] WARNING: CPU: 1 PID: 15871 at fs/ext4/xattr.c:1058 ext4_xattr_inode_update_ref+0x36a/0x380 [ 83.648158][T15871] Modules linked in: [ 83.652568][T15871] CPU: 1 UID: 0 PID: 15871 Comm: syz.4.1893 Not tainted syzkaller #0 PREEMPT(voluntary) [ 83.663643][T15871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 83.674775][T15871] RIP: 0010:ext4_xattr_inode_update_ref+0x36a/0x380 [ 83.681617][T15871] Code: 90 49 8d 7e 40 e8 76 fd b8 ff 4d 8b 6e 40 4c 89 e7 e8 8a f8 b8 ff 41 8b 56 48 48 c7 c7 32 cd 55 86 4c 89 ee e8 07 fa 67 ff 90 <0f> 0b 90 90 e9 ff fe ff ff e8 88 e7 b5 03 0f 1f 84 00 00 00 00 00 [ 83.703355][T15871] RSP: 0018:ffffc90000e535a0 EFLAGS: 00010246 [ 83.709635][T15871] RAX: 24a9665bd6087800 RBX: ffff888106f2a8c0 RCX: 0000000000080000 [ 83.718030][T15871] RDX: ffffc90003506000 RSI: 0000000000003df9 RDI: 0000000000003dfa [ 83.726336][T15871] RBP: 0000000000000002 R08: 0001c90000e53427 R09: 0000000000000000 [ 83.735101][T15871] R10: 00000000ffffffff R11: 0000000000000002 R12: ffff888106f2a870 [ 83.743553][T15871] R13: 000000000000000b R14: ffff888106f2a828 R15: 0000000000000001 [ 83.748968][T15868] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters [ 83.751886][T15871] FS: 00007f9130d976c0(0000) GS:ffff8882aef13000(0000) knlGS:0000000000000000 [ 83.769289][T15868] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 83.777786][T15871] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 83.790185][T15868] EXT4-fs (loop0): This should not happen!! Data will be lost [ 83.790185][T15868] [ 83.790230][T15868] EXT4-fs (loop0): Total free blocks count 0 [ 83.790246][T15868] EXT4-fs (loop0): Free/Dirty block details [ 83.790261][T15868] EXT4-fs (loop0): free_blocks=66060288 [ 83.790278][T15868] EXT4-fs (loop0): dirty_blocks=64 [ 83.796873][T15871] CR2: 00007f91323129e0 CR3: 000000012c26e000 CR4: 00000000003506f0 [ 83.806737][T15868] EXT4-fs (loop0): Block reservation details [ 83.812943][T15871] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 83.812965][T15871] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 [ 83.818937][T15868] EXT4-fs (loop0): i_reserved_data_blocks=4 [ 83.824504][T15871] Call Trace: [ 83.824517][T15871] [ 83.872537][T15871] ext4_xattr_set_entry+0x77f/0x1020 [ 83.877906][T15871] ext4_xattr_ibody_set+0x184/0x3c0 [ 83.883349][T15871] ext4_expand_extra_isize_ea+0xcbb/0x11f0 [ 83.889470][T15871] __ext4_expand_extra_isize+0x246/0x280 [ 83.895142][T15871] __ext4_mark_inode_dirty+0x29d/0x3f0 [ 83.900654][T15871] ext4_evict_inode+0x80e/0xd90 [ 83.905613][T15871] ? __pfx_ext4_evict_inode+0x10/0x10 [ 83.911049][T15871] evict+0x2e3/0x550 [ 83.915532][T15871] ? __dquot_initialize+0x146/0x7c0 [ 83.921599][T15871] iput+0x4ed/0x650 [ 83.925571][T15871] ext4_process_orphan+0x1a9/0x1c0 [ 83.930869][T15871] ext4_orphan_cleanup+0x6a8/0xa00 [ 83.936068][T15871] ext4_fill_super+0x3483/0x3810 [ 83.941045][T15871] ? snprintf+0x86/0xb0 [ 83.945262][T15871] ? set_blocksize+0x1a8/0x310 [ 83.950084][T15871] ? sb_set_blocksize+0xe3/0x100 [ 83.955066][T15871] ? setup_bdev_super+0x30e/0x370 [ 83.960205][T15871] ? __pfx_ext4_fill_super+0x10/0x10 [ 83.965789][T15871] get_tree_bdev_flags+0x291/0x300 [ 83.971135][T15871] ? __pfx_ext4_fill_super+0x10/0x10 [ 83.976495][T15871] get_tree_bdev+0x1f/0x30 [ 83.981068][T15871] ext4_get_tree+0x1c/0x30 [ 83.985500][T15871] vfs_get_tree+0x57/0x1d0 [ 83.989961][T15871] do_new_mount+0x24d/0x660 [ 83.994597][T15871] path_mount+0x4a5/0xb70 [ 83.999075][T15871] ? user_path_at+0x109/0x130 [ 84.003822][T15871] __se_sys_mount+0x28c/0x2e0 [ 84.008662][T15871] __x64_sys_mount+0x67/0x80 [ 84.013477][T15871] x64_sys_call+0x2b51/0x3000 [ 84.019010][T15871] do_syscall_64+0xd2/0x200 [ 84.023567][T15871] ? arch_exit_to_user_mode_prepare+0x27/0x80 [ 84.029781][T15871] ? irqentry_exit_to_user_mode+0x7b/0xa0 [ 84.035714][T15871] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 84.041850][T15871] RIP: 0033:0x7f9132330e6a [ 84.046344][T15871] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 84.066372][T15871] RSP: 002b:00007f9130d96e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 84.074955][T15871] RAX: ffffffffffffffda RBX: 00007f9130d96ef0 RCX: 00007f9132330e6a [ 84.082968][T15871] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f9130d96eb0 [ 84.091016][T15871] RBP: 0000200000000180 R08: 00007f9130d96ef0 R09: 0000000000800700 [ 84.099028][T15871] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 84.108069][T15871] R13: 00007f9130d96eb0 R14: 000000000000046f R15: 0000200000000200 [ 84.116160][T15871] [ 84.119479][T15871] ---[ end trace 0000000000000000 ]--- [ 84.125763][T15871] EXT4-fs error (device loop4): ext4_xattr_inode_iget:441: inode #18: comm syz.4.1893: iget: bad extra_isize 90 (inode size 256) [ 84.139916][T15871] EXT4-fs error (device loop4): ext4_xattr_inode_iget:446: comm syz.4.1893: error while reading EA inode 18 err=-117 [ 84.140967][ T3830] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 44 with error 28 [ 84.155320][T15871] EXT4-fs error (device loop4): ext4_xattr_inode_iget:441: inode #18: comm syz.4.1893: iget: bad extra_isize 90 (inode size 256) [ 84.167308][ T3830] EXT4-fs (loop0): This should not happen!! Data will be lost [ 84.167308][ T3830] [ 84.204608][T15871] EXT4-fs error (device loop4): ext4_xattr_inode_iget:446: comm syz.4.1893: error while reading EA inode 18 err=-117 [ 84.218805][T15871] EXT4-fs (loop4): 1 orphan inode deleted [ 84.293565][T15894] 9pnet_fd: Insufficient options for proto=fd [ 84.389979][T15908] loop5: detected capacity change from 0 to 1024 [ 84.426128][T15912] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 84.433349][T15908] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 84.435002][T15912] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 84.459827][T15908] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 84.472665][T15908] EXT4-fs (loop5): This should not happen!! Data will be lost [ 84.472665][T15908] [ 84.482429][T15908] EXT4-fs (loop5): Total free blocks count 0 [ 84.488615][T15908] EXT4-fs (loop5): Free/Dirty block details [ 84.494617][T15908] EXT4-fs (loop5): free_blocks=20480 [ 84.500066][T15908] EXT4-fs (loop5): dirty_blocks=80 [ 84.505356][T15908] EXT4-fs (loop5): Block reservation details [ 84.511584][T15908] EXT4-fs (loop5): i_reserved_data_blocks=5 [ 84.549327][ T3830] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 64 with error 28 [ 84.561804][ T3830] EXT4-fs (loop5): This should not happen!! Data will be lost [ 84.561804][ T3830] [ 84.571231][ T29] kauditd_printk_skb: 203 callbacks suppressed [ 84.571252][ T29] audit: type=1326 audit(1762428061.430:2433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15928 comm="syz.2.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6541d5f6c9 code=0x7ffc0000 [ 84.602388][ T29] audit: type=1326 audit(1762428061.440:2434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15928 comm="syz.2.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6541d5f6c9 code=0x7ffc0000 [ 84.626625][ T29] audit: type=1326 audit(1762428061.440:2435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15928 comm="syz.2.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6541d5f6c9 code=0x7ffc0000 [ 84.650681][ T29] audit: type=1326 audit(1762428061.440:2436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15928 comm="syz.2.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6541d5f6c9 code=0x7ffc0000 [ 84.674371][ T29] audit: type=1326 audit(1762428061.440:2437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15928 comm="syz.2.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6541d5f6c9 code=0x7ffc0000 [ 84.698001][ T29] audit: type=1326 audit(1762428061.440:2438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15928 comm="syz.2.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6541d5f6c9 code=0x7ffc0000 [ 84.721869][ T29] audit: type=1326 audit(1762428061.440:2439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15928 comm="syz.2.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6541d5f6c9 code=0x7ffc0000 [ 84.747193][ T29] audit: type=1326 audit(1762428061.490:2440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15928 comm="syz.2.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6541d5f6c9 code=0x7ffc0000 [ 84.771352][ T29] audit: type=1326 audit(1762428061.490:2441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15928 comm="syz.2.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6541d5f6c9 code=0x7ffc0000 [ 84.795149][ T29] audit: type=1326 audit(1762428061.490:2442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15928 comm="syz.2.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7f6541d5f6c9 code=0x7ffc0000 [ 84.837870][T15935] binfmt_misc: register: failed to install interpreter file ./file0 [ 84.938284][T15946] lo speed is unknown, defaulting to 1000 [ 84.963713][T15953] loop2: detected capacity change from 0 to 512 [ 84.972574][T15953] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 85.003229][T15953] EXT4-fs error (device loop2): ext4_init_orphan_info:618: comm syz.2.1931: orphan file block 0: bad magic [ 85.033274][T15953] EXT4-fs (loop2): mount failed [ 85.061021][T15963] hub 9-0:1.0: USB hub found [ 85.065812][T15963] hub 9-0:1.0: 8 ports detected [ 85.156654][T15972] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 85.262626][T15986] SELinux: Context system_u:object_r:dmesg_exec_t:s0 is not valid (left unmapped). [ 85.357999][T15995] __nla_validate_parse: 9 callbacks suppressed [ 85.358017][T15995] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1953'. [ 85.431201][T16014] SELinux: policydb version 1905296526 does not match my version range 15-35 [ 85.453423][T16014] SELinux: failed to load policy [ 85.509280][T16007] loop4: detected capacity change from 0 to 512 [ 85.561366][T16007] ext4 filesystem being mounted at /390/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 85.801676][T16043] SELinux: failed to load policy [ 85.855441][T16051] loop2: detected capacity change from 0 to 512 [ 85.903500][T16051] ext4 filesystem being mounted at /446/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 85.936145][T16068] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 85.948904][T16068] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 85.972989][T16074] netlink: 256 bytes leftover after parsing attributes in process `+}[@'. [ 86.103102][T16065] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 86.112653][T16065] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 86.122512][T16065] ------------[ cut here ]------------ [ 86.128193][T16065] WARNING: CPU: 1 PID: 16065 at mm/page_alloc.c:5159 __alloc_frozen_pages_noprof+0x218/0x360 [ 86.138446][T16065] Modules linked in: [ 86.142371][T16065] CPU: 1 UID: 0 PID: 16065 Comm: syz.1.1982 Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 86.153852][T16065] Tainted: [W]=WARN [ 86.157723][T16065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 86.167891][T16065] RIP: 0010:__alloc_frozen_pages_noprof+0x218/0x360 [ 86.174773][T16065] Code: 83 3d 03 f5 4f 05 02 72 0e 48 83 b8 e0 fb ff ff 00 0f 84 48 ff ff ff 81 ca 00 01 00 00 e9 3d ff ff ff c6 05 c7 f3 4b 05 01 90 <0f> 0b 90 31 c0 eb 84 a9 00 00 08 00 75 52 44 89 f1 81 e1 7f ff ff [ 86.194750][T16065] RSP: 0018:ffffc90010553b90 EFLAGS: 00010246 [ 86.201168][T16065] RAX: 0a5839e652d5f900 RBX: 000000000000000c RCX: 0000000000000000 [ 86.209234][T16065] RDX: 0000000000000000 RSI: 000000000000000c RDI: 0000000000040cc0 [ 86.217447][T16065] RBP: 0000000000000000 R08: 0001ffff88ea6ff5 R09: 0000000000000000 [ 86.225479][T16065] R10: 0000000000000006 R11: 0000000000000002 R12: ffffffff88ea6ff4 [ 86.233782][T16065] R13: 0000000000000001 R14: 0000000000040cc0 R15: 0000000000000000 [ 86.241977][T16065] FS: 00007f8bc87e76c0(0000) GS:ffff8882aef13000(0000) knlGS:0000000000000000 [ 86.251089][T16065] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 86.257920][T16065] CR2: 0000001b33f20ff8 CR3: 000000012c274000 CR4: 00000000003506f0 [ 86.266327][T16065] DR0: 0000000000000002 DR1: 0000000000000000 DR2: 0000000000000000 [ 86.274501][T16065] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 [ 86.282654][T16065] Call Trace: [ 86.285970][T16065] [ 86.288960][T16065] alloc_pages_mpol+0xb3/0x260 [ 86.293773][T16065] ? __rcu_read_unlock+0x4f/0x70 [ 86.298948][T16065] alloc_frozen_pages_noprof+0x90/0x110 [ 86.304707][T16065] ___kmalloc_large_node+0x52/0x100 [ 86.310860][T16065] __kmalloc_large_node_noprof+0x16/0xa0 [ 86.316828][T16065] __kmalloc_noprof+0x348/0x570 [ 86.321930][T16065] ? raw_ioctl+0xfb8/0x1d00 [ 86.326535][T16065] raw_ioctl+0xfb8/0x1d00 [ 86.331085][T16065] ? ioctl_has_perm+0x257/0x2a0 [ 86.336082][T16065] ? do_vfs_ioctl+0x866/0xe10 [ 86.340912][T16065] ? selinux_file_ioctl+0x308/0x3a0 [ 86.346179][T16065] ? __fget_files+0x184/0x1c0 [ 86.351031][T16065] ? __pfx_raw_ioctl+0x10/0x10 [ 86.355928][T16065] __se_sys_ioctl+0xce/0x140 [ 86.360857][T16065] __x64_sys_ioctl+0x43/0x50 [ 86.365536][T16065] x64_sys_call+0x1816/0x3000 [ 86.370332][T16065] do_syscall_64+0xd2/0x200 [ 86.374917][T16065] ? irqentry_exit_to_user_mode+0x7b/0xa0 [ 86.380903][T16065] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.386915][T16065] RIP: 0033:0x7f8bc9d7f6c9 [ 86.391396][T16065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 86.411172][T16065] RSP: 002b:00007f8bc87e7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 86.419884][T16065] RAX: ffffffffffffffda RBX: 00007f8bc9fd5fa0 RCX: 00007f8bc9d7f6c9 [ 86.428920][T16065] RDX: 0000200000000500 RSI: 00000000c0085508 RDI: 0000000000000003 [ 86.436922][T16065] RBP: 00007f8bc9e01f91 R08: 0000000000000000 R09: 0000000000000000 [ 86.445287][T16065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 86.453622][T16065] R13: 00007f8bc9fd6038 R14: 00007f8bc9fd5fa0 R15: 00007ffe581a83e8 [ 86.461907][T16065] [ 86.464961][T16065] ---[ end trace 0000000000000000 ]--- [ 86.471475][T16099] usb usb9: usbfs: interface 0 claimed by hub while 'syz.2.1996' sets config #0 [ 86.536144][T16111] IPv6: NLM_F_CREATE should be specified when creating new route [ 86.622479][T16122] ip6erspan0: entered promiscuous mode [ 86.682062][T16131] loop4: detected capacity change from 0 to 1024 [ 86.689794][T16131] EXT4-fs: Ignoring removed orlov option [ 86.700176][T16131] EXT4-fs (loop4): shut down requested (0) [ 86.795902][T16137] netlink: 60 bytes leftover after parsing attributes in process `+}[@'. [ 86.805172][T16137] IPVS: Unknown mcast interface: ve [ 86.892085][T16147] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2017'. [ 86.943815][T16149] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2018'. [ 86.953094][T16149] tipc: Enabling of bearer rejected, media not registered [ 87.047758][T16159] lo speed is unknown, defaulting to 1000 [ 87.111303][T16171] netlink: 'syz.1.2029': attribute type 7 has an invalid length. [ 87.248229][T16184] loop5: detected capacity change from 0 to 256 [ 87.266849][T16184] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 87.423384][T16202] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2043'. [ 87.450063][T16204] netlink: 'syz.5.2044': attribute type 6 has an invalid length. [ 87.505121][T16188] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 87.518907][T16188] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 87.573605][T16214] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2049'. [ 87.908226][T16248] loop2: detected capacity change from 0 to 256 [ 87.939849][T16248] FAT-fs (loop2): error, corrupted file size (i_pos 196, 2097152) [ 87.947810][T16248] FAT-fs (loop2): Filesystem has been set read-only [ 87.955935][T16248] FAT-fs (loop2): error, corrupted file size (i_pos 196, 2097152) [ 87.959676][T16252] tipc: Started in network mode [ 87.968861][T16252] tipc: Node identity ac14140f, cluster identity 4711 [ 87.975962][T16252] tipc: New replicast peer: 255.255.255.83 [ 87.982180][T16252] tipc: Enabled bearer , priority 10 [ 88.070869][T16266] loop1: detected capacity change from 0 to 512 [ 88.078905][T16266] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 88.090411][T16266] EXT4-fs (loop1): 1 truncate cleaned up [ 88.235922][T16289] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2085'. [ 88.324809][T16297] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2088'. [ 88.367995][T16303] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2091'. [ 88.407234][T16309] netlink: 'syz.0.2095': attribute type 1 has an invalid length. [ 88.553283][T16332] bridge_slave_0: left allmulticast mode [ 88.559729][T16332] bridge_slave_0: left promiscuous mode [ 88.565593][T16332] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.575089][T16332] bridge_slave_1: left allmulticast mode [ 88.581245][T16332] bridge_slave_1: left promiscuous mode [ 88.587814][T16332] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.599836][T16332] .`: (slave bond_slave_0): Releasing backup interface [ 88.611261][T16332] .`: (slave bond_slave_1): Releasing backup interface [ 88.625031][T16332] team0: Port device team_slave_0 removed [ 88.636060][T16332] team0: Port device team_slave_1 removed [ 88.644229][T16332] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 88.652525][T16332] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 88.662954][T16332] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 88.670856][T16332] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 88.684856][T16332] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 88.979058][T16374] loop0: detected capacity change from 0 to 512 [ 89.002044][T16374] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 89.047051][T16374] EXT4-fs (loop0): 1 truncate cleaned up [ 89.096729][ T4372] tipc: Node number set to 2886997007 [ 89.120378][T16388] hub 2-0:1.0: USB hub found [ 89.131885][T16388] hub 2-0:1.0: 8 ports detected [ 89.168636][T16399] loop5: detected capacity change from 0 to 512 [ 89.195751][T16399] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 89.230917][T16399] EXT4-fs (loop5): 1 truncate cleaned up [ 89.355763][T16430] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 89.364282][T16430] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 89.405192][T16435] loop4: detected capacity change from 0 to 512 [ 89.413306][T16435] ext4: Unknown parameter 'pcr' [ 89.506358][T16447] loop1: detected capacity change from 0 to 512 [ 89.513571][T16447] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22 [ 89.566604][ T29] kauditd_printk_skb: 225 callbacks suppressed [ 89.566619][ T29] audit: type=1326 audit(1762428066.432:2668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16457 comm="syz.0.2161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 89.573650][T16454] bridge_slave_0: left allmulticast mode [ 89.602853][T16454] bridge_slave_0: left promiscuous mode [ 89.608675][T16454] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.618515][ T29] audit: type=1326 audit(1762428066.462:2669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16457 comm="syz.0.2161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 89.642480][ T29] audit: type=1326 audit(1762428066.462:2670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16457 comm="syz.0.2161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 89.666464][ T29] audit: type=1326 audit(1762428066.462:2671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16457 comm="syz.0.2161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 89.690280][ T29] audit: type=1326 audit(1762428066.462:2672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16457 comm="syz.0.2161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 89.713934][ T29] audit: type=1326 audit(1762428066.462:2673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16457 comm="syz.0.2161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 89.737632][ T29] audit: type=1326 audit(1762428066.462:2674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16457 comm="syz.0.2161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 89.762586][ T29] audit: type=1326 audit(1762428066.462:2675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16457 comm="syz.0.2161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 89.796827][ T29] audit: type=1326 audit(1762428066.462:2676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16457 comm="syz.0.2161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 89.821799][ T29] audit: type=1326 audit(1762428066.482:2677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16457 comm="syz.0.2161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 89.824998][T16454] bridge_slave_1: left allmulticast mode [ 89.851814][T16454] bridge_slave_1: left promiscuous mode [ 89.857638][T16454] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.868168][T16454] bond0: (slave bond_slave_0): Releasing backup interface [ 89.877895][T16454] bond0: (slave bond_slave_1): Releasing backup interface [ 89.890231][T16454] team0: Port device team_slave_0 removed [ 89.899486][T16454] team0: Port device team_slave_1 removed [ 89.906985][T16454] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 89.914667][T16454] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 89.923067][T16454] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 89.930537][T16454] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 89.941084][T16454] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 90.050897][T16480] loop1: detected capacity change from 0 to 512 [ 90.059205][T16480] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.2170: inode has both inline data and extents flags [ 90.072899][T16480] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.2170: couldn't read orphan inode 15 (err -117) [ 90.111684][T16480] Invalid ELF header magic: != ELF [ 90.175266][T16494] bridge_slave_0: left allmulticast mode [ 90.181184][T16494] bridge_slave_0: left promiscuous mode [ 90.186981][T16494] bridge0: port 1(bridge_slave_0) entered disabled state [ 90.196810][T16494] bridge_slave_1: left allmulticast mode [ 90.202854][T16494] bridge_slave_1: left promiscuous mode [ 90.208636][T16494] bridge0: port 2(bridge_slave_1) entered disabled state [ 90.225788][T16494] bond0: (slave bond_slave_0): Releasing backup interface [ 90.238285][T16494] bond0: (slave bond_slave_1): Releasing backup interface [ 90.259294][T16494] team0: Port device team_slave_0 removed [ 90.268806][T16494] team0: Port device team_slave_1 removed [ 90.275891][T16494] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 90.283331][T16494] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 90.292335][T16494] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 90.299830][T16494] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 90.312673][T16494] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 90.392508][T16505] loop1: detected capacity change from 0 to 8192 [ 90.575089][T16524] SELinux: failed to load policy [ 90.583504][T16530] loop0: detected capacity change from 0 to 512 [ 90.601116][T16530] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 90.631978][ T4372] hid_parser_main: 20 callbacks suppressed [ 90.632004][ T4372] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 90.649473][T16537] __nla_validate_parse: 7 callbacks suppressed [ 90.649493][T16537] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2195'. [ 90.666276][T16530] EXT4-fs (loop0): 1 truncate cleaned up [ 90.695472][ T4372] hid-generic 0000:0000:0000.0004: hidraw0: HID v0.00 Device [syz1] on syz0 [ 90.805846][T16545] vhci_hcd: default hub control req: 040b v007f i0001 l0 [ 90.816327][T16550] loop0: detected capacity change from 0 to 128 [ 90.826201][T16550] ext4 filesystem being mounted at /407/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 90.888483][T16557] vhci_hcd: invalid port number 23 [ 91.010218][T16572] lo speed is unknown, defaulting to 1000 [ 91.167031][T16591] netlink: 'syz.5.2217': attribute type 7 has an invalid length. [ 91.270320][T16599] loop5: detected capacity change from 0 to 1024 [ 91.283278][T16599] EXT4-fs: Ignoring removed orlov option [ 91.304683][T16599] EXT4-fs (loop5): shut down requested (0) [ 91.304962][T16603] lo speed is unknown, defaulting to 1000 [ 91.388126][T16611] smc: net device bond0 applied user defined pnetid SYZ0 [ 91.401155][T16611] smc: net device bond0 erased user defined pnetid SYZ0 [ 91.617206][T16622] SELinux: policydb version 0 does not match my version range 15-35 [ 91.625769][T16622] SELinux: failed to load policy [ 91.685475][T16626] loop5: detected capacity change from 0 to 1024 [ 91.816410][T16641] loop4: detected capacity change from 0 to 512 [ 91.856497][T16641] ext4 filesystem being mounted at /450/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 92.154791][T16669] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22 [ 92.163179][T16669] netdevsim netdevsim2: Direct firmware load for . failed with error -22 [ 92.697300][T16689] hub 9-0:1.0: USB hub found [ 92.702203][T16689] hub 9-0:1.0: 8 ports detected [ 92.725490][T16687] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 92.734188][T16687] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 93.033576][T16699] hub 5-0:1.0: USB hub found [ 93.039616][T16699] hub 5-0:1.0: 8 ports detected [ 93.064732][T16696] bridge_slave_0: left allmulticast mode [ 93.071634][T16696] bridge_slave_0: left promiscuous mode [ 93.078733][T16696] bridge0: port 1(bridge_slave_0) entered disabled state [ 93.096504][T16696] bridge_slave_1: left allmulticast mode [ 93.103294][T16696] bridge_slave_1: left promiscuous mode [ 93.110407][T16696] bridge0: port 2(bridge_slave_1) entered disabled state [ 93.124864][T16696] .`: (slave bond_slave_0): Releasing backup interface [ 93.148146][T16696] .`: (slave bond_slave_1): Releasing backup interface [ 93.188670][T16696] team0: Port device team_slave_0 removed [ 93.225190][T16696] team0: Port device team_slave_1 removed [ 93.249294][T16696] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 93.256877][T16696] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 93.299424][T16706] loop4: detected capacity change from 0 to 512 [ 93.321795][ C0] hrtimer: interrupt took 34142 ns [ 93.335237][T16696] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 93.342805][T16696] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 93.397518][T16706] ext4 filesystem being mounted at /456/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 93.478844][T16696] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 93.690472][T16703] Set syz1 is full, maxelem 65536 reached [ 93.740949][T16729] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 93.797515][T16731] loop5: detected capacity change from 0 to 128 [ 93.820470][T16731] syz.5.2275: attempt to access beyond end of device [ 93.820470][T16731] loop5: rw=2049, sector=145, nr_sectors = 8 limit=128 [ 93.835416][T16731] syz.5.2275: attempt to access beyond end of device [ 93.835416][T16731] loop5: rw=2049, sector=161, nr_sectors = 8 limit=128 [ 93.851174][T16731] syz.5.2275: attempt to access beyond end of device [ 93.851174][T16731] loop5: rw=2049, sector=177, nr_sectors = 24 limit=128 [ 93.869503][T16731] syz.5.2275: attempt to access beyond end of device [ 93.869503][T16731] loop5: rw=2049, sector=209, nr_sectors = 8 limit=128 [ 93.887439][T16731] syz.5.2275: attempt to access beyond end of device [ 93.887439][T16731] loop5: rw=2049, sector=225, nr_sectors = 8 limit=128 [ 93.903513][T16731] syz.5.2275: attempt to access beyond end of device [ 93.903513][T16731] loop5: rw=2049, sector=241, nr_sectors = 8 limit=128 [ 93.923464][T16731] syz.5.2275: attempt to access beyond end of device [ 93.923464][T16731] loop5: rw=2049, sector=257, nr_sectors = 8 limit=128 [ 93.971814][T16731] syz.5.2275: attempt to access beyond end of device [ 93.971814][T16731] loop5: rw=2049, sector=273, nr_sectors = 8 limit=128 [ 93.996078][T16740] loop0: detected capacity change from 0 to 512 [ 94.010147][T16746] loop2: detected capacity change from 0 to 256 [ 94.017745][T16731] syz.5.2275: attempt to access beyond end of device [ 94.017745][T16731] loop5: rw=2049, sector=289, nr_sectors = 9 limit=128 [ 94.040092][T16740] EXT4-fs (loop0): orphan cleanup on readonly fs [ 94.064195][T16740] EXT4-fs error (device loop0): ext4_orphan_get:1418: comm syz.0.2288: bad orphan inode 13 [ 94.079891][T16740] ext4_test_bit(bit=12, block=18) = 1 [ 94.085722][T16740] is_bad_inode(inode)=0 [ 94.089935][T16740] NEXT_ORPHAN(inode)=2130706432 [ 94.095573][T16740] max_ino=32 [ 94.099092][T16740] i_nlink=1 [ 94.135475][T16752] vhci_hcd: default hub control req: 040b v007f i0001 l0 [ 94.167390][T16759] loop1: detected capacity change from 0 to 512 [ 94.187570][T16759] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 94.198108][T16754] SELinux: failed to load policy [ 94.232189][T16759] EXT4-fs (loop1): 1 truncate cleaned up [ 94.307219][T16781] loop4: detected capacity change from 0 to 1024 [ 94.315149][T16780] loop1: detected capacity change from 0 to 512 [ 94.338352][T16785] bridge_slave_0: left allmulticast mode [ 94.344552][T16785] bridge_slave_0: left promiscuous mode [ 94.346090][T16780] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 94.350387][T16785] bridge0: port 1(bridge_slave_0) entered disabled state [ 94.359754][T16780] EXT4-fs (loop1): orphan cleanup on readonly fs [ 94.374583][T16785] bridge_slave_1: left allmulticast mode [ 94.380452][T16785] bridge_slave_1: left promiscuous mode [ 94.386607][T16785] bridge0: port 2(bridge_slave_1) entered disabled state [ 94.386995][T16780] EXT4-fs error (device loop1): ext4_do_update_inode:5632: inode #16: comm syz.1.2296: corrupted inode contents [ 94.407044][T16780] EXT4-fs (loop1): Remounting filesystem read-only [ 94.414227][T16780] EXT4-fs (loop1): 1 truncate cleaned up [ 94.422161][T16785] bond0: (slave bond_slave_0): Releasing backup interface [ 94.423253][ T3854] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 94.440599][ T3854] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 94.451660][ T3854] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started [ 94.486109][T16797] loop5: detected capacity change from 0 to 512 [ 94.496832][T16785] bond0: (slave bond_slave_1): Releasing backup interface [ 94.505941][T16797] EXT4-fs error (device loop5): ext4_xattr_inode_iget:441: inode #18: comm syz.5.2301: iget: bad extra_isize 90 (inode size 256) [ 94.511635][T16799] loop4: detected capacity change from 0 to 512 [ 94.527037][T16797] EXT4-fs error (device loop5): ext4_xattr_inode_iget:446: comm syz.5.2301: error while reading EA inode 18 err=-117 [ 94.528330][T16799] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 94.544025][T16797] EXT4-fs error (device loop5): ext4_xattr_inode_iget:441: inode #18: comm syz.5.2301: iget: bad extra_isize 90 (inode size 256) [ 94.551640][T16799] EXT4-fs error (device loop4): ext4_init_orphan_info:618: comm syz.4.2300: orphan file block 0: bad magic [ 94.575340][T16799] EXT4-fs (loop4): mount failed [ 94.576481][T16785] team0: Port device team_slave_0 removed [ 94.584676][T16797] EXT4-fs error (device loop5): ext4_xattr_inode_iget:446: comm syz.5.2301: error while reading EA inode 18 err=-117 [ 94.602160][T16785] team0: Port device team_slave_1 removed [ 94.608698][T16797] EXT4-fs (loop5): 1 orphan inode deleted [ 94.617340][T16785] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 94.624977][T16785] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 94.634410][T16785] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 94.643402][T16785] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 94.651751][T16803] vhci_hcd: default hub control req: 040b v007f i0001 l0 [ 94.661677][T16785] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 94.678130][ T4372] lo speed is unknown, defaulting to 1000 [ 94.766346][T16813] netlink: 176 bytes leftover after parsing attributes in process `syz.0.2308'. [ 94.816215][T16823] loop2: detected capacity change from 0 to 128 [ 94.845235][T16825] loop4: detected capacity change from 0 to 128 [ 94.861524][T16827] vhci_hcd: USB_PORT_FEAT_LINK_STATE req not supported for USB 2.0 roothub [ 94.873997][ T29] kauditd_printk_skb: 111 callbacks suppressed [ 94.874016][ T29] audit: type=1400 audit(1762428071.744:2783): avc: denied { read append } for pid=16828 comm="syz.1.2315" name="cgroup.procs" dev="cgroup" ino=200 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object" [ 94.907238][ T29] audit: type=1400 audit(1762428071.744:2784): avc: denied { open } for pid=16828 comm="syz.1.2315" path="/syzcgroup/cpu/syz1/cgroup.procs" dev="cgroup" ino=200 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object" [ 94.943159][ T29] audit: type=1326 audit(1762428071.744:2785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16830 comm="syz.0.2317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 94.967140][ T29] audit: type=1326 audit(1762428071.744:2786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16830 comm="syz.0.2317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 94.991191][ T29] audit: type=1326 audit(1762428071.744:2787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16830 comm="syz.0.2317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 95.015825][ T29] audit: type=1326 audit(1762428071.744:2788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16830 comm="syz.0.2317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 95.020194][T16835] loop5: detected capacity change from 0 to 512 [ 95.040038][ T29] audit: type=1326 audit(1762428071.744:2789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16830 comm="syz.0.2317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 95.070526][ T29] audit: type=1326 audit(1762428071.744:2790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16830 comm="syz.0.2317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 95.094202][ T29] audit: type=1326 audit(1762428071.744:2791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16830 comm="syz.0.2317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 95.118601][ T29] audit: type=1326 audit(1762428071.744:2792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16830 comm="syz.0.2317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 95.164472][T16835] ext4 filesystem being mounted at /321/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 95.195427][T16846] loop2: detected capacity change from 0 to 128 [ 95.200621][T16839] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 95.279658][T16850] loop1: detected capacity change from 0 to 1024 [ 95.288301][T16852] loop0: detected capacity change from 0 to 512 [ 95.330742][T16852] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 95.378800][T16852] EXT4-fs (loop0): 1 truncate cleaned up [ 95.638769][T16884] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2337'. [ 95.822329][T16891] random: crng reseeded on system resumption [ 95.890897][T16895] loop0: detected capacity change from 0 to 1024 [ 95.908911][ T4372] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x4 [ 95.917082][ T4372] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x2 [ 95.926396][T16895] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 95.937529][T16895] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 95.947933][ T4372] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x3 [ 95.971190][ T4372] hid-generic 0000:3000000:0000.0005: hidraw0: HID v0.00 Device [sy] on syz0 [ 95.977068][T16903] loop2: detected capacity change from 0 to 512 [ 95.981535][T16895] JBD2: no valid journal superblock found [ 95.993281][T16895] EXT4-fs (loop0): Could not load journal inode [ 96.003300][T16903] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 96.019054][T16895] SELinux: security_context_str_to_sid (-Xܘ7.H\ %u@) failed with errno=-22 [ 96.033588][T16903] EXT4-fs (loop2): 1 truncate cleaned up [ 96.147749][T16925] loop1: detected capacity change from 0 to 128 [ 96.192805][T16931] loop2: detected capacity change from 0 to 4096 [ 96.206565][T16931] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 96.264644][T16945] loop4: detected capacity change from 0 to 128 [ 96.275521][T16945] FAT-fs (loop4): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1) [ 96.286253][T16945] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 96.294365][T16945] FAT-fs (loop4): Filesystem has been set read-only [ 96.304175][T16945] syz.4.2366: attempt to access beyond end of device [ 96.304175][T16945] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 96.337429][T16948] tipc: Started in network mode [ 96.342455][T16948] tipc: Node identity ac14140f, cluster identity 4711 [ 96.349572][T16948] tipc: New replicast peer: 255.255.255.83 [ 96.355783][T16948] tipc: Enabled bearer , priority 10 [ 96.415352][T16966] geneve2: entered promiscuous mode [ 96.420647][T16966] geneve2: entered allmulticast mode [ 96.516816][T16977] loop2: detected capacity change from 0 to 1024 [ 96.524433][T16977] EXT4-fs: Ignoring removed nobh option [ 96.530093][T16977] EXT4-fs: Ignoring removed bh option [ 96.551196][T16972] loop1: detected capacity change from 0 to 4096 [ 96.562812][T16972] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 96.582455][T16977] EXT4-fs error (device loop2): mb_free_blocks:2017: group 0, inode 15: block 225:freeing already freed block (bit 14); block bitmap corrupt. [ 96.619212][T16986] loop4: detected capacity change from 0 to 512 [ 96.636073][T16986] ext4 filesystem being mounted at /477/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 96.682086][T16977] EXT4-fs (loop2): Remounting filesystem read-only [ 96.731053][T16999] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2386'. [ 96.744307][T17006] loop0: detected capacity change from 0 to 512 [ 96.781242][ T23] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 96.789063][ T23] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 96.796555][ T23] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 96.804123][ T23] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 96.818798][ T23] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 96.820087][T17006] ext4 filesystem being mounted at /447/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 96.826464][ T23] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 96.826497][ T23] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 96.852416][ T23] hid-generic 0000:0000:0000.0006: hidraw0: HID vfffff0.01 Device [syz0] on syz1 [ 96.859726][T17015] loop1: detected capacity change from 0 to 2048 [ 96.886263][T17015] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 96.904997][T17015] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 30 with max blocks 1 with error 28 [ 96.917406][T17015] EXT4-fs (loop1): This should not happen!! Data will be lost [ 96.917406][T17015] [ 96.927234][T17015] EXT4-fs (loop1): Total free blocks count 0 [ 96.933301][T17015] EXT4-fs (loop1): Free/Dirty block details [ 96.938492][T17031] loop2: detected capacity change from 0 to 128 [ 96.939228][T17015] EXT4-fs (loop1): free_blocks=2415919104 [ 96.948187][T17031] ext4 filesystem being mounted at /507/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 96.951526][T17015] EXT4-fs (loop1): dirty_blocks=32 [ 96.951546][T17015] EXT4-fs (loop1): Block reservation details [ 96.994738][T17015] EXT4-fs (loop1): i_reserved_data_blocks=2 [ 97.041243][ T3854] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28 [ 97.053617][ T3854] EXT4-fs (loop1): This should not happen!! Data will be lost [ 97.053617][ T3854] [ 97.133208][T17044] loop0: detected capacity change from 0 to 512 [ 97.154415][T17044] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 97.162773][T17040] loop1: detected capacity change from 0 to 8192 [ 97.178620][T17044] EXT4-fs (loop0): orphan cleanup on readonly fs [ 97.190207][T17044] EXT4-fs error (device loop0): ext4_do_update_inode:5632: inode #16: comm syz.0.2398: corrupted inode contents [ 97.203965][T17057] loop5: detected capacity change from 0 to 512 [ 97.205216][T17044] EXT4-fs (loop0): Remounting filesystem read-only [ 97.217179][T17057] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 97.228129][T17044] EXT4-fs (loop0): 1 truncate cleaned up [ 97.229274][T17057] EXT4-fs (loop5): 1 truncate cleaned up [ 97.234487][ T3830] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 97.250158][ T3830] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 97.260962][ T3830] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started [ 97.285218][ T3854] Bluetooth: hci0: Frame reassembly failed (-84) [ 97.344699][T17077] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2406'. [ 97.354872][T17077] IPVS: Error connecting to the multicast addr [ 97.431549][T17093] loop5: detected capacity change from 0 to 128 [ 97.458242][T17093] ext4 filesystem being mounted at /347/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 97.490555][ T3394] tipc: Node number set to 2886997007 [ 97.502493][T17093] EXT4-fs error (device loop5): dx_make_map:1296: inode #2: block 63: comm syz.5.2413: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1 [ 97.525525][T17093] EXT4-fs error (device loop5) in do_split:2029: Corrupt filesystem [ 97.541320][ T3830] Bluetooth: hci1: Frame reassembly failed (-84) [ 97.573514][T17118] loop4: detected capacity change from 0 to 512 [ 97.595807][T17118] ext4 filesystem being mounted at /481/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 97.654098][T17127] loop5: detected capacity change from 0 to 128 [ 97.718226][T17138] loop5: detected capacity change from 0 to 128 [ 97.727705][T17138] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100) [ 97.735847][T17138] FAT-fs (loop5): Filesystem has been set read-only [ 97.742966][T17138] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100) [ 97.749205][T17141] loop4: detected capacity change from 0 to 164 [ 97.750844][T17138] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100) [ 97.766613][T17141] ISOFS: unable to read i-node block [ 97.772233][T17141] isofs_fill_super: get root inode failed [ 97.798712][T17146] loop4: detected capacity change from 0 to 128 [ 97.809039][T17146] FAT-fs (loop4): Directory bread(block 32) failed [ 97.815858][T17146] FAT-fs (loop4): Directory bread(block 33) failed [ 97.822688][T17146] FAT-fs (loop4): Directory bread(block 34) failed [ 97.829254][T17146] FAT-fs (loop4): Directory bread(block 35) failed [ 97.836122][T17146] FAT-fs (loop4): Directory bread(block 36) failed [ 97.842872][T17146] FAT-fs (loop4): Directory bread(block 37) failed [ 97.849516][T17146] FAT-fs (loop4): Directory bread(block 38) failed [ 97.857754][T17146] FAT-fs (loop4): Directory bread(block 39) failed [ 97.865059][T17146] FAT-fs (loop4): Directory bread(block 40) failed [ 97.872541][T17146] FAT-fs (loop4): Directory bread(block 41) failed [ 97.906798][T17146] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 196) [ 97.915062][T17146] FAT-fs (loop4): Filesystem has been set read-only [ 98.110082][T17161] loop2: detected capacity change from 0 to 1024 [ 98.118369][T17161] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 98.130053][T17161] JBD2: no valid journal superblock found [ 98.137145][T17161] EXT4-fs (loop2): Could not load journal inode [ 98.173542][T17166] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 98.240692][T17172] loop2: detected capacity change from 0 to 1024 [ 98.248234][T17172] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 98.260021][T17172] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 98.271962][T17172] JBD2: no valid journal superblock found [ 98.278934][T17172] EXT4-fs (loop2): Could not load journal inode [ 98.296409][T17172] SELinux: security_context_str_to_sid (-Xܘ7.H\ %u@) failed with errno=-22 [ 98.329949][T17177] loop2: detected capacity change from 0 to 128 [ 98.440733][T17185] SELinux: failed to load policy [ 98.612432][T17197] loop2: detected capacity change from 0 to 1024 [ 98.621651][T17197] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 98.636903][T17197] JBD2: no valid journal superblock found [ 98.642889][T17197] EXT4-fs (loop2): Could not load journal inode [ 98.698262][T17206] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2446'. [ 98.760874][T17208] netlink: 'syz.2.2447': attribute type 1 has an invalid length. [ 98.872497][T17222] loop5: detected capacity change from 0 to 512 [ 98.884859][T17222] EXT4-fs: Ignoring removed orlov option [ 98.907661][T17222] ext4 filesystem being mounted at /356/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 99.020484][T17249] loop2: detected capacity change from 0 to 512 [ 99.028461][T17249] EXT4-fs: Ignoring removed i_version option [ 99.034642][T17249] EXT4-fs: Ignoring removed bh option [ 99.062343][T17249] ext4 filesystem being mounted at /531/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 99.157504][T17264] loop2: detected capacity change from 0 to 512 [ 99.165616][T17264] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 99.177605][T17264] EXT4-fs (loop2): 1 truncate cleaned up [ 99.292298][T17258] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 99.301619][T17258] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 99.310698][T17112] Bluetooth: hci0: command 0x1003 tx timeout [ 99.310777][ T3881] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 99.356832][T17287] loop1: detected capacity change from 0 to 1024 [ 99.387011][T17287] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 99.398219][T17287] JBD2: no valid journal superblock found [ 99.404379][T17287] EXT4-fs (loop1): Could not load journal inode [ 99.411278][T17291] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6) [ 99.417843][T17291] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 99.425438][T17291] vhci_hcd vhci_hcd.0: Device attached [ 99.439192][T17291] loop4: detected capacity change from 0 to 1024 [ 99.454990][T17291] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (46251!=20869) [ 99.470970][T17291] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a040e11d, mo2=0002] [ 99.484651][T17291] EXT4-fs (loop4): failed to initialize system zone (-117) [ 99.493301][T17291] EXT4-fs (loop4): mount failed [ 99.514378][T17305] loop1: detected capacity change from 0 to 128 [ 99.521727][T17293] vhci_hcd: connection closed [ 99.522368][ T3830] vhci_hcd: stop threads [ 99.531533][ T3830] vhci_hcd: release socket [ 99.536055][ T3830] vhci_hcd: disconnect device [ 99.543758][T17305] ext4 filesystem being mounted at /435/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 99.550888][ T3918] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 99.580279][ T3881] Bluetooth: hci1: command 0x1003 tx timeout [ 99.932215][ T29] kauditd_printk_skb: 177 callbacks suppressed [ 99.932234][ T29] audit: type=1400 audit(1762428076.807:2964): avc: denied { relabelfrom } for pid=17353 comm="syz.1.2494" name="" dev="pipefs" ino=23652 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 100.040098][ T29] audit: type=1400 audit(1762428076.907:2965): avc: denied { ioctl } for pid=17357 comm="syz.1.2497" path="socket:[22828]" dev="sockfs" ino=22828 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 100.080470][ T29] audit: type=1400 audit(1762428076.937:2966): avc: denied { read write } for pid=17359 comm="syz.5.2498" name="rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1 [ 100.105265][ T29] audit: type=1400 audit(1762428076.937:2967): avc: denied { open } for pid=17359 comm="syz.5.2498" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1 [ 100.136260][T17356] loop2: detected capacity change from 0 to 512 [ 100.154761][T17356] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 100.168269][T17375] loop5: detected capacity change from 0 to 512 [ 100.177852][T17375] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 100.189462][T17356] EXT4-fs (loop2): 1 truncate cleaned up [ 100.196241][T17356] EXT4-fs mount: 82 callbacks suppressed [ 100.196257][T17356] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 100.223368][T17375] EXT4-fs (loop5): invalid journal inode [ 100.229093][T17375] EXT4-fs (loop5): can't get journal size [ 100.237300][ T29] audit: type=1400 audit(1762428077.097:2968): avc: denied { rename } for pid=17355 comm="syz.2.2496" name="file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 100.261616][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.272210][T17375] EXT4-fs (loop5): 1 truncate cleaned up [ 100.278443][T17375] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 100.294614][T17375] EXT4-fs warning (device loop5): ext4_group_add:1736: No reserved GDT blocks, can't resize [ 100.324440][ T7691] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.356661][ T29] audit: type=1400 audit(1762428077.227:2969): avc: denied { write } for pid=17387 comm="syz.1.2508" name="ppp" dev="devtmpfs" ino=139 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 100.390549][T17392] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2509'. [ 100.391572][ T29] audit: type=1326 audit(1762428077.267:2970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17393 comm="syz.0.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 100.423454][ T29] audit: type=1326 audit(1762428077.267:2971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17393 comm="syz.0.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 100.452278][ T29] audit: type=1326 audit(1762428077.317:2972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17393 comm="syz.0.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 100.476654][ T29] audit: type=1326 audit(1762428077.317:2973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17393 comm="syz.0.2510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1a379df6c9 code=0x7ffc0000 [ 100.495174][T17403] loop2: detected capacity change from 0 to 512 [ 100.508399][T17400] loop5: detected capacity change from 0 to 128 [ 100.523864][T17403] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 100.535467][T17400] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 100.565758][T17400] ext4 filesystem being mounted at /366/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 100.577466][T17403] EXT4-fs (loop2): 1 truncate cleaned up [ 100.583919][T17403] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 100.621314][ T7691] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 100.644710][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.671977][T17420] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2520'. [ 100.689441][T17431] bridge0: entered promiscuous mode [ 100.696234][T17431] macsec2: entered promiscuous mode [ 100.703958][T17431] bridge0: port 1(macsec2) entered blocking state [ 100.710510][T17431] bridge0: port 1(macsec2) entered disabled state [ 100.722396][T17431] macsec2: entered allmulticast mode [ 100.727866][T17431] bridge0: entered allmulticast mode [ 100.735148][T17431] macsec2: left allmulticast mode [ 100.740990][T17431] bridge0: left allmulticast mode [ 100.749596][T17431] bridge0: left promiscuous mode [ 100.758277][T17420] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2520'. [ 100.852325][T17453] loop1: detected capacity change from 0 to 512 [ 100.859663][T17453] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 100.873428][T17453] EXT4-fs (loop1): 1 truncate cleaned up [ 100.884170][T17453] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 100.898045][T17455] loop2: detected capacity change from 0 to 512 [ 100.901570][T17461] ip6gretap0: entered promiscuous mode [ 100.914040][T17461] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2534'. [ 100.927030][T17455] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 100.935248][T17455] EXT4-fs (loop2): orphan cleanup on readonly fs [ 100.949943][T17455] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #16: comm syz.2.2533: corrupted inode contents [ 100.963460][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.964032][T17455] EXT4-fs (loop2): Remounting filesystem read-only [ 100.979956][T17455] EXT4-fs (loop2): 1 truncate cleaned up [ 100.995886][ T3854] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 101.006611][ T3854] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 101.038931][ T3854] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started [ 101.071542][T17455] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 101.094786][T17480] loop1: detected capacity change from 0 to 128 [ 101.116139][T17484] loop5: detected capacity change from 0 to 512 [ 101.128249][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.131191][T17484] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 101.168572][T17484] EXT4-fs (loop5): 1 truncate cleaned up [ 101.190178][T17484] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 101.207335][T17493] loop2: detected capacity change from 0 to 512 [ 101.223808][T17493] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 101.279940][ T7691] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.291287][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.326561][T17505] loop5: detected capacity change from 0 to 128 [ 101.333905][ T3822] bio_check_eod: 25462 callbacks suppressed [ 101.333924][ T3822] kworker/u8:45: attempt to access beyond end of device [ 101.333924][ T3822] loop1: rw=1, sector=145, nr_sectors = 8 limit=128 [ 101.352642][T17510] loop2: detected capacity change from 0 to 512 [ 101.359914][ T3822] kworker/u8:45: attempt to access beyond end of device [ 101.359914][ T3822] loop1: rw=1, sector=161, nr_sectors = 8 limit=128 [ 101.368412][T17510] EXT4-fs: Ignoring removed i_version option [ 101.374731][ T3822] kworker/u8:45: attempt to access beyond end of device [ 101.374731][ T3822] loop1: rw=1, sector=177, nr_sectors = 8 limit=128 [ 101.379542][T17510] EXT4-fs: Ignoring removed bh option [ 101.393223][ T3822] kworker/u8:45: attempt to access beyond end of device [ 101.393223][ T3822] loop1: rw=1, sector=193, nr_sectors = 8 limit=128 [ 101.412735][ T3822] kworker/u8:45: attempt to access beyond end of device [ 101.412735][ T3822] loop1: rw=1, sector=209, nr_sectors = 8 limit=128 [ 101.427060][ T3822] kworker/u8:45: attempt to access beyond end of device [ 101.427060][ T3822] loop1: rw=1, sector=225, nr_sectors = 8 limit=128 [ 101.440714][ T3822] kworker/u8:45: attempt to access beyond end of device [ 101.440714][ T3822] loop1: rw=1, sector=241, nr_sectors = 8 limit=128 [ 101.456276][ T3822] kworker/u8:45: attempt to access beyond end of device [ 101.456276][ T3822] loop1: rw=1, sector=257, nr_sectors = 8 limit=128 [ 101.470233][ T3822] kworker/u8:45: attempt to access beyond end of device [ 101.470233][ T3822] loop1: rw=1, sector=273, nr_sectors = 8 limit=128 [ 101.483923][ T3822] kworker/u8:45: attempt to access beyond end of device [ 101.483923][ T3822] loop1: rw=1, sector=289, nr_sectors = 8 limit=128 [ 101.486306][T17510] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 101.525794][T17510] ext4 filesystem being mounted at /549/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 101.578650][T17534] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6) [ 101.585221][T17534] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 101.593105][T17534] vhci_hcd vhci_hcd.0: Device attached [ 101.601283][T17537] vhci_hcd: connection closed [ 101.601471][ T3822] vhci_hcd: stop threads [ 101.610801][ T3822] vhci_hcd: release socket [ 101.615786][ T3822] vhci_hcd: disconnect device [ 101.631761][T17542] sd 0:0:1:0: device reset [ 101.680788][ T4372] hid_parser_main: 20 callbacks suppressed [ 101.680811][ T4372] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 101.694356][ T4372] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 101.701899][ T4372] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 101.709320][ T4372] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 101.721379][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.730729][ T4372] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 101.738159][ T4372] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 101.745782][ T4372] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 101.753425][ T4372] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 101.761017][ T4372] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 101.768724][ T4372] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 101.790407][ T4372] hid-generic 0000:0000:0000.0007: hidraw0: HID v0.00 Device [syz0] on syz1 [ 101.844389][T17580] loop4: detected capacity change from 0 to 512 [ 101.855615][T17582] loop2: detected capacity change from 0 to 512 [ 101.864860][T17582] EXT4-fs warning (device loop2): ext4_xattr_inode_get:560: inode #11: comm syz.2.2571: EA inode hash validation failed [ 101.878110][T17582] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #15: comm syz.2.2571: corrupted inode contents [ 101.891471][T17582] EXT4-fs error (device loop2): ext4_dirty_inode:6517: inode #15: comm syz.2.2571: mark_inode_dirty error [ 101.894888][T17587] random: crng reseeded on system resumption [ 101.903165][T17582] EXT4-fs error (device loop2): ext4_do_update_inode:5632: inode #15: comm syz.2.2571: corrupted inode contents [ 101.921356][T17582] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2996: inode #15: comm syz.2.2571: mark_inode_dirty error [ 101.933823][T17582] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2999: inode #15: comm syz.2.2571: mark inode dirty (error -117) [ 101.944384][T17580] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 101.966076][T17582] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117) [ 101.976938][T17582] EXT4-fs (loop2): 1 orphan inode deleted [ 101.983444][T17582] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 102.015256][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.044506][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.066644][T17603] loop4: detected capacity change from 0 to 128 [ 102.100470][T17614] can0: slcan on ptm0. [ 102.177610][T17614] can0 (unregistered): slcan off ptm0. [ 102.226688][T17646] netlink: 51 bytes leftover after parsing attributes in process `syz.4.2588'. [ 102.247562][T17648] loop5: detected capacity change from 0 to 2048 [ 102.345701][T17665] PF_CAN: dropped non conform CAN FD skbuff: dev type 65534, len 64993 [ 102.420421][T17664] loop5: detected capacity change from 0 to 8192 [ 102.449863][T17664] loop5: p1 p2 p3 p4 [ 102.459152][T17664] loop5: p3 start 331777 is beyond EOD, truncated [ 102.465649][T17664] loop5: p4 size 262144 extends beyond EOD, truncated [ 102.481796][T17675] loop4: detected capacity change from 0 to 8192 [ 102.491700][T17688] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 102.491700][T17688] program syz.2.2603 not setting count and/or reply_len properly [ 102.638708][T17709] loop2: detected capacity change from 0 to 512 [ 102.651927][T17709] journal_path: Non-blockdev passed as './bus' [ 102.658226][T17709] EXT4-fs: error: could not find journal device path [ 102.689647][T17716] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 102.789572][T17722] loop5: detected capacity change from 0 to 2048 [ 102.837564][T17722] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 102.853138][T17722] ext4 filesystem being mounted at /390/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 102.936536][T17743] can0: slcan on ptm0. [ 102.963820][ T3854] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm kworker/u8:66: bg 0: block 345: padding at end of block bitmap is not set [ 102.979139][ T3854] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 64 with error 117 [ 102.991811][ T3854] EXT4-fs (loop5): This should not happen!! Data will be lost [ 102.991811][ T3854] [ 103.004039][ T7691] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.220609][T17766] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2625'. [ 103.221171][T17743] can0 (unregistered): slcan off ptm0. [ 103.238904][T17743] Falling back ldisc for ptm0. [ 103.243980][T17767] loop4: detected capacity change from 0 to 512 [ 103.248859][T17766] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2625'. [ 103.273933][T17767] EXT4-fs: Ignoring removed bh option [ 103.292884][T17767] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 103.305106][T17767] EXT4-fs (loop4): 1 truncate cleaned up [ 103.313500][T17767] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 103.342497][T17763] loop5: detected capacity change from 0 to 32768 [ 103.362393][T17767] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. [ 103.370938][T17781] loop1: detected capacity change from 0 to 512 [ 103.378330][T17781] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 103.387497][T17781] EXT4-fs (loop1): invalid journal inode [ 103.394013][T17781] EXT4-fs (loop1): can't get journal size [ 103.407140][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.423532][T17781] EXT4-fs (loop1): 1 truncate cleaned up [ 103.452392][T17781] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 103.468992][T17781] EXT4-fs warning (device loop1): verify_group_input:156: Last group not full [ 103.491321][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.514341][T17811] SELinux: policydb version 1500455552 does not match my version range 15-35 [ 103.524218][T17811] SELinux: failed to load policy [ 103.531699][T17806] netlink: 830 bytes leftover after parsing attributes in process `syz.5.2632'. [ 103.563523][T17815] loop5: detected capacity change from 0 to 128 [ 103.573151][T17815] FAT-fs (loop5): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1) [ 103.587859][T17815] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100) [ 103.595918][T17815] FAT-fs (loop5): Filesystem has been set read-only [ 103.596001][T17820] loop0: detected capacity change from 0 to 128 [ 103.611003][T17820] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 103.623655][T17820] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 103.690849][T17839] loop1: detected capacity change from 0 to 512 [ 103.726818][T17839] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2643: bg 0: block 248: padding at end of block bitmap is not set [ 103.792480][T17849] loop0: detected capacity change from 0 to 512 [ 103.811213][T17839] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.2643: Failed to acquire dquot type 1 [ 103.826632][T17849] EXT4-fs (loop0): orphan cleanup on readonly fs [ 103.839157][T17852] loop5: detected capacity change from 0 to 512 [ 103.855671][T17839] EXT4-fs (loop1): 1 truncate cleaned up [ 103.863454][T17852] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 103.877121][T17839] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 103.890317][T17839] ext4 filesystem being mounted at /472/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 103.912765][T17852] ext4 filesystem being mounted at /395/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 103.919030][T17849] EXT4-fs error (device loop0): ext4_xattr_inode_iget:446: comm syz.0.2644: error while reading EA inode 32 err=-116 [ 103.953867][T17849] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 103.968486][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.968693][T17849] EXT4-fs error (device loop0): ext4_xattr_inode_iget:446: comm syz.0.2644: error while reading EA inode 32 err=-116 [ 103.984835][ T3830] EXT4-fs error (device loop1): ext4_release_dquot:6981: comm kworker/u8:53: Failed to release dquot type 1 [ 104.042051][T17849] EXT4-fs (loop0): 1 orphan inode deleted [ 104.054099][T17867] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2647'. [ 104.064604][T17849] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 104.106319][T17871] loop4: detected capacity change from 0 to 1024 [ 104.115302][T17849] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.145932][T17871] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 104.176508][T17871] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=17871 comm=syz.4.2649 [ 104.191009][T17871] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=17871 comm=syz.4.2649 [ 104.213843][T17880] loop2: detected capacity change from 0 to 512 [ 104.250421][T17880] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 104.362655][T17830] Set syz1 is full, maxelem 65536 reached [ 104.372803][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.382486][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.430150][T17901] loop4: detected capacity change from 0 to 128 [ 104.462981][T17907] loop2: detected capacity change from 0 to 128 [ 104.489920][ T7691] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.506103][T17917] loop4: detected capacity change from 0 to 512 [ 104.535860][T17917] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2658: bg 0: block 248: padding at end of block bitmap is not set [ 104.552428][T17917] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.2658: Failed to acquire dquot type 1 [ 104.568501][T17931] loop2: detected capacity change from 0 to 512 [ 104.571349][T17917] EXT4-fs (loop4): 1 truncate cleaned up [ 104.581029][T17917] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 104.594205][T17917] ext4 filesystem being mounted at /523/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 104.621110][T17931] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 104.634856][T17931] ext4 filesystem being mounted at /576/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 104.646161][T17917] syz.4.2658 (17917) used greatest stack depth: 9120 bytes left [ 104.658877][T17939] loop1: detected capacity change from 0 to 512 [ 104.670426][ T3316] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.683413][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.695466][T17939] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 104.709332][T17939] ext4 filesystem being mounted at /478/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 104.721111][T17939] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.829428][T17972] loop4: detected capacity change from 0 to 512 [ 104.838492][T17972] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 104.851317][T17972] EXT4-fs (loop4): 1 truncate cleaned up [ 104.866182][T17972] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 104.871150][T17977] loop5: detected capacity change from 0 to 1024 [ 104.917571][T17983] PF_CAN: dropped non conform CAN XL skbuff: dev type 65534, len 64993 [ 104.928546][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.949473][T17977] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 104.985323][T17998] loop2: detected capacity change from 0 to 128 [ 105.018100][ T29] kauditd_printk_skb: 110 callbacks suppressed [ 105.018117][ T29] audit: type=1404 audit(1762428081.890:3073): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1 [ 105.068524][ T29] audit: type=1400 audit(1762428081.930:3074): avc: denied { read write } for pid=3313 comm="syz-executor" name="loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 105.069338][ T7691] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.092985][ T29] audit: type=1404 audit(1762428081.930:3075): enforcing=0 old_enforcing=1 auid=4294967295 ses=4294967295 enabled=1 old-enabled=1 lsm=selinux res=1 [ 105.117145][ T29] audit: type=1400 audit(1762428081.950:3076): avc: denied { unmount } for pid=7691 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 105.139544][ T29] audit: type=1400 audit(1762428082.010:3077): avc: denied { read write } for pid=3314 comm="syz-executor" name="loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 105.164090][ T29] audit: type=1400 audit(1762428082.010:3078): avc: denied { open } for pid=3314 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 105.188928][ T29] audit: type=1400 audit(1762428082.010:3079): avc: denied { ioctl } for pid=3314 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=101 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 105.259342][ T29] audit: type=1400 audit(1762428082.020:3080): avc: denied { map_create } for pid=18004 comm="syz.4.2686" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 105.278883][ T29] audit: type=1400 audit(1762428082.020:3081): avc: denied { map_read map_write } for pid=18004 comm="syz.4.2686" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 105.299018][ T29] audit: type=1400 audit(1762428082.020:3082): avc: denied { prog_load } for pid=18004 comm="syz.4.2686" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 105.327668][T18023] SELinux: failed to load policy [ 105.393705][ T3770] nci: nci_extract_activation_params_iso_dep: unsupported activation_rf_tech_and_mode 0x6 [ 105.426786][T18045] netlink: 'syz.4.2696': attribute type 12 has an invalid length. [ 105.446131][T18047] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2697'. [ 105.472750][T18052] loop4: detected capacity change from 0 to 512 [ 105.494759][T18052] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 105.508960][T18052] EXT4-fs (loop4): 1 truncate cleaned up [ 105.515226][T18052] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 105.528584][T18054] loop1: detected capacity change from 0 to 2048 [ 105.538408][T18052] EXT4-fs warning (device loop4): verify_group_input:137: Cannot add at group 1601862003 (only 1 groups) [ 105.573784][T18066] sd 0:0:1:0: device reset [ 105.587713][T18054] loop1: p2 p3 p7 [ 105.598941][T18071] loop5: detected capacity change from 0 to 128 [ 105.614604][T18071] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 105.619155][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.640109][T18071] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 105.728577][T18090] lo speed is unknown, defaulting to 1000 [ 105.805455][T18123] syzkaller1: entered promiscuous mode [ 105.811311][T18123] syzkaller1: entered allmulticast mode [ 106.282449][T18167] loop1: detected capacity change from 0 to 512 [ 106.310203][T18167] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 106.340967][T18167] ext4 filesystem being mounted at /492/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 106.416351][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 106.450430][ T3830] nci: nci_ntf_packet: unknown ntf opcode 0x104 [ 106.715202][T18211] loop4: detected capacity change from 0 to 1024 [ 106.728735][T18211] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 106.740960][T18211] ext4 filesystem being mounted at /545/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 106.769048][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 106.789691][T18218] netlink: 10 bytes leftover after parsing attributes in process `syz.4.2742'. [ 106.881306][T18224] loop0: detected capacity change from 0 to 512 [ 106.892561][T18228] loop4: detected capacity change from 0 to 1024 [ 106.901181][T18228] EXT4-fs: Ignoring removed nomblk_io_submit option [ 106.919031][T18224] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2745: bg 0: block 248: padding at end of block bitmap is not set [ 106.934874][T18224] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.2745: Failed to acquire dquot type 1 [ 106.936283][T18228] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 106.947898][T18224] EXT4-fs (loop0): 1 truncate cleaned up [ 106.964882][T18224] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 107.017701][T18224] ext4 filesystem being mounted at /507/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 107.087218][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.096974][ T3772] EXT4-fs error (device loop0): ext4_release_dquot:6981: comm kworker/u8:11: Failed to release dquot type 1 [ 107.149842][ C0] ================================================================== [ 107.157957][ C0] BUG: KCSAN: data-race in serial8250_do_startup / serial8250_handle_irq [ 107.166402][ C0] [ 107.168747][ C0] write to 0xffffffff88ebfe66 of 1 bytes by task 18241 on cpu 1: [ 107.176558][ C0] serial8250_do_startup+0x1491/0x1c10 [ 107.182039][ C0] serial8250_startup+0x41/0x50 [ 107.186913][ C0] uart_startup+0x468/0x8e0 [ 107.191430][ C0] uart_port_activate+0x67/0xc0 [ 107.196377][ C0] tty_port_open+0x196/0x270 [ 107.200981][ C0] uart_open+0x30/0x40 [ 107.205058][ C0] tty_open+0x3d4/0xaf0 [ 107.209239][ C0] chrdev_open+0x2eb/0x3a0 [ 107.213678][ C0] do_dentry_open+0x649/0xa20 [ 107.218457][ C0] vfs_open+0x37/0x1e0 [ 107.222523][ C0] path_openat+0x1c5e/0x2170 [ 107.227124][ C0] do_filp_open+0x109/0x230 [ 107.231722][ C0] do_sys_openat2+0xa6/0x110 [ 107.236316][ C0] __x64_sys_openat+0xf2/0x120 [ 107.241079][ C0] x64_sys_call+0x2eab/0x3000 [ 107.245761][ C0] do_syscall_64+0xd2/0x200 [ 107.250282][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 107.256203][ C0] [ 107.258543][ C0] read to 0xffffffff88ebfe66 of 1 bytes by interrupt on cpu 0: [ 107.266080][ C0] serial8250_handle_irq+0x3f9/0x660 [ 107.271375][ C0] serial8250_default_handle_irq+0x8e/0x170 [ 107.277399][ C0] serial8250_interrupt+0x63/0x130 [ 107.282545][ C0] __handle_irq_event_percpu+0x9d/0x540 [ 107.288209][ C0] handle_irq_event+0x64/0xf0 [ 107.292912][ C0] handle_edge_irq+0x154/0x470 [ 107.297689][ C0] __common_interrupt+0x60/0xb0 [ 107.302547][ C0] common_interrupt+0x3e/0x90 [ 107.307228][ C0] asm_common_interrupt+0x26/0x40 [ 107.312343][ C0] [ 107.314662][ C0] value changed: 0x00 -> 0x05 [ 107.319331][ C0] [ 107.321648][ C0] Reported by Kernel Concurrency Sanitizer on: [ 107.328058][ C0] CPU: 0 UID: 0 PID: 18227 Comm: syz.4.2746 Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 107.339526][ C0] Tainted: [W]=WARN [ 107.343513][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 107.353596][ C0] ================================================================== [ 107.460995][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.