last executing test programs: 44.645634264s ago: executing program 2 (id=94): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0x220}, 0x18) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000640)={0x2c, r1, 0x1, 0xd0, 0x25dfdbfb, {}, [@ETHTOOL_A_STRSET_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x840}, 0x4008800) 44.603710884s ago: executing program 2 (id=97): r0 = socket$inet(0xa, 0x801, 0x84) connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) listen(r0, 0x8) r1 = accept4(r0, 0x0, 0x0, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r1, 0x84, 0x70, &(0x7f00000004c0)={0x0, @in6={{0xa, 0x4e20, 0x5, @mcast1, 0xffffffc0}}, [0x7, 0x80, 0xfcf4, 0x0, 0x6, 0x10001, 0xffffffff80000000, 0x8, 0x10001, 0x4, 0x3, 0x3ff, 0xc, 0xd8c6, 0x800]}, &(0x7f0000000100)=0x100) 44.494723246s ago: executing program 2 (id=101): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bond_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000880)=@bridge_setlink={0x20, 0x13, 0xa29, 0x0, 0x0, {0x7, 0x0, 0x0, r1}}, 0x20}}, 0x0) 44.399366817s ago: executing program 2 (id=104): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000140)='./file1\x00', 0x8, &(0x7f0000000580)={[{@dots}, {@nodots}, {@dots}, {@nodots}, {@nodots}, {@fat=@flush}, {@nodots}, {@fat=@quiet}, {@dots}, {@nodots}, {@dots}, {@dots}, {@fat=@nfs}, {@fat=@umask={'umask', 0x3d, 0x7fff}}, {@fat=@nfs}, {@nodots}, {@dots}, {@fat=@uid}, {@fat=@fmask={'fmask', 0x3d, 0x8}}, {@fat=@tz_utc}, {@fat=@flush}, {@dots}]}, 0xfd, 0x1c7, &(0x7f0000000200)="$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") mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)='hugetlbfs\x00', 0x0, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000440)='mountinfo\x00') sendfile(r0, r0, 0x0, 0x1000) 44.323280268s ago: executing program 2 (id=107): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc7152a74922abe14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000a80)='kfree\x00', r1}, 0x18) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_DELETE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="2400000002010101000000000000000002040006040002800c0019"], 0x24}, 0x1, 0x0, 0x0, 0x4084}, 0x4000) 44.067381411s ago: executing program 2 (id=112): eventfd2(0x0, 0x0) r0 = syz_io_uring_setup(0x72b1, &(0x7f0000000280)={0x0, 0x0, 0x10100, 0x0, 0x36}, &(0x7f0000000500), &(0x7f0000000000)=0x0) syz_io_uring_setup(0x1868, &(0x7f0000000200)={0x0, 0xab62, 0x800, 0x3, 0x1}, &(0x7f0000000080)=0x0, &(0x7f0000001540)) syz_io_uring_submit(r2, r1, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x5, 0x0}) io_uring_enter(r0, 0x184c, 0x0, 0x0, 0x0, 0x0) 44.046797082s ago: executing program 32 (id=112): eventfd2(0x0, 0x0) r0 = syz_io_uring_setup(0x72b1, &(0x7f0000000280)={0x0, 0x0, 0x10100, 0x0, 0x36}, &(0x7f0000000500), &(0x7f0000000000)=0x0) syz_io_uring_setup(0x1868, &(0x7f0000000200)={0x0, 0xab62, 0x800, 0x3, 0x1}, &(0x7f0000000080)=0x0, &(0x7f0000001540)) syz_io_uring_submit(r2, r1, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x5, 0x0}) io_uring_enter(r0, 0x184c, 0x0, 0x0, 0x0, 0x0) 1.147577865s ago: executing program 1 (id=1756): epoll_create1(0x0) epoll_create1(0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000009a40)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000040900010073797a30000000002c000000030a01080000000000000000010000000900030073797a32000000000900010073797a300000000050000000060a010400000000000000000100000008000b40000000000900010073797a30000000002800048024000180090001006d6574610000000014000280080001400000001208000240000000", @ANYRES16=r0], 0xc4}}, 0x0) 1.130043285s ago: executing program 1 (id=1758): bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10) r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) connect$llc(r1, &(0x7f0000000300)={0x1a, 0x0, 0x1f, 0x0, 0xc9, 0x8, @local}, 0x10) 533.186963ms ago: executing program 5 (id=1800): socket$packet(0x11, 0x2, 0x300) capset(&(0x7f0000000080)={0x20080522}, &(0x7f0000000040)={0x3, 0x10ffff, 0xfffffffd}) r0 = socket$netlink(0x10, 0x3, 0x4) write(r0, &(0x7f0000005c00)="2700000014000707030e0000120f0a0011000100f5fe0012ff000000078a151f75080039000500", 0x27) syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), r0) 493.069053ms ago: executing program 5 (id=1803): bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffee2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000008c0)=ANY=[@ANYBLOB="54000000000801010000ffffe00000000a000000050003002f0000000600024000000000240004800800024000000000080001400000fcff07000140800000010800014080000001090001"], 0x54}, 0x1, 0x0, 0x0, 0x4004}, 0x28040000) 452.206244ms ago: executing program 5 (id=1804): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20) setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0) 445.485804ms ago: executing program 4 (id=1806): rt_sigprocmask(0x0, &(0x7f0000000100)={[0xfffffffffffe]}, 0x0, 0x8) r0 = gettid() rt_sigtimedwait(&(0x7f0000000040)={[0xffffffff]}, 0x0, 0x0, 0x8) timer_create(0x2, &(0x7f0000000180)={0x0, 0x1e, 0x4, @tid=r0}, &(0x7f00000000c0)) timer_settime(0x0, 0xe54aef35e9c2845d, &(0x7f0000000000)={{}, {0x0, 0x9}}, 0x0) 425.304894ms ago: executing program 5 (id=1817): perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xca, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x6}, 0x100, 0x0, 0x0, 0x3, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xb}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b00000008000000040000000600000001"], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000340), 0x40005, r0}, 0x38) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={r0}, 0x20) 401.541874ms ago: executing program 3 (id=1809): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0f000000040000000800000008"], 0x48) close(0x3) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1, 0xd, &(0x7f0000000f80)=ANY=[@ANYBLOB="1800000000000f00000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000085000000a000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000280)="9e36d448b388dd965f7a3312779a", 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x50) 379.897175ms ago: executing program 0 (id=1810): timerfd_create(0x0, 0x0) r0 = syz_io_uring_setup(0x5169, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000000)=0x0) syz_io_uring_setup(0x26ee, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1f1}, &(0x7f0000000140)=0x0, &(0x7f0000000180)) syz_io_uring_submit(r2, r1, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54}) io_uring_enter(r0, 0x48e9, 0x0, 0x0, 0x0, 0x0) 379.501325ms ago: executing program 4 (id=1811): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000000)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10) r2 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x40008, 0x590, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x4c58, 0x0, 0x0, 0x0, 0x8, 0xffffffff, 0xb, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000003, 0x13, r2, 0x0) 370.288045ms ago: executing program 3 (id=1812): r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) close(r2) 339.311345ms ago: executing program 5 (id=1813): r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x41, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x800000000003}, 0x1100, 0x5dd8, 0x0, 0x3, 0x0, 0x8, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000001200000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x7, 0x7ffc1ff3}]}) mincore(&(0x7f0000ffc000/0x3000)=nil, 0x3000, &(0x7f00000001c0)=""/152) 339.133195ms ago: executing program 3 (id=1814): r0 = syz_clone(0x20a00000, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000e8ff0000000000ff000044850000000e0000003f0000000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r1, 0x0, 0x4}, 0x18) ptrace$getregset(0x4204, r0, 0x202, &(0x7f0000000180)={0x0}) 338.875595ms ago: executing program 0 (id=1815): r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000140)={0x1, 0x0, 0xb7400000000}) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/4\x00') preadv(r1, &(0x7f0000001240)=[{&(0x7f0000000040)=""/18, 0x12}], 0x1, 0x8, 0x0) 301.853446ms ago: executing program 4 (id=1816): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1, 0x0, 0x7ffc1ffb}]}) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x5}, 0x18) move_pages(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 301.642456ms ago: executing program 4 (id=1818): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) r1 = socket(0x840000000002, 0x3, 0xff) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000040)='gre0\x00', 0x10) sendmmsg$inet(r1, &(0x7f0000000440)=[{{&(0x7f00000003c0)={0x2, 0x1, @multicast1}, 0x10, &(0x7f0000001980)=[{&(0x7f0000000200)="a9050000000074640000000000003552bde5c064c6", 0x15}, {&(0x7f00000002c0)="174640b6d80fb2eedc81ba60ccbb9d", 0xf}], 0x2}}, {{&(0x7f00000004c0)={0x2, 0x4e20, @multicast1}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000340)="5825be57aff9352b356be67ca2746357d1787935", 0x14}], 0x1}}], 0x2, 0x840) 301.433356ms ago: executing program 3 (id=1819): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0b00000005000000020000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000840)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x800400, &(0x7f0000000000)={[{@nojournal_checksum}]}, 0x1, 0x505, &(0x7f0000000f00)="$eJzs3c9vG1kdAPDvOHGTtFmcBQ7LSuxW7KJ0BbWTht2NOFRFQtwqAeUeosSJojhxFDttE1VVKv4AJITgwIkTFyT+ACTUC/cKqRLcEUKgirZw4AAYjT1WQ2onFnXs1vl8pNd588Pz/b5OPJk385QJ4Ny6HBE3ImIsIj6KiEK2PJeVOGyVdLvnz+6tpCWJRuPW35JIsmXtfSXZ9FL2scmI+G5yZMURtf2DzeVKpbybzZfqWzul2v7B1Y2t5fXyenl7YWH+k8VPFz9enOtbW69/888/+eEvvnX9N1+988elv165n6Y1na072o5+ajU93/y/aBuPiN2zCDYEY1l78j1uP3HG+QAAcLL0Gv+zEfGl5vV/IcaaV3MAAADAKGkkEf9KIhoAAADAyMo1x8AmuWI2FmA6crlisTWG9/NxMVep1upfWavuba+2xsrORD63tlEpz2VjhWcin6Tz8836i/lrx+YXIuLtiPhxYSpZm4hycaVaWR32zQ8AAAA4Jy4d6///o9Dq/wMAAAAjZmbYCQAAAABnTv8fAAAARl/X/n/iZQAAAAAwAr5982ZaGu33X6/e3t/brN6+ulqubRa39laKK9XdneJ6tbpeKRdXqlun7a9Sre58Lbb37pbq5Vq9VNs/WNqq7m3Xl5rv9V4q9/qeaAAAAKB/3n7/4R+SiDj8+lSzpC5k6/TVYbTlTt9k6kg9OctcgMEaG3YCwND8fwN8DQuGUXBaH/9pozGgTIBhOa1jP9ltxaP+5wIAAJyN2S90f/4PjLYenv93cKPveQCD5/k/nF+e5MP5ZYw/8GrP/w0SAgCAN8F0syS5YvYscDpyuWIx4q3mawHyydpGpTwXEZ+JiN8X8hPp/PywkwYAAAAAAAAAAAAAAAAAAAAAAACAN0yjkUTjuAsvLwIAAADeXBG5vyTZ+79mCx9OH78/cCH5Z6E5jYg7P7v107vL9frufLr8aeHFW8Oy5dcGfvsCAAAASP32f2fb/fR2Px4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+qiRtKYrz5/dWxlk4CffiIiZiDRuu6TLlycjJptbTEY+Ii7+PYnxI59L8x3rQ/zDBxHxTkTjWPw0wkwztVYWx+PnImKqj/GPt7+X+Jf6EB/Os4fp+edGp+9fLi43p52/f+PNkn/l+E8udz7/pfHb57+xLue/t3qM8e7jX5W6xn8Q8e545/NPO37SJf4HPcb//vcODrqta/w8YjY6xz8aq1Tf2inV9g+ubmwtr5fXy9sLC/OfLH66+PHiXGlto1LO/u0Y40df/PV/Tmr/xS7xZ05p/4c9tv/fj+8++9xLS+9fa8e/8kHn4//OCfHTn4kvZ78H0vWz7fphq37Ue7/83XsntX+1S/tPO/5Xemz/R9/5wZ963BQAGIDa/sHmcqVS3j2x8ihO32ZwlfZ1yOuST3otlFauDy5o+9ZDP/f8frq/M01+Kl6L49W/ykSfD8HrVBniSQkAADgTLy76h50JAAAAAAAAAAAAAAAAAAAAnF+D+HNiw24jAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEAv/hsAAP//zTfFBw==") 300.456386ms ago: executing program 0 (id=1820): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18) openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/tty/drivers\x00', 0x0, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) add_key$keyring(&(0x7f0000000000), &(0x7f0000000840)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) 272.316886ms ago: executing program 4 (id=1821): mount$9p_tcp(0x0, 0x0, &(0x7f0000000000), 0x8010, 0x0) r0 = socket$vsock_stream(0x28, 0x1, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) unshare(0x400) getsockopt(r0, 0x28, 0x1, 0x0, &(0x7f0000000000)) 271.798306ms ago: executing program 1 (id=1822): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000010900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000025940000000c0a01030000000000000000070000080900020073797a31000000000900010073797a30000000006800038064000080080003400000000258000b802c0001800a0001006c696d69740000001c0002800c00014000000000000000030c0002400000000000000010140001800c000100636f756e746572000400028014"], 0x118}}, 0x0) 203.772707ms ago: executing program 4 (id=1823): syz_open_procfs(0x0, &(0x7f00000005c0)='smaps_rollup\x00') openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x401, 0x0) r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x2}]}) syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x10, &(0x7f0000000600), 0x1, 0x58a, &(0x7f0000000b40)="$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") close_range(r0, 0xffffffffffffffff, 0x0) 203.680807ms ago: executing program 0 (id=1824): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x29) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000005000000850000008200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r2}, 0x10) msgrcv(0x0, 0x0, 0x0, 0x3, 0x3000) 203.498947ms ago: executing program 1 (id=1825): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000000000000000000400000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x8040) sendmsg$NFT_BATCH(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1ec}, 0x1, 0x0, 0x0, 0x4000840}, 0x0) 203.408507ms ago: executing program 5 (id=1826): syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000001240)='./bus\x00', 0x0, &(0x7f0000002480)=ANY=[], 0x1, 0x11f4, &(0x7f0000001280)="$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") r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) fallocate(r0, 0x0, 0x0, 0x1000f4) r1 = openat(0xffffffffffffff9c, &(0x7f0000000540)='./file1\x00', 0x105042, 0x1db) writev(r1, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x64000}], 0x1) 176.596897ms ago: executing program 3 (id=1827): syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x40, &(0x7f0000000340), 0x1, 0x573, &(0x7f0000000ec0)="$eJzs3T1sG+UbAPDnzvG/X/mTIoEEqEMFSEWq6iT9gMLUrohKlTogsUDkuFEVJ47iBJooQ7pXiA4IUJeywcAIYmBALIysLCBmpIpGIDUdwMhfaZo4wSl1XHK/n3T2vfee/bzvnZ/XvtOdHEBmHa0/pBHPRsTFJGJoXd1AtCqPNtdbXVkq3ltZKiZRq136LYkkIu6uLBXb6yet50MRsRwRz0TEd/mI4+nmuNWFxcmxcrk02yoPz03NDFcXFk9cmRqbKE2Upk+98uqZs6fPjJ4cXf+ye7X1pfzO+nr95xvvX//h9Vs3Pv/iyHLxw7EkzsVgq259Px6l5jbJx7kNy0/3IlgfJf1uAA8l18rzeio9HUORa2V9J7WhXW0a0GO1fRE1IKMS+Q8Z1f4dUD/+bU+7+fvj9vnmAUg97mpratYMNM9NxP7GscnB35MHjkzqx5uHd7Oh7EnL1yJiZGBg8+c/aX3+Ht7Io2ggPfXt+eaO2rz/07XxJzqMP4Ptc6f/Unv8W900/t2Pn9ti/LvYZYw/3/rlky3jX4t4rmP8ZC1+0iF+GhHvdBn/5ptfn92qrvZpxLHoHL8t2f788PDlK+XSSPOxY4xvjh15bbv+H9wifvOc7f7G10yn7T/TZf+/+v7L55e3if/SC9vv/07b/0BEfNBl/CfvfvbGVnW3ryV36r8Cdrr/68tudRn/5XNHf+pyVQAAAAAAAAAAYAfSxrVsSVpYm0/TQqF5D+9TcTAtV6pzxy9X5qfHm9e8HY582r7SaqhZTurl0db1uO3yyQ3lU7lWwNyBRrlQrJTH+9x3AAAAAAAAAAAAAAAAAAAAeFwc2nD//x+5xv3/G/+uGtirtv7Lb2Cvk/+QXQ/mf9K3dgC7z/c/ZFZN/kN2yX/ILvkP2SX/IbvkP2SX/Ifskv8AAAAAAAAAAAAAAAAAAAAAAAAAANATFy9cqE+1eytLxXp5fGBhfrLy7onxUnWyMDVfLBQrszOFiUplolwqFCtT//R+SaUyMxLT81eH50rVueHqwuLbU5X56fZ/ipbyPe8RAAAAAAAAAAAAAAAAAAAA/PcMNqYkLURE2phP00Ih4v8RcTjyyeUr5dJIRDwRET/m8vvq5dF+NxoAAAAAAAAAAAAAAAAAAAD2mOrC4uRYuVyazcjMwE5WjojlR9uM+jvu+FX51r56XLahmSzM9HlgAgAAAAAAAAAAAAAAAACADLp/02+3r/irtw0CAAAAAAAAAAAAAAAAAACATEp/TSKiPh0benFwY+3/ktVc4zki3rt56aOrY3Nzs6P15XfWls993Fp+sh/tB7rVztN2HgMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD3VRcWJ8fK5dJsD2f63UcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAh/F3AAAA///pCdd8") r0 = bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) utimes(&(0x7f0000000000)='./file1\x00', 0x0) 118.481138ms ago: executing program 0 (id=1828): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) r2 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_RTHDR(r2, 0x29, 0x39, &(0x7f0000000040)={0x29, 0x0, 0x2, 0xb6}, 0x8) 87.152078ms ago: executing program 0 (id=1829): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0200000004000000008001400200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=r2], 0x50) 86.804889ms ago: executing program 1 (id=1830): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ffd, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0}) 21.398309ms ago: executing program 1 (id=1831): r0 = socket$netlink(0x10, 0x3, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x204, &(0x7f0000000540)={&(0x7f0000000240)=@newlink={0x40, 0x10, 0xff05, 0x0, 0x0, {0x0, 0x0, 0x4a00, 0x0, 0x157f}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @batadv={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @multicast}]}, 0x40}}, 0x0) 0s ago: executing program 3 (id=1832): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000016c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bf"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = syz_io_uring_setup(0x416f, &(0x7f0000000780)={0x0, 0xfffffffd, 0x10100, 0x200, 0x11a}, &(0x7f0000000100)=0x0, &(0x7f00000000c0)=0x0) syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00') syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/4, 0x4}], 0x27}) io_uring_enter(r0, 0x567, 0x1000a387, 0x0, 0x0, 0x0) kernel console output (not intermixed with test programs): nts [ 37.698352][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 37.720789][ T12] bond0 (unregistering): Released all slaves [ 37.824604][ T12] hsr_slave_0: left promiscuous mode [ 37.831076][ T12] hsr_slave_1: left promiscuous mode [ 37.836647][ T3741] EXT4-fs (loop1): Remounting filesystem read-only [ 37.843465][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 37.851084][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 37.858970][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 37.866405][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 37.873869][ T3741] EXT4-fs (loop1): 1 truncate cleaned up [ 37.879965][ T3741] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 37.893300][ T3741] ext4 filesystem being mounted at /26/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 37.893501][ T3415] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 37.914943][ T3415] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 37.928851][ T12] veth1_macvtap: left promiscuous mode [ 37.936962][ T12] veth0_macvtap: left promiscuous mode [ 37.949517][ T12] veth1_vlan: left promiscuous mode [ 37.959698][ T12] veth0_vlan: left promiscuous mode [ 37.986430][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 37.991150][ T3415] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started [ 38.124855][ T12] team0 (unregistering): Port device team_slave_1 removed [ 38.142470][ T12] team0 (unregistering): Port device team_slave_0 removed [ 38.283169][ T3709] chnl_net:caif_netlink_parms(): no params data found [ 38.477300][ T3709] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.484450][ T3709] bridge0: port 1(bridge_slave_0) entered disabled state [ 38.493325][ T3709] bridge_slave_0: entered allmulticast mode [ 38.499818][ T3709] bridge_slave_0: entered promiscuous mode [ 38.506668][ T3709] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.513836][ T3709] bridge0: port 2(bridge_slave_1) entered disabled state [ 38.521975][ T3709] bridge_slave_1: entered allmulticast mode [ 38.530162][ T3709] bridge_slave_1: entered promiscuous mode [ 38.622117][ T3709] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 38.634551][ T3819] netdevsim netdevsim0: Direct firmware load for  failed with error -2 [ 38.637083][ T3709] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 38.712507][ T3709] team0: Port device team_slave_0 added [ 38.727949][ T3709] team0: Port device team_slave_1 added [ 38.786402][ T3709] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 38.793457][ T3709] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 38.819512][ T3709] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 38.890148][ T29] kauditd_printk_skb: 165 callbacks suppressed [ 38.890194][ T29] audit: type=1400 audit(1746898878.253:273): avc: denied { mount } for pid=3838 comm="syz.3.125" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 38.939659][ T3709] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 38.946628][ T3709] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 38.951722][ T29] audit: type=1400 audit(1746898878.303:274): avc: denied { unmount } for pid=3838 comm="syz.3.125" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 38.972544][ T3709] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 39.165844][ T29] audit: type=1400 audit(1746898878.523:275): avc: denied { setopt } for pid=3852 comm="syz.0.145" lport=40956 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1 [ 39.224223][ T3709] hsr_slave_0: entered promiscuous mode [ 39.245862][ T29] audit: type=1400 audit(1746898878.553:276): avc: denied { create } for pid=3854 comm="syz.0.146" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 39.251667][ T3709] hsr_slave_1: entered promiscuous mode [ 39.265872][ T29] audit: type=1400 audit(1746898878.553:277): avc: denied { read } for pid=3854 comm="syz.0.146" path="socket:[6279]" dev="sockfs" ino=6279 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 39.311333][ T29] audit: type=1400 audit(1746898878.603:278): avc: denied { create } for pid=3859 comm="syz.4.149" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 39.330796][ T29] audit: type=1400 audit(1746898878.633:279): avc: denied { connect } for pid=3859 comm="syz.4.149" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 39.345179][ T3709] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 39.350500][ T29] audit: type=1400 audit(1746898878.663:280): avc: denied { write } for pid=3859 comm="syz.4.149" path="socket:[6287]" dev="sockfs" ino=6287 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 39.387009][ T29] audit: type=1400 audit(1746898878.713:281): avc: denied { read } for pid=3859 comm="syz.4.149" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 39.406647][ T3709] Cannot create hsr debugfs directory [ 39.460488][ T29] audit: type=1400 audit(1746898878.823:282): avc: denied { ioctl } for pid=3871 comm="syz.4.153" path="socket:[6305]" dev="sockfs" ino=6305 ioctlcmd=0x8923 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 39.499753][ T3872] : renamed from bond0 (while UP) [ 39.574623][ T3880] netlink: 8 bytes leftover after parsing attributes in process `syz.4.157'. [ 39.583456][ T3880] netlink: 8 bytes leftover after parsing attributes in process `syz.4.157'. [ 39.712893][ T3897] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 39.794963][ T3709] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 39.828503][ T3897] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 39.864589][ T3709] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 39.885097][ T3709] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 39.906569][ T3897] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 39.929445][ T3709] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 39.965685][ T3897] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 40.032666][ T3897] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.072878][ T3897] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.132649][ T3897] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.162441][ T3897] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.216881][ T3709] 8021q: adding VLAN 0 to HW filter on device bond0 [ 40.265499][ T3709] 8021q: adding VLAN 0 to HW filter on device team0 [ 40.296221][ T31] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.303358][ T31] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.342359][ T31] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.349472][ T31] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.588919][ T3709] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 40.650838][ T4015] loop1: detected capacity change from 0 to 1024 [ 40.681108][ T4015] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 40.692031][ T4015] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 40.731830][ T4015] JBD2: no valid journal superblock found [ 40.737614][ T4015] EXT4-fs (loop1): Could not load journal inode [ 40.805734][ T4034] SELinux: Context is not valid (left unmapped). [ 40.818279][ T4036] netlink: 'syz.4.202': attribute type 10 has an invalid length. [ 40.826196][ T4036] netlink: 40 bytes leftover after parsing attributes in process `syz.4.202'. [ 40.831509][ T4015] SELinux: security_context_str_to_sid (-Xܘ7.H\ %u@) failed with errno=-22 [ 40.875200][ T4036] team0: Port device geneve1 added [ 40.921848][ T4045] loop3: detected capacity change from 0 to 512 [ 40.929470][ T3709] veth0_vlan: entered promiscuous mode [ 40.935631][ T4036] syz.4.202 (4036) used greatest stack depth: 10688 bytes left [ 40.937089][ T3709] veth1_vlan: entered promiscuous mode [ 40.970019][ T3709] veth0_macvtap: entered promiscuous mode [ 40.982812][ T3709] veth1_macvtap: entered promiscuous mode [ 40.993475][ T3709] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 41.004073][ T3709] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 41.009527][ T4045] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.204: casefold flag without casefold feature [ 41.014101][ T3709] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 41.036918][ T3709] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 41.046818][ T3709] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 41.057469][ T3709] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 41.067336][ T3709] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 41.077870][ T3709] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 41.088878][ T3709] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 41.099590][ C0] hrtimer: interrupt took 47341 ns [ 41.106759][ T4045] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.204: couldn't read orphan inode 15 (err -117) [ 41.110025][ T3709] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 41.128986][ T3709] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 41.138881][ T3709] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 41.149395][ T3709] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 41.159247][ T3709] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 41.169818][ T3709] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 41.179652][ T3709] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 41.190141][ T3709] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 41.191621][ T4045] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 41.241781][ T3709] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 41.270253][ T3709] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 41.279021][ T3709] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 41.287873][ T3709] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 41.296614][ T3709] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 41.317097][ T3329] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 41.382919][ T4076] loop1: detected capacity change from 0 to 512 [ 41.424826][ T4076] EXT4-fs warning (device loop1): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 41.447201][ T4076] EXT4-fs (loop1): mount failed [ 41.609247][ T4105] loop4: detected capacity change from 0 to 2048 [ 41.666607][ T3734] loop4: p1 < > p3 [ 41.678086][ T3734] loop4: p3 size 134217728 extends beyond EOD, truncated [ 41.697326][ T4105] loop4: p1 < > p3 [ 41.707510][ T4105] loop4: p3 size 134217728 extends beyond EOD, truncated [ 41.786756][ T4131] loop3: detected capacity change from 0 to 512 [ 41.799026][ T4130] loop4: detected capacity change from 0 to 512 [ 41.804417][ T4134] loop1: detected capacity change from 0 to 128 [ 41.812256][ T4130] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 41.814877][ T4131] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 41.821422][ T4130] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 41.837304][ T4134] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 41.857614][ T4130] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 41.875272][ T3310] udevd[3310]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 41.878842][ T4130] System zones: 0-2, 18-18, 34-35 [ 41.885247][ T4134] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 41.895674][ T4130] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 41.903412][ T3734] udevd[3734]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 41.960749][ T4130] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended [ 41.963581][ T3329] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 41.980353][ T3541] udevd[3541]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 41.982911][ T3734] udevd[3734]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 41.990230][ T4130] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 42.027292][ T4130] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 42.048251][ T4143] process 'syz.3.237' launched '/dev/fd/5' with NULL argv: empty string added [ 42.050614][ T4145] bridge_slave_0: default FDB implementation only supports local addresses [ 42.084854][ T4130] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.232: bg 0: block 353: padding at end of block bitmap is not set [ 42.189563][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 42.275204][ T4173] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 42.491612][ T4206] netlink: 14 bytes leftover after parsing attributes in process `syz.0.268'. [ 42.527668][ T4207] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 42.527668][ T4207] The task syz.3.263 (4207) triggered the difference, watch for misbehavior. [ 42.748476][ T4241] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem [ 42.856312][ T4253] netlink: 'syz.5.288': attribute type 3 has an invalid length. [ 42.905520][ T4261] : renamed from vlan0 (while UP) [ 43.027406][ T4276] loop4: detected capacity change from 0 to 527 [ 43.038951][ T4276] EXT4-fs (loop4): failed to parse options in superblock:  [ 43.051985][ T4276] EXT4-fs (loop4): Unsupported encryption level 4 [ 43.144285][ T4288] netlink: 16 bytes leftover after parsing attributes in process `syz.0.303'. [ 43.153324][ T4288] netlink: 16 bytes leftover after parsing attributes in process `syz.0.303'. [ 43.331146][ T4313] bridge0: entered promiscuous mode [ 43.336822][ T4313] macvlan2: entered promiscuous mode [ 43.345619][ T4313] bridge0: port 3(macvlan2) entered blocking state [ 43.352435][ T4313] bridge0: port 3(macvlan2) entered disabled state [ 43.361805][ T4313] macvlan2: entered allmulticast mode [ 43.367198][ T4313] bridge0: entered allmulticast mode [ 43.373790][ T4313] macvlan2: left allmulticast mode [ 43.378947][ T4313] bridge0: left allmulticast mode [ 43.389443][ T4319] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 43.389443][ T4319] program syz.3.318 not setting count and/or reply_len properly [ 43.408450][ T4313] bridge0: left promiscuous mode [ 43.783118][ T4357] netlink: 16 bytes leftover after parsing attributes in process `syz.1.332'. [ 43.792041][ T4357] netlink: 16 bytes leftover after parsing attributes in process `syz.1.332'. [ 43.839797][ T3391] IPVS: starting estimator thread 0... [ 43.907237][ T29] kauditd_printk_skb: 163 callbacks suppressed [ 43.907253][ T29] audit: type=1400 audit(1746898883.263:445): avc: denied { bind } for pid=4382 comm="syz.1.342" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 43.932851][ T29] audit: type=1400 audit(1746898883.263:446): avc: denied { name_bind } for pid=4382 comm="syz.1.342" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1 [ 43.938346][ T4386] delete_channel: no stack [ 43.954431][ T29] audit: type=1400 audit(1746898883.263:447): avc: denied { node_bind } for pid=4382 comm="syz.1.342" saddr=::ffff:0.0.0.0 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1 [ 43.996629][ T4376] IPVS: using max 2208 ests per chain, 110400 per kthread [ 44.012143][ T29] audit: type=1400 audit(1746898883.273:448): avc: denied { create } for pid=4383 comm="syz.3.341" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 44.031785][ T29] audit: type=1400 audit(1746898883.293:449): avc: denied { create } for pid=4386 comm="syz.5.343" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 44.051203][ T29] audit: type=1400 audit(1746898883.293:450): avc: denied { ioctl } for pid=4386 comm="syz.5.343" path="socket:[8264]" dev="sockfs" ino=8264 ioctlcmd=0x5501 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 44.075840][ T29] audit: type=1400 audit(1746898883.323:451): avc: denied { write } for pid=4382 comm="syz.1.342" laddr=::ffff:0.0.0.0 lport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 44.098143][ T29] audit: type=1400 audit(1746898883.323:452): avc: denied { connect } for pid=4382 comm="syz.1.342" laddr=::ffff:0.0.0.0 lport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 44.120567][ T29] audit: type=1400 audit(1746898883.323:453): avc: denied { name_connect } for pid=4382 comm="syz.1.342" dest=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1 [ 44.142733][ T29] audit: type=1400 audit(1746898883.343:454): avc: denied { setopt } for pid=4383 comm="syz.3.341" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 44.193960][ T4396] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 44.202303][ T4396] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 44.235294][ T4385] syz.1.342 (4385) used greatest stack depth: 10264 bytes left [ 44.290445][ T4398] loop5: detected capacity change from 0 to 128 [ 44.302536][ T4400] netlink: 132 bytes leftover after parsing attributes in process `syz.0.349'. [ 44.314513][ T4398] EXT4-fs: Ignoring removed nobh option [ 44.323946][ T4398] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 44.357155][ T4398] ext4 filesystem being mounted at /36/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 44.367692][ T4406] loop0: detected capacity change from 0 to 512 [ 44.380692][ T4406] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 44.388858][ T4406] EXT4-fs (loop0): orphan cleanup on readonly fs [ 44.395920][ T4406] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.352: invalid indirect mapped block 256 (level 2) [ 44.410296][ T4406] EXT4-fs (loop0): 2 truncates cleaned up [ 44.416467][ T4406] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 44.435480][ T4406] EXT4-fs error (device loop0): ext4_map_blocks:675: inode #2: block 13: comm syz.0.352: lblock 0 mapped to illegal pblock 13 (length 1) [ 44.451246][ T4406] EXT4-fs warning (device loop0): htree_dirblock_to_tree:1053: inode #2: lblock 0: comm syz.0.352: error -117 reading directory block [ 44.478096][ T3320] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.531230][ T3709] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 44.565201][ T4420] syzkaller1: entered promiscuous mode [ 44.570828][ T4420] syzkaller1: entered allmulticast mode [ 44.626260][ T4429] netlink: 'syz.1.362': attribute type 3 has an invalid length. [ 44.687880][ T4439] netlink: 14 bytes leftover after parsing attributes in process `syz.4.367'. [ 44.730353][ T4439]  (unregistering): (slave bond_slave_0): Releasing backup interface [ 44.755918][ T4439]  (unregistering): (slave bond_slave_1): Releasing backup interface [ 44.771079][ T4439]  (unregistering): Released all slaves [ 44.776962][ T4436] loop5: detected capacity change from 0 to 8192 [ 44.810387][ T4449] xt_hashlimit: max too large, truncated to 1048576 [ 44.880482][ T4455] $H: renamed from bond0 (while UP) [ 44.908826][ T4455] $H: entered promiscuous mode [ 44.913994][ T4455] bond_slave_0: entered promiscuous mode [ 44.920108][ T4455] bond_slave_1: entered promiscuous mode [ 45.075397][ T4434] mmap: syz.3.365 (4434) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 45.144357][ T4487] loop0: detected capacity change from 0 to 512 [ 45.156354][ T4487] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 45.185078][ T4487] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.399: Failed to acquire dquot type 0 [ 45.204715][ T4487] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 45.227175][ T4487] EXT4-fs (loop0): 1 truncate cleaned up [ 45.235254][ T4487] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 45.250884][ T4500] SELinux: security_context_str_to_sid () failed with errno=-22 [ 45.254502][ T4487] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.399: corrupted xattr block 19: bad e_name length [ 45.272209][ T4487] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=15 [ 45.281666][ T4487] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.399: corrupted xattr block 19: bad e_name length [ 45.295608][ T4487] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=15 [ 45.304813][ T4487] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.399: Failed to acquire dquot type 0 [ 45.319580][ T4501] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.399: Failed to acquire dquot type 0 [ 45.351785][ T3320] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.788202][ T4511] loop0: detected capacity change from 0 to 512 [ 45.811397][ T4511] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 45.833173][ T4511] ext4 filesystem being mounted at /97/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 45.868257][ T4511] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 45.933582][ T3320] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.090945][ T4534] vhci_hcd: invalid port number 224 [ 46.107157][ T4542] loop5: detected capacity change from 0 to 512 [ 46.139771][ T4545] loop1: detected capacity change from 0 to 256 [ 46.149344][ T4542] EXT4-fs: Ignoring removed nobh option [ 46.192826][ T4542] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #16: comm syz.5.412: corrupted inode contents [ 46.217301][ T4554] loop4: detected capacity change from 0 to 164 [ 46.225874][ T4542] EXT4-fs (loop5): Remounting filesystem read-only [ 46.234117][ T4554] iso9660: Unknown parameter './file1' [ 46.253025][ T4554] loop4: detected capacity change from 0 to 512 [ 46.259558][ T4542] EXT4-fs (loop5): 1 truncate cleaned up [ 46.267218][ T4542] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 46.284512][ T31] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 46.295291][ T31] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 46.297485][ T4542] ext4 filesystem being mounted at /44/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 46.317985][ T4554] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities [ 46.327878][ T31] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started [ 46.429672][ T3709] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.544050][ T4580] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=4580 comm=syz.5.423 [ 46.556614][ T4580] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=4580 comm=syz.5.423 [ 46.827423][ T4607] loop1: detected capacity change from 0 to 1024 [ 46.835841][ T4607] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 46.846796][ T4607] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 46.859983][ T4607] JBD2: no valid journal superblock found [ 46.865727][ T4607] EXT4-fs (loop1): Could not load journal inode [ 46.895164][ T4607] loop1: detected capacity change from 0 to 512 [ 46.913235][ T4607] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -13 [ 46.923160][ T4607] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279945729 > max in inode 13 [ 46.942122][ T4607] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279945730 > max in inode 13 [ 46.954182][ T4607] EXT4-fs (loop1): 1 truncate cleaned up [ 46.962680][ T4607] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 46.978117][ T4607] EXT4-fs warning (device loop1): ext4_lookup:1801: Inconsistent encryption contexts: 2/12 [ 46.992337][ T4607] EXT4-fs warning (device loop1): ext4_lookup:1801: Inconsistent encryption contexts: 2/12 [ 47.015230][ T4620] netlink: 12 bytes leftover after parsing attributes in process `syz.5.445'. [ 47.024291][ T4620] netlink: 16 bytes leftover after parsing attributes in process `syz.5.445'. [ 47.033195][ T4620] netlink: 12 bytes leftover after parsing attributes in process `syz.5.445'. [ 47.107746][ T4629] loop5: detected capacity change from 0 to 128 [ 47.119411][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.168207][ T4635] loop5: detected capacity change from 0 to 128 [ 47.512248][ T4686] loop3: detected capacity change from 0 to 1024 [ 47.526985][ T4686] EXT4-fs: Ignoring removed nomblk_io_submit option [ 47.534231][ T4686] EXT4-fs: Ignoring removed bh option [ 47.566487][ T4686] EXT4-fs (loop3): mounted filesystem 05000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 47.587141][ T4686] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: comm syz.3.474: inode #26214: comm syz.3.474: iget: illegal inode # [ 47.611039][ T4686] EXT4-fs (loop3): Remounting filesystem read-only [ 47.622851][ T4686] EXT4-fs warning (device loop3): ext4_xattr_inode_inc_ref_all:1129: inode #18: comm syz.3.474: cleanup dec ref error -30 [ 47.636932][ T4686] EXT4-fs warning (device loop3): ext4_xattr_block_set:2190: inode #18: comm syz.3.474: dec ref error=-30 [ 47.662672][ T4704] syz.5.481 (4704) used greatest stack depth: 9456 bytes left [ 47.683715][ T3329] EXT4-fs (loop3): unmounting filesystem 05000000-0000-0000-0000-000000000000. [ 47.763003][ T4721] IPv6: Can't replace route, no match found [ 47.826124][ T4730] loop5: detected capacity change from 0 to 1024 [ 47.861985][ T4730] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 47.913418][ T4730] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.050661][ T4765] loop4: detected capacity change from 0 to 2048 [ 48.064573][ T4765] journal_path: Non-blockdev passed as './file1' [ 48.071050][ T4765] EXT4-fs: error: could not find journal device path [ 48.370725][ T4780] IPv6: Can't replace route, no match found [ 48.920346][ T4794] SELinux: security_context_str_to_sid () failed with errno=-22 [ 48.928063][ T29] kauditd_printk_skb: 163 callbacks suppressed [ 48.928171][ T29] audit: type=1400 audit(1746898888.283:606): avc: denied { create } for pid=4789 comm="syz.4.514" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 48.954996][ T29] audit: type=1400 audit(1746898888.283:607): avc: denied { mounton } for pid=4789 comm="syz.4.514" path="/107/file0" dev="tmpfs" ino=569 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 49.106158][ T4816] loop4: detected capacity change from 0 to 512 [ 49.122131][ T4816] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 49.141670][ T4816] EXT4-fs (loop4): invalid journal inode [ 49.147495][ T4816] EXT4-fs (loop4): can't get journal size [ 49.154732][ T4816] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a056c118, mo2=0002] [ 49.164865][ T4816] System zones: 1-12, 13-13 [ 49.171042][ T4816] EXT4-fs error (device loop4): ext4_iget_extra_inode:4693: inode #15: comm syz.4.523: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled [ 49.187702][ T29] audit: type=1400 audit(1746898888.343:608): avc: denied { unlink } for pid=3323 comm="syz-executor" name="file0" dev="tmpfs" ino=569 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 49.210300][ T29] audit: type=1326 audit(1746898888.423:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4810 comm="syz.4.521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d73c5e969 code=0x7ffc0000 [ 49.233539][ T29] audit: type=1326 audit(1746898888.423:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4810 comm="syz.4.521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d73c5e969 code=0x7ffc0000 [ 49.256842][ T29] audit: type=1326 audit(1746898888.423:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4810 comm="syz.4.521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=210 compat=0 ip=0x7f5d73c5e969 code=0x7ffc0000 [ 49.280157][ T29] audit: type=1326 audit(1746898888.423:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4810 comm="syz.4.521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d73c5e969 code=0x7ffc0000 [ 49.309263][ T4798] xt_CT: No such helper "snmp_trap" [ 49.318678][ T4816] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.523: couldn't read orphan inode 15 (err -117) [ 49.336612][ T4816] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 49.370451][ T4813] loop5: detected capacity change from 0 to 1024 [ 49.377066][ T4813] EXT4-fs: Ignoring removed nobh option [ 49.382979][ T4813] ext2: Unknown parameter 'dont_hash' [ 49.392711][ T4813] SELinux: security_context_str_to_sid (-Xܘ7.H\ %u@) failed with errno=-22 [ 49.499731][ T4820] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=28 sclass=netlink_audit_socket pid=4820 comm=+}[@ [ 49.521046][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.565116][ T29] audit: type=1326 audit(1746898888.923:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4824 comm="syz.0.530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7236ee969 code=0x7ffc0000 [ 49.588476][ T29] audit: type=1326 audit(1746898888.923:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4824 comm="syz.0.530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7236ee969 code=0x7ffc0000 [ 49.679022][ T29] audit: type=1326 audit(1746898888.973:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4824 comm="syz.0.530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=200 compat=0 ip=0x7fa7236ee969 code=0x7ffc0000 [ 49.682865][ T4838] SELinux: security_context_str_to_sid () failed with errno=-22 [ 49.769288][ T4843] binfmt_misc: register: failed to install interpreter file ./file2 [ 49.945162][ T4865] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 49.945162][ T4865] program syz.0.547 not setting count and/or reply_len properly [ 50.038949][ T4876] loop3: detected capacity change from 0 to 2048 [ 50.132251][ T4891] siw: device registration error -23 [ 50.146263][ T4876] loop3: p2 p3 p7 [ 50.304268][ T4918] __nla_validate_parse: 5 callbacks suppressed [ 50.304288][ T4918] netlink: 8 bytes leftover after parsing attributes in process `syz.5.569'. [ 50.919771][ T4985] syzkaller1: entered promiscuous mode [ 50.925296][ T4985] syzkaller1: entered allmulticast mode [ 51.241408][ T5050] loop3: detected capacity change from 0 to 512 [ 51.249271][ T5050] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 51.257339][ T5050] EXT4-fs (loop3): orphan cleanup on readonly fs [ 51.264129][ T5050] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.618: invalid indirect mapped block 256 (level 2) [ 51.300785][ T5050] EXT4-fs (loop3): 2 truncates cleaned up [ 51.307041][ T5050] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 51.322510][ T5050] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #2: block 13: comm syz.3.618: lblock 0 mapped to illegal pblock 13 (length 1) [ 51.337479][ T5050] EXT4-fs warning (device loop3): htree_dirblock_to_tree:1053: inode #2: lblock 0: comm syz.3.618: error -117 reading directory block [ 51.355312][ T5057] netlink: 14 bytes leftover after parsing attributes in process `syz.5.621'. [ 51.365024][ T3329] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.433106][ T5057] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 51.446745][ T5057] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 51.469913][ T5057] bond0 (unregistering): Released all slaves [ 51.501048][ T5075] netlink: 'syz.0.628': attribute type 3 has an invalid length. [ 51.642257][ T5095] Invalid ELF header magic: != ELF [ 51.753635][ T5104] loop3: detected capacity change from 0 to 2048 [ 51.799832][ T5121] netlink: 'syz.5.644': attribute type 3 has an invalid length. [ 51.809920][ T5104] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 51.894937][ T5130] netlink: 256 bytes leftover after parsing attributes in process `syz.5.647'. [ 51.911349][ T3329] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 52.161734][ T5182] xt_CT: You must specify a L4 protocol and not use inversions on it [ 52.345444][ T5217] loop3: detected capacity change from 0 to 256 [ 52.400782][ T5215] vhci_hcd: invalid port number 224 [ 52.561139][ T5259] netlink: 'syz.5.702': attribute type 29 has an invalid length. [ 52.570397][ T5259] netlink: 'syz.5.702': attribute type 29 has an invalid length. [ 52.580811][ T5259] netlink: 508 bytes leftover after parsing attributes in process `syz.5.702'. [ 52.627832][ T5267] loop5: detected capacity change from 0 to 128 [ 52.700328][ T5274] loop3: detected capacity change from 0 to 512 [ 52.718997][ T5274] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 52.729030][ T5276] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 52.742434][ T5278] netlink: 4 bytes leftover after parsing attributes in process `syz.4.700'. [ 52.750725][ T5274] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.698: Failed to acquire dquot type 0 [ 52.751301][ T5278] netlink: 4 bytes leftover after parsing attributes in process `syz.4.700'. [ 52.763765][ T5274] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 52.771588][ T5278] netlink: 4 bytes leftover after parsing attributes in process `syz.4.700'. [ 52.788327][ T5274] EXT4-fs (loop3): 1 truncate cleaned up [ 52.800950][ T5274] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 52.809986][ T5278] netlink: 4 bytes leftover after parsing attributes in process `syz.4.700'. [ 52.822348][ T5278] netlink: 4 bytes leftover after parsing attributes in process `syz.4.700'. [ 52.833664][ T5276] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 52.838957][ T5278] netlink: 4 bytes leftover after parsing attributes in process `syz.4.700'. [ 52.847030][ T5274] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.698: corrupted xattr block 19: bad e_name length [ 52.867096][ T5274] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 52.876412][ T5274] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.698: corrupted xattr block 19: bad e_name length [ 52.890827][ T5274] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 52.901119][ T5274] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.698: Failed to acquire dquot type 0 [ 52.912751][ T5286] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.698: Failed to acquire dquot type 0 [ 52.934339][ T5276] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 52.992460][ T5276] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 53.013379][ T3329] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 53.062681][ T5312] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0 [ 53.062736][ T5311] IPVS: stopping master sync thread 5312 ... [ 53.094406][ T5276] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.109944][ T5276] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.133038][ T5276] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.167167][ T5276] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.470211][ T5369] loop4: detected capacity change from 0 to 128 [ 53.494547][ T5369] EXT4-fs: Ignoring removed nobh option [ 53.537122][ T5376] loop1: detected capacity change from 0 to 512 [ 53.566219][ T5369] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 53.617921][ T5376] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 53.638949][ T5369] ext4 filesystem being mounted at /146/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 53.680033][ T5376] EXT4-fs (loop1): 1 truncate cleaned up [ 53.686069][ T5376] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 53.720800][ T5376] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 53.938284][ T29] kauditd_printk_skb: 151 callbacks suppressed [ 53.938301][ T29] audit: type=1400 audit(1746898893.293:761): avc: denied { setopt } for pid=5411 comm="syz.0.729" lport=44510 faddr=::ffff:172.20.255.187 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sctp_socket permissive=1 [ 54.134958][ T5423] loop0: detected capacity change from 0 to 1024 [ 54.143642][ T3323] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 54.188511][ T5429] loop4: detected capacity change from 0 to 512 [ 54.197139][ T5423] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 54.212587][ T5429] EXT4-fs: Ignoring removed i_version option [ 54.219061][ T5429] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 54.230703][ T5423] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2848: Unable to expand inode 12. Delete some EAs or run e2fsck. [ 54.246092][ T5429] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 54.259574][ T5429] ext4 filesystem being mounted at /148/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 54.275639][ T29] audit: type=1400 audit(1746898893.633:762): avc: denied { setattr } for pid=5428 comm="syz.4.737" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 54.275702][ T3320] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 54.316947][ T5429] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #2: comm syz.4.737: corrupted inode contents [ 54.339703][ T5429] EXT4-fs (loop4): Remounting filesystem read-only [ 54.347813][ T29] audit: type=1400 audit(1746898893.703:763): avc: denied { read write } for pid=5437 comm="syz.0.739" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 54.372244][ T29] audit: type=1400 audit(1746898893.703:764): avc: denied { open } for pid=5437 comm="syz.0.739" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 54.410623][ T29] audit: type=1400 audit(1746898893.763:765): avc: denied { setopt } for pid=5439 comm="syz.3.741" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 54.439316][ T29] audit: type=1400 audit(1746898893.793:766): avc: denied { create } for pid=5428 comm="syz.4.737" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 54.491082][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 54.561809][ T5456] loop3: detected capacity change from 0 to 128 [ 54.598509][ T29] audit: type=1326 audit(1746898893.943:767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5457 comm="syz.0.749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7236ee969 code=0x7ffc0000 [ 54.621838][ T29] audit: type=1326 audit(1746898893.943:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5457 comm="syz.0.749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa7236ee969 code=0x7ffc0000 [ 54.645350][ T29] audit: type=1326 audit(1746898893.943:769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5457 comm="syz.0.749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7236ee969 code=0x7ffc0000 [ 54.668748][ T29] audit: type=1326 audit(1746898893.943:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5457 comm="syz.0.749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7236ee969 code=0x7ffc0000 [ 54.792849][ T5474] loop0: detected capacity change from 0 to 1024 [ 54.801521][ T5474] EXT4-fs: Ignoring removed nomblk_io_submit option [ 54.808846][ T5474] EXT4-fs: Ignoring removed bh option [ 54.837660][ T5474] EXT4-fs (loop0): mounted filesystem 05000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 54.888442][ T5474] EXT4-fs error (device loop0): ext4_xattr_inode_iget:437: comm syz.0.757: inode #26214: comm syz.0.757: iget: illegal inode # [ 54.922127][ T5474] EXT4-fs (loop0): Remounting filesystem read-only [ 54.944564][ T5474] EXT4-fs warning (device loop0): ext4_xattr_inode_inc_ref_all:1129: inode #18: comm syz.0.757: cleanup dec ref error -30 [ 55.011759][ T5474] EXT4-fs warning (device loop0): ext4_xattr_block_set:2190: inode #18: comm syz.0.757: dec ref error=-30 [ 55.029881][ T5497] loop3: detected capacity change from 0 to 128 [ 55.046699][ T5497] EXT4-fs: Ignoring removed nobh option [ 55.087414][ T5497] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 55.099884][ T3320] EXT4-fs (loop0): unmounting filesystem 05000000-0000-0000-0000-000000000000. [ 55.126098][ T5497] ext4 filesystem being mounted at /128/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 55.491178][ T5530] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0) [ 55.516035][ T5530] SELinux: failed to load policy [ 55.520657][ T5533] loop0: detected capacity change from 0 to 128 [ 55.642575][ T5537] loop4: detected capacity change from 0 to 164 [ 55.671843][ T3329] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 55.762353][ T5537] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 55.804556][ T5537] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 55.840497][ T5545] loop0: detected capacity change from 0 to 1024 [ 55.847223][ T5545] EXT4-fs: Ignoring removed orlov option [ 55.851258][ T5537] Symlink component flag not implemented [ 55.853086][ T5545] EXT4-fs: Ignoring removed nomblk_io_submit option [ 55.858491][ T5537] Symlink component flag not implemented [ 55.885196][ T5537] Symlink component flag not implemented (7) [ 55.891230][ T5537] Symlink component flag not implemented (116) [ 55.966916][ T5545] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 56.191493][ T3320] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 56.233244][ T5565] loop3: detected capacity change from 0 to 512 [ 56.249369][ T5565] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 56.262962][ T5565] EXT4-fs (loop3): 1 truncate cleaned up [ 56.269054][ T5565] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 56.313033][ T5573] netlink: 'syz.4.795': attribute type 2 has an invalid length. [ 56.320724][ T5573] netlink: 'syz.4.795': attribute type 9 has an invalid length. [ 56.328398][ T5573] __nla_validate_parse: 6 callbacks suppressed [ 56.328411][ T5573] netlink: 209836 bytes leftover after parsing attributes in process `syz.4.795'. [ 56.377748][ T3329] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 56.419000][ T5581] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 56.468526][ T5581] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0' [ 56.511325][ T5594] Illegal XDP return value 4294967274 on prog (id 505) dev syz_tun, expect packet loss! [ 56.528522][ T5597] loop5: detected capacity change from 0 to 512 [ 56.548924][ T5597] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended [ 56.558013][ T5597] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem [ 56.587611][ T5597] EXT4-fs (loop5): warning: checktime reached, running e2fsck is recommended [ 56.608917][ T5597] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 56.619609][ T5597] System zones: 0-2, 18-18, 34-34 [ 56.628628][ T5597] EXT4-fs warning (device loop5): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 56.650321][ T5597] EXT4-fs (loop5): 1 truncate cleaned up [ 56.656072][ T5603] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 56.660223][ T5597] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 56.700247][ T5597] EXT4-fs (loop5): shut down requested (1) [ 56.734568][ T3709] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 56.759468][ T5610] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 56.830829][ T5610] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 56.922229][ T5610] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 57.014179][ T5639] loop1: detected capacity change from 0 to 512 [ 57.024621][ T5639] EXT4-fs: Ignoring removed orlov option [ 57.030713][ T5639] EXT4-fs: Ignoring removed nomblk_io_submit option [ 57.038707][ T5639] EXT4-fs error (device loop1): ext4_init_orphan_info:586: comm syz.1.827: inode #0: comm syz.1.827: iget: illegal inode # [ 57.059226][ T5639] EXT4-fs (loop1): Remounting filesystem read-only [ 57.065827][ T5639] EXT4-fs (loop1): get orphan inode failed [ 57.075218][ T5610] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 57.076370][ T5639] EXT4-fs (loop1): mount failed [ 57.127786][ T5648] loop0: detected capacity change from 0 to 2048 [ 57.139628][ T5648] EXT4-fs: Ignoring removed mblk_io_submit option [ 57.156375][ T5610] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.171024][ T5648] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 57.193274][ T5610] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.215851][ T5610] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.232862][ T5658] netlink: 'syz.1.835': attribute type 21 has an invalid length. [ 57.238460][ T5610] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.240902][ T5658] netlink: 128 bytes leftover after parsing attributes in process `syz.1.835'. [ 57.270919][ T3320] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 57.300716][ T5658] netlink: 'syz.1.835': attribute type 4 has an invalid length. [ 57.308517][ T5658] netlink: 3 bytes leftover after parsing attributes in process `syz.1.835'. [ 57.412360][ T5676] loop3: detected capacity change from 0 to 1024 [ 57.442230][ T5681] program syz.4.845 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 57.472740][ T5676] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 57.491702][ T5676] ext4 filesystem being mounted at /145/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 57.576441][ T3329] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 57.604474][ T5697] SELinux: failed to load policy [ 57.633395][ T5701] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 57.669872][ T5704] loop4: detected capacity change from 0 to 2048 [ 57.678555][ T5704] EXT4-fs: dax option not supported [ 57.695719][ T5701] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 57.816360][ T5701] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 57.873749][ T5701] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 57.967846][ T5701] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 57.980182][ T5722] rdma_op ffff888109dbcd80 conn xmit_rdma 0000000000000000 [ 57.987266][ T5701] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.022317][ T5701] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.045602][ T5730] loop4: detected capacity change from 0 to 512 [ 58.050866][ T5701] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.072686][ T5730] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 58.081256][ T5730] EXT4-fs (loop4): orphan cleanup on readonly fs [ 58.083034][ T5732] loop0: detected capacity change from 0 to 1024 [ 58.094693][ T5730] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.869: Failed to acquire dquot type 1 [ 58.095122][ T5732] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 58.116849][ T5732] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 58.142641][ T5732] JBD2: no valid journal superblock found [ 58.148412][ T5732] EXT4-fs (loop0): Could not load journal inode [ 58.151257][ T5730] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.869: bg 0: block 40: padding at end of block bitmap is not set [ 58.170566][ T5730] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6548: Corrupt filesystem [ 58.180018][ T5730] EXT4-fs (loop4): 1 truncate cleaned up [ 58.186207][ T5730] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 58.241441][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 58.274740][ T5750] loop4: detected capacity change from 0 to 128 [ 58.282915][ T5753] loop0: detected capacity change from 0 to 256 [ 58.346255][ T5761] IPv6: NLM_F_CREATE should be specified when creating new route [ 58.372415][ T5765] loop1: detected capacity change from 0 to 512 [ 58.397602][ T5765] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 58.411656][ T5773] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 58.420213][ T5773] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 58.430610][ T5765] EXT4-fs (loop1): 1 truncate cleaned up [ 58.432991][ T5773] netlink: 59 bytes leftover after parsing attributes in process `syz.4.890'. [ 58.436650][ T5765] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 58.468044][ T5777] IPv6: Can't replace route, no match found [ 58.512683][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 58.528335][ T5785] netlink: 'ext4': attribute type 21 has an invalid length. [ 58.587275][ T5796] netlink: 34 bytes leftover after parsing attributes in process `syz.3.899'. [ 58.650600][ T5808] loop1: detected capacity change from 0 to 512 [ 58.658359][ T5808] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.905: casefold flag without casefold feature [ 58.671251][ T5808] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.905: couldn't read orphan inode 15 (err -117) [ 58.684267][ T5808] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 58.711716][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 58.734105][ T5814] loop0: detected capacity change from 0 to 512 [ 58.756465][ T5814] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 58.768081][ T5814] EXT4-fs (loop0): 1 truncate cleaned up [ 58.775715][ T5814] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 58.814307][ T5822] loop3: detected capacity change from 0 to 128 [ 58.823057][ T3320] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 58.912789][ T5838] syzkaller1: entered promiscuous mode [ 58.918437][ T5838] syzkaller1: entered allmulticast mode [ 58.963483][ T5846] loop3: detected capacity change from 0 to 512 [ 58.993782][ T5846] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a846c118, mo2=0002] [ 59.003039][ T5846] System zones: 1-12 [ 59.007360][ T5846] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #2: comm syz.3.924: corrupted xattr block 255: invalid header [ 59.021337][ T5846] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117 [ 59.030158][ T5846] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #2: comm syz.3.924: corrupted xattr block 255: invalid header [ 59.044013][ T5846] SELinux: (dev loop3, type ext4) getxattr errno 117 [ 59.094963][ T29] kauditd_printk_skb: 162 callbacks suppressed [ 59.094980][ T29] audit: type=1326 audit(1746898898.453:931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5861 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d73c5e969 code=0x7ffc0000 [ 59.130990][ T5862] loop4: detected capacity change from 0 to 512 [ 59.133389][ T29] audit: type=1326 audit(1746898898.483:932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5861 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5d73c5e969 code=0x7ffc0000 [ 59.148946][ T5864] tipc: Started in network mode [ 59.160586][ T29] audit: type=1326 audit(1746898898.483:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5861 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d73c5e969 code=0x7ffc0000 [ 59.165440][ T5864] tipc: Node identity ac1414aa, cluster identity 4711 [ 59.188743][ T29] audit: type=1326 audit(1746898898.483:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5861 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d73c5e969 code=0x7ffc0000 [ 59.199979][ T5862] EXT4-fs: Ignoring removed orlov option [ 59.218728][ T29] audit: type=1326 audit(1746898898.483:935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5861 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5d73c5e969 code=0x7ffc0000 [ 59.247751][ T29] audit: type=1326 audit(1746898898.483:936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5861 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d73c5e969 code=0x7ffc0000 [ 59.261060][ T5864] tipc: Enabled bearer , priority 10 [ 59.271092][ T29] audit: type=1326 audit(1746898898.483:937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5861 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f5d73c5e969 code=0x7ffc0000 [ 59.300111][ T29] audit: type=1326 audit(1746898898.483:938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5861 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f5d73c5e9a3 code=0x7ffc0000 [ 59.323442][ T29] audit: type=1326 audit(1746898898.483:939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5861 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f5d73c5d41f code=0x7ffc0000 [ 59.326266][ T5862] ext4 filesystem being mounted at /189/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 59.346482][ T29] audit: type=1326 audit(1746898898.483:940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5861 comm="syz.4.930" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f5d73c5e9f7 code=0x7ffc0000 [ 59.543111][ T10] Process accounting resumed [ 59.587207][ T5884] xt_hashlimit: max too large, truncated to 1048576 [ 59.683721][ T5891] (unnamed net_device) (uninitialized): option fail_over_mac: invalid value (15) [ 59.764317][ T5900] loop0: detected capacity change from 0 to 512 [ 59.770999][ T5900] EXT4-fs: inline encryption not supported [ 59.778855][ T5900] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 59.816361][ T5907] netlink: 8 bytes leftover after parsing attributes in process `+}[@'. [ 59.824813][ T5907] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 59.853311][ T5900] ext4 filesystem being mounted at /224/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 59.911607][ T5907] wireguard0: entered promiscuous mode [ 59.950367][ T5920] loop0: detected capacity change from 0 to 2048 [ 59.985331][ T5920] EXT4-fs (loop0): failed to initialize system zone (-117) [ 59.999349][ T5920] EXT4-fs (loop0): mount failed [ 60.025166][ T5938] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=5938 comm=syz.4.959 [ 60.037720][ T5938] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=5938 comm=syz.4.959 [ 60.100981][ T5940] usb usb6: usbfs: process 5940 (syz.1.960) did not claim interface 0 before use [ 60.158328][ T5961] loop1: detected capacity change from 0 to 512 [ 60.188647][ T5966] SET target dimension over the limit! [ 60.200648][ T5961] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 60.209764][ T5961] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 60.220366][ T5961] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended [ 60.229881][ T5961] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 60.244872][ T5961] System zones: 0-2, 18-18, 34-34 [ 60.267905][ T5961] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 60.284536][ T5961] EXT4-fs (loop1): 1 truncate cleaned up [ 60.293475][ T5961] EXT4-fs (loop1): shut down requested (1) [ 60.317872][ T5983] loop5: detected capacity change from 0 to 512 [ 60.326657][ T5983] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 60.339492][ T5985] netlink: 4 bytes leftover after parsing attributes in process `syz.3.982'. [ 60.348894][ T5985] netlink: 4 bytes leftover after parsing attributes in process `syz.3.982'. [ 60.359548][ T5983] ext4 filesystem being mounted at /153/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 60.374720][ T5991] vhci_hcd: default hub control req: 0000 v0000 i0000 l31125 [ 60.382231][ T10] tipc: Node number set to 2886997162 [ 60.413537][ T5995] Zero length message leads to an empty skb [ 60.702812][ T6026] capability: warning: `syz.1.994' uses 32-bit capabilities (legacy support in use) [ 60.735142][ T6026] program syz.1.994 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 60.736284][ T6028] loop5: detected capacity change from 0 to 2048 [ 60.761924][ T6028] EXT4-fs (loop5): failed to initialize system zone (-117) [ 60.772953][ T6028] EXT4-fs (loop5): mount failed [ 60.809696][ T6037] sd 0:0:1:0: device reset [ 60.897340][ T6051] loop3: detected capacity change from 0 to 2048 [ 60.979855][ T6051] loop3: p1 < > p4 [ 60.984405][ T6051] loop3: p4 size 8388608 extends beyond EOD, truncated [ 61.041371][ T6059] loop3: detected capacity change from 0 to 512 [ 61.063187][ T6059] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 61.072302][ T6059] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 61.113660][ T6059] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended [ 61.135951][ T6059] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 61.144144][ T6059] System zones: 0-2, 18-18, 34-34 [ 61.150473][ T6059] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 61.197685][ T6059] EXT4-fs (loop3): 1 truncate cleaned up [ 61.207819][ T6059] EXT4-fs (loop3): shut down requested (1) [ 61.376622][ T6095] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1025'. [ 61.398037][ T6095] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1025'. [ 61.493089][ T6114] ipvlan2: entered promiscuous mode [ 61.498347][ T6114] ipvlan2: entered allmulticast mode [ 61.503706][ T6114] macvlan0: entered allmulticast mode [ 61.509100][ T6114] veth1_vlan: entered allmulticast mode [ 61.578581][ T6123] loop5: detected capacity change from 0 to 512 [ 61.586572][ T6123] EXT4-fs: Ignoring removed orlov option [ 61.603735][ T6123] ext4 filesystem being mounted at /169/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 61.639547][ T6135] smc: net device bond0 applied user defined pnetid SYZ2 [ 61.670626][ T6135] smc: net device bond0 erased user defined pnetid SYZ2 [ 61.756086][ T6155] loop4: detected capacity change from 0 to 512 [ 61.766324][ T6155] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 61.795487][ T6155] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm +}[@: Failed to acquire dquot type 0 [ 61.812749][ T6155] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 61.829147][ T6155] EXT4-fs (loop4): 1 truncate cleaned up [ 61.879142][ T6168] loop4: detected capacity change from 0 to 512 [ 61.887615][ T6168] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 61.902332][ T6168] ext4 filesystem being mounted at /217/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 62.223811][ T6216] loop0: detected capacity change from 0 to 512 [ 62.232014][ T6216] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 62.252866][ T6216] ext4 filesystem being mounted at /247/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 62.510503][ T6229] vhci_hcd: invalid port number 12 [ 62.515657][ T6229] vhci_hcd: default hub control req: 4008 v0101 i000c l0 [ 62.582341][ T6226] loop4: detected capacity change from 0 to 32768 [ 62.619860][ T6226] loop4: p1 p2 p3 < p5 p6 > [ 62.632285][ T6226] loop4: p1 size 242222080 extends beyond EOD, truncated [ 62.666260][ T6239] loop0: detected capacity change from 0 to 512 [ 62.676227][ T6226] loop4: p2 start 4294967295 is beyond EOD, truncated [ 62.685890][ T6239] ext4 filesystem being mounted at /251/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 62.801559][ T6258] loop0: detected capacity change from 0 to 128 [ 62.828972][ T6256] netlink: zone id is out of range [ 62.834233][ T6256] netlink: zone id is out of range [ 62.839380][ T6256] netlink: zone id is out of range [ 62.844494][ T6256] netlink: zone id is out of range [ 62.849686][ T6256] netlink: zone id is out of range [ 62.854805][ T6256] netlink: zone id is out of range [ 62.859977][ T6256] netlink: zone id is out of range [ 62.865096][ T6256] netlink: zone id is out of range [ 62.870277][ T6256] netlink: zone id is out of range [ 62.875417][ T6256] netlink: zone id is out of range [ 62.929031][ T6266] loop4: detected capacity change from 0 to 2048 [ 63.072560][ T6289] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1110'. [ 63.178243][ T6298] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1115'. [ 63.206980][ T6300] loop5: detected capacity change from 0 to 512 [ 63.220231][ T6300] EXT4-fs: Ignoring removed oldalloc option [ 63.242659][ T6300] EXT4-fs error (device loop5): ext4_xattr_inode_iget:433: comm syz.5.1116: Parent and EA inode have the same ino 15 [ 63.261441][ T6300] EXT4-fs (loop5): Remounting filesystem read-only [ 63.268226][ T6300] EXT4-fs warning (device loop5): ext4_evict_inode:262: couldn't mark inode dirty (err -30) [ 63.278622][ T6300] EXT4-fs (loop5): 1 orphan inode deleted [ 63.426230][ T6324] loop1: detected capacity change from 0 to 128 [ 63.485543][ T6329] loop5: detected capacity change from 0 to 1024 [ 63.501673][ T6329] ext4: Unknown parameter 'nombca' [ 63.561912][ T6341] loop4: detected capacity change from 0 to 1764 [ 63.634724][ T6353] loop1: detected capacity change from 0 to 1024 [ 63.792035][ T6385] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1155'. [ 63.801117][ T6385] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1155'. [ 63.851906][ T6396] SELinux: policydb version 2066796142 does not match my version range 15-34 [ 63.865733][ T6396] SELinux: failed to load policy [ 63.874847][ T6398] loop5: detected capacity change from 0 to 512 [ 63.896267][ T6398] ext4 filesystem being mounted at /187/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 63.913459][ T6406] loop3: detected capacity change from 0 to 512 [ 63.921931][ T6406] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 63.949171][ T6415] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1167'. [ 63.960826][ T6415] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1167'. [ 63.970223][ T6406] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm +}[@: Failed to acquire dquot type 0 [ 63.971870][ T6415] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1167'. [ 63.991025][ T6415] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1167'. [ 63.991691][ T6406] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 64.035435][ T6406] EXT4-fs (loop3): 1 truncate cleaned up [ 64.063997][ T6426] loop4: detected capacity change from 0 to 1024 [ 64.107212][ T29] kauditd_printk_skb: 310 callbacks suppressed [ 64.107231][ T29] audit: type=1400 audit(1746898903.463:1247): avc: denied { setcurrent } for pid=6431 comm="syz.1.1175" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 64.325371][ T6457] loop1: detected capacity change from 0 to 512 [ 64.343861][ T6457] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 64.373532][ T6465] loop5: detected capacity change from 0 to 2048 [ 64.390528][ T6457] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 64.401023][ T6457] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0 [ 64.410603][ T6457] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm +}[@: Failed to acquire dquot type 0 [ 64.422614][ T6457] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 64.438330][ T6457] EXT4-fs (loop1): 1 truncate cleaned up [ 64.607238][ T6486] loop1: detected capacity change from 0 to 512 [ 64.614135][ T29] audit: type=1326 audit(1746898903.973:1248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6488 comm="syz.3.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfd8a9e969 code=0x7ffc0000 [ 64.668772][ T6486] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.1198: invalid indirect mapped block 256 (level 2) [ 64.674607][ T29] audit: type=1326 audit(1746898903.993:1249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6488 comm="syz.3.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7fcfd8a9e969 code=0x7ffc0000 [ 64.705610][ T29] audit: type=1326 audit(1746898903.993:1250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6488 comm="syz.3.1200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfd8a9e969 code=0x7ffc0000 [ 64.731992][ T6486] EXT4-fs (loop1): 2 truncates cleaned up [ 64.752226][ T29] audit: type=1400 audit(1746898904.113:1251): avc: denied { map } for pid=6485 comm="syz.1.1198" path="/238/file1/file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 64.790871][ T29] audit: type=1326 audit(1746898904.153:1252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6502 comm="syz.5.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4f933e969 code=0x7ffc0000 [ 64.814435][ T29] audit: type=1326 audit(1746898904.153:1253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6502 comm="syz.5.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4f933e969 code=0x7ffc0000 [ 64.815179][ T6485] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.1198: bg 0: block 5: invalid block bitmap [ 64.838079][ T29] audit: type=1326 audit(1746898904.153:1254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6502 comm="syz.5.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fb4f933e969 code=0x7ffc0000 [ 64.883507][ T6486] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 209748140 > max in inode 15 [ 64.901462][ T6486] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 209748144 > max in inode 15 [ 64.911903][ T6486] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 209748148 > max in inode 15 [ 64.923130][ T6486] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 209748152 > max in inode 15 [ 64.947515][ T6511] syz.3.1208: attempt to access beyond end of device [ 64.947515][ T6511] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 64.960669][ T6486] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 209748156 > max in inode 15 [ 64.977367][ T6513] loop0: detected capacity change from 0 to 512 [ 64.980871][ T6486] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 209748160 > max in inode 15 [ 64.994164][ T6486] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 209748164 > max in inode 15 [ 65.005290][ T6486] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 209748168 > max in inode 15 [ 65.006480][ T6513] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -13 [ 65.015539][ T6486] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 209748172 > max in inode 15 [ 65.025395][ T6513] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 3279945729 > max in inode 13 [ 65.045085][ T6513] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 3279945730 > max in inode 13 [ 65.045729][ T6486] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 209748176 > max in inode 15 [ 65.055875][ T6513] EXT4-fs (loop0): 1 truncate cleaned up [ 65.099266][ T6513] EXT4-fs warning (device loop0): ext4_lookup:1801: Inconsistent encryption contexts: 2/12 [ 65.261361][ T6544] loop5: detected capacity change from 0 to 512 [ 65.278367][ T6547] lo: entered promiscuous mode [ 65.283269][ T6547] lo: entered allmulticast mode [ 65.295196][ T6544] ext4 filesystem being mounted at /198/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 65.377595][ T6555] loop3: detected capacity change from 0 to 512 [ 65.396311][ T6555] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 65.424560][ T6559] netlink: 'syz.5.1224': attribute type 10 has an invalid length. [ 65.442467][ T6555] ext4 filesystem being mounted at /242/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 65.456354][ T6561] loop0: detected capacity change from 0 to 512 [ 65.472552][ T6555] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.1223: corrupted xattr block 19: overlapping e_value [ 65.477076][ T6559] team0: Port device geneve1 added [ 65.495368][ T6561] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 65.515418][ T6555] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 65.528897][ T6555] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.1223: corrupted xattr block 19: overlapping e_value [ 65.543418][ T6555] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 65.552485][ T6555] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.1223: corrupted xattr block 19: overlapping e_value [ 65.573508][ T6561] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm +}[@: Failed to acquire dquot type 0 [ 65.576542][ T6570] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.1223: corrupted xattr block 19: overlapping e_value [ 65.604545][ T6561] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 65.620996][ T6570] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 65.635129][ T6561] EXT4-fs (loop0): 1 truncate cleaned up [ 65.642219][ T6570] EXT4-fs error (device loop3): ext4_xattr_block_find:1869: inode #15: comm syz.3.1223: corrupted xattr block 19: overlapping e_value [ 65.661780][ T6574] netlink: 'syz.1.1230': attribute type 32 has an invalid length. [ 65.718029][ T6583] loop5: detected capacity change from 0 to 128 [ 65.739090][ T6583] ext4 filesystem being mounted at /203/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 65.820340][ T6599] loop4: detected capacity change from 0 to 1024 [ 65.827037][ T6599] journal_path: Lookup failure for './file0' [ 65.833142][ T6599] EXT4-fs: error: could not find journal device path [ 65.860033][ T6605] loop1: detected capacity change from 0 to 1024 [ 65.868838][ T6605] EXT4-fs: Ignoring removed orlov option [ 65.966245][ T6629] netlink: 'syz.4.1254': attribute type 4 has an invalid length. [ 65.975150][ T6631] SELinux: security policydb version 18 (MLS) not backwards compatible [ 65.983995][ T6631] SELinux: failed to load policy [ 66.021752][ T6637] unsupported nla_type 52263 [ 66.086134][ T6650] netlink: 'syz.3.1265': attribute type 1 has an invalid length. [ 66.239765][ T6664] loop3: detected capacity change from 0 to 2048 [ 66.250234][ T6664] msdos: Unknown parameter 'F' [ 66.345693][ T6684] loop4: detected capacity change from 0 to 1024 [ 66.354598][ T6684] EXT4-fs: Ignoring removed orlov option [ 66.361600][ T6684] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 66.478307][ T6708] loop4: detected capacity change from 0 to 1024 [ 66.485163][ T6708] EXT4-fs: Ignoring removed nobh option [ 66.490772][ T6708] EXT4-fs: Ignoring removed bh option [ 66.514417][ T6708] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.1292: Allocating blocks 385-513 which overlap fs metadata [ 66.529393][ T6708] EXT4-fs (loop4): pa ffff8881069f9150: logic 16, phys. 129, len 24 [ 66.537422][ T6708] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8 [ 66.653810][ T6732] lo: entered promiscuous mode [ 66.658692][ T6732] lo: entered allmulticast mode [ 66.941768][ T6752] __nla_validate_parse: 2 callbacks suppressed [ 66.941787][ T6752] netlink: 268 bytes leftover after parsing attributes in process `syz.4.1309'. [ 67.070840][ T6768] loop5: detected capacity change from 0 to 1024 [ 67.077763][ T6768] EXT4-fs: Ignoring removed orlov option [ 67.915808][ T3709] EXT4-fs unmount: 57 callbacks suppressed [ 67.915845][ T3709] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 67.937990][ T6790] loop3: detected capacity change from 0 to 1024 [ 67.945735][ T6790] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 67.956823][ T6790] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 67.971846][ T6790] JBD2: no valid journal superblock found [ 67.977591][ T6790] EXT4-fs (loop3): Could not load journal inode [ 67.988368][ T6789] loop0: detected capacity change from 0 to 1024 [ 67.995659][ T6789] EXT4-fs: Ignoring removed mblk_io_submit option [ 68.002575][ T6789] EXT4-fs: Ignoring removed nobh option [ 68.008162][ T6789] EXT4-fs: Ignoring removed bh option [ 68.012692][ T6794] loop5: detected capacity change from 0 to 512 [ 68.024191][ T6794] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended [ 68.040265][ T6789] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 68.056122][ T6790] loop3: detected capacity change from 0 to 512 [ 68.068228][ T3320] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.078141][ T6790] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -13 [ 68.087448][ T6790] EXT4-fs warning (device loop3): ext4_block_to_path:107: block 3279945729 > max in inode 13 [ 68.108075][ T6790] EXT4-fs warning (device loop3): ext4_block_to_path:107: block 3279945730 > max in inode 13 [ 68.110013][ T6794] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm +}[@: Failed to acquire dquot type 0 [ 68.118547][ T6790] EXT4-fs (loop3): 1 truncate cleaned up [ 68.135684][ T6790] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 68.159023][ T6790] EXT4-fs warning (device loop3): ext4_lookup:1801: Inconsistent encryption contexts: 2/12 [ 68.159931][ T6794] EXT4-fs warning (device loop5): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 68.193671][ T6794] EXT4-fs (loop5): 1 truncate cleaned up [ 68.199853][ T6794] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 68.225089][ T3329] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.272453][ T3709] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.324696][ T6833] loop4: detected capacity change from 0 to 1024 [ 68.332103][ T6833] EXT4-fs: Ignoring removed mblk_io_submit option [ 68.348201][ T6833] EXT4-fs: Ignoring removed nobh option [ 68.353926][ T6833] EXT4-fs: Ignoring removed bh option [ 68.381614][ T6833] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 68.406673][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.458072][ T6853] loop0: detected capacity change from 0 to 512 [ 68.470972][ T6853] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 68.504312][ T6861] bridge0: port 3(vlan2) entered blocking state [ 68.510678][ T6861] bridge0: port 3(vlan2) entered disabled state [ 68.517980][ T6859] loop4: detected capacity change from 0 to 8192 [ 68.525068][ T6861] vlan2: entered allmulticast mode [ 68.530361][ T6861] gretap0: entered allmulticast mode [ 68.537730][ T6853] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 68.541349][ T6861] vlan2: entered promiscuous mode [ 68.550430][ T6853] ext4 filesystem being mounted at /297/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 68.555294][ T6861] gretap0: entered promiscuous mode [ 68.582437][ T6861] bridge0: port 3(vlan2) entered blocking state [ 68.588850][ T6861] bridge0: port 3(vlan2) entered forwarding state [ 68.595952][ T6853] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.1349: corrupted xattr block 19: overlapping e_value [ 68.610668][ T6853] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=15 [ 68.619960][ T6853] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.1349: corrupted xattr block 19: overlapping e_value [ 68.636940][ T6853] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=15 [ 68.646605][ T6853] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.1349: corrupted xattr block 19: overlapping e_value [ 68.661892][ T6871] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.1349: corrupted xattr block 19: overlapping e_value [ 68.680200][ T6871] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=15 [ 68.693468][ T6868] loop5: detected capacity change from 0 to 512 [ 68.700538][ T6871] EXT4-fs error (device loop0): ext4_xattr_block_find:1869: inode #15: comm syz.0.1349: corrupted xattr block 19: overlapping e_value [ 68.714702][ T6868] EXT4-fs: inline encryption not supported [ 68.724164][ T6868] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 68.739554][ T3320] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.760585][ T6875] loop3: detected capacity change from 0 to 512 [ 68.768094][ T6868] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 68.780870][ T6868] ext4 filesystem being mounted at /238/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 68.813957][ T6875] EXT4-fs (loop3): too many log groups per flexible block group [ 68.821807][ T6875] EXT4-fs (loop3): failed to initialize mballoc (-12) [ 68.847747][ T6875] EXT4-fs (loop3): mount failed [ 69.067130][ T3709] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 69.096895][ T6904] loop4: detected capacity change from 0 to 512 [ 69.105245][ T6904] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 69.125440][ T6904] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 69.148427][ T6904] ext4 filesystem being mounted at /285/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 69.150205][ T6910] loop0: detected capacity change from 0 to 512 [ 69.168832][ T6904] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.1371: corrupted xattr block 19: overlapping e_value [ 69.184853][ T6910] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 69.209675][ T6904] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 69.220632][ T6910] __quota_error: 80 callbacks suppressed [ 69.220648][ T6910] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 69.236650][ T6910] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 69.246049][ T6910] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm +}[@: Failed to acquire dquot type 0 [ 69.259604][ T6904] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.1371: corrupted xattr block 19: overlapping e_value [ 69.273968][ T6910] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 69.288754][ T6904] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 69.290195][ T6910] EXT4-fs (loop0): 1 truncate cleaned up [ 69.297971][ T6904] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.1371: corrupted xattr block 19: overlapping e_value [ 69.316552][ T6910] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 69.331292][ T6914] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.1371: corrupted xattr block 19: overlapping e_value [ 69.350145][ T6914] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 69.363121][ T6914] EXT4-fs error (device loop4): ext4_xattr_block_find:1869: inode #15: comm syz.4.1371: corrupted xattr block 19: overlapping e_value [ 69.363376][ T3320] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.407914][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.552739][ T29] audit: type=1326 audit(1746898908.913:1331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6930 comm="syz.4.1381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d73c5e969 code=0x7ffc0000 [ 69.576359][ T29] audit: type=1326 audit(1746898908.913:1332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6930 comm="syz.4.1381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d73c5e969 code=0x7ffc0000 [ 69.599958][ T29] audit: type=1326 audit(1746898908.913:1333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6930 comm="syz.4.1381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=163 compat=0 ip=0x7f5d73c5e969 code=0x7ffc0000 [ 69.623543][ T29] audit: type=1326 audit(1746898908.913:1334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6930 comm="syz.4.1381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d73c5e969 code=0x7ffc0000 [ 69.646952][ T29] audit: type=1326 audit(1746898908.913:1335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6930 comm="syz.4.1381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d73c5e969 code=0x7ffc0000 [ 69.793743][ T6938] syz.1.1385: attempt to access beyond end of device [ 69.793743][ T6938] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 69.917714][ T6946] loop1: detected capacity change from 0 to 512 [ 69.927025][ T6948] No such timeout policy "syz0" [ 69.937879][ T6950] loop3: detected capacity change from 0 to 512 [ 69.967324][ T6946] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 70.018092][ T6950] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 70.028185][ T6946] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 70.059482][ T6946] ext4 filesystem being mounted at /253/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 70.077501][ T6950] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 70.090315][ T6950] ext4 filesystem being mounted at /268/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 70.106803][ T6950] SELinux: Context system_u:object_r:hwdata_t:s0 is not valid (left unmapped). [ 70.116214][ T6946] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.1386: corrupted xattr block 19: overlapping e_value [ 70.133302][ T29] audit: type=1400 audit(1746898909.473:1336): avc: denied { relabelto } for pid=6949 comm="syz.3.1390" name="/" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:hwdata_t:s0" [ 70.198810][ T6950] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 70.225347][ T6946] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop1 ino=15 [ 70.269962][ T6964] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.1386: corrupted xattr block 19: overlapping e_value [ 70.387467][ T6964] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop1 ino=15 [ 70.396888][ T3329] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.406838][ T6964] EXT4-fs error (device loop1): ext4_xattr_block_find:1869: inode #15: comm syz.1.1386: corrupted xattr block 19: overlapping e_value [ 70.444683][ T29] audit: type=1326 audit(1746898909.803:1337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6973 comm="syz.3.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfd8a9e969 code=0x7ffc0000 [ 70.446854][ T6946] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.1386: corrupted xattr block 19: overlapping e_value [ 70.468127][ T29] audit: type=1326 audit(1746898909.803:1338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6973 comm="syz.3.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcfd8a9e969 code=0x7ffc0000 [ 70.513680][ T6946] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop1 ino=15 [ 70.533263][ T6946] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.1386: corrupted xattr block 19: overlapping e_value [ 70.562219][ T6977] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1401'. [ 70.571297][ T6977] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1401'. [ 70.656647][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.787229][ T7007] loop4: detected capacity change from 0 to 128 [ 70.805081][ T7007] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 70.871557][ T7014] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 71.254081][ T7078] x_tables: ip6_tables: tcpmss match: only valid for protocol 6 [ 71.325130][ T7098] loop4: detected capacity change from 0 to 1024 [ 71.386743][ T7098] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.1434: Failed to acquire dquot type 0 [ 71.422448][ T7098] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 71.438039][ T7098] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.1434: corrupted inode contents [ 71.454200][ T7098] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #13: comm syz.4.1434: mark_inode_dirty error [ 71.455623][ T7126] loop3: detected capacity change from 0 to 128 [ 71.476794][ T7098] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.1434: corrupted inode contents [ 71.502958][ T7126] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 71.523734][ T7126] ext4 filesystem being mounted at /276/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 71.535826][ T7098] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #13: comm syz.4.1434: mark_inode_dirty error [ 71.572591][ T7098] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.1434: corrupted inode contents [ 71.601892][ T7098] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem [ 71.617766][ T7098] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.1434: corrupted inode contents [ 71.635414][ T3329] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 71.640407][ T7098] EXT4-fs error (device loop4): ext4_truncate:4255: inode #13: comm syz.4.1434: mark_inode_dirty error [ 71.645846][ T7134] SELinux: Context system_u:object_r:iptables_initrc_exec_t:s0 is not valid (left unmapped). [ 71.674360][ T7098] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem [ 71.722077][ T7098] EXT4-fs (loop4): 1 truncate cleaned up [ 71.728381][ T7098] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 71.730475][ T7141] 9pnet: p9_errstr2errno: server reported unknown error @cF S [ 71.779350][ T7098] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. [ 71.800437][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.836676][ T7145] pim6reg: entered allmulticast mode [ 71.847414][ T7145] pim6reg: left allmulticast mode [ 71.924625][ T7163] loop5: detected capacity change from 0 to 128 [ 71.936078][ T7163] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 71.982417][ T7056] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 72.084484][ T7177] ALSA: seq fatal error: cannot create timer (-22) [ 72.139101][ T7179] syzkaller1: entered promiscuous mode [ 72.144703][ T7179] syzkaller1: entered allmulticast mode [ 72.237104][ T7188] program syz.5.1467 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 72.518187][ T7209] x_tables: ip6_tables: tcpmss match: only valid for protocol 6 [ 72.699879][ T7224] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1484'. [ 72.941419][ T7243] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1493'. [ 73.013339][ T7249] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1496'. [ 73.033862][ T7251] loop5: detected capacity change from 0 to 512 [ 73.044242][ T7251] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2 [ 73.059996][ T7251] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.1498: invalid indirect mapped block 2683928664 (level 1) [ 73.074259][ T7259] loop3: detected capacity change from 0 to 1024 [ 73.080959][ T7255] loop4: detected capacity change from 0 to 2048 [ 73.084948][ T7259] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.1500: Failed to acquire dquot type 0 [ 73.087652][ T7251] EXT4-fs (loop5): Remounting filesystem read-only [ 73.100993][ T7259] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 73.105808][ T7251] EXT4-fs (loop5): 1 truncate cleaned up [ 73.119895][ T7259] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #13: comm syz.3.1500: corrupted inode contents [ 73.126216][ T7251] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 73.139274][ T7259] EXT4-fs error (device loop3): ext4_dirty_inode:6103: inode #13: comm syz.3.1500: mark_inode_dirty error [ 73.161534][ T7259] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #13: comm syz.3.1500: corrupted inode contents [ 73.175034][ T7255] loop4: p1 < > p4 [ 73.179440][ T7259] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #13: comm syz.3.1500: mark_inode_dirty error [ 73.183328][ T7255] loop4: p4 size 8388608 extends beyond EOD, truncated [ 73.204944][ T7259] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #13: comm syz.3.1500: corrupted inode contents [ 73.216967][ T7259] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem [ 73.233634][ T7259] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #13: comm syz.3.1500: corrupted inode contents [ 73.246747][ T7259] EXT4-fs error (device loop3): ext4_truncate:4255: inode #13: comm syz.3.1500: mark_inode_dirty error [ 73.260438][ T7259] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem [ 73.270093][ T3709] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.279982][ T7259] EXT4-fs (loop3): 1 truncate cleaned up [ 73.286118][ T7259] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 73.310547][ T7265] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1502'. [ 73.323319][ T7259] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. [ 73.324028][ T2969] hid-generic 0000:0004:0000.0001: unknown main item tag 0x0 [ 73.338843][ T2969] hid-generic 0000:0004:0000.0001: unknown main item tag 0x0 [ 73.346320][ T2969] hid-generic 0000:0004:0000.0001: unknown main item tag 0x0 [ 73.355843][ T3329] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.369297][ T2969] hid-generic 0000:0004:0000.0001: hidraw0: HID v0.00 Device [syz0] on syz1 [ 73.437661][ T7281] pim6reg1: entered promiscuous mode [ 73.443123][ T7281] pim6reg1: entered allmulticast mode [ 73.495423][ T7286] loop3: detected capacity change from 0 to 512 [ 73.502608][ T7286] EXT4-fs: inline encryption not supported [ 73.509045][ T7286] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 73.540846][ T7286] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 73.572588][ T7286] ext4 filesystem being mounted at /289/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 73.828073][ T3329] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 74.079027][ T7358] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1537'. [ 74.184715][ T7376] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1545'. [ 74.193730][ T7376] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1545'. [ 74.208000][ T7376] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1545'. [ 74.225205][ T7376] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1545'. [ 74.234228][ T7376] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1545'. [ 74.253809][ T29] kauditd_printk_skb: 217 callbacks suppressed [ 74.253825][ T29] audit: type=1400 audit(1746898913.613:1552): avc: denied { ioctl } for pid=7380 comm="syz.0.1547" path="socket:[15911]" dev="sockfs" ino=15911 ioctlcmd=0x8923 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 74.321395][ T29] audit: type=1400 audit(1746898913.623:1553): avc: denied { sys_module } for pid=7380 comm="syz.0.1547" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 74.346755][ T29] audit: type=1400 audit(1746898913.703:1554): avc: denied { create } for pid=7390 comm="syz.3.1550" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 74.368699][ T29] audit: type=1400 audit(1746898913.733:1555): avc: denied { ioctl } for pid=7390 comm="syz.3.1550" path="socket:[15932]" dev="sockfs" ino=15932 ioctlcmd=0x8907 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 74.393546][ T29] audit: type=1400 audit(1746898913.733:1556): avc: denied { connect } for pid=7390 comm="syz.3.1550" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 74.413166][ T29] audit: type=1400 audit(1746898913.733:1557): avc: denied { write } for pid=7390 comm="syz.3.1550" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 74.432547][ T29] audit: type=1400 audit(1746898913.733:1558): avc: denied { read } for pid=7390 comm="syz.3.1550" path="socket:[15932]" dev="sockfs" ino=15932 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 74.483542][ T7399] loop3: detected capacity change from 0 to 512 [ 74.492105][ T7399] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.1554: invalid indirect mapped block 256 (level 2) [ 74.507285][ T7399] EXT4-fs (loop3): 2 truncates cleaned up [ 74.513519][ T7399] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.545781][ T29] audit: type=1400 audit(1746898913.903:1559): avc: denied { read write } for pid=7398 comm="syz.3.1554" name="file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 74.607616][ T29] audit: type=1400 audit(1746898913.943:1560): avc: denied { open } for pid=7398 comm="syz.3.1554" path="/302/file1/file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 74.630800][ T29] audit: type=1400 audit(1746898913.943:1561): avc: denied { map } for pid=7398 comm="syz.3.1554" path="/302/file1/file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 74.684690][ T7398] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.1554: bg 0: block 5: invalid block bitmap [ 74.719400][ T7399] EXT4-fs warning (device loop3): ext4_block_to_path:107: block 209748184 > max in inode 15 [ 74.752371][ T7399] EXT4-fs warning (device loop3): ext4_block_to_path:107: block 209748188 > max in inode 15 [ 74.762854][ T7399] EXT4-fs warning (device loop3): ext4_block_to_path:107: block 209748192 > max in inode 15 [ 74.773132][ T7399] EXT4-fs warning (device loop3): ext4_block_to_path:107: block 209748196 > max in inode 15 [ 74.783354][ T7399] EXT4-fs warning (device loop3): ext4_block_to_path:107: block 209748200 > max in inode 15 [ 74.806169][ T7413] netlink: 'syz.0.1559': attribute type 16 has an invalid length. [ 74.814161][ T7413] netlink: 'syz.0.1559': attribute type 17 has an invalid length. [ 74.814343][ T7399] EXT4-fs warning (device loop3): ext4_block_to_path:107: block 209748204 > max in inode 15 [ 74.833977][ T7399] EXT4-fs warning (device loop3): ext4_block_to_path:107: block 209748208 > max in inode 15 [ 74.836246][ T7415] loop5: detected capacity change from 0 to 512 [ 74.858806][ T7415] EXT4-fs: inline encryption not supported [ 74.867973][ T7399] EXT4-fs warning (device loop3): ext4_block_to_path:107: block 209748212 > max in inode 15 [ 74.878490][ T7399] EXT4-fs warning (device loop3): ext4_block_to_path:107: block 209748216 > max in inode 15 [ 74.888694][ T7415] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 74.898036][ T7399] EXT4-fs warning (device loop3): ext4_block_to_path:107: block 209748220 > max in inode 15 [ 74.923063][ T7415] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 74.964061][ T7415] ext4 filesystem being mounted at /273/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 75.164639][ T7437] random: crng reseeded on system resumption [ 75.236755][ T3709] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 75.256587][ T7443] loop4: detected capacity change from 0 to 512 [ 75.271408][ T7443] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 75.311821][ T7443] EXT4-fs (loop4): 1 truncate cleaned up [ 75.328148][ T7443] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 75.330924][ T7451] tap0: tun_chr_ioctl cmd 1074025675 [ 75.345506][ T7451] tap0: persist enabled [ 75.365670][ T7451] tap0: tun_chr_ioctl cmd 1074025675 [ 75.371033][ T7451] tap0: persist disabled [ 75.400994][ T7437] loop1: detected capacity change from 0 to 1024 [ 75.532653][ T7437] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.1569: Failed to acquire dquot type 0 [ 75.533186][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.574071][ T7437] EXT4-fs error (device loop1): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 75.607737][ T3329] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.618423][ T7437] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #13: comm syz.1.1569: corrupted inode contents [ 75.644257][ T7437] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #13: comm syz.1.1569: mark_inode_dirty error [ 75.656148][ T7437] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #13: comm syz.1.1569: corrupted inode contents [ 75.684798][ T7468] netlink: 'syz.3.1580': attribute type 4 has an invalid length. [ 75.696150][ T7470] netlink: 'syz.5.1584': attribute type 13 has an invalid length. [ 75.704841][ T7437] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #13: comm syz.1.1569: mark_inode_dirty error [ 75.718234][ T7437] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #13: comm syz.1.1569: corrupted inode contents [ 75.741080][ T7437] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem [ 75.760768][ T7481] unsupported nlmsg_type 40 [ 75.760911][ T7437] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #13: comm syz.1.1569: corrupted inode contents [ 75.800468][ T7470] net_ratelimit: 289 callbacks suppressed [ 75.800513][ T7470] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 75.835150][ T7437] EXT4-fs error (device loop1): ext4_truncate:4255: inode #13: comm syz.1.1569: mark_inode_dirty error [ 75.847648][ T7437] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem [ 75.858829][ T7437] EXT4-fs (loop1): 1 truncate cleaned up [ 75.866236][ T7437] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 75.888743][ T7490] SELinux: syz.0.1593 (7490) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 75.917435][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.014105][ T7510] loop4: detected capacity change from 0 to 512 [ 76.039682][ T7510] EXT4-fs: inline encryption not supported [ 76.053897][ T7510] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 76.082938][ T7510] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 76.099453][ T7510] ext4 filesystem being mounted at /346/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 76.130793][ T7526] SELinux: syz.5.1609 (7526) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 76.213339][ T7538] loop5: detected capacity change from 0 to 128 [ 76.224555][ T7538] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 76.237386][ T7538] ext4 filesystem being mounted at /289/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 76.265667][ T3709] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 76.365184][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 76.423499][ T7566] loop1: detected capacity change from 0 to 512 [ 76.426169][ T7567] kernel profiling enabled (shift: 0) [ 76.438503][ T7566] EXT4-fs: Ignoring removed mblk_io_submit option [ 76.446344][ T7566] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 76.469134][ T7566] EXT4-fs (loop1): 1 truncate cleaned up [ 76.475375][ T7566] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 76.637986][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.694728][ T7596] loop1: detected capacity change from 0 to 512 [ 76.701652][ T7596] EXT4-fs: inline encryption not supported [ 76.705301][ T7598] SELinux: syz.5.1636 (7598) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 76.723769][ T7596] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 76.756080][ T7596] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 76.774705][ T7596] ext4 filesystem being mounted at /297/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 76.967867][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 77.054303][ T7637] netlink: 'syz.0.1652': attribute type 4 has an invalid length. [ 77.068671][ T7639] loop1: detected capacity change from 0 to 1024 [ 77.077214][ T7639] EXT4-fs: Ignoring removed nobh option [ 77.082951][ T7639] EXT4-fs: Ignoring removed bh option [ 77.119345][ T7639] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 77.159837][ T7639] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.1653: Allocating blocks 385-513 which overlap fs metadata [ 77.177666][ T7639] EXT4-fs (loop1): pa ffff8881069f92a0: logic 16, phys. 129, len 24 [ 77.185937][ T7639] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 8 [ 77.206018][ T7658] loop5: detected capacity change from 0 to 2048 [ 77.213500][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.246045][ T36] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 77.254109][ T36] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 77.264684][ T7665] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 77.273352][ T7665] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 77.277629][ T7667] loop1: detected capacity change from 0 to 1024 [ 77.292926][ T7658] loop5: unable to read partition table [ 77.298630][ T7658] loop5: partition table beyond EOD, truncated [ 77.304868][ T7658] loop_reread_partitions: partition scan of loop5 () failed (rc=-5) [ 77.305980][ T7667] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 77.385243][ T7673] random: crng reseeded on system resumption [ 77.538319][ T7678] SELinux: syz.3.1669 (7678) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 77.552143][ T7673] loop5: detected capacity change from 0 to 1024 [ 77.566779][ T7673] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.1667: Failed to acquire dquot type 0 [ 77.578820][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.582335][ T7673] EXT4-fs error (device loop5): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 77.603742][ T7673] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #13: comm syz.5.1667: corrupted inode contents [ 77.616534][ T7673] EXT4-fs error (device loop5): ext4_dirty_inode:6103: inode #13: comm syz.5.1667: mark_inode_dirty error [ 77.617665][ T7681] SELinux: policydb table sizes (4376,4) do not match mine (6,7) [ 77.635800][ T7673] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #13: comm syz.5.1667: corrupted inode contents [ 77.635960][ T7681] SELinux: failed to load policy [ 77.650324][ T7673] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #13: comm syz.5.1667: mark_inode_dirty error [ 77.672600][ T7673] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #13: comm syz.5.1667: corrupted inode contents [ 77.690469][ T7673] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem [ 77.700897][ T7673] EXT4-fs error (device loop5): ext4_do_update_inode:5211: inode #13: comm syz.5.1667: corrupted inode contents [ 77.713011][ T7673] EXT4-fs error (device loop5): ext4_truncate:4255: inode #13: comm syz.5.1667: mark_inode_dirty error [ 77.725811][ T7673] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem [ 77.735331][ T7673] EXT4-fs (loop5): 1 truncate cleaned up [ 77.755181][ T7673] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 77.776007][ T7691] ip6gretap1: entered allmulticast mode [ 77.813674][ T3709] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.837285][ T7697] loop3: detected capacity change from 0 to 512 [ 77.847595][ T7697] EXT4-fs (loop3): orphan cleanup on readonly fs [ 77.863398][ T7697] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1679: bg 0: block 248: padding at end of block bitmap is not set [ 77.890405][ T7697] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.1679: Failed to acquire dquot type 1 [ 77.923557][ T7697] EXT4-fs (loop3): 1 truncate cleaned up [ 77.930120][ T7697] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 77.953584][ T7697] syz.3.1679 (7697) used greatest stack depth: 9360 bytes left [ 77.961638][ T3329] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.998029][ T7718] __nla_validate_parse: 11 callbacks suppressed [ 77.998048][ T7718] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1688'. [ 78.032231][ T7724] random: crng reseeded on system resumption [ 78.167714][ T7724] loop0: detected capacity change from 0 to 1024 [ 78.188857][ T7724] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.1689: Failed to acquire dquot type 0 [ 78.202035][ T7724] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 78.216808][ T7724] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #13: comm syz.0.1689: corrupted inode contents [ 78.230098][ T7724] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #13: comm syz.0.1689: mark_inode_dirty error [ 78.241836][ T7724] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #13: comm syz.0.1689: corrupted inode contents [ 78.254742][ T7724] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #13: comm syz.0.1689: mark_inode_dirty error [ 78.266502][ T7724] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #13: comm syz.0.1689: corrupted inode contents [ 78.278529][ T7724] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem [ 78.288345][ T7724] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #13: comm syz.0.1689: corrupted inode contents [ 78.302514][ T7724] EXT4-fs error (device loop0): ext4_truncate:4255: inode #13: comm syz.0.1689: mark_inode_dirty error [ 78.319225][ T7724] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem [ 78.334793][ T7724] EXT4-fs (loop0): 1 truncate cleaned up [ 78.346998][ T7724] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 78.381637][ T3320] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.494005][ T7773] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 78.505152][ T7773] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 78.511172][ T7771] bridge0: port 3(vlan2) entered disabled state [ 78.548660][ T7771] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.555999][ T7771] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.610629][ T7771] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 78.625856][ T7771] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 78.664064][ T7771] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 78.672759][ T7771] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 78.681293][ T7771] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 78.689816][ T7771] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 79.094849][ T7812] loop1: detected capacity change from 0 to 512 [ 79.112232][ T7812] EXT4-fs (loop1): 1 orphan inode deleted [ 79.118320][ T7812] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 79.130875][ C1] vxcan0: j1939_tp_rxtimer: 0xffff8881187abc00: rx timeout, send abort [ 79.131972][ T7012] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:8: Failed to release dquot type 1 [ 79.139235][ C1] vxcan0: j1939_xtp_rx_abort_one: 0xffff8881187abc00: 0x40000: (3) A timeout occurred and this is the connection abort to close the session. [ 79.165479][ T7812] ext4 filesystem being mounted at /320/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 79.230842][ T7820] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1736'. [ 79.254159][ T3316] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 79.286180][ T29] kauditd_printk_skb: 130 callbacks suppressed [ 79.286197][ T29] audit: type=1400 audit(1746898918.643:1683): avc: denied { execute } for pid=7830 comm="syz.1.1729" dev="tmpfs" ino=1117 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 79.354813][ T29] audit: type=1400 audit(1746898918.673:1684): avc: denied { execute_no_trans } for pid=7830 comm="syz.1.1729" path=2F6D656D66643A5B0BDB4FAE5B1AA9FDFAADD16D64C8854858A9250C1A65E0202864656C6574656429 dev="tmpfs" ino=1117 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 79.426590][ T7853] loop1: detected capacity change from 0 to 512 [ 79.441003][ T7853] EXT4-fs (loop1): too many log groups per flexible block group [ 79.448756][ T7853] EXT4-fs (loop1): failed to initialize mballoc (-12) [ 79.456413][ T7853] EXT4-fs (loop1): mount failed [ 79.465150][ T29] audit: type=1400 audit(1746898918.823:1685): avc: denied { read } for pid=7852 comm="syz.1.1742" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 79.488576][ T29] audit: type=1400 audit(1746898918.823:1686): avc: denied { open } for pid=7852 comm="syz.1.1742" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 79.535504][ T29] audit: type=1400 audit(1746898918.893:1687): avc: denied { ioctl } for pid=7852 comm="syz.1.1742" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x937e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 79.592015][ T29] audit: type=1326 audit(1746898918.953:1688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7863 comm="syz.5.1746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4f933e969 code=0x7ffc0000 [ 79.616080][ T29] audit: type=1326 audit(1746898918.953:1689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7863 comm="syz.5.1746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4f933e969 code=0x7ffc0000 [ 79.644364][ T29] audit: type=1326 audit(1746898918.953:1690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7863 comm="syz.5.1746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7fb4f933e969 code=0x7ffc0000 [ 79.667885][ T29] audit: type=1326 audit(1746898918.953:1691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7863 comm="syz.5.1746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4f933e969 code=0x7ffc0000 [ 79.691401][ T29] audit: type=1326 audit(1746898918.973:1692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7863 comm="syz.5.1746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb4f933e969 code=0x7ffc0000 [ 79.771821][ T7881] netlink: 176 bytes leftover after parsing attributes in process `syz.1.1753'. [ 79.792426][ T7883] IPv6: Can't replace route, no match found [ 79.954109][ T7911] netlink: 'syz.5.1767': attribute type 3 has an invalid length. [ 80.150519][ T7944] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 80.200849][ T7952] loop3: detected capacity change from 0 to 1024 [ 80.215045][ T7952] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 80.228325][ T7954] netlink: 'syz.5.1788': attribute type 1 has an invalid length. [ 80.257640][ T7957] xt_CT: You must specify a L4 protocol and not use inversions on it [ 80.270204][ T3329] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.282116][ T7962] loop0: detected capacity change from 0 to 512 [ 80.292341][ T7962] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 80.314192][ T7962] EXT4-fs (loop0): external journal device major/minor numbers have changed [ 80.323002][ T7962] EXT4-fs (loop0): filesystem has both journal inode and journal device! [ 80.357335][ T7962] loop0: detected capacity change from 0 to 256 [ 80.390648][ T7962] FAT-fs (loop0): codepage cp857 not found [ 80.406540][ T7979] loop3: detected capacity change from 0 to 512 [ 80.420511][ T7979] ext4: Bad value for 'sb' [ 80.427309][ T7983] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7983 comm=syz.5.1800 [ 80.469925][ T7989] netlink: 'syz.5.1803': attribute type 1 has an invalid length. [ 80.664668][ T8027] loop3: detected capacity change from 0 to 512 [ 80.680182][ T8030] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1822'. [ 80.689394][ T8030] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1822'. [ 80.700535][ T8027] EXT4-fs error (device loop3): __ext4_fill_super:5502: inode #2: comm syz.3.1819: iget: special inode unallocated [ 80.714663][ T8027] EXT4-fs (loop3): get root inode failed [ 80.720498][ T8027] EXT4-fs (loop3): mount failed [ 80.727989][ T8035] random: crng reseeded on system resumption [ 80.792335][ T8041] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1825'. [ 80.804891][ T8037] loop5: detected capacity change from 0 to 8192 [ 80.812081][ T8041] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1825'. [ 80.821738][ T8043] loop3: detected capacity change from 0 to 1024 [ 80.846683][ T8043] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 80.861703][ T8043] ext4 filesystem being mounted at /364/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 80.896833][ T8035] loop4: detected capacity change from 0 to 1024 [ 80.909493][ T8035] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.1823: Failed to acquire dquot type 0 [ 80.930585][ T8035] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 80.948742][ T8035] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.1823: corrupted inode contents [ 80.963512][ T8035] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #13: comm syz.4.1823: mark_inode_dirty error [ 80.975581][ T3329] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.984690][ T8035] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.1823: corrupted inode contents [ 81.002797][ T8035] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #13: comm syz.4.1823: mark_inode_dirty error [ 81.007592][ T8061] loop0: detected capacity change from 0 to 512 [ 81.027248][ T8037] ================================================================== [ 81.035364][ T8037] BUG: KCSAN: data-race in fat16_ent_put / fat_mirror_bhs [ 81.042522][ T8037] [ 81.044856][ T8037] write to 0xffff888122c81a24 of 2 bytes by task 8053 on cpu 0: [ 81.045944][ T8056] batadv1: entered promiscuous mode [ 81.052476][ T8037] fat16_ent_put+0x28/0x60 [ 81.052514][ T8037] fat_ent_write+0x69/0xe0 [ 81.066593][ T8037] fat_chain_add+0x15b/0x3f0 [ 81.071197][ T8037] fat_get_block+0x46c/0x5e0 [ 81.075810][ T8037] __block_write_begin_int+0x419/0xf70 [ 81.081279][ T8037] cont_write_begin+0x5a3/0x8e0 [ 81.086145][ T8037] fat_write_begin+0x4f/0xe0 [ 81.090742][ T8037] generic_perform_write+0x181/0x490 [ 81.096046][ T8037] __generic_file_write_iter+0xec/0x120 [ 81.101615][ T8037] generic_file_write_iter+0x8d/0x2f0 [ 81.107008][ T8037] do_iter_readv_writev+0x41e/0x4c0 [ 81.112226][ T8037] vfs_writev+0x2c9/0x870 [ 81.116576][ T8037] do_writev+0xe7/0x210 [ 81.120789][ T8037] __x64_sys_writev+0x45/0x50 [ 81.125496][ T8037] x64_sys_call+0x2006/0x2fb0 [ 81.130184][ T8037] do_syscall_64+0xd0/0x1a0 [ 81.134701][ T8037] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 81.140602][ T8037] [ 81.142929][ T8037] read to 0xffff888122c81a00 of 512 bytes by task 8037 on cpu 1: [ 81.150648][ T8037] fat_mirror_bhs+0x1df/0x320 [ 81.155427][ T8037] fat_ent_write+0xd0/0xe0 [ 81.159856][ T8037] fat_chain_add+0x15b/0x3f0 [ 81.164452][ T8037] fat_get_block+0x46c/0x5e0 [ 81.169058][ T8037] __block_write_begin_int+0x419/0xf70 [ 81.174530][ T8037] cont_write_begin+0x5a3/0x8e0 [ 81.179390][ T8037] fat_write_begin+0x4f/0xe0 [ 81.183985][ T8037] cont_write_begin+0x198/0x8e0 [ 81.188846][ T8037] fat_write_begin+0x4f/0xe0 [ 81.193440][ T8037] generic_cont_expand_simple+0xad/0x150 [ 81.199085][ T8037] fat_cont_expand+0x3e/0x170 [ 81.203776][ T8037] fat_fallocate+0x177/0x1c0 [ 81.208394][ T8037] vfs_fallocate+0x410/0x450 [ 81.213002][ T8037] __x64_sys_fallocate+0x7a/0xd0 [ 81.217957][ T8037] x64_sys_call+0x2b88/0x2fb0 [ 81.222643][ T8037] do_syscall_64+0xd0/0x1a0 [ 81.227155][ T8037] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 81.233061][ T8037] [ 81.235406][ T8037] Reported by Kernel Concurrency Sanitizer on: [ 81.241594][ T8037] CPU: 1 UID: 0 PID: 8037 Comm: syz.5.1826 Not tainted 6.15.0-rc5-syzkaller-00275-gbec6f00f120e #0 PREEMPT(voluntary) [ 81.254014][ T8037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 81.264076][ T8037] ================================================================== [ 81.274647][ T8035] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.1823: corrupted inode contents [ 81.288835][ T8061] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 81.297935][ T8061] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 81.307713][ T8035] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem [ 81.327139][ T8035] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.1823: corrupted inode contents [ 81.340890][ T8061] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended [ 81.354434][ T8061] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 81.362714][ T8035] EXT4-fs error (device loop4): ext4_truncate:4255: inode #13: comm syz.4.1823: mark_inode_dirty error [ 81.367145][ T8061] System zones: 0-2, 18-18, 34-34 [ 81.384290][ T8061] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 81.389416][ T8035] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem [ 81.414116][ T8061] EXT4-fs (loop0): 1 truncate cleaned up [ 81.417346][ T8035] EXT4-fs (loop4): 1 truncate cleaned up [ 81.420909][ T8061] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.