last executing test programs: 615.591194ms ago: executing program 0 (id=3894): syz_mount_image$vfat(&(0x7f0000000140), &(0x7f00000005c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1010000, &(0x7f0000000180)={[{@utf8}, {@shortname_mixed}, {@shortname_win95}, {@iocharset={'iocharset', 0x3d, 'utf8'}}, {@utf8no}, {@utf8}, {@numtail}, {@iocharset={'iocharset', 0x3d, 'cp1255'}}, {@iocharset={'iocharset', 0x3d, 'ascii'}}, {@shortname_lower}, {@utf8no}, {@numtail}, {@fat=@dos1xfloppy}, {@shortname_lower}, {@shortname_lower}, {@fat=@check_strict}, {@fat=@time_offset={'time_offset', 0x3d, 0x385}}]}, 0x1, 0x369, &(0x7f0000000b40)="$eJzs3U1oY1UbAOA3vWnSDnxfuxMFIboTtExnpxtbpAOD3agEfxZicDoqSRVaLLaLaetCcSm41JU7BV24EJciKOLOhVtHkFFxobMbcPBIcnOTO0naTkeqFJ8Hmpyec97znvtDcnNJT59bivbF6bh07drVmJmpRHXpkaW4Xon5yKKwF+NqE+oAgNPhekrxe8rdYkjlhKcEAJyw3vv/CxHRiPn8E//rXx7WP3n3B4BTr//5f/awPjMHNbxyIlMCAE7Y2P3/e29qrvV+qsWv1dK3AgCA0+qJp595dHk14vFGYyZi/c2t5lYzHhq2L1+Kl6ITa3E25uJGRH6h0H2o9B7PX1hdOdtoNHbjp/loRsRUP7CZXyksZ734eizGXMz34/tXGyml7PwnqyuLjZ6I2Nvt5Y/1ylZzOs70839/JtaGFx7FIL2niAurK+ca/QGa60X8bsT+8L5Fd/4LMRffPj8YJqXiG4yrK5cXi0kP47ea9bg42AsH3gEBAAAAAAAAAAAAAAAAAAAAAIDbstAYmB+sn5O6z/lKOQsLE9p76+Pk8f31gfbz9YFSPUVKv732QPOtLG5aH2h0fZ4tCwkCAAAAAAAAAAAAAAAAAADAwOZ2LVqdztrG5vZOu1zY3djcnoqIbs3LX3/0xWyM9zmiUM1T1CMGKRr9tDvtVsqKzimLGA/PusmLmg8+Hcy43Kc+2IqJ06gf3NTp/O+eH98d1tydFSP/OeyTxeQNzErTeHhk5PX/51M6zo4aFM6Va+rj2a+klEo1b5TDLz87PmBUIqrHP3A77ak4uE/qFr66+uKdxd5vfZ5y990/9+SVd97/pd3qdDNH7wjWNjZvpHarUnQ+3m7p7uqiphJ5oVI+E6qHhe93C7ODY9HKvvv1qbve/ubI7DP9DMOaV7vn80jnLN+cj0fDa3mhO82Rptlh+PQgxfSEk/+owm0c0zve++zDlH74+ZZTDNXHXjYqf/+VBwAAAAAAAAAAAAAAAAAAGFX6W/G+qfxp+rCoBx87+ZkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwD9n+P//S4X9vSjVVCf2GS/8sRvjTfW1jc2I2r+9mQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/Mf9FQAA//+iblU/") readlink(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000100)=""/35, 0x23) 431.641815ms ago: executing program 3 (id=3905): io_setup(0x202, &(0x7f0000000200)=0x0) io_getevents(r0, 0x2, 0x2, &(0x7f0000000300)=[{}, {}], &(0x7f00000000c0)={0x0, 0x989680}) 403.843057ms ago: executing program 0 (id=3907): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) prlimit64(0x0, 0xe, 0x0, 0x0) 400.251497ms ago: executing program 2 (id=3908): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="400000000001010400000000000000000200400724000180140001800800010008000200e00000010c0002800500010000"], 0x40}}, 0x20000080) 354.126179ms ago: executing program 0 (id=3911): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_STAT_SET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1800000010140100000000000000080004"], 0x18}}, 0x0) 332.767521ms ago: executing program 1 (id=3912): ioperm(0x0, 0x4, 0x1) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000180)={@map=0x1, 0x24, 0x0, 0x38, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) 304.432233ms ago: executing program 0 (id=3913): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000680)=@newtaction={0x60, 0x30, 0x871a15abc695fa3d, 0x0, 0x1000000, {}, [{0x4c, 0x1, [@m_ctinfo={0x48, 0x1, 0x0, 0x0, {{0xb}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18, 0x3, {0x5, 0x32, 0x20000000, 0x2, 0x1000}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x60}}, 0x0) 298.291313ms ago: executing program 4 (id=3914): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000200)={'gre0\x00', &(0x7f0000000400)={'gre0\x00', 0x0, 0x700, 0x80, 0x9d, 0x800, {{0x5, 0x4, 0x3, 0x8, 0x14, 0x64, 0x0, 0x3, 0x3e, 0x0, @multicast2, @rand_addr=0x64010101}}}}) 296.041283ms ago: executing program 3 (id=3915): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00000014c0)={0x2, 0x0, &(0x7f0000000140)={&(0x7f0000000200)={0x2, 0x18, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}, @sadb_x_policy={0x8, 0x12, 0x0, 0x0, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in=@loopback, @in6=@private1}}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x2, @remote}}]}, 0x80}}, 0x0) 285.899443ms ago: executing program 2 (id=3916): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000002a40)=@newlink={0x38, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_AF_SPEC={0x10, 0x1a, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0xd}]}]}, @IFLA_GROUP={0x8}]}, 0x38}, 0x1, 0x0, 0x0, 0x20048050}, 0x0) 249.906935ms ago: executing program 4 (id=3917): r0 = socket$phonet_pipe(0x23, 0x5, 0x2) setsockopt$PNPIPE_HANDLE(r0, 0x113, 0x3, &(0x7f0000000bc0)=0x6a55, 0x4) 249.372726ms ago: executing program 1 (id=3927): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x2a8, 0x0, 0x12, 0x610, 0x148, 0x202, 0x238, 0x2e8, 0x2e8, 0x238, 0x2c0, 0x4, 0x0, {[{{@uncond, 0x0, 0xa8, 0xe8}, @common=@unspec=@ERROR={0x20, 'ERROR\x00', 0x0, "092233fed8bc5dedf3f4d6e243e594b232ebf904fcd38feb4712a47f9497"}}, {{@ipv6={@mcast1, @mcast2, [], [0x0, 0xff], 'vxcan1\x00', 'geneve0\x00'}, 0x0, 0xa8, 0xf0}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@broadcast, 'wg0\x00', {0xc3d7}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x308) 230.932177ms ago: executing program 0 (id=3918): r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f00000001c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) add_key(&(0x7f0000000100)='rxrpc\x00', 0x0, &(0x7f0000000d80)="0000000000000004ff6943b80000000800000028f2000000008607000000ebcd1f63dd65dd530700a28f2cbf86f474fad8cb594ed9fabe9ec277bb8d", 0x3c, r0) 226.145507ms ago: executing program 3 (id=3919): munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="0000010018000000000000000c0000000c000010"], &(0x7f0000001f80)=""/226, 0x18, 0xe2, 0x2, 0x0, 0x0, @void, @value}, 0x28) 221.081047ms ago: executing program 2 (id=3920): r0 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r0, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1000000000000000000002000000000010000000000000001001000001"], 0x20}, 0x4008840) 173.77599ms ago: executing program 4 (id=3921): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0xb, 0x2, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x7, &(0x7f0000000180)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x25}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 173.19069ms ago: executing program 1 (id=3932): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_opts(r0, 0x0, 0xb, &(0x7f0000000140)='u', 0x1) 169.42173ms ago: executing program 3 (id=3922): r0 = socket$unix(0x1, 0x1, 0x0) sendmmsg$unix(r0, &(0x7f0000002640)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000140)='\x00', 0x1}], 0x1}}], 0x1, 0x5) 149.666321ms ago: executing program 2 (id=3923): r0 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2c, 0x0, 0x0) 147.387281ms ago: executing program 0 (id=3924): perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xb1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1a089, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_config_ext={0x4, 0x800}, 0x2018, 0x0, 0x0, 0x8, 0x1000, 0x9, 0x7, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) poll(0x0, 0x0, 0xfd0f) 122.129033ms ago: executing program 4 (id=3925): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x27, &(0x7f0000000240)=0x6, 0x40) 103.246194ms ago: executing program 1 (id=3926): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000000)=@newsa={0x184, 0x10, 0x1, 0x0, 0x0, {{@in6=@private2, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0xffffffffffffffff}, {@in6=@private0, 0x0, 0x6c}, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, {0x9}, {}, {0x8}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x62}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}, @algo_auth_trunc={0x4c, 0x14, {{'sm3-ce\x00'}}}]}, 0x184}}, 0x0) 100.660324ms ago: executing program 4 (id=3928): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000500)=@newlink={0x58, 0x10, 0x40d, 0x4, 0x4, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5019}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x14, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_FLAGS={0x6, 0x2, 0x1}, @IFLA_MACVLAN_MODE={0x8, 0x1, 0x4}]}}}, @IFLA_ALT_IFNAME={0x14, 0x35, 'macvlan0\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x4}, 0x0) 86.049995ms ago: executing program 3 (id=3929): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x0, 0x7, 0x77f5146d65effe95, 0x0, 0x0, {0x1, 0x0, 0x8}, [@NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}]}, 0x28}}, 0x4000044) 79.699886ms ago: executing program 2 (id=3930): r0 = socket(0x10, 0x80003, 0x0) write(r0, &(0x7f0000000000)="240000001a005f0214f9f407000904000a000000fe0000000000000008000f00fd000000", 0x85) 55.940237ms ago: executing program 1 (id=3931): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000200)={'gre0\x00', &(0x7f0000000400)={'gre0\x00', 0x0, 0x700, 0x80, 0x9d, 0x800, {{0x5, 0x4, 0x3, 0x8, 0x14, 0x64, 0x0, 0x3, 0x3e, 0x0, @multicast2, @rand_addr=0x64010101}}}}) 52.719577ms ago: executing program 4 (id=3933): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c000200050001000000000024000280140001"], 0x64}}, 0x0) 20.733799ms ago: executing program 3 (id=3934): socket$packet(0x11, 0x3, 0x300) syz_emit_ethernet(0x56, &(0x7f0000000180)={@local, @multicast, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "3000bb", 0x20, 0x2b, 0x0, @private2, @local, {[@srh={0x0, 0x2, 0x2, 0x1, 0x0, 0x0, 0x0, [@loopback]}], {0x0, 0x0, 0x8}}}}}}, 0x0) 8.62536ms ago: executing program 1 (id=3935): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x58, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8}]}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}]}, 0x58}}, 0x0) 0s ago: executing program 2 (id=3936): r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f00000001c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) add_key(&(0x7f0000000100)='rxrpc\x00', 0x0, &(0x7f0000000d80)="0000000000000004ff6943b80000000800000028f2000000008607000000ebcd1f63dd65dd530700a28f2cbf86f474fad8cb594ed9fabe9ec277bb8d", 0x3c, r0) kernel console output (not intermixed with test programs): loop1: p96 size 108986237 extends beyond EOD, truncated [ 48.737952][ T4428] ext4 filesystem being mounted at /85/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 48.743359][ T4296] loop1: p97 size 108986237 extends beyond EOD, truncated [ 48.761128][ T4296] loop1: p98 size 108986237 extends beyond EOD, truncated [ 48.768829][ T4296] loop1: p99 size 108986237 extends beyond EOD, truncated [ 48.779035][ T4296] loop1: p100 size 108986237 extends beyond EOD, truncated [ 48.793606][ T4296] loop1: p101 size 108986237 extends beyond EOD, truncated [ 48.801591][ T4296] loop1: p102 size 108986237 extends beyond EOD, truncated [ 48.810596][ T4296] loop1: p103 size 108986237 extends beyond EOD, truncated [ 48.818352][ T4296] loop1: p104 size 108986237 extends beyond EOD, truncated [ 48.826501][ T4296] loop1: p105 size 108986237 extends beyond EOD, truncated [ 48.839743][ T3300] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.849256][ T4296] loop1: p106 size 108986237 extends beyond EOD, truncated [ 48.858064][ T4296] loop1: p107 size 108986237 extends beyond EOD, truncated [ 48.888250][ T4296] loop1: p108 size 108986237 extends beyond EOD, truncated [ 48.896769][ T4296] loop1: p109 size 108986237 extends beyond EOD, truncated [ 48.907062][ T4296] loop1: p110 size 108986237 extends beyond EOD, truncated [ 48.924340][ T4296] loop1: p111 size 108986237 extends beyond EOD, truncated [ 48.939646][ T4296] loop1: p112 size 108986237 extends beyond EOD, truncated [ 48.948650][ T4296] loop1: p113 size 108986237 extends beyond EOD, truncated [ 48.970882][ T4296] loop1: p114 size 108986237 extends beyond EOD, truncated [ 48.983992][ T29] audit: type=1400 audit(1740077652.575:254): avc: denied { write } for pid=4454 comm="syz.2.483" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 48.993181][ T4296] loop1: p115 size 108986237 extends beyond EOD, truncated [ 49.026327][ T4296] loop1: p116 size 108986237 extends beyond EOD, truncated [ 49.035773][ T4296] loop1: p117 size 108986237 extends beyond EOD, truncated [ 49.059825][ T4296] loop1: p118 size 108986237 extends beyond EOD, truncated [ 49.078083][ T4296] loop1: p119 size 108986237 extends beyond EOD, truncated [ 49.086387][ T4469] netlink: 28 bytes leftover after parsing attributes in process `syz.2.489'. [ 49.095380][ T4469] netlink: 28 bytes leftover after parsing attributes in process `syz.2.489'. [ 49.105380][ T4296] loop1: p120 size 108986237 extends beyond EOD, truncated [ 49.133379][ T4296] loop1: p121 size 108986237 extends beyond EOD, truncated [ 49.153450][ T4296] loop1: p122 size 108986237 extends beyond EOD, truncated [ 49.168864][ T4296] loop1: p123 size 108986237 extends beyond EOD, truncated [ 49.196684][ T4296] loop1: p124 size 108986237 extends beyond EOD, truncated [ 49.207929][ T4296] loop1: p125 size 108986237 extends beyond EOD, truncated [ 49.244413][ T4296] loop1: p126 size 108986237 extends beyond EOD, truncated [ 49.257770][ T4296] loop1: p127 size 108986237 extends beyond EOD, truncated [ 49.289492][ T4494] netlink: 'syz.4.502': attribute type 3 has an invalid length. [ 49.299737][ T4296] loop1: p128 size 108986237 extends beyond EOD, truncated [ 49.308868][ T4296] loop1: p129 size 108986237 extends beyond EOD, truncated [ 49.320775][ T4296] loop1: p130 size 108986237 extends beyond EOD, truncated [ 49.355194][ T4296] loop1: p131 size 108986237 extends beyond EOD, truncated [ 49.390298][ T4296] loop1: p132 size 108986237 extends beyond EOD, truncated [ 49.403604][ T4296] loop1: p133 size 108986237 extends beyond EOD, truncated [ 49.419526][ T29] audit: type=1400 audit(1740077653.005:255): avc: denied { setopt } for pid=4511 comm="syz.0.510" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 49.448269][ T4296] loop1: p134 size 108986237 extends beyond EOD, truncated [ 49.477125][ T4296] loop1: p135 size 108986237 extends beyond EOD, truncated [ 49.491907][ T4521] netlink: 252 bytes leftover after parsing attributes in process `syz.3.512'. [ 49.505608][ T4296] loop1: p136 size 108986237 extends beyond EOD, truncated [ 49.506247][ T4296] loop1: p137 size 108986237 extends beyond EOD, truncated [ 49.506793][ T4296] loop1: p138 size 108986237 extends beyond EOD, truncated [ 49.514647][ T4296] loop1: p139 size 108986237 extends beyond EOD, truncated [ 49.515177][ T4296] loop1: p140 size 108986237 extends beyond EOD, truncated [ 49.515725][ T4296] loop1: p141 size 108986237 extends beyond EOD, truncated [ 49.516195][ T4296] loop1: p142 size 108986237 extends beyond EOD, truncated [ 49.516766][ T4296] loop1: p143 size 108986237 extends beyond EOD, truncated [ 49.524635][ T4296] loop1: p144 size 108986237 extends beyond EOD, truncated [ 49.525185][ T4296] loop1: p145 size 108986237 extends beyond EOD, truncated [ 49.525666][ T4296] loop1: p146 size 108986237 extends beyond EOD, truncated [ 49.526322][ T4296] loop1: p147 size 108986237 extends beyond EOD, truncated [ 49.529507][ T4296] loop1: p148 size 108986237 extends beyond EOD, truncated [ 49.531499][ T4296] loop1: p149 size 108986237 extends beyond EOD, truncated [ 49.532262][ T4296] loop1: p150 size 108986237 extends beyond EOD, truncated [ 49.537423][ T4296] loop1: p151 size 108986237 extends beyond EOD, truncated [ 49.540095][ T4296] loop1: p152 size 108986237 extends beyond EOD, truncated [ 49.540963][ T4296] loop1: p153 size 108986237 extends beyond EOD, truncated [ 49.541520][ T4296] loop1: p154 size 108986237 extends beyond EOD, truncated [ 49.542034][ T4296] loop1: p155 size 108986237 extends beyond EOD, truncated [ 49.542494][ T4296] loop1: p156 size 108986237 extends beyond EOD, truncated [ 49.542992][ T4296] loop1: p157 size 108986237 extends beyond EOD, truncated [ 49.554911][ T4296] loop1: p158 size 108986237 extends beyond EOD, truncated [ 49.555377][ T4296] loop1: p159 size 108986237 extends beyond EOD, truncated [ 49.555830][ T4296] loop1: p160 size 108986237 extends beyond EOD, truncated [ 49.556410][ T4296] loop1: p161 size 108986237 extends beyond EOD, truncated [ 49.557300][ T4296] loop1: p162 size 108986237 extends beyond EOD, truncated [ 49.565064][ T4296] loop1: p163 size 108986237 extends beyond EOD, truncated [ 49.580425][ T4296] loop1: p164 size 108986237 extends beyond EOD, truncated [ 49.580987][ T4296] loop1: p165 size 108986237 extends beyond EOD, truncated [ 49.589126][ T4296] loop1: p166 size 108986237 extends beyond EOD, truncated [ 49.604444][ T4296] loop1: p167 size 108986237 extends beyond EOD, truncated [ 49.617508][ T4296] loop1: p168 size 108986237 extends beyond EOD, truncated [ 49.618040][ T4296] loop1: p169 size 108986237 extends beyond EOD, truncated [ 49.618483][ T4296] loop1: p170 size 108986237 extends beyond EOD, truncated [ 49.619169][ T4296] loop1: p171 size 108986237 extends beyond EOD, truncated [ 49.627198][ T4296] loop1: p172 size 108986237 extends beyond EOD, truncated [ 49.627803][ T4296] loop1: p173 size 108986237 extends beyond EOD, truncated [ 49.628248][ T4296] loop1: p174 size 108986237 extends beyond EOD, truncated [ 49.628695][ T4296] loop1: p175 size 108986237 extends beyond EOD, truncated [ 49.629268][ T4296] loop1: p176 size 108986237 extends beyond EOD, truncated [ 49.649090][ T4296] loop1: p177 size 108986237 extends beyond EOD, truncated [ 49.654118][ T4536] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0) [ 49.657159][ T4296] loop1: p178 size 108986237 extends beyond EOD, [ 49.779689][ T4543] netlink: 'syz.4.525': attribute type 5 has an invalid length. [ 49.780905][ T4296] truncated [ 49.909555][ T4296] loop1: p179 size 108986237 extends beyond EOD, truncated [ 49.920081][ T4296] loop1: p180 size 108986237 extends beyond EOD, truncated [ 49.949587][ T4296] loop1: p181 size 108986237 extends beyond EOD, truncated [ 49.959086][ T4296] loop1: p182 size 108986237 extends beyond EOD, truncated [ 49.981816][ T4556] netlink: 'syz.4.531': attribute type 16 has an invalid length. [ 50.001067][ T4296] loop1: p183 size 108986237 extends beyond EOD, truncated [ 50.009855][ T4296] loop1: p184 size 108986237 extends beyond EOD, truncated [ 50.032942][ T29] audit: type=1400 audit(1740077653.615:256): avc: denied { setopt } for pid=4558 comm="syz.2.532" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 50.059536][ T4296] loop1: p185 size 108986237 extends beyond EOD, truncated [ 50.076436][ T4296] loop1: p186 size 108986237 extends beyond EOD, truncated [ 50.086825][ T29] audit: type=1400 audit(1740077653.625:257): avc: denied { bind } for pid=4562 comm="syz.4.534" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 50.100247][ T4296] loop1: p187 size 108986237 extends beyond EOD, truncated [ 50.137010][ T4296] loop1: p188 size 108986237 extends beyond EOD, truncated [ 50.165285][ T4296] loop1: p189 size 108986237 extends beyond EOD, truncated [ 50.173713][ T4296] loop1: p190 size 108986237 extends beyond EOD, truncated [ 50.181699][ T4296] loop1: p191 size 108986237 extends beyond EOD, truncated [ 50.205261][ T4296] loop1: p192 size 108986237 extends beyond EOD, truncated [ 50.223243][ T4579] loop2: detected capacity change from 0 to 256 [ 50.247151][ T4296] loop1: p193 size 108986237 extends beyond EOD, truncated [ 50.269160][ T4296] loop1: p194 size 108986237 extends beyond EOD, truncated [ 50.286002][ T4296] loop1: p195 size 108986237 extends beyond EOD, truncated [ 50.298402][ T4296] loop1: p196 size 108986237 extends beyond EOD, truncated [ 50.307062][ T4586] SELinux: security_context_str_to_sid (ñ01777777777777777777777) failed with errno=-22 [ 50.317851][ T4296] loop1: p197 size 108986237 extends beyond EOD, truncated [ 50.344962][ T4296] loop1: p198 size 108986237 extends beyond EOD, truncated [ 50.361467][ T4296] loop1: p199 size 108986237 extends beyond EOD, truncated [ 50.386001][ T4296] loop1: p200 size 108986237 extends beyond EOD, truncated [ 50.396068][ T4296] loop1: p201 size 108986237 extends beyond EOD, truncated [ 50.428751][ T4296] loop1: p202 size 108986237 extends beyond EOD, truncated [ 50.455773][ T4296] loop1: p203 size 108986237 extends beyond EOD, truncated [ 50.477772][ T4296] loop1: p204 size 108986237 extends beyond EOD, truncated [ 50.509576][ T4296] loop1: p205 size 108986237 extends beyond EOD, truncated [ 50.520955][ T4614] xt_CT: You must specify a L4 protocol and not use inversions on it [ 50.535821][ T4296] loop1: p206 size 108986237 extends beyond EOD, truncated [ 50.582536][ T4296] loop1: p207 size 108986237 extends beyond EOD, truncated [ 50.606164][ T4296] loop1: p208 size 108986237 extends beyond EOD, truncated [ 50.613244][ T4624] bond1: entered allmulticast mode [ 50.640634][ T4296] loop1: p209 size 108986237 extends beyond EOD, truncated [ 50.648586][ T4296] loop1: p210 size 108986237 extends beyond EOD, truncated [ 50.650487][ T4627] bridge1: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 50.656692][ T4296] loop1: p211 size 108986237 extends beyond EOD, truncated [ 50.674343][ T4296] loop1: p212 size 108986237 extends beyond EOD, truncated [ 50.682278][ T4296] loop1: p213 size 108986237 extends beyond EOD, truncated [ 50.690363][ T4296] loop1: p214 size 108986237 extends beyond EOD, truncated [ 50.698246][ T4296] loop1: p215 size 108986237 extends beyond EOD, truncated [ 50.706130][ T4296] loop1: p216 size 108986237 extends beyond EOD, truncated [ 50.720512][ T4296] loop1: p217 size 108986237 extends beyond EOD, truncated [ 50.753379][ T4296] loop1: p218 size 108986237 extends beyond EOD, truncated [ 50.761200][ T4296] loop1: p219 size 108986237 extends beyond EOD, truncated [ 50.768889][ T4296] loop1: p220 size 108986237 extends beyond EOD, truncated [ 50.777000][ T4296] loop1: p221 size 108986237 extends beyond EOD, truncated [ 50.785529][ T4296] loop1: p222 size 108986237 extends beyond EOD, truncated [ 50.793790][ T4296] loop1: p223 size 108986237 extends beyond EOD, truncated [ 50.803135][ T4296] loop1: p224 size 108986237 extends beyond EOD, truncated [ 50.814729][ T4296] loop1: p225 size 108986237 extends beyond EOD, truncated [ 50.824270][ T4296] loop1: p226 size 108986237 extends beyond EOD, truncated [ 50.848708][ T4649] netlink: 12 bytes leftover after parsing attributes in process `syz.0.576'. [ 50.857671][ T4649] netlink: 20 bytes leftover after parsing attributes in process `syz.0.576'. [ 50.884691][ T4296] loop1: p227 size 108986237 extends beyond EOD, truncated [ 50.892832][ T4296] loop1: p228 size 108986237 extends beyond EOD, truncated [ 50.921073][ T4296] loop1: p229 size 108986237 extends beyond EOD, truncated [ 50.939528][ T4296] loop1: p230 size 108986237 extends beyond EOD, truncated [ 50.954676][ T4296] loop1: p231 size 108986237 extends beyond EOD, truncated [ 50.973319][ T4296] loop1: p232 size 108986237 extends beyond EOD, truncated [ 51.007161][ T4296] loop1: p233 size 108986237 extends beyond EOD, truncated [ 51.026801][ T4296] loop1: p234 size 108986237 extends beyond EOD, truncated [ 51.040836][ T4296] loop1: p235 size 108986237 extends beyond EOD, truncated [ 51.065633][ T4296] loop1: p236 size 108986237 extends beyond EOD, truncated [ 51.087419][ T4296] loop1: p237 size 108986237 extends beyond EOD, truncated [ 51.109577][ T4679] netlink: 180 bytes leftover after parsing attributes in process `syz.3.591'. [ 51.111280][ T4296] loop1: p238 size 108986237 extends beyond EOD, truncated [ 51.149314][ T4296] loop1: p239 size 108986237 extends beyond EOD, truncated [ 51.160622][ T4296] loop1: p240 size 108986237 extends beyond EOD, truncated [ 51.170998][ T4296] loop1: p241 size 108986237 extends beyond EOD, truncated [ 51.179515][ T4296] loop1: p242 size 108986237 extends beyond EOD, truncated [ 51.222104][ T4296] loop1: p243 size 108986237 extends beyond EOD, truncated [ 51.241000][ T4296] loop1: p244 size 108986237 extends beyond EOD, truncated [ 51.260179][ T4296] loop1: p245 size 108986237 extends beyond EOD, truncated [ 51.285908][ T4296] loop1: p246 size 108986237 extends beyond EOD, truncated [ 51.307450][ T4296] loop1: p247 size 108986237 extends beyond EOD, truncated [ 51.327845][ T4296] loop1: p248 size 108986237 extends beyond EOD, truncated [ 51.335561][ T4709] netlink: 8 bytes leftover after parsing attributes in process `syz.0.606'. [ 51.344468][ T4709] netlink: 8 bytes leftover after parsing attributes in process `syz.0.606'. [ 51.359741][ T4296] loop1: p249 size 108986237 extends beyond EOD, truncated [ 51.380176][ T4296] loop1: p250 size 108986237 extends beyond EOD, truncated [ 51.386348][ T4709] bridge1: entered promiscuous mode [ 51.392722][ T4709] bridge1: entered allmulticast mode [ 51.398899][ T4296] loop1: p251 size 108986237 extends beyond EOD, truncated [ 51.425902][ T4296] loop1: p252 size 108986237 extends beyond EOD, truncated [ 51.447862][ T4722] netlink: 32 bytes leftover after parsing attributes in process `syz.4.612'. [ 51.461284][ T4296] loop1: p253 size 108986237 extends beyond EOD, truncated [ 51.493158][ T4296] loop1: p254 size 108986237 extends beyond EOD, truncated [ 51.500726][ T4727] loop2: detected capacity change from 0 to 512 [ 51.522237][ T4727] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 51.553990][ T4296] loop1: p255 size 108986237 extends beyond EOD, truncated [ 51.562639][ T4727] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #17: comm syz.2.614: iget: bad i_size value: -6917529027641081756 [ 51.577319][ T4740] loop0: detected capacity change from 0 to 256 [ 51.614083][ T4727] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.614: couldn't read orphan inode 17 (err -117) [ 51.626549][ T4740] vfat: Deprecated parameter 'posix' [ 51.632013][ T4740] FAT-fs: "posix" option is obsolete, not supported now [ 51.660782][ T4727] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 51.697882][ T4748] netlink: 'syz.3.623': attribute type 8 has an invalid length. [ 51.706744][ T4740] FAT-fs (loop0): codepage cp775 not found [ 51.768602][ T4756] rtc_cmos 00:00: Alarms can be up to one day in the future [ 51.779848][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.850950][ T4176] udevd[4176]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 51.856256][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory [ 51.862217][ T3525] udevd[3525]: inotify_add_watch(7, /dev/loop1p5, 10) failed: No such file or directory [ 51.872892][ T3550] udevd[3550]: inotify_add_watch(7, /dev/loop1p7, 10) failed: No such file or directory [ 51.891096][ T3294] udevd[3294]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 51.912844][ T4692] udevd[4692]: inotify_add_watch(7, /dev/loop1p6, 10) failed: No such file or directory [ 51.944182][ T4771] udevd[4771]: inotify_add_watch(7, /dev/loop1p10, 10) failed: No such file or directory [ 51.946382][ T4770] udevd[4770]: inotify_add_watch(7, /dev/loop1p9, 10) failed: No such file or directory [ 51.955606][ T4769] udevd[4769]: inotify_add_watch(7, /dev/loop1p8, 10) failed: No such file or directory [ 51.989003][ T4773] udevd[4773]: inotify_add_watch(7, /dev/loop1p11, 10) failed: No such file or directory [ 52.029072][ T4782] TCP: TCP_TX_DELAY enabled [ 52.074311][ T4786] netlink: 'syz.1.638': attribute type 14 has an invalid length. [ 52.364463][ T4819] netlink: 'syz.0.655': attribute type 10 has an invalid length. [ 52.431751][ T4819] bond0: (slave netdevsim1): Enslaving as an active interface with an up link [ 52.676486][ T4847] loop1: detected capacity change from 0 to 2048 [ 52.766236][ T4849] loop4: detected capacity change from 0 to 8192 [ 52.798380][ T4849] syz.4.670: attempt to access beyond end of device [ 52.798380][ T4849] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 52.817444][ T4849] FAT-fs (loop4): error, invalid access to FAT (entry 0x0000e1b1) [ 52.826631][ T4849] FAT-fs (loop4): Filesystem has been set read-only [ 52.832205][ T4849] FAT-fs (loop4): error, invalid access to FAT (entry 0x0000e1b1) [ 52.844336][ T4849] FAT-fs (loop4): error, invalid access to FAT (entry 0x0000e1b1) [ 52.849984][ T4847] loop1: unable to read partition table [ 52.888484][ T4847] loop1: partition table beyond EOD, truncated [ 52.894806][ T4847] loop_reread_partitions: partition scan of loop1 () failed (rc=-5) [ 52.989165][ T4875] ieee802154 phy0 wpan0: encryption failed: -22 [ 53.189495][ T29] kauditd_printk_skb: 26 callbacks suppressed [ 53.189512][ T29] audit: type=1400 audit(1740077656.775:284): avc: denied { write } for pid=4901 comm="syz.1.695" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 53.349169][ T29] audit: type=1400 audit(1740077656.935:285): avc: denied { bind } for pid=4930 comm="syz.3.710" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 53.403548][ T29] audit: type=1400 audit(1740077656.975:286): avc: denied { getopt } for pid=4933 comm="syz.3.712" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 53.423697][ T4936] netlink: 'syz.0.713': attribute type 11 has an invalid length. [ 53.485075][ T29] audit: type=1400 audit(1740077657.075:287): avc: denied { create } for pid=4949 comm="syz.0.719" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 53.542589][ T4955] netlink: 28 bytes leftover after parsing attributes in process `syz.1.721'. [ 53.551698][ T4955] netlink: 28 bytes leftover after parsing attributes in process `syz.1.721'. [ 53.565838][ T29] audit: type=1400 audit(1740077657.105:288): avc: denied { ioctl } for pid=4949 comm="syz.0.719" path="socket:[8834]" dev="sockfs" ino=8834 ioctlcmd=0x89e3 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 53.603318][ T29] audit: type=1400 audit(1740077657.195:289): avc: denied { setattr } for pid=4961 comm="syz.4.725" name="ptmx" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ptmx_t tclass=chr_file permissive=1 [ 53.636832][ T4964] xt_TCPMSS: Only works on TCP SYN packets [ 53.688949][ T29] audit: type=1400 audit(1740077657.265:290): avc: denied { connect } for pid=4969 comm="syz.4.729" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 53.708708][ T29] audit: type=1400 audit(1740077657.265:291): avc: denied { name_connect } for pid=4969 comm="syz.4.729" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1 [ 53.727711][ T4974] Driver unsupported XDP return value 0 on prog (id 19) dev N/A, expect packet loss! [ 53.757980][ T4980] xt_AUDIT: Audit type out of range (valid range: 0..2) [ 53.848319][ T29] audit: type=1400 audit(1740077657.435:292): avc: denied { cpu } for pid=4991 comm="syz.1.739" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 53.864851][ T4996] loop0: detected capacity change from 0 to 1024 [ 53.909726][ T4996] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 53.917980][ T29] audit: type=1400 audit(1740077657.475:293): avc: denied { read } for pid=4997 comm="syz.4.744" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 53.982797][ T3300] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 54.144379][ T5035] __nla_validate_parse: 4 callbacks suppressed [ 54.144398][ T5035] netlink: 16186 bytes leftover after parsing attributes in process `syz.4.760'. [ 54.238083][ T5050] sctp: [Deprecated]: syz.4.765 (pid 5050) Use of struct sctp_assoc_value in delayed_ack socket option. [ 54.238083][ T5050] Use struct sctp_sack_info instead [ 54.266796][ T5056] netlink: 8 bytes leftover after parsing attributes in process `syz.3.771'. [ 54.424536][ T5076] Cannot find set identified by id 0 to match [ 54.427054][ T5077] netlink: 'syz.3.780': attribute type 21 has an invalid length. [ 54.453714][ T5077] netlink: 132 bytes leftover after parsing attributes in process `syz.3.780'. [ 54.518137][ T5089] netlink: 4 bytes leftover after parsing attributes in process `syz.1.788'. [ 55.073883][ T5172] xt_hashlimit: max too large, truncated to 1048576 [ 55.231261][ T5192] netlink: 'syz.0.839': attribute type 4 has an invalid length. [ 55.294505][ T5202] netlink: 8 bytes leftover after parsing attributes in process `syz.1.844'. [ 55.303545][ T5202] netlink: 8 bytes leftover after parsing attributes in process `syz.1.844'. [ 55.483528][ T5229] netlink: 4268 bytes leftover after parsing attributes in process `syz.1.855'. [ 55.503336][ T5229] netlink: 4268 bytes leftover after parsing attributes in process `syz.1.855'. [ 55.685469][ T5254] sctp: [Deprecated]: syz.1.870 (pid 5254) Use of int in maxseg socket option. [ 55.685469][ T5254] Use struct sctp_assoc_value instead [ 55.702660][ T5256] loop0: detected capacity change from 0 to 512 [ 55.731909][ T5256] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 55.781830][ T5256] ext4 filesystem being mounted at /166/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 55.856352][ T3300] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 55.897765][ T5268] netlink: 12 bytes leftover after parsing attributes in process `syz.1.876'. [ 56.010367][ T5285] netlink: 'syz.0.882': attribute type 3 has an invalid length. [ 56.181532][ T5311] xt_socket: unknown flags 0xc [ 56.261665][ T5319] netlink: 'syz.0.898': attribute type 1 has an invalid length. [ 56.371592][ T5335] xt_limit: Overflow, try lower: 2147483649/3300 [ 57.085279][ T5378] loop0: detected capacity change from 0 to 8192 [ 57.170496][ T5378] loop0: p1 p3 p4 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 p217 p218 p219 p220 p221 p222 p223 p224 p2 [ 57.185663][ T5378] loop0: p1 size 108986237 extends beyond EOD, truncated [ 57.334482][ T5378] loop0: p3 size 50462720 extends beyond EOD, truncated [ 57.402432][ T5378] loop0: p5 size 108986237 extends beyond EOD, truncated [ 57.422989][ T5378] loop0: p6 size 108986237 extends beyond EOD, truncated [ 57.439036][ T5378] loop0: p7 size 108986237 extends beyond EOD, truncated [ 57.467899][ T5378] loop0: p8 size 108986237 extends beyond EOD, truncated [ 57.481614][ T5406] xt_limit: Overflow, try lower: 16/2147483648 [ 57.499701][ T5408] loop2: detected capacity change from 0 to 512 [ 57.507716][ T5378] loop0: p9 size 108986237 extends beyond EOD, truncated [ 57.530237][ T5408] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 57.541650][ T5378] loop0: p10 size 108986237 extends beyond EOD, truncated [ 57.546152][ T5408] EXT4-fs (loop2): 1 truncate cleaned up [ 57.554736][ T5378] loop0: p11 size 108986237 extends beyond EOD, truncated [ 57.589780][ T5408] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 57.594091][ T5378] loop0: p12 size 108986237 extends beyond EOD, truncated [ 57.613761][ T5378] loop0: p13 size 108986237 extends beyond EOD, truncated [ 57.621774][ T5378] loop0: p14 size 108986237 extends beyond EOD, truncated [ 57.629349][ T5378] loop0: p15 size 108986237 extends beyond EOD, truncated [ 57.637452][ T5378] loop0: p16 size 108986237 extends beyond EOD, truncated [ 57.645359][ T5378] loop0: p17 size 108986237 extends beyond EOD, truncated [ 57.667693][ T5408] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.941: corrupted in-inode xattr: overlapping e_value [ 57.688558][ T5378] loop0: p18 size 108986237 extends beyond EOD, truncated [ 57.696413][ T5378] loop0: p19 size 108986237 extends beyond EOD, truncated [ 57.714385][ T5378] loop0: p20 size 108986237 extends beyond EOD, truncated [ 57.729168][ T5415] tmpfs: Bad value for 'mpol' [ 57.734517][ T5378] loop0: p21 size 108986237 extends beyond EOD, truncated [ 57.741790][ T5408] EXT4-fs warning (device loop2): ext4_xattr_set_entry:1772: inode #15: comm syz.2.941: unable to update i_inline_off [ 57.754351][ T5408] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2863: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 57.804209][ T5378] loop0: p22 size 108986237 extends beyond EOD, truncated [ 57.837928][ T5378] loop0: p23 size 108986237 extends beyond EOD, truncated [ 57.850811][ T5378] loop0: p24 size 108986237 extends beyond EOD, truncated [ 57.858643][ T5378] loop0: p25 size 108986237 extends beyond EOD, truncated [ 57.866659][ T5378] loop0: p26 size 108986237 extends beyond EOD, truncated [ 57.962916][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 57.972259][ T5378] loop0: p27 size 108986237 extends beyond EOD, truncated [ 57.982207][ T5378] loop0: p28 size 108986237 extends beyond EOD, truncated [ 58.033694][ T5378] loop0: p29 size 108986237 extends beyond EOD, truncated [ 58.043631][ T5425] netlink: 8 bytes leftover after parsing attributes in process `syz.2.950'. [ 58.052903][ T5378] loop0: p30 size 108986237 extends beyond EOD, truncated [ 58.140098][ T5378] loop0: p31 size 108986237 extends beyond EOD, truncated [ 58.151426][ T5378] loop0: p32 size 108986237 extends beyond EOD, truncated [ 58.177871][ T5378] loop0: p33 size 108986237 extends beyond EOD, truncated [ 58.200611][ T29] kauditd_printk_skb: 8396 callbacks suppressed [ 58.200629][ T29] audit: type=1326 audit(2000000002.100:8690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5235 comm="syz.4.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f306ca2d0a9 code=0x7ff00000 [ 58.234876][ T5378] loop0: p34 size 108986237 extends beyond EOD, truncated [ 58.249994][ T5378] loop0: p35 size 108986237 extends beyond EOD, truncated [ 58.259007][ T5378] loop0: p36 size 108986237 extends beyond EOD, truncated [ 58.290924][ T5378] loop0: p37 size 108986237 extends beyond EOD, truncated [ 58.298140][ T29] audit: type=1326 audit(2000000002.130:8691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5235 comm="syz.4.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f306ca2d0a9 code=0x7ff00000 [ 58.321786][ T29] audit: type=1326 audit(2000000002.130:8692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5235 comm="syz.4.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f306ca2d0a9 code=0x7ff00000 [ 58.345470][ T29] audit: type=1326 audit(2000000002.130:8693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5235 comm="syz.4.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f306ca2d0a9 code=0x7ff00000 [ 58.368917][ T29] audit: type=1326 audit(2000000002.130:8694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5235 comm="syz.4.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f306ca2d0a9 code=0x7ff00000 [ 58.385511][ T5443] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 58.392804][ T29] audit: type=1326 audit(2000000002.130:8695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5235 comm="syz.4.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f306ca2d0a9 code=0x7ff00000 [ 58.392838][ T29] audit: type=1326 audit(2000000002.130:8696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5235 comm="syz.4.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f306ca2d0a9 code=0x7ff00000 [ 58.392867][ T29] audit: type=1326 audit(2000000002.130:8697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5235 comm="syz.4.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f306ca2d0a9 code=0x7ff00000 [ 58.471582][ T29] audit: type=1326 audit(2000000002.130:8698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5235 comm="syz.4.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f306ca2d0a9 code=0x7ff00000 [ 58.495049][ T29] audit: type=1326 audit(2000000002.130:8699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5235 comm="syz.4.861" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f306ca2d0a9 code=0x7ff00000 [ 58.541863][ T5446] xt_CT: You must specify a L4 protocol and not use inversions on it [ 58.544416][ T5378] loop0: p38 size 108986237 extends beyond EOD, truncated [ 58.557737][ T5378] loop0: p39 size 108986237 extends beyond EOD, truncated [ 58.565654][ T5378] loop0: p40 size 108986237 extends beyond EOD, truncated [ 58.580280][ T5378] loop0: p41 size 108986237 extends beyond EOD, truncated [ 58.588371][ T5378] loop0: p42 size 108986237 extends beyond EOD, truncated [ 58.596557][ T5378] loop0: p43 size 108986237 extends beyond EOD, truncated [ 58.607922][ T5378] loop0: p44 size 108986237 extends beyond EOD, truncated [ 58.637470][ T5378] loop0: p45 size 108986237 extends beyond EOD, truncated [ 58.654743][ T5378] loop0: p46 size 108986237 extends beyond EOD, truncated [ 58.665865][ T5378] loop0: p47 size 108986237 extends beyond EOD, truncated [ 58.685840][ T5378] loop0: p48 size 108986237 extends beyond EOD, truncated [ 58.733327][ T5378] loop0: p49 size 108986237 extends beyond EOD, truncated [ 58.772945][ T5378] loop0: p50 size 108986237 extends beyond EOD, truncated [ 58.793439][ T5378] loop0: p51 size 108986237 extends beyond EOD, truncated [ 58.815955][ T5378] loop0: p52 size 108986237 extends beyond EOD, truncated [ 58.844835][ T5378] loop0: p53 size 108986237 extends beyond EOD, truncated [ 58.868313][ T5378] loop0: p54 size 108986237 extends beyond EOD, truncated [ 58.929646][ T5378] loop0: p55 size 108986237 extends beyond EOD, truncated [ 58.960616][ T5378] loop0: p56 size 108986237 extends beyond EOD, truncated [ 58.974701][ T5378] loop0: p57 size 108986237 extends beyond EOD, truncated [ 59.003632][ T5378] loop0: p58 size 108986237 extends beyond EOD, truncated [ 59.038519][ T5378] loop0: p59 size 108986237 extends beyond EOD, truncated [ 59.055818][ T5378] loop0: p60 size 108986237 extends beyond EOD, truncated [ 59.091799][ T5378] loop0: p61 size 108986237 extends beyond EOD, truncated [ 59.110581][ T5378] loop0: p62 size 108986237 extends beyond EOD, truncated [ 59.120646][ T5378] loop0: p63 size 108986237 extends beyond EOD, truncated [ 59.160246][ T5529] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 59.181679][ T5378] loop0: p64 size 108986237 extends beyond EOD, truncated [ 59.218261][ T5378] loop0: p65 size 108986237 extends beyond EOD, truncated [ 59.236308][ T5378] loop0: p66 size 108986237 extends beyond EOD, truncated [ 59.244305][ T5378] loop0: p67 size 108986237 extends beyond EOD, truncated [ 59.253216][ T5378] loop0: p68 size 108986237 extends beyond EOD, truncated [ 59.261119][ T5378] loop0: p69 size 108986237 extends beyond EOD, truncated [ 59.268842][ T5378] loop0: p70 size 108986237 extends beyond EOD, truncated [ 59.289998][ T5378] loop0: p71 size 108986237 extends beyond EOD, truncated [ 59.314854][ T5547] IPv6: sit2: Disabled Multicast RS [ 59.324811][ T5378] loop0: p72 size 108986237 extends beyond EOD, truncated [ 59.331817][ T5550] __nla_validate_parse: 2 callbacks suppressed [ 59.331834][ T5550] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1011'. [ 59.339744][ T5378] loop0: p73 size 108986237 extends beyond EOD, truncated [ 59.374544][ T5378] loop0: p74 size 108986237 extends beyond EOD, truncated [ 59.396833][ T5378] loop0: p75 size 108986237 extends beyond EOD, truncated [ 59.406747][ T5378] loop0: p76 size 108986237 extends beyond EOD, truncated [ 59.414781][ T5378] loop0: p77 size 108986237 extends beyond EOD, truncated [ 59.422498][ T5378] loop0: p78 size 108986237 extends beyond EOD, truncated [ 59.432031][ T5558] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 59.441734][ T5378] loop0: p79 size 108986237 extends beyond EOD, truncated [ 59.455011][ T5378] loop0: p80 size 108986237 extends beyond EOD, truncated [ 59.472637][ T5378] loop0: p81 size 108986237 extends beyond EOD, truncated [ 59.497106][ T5378] loop0: p82 size 108986237 extends beyond EOD, truncated [ 59.508990][ T5378] loop0: p83 size 108986237 extends beyond EOD, truncated [ 59.522831][ T5378] loop0: p84 size 108986237 extends beyond EOD, truncated [ 59.533202][ T5378] loop0: p85 size 108986237 extends beyond EOD, truncated [ 59.547064][ T5378] loop0: p86 size 108986237 extends beyond EOD, truncated [ 59.562571][ T5378] loop0: p87 size 108986237 extends beyond EOD, truncated [ 59.588249][ T5378] loop0: p88 size 108986237 extends beyond EOD, truncated [ 59.600859][ T5378] loop0: p89 size 108986237 extends beyond EOD, truncated [ 59.618426][ T5378] loop0: p90 size 108986237 extends beyond EOD, truncated [ 59.639993][ T5378] loop0: p91 size 108986237 extends beyond EOD, truncated [ 59.649306][ T5378] loop0: p92 size 108986237 extends beyond EOD, truncated [ 59.659944][ T5378] loop0: p93 size 108986237 extends beyond EOD, truncated [ 59.668533][ T5378] loop0: p94 size 108986237 extends beyond EOD, truncated [ 59.684081][ T5378] loop0: p95 size 108986237 extends beyond EOD, truncated [ 59.692781][ T5378] loop0: p96 size 108986237 extends beyond EOD, truncated [ 59.717260][ T5378] loop0: p97 size 108986237 extends beyond EOD, truncated [ 59.734220][ T5378] loop0: p98 size 108986237 extends beyond EOD, truncated [ 59.742581][ T5378] loop0: p99 size 108986237 extends beyond EOD, truncated [ 59.752458][ T5378] loop0: p100 size 108986237 extends beyond EOD, truncated [ 59.760823][ T5378] loop0: p101 size 108986237 extends beyond EOD, truncated [ 59.775035][ T5378] loop0: p102 size 108986237 extends beyond EOD, truncated [ 59.784701][ T5378] loop0: p103 size 108986237 extends beyond EOD, truncated [ 59.795955][ T5378] loop0: p104 size 108986237 extends beyond EOD, truncated [ 59.804400][ T5378] loop0: p105 size 108986237 extends beyond EOD, truncated [ 59.828167][ T5378] loop0: p106 size 108986237 extends beyond EOD, truncated [ 59.842746][ T5378] loop0: p107 size 108986237 extends beyond EOD, truncated [ 59.851973][ T5378] loop0: p108 size 108986237 extends beyond EOD, truncated [ 59.867758][ T5378] loop0: p109 size 108986237 extends beyond EOD, truncated [ 59.884406][ T5378] loop0: p110 size 108986237 extends beyond EOD, truncated [ 59.903422][ T5378] loop0: p111 size 108986237 extends beyond EOD, truncated [ 59.917619][ T5613] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1043'. [ 59.927225][ T5378] loop0: p112 size 108986237 extends beyond EOD, truncated [ 59.939622][ T5378] loop0: p113 size 108986237 extends beyond EOD, truncated [ 59.953411][ T5378] loop0: p114 size 108986237 extends beyond EOD, truncated [ 59.967372][ T5378] loop0: p115 size 108986237 extends beyond EOD, truncated [ 59.976332][ T5378] loop0: p116 size 108986237 extends beyond EOD, truncated [ 59.988422][ T5378] loop0: p117 size 108986237 extends beyond EOD, truncated [ 59.996587][ T5378] loop0: p118 size 108986237 extends beyond EOD, truncated [ 60.007506][ T5378] loop0: p119 size 108986237 extends beyond EOD, truncated [ 60.016946][ T5378] loop0: p120 size 108986237 extends beyond EOD, truncated [ 60.030077][ T5378] loop0: p121 size 108986237 extends beyond EOD, truncated [ 60.038185][ T5378] loop0: p122 size 108986237 extends beyond EOD, truncated [ 60.051607][ T5378] loop0: p123 size 108986237 extends beyond EOD, truncated [ 60.059702][ T5378] loop0: p124 size 108986237 extends beyond EOD, truncated [ 60.068362][ T5628] bond0: (slave veth0): Error: Device can not be enslaved while up [ 60.073123][ T5378] loop0: p125 size 108986237 extends beyond EOD, truncated [ 60.084495][ T5378] loop0: p126 size 108986237 extends beyond EOD, truncated [ 60.097841][ T5378] loop0: p127 size 108986237 extends beyond EOD, truncated [ 60.105864][ T5378] loop0: p128 size 108986237 extends beyond EOD, truncated [ 60.113756][ T5378] loop0: p129 size 108986237 extends beyond EOD, truncated [ 60.127018][ T5378] loop0: p130 size 108986237 extends beyond EOD, truncated [ 60.140581][ T5378] loop0: p131 size 108986237 extends beyond EOD, truncated [ 60.148609][ T5378] loop0: p132 size 108986237 extends beyond EOD, truncated [ 60.156294][ T5378] loop0: p133 size 108986237 extends beyond EOD, truncated [ 60.164166][ T5378] loop0: p134 size 108986237 extends beyond EOD, truncated [ 60.171912][ T5378] loop0: p135 size 108986237 extends beyond EOD, truncated [ 60.179906][ T5378] loop0: p136 size 108986237 extends beyond EOD, truncated [ 60.187626][ T5378] loop0: p137 size 108986237 extends beyond EOD, truncated [ 60.195336][ T5378] loop0: p138 size 108986237 extends beyond EOD, truncated [ 60.203857][ T5378] loop0: p139 size 108986237 extends beyond EOD, truncated [ 60.211695][ T5378] loop0: p140 size 108986237 extends beyond EOD, truncated [ 60.224225][ T5378] loop0: p141 size 108986237 extends beyond EOD, truncated [ 60.232404][ T5378] loop0: p142 size 108986237 extends beyond EOD, truncated [ 60.240944][ T5378] loop0: p143 size 108986237 extends beyond EOD, truncated [ 60.248793][ T5378] loop0: p144 size 108986237 extends beyond EOD, truncated [ 60.257163][ T5378] loop0: p145 size 108986237 extends beyond EOD, truncated [ 60.265477][ T5378] loop0: p146 size 108986237 extends beyond EOD, truncated [ 60.274983][ T5378] loop0: p147 size 108986237 extends beyond EOD, truncated [ 60.283106][ T5378] loop0: p148 size 108986237 extends beyond EOD, truncated [ 60.291213][ T5378] loop0: p149 size 108986237 extends beyond EOD, truncated [ 60.299090][ T5378] loop0: p150 size 108986237 extends beyond EOD, truncated [ 60.307869][ T5378] loop0: p151 size 108986237 extends beyond EOD, truncated [ 60.316350][ T5378] loop0: p152 size 108986237 extends beyond EOD, truncated [ 60.325511][ T5378] loop0: p153 size 108986237 extends beyond EOD, truncated [ 60.333815][ T5378] loop0: p154 size 108986237 extends beyond EOD, truncated [ 60.344187][ T5378] loop0: p155 size 108986237 extends beyond EOD, truncated [ 60.352180][ T5378] loop0: p156 size 108986237 extends beyond EOD, truncated [ 60.361562][ T5378] loop0: p157 size 108986237 extends beyond EOD, truncated [ 60.369574][ T5378] loop0: p158 size 108986237 extends beyond EOD, truncated [ 60.377371][ T5378] loop0: p159 size 108986237 extends beyond EOD, truncated [ 60.386679][ T5378] loop0: p160 size 108986237 extends beyond EOD, truncated [ 60.394524][ T5378] loop0: p161 size 108986237 extends beyond EOD, truncated [ 60.404213][ T5378] loop0: p162 size 108986237 extends beyond EOD, truncated [ 60.415567][ T5378] loop0: p163 size 108986237 extends beyond EOD, truncated [ 60.425203][ T5378] loop0: p164 size 108986237 extends beyond EOD, truncated [ 60.433177][ T5378] loop0: p165 size 108986237 extends beyond EOD, truncated [ 60.436278][ T5652] xt_time: invalid argument - start or stop time greater than 23:59:59 [ 60.440795][ T5378] loop0: p166 size 108986237 extends beyond EOD, truncated [ 60.456446][ T5378] loop0: p167 size 108986237 extends beyond EOD, truncated [ 60.464210][ T5378] loop0: p168 size 108986237 extends beyond EOD, truncated [ 60.471918][ T5378] loop0: p169 size 108986237 extends beyond EOD, truncated [ 60.479632][ T5378] loop0: p170 size 108986237 extends beyond EOD, truncated [ 60.483822][ T5654] loop1: detected capacity change from 0 to 764 [ 60.487427][ T5378] loop0: p171 size 108986237 extends beyond EOD, truncated [ 60.500954][ T5378] loop0: p172 size 108986237 extends beyond EOD, truncated [ 60.501736][ T5654] rock: directory entry would overflow storage [ 60.508788][ T5378] loop0: p173 size 108986237 extends beyond EOD, truncated [ 60.514448][ T5654] rock: sig=0x4654, size=5, remaining=4 [ 60.522169][ T5378] loop0: p174 size 108986237 extends beyond EOD, truncated [ 60.537229][ T5378] loop0: p175 size 108986237 extends beyond EOD, truncated [ 60.546613][ T5378] loop0: p176 size 108986237 extends beyond EOD, truncated [ 60.555344][ T5378] loop0: p177 size 108986237 extends beyond EOD, truncated [ 60.569745][ T5378] loop0: p178 size 108986237 extends beyond EOD, truncated [ 60.585197][ T5378] loop0: p179 size 108986237 extends beyond EOD, truncated [ 60.593842][ T5378] loop0: p180 size 108986237 extends beyond EOD, truncated [ 60.602055][ T5378] loop0: p181 size 108986237 extends beyond EOD, truncated [ 60.610201][ T5378] loop0: p182 size 108986237 extends beyond EOD, truncated [ 60.612056][ T5660] netlink: 220 bytes leftover after parsing attributes in process `syz.1.1066'. [ 60.618094][ T5378] loop0: p183 size 108986237 extends beyond EOD, truncated [ 60.635632][ T5378] loop0: p184 size 108986237 extends beyond EOD, truncated [ 60.644547][ T5378] loop0: p185 size 108986237 extends beyond EOD, truncated [ 60.658350][ T5378] loop0: p186 size 108986237 extends beyond EOD, truncated [ 60.673549][ T5378] loop0: p187 size 108986237 extends beyond EOD, truncated [ 60.682514][ T5378] loop0: p188 size 108986237 extends beyond EOD, truncated [ 60.696081][ T5378] loop0: p189 size 108986237 extends beyond EOD, truncated [ 60.710474][ T5378] loop0: p190 size 108986237 extends beyond EOD, truncated [ 60.718270][ T5378] loop0: p191 size 108986237 extends beyond EOD, truncated [ 60.727507][ T5378] loop0: p192 size 108986237 extends beyond EOD, truncated [ 60.735377][ T5378] loop0: p193 size 108986237 extends beyond EOD, truncated [ 60.745825][ T5378] loop0: p194 size 108986237 extends beyond EOD, truncated [ 60.753329][ T5672] netdevsim netdevsim1 netdevsim0: entered promiscuous mode [ 60.753704][ T5378] loop0: p195 size 108986237 extends beyond EOD, truncated [ 60.760854][ T5672] netdevsim netdevsim1 netdevsim0: entered allmulticast mode [ 60.770068][ T5378] loop0: p196 size 108986237 extends beyond EOD, truncated [ 60.784021][ T5378] loop0: p197 size 108986237 extends beyond EOD, truncated [ 60.792031][ T5378] loop0: p198 size 108986237 extends beyond EOD, truncated [ 60.814202][ T5378] loop0: p199 size 108986237 extends beyond EOD, truncated [ 60.829365][ T5378] loop0: p200 size 108986237 extends beyond EOD, truncated [ 60.852820][ T5378] loop0: p201 size 108986237 extends beyond EOD, truncated [ 60.861570][ T5378] loop0: p202 size 108986237 extends beyond EOD, truncated [ 60.877422][ T5684] netlink: 'syz.1.1078': attribute type 2 has an invalid length. [ 60.885638][ T5378] loop0: p203 size 108986237 extends beyond EOD, truncated [ 60.897583][ T5378] loop0: p204 size 108986237 extends beyond EOD, truncated [ 60.906193][ T5378] loop0: p205 size 108986237 extends beyond EOD, truncated [ 60.925447][ T5378] loop0: p206 size 108986237 extends beyond EOD, truncated [ 60.937209][ T5378] loop0: p207 size 108986237 extends beyond EOD, truncated [ 60.946057][ T5378] loop0: p208 size 108986237 extends beyond EOD, truncated [ 60.958858][ T5378] loop0: p209 size 108986237 extends beyond EOD, truncated [ 60.982742][ T5378] loop0: p210 size 108986237 extends beyond EOD, truncated [ 60.990953][ T5378] loop0: p211 size 108986237 extends beyond EOD, truncated [ 60.998750][ T5378] loop0: p212 size 108986237 extends beyond EOD, truncated [ 61.007351][ T5378] loop0: p213 size 108986237 extends beyond EOD, truncated [ 61.015553][ T5378] loop0: p214 size 108986237 extends beyond EOD, truncated [ 61.023429][ T5378] loop0: p215 size 108986237 extends beyond EOD, truncated [ 61.031513][ T5378] loop0: p216 size 108986237 extends beyond EOD, truncated [ 61.039339][ T5378] loop0: p217 size 108986237 extends beyond EOD, truncated [ 61.047267][ T5378] loop0: p218 size 108986237 extends beyond EOD, truncated [ 61.055310][ T5378] loop0: p219 size 108986237 extends beyond EOD, truncated [ 61.063110][ T5378] loop0: p220 size 108986237 extends beyond EOD, truncated [ 61.070949][ T5378] loop0: p221 size 108986237 extends beyond EOD, truncated [ 61.078810][ T5378] loop0: p222 size 108986237 extends beyond EOD, truncated [ 61.086573][ T5378] loop0: p223 size 108986237 extends beyond EOD, truncated [ 61.096111][ T5378] loop0: p224 size 108986237 extends beyond EOD, truncated [ 61.103756][ T5378] loop0: p225 size 108986237 extends beyond EOD, truncated [ 61.111775][ T5378] loop0: p226 size 108986237 extends beyond EOD, truncated [ 61.120757][ T5378] loop0: p227 size 108986237 extends beyond EOD, truncated [ 61.128401][ T5711] netlink: 830 bytes leftover after parsing attributes in process `syz.2.1085'. [ 61.128668][ T5378] loop0: p228 size 108986237 extends beyond EOD, truncated [ 61.146288][ T5378] loop0: p229 size 108986237 extends beyond EOD, truncated [ 61.156235][ T5378] loop0: p230 size 108986237 extends beyond EOD, truncated [ 61.164356][ T5378] loop0: p231 size 108986237 extends beyond EOD, truncated [ 61.172239][ T5378] loop0: p232 size 108986237 extends beyond EOD, truncated [ 61.179998][ T5378] loop0: p233 size 108986237 extends beyond EOD, truncated [ 61.191911][ T5378] loop0: p234 size 108986237 extends beyond EOD, truncated [ 61.200050][ T5378] loop0: p235 size 108986237 extends beyond EOD, truncated [ 61.213497][ T5378] loop0: p236 size 108986237 extends beyond EOD, truncated [ 61.221817][ T5378] loop0: p237 size 108986237 extends beyond EOD, truncated [ 61.235225][ T5378] loop0: p238 size 108986237 extends beyond EOD, truncated [ 61.243421][ T5378] loop0: p239 size 108986237 extends beyond EOD, truncated [ 61.251413][ T5378] loop0: p240 size 108986237 extends beyond EOD, truncated [ 61.259879][ T5378] loop0: p241 size 108986237 extends beyond EOD, truncated [ 61.268735][ T5378] loop0: p242 size 108986237 extends beyond EOD, truncated [ 61.276953][ T5378] loop0: p243 size 108986237 extends beyond EOD, truncated [ 61.284774][ T5378] loop0: p244 size 108986237 extends beyond EOD, truncated [ 61.292667][ T5378] loop0: p245 size 108986237 extends beyond EOD, truncated [ 61.301143][ T5378] loop0: p246 size 108986237 extends beyond EOD, truncated [ 61.308885][ T5378] loop0: p247 size 108986237 extends beyond EOD, truncated [ 61.316952][ T5378] loop0: p248 size 108986237 extends beyond EOD, truncated [ 61.324700][ T5378] loop0: p249 size 108986237 extends beyond EOD, truncated [ 61.332707][ T5378] loop0: p250 size 108986237 extends beyond EOD, truncated [ 61.340432][ T5378] loop0: p251 size 108986237 extends beyond EOD, truncated [ 61.348200][ T5378] loop0: p252 size 108986237 extends beyond EOD, truncated [ 61.356062][ T5378] loop0: p253 size 108986237 extends beyond EOD, truncated [ 61.363847][ T5378] loop0: p254 size 108986237 extends beyond EOD, truncated [ 61.371571][ T5378] loop0: p255 size 108986237 extends beyond EOD, truncated [ 61.523057][ T4771] udevd[4771]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 61.536503][ T4774] udevd[4774]: inotify_add_watch(7, /dev/loop0p5, 10) failed: No such file or directory [ 61.539685][ T4176] udevd[4176]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 61.552121][ T3292] udevd[3292]: inotify_add_watch(7, /dev/loop0p6, 10) failed: No such file or directory [ 61.557131][ T5740] syz.2.1110: attempt to access beyond end of device [ 61.557131][ T5740] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 61.590724][ T3550] udevd[3550]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory [ 61.602651][ T4773] udevd[4773]: inotify_add_watch(7, /dev/loop0p9, 10) failed: No such file or directory [ 61.613860][ T3525] udevd[3525]: inotify_add_watch(7, /dev/loop0p10, 10) failed: No such file or directory [ 61.614066][ T4769] udevd[4769]: inotify_add_watch(7, /dev/loop0p12, 10) failed: No such file or directory [ 61.644735][ T4692] udevd[4692]: inotify_add_watch(7, /dev/loop0p11, 10) failed: No such file or directory [ 61.645103][ T3294] udevd[3294]: inotify_add_watch(7, /dev/loop0p7, 10) failed: No such file or directory [ 61.869194][ T5781] netlink: 'syz.0.1117': attribute type 1 has an invalid length. [ 61.918625][ T5784] syz.1.1118: attempt to access beyond end of device [ 61.918625][ T5784] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 62.061327][ T5798] loop1: detected capacity change from 0 to 256 [ 62.083866][ T5800] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1126'. [ 62.180002][ T5807] xt_hashlimit: max too large, truncated to 1048576 [ 62.411663][ T5836] xt_connbytes: Forcing CT accounting to be enabled [ 62.434523][ T5836] --map-set only usable from mangle table [ 62.879085][ T5894] IPVS: set_ctl: invalid protocol: 98 172.20.20.48:20001 [ 62.995693][ T5908] loop4: detected capacity change from 0 to 128 [ 63.095493][ T5916] netlink: 'syz.4.1180': attribute type 4 has an invalid length. [ 63.175257][ T5930] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1188'. [ 63.184427][ T5930] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1188'. [ 63.193510][ T5930] netlink: 81 bytes leftover after parsing attributes in process `syz.2.1188'. [ 63.312417][ T5950] netlink: 'syz.4.1206': attribute type 3 has an invalid length. [ 63.397852][ T5961] netlink: 4268 bytes leftover after parsing attributes in process `syz.2.1199'. [ 63.421348][ T5961] netlink: 4268 bytes leftover after parsing attributes in process `syz.2.1199'. [ 63.443427][ T29] kauditd_printk_skb: 156 callbacks suppressed [ 63.443444][ T29] audit: type=1326 audit(2000000000.930:8856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5963 comm="syz.3.1212" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdee10d0a9 code=0x7ffc0000 [ 63.452146][ T5968] netlink: 'syz.4.1204': attribute type 11 has an invalid length. [ 63.499327][ T5966] loop3: detected capacity change from 0 to 512 [ 63.535607][ T5966] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 63.546421][ T29] audit: type=1326 audit(2000000000.970:8857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5963 comm="syz.3.1212" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdee10d0a9 code=0x7ffc0000 [ 63.569980][ T29] audit: type=1326 audit(2000000000.980:8858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5963 comm="syz.3.1212" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fcdee10d0a9 code=0x7ffc0000 [ 63.593428][ T29] audit: type=1326 audit(2000000000.980:8859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5963 comm="syz.3.1212" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fcdee10d0e3 code=0x7ffc0000 [ 63.616837][ T29] audit: type=1326 audit(2000000000.980:8860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5963 comm="syz.3.1212" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fcdee10bb5f code=0x7ffc0000 [ 63.640124][ T29] audit: type=1326 audit(2000000000.980:8861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5963 comm="syz.3.1212" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fcdee10d137 code=0x7ffc0000 [ 63.663852][ T29] audit: type=1326 audit(2000000000.980:8862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5963 comm="syz.3.1212" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fcdee10ba10 code=0x7ffc0000 [ 63.687306][ T29] audit: type=1326 audit(2000000000.980:8863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5963 comm="syz.3.1212" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fcdee10ccab code=0x7ffc0000 [ 63.711128][ T29] audit: type=1326 audit(2000000001.020:8864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5963 comm="syz.3.1212" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fcdee10bd0a code=0x7ffc0000 [ 63.734758][ T29] audit: type=1326 audit(2000000001.020:8865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5963 comm="syz.3.1212" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fcdee10bd0a code=0x7ffc0000 [ 63.737378][ T5985] netlink: 'syz.1.1215': attribute type 3 has an invalid length. [ 63.829468][ T5966] EXT4-fs (loop3): 1 truncate cleaned up [ 63.841092][ T5966] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 63.868665][ T5999] loop1: detected capacity change from 0 to 512 [ 63.876323][ T5999] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 63.909544][ T6004] netlink: 'syz.2.1221': attribute type 2 has an invalid length. [ 63.928105][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 63.958773][ T5999] EXT4-fs (loop1): 1 truncate cleaned up [ 63.981125][ T5999] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 64.058824][ T5999] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.1231: corrupted in-inode xattr: overlapping e_value [ 64.123825][ T5999] EXT4-fs warning (device loop1): ext4_xattr_set_entry:1772: inode #15: comm syz.1.1231: unable to update i_inline_off [ 64.164139][ T6033] xt_ecn: cannot match TCP bits for non-tcp packets [ 64.191536][ T6037] ieee802154 phy0 wpan0: encryption failed: -22 [ 64.215072][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 64.339185][ T6057] __nla_validate_parse: 3 callbacks suppressed [ 64.339204][ T6057] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1249'. [ 64.354637][ T6057] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1249'. [ 64.382561][ T6065] xt_ecn: cannot match TCP bits for non-tcp packets [ 64.386848][ T6064] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1252'. [ 64.584346][ T3379] IPVS: starting estimator thread 0... [ 64.689763][ T6096] IPVS: using max 2304 ests per chain, 115200 per kthread [ 64.715037][ T6121] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1282'. [ 64.881830][ T6143] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1291'. [ 64.902176][ T6148] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1294'. [ 64.911169][ T6148] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1294'. [ 65.231819][ T6204] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1323'. [ 65.371905][ T6226] loop0: detected capacity change from 0 to 764 [ 65.401176][ T6231] bridge2: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 65.522636][ T6247] loop2: detected capacity change from 0 to 512 [ 65.538795][ T6247] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 65.582731][ T6247] EXT4-fs (loop2): 1 truncate cleaned up [ 65.606374][ T6247] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 65.678054][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 66.127036][ T6348] bridge2: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 66.184409][ T6353] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1393'. [ 66.317110][ T6370] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1401'. [ 66.334226][ T6374] xt_TPROXY: Can be used only with -p tcp or -p udp [ 66.517172][ T6402] SET target dimension over the limit! [ 66.818267][ T6456] netlink: 'syz.4.1444': attribute type 21 has an invalid length. [ 67.305581][ T6540] bond2: entered promiscuous mode [ 67.367125][ T6549] sctp: [Deprecated]: syz.1.1488 (pid 6549) Use of int in maxseg socket option. [ 67.367125][ T6549] Use struct sctp_assoc_value instead [ 67.579307][ T6586] sctp: [Deprecated]: syz.2.1507 (pid 6586) Use of int in maxseg socket option. [ 67.579307][ T6586] Use struct sctp_assoc_value instead [ 68.175275][ T6689] loop1: detected capacity change from 0 to 512 [ 68.187961][ T6689] EXT4-fs: Ignoring removed oldalloc option [ 68.228404][ T6689] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 68.240036][ T6689] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended [ 68.245160][ T6689] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=b846c01c, mo2=0102] [ 68.304536][ T6689] System zones: 0-2, 18-18, 34-34 [ 68.305040][ T6689] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -117 [ 68.305194][ T6689] EXT4-fs error (device loop1): ext4_orphan_get:1415: comm syz.1.1558: bad orphan inode 15 [ 68.305592][ T6689] ext4_test_bit(bit=14, block=18) = 1 [ 68.305605][ T6689] is_bad_inode(inode)=0 [ 68.305611][ T6689] NEXT_ORPHAN(inode)=2264924160 [ 68.305620][ T6689] max_ino=32 [ 68.305626][ T6689] i_nlink=0 [ 68.305655][ T6689] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1145: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 68.306812][ T6689] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1558: bg 0: block 80: padding at end of block bitmap is not set [ 68.307077][ T6689] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 68.411147][ T6689] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 68.455446][ T29] kauditd_printk_skb: 41 callbacks suppressed [ 68.455464][ T29] audit: type=1400 audit(2000000005.940:8907): avc: denied { create } for pid=6685 comm="syz.1.1558" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 68.526366][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.586870][ T29] audit: type=1400 audit(2000000006.070:8908): avc: denied { setcheckreqprot } for pid=6729 comm="syz.1.1575" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 68.663281][ T29] audit: type=1400 audit(2000000006.130:8909): avc: denied { create } for pid=6739 comm="syz.1.1583" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 68.683988][ T29] audit: type=1400 audit(2000000006.140:8910): avc: denied { write } for pid=6739 comm="syz.1.1583" path="socket:[15430]" dev="sockfs" ino=15430 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 68.708421][ T29] audit: type=1400 audit(2000000006.140:8911): avc: denied { nlmsg_read } for pid=6739 comm="syz.1.1583" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 68.891139][ T6774] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 68.898478][ T6774] IPv6: NLM_F_CREATE should be set when creating new route [ 68.905705][ T6774] IPv6: NLM_F_CREATE should be set when creating new route [ 68.989488][ T29] audit: type=1326 audit(2000000006.470:8912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6784 comm="syz.0.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b861fd0a9 code=0x7ffc0000 [ 69.013278][ T29] audit: type=1326 audit(2000000006.480:8913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6784 comm="syz.0.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b861fd0a9 code=0x7ffc0000 [ 69.047032][ T6794] SELinux: syz.3.1608 (6794) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 69.114177][ T6798] netlink: 'syz.1.1610': attribute type 10 has an invalid length. [ 69.114111][ T29] audit: type=1326 audit(2000000006.530:8914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6784 comm="syz.0.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=111 compat=0 ip=0x7f5b861fd0a9 code=0x7ffc0000 [ 69.145597][ T29] audit: type=1326 audit(2000000006.530:8915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6784 comm="syz.0.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b861fd0a9 code=0x7ffc0000 [ 69.169017][ T29] audit: type=1326 audit(2000000006.530:8916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6784 comm="syz.0.1615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b861fd0a9 code=0x7ffc0000 [ 69.196939][ T6798] bridge0: port 3(team0) entered blocking state [ 69.203331][ T6798] bridge0: port 3(team0) entered disabled state [ 69.212242][ T6798] team0: entered allmulticast mode [ 69.217425][ T6798] team_slave_0: entered allmulticast mode [ 69.223304][ T6798] team_slave_1: entered allmulticast mode [ 69.235965][ T6798] team0: entered promiscuous mode [ 69.241095][ T6798] team_slave_0: entered promiscuous mode [ 69.246856][ T6798] team_slave_1: entered promiscuous mode [ 69.255058][ T6798] bridge0: port 3(team0) entered blocking state [ 69.261381][ T6798] bridge0: port 3(team0) entered forwarding state [ 69.276047][ T6813] sctp: [Deprecated]: syz.0.1620 (pid 6813) Use of struct sctp_assoc_value in delayed_ack socket option. [ 69.276047][ T6813] Use struct sctp_sack_info instead [ 69.360271][ T6826] __nla_validate_parse: 16 callbacks suppressed [ 69.360291][ T6826] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1626'. [ 69.375487][ T6826] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1626'. [ 69.403994][ T6832] netlink: 84 bytes leftover after parsing attributes in process `syz.2.1628'. [ 69.413084][ T6832] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1628'. [ 69.422112][ T6832] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1628'. [ 69.489588][ T6843] No such timeout policy "syz1" [ 69.674324][ T6877] netlink: 84 bytes leftover after parsing attributes in process `syz.0.1650'. [ 69.683379][ T6877] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1650'. [ 69.692489][ T6877] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1650'. [ 69.744026][ T6886] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 69.827604][ T6896] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1661'. [ 69.836660][ T6896] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1661'. [ 69.897820][ T6907] xt_CT: You must specify a L4 protocol and not use inversions on it [ 69.937210][ T6912] netlink: 'syz.4.1666': attribute type 3 has an invalid length. [ 69.976824][ T6922] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 70.030043][ T6929] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 70.037291][ T6929] IPv6: NLM_F_CREATE should be set when creating new route [ 70.044578][ T6929] IPv6: NLM_F_CREATE should be set when creating new route [ 70.067007][ T6932] tc_dump_action: action bad kind [ 70.277581][ T6965] netlink: 'syz.0.1691': attribute type 21 has an invalid length. [ 70.863719][ T7064] 9pnet_fd: Insufficient options for proto=fd [ 70.874343][ T7069] netlink: 'syz.2.1745': attribute type 8 has an invalid length. [ 71.409610][ T7161] netlink: 'syz.3.1789': attribute type 8 has an invalid length. [ 71.489725][ T7173] netlink: 'syz.0.1795': attribute type 3 has an invalid length. [ 71.572621][ T7185] netlink: 'syz.4.1801': attribute type 5 has an invalid length. [ 71.997760][ T7254] loop1: detected capacity change from 0 to 2048 [ 72.041099][ T7254] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 72.122761][ T7276] xt_NFQUEUE: number of total queues is 0 [ 72.129226][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.169834][ T7280] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 72.178342][ T7280] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 72.233827][ T7289] syz.3.1849 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 72.355640][ T7309] qrtr: Invalid version 0 [ 72.474236][ T7325] usb usb8: usbfs: process 7325 (syz.0.1866) did not claim interface 0 before use [ 72.891371][ T7393] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 72.920389][ T7393] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 72.938924][ T7398] loop4: detected capacity change from 0 to 512 [ 72.967074][ T7398] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 72.999781][ T7398] ext4 filesystem being mounted at /385/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 73.038108][ T7398] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #15: comm syz.4.1902: corrupted xattr block 33: e_value out of bounds [ 73.054915][ T7398] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 73.064454][ T7398] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #15: comm syz.4.1902: corrupted xattr block 33: e_value out of bounds [ 73.090863][ T7398] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 73.092305][ T7419] usb usb8: usbfs: process 7419 (syz.2.1910) did not claim interface 0 before use [ 73.114206][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.223429][ T7437] program syz.2.1919 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 73.301303][ T7449] netlink: 'syz.1.1935': attribute type 97 has an invalid length. [ 73.463495][ T29] kauditd_printk_skb: 61 callbacks suppressed [ 73.463515][ T29] audit: type=1400 audit(2000000010.950:8978): avc: denied { prog_load } for pid=7472 comm="syz.4.1938" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 73.488763][ T29] audit: type=1400 audit(2000000010.950:8979): avc: denied { bpf } for pid=7472 comm="syz.4.1938" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 73.571496][ T7486] netlink: 'syz.2.1941': attribute type 2 has an invalid length. [ 73.579433][ T7486] netlink: 'syz.2.1941': attribute type 3 has an invalid length. [ 73.585617][ T29] audit: type=1400 audit(2000000011.000:8980): avc: denied { perfmon } for pid=7472 comm="syz.4.1938" capability=38 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 73.608284][ T29] audit: type=1400 audit(2000000011.000:8981): avc: denied { prog_run } for pid=7472 comm="syz.4.1938" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 73.627498][ T29] audit: type=1400 audit(2000000011.000:8982): avc: denied { create } for pid=7475 comm="syz.2.1937" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 73.647039][ T29] audit: type=1400 audit(2000000011.000:8983): avc: denied { bind } for pid=7475 comm="syz.2.1937" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 73.666342][ T29] audit: type=1400 audit(2000000011.010:8984): avc: denied { read } for pid=2982 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 73.688496][ T29] audit: type=1400 audit(2000000011.010:8985): avc: denied { search } for pid=2982 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 73.710188][ T29] audit: type=1400 audit(2000000011.010:8986): avc: denied { append } for pid=2982 comm="syslogd" name="messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 73.732488][ T29] audit: type=1400 audit(2000000011.010:8987): avc: denied { open } for pid=2982 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 73.790506][ T7505] loop0: detected capacity change from 0 to 1764 [ 73.997747][ T7541] kernel profiling enabled (shift: 5) [ 74.113533][ T7559] loop3: detected capacity change from 0 to 1024 [ 74.154493][ T7559] EXT4-fs: Ignoring removed orlov option [ 74.176391][ T7559] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.288417][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.338111][ T7596] sctp: [Deprecated]: syz.1.1996 (pid 7596) Use of int in maxseg socket option. [ 74.338111][ T7596] Use struct sctp_assoc_value instead [ 74.382480][ T7603] delete_channel: no stack [ 74.424745][ T7610] netlink: 'syz.4.1999': attribute type 5 has an invalid length. [ 74.472824][ T7619] __nla_validate_parse: 13 callbacks suppressed [ 74.472840][ T7619] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2003'. [ 74.495356][ T7621] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2004'. [ 74.538974][ T7621] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2004'. [ 74.572275][ T7621] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2004'. [ 74.609468][ T7621] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2004'. [ 74.636277][ T7621] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2004'. [ 74.646144][ T7621] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2004'. [ 74.664867][ T7641] mmap: syz.4.2015 (7641): VmData 29077504 exceed data ulimit 2. Update limits or use boot option ignore_rlimit_data. [ 74.679606][ T7621] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2004'. [ 74.699136][ T7621] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2004'. [ 74.712574][ T7621] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2004'. [ 74.736899][ T7651] loop1: detected capacity change from 0 to 1024 [ 74.762329][ T7651] EXT4-fs: Ignoring removed orlov option [ 74.787218][ T7661] netlink: 'syz.3.2034': attribute type 5 has an invalid length. [ 74.829754][ T7651] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.887892][ T7673] loop3: detected capacity change from 0 to 512 [ 74.905779][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.950566][ T7673] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 74.990842][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.090108][ T7703] netlink: 'syz.4.2043': attribute type 10 has an invalid length. [ 75.392734][ T7758] IPv6: NLM_F_REPLACE set, but no existing node found! [ 75.427932][ T7761] loop1: detected capacity change from 0 to 512 [ 75.475221][ T7761] EXT4-fs error (device loop1): ext4_orphan_get:1389: inode #15: comm syz.1.2074: casefold flag without casefold feature [ 75.497419][ T7761] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.2074: couldn't read orphan inode 15 (err -117) [ 75.544504][ T7761] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 75.595635][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.644086][ T7785] delete_channel: no stack [ 75.721817][ T7799] lo speed is unknown, defaulting to 1000 [ 75.728729][ T7799] lo speed is unknown, defaulting to 1000 [ 75.769023][ T7799] lo speed is unknown, defaulting to 1000 [ 75.869241][ T7799] infiniband sz1: set active [ 75.874046][ T7799] infiniband sz1: added lo [ 75.878788][ T3379] lo speed is unknown, defaulting to 1000 [ 75.894745][ T7799] RDS/IB: sz1: added [ 75.898857][ T7799] smc: adding ib device sz1 with port count 1 [ 75.915640][ T7799] smc: ib device sz1 port 1 has pnetid [ 75.921733][ T3379] lo speed is unknown, defaulting to 1000 [ 75.953641][ T7799] lo speed is unknown, defaulting to 1000 [ 76.006865][ T7799] lo speed is unknown, defaulting to 1000 [ 76.113422][ T7799] lo speed is unknown, defaulting to 1000 [ 76.203083][ T7799] lo speed is unknown, defaulting to 1000 [ 76.278991][ T7799] lo speed is unknown, defaulting to 1000 [ 76.631999][ T7911] netlink: 'syz.0.2145': attribute type 75 has an invalid length. [ 76.741010][ T7925] xt_CT: You must specify a L4 protocol and not use inversions on it [ 76.885982][ T7945] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check. [ 77.095067][ T7973] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0) [ 77.124048][ T7970] netlink: 'syz.3.2173': attribute type 21 has an invalid length. [ 77.233034][ T7988] sctp: [Deprecated]: syz.2.2183 (pid 7988) Use of int in max_burst socket option deprecated. [ 77.233034][ T7988] Use struct sctp_assoc_value instead [ 77.233090][ T7986] netlink: 'syz.0.2182': attribute type 1 has an invalid length. [ 77.256527][ T7986] netlink: 'syz.0.2182': attribute type 2 has an invalid length. [ 77.361239][ T8001] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0) [ 77.394946][ T8002] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check. [ 77.538803][ T8030] loop4: detected capacity change from 0 to 512 [ 77.565193][ T8030] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 77.608526][ T8030] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 77.632966][ T8030] ext4 filesystem being mounted at /443/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 77.651396][ T8045] loop3: detected capacity change from 0 to 128 [ 77.660364][ T8045] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x00000000 (sector = 1) [ 77.693554][ T8045] FAT-fs (loop3): Directory bread(block 11554) failed [ 77.715117][ T8051] loop0: detected capacity change from 0 to 2048 [ 77.721710][ T8045] FAT-fs (loop3): Directory bread(block 11555) failed [ 77.728623][ T8045] FAT-fs (loop3): Directory bread(block 11556) failed [ 77.735557][ T8045] FAT-fs (loop3): Directory bread(block 11557) failed [ 77.742658][ T8045] FAT-fs (loop3): Directory bread(block 11558) failed [ 77.749729][ T8045] FAT-fs (loop3): Directory bread(block 11559) failed [ 77.757130][ T8045] FAT-fs (loop3): Directory bread(block 11560) failed [ 77.758762][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.764137][ T8045] FAT-fs (loop3): Directory bread(block 11561) failed [ 77.778799][ T8051] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 77.781992][ T8045] FAT-fs (loop3): Directory bread(block 11562) failed [ 77.797778][ T8051] ext4 filesystem being mounted at /399/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 77.799005][ T8045] FAT-fs (loop3): Directory bread(block 11563) failed [ 77.832774][ T3300] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.948385][ T11] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x00000000 (sector = 1) [ 78.167537][ T8095] syz.4.2234 (8095) used greatest stack depth: 10072 bytes left [ 78.436230][ T8160] validate_nla: 2 callbacks suppressed [ 78.436249][ T8160] netlink: 'syz.4.2265': attribute type 32 has an invalid length. [ 78.441413][ T8161] bridge2: entered promiscuous mode [ 78.455017][ T8161] bridge2: entered allmulticast mode [ 78.512617][ T29] kauditd_printk_skb: 98 callbacks suppressed [ 78.512708][ T29] audit: type=1400 audit(2000000014.996:9086): avc: denied { read write } for pid=8170 comm="syz.1.2272" name="rdma_cm" dev="devtmpfs" ino=251 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 78.600446][ T29] audit: type=1400 audit(2000000015.026:9087): avc: denied { open } for pid=8170 comm="syz.1.2272" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=251 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 78.624627][ T29] audit: type=1400 audit(2000000015.036:9088): avc: denied { ioctl } for pid=8166 comm="syz.4.2268" path="/dev/ptp0" dev="devtmpfs" ino=246 ioctlcmd=0x3d14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 78.758009][ T8203] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=8203 comm=syz.4.2287 [ 78.826575][ T8214] loop2: detected capacity change from 0 to 164 [ 78.850902][ T29] audit: type=1400 audit(2000000015.326:9089): avc: denied { create } for pid=8215 comm="syz.0.2304" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 78.883544][ T29] audit: type=1400 audit(2000000015.356:9090): avc: denied { getopt } for pid=8215 comm="syz.0.2304" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 78.958160][ T8232] loop2: detected capacity change from 0 to 512 [ 78.983362][ C1] hrtimer: interrupt took 26347 ns [ 79.002316][ T8232] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 79.023636][ T8241] loop0: detected capacity change from 0 to 512 [ 79.033626][ T8241] EXT4-fs: Ignoring removed oldalloc option [ 79.040006][ T8232] ext4 filesystem being mounted at /503/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 79.062355][ T8241] EXT4-fs error (device loop0): ext4_xattr_inode_iget:436: comm syz.0.2305: Parent and EA inode have the same ino 15 [ 79.076037][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 79.077374][ T8241] EXT4-fs (loop0): Remounting filesystem read-only [ 79.091735][ T8241] EXT4-fs warning (device loop0): ext4_evict_inode:259: couldn't mark inode dirty (err -5) [ 79.109447][ T29] audit: type=1400 audit(2000000015.586:9091): avc: denied { create } for pid=8247 comm="syz.3.2317" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 79.123411][ T8241] EXT4-fs (loop0): 1 orphan inode deleted [ 79.129088][ T29] audit: type=1400 audit(2000000015.586:9092): avc: denied { ioctl } for pid=8247 comm="syz.3.2317" path="socket:[19282]" dev="sockfs" ino=19282 ioctlcmd=0x89e3 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 79.160011][ T8241] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 79.172202][ T8241] SELinux: (dev loop0, type ext4) getxattr errno 5 [ 79.179532][ T8241] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 79.198818][ T8255] tmpfs: Bad value for 'mpol' [ 79.360442][ T8281] netlink: 'syz.4.2324': attribute type 21 has an invalid length. [ 79.495541][ T8309] xt_hashlimit: size too large, truncated to 1048576 [ 79.502383][ T8309] xt_hashlimit: max too large, truncated to 1048576 [ 79.512586][ T8307] netlink: 'syz.3.2336': attribute type 11 has an invalid length. [ 79.544847][ T8314] netlink: 'syz.3.2339': attribute type 4 has an invalid length. [ 79.566787][ T8316] netlink: 'syz.1.2340': attribute type 21 has an invalid length. [ 79.587152][ T8316] __nla_validate_parse: 114 callbacks suppressed [ 79.587171][ T8316] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2340'. [ 79.654592][ T29] audit: type=1400 audit(2000000016.136:9093): avc: denied { create } for pid=8323 comm="syz.0.2345" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 79.699984][ T29] audit: type=1400 audit(2000000016.166:9094): avc: denied { connect } for pid=8323 comm="syz.0.2345" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 79.737790][ T8] IPVS: starting estimator thread 0... [ 79.806310][ T8350] x_tables: unsorted entry at hook 2 [ 79.829467][ T8336] IPVS: using max 2256 ests per chain, 112800 per kthread [ 79.848871][ T8357] Invalid ELF header magic: != ELF [ 79.855420][ T29] audit: type=1400 audit(2000000016.326:9095): avc: denied { sys_module } for pid=8355 comm="syz.3.2360" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 79.879789][ T8358] netlink: 'syz.4.2358': attribute type 4 has an invalid length. [ 80.036885][ T8389] Invalid ELF header magic: != ELF [ 80.221386][ T8420] Option ' ' to dns_resolver key: bad/missing value [ 80.275843][ T8428] loop2: detected capacity change from 0 to 128 [ 80.309156][ T8428] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 80.333378][ T8428] ext4 filesystem being mounted at /520/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 80.369458][ T8428] EXT4-fs warning (device loop2): verify_group_input:137: Cannot add at group 5 (only 1 groups) [ 80.413911][ T8446] netlink: 'syz.0.2403': attribute type 1 has an invalid length. [ 80.427249][ T3307] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 80.494831][ T8458] Option ' ' to dns_resolver key: bad/missing value [ 80.671005][ T8490] ieee802154 phy0 wpan0: encryption failed: -22 [ 80.810069][ T8514] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD [ 80.839805][ T8521] ieee802154 phy0 wpan0: encryption failed: -22 [ 80.847100][ T8518] netlink: 'syz.2.2439': attribute type 1 has an invalid length. [ 80.918587][ T8533] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2447'. [ 81.040557][ T8555] IPv6: NLM_F_REPLACE set, but no existing node found! [ 81.193276][ T8583] loop4: detected capacity change from 0 to 512 [ 81.234281][ T8583] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 81.262197][ T8583] ext4 filesystem being mounted at /497/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 81.307515][ T8601] netlink: 'syz.2.2479': attribute type 16 has an invalid length. [ 81.315604][ T8601] netlink: 64138 bytes leftover after parsing attributes in process `syz.2.2479'. [ 81.317319][ T8600] netlink: 'syz.0.2478': attribute type 10 has an invalid length. [ 81.340746][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.420176][ T8616] Unknown options in mask 5 [ 81.676086][ T8665] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2511'. [ 81.730317][ T8675] IPv6: NLM_F_REPLACE set, but no existing node found! [ 81.811646][ T8685] loop3: detected capacity change from 0 to 2048 [ 81.844796][ T8695] ip6erspan0: entered promiscuous mode [ 81.912939][ T8708] netlink: 62967 bytes leftover after parsing attributes in process `syz.4.2532'. [ 81.982261][ T8716] netlink: 64138 bytes leftover after parsing attributes in process `syz.1.2536'. [ 82.047148][ T8726] xt_TCPMSS: Only works on TCP SYN packets [ 82.058202][ T8730] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2543'. [ 82.067363][ T8730] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2543'. [ 82.126388][ T8739] netlink: 388 bytes leftover after parsing attributes in process `syz.4.2545'. [ 82.269843][ T8762] netlink: 144 bytes leftover after parsing attributes in process `syz.2.2558'. [ 82.490002][ T8790] xt_TCPMSS: Only works on TCP SYN packets [ 82.547000][ T8797] loop4: detected capacity change from 0 to 128 [ 82.588183][ T8797] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 82.652379][ T8797] ext4 filesystem being mounted at /517/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 82.713989][ T8797] EXT4-fs warning (device loop4): verify_group_input:156: Last group not full [ 82.802233][ T3304] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 83.265669][ T8891] vhci_hcd: invalid port number 177 [ 83.271015][ T8891] vhci_hcd: default hub control req: 0000 v0000 i00b1 l0 [ 83.453684][ T8919] loop4: detected capacity change from 0 to 1024 [ 83.515373][ T8919] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 83.567292][ T29] kauditd_printk_skb: 32 callbacks suppressed [ 83.567385][ T29] audit: type=1400 audit(2000000020.046:9128): avc: denied { create } for pid=8918 comm="syz.4.2634" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 83.609887][ T8919] EXT4-fs error (device loop4): ext4_find_dest_de:2079: inode #2: block 16: comm syz.4.2634: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=2, rec_len=109, size=1024 fake=1 [ 83.662448][ T8952] loop2: detected capacity change from 0 to 512 [ 83.674251][ T8952] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 83.709932][ T8952] EXT4-fs (loop2): 1 truncate cleaned up [ 83.722507][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.743438][ T8952] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 83.772451][ T8969] netlink: set zone limit has 8 unknown bytes [ 83.789674][ T8971] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 83.796236][ T8971] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 83.804416][ T8971] vhci_hcd vhci_hcd.0: Device attached [ 83.814502][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.824206][ T8971] vhci_hcd vhci_hcd.0: port 0 already used [ 83.847541][ T8972] vhci_hcd: connection closed [ 83.847775][ T36] vhci_hcd: stop threads [ 83.856816][ T36] vhci_hcd: release socket [ 83.861287][ T36] vhci_hcd: disconnect device [ 83.979693][ T8999] binfmt_misc: register: failed to install interpreter file ./file2 [ 83.999817][ T29] audit: type=1326 audit(2000000020.476:9129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9004 comm="syz.3.2673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdee10d0a9 code=0x7ffc0000 [ 84.023478][ T29] audit: type=1326 audit(2000000020.476:9130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9004 comm="syz.3.2673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdee10d0a9 code=0x7ffc0000 [ 84.060247][ T29] audit: type=1326 audit(2000000020.536:9131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9004 comm="syz.3.2673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7fcdee10d0a9 code=0x7ffc0000 [ 84.083803][ T29] audit: type=1326 audit(2000000020.536:9132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9004 comm="syz.3.2673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdee10d0a9 code=0x7ffc0000 [ 84.107422][ T29] audit: type=1326 audit(2000000020.536:9133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9004 comm="syz.3.2673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdee10d0a9 code=0x7ffc0000 [ 84.134709][ T29] audit: type=1400 audit(2000000020.546:9134): avc: denied { setopt } for pid=9010 comm="syz.2.2677" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 84.212123][ T9030] xt_l2tp: v2 doesn't support IP mode [ 84.218578][ T9029] binfmt_misc: register: failed to install interpreter file ./file2 [ 84.297256][ T9045] loop4: detected capacity change from 0 to 256 [ 84.307660][ T9049] loop1: detected capacity change from 0 to 512 [ 84.320454][ T9045] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 84.324556][ T9049] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 84.358991][ T9045] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 84.405876][ T9063] program syz.2.2700 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 84.406663][ T29] audit: type=1400 audit(2000000020.886:9135): avc: denied { read } for pid=9062 comm="syz.2.2700" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 84.438914][ T29] audit: type=1400 audit(2000000020.886:9136): avc: denied { open } for pid=9062 comm="syz.2.2700" path="/dev/sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 84.464584][ T9049] EXT4-fs (loop1): 1 truncate cleaned up [ 84.477156][ T9049] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 84.508370][ T9070] xt_l2tp: v2 doesn't support IP mode [ 84.515480][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 84.589421][ T29] audit: type=1400 audit(2000000021.066:9137): avc: denied { write } for pid=9081 comm="syz.1.2707" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 84.591121][ T9082] validate_nla: 4 callbacks suppressed [ 84.591139][ T9082] netlink: 'syz.4.2711': attribute type 3 has an invalid length. [ 84.763743][ T9104] __nla_validate_parse: 11 callbacks suppressed [ 84.763773][ T9104] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2721'. [ 84.843427][ T9115] loop3: detected capacity change from 0 to 1024 [ 84.844724][ T9117] loop4: detected capacity change from 0 to 512 [ 84.845016][ T9117] EXT4-fs: Ignoring removed bh option [ 84.846795][ T9117] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 84.849001][ T9115] EXT4-fs: Ignoring removed orlov option [ 84.850912][ T9115] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 84.862554][ T9117] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.2728: Failed to acquire dquot type 0 [ 84.896844][ T9123] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=9123 comm=syz.2.2730 [ 84.905645][ T9117] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1145: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 84.951383][ T9128] netlink: 'syz.2.2732': attribute type 3 has an invalid length. [ 84.986312][ T9115] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 85.018357][ T9117] EXT4-fs (loop4): 1 truncate cleaned up [ 85.018732][ T9117] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 85.042153][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.048978][ T9117] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.2728: Failed to acquire dquot type 0 [ 85.076724][ T9141] program syz.1.2739 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 85.163252][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.163747][ T9151] loop1: detected capacity change from 0 to 1024 [ 85.197069][ T9151] EXT4-fs: Ignoring removed orlov option [ 85.237400][ T9151] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 85.343678][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.392946][ T9184] SELinux: failed to load policy [ 85.447182][ T9192] netlink: 'syz.2.2762': attribute type 21 has an invalid length. [ 85.455187][ T9192] IPv6: NLM_F_CREATE should be specified when creating new route [ 85.455799][ T9191] delete_channel: no stack [ 85.493061][ T9192] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 85.500379][ T9192] IPv6: NLM_F_CREATE should be set when creating new route [ 85.507626][ T9192] IPv6: NLM_F_CREATE should be set when creating new route [ 85.514871][ T9192] IPv6: NLM_F_CREATE should be set when creating new route [ 85.596651][ T9213] SELinux: failed to load policy [ 85.738019][ T9240] netlink: 'syz.2.2787': attribute type 2 has an invalid length. [ 85.848093][ T9261] loop3: detected capacity change from 0 to 1024 [ 85.856256][ T9261] EXT4-fs: Ignoring removed orlov option [ 85.887399][ T9261] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 85.950747][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.962793][ T9281] netlink: 'syz.4.2805': attribute type 2 has an invalid length. [ 86.046370][ T9293] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2811'. [ 86.143428][ T9310] ieee802154 phy0 wpan0: encryption failed: -22 [ 86.315517][ T9343] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2836'. [ 86.324612][ T9343] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2836'. [ 86.567374][ T9389] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=9389 comm=syz.2.2859 [ 86.583939][ T9387] geneve2: entered promiscuous mode [ 86.589181][ T9387] geneve2: entered allmulticast mode [ 86.629443][ T9391] xt_CT: No such helper "snmp_trap" [ 86.774830][ T9422] xt_bpf: check failed: parse error [ 86.842447][ T9434] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2881'. [ 86.851558][ T9434] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2881'. [ 87.098881][ T9476] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2902'. [ 87.173472][ T9484] xt_bpf: check failed: parse error [ 87.216282][ T9493] loop4: detected capacity change from 0 to 512 [ 87.243458][ T9493] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 87.258217][ T9493] EXT4-fs (loop4): orphan cleanup on readonly fs [ 87.271438][ T9493] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.2910: Failed to acquire dquot type 1 [ 87.292377][ T9493] EXT4-fs (loop4): 1 truncate cleaned up [ 87.324392][ T9493] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 87.376916][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 87.581212][ T9532] loop0: detected capacity change from 0 to 512 [ 87.582159][ T9531] tipc: Trying to set illegal importance in message [ 87.596555][ T9532] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 87.639890][ T9532] EXT4-fs (loop0): orphan cleanup on readonly fs [ 87.656446][ T9532] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.2929: Failed to acquire dquot type 1 [ 87.706930][ T9532] EXT4-fs (loop0): 1 truncate cleaned up [ 87.725489][ T9532] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 87.788858][ T9563] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2943'. [ 87.797926][ T9563] netlink: 108 bytes leftover after parsing attributes in process `syz.1.2943'. [ 87.807487][ T9563] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2943'. [ 87.824404][ T3300] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 87.937959][ T9583] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks [ 88.084834][ T9615] loop3: detected capacity change from 0 to 128 [ 88.272415][ T9644] netlink: 'syz.2.2983': attribute type 1 has an invalid length. [ 88.289716][ T9649] cgroup: Name too long [ 88.327991][ T9653] xt_ecn: cannot match TCP bits for non-tcp packets [ 88.573076][ T29] kauditd_printk_skb: 33 callbacks suppressed [ 88.573096][ T29] audit: type=1400 audit(2000000025.056:9163): avc: denied { write } for pid=9696 comm="syz.0.3011" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 88.817220][ T9738] netlink: 'syz.3.3031': attribute type 20 has an invalid length. [ 88.832233][ T29] audit: type=1400 audit(2000000025.296:9164): avc: denied { bind } for pid=9735 comm="syz.2.3030" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 88.965821][ T9759] netlink: 'syz.2.3041': attribute type 10 has an invalid length. [ 88.996120][ T9759] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 89.033153][ T29] audit: type=1400 audit(2000000025.516:9165): avc: denied { bind } for pid=9770 comm="syz.3.3047" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 89.033150][ T9771] Unsupported ieee802154 address type: 0 [ 89.065888][ T9776] netlink: 'syz.3.3049': attribute type 5 has an invalid length. [ 89.239967][ T29] audit: type=1400 audit(2000000025.726:9166): avc: denied { append } for pid=9806 comm="syz.2.3064" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 89.265890][ T9798] ip6erspan0: entered promiscuous mode [ 89.276488][ T29] audit: type=1400 audit(2000000025.726:9167): avc: denied { ioctl } for pid=9806 comm="syz.2.3064" path="/dev/sg0" dev="devtmpfs" ino=135 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 89.370505][ T29] audit: type=1400 audit(2000000025.846:9168): avc: denied { map } for pid=9817 comm="syz.3.3069" path="/dev/zero" dev="devtmpfs" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:zero_device_t tclass=chr_file permissive=1 [ 89.393673][ T29] audit: type=1400 audit(2000000025.846:9169): avc: denied { execute } for pid=9817 comm="syz.3.3069" path="/dev/zero" dev="devtmpfs" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:zero_device_t tclass=chr_file permissive=1 [ 89.591332][ T29] audit: type=1400 audit(2000000026.066:9170): avc: denied { bind } for pid=9843 comm="syz.4.3083" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 89.625004][ T9853] Unsupported ieee802154 address type: 0 [ 89.715467][ T9868] process 'syz.4.3094' launched '/dev/fd/3' with NULL argv: empty string added [ 89.724578][ T29] audit: type=1400 audit(2000000026.196:9171): avc: denied { execute } for pid=9867 comm="syz.4.3094" dev="hugetlbfs" ino=25141 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 89.775581][ T29] audit: type=1400 audit(2000000026.236:9172): avc: denied { execute_no_trans } for pid=9867 comm="syz.4.3094" path=2F6D656D66643A202864656C6574656429 dev="hugetlbfs" ino=25141 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 90.149074][ T9919] netlink: 'syz.4.3119': attribute type 6 has an invalid length. [ 90.274048][ T9938] __nla_validate_parse: 7 callbacks suppressed [ 90.274068][ T9938] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3127'. [ 90.388863][ T9948] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3143'. [ 90.407856][ T9950] xt_hashlimit: max too large, truncated to 1048576 [ 90.421270][ T9952] netlink: 'syz.1.3133': attribute type 6 has an invalid length. [ 90.423766][ T9950] xt_limit: Overflow, try lower: 0/0 [ 90.532158][ T9966] netlink: 'syz.4.3141': attribute type 30 has an invalid length. [ 90.686731][ T9994] xt_NFQUEUE: number of queues (65532) out of range (got 66665) [ 90.881184][T10026] netlink: 'syz.3.3170': attribute type 21 has an invalid length. [ 90.889059][T10026] netlink: 'syz.3.3170': attribute type 20 has an invalid length. [ 90.916780][T10031] loop4: detected capacity change from 0 to 1024 [ 90.934936][T10033] netlink: 'syz.1.3174': attribute type 1 has an invalid length. [ 90.950320][T10031] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 91.004616][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 91.144394][T10062] xt_NFQUEUE: number of queues (65532) out of range (got 66665) [ 91.222937][T10073] xt_hashlimit: max too large, truncated to 1048576 [ 91.244789][T10073] xt_limit: Overflow, try lower: 0/0 [ 91.326945][T10087] netlink: 'syz.0.3197': attribute type 2 has an invalid length. [ 91.334769][T10087] netlink: 'syz.0.3197': attribute type 2 has an invalid length. [ 91.375192][T10095] loop2: detected capacity change from 0 to 128 [ 91.521630][T10114] xt_NFQUEUE: number of queues (65532) out of range (got 66665) [ 91.577529][T10123] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3213'. [ 91.601548][T10123] netlink: 'syz.2.3213': attribute type 1 has an invalid length. [ 91.609535][T10123] netlink: 'syz.2.3213': attribute type 2 has an invalid length. [ 91.617341][T10123] netlink: 140 bytes leftover after parsing attributes in process `syz.2.3213'. [ 91.639805][T10128] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3218'. [ 91.734411][T10141] xt_socket: unknown flags 0x58 [ 91.852865][T10157] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3232'. [ 91.880578][T10157] netlink: 140 bytes leftover after parsing attributes in process `syz.4.3232'. [ 91.982498][T10171] loop2: detected capacity change from 0 to 1024 [ 92.035721][T10171] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 92.071135][T10182] loop4: detected capacity change from 0 to 512 [ 92.079755][T10182] EXT4-fs: Ignoring removed oldalloc option [ 92.099684][T10182] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.3245: Parent and EA inode have the same ino 15 [ 92.125142][T10182] EXT4-fs (loop4): Remounting filesystem read-only [ 92.131879][T10182] EXT4-fs warning (device loop4): ext4_evict_inode:259: couldn't mark inode dirty (err -5) [ 92.142207][T10182] EXT4-fs (loop4): 1 orphan inode deleted [ 92.148559][T10182] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 92.157663][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 92.199213][T10182] SELinux: (dev loop4, type ext4) getxattr errno 5 [ 92.223806][T10182] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 92.277442][T10205] loop3: detected capacity change from 0 to 764 [ 92.350561][T10213] loop0: detected capacity change from 0 to 1024 [ 92.397340][T10213] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 92.488724][ T3300] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 92.686908][T10258] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3281'. [ 92.783503][T10270] loop1: detected capacity change from 0 to 764 [ 92.795446][T10275] xt_hashlimit: overflow, try lower: 18446744073709551615/255 [ 92.853986][T10282] bridge0: port 2(bridge_slave_1) entered disabled state [ 92.861307][T10282] bridge0: port 1(bridge_slave_0) entered disabled state [ 92.881703][T10286] tmpfs: Bad value for 'mpol' [ 92.895740][T10282] bridge0: entered allmulticast mode [ 92.964670][T10294] loop3: detected capacity change from 0 to 512 [ 92.994904][T10294] EXT4-fs: Ignoring removed oldalloc option [ 93.011746][T10294] EXT4-fs error (device loop3): ext4_xattr_inode_iget:436: comm syz.3.3299: Parent and EA inode have the same ino 15 [ 93.012127][T10294] EXT4-fs (loop3): Remounting filesystem read-only [ 93.012145][T10294] EXT4-fs warning (device loop3): ext4_evict_inode:259: couldn't mark inode dirty (err -5) [ 93.012171][T10294] EXT4-fs (loop3): 1 orphan inode deleted [ 93.012433][T10294] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 93.012471][T10294] SELinux: (dev loop3, type ext4) getxattr errno 5 [ 93.012802][T10294] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 93.221823][T10325] netlink: 56 bytes leftover after parsing attributes in process `syz.0.3311'. [ 93.231826][T10326] loop3: detected capacity change from 0 to 128 [ 93.263012][T10326] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 93.303090][T10326] FAT-fs (loop3): error, fat_free_clusters: deleting FAT entry beyond EOF [ 93.311694][T10326] FAT-fs (loop3): Filesystem has been set read-only [ 93.418682][T10352] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3329'. [ 93.607551][T10384] loop2: detected capacity change from 0 to 512 [ 93.669276][T10384] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 93.708175][T10384] ext4 filesystem being mounted at /734/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 93.727710][ T29] kauditd_printk_skb: 20 callbacks suppressed [ 93.727783][ T29] audit: type=1326 audit(2000000030.206:9193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10396 comm="syz.3.3347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdee10d0a9 code=0x7ffc0000 [ 93.783912][ T29] audit: type=1326 audit(2000000030.246:9194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10396 comm="syz.3.3347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7fcdee10d0a9 code=0x7ffc0000 [ 93.807696][ T29] audit: type=1326 audit(2000000030.246:9195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10396 comm="syz.3.3347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdee10d0a9 code=0x7ffc0000 [ 93.827465][T10384] EXT4-fs error (device loop2): ext4_empty_dir:3094: inode #12: comm syz.2.3343: invalid size [ 93.831437][ T29] audit: type=1326 audit(2000000030.246:9196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10396 comm="syz.3.3347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcdee10d0a9 code=0x7ffc0000 [ 93.882619][ T29] audit: type=1400 audit(2000000030.306:9197): avc: denied { remove_name } for pid=10383 comm="syz.2.3343" name="file0" dev="loop2" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 93.905481][ T29] audit: type=1400 audit(2000000030.306:9198): avc: denied { rmdir } for pid=10383 comm="syz.2.3343" name="file0" dev="loop2" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 93.951776][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 93.970001][ T29] audit: type=1400 audit(2000000030.416:9199): avc: denied { write } for pid=10406 comm="syz.4.3351" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 94.033932][T10421] loop2: detected capacity change from 0 to 128 [ 94.034426][T10419] loop0: detected capacity change from 0 to 512 [ 94.045950][T10421] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 94.075808][T10421] FAT-fs (loop2): error, fat_free_clusters: deleting FAT entry beyond EOF [ 94.083743][T10427] bridge0: port 3(team0) entered disabled state [ 94.084402][T10421] FAT-fs (loop2): Filesystem has been set read-only [ 94.090668][T10427] bridge0: port 2(bridge_slave_1) entered disabled state [ 94.104484][T10427] bridge0: port 1(bridge_slave_0) entered disabled state [ 94.117756][T10419] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 94.120103][T10427] bridge0: entered allmulticast mode [ 94.158090][T10419] ext4 filesystem being mounted at /606/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 94.244234][ T3300] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 94.408330][ T29] audit: type=1400 audit(2000000030.886:9200): avc: denied { view } for pid=10467 comm="syz.4.3383" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1 [ 94.473848][ T29] audit: type=1400 audit(2000000030.936:9201): avc: denied { connect } for pid=10475 comm="syz.0.3386" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 94.535696][T10485] loop4: detected capacity change from 0 to 1024 [ 94.580807][ T29] audit: type=1400 audit(2000000031.066:9202): avc: denied { accept } for pid=10488 comm="syz.0.3393" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 94.602628][T10485] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.3389: Failed to acquire dquot type 0 [ 94.630436][T10494] usb usb6: usbfs: process 10494 (syz.2.3395) did not claim interface 6 before use [ 94.641080][T10485] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 94.675911][T10485] EXT4-fs error (device loop4): ext4_do_update_inode:5154: inode #13: comm syz.4.3389: corrupted inode contents [ 94.705618][T10485] EXT4-fs error (device loop4): ext4_dirty_inode:6042: inode #13: comm syz.4.3389: mark_inode_dirty error [ 94.718954][T10509] mmap: syz.2.3402 (10509) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 94.742918][T10485] EXT4-fs error (device loop4): ext4_do_update_inode:5154: inode #13: comm syz.4.3389: corrupted inode contents [ 94.816817][T10485] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #13: comm syz.4.3389: mark_inode_dirty error [ 94.835786][T10485] EXT4-fs error (device loop4): ext4_do_update_inode:5154: inode #13: comm syz.4.3389: corrupted inode contents [ 94.864669][T10485] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem [ 94.884169][T10485] EXT4-fs error (device loop4): ext4_do_update_inode:5154: inode #13: comm syz.4.3389: corrupted inode contents [ 94.904348][T10529] usb usb6: usbfs: process 10529 (syz.1.3412) did not claim interface 6 before use [ 94.915491][T10485] EXT4-fs error (device loop4): ext4_truncate:4240: inode #13: comm syz.4.3389: mark_inode_dirty error [ 94.960446][T10485] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem [ 94.997912][T10485] EXT4-fs (loop4): 1 truncate cleaned up [ 95.019792][T10485] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 95.040486][T10548] loop3: detected capacity change from 0 to 512 [ 95.116234][ T3304] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 95.132844][T10548] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 95.191347][T10548] ext4 filesystem being mounted at /613/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 95.297615][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 95.390727][T10582] __nla_validate_parse: 7 callbacks suppressed [ 95.390746][T10582] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3433'. [ 95.406032][T10582] netlink: 23 bytes leftover after parsing attributes in process `syz.4.3433'. [ 95.509348][T10602] syz.3.3447 (10602): /proc/10602/oom_adj is deprecated, please use /proc/10602/oom_score_adj instead. [ 95.723575][T10641] loop2: detected capacity change from 0 to 128 [ 95.810758][T10654] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3466'. [ 95.959985][T10682] SET target dimension over the limit! [ 96.002654][T10686] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3481'. [ 96.183892][T10716] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=10716 comm=syz.2.3497 [ 96.218187][T10722] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3501'. [ 96.254886][T10728] xt_l2tp: invalid flags combination: 4 [ 96.388525][T10750] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=10750 comm=syz.4.3513 [ 96.574889][T10780] xt_l2tp: invalid flags combination: 4 [ 96.723370][T10802] validate_nla: 9 callbacks suppressed [ 96.723388][T10802] netlink: 'syz.1.3540': attribute type 21 has an invalid length. [ 97.006747][T10848] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3563'. [ 97.214896][T10881] netlink: 'syz.2.3579': attribute type 21 has an invalid length. [ 97.248764][T10891] loop3: detected capacity change from 0 to 512 [ 97.256636][T10886] netlink: 'syz.0.3582': attribute type 29 has an invalid length. [ 97.265653][T10886] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3582'. [ 97.289554][T10891] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 97.332801][T10891] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 97.378742][T10891] ext4 filesystem being mounted at /645/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 97.406585][ T3302] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 97.431694][T10912] netlink: 128 bytes leftover after parsing attributes in process `syz.1.3594'. [ 97.443706][T10913] loop0: detected capacity change from 0 to 128 [ 97.480695][T10913] FAT-fs (loop0): Directory bread(block 3236) failed [ 97.487428][T10913] FAT-fs (loop0): Directory bread(block 3237) failed [ 97.548604][T10913] FAT-fs (loop0): Directory bread(block 3238) failed [ 97.577942][T10913] FAT-fs (loop0): Directory bread(block 3239) failed [ 97.591173][T10913] FAT-fs (loop0): Directory bread(block 3240) failed [ 97.598142][T10913] FAT-fs (loop0): Directory bread(block 3241) failed [ 97.606686][T10913] FAT-fs (loop0): Directory bread(block 3242) failed [ 97.626894][T10913] FAT-fs (loop0): Directory bread(block 3243) failed [ 97.692355][T10913] FAT-fs (loop0): Directory bread(block 3236) failed [ 97.727858][T10913] FAT-fs (loop0): Directory bread(block 3237) failed [ 97.790961][T10960] cgroup: Invalid name [ 98.166466][T11016] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3643'. [ 98.172688][T11019] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3642'. [ 98.281899][T11037] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 98.387518][T11055] netlink: 'syz.0.3659': attribute type 16 has an invalid length. [ 98.395432][T11055] netlink: 'syz.0.3659': attribute type 17 has an invalid length. [ 98.470391][T11055] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 98.486148][ T8] lo speed is unknown, defaulting to 1000 [ 98.495172][T11063] cgroup: Invalid name [ 98.507391][T11065] loop4: detected capacity change from 0 to 764 [ 98.539103][T11065] Symlink component flag not implemented [ 98.545460][T11065] Symlink component flag not implemented (129) [ 98.564551][T11073] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 98.575557][T11065] rock: directory entry would overflow storage [ 98.581827][T11065] rock: sig=0x4f50, size=4, remaining=3 [ 98.587421][T11065] iso9660: Corrupted directory entry in block 6 of inode 1792 [ 98.625199][T11078] tmpfs: Bad value for 'nr_inodes' [ 98.803409][T11109] loop1: detected capacity change from 0 to 128 [ 98.826803][ T29] kauditd_printk_skb: 67 callbacks suppressed [ 98.826819][ T29] audit: type=1400 audit(2000000001.680:9267): avc: denied { execmem } for pid=11113 comm="syz.4.3686" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 98.901262][ T29] audit: type=1400 audit(2000000001.730:9268): avc: denied { mount } for pid=11106 comm="syz.1.3684" name="/" dev="loop1" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 98.928178][ T29] audit: type=1400 audit(2000000001.790:9269): avc: denied { unmount } for pid=3308 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 99.029608][ T29] audit: type=1400 audit(2000000001.890:9270): avc: denied { create } for pid=11132 comm="syz.1.3699" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 99.089086][ T29] audit: type=1400 audit(2000000001.900:9271): avc: denied { write } for pid=11135 comm="syz.4.3701" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 99.109433][ T29] audit: type=1400 audit(2000000001.900:9272): avc: denied { nlmsg_write } for pid=11135 comm="syz.4.3701" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 99.134254][ T29] audit: type=1400 audit(2000000001.950:9273): avc: denied { create } for pid=11141 comm="syz.0.3704" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 99.153809][ T29] audit: type=1400 audit(2000000001.950:9274): avc: denied { write } for pid=11141 comm="syz.0.3704" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 99.173349][ T29] audit: type=1400 audit(2000000001.960:9275): avc: denied { execmod } for pid=11145 comm="syz.4.3705" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=29926 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 99.199923][ T29] audit: type=1400 audit(2000000001.970:9276): avc: denied { execute } for pid=11145 comm="syz.4.3705" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=29926 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 99.205472][T11151] loop4: detected capacity change from 0 to 128 [ 99.259835][T11155] loop1: detected capacity change from 0 to 764 [ 99.266280][T11151] FAT-fs (loop4): Directory bread(block 3236) failed [ 99.279937][T11151] FAT-fs (loop4): Directory bread(block 3237) failed [ 99.291333][T11155] Symlink component flag not implemented [ 99.292072][T11159] netlink: 'syz.2.3711': attribute type 2 has an invalid length. [ 99.297127][T11155] Symlink component flag not implemented (129) [ 99.321201][T11151] FAT-fs (loop4): Directory bread(block 3238) failed [ 99.327952][T11151] FAT-fs (loop4): Directory bread(block 3239) failed [ 99.337396][T11155] rock: directory entry would overflow storage [ 99.343644][T11155] rock: sig=0x4f50, size=4, remaining=3 [ 99.349468][T11155] iso9660: Corrupted directory entry in block 6 of inode 1792 [ 99.363197][T11151] FAT-fs (loop4): Directory bread(block 3240) failed [ 99.369999][T11151] FAT-fs (loop4): Directory bread(block 3241) failed [ 99.376801][T11151] FAT-fs (loop4): Directory bread(block 3242) failed [ 99.386614][T11151] FAT-fs (loop4): Directory bread(block 3243) failed [ 99.419315][T11151] FAT-fs (loop4): Directory bread(block 3236) failed [ 99.435063][T11151] FAT-fs (loop4): Directory bread(block 3237) failed [ 100.060709][T11271] netlink: 'syz.2.3767': attribute type 16 has an invalid length. [ 100.068579][T11271] netlink: 'syz.2.3767': attribute type 17 has an invalid length. [ 100.139448][T11271] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 100.165393][T11284] Timeout policy `syz1' can only be used by L3 protocol number 37632 [ 100.316333][T11302] loop1: detected capacity change from 0 to 1156 [ 100.465349][T11330] loop3: detected capacity change from 0 to 256 [ 100.483317][T11330] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 100.521762][T11330] FAT-fs (loop3): Directory bread(block 64) failed [ 100.528822][T11330] FAT-fs (loop3): Directory bread(block 65) failed [ 100.543846][T11330] FAT-fs (loop3): Directory bread(block 66) failed [ 100.557099][T11330] FAT-fs (loop3): Directory bread(block 67) failed [ 100.564170][T11330] FAT-fs (loop3): Directory bread(block 68) failed [ 100.594360][T11330] FAT-fs (loop3): Directory bread(block 69) failed [ 100.614650][T11330] FAT-fs (loop3): Directory bread(block 70) failed [ 100.621582][T11330] FAT-fs (loop3): Directory bread(block 71) failed [ 100.631779][T11347] __nla_validate_parse: 7 callbacks suppressed [ 100.631797][T11347] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3804'. [ 100.639579][T11330] FAT-fs (loop3): Directory bread(block 72) failed [ 100.666153][T11330] FAT-fs (loop3): Directory bread(block 73) failed [ 100.717729][T11357] xt_ecn: cannot match TCP bits for non-tcp packets [ 100.931166][T11389] xt_ecn: cannot match TCP bits for non-tcp packets [ 101.166527][T11433] netlink: 'syz.3.3846': attribute type 16 has an invalid length. [ 101.174426][T11433] netlink: 'syz.3.3846': attribute type 17 has an invalid length. [ 101.206737][T11433] bridge0: port 2(bridge_slave_1) entered blocking state [ 101.213913][T11433] bridge0: port 2(bridge_slave_1) entered forwarding state [ 101.221322][T11433] bridge0: port 1(bridge_slave_0) entered blocking state [ 101.228387][T11433] bridge0: port 1(bridge_slave_0) entered forwarding state [ 101.268854][T11433] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 101.287879][T11440] netlink: 180 bytes leftover after parsing attributes in process `syz.0.3849'. [ 101.384468][T11459] loop0: detected capacity change from 0 to 164 [ 101.411317][T11459] Unsupported NM flag settings (8) [ 101.586530][T11489] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 101.805971][T11527] netlink: 180 bytes leftover after parsing attributes in process `syz.2.3893'. [ 101.832439][T11530] loop0: detected capacity change from 0 to 256 [ 101.837831][T11533] loop4: detected capacity change from 0 to 164 [ 101.855294][T11530] FAT-fs (loop0): Directory bread(block 64) failed [ 101.867824][T11533] Unsupported NM flag settings (8) [ 101.872800][T11530] FAT-fs (loop0): Directory bread(block 65) failed [ 101.881842][T11530] FAT-fs (loop0): Directory bread(block 66) failed [ 101.888510][T11530] FAT-fs (loop0): Directory bread(block 67) failed [ 101.909689][T11530] FAT-fs (loop0): Directory bread(block 68) failed [ 101.916242][T11530] FAT-fs (loop0): Directory bread(block 69) failed [ 101.929568][T11530] FAT-fs (loop0): Directory bread(block 70) failed [ 101.936124][T11530] FAT-fs (loop0): Directory bread(block 71) failed [ 101.951733][T11530] FAT-fs (loop0): Directory bread(block 72) failed [ 101.962414][T11530] FAT-fs (loop0): Directory bread(block 73) failed [ 101.988248][T11545] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3903'. [ 102.068123][T11555] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3908'. [ 102.421969][T11619] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3933'. [ 102.453023][ T4771] ================================================================== [ 102.461168][ T4771] BUG: KCSAN: data-race in fill_mg_cmtime / shmem_symlink [ 102.468335][ T4771] [ 102.470678][ T4771] write to 0xffff888103aaf25c of 4 bytes by task 3550 on cpu 0: [ 102.478321][ T4771] shmem_symlink+0x344/0x390 [ 102.482950][ T4771] vfs_symlink+0xca/0x1d0 [ 102.487323][ T4771] do_symlinkat+0xe1/0x350 [ 102.490422][T11630] netlink: 'syz.1.3938': attribute type 1 has an invalid length. [ 102.491760][ T4771] __x64_sys_symlink+0x50/0x60 [ 102.504259][ T4771] x64_sys_call+0x28b0/0x2dc0 [ 102.508967][ T4771] do_syscall_64+0xc9/0x1c0 [ 102.510915][T11619] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3933'. [ 102.513485][ T4771] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 102.522459][T11619] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3933'. [ 102.528287][ T4771] [ 102.528296][ T4771] read to 0xffff888103aaf25c of 4 bytes by task 4771 on cpu 1: [ 102.547128][ T4771] fill_mg_cmtime+0x58/0x280 [ 102.551767][ T4771] generic_fillattr+0x241/0x330 [ 102.556675][ T4771] shmem_getattr+0x17b/0x200 [ 102.561309][ T4771] vfs_getattr+0x172/0x1b0 [ 102.565765][ T4771] vfs_statx+0x12d/0x320 [ 102.570056][ T4771] vfs_fstatat+0xe4/0x130 [ 102.574445][ T4771] __se_sys_newfstatat+0x58/0x260 [ 102.579495][ T4771] __x64_sys_newfstatat+0x55/0x70 [ 102.584545][ T4771] x64_sys_call+0x236d/0x2dc0 [ 102.589251][ T4771] do_syscall_64+0xc9/0x1c0 [ 102.593797][ T4771] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 102.599820][ T4771] [ 102.602169][ T4771] value changed: 0x127a39e2 -> 0x131313fa [ 102.607913][ T4771] [ 102.610236][ T4771] Reported by Kernel Concurrency Sanitizer on: [ 102.616397][ T4771] CPU: 1 UID: 0 PID: 4771 Comm: udevd Not tainted 6.14.0-rc3-syzkaller-00096-ge9a8cac0bf89 #0 [ 102.626655][ T4771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 102.636719][ T4771] ==================================================================