last executing test programs: 1m32.35475541s ago: executing program 3 (id=3958): r0 = socket$kcm(0xa, 0x922000000003, 0x11) sendmsg$kcm(r0, &(0x7f0000000000)={&(0x7f00000002c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80, 0x0}, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x541b, 0x0) 1m32.309341555s ago: executing program 3 (id=3962): r0 = socket$kcm(0x2, 0x3, 0x84) sendmsg$inet(r0, &(0x7f0000000700)={&(0x7f0000000140)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x28}}, 0x10, 0x0}, 0x4000) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x541b, &(0x7f0000000040)) 1m32.261174771s ago: executing program 3 (id=3966): r0 = socket(0x2, 0x5, 0x0) sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{&(0x7f0000002e40)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x0) sendmmsg$inet_sctp(r0, &(0x7f0000000bc0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c00000000"], 0x30}], 0x1, 0x0) 1m32.168755782s ago: executing program 3 (id=3974): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={0xffffffffffffffff}) r1 = getpid() sendmmsg$unix(r0, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000000)=@abs={0x1}, 0x3, 0x0, 0x0, &(0x7f0000000400)=[@cred={{0x1c, 0x1, 0x2, {r1}}}, @rights={{0x14, 0x1, 0x1, [r0]}}], 0x38}}], 0x2, 0x0) 1m32.094228791s ago: executing program 3 (id=3980): r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x10) mknod$loop(&(0x7f0000000080)='./file0\x00', 0x10, 0x0) 1m32.081627872s ago: executing program 3 (id=3981): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80a, &(0x7f0000000000)={[{@grpquota}, {@lazytime}, {@data_err_abort}, {@errors_remount}]}, 0x1, 0x79b, &(0x7f0000000a40)="$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") openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x1de) 1m31.953096527s ago: executing program 2 (id=3988): mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000, 0x3, &(0x7f0000011000/0x2000)=nil) mmap(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xc, 0x2031, 0xffffffffffffffff, 0x14dfd000) mremap(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x2000, 0x0, &(0x7f0000ffe000/0x2000)=nil) 1m31.937274269s ago: executing program 2 (id=3989): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="60000000020601010000000000000000000000001c0007800500140007000400080012400005000008000840000000000900020073797a300000002005000100070000000c000300686173683a697000050005000a000000050004"], 0x60}}, 0x0) sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="7c0000000306010100000000000000000700000a0900020073797a3100000000050001000700000005000100070000000900020073797a30"], 0x7c}, 0x1, 0x0, 0x0, 0x40000}, 0x40000) 1m31.859588148s ago: executing program 2 (id=3991): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={0xffffffffffffffff}) r1 = getpid() sendmmsg$unix(r0, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000000)=@abs={0x1}, 0x3, 0x0, 0x0, &(0x7f0000000400)=[@cred={{0x1c, 0x1, 0x2, {r1}}}, @rights={{0x14, 0x1, 0x1, [r0]}}], 0x38}}], 0x2, 0x0) 1m31.814040464s ago: executing program 2 (id=3996): r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000100)) ioctl$PPPIOCSACTIVE(r0, 0x40107446, &(0x7f0000000080)={0x2032, &(0x7f0000000140)}) 1m31.646581143s ago: executing program 2 (id=4006): r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x10) mknod$loop(&(0x7f0000000080)='./file0\x00', 0x10, 0x0) 1m31.600526468s ago: executing program 2 (id=4009): r0 = io_uring_setup(0x6ddb, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xffffffff}) io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0xd, &(0x7f0000000140)={0x7, 0x0, 0x0, 0x0}, 0x20) io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0xe, &(0x7f0000000080)={0x7fffffff, 0x0, &(0x7f0000003480)=[{0x0}], 0x0, 0x1}, 0x20) 1m16.845717387s ago: executing program 32 (id=3981): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80a, &(0x7f0000000000)={[{@grpquota}, {@lazytime}, {@data_err_abort}, {@errors_remount}]}, 0x1, 0x79b, &(0x7f0000000a40)="$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") openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x1de) 1m16.345672144s ago: executing program 33 (id=4009): r0 = io_uring_setup(0x6ddb, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xffffffff}) io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0xd, &(0x7f0000000140)={0x7, 0x0, 0x0, 0x0}, 0x20) io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0xe, &(0x7f0000000080)={0x7fffffff, 0x0, &(0x7f0000003480)=[{0x0}], 0x0, 0x1}, 0x20) 44.075414309s ago: executing program 4 (id=6134): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @fixed, 0x0, 0x1}, 0xe) bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none}, 0xe) 44.056816061s ago: executing program 4 (id=6135): r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0)) ioctl$PPPIOCGNPMODE(r0, 0xc008744c, &(0x7f0000000080)={0x281}) 43.987524809s ago: executing program 4 (id=6138): r0 = socket$inet6(0xa, 0x6, 0x0) listen(r0, 0x101) listen(r0, 0xeb) 43.959597353s ago: executing program 4 (id=6141): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000a40)={[{@stripe={'stripe', 0x3d, 0x3}}, {@noauto_da_alloc}, {@jqfmt_vfsold}, {@data_err_ignore}, {@noauto_da_alloc}, {@delalloc}, {@resuid}, {@oldalloc}, {@jqfmt_vfsv1}]}, 0xfc, 0x550, &(0x7f0000000b00)="$eJzs3d9rW1UcAPDvTdv91nUwhvoghT04mUvX1h8TfJiPosOBvs/Q3pXRZBlNOtY6cHtwL77IEEQciH+A7z4O/wH/ioEOhoyiD75EbnrTZWvSZm22Zubzgduec89Nzz0593t6bk5CAhhaE9mPQsSrEfFtEnG4rWw08sKJteNWH16fzbYkGo3P/koiyfe1jk/y3wfzzCsR8dvXEScLG+utLa8slMrldDHPT9YrVyZryyunLlVK8+l8enl6ZubMOzPT77/3bt/a+ub5f3749O5HZ745vvr9L/eP3E7ibBzKy9rbsQM32jMTMZE/J2Nx9okDp/pQ2SBJdvsE2JaRPM7HIhsDDsdIHvXA/99XEdEAhlQi/mFIteYBrXv7Pt0HvzAefLh2A7Sx/aNrr43Evua90YHV5LE7o+x+d7wP9Wd1/PrnndvZFv17HQJgSzduRsTp0dGN41+Sj3/bd7qHY56sw/gHz8/dbP7zVqf5T2F9/hMd5j8HO8Tudmwd/4X7faimq2z+90HH+e/6otX4SJ57qTnnG0suXiqn2dj2ckSciLG9WX6z9Zwzq/ca3cra53/ZltXfmgvm53F/dO/jj5kr1Us7aXO7BzcjXus4/03W+z/p0P/Z83G+xzqOpXde71a2dfufrcbPEW907P9HK1rJ5uuTk83rYbJ1VWz0961jv3erf7fbn/X/gc3bP560r9fWnr6On/b9m3Yr2+71vyf5vJnek++7VqrXF6ci9iSfbNw//eixrXzr+Kz9J45vPv51uv73R8QXPbb/1tFbXQ8dhP6fe6r+f/rEvY+//LFb/b31/9vN1Il8Ty/jX68nuJPnDgAAAAAAAAZNISIORVIorqcLhWJx7f0dR+NAoVyt1U9erC5dnovmZ2XHY6zQWuk+3PZ+iKn8/bCt/PQT+ZmIOBIR343sb+aLs9Xy3G43HgAAAAAAAAAAAAAAAAAAAAbEwYh9nT7/n/ljZLfPDnjmfOU3DK/u8Z+X9OObnoCB5P8/DC/xD8NL/MPwEv8wvMQ/DC/xD8NL/MPwEv8AAAAAAAAAAAAAAAAAAAAAAAAAAADQV+fPncu2xurD67NZfu7q8tJC9eqpubS2UKwszRZnq4tXivPV6nw5Lc5WK1v9vXK1emVqOpauTdbTWn2ytrxyoVJduly/cKlSmk8vpGPPpVUAAAAAAAAAAAAAAAAAAADwYqktryyUyuV0UUJiW4nRwTgNiT4ndntkAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBH/gsAAP//sQI4ww==") r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) ioctl$FS_IOC_RESVSP(r0, 0x40305839, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x3fffffff404}) 43.830980097s ago: executing program 4 (id=6151): r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x10) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x26e1, 0x0) 43.71984036s ago: executing program 4 (id=6161): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x2, 0x4, 0x1, 0xbf22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xd, 0x6b, 0x4, 0x5, 0x0, r0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000180)={r1, &(0x7f0000000080), 0x0}, 0x20) 28.692341759s ago: executing program 34 (id=6161): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x2, 0x4, 0x1, 0xbf22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xd, 0x6b, 0x4, 0x5, 0x0, r0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000180)={r1, &(0x7f0000000080), 0x0}, 0x20) 17.97367527s ago: executing program 1 (id=7312): r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000140)={0xa, 0xe22, 0x0, @loopback={0xff00000000000000}}, 0x1c) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @mcast1, 0x5}, 0x1c) syz_emit_ethernet(0x3e, &(0x7f0000000200)={@link_local={0x1, 0x80, 0xc2, 0x3}, @dev, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x8, 0x11, 0x0, @private2, @mcast2, {[], {0x0, 0xe22, 0x8}}}}}}, 0x0) 17.915044487s ago: executing program 1 (id=7315): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="3800000028000100000000000000000007000000", @ANYRES32=r2, @ANYRESHEX=0x0], 0x38}}, 0x0) 17.889896439s ago: executing program 1 (id=7318): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00') rmdir(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00') 17.847665544s ago: executing program 1 (id=7321): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x13, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x73, 0x11, 0x43}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x76}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) 17.7984335s ago: executing program 1 (id=7324): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) rmdir(&(0x7f0000000740)='./file0\x00') 17.770731143s ago: executing program 1 (id=7328): creat(&(0x7f0000000040)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r2 = dup(r1) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f0000000780)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',noextend,afid=0xffffffffffffffff,dfltuid=', @ANYRESHEX]) 2.744957392s ago: executing program 35 (id=7328): creat(&(0x7f0000000040)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r2 = dup(r1) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f0000000780)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',noextend,afid=0xffffffffffffffff,dfltuid=', @ANYRESHEX]) 780.186269ms ago: executing program 6 (id=7938): setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f00000000c0)={@in={{0x2, 0x0, @multicast2}}, 0x0, 0x0, 0x2, 0x0, "b55451c1f0cce50acb39d228852b24df08870ad327bc269adfa73aa1a6fad05c64de5cafc23267b473240df4180f99aad9d18f451fb0d3f5f5f2645eaaea5209c268fc79472b2110fbc012a419aa8625"}, 0xd8) r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000140)={0x15, 0x110, 0xfa00, {r1, 0x0, 0x30, 0x30, 0x0, @in6={0x1b, 0x0, 0x0, @empty}, @ib={0x1b, 0x0, 0x0, {"0e000000000000000000000004000001"}}}}, 0x118) 732.021225ms ago: executing program 5 (id=7950): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./bus\x00', 0x20081e, &(0x7f00000020c0), 0x1, 0x4ef, &(0x7f0000000a00)="$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") close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0) fdatasync(r0) 731.688255ms ago: executing program 6 (id=7942): perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x35, 0x1, 0x0, 0x0, 0x0, 0x100000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xf, 0xb85e}, 0x0, 0x0, 0x4, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$rds(0x15, 0x5, 0x0) bind$rds(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10) sendmsg$rds(r0, &(0x7f0000000080)={&(0x7f0000000040)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000380)=[@cswp={0x58, 0x114, 0x7, {{0x0, 0x1000}, &(0x7f0000000180)=0xd, 0x0, 0x7, 0x7fffffffffffffff, 0x3, 0x8000, 0x4e, 0x9}}], 0x58, 0x800}, 0x0) 615.035259ms ago: executing program 6 (id=7945): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000040000000030a01020000000000000000010000000900030073797a320000000014000480080002400000000008000140000000050900010073797a31000000004c000000050a01020000100000000000010020000c00024000000000000000010900010073797a310000000020000480140003006e657464657673696d300000000000000800014000000005"], 0xd4}}, 0x0) 614.748548ms ago: executing program 5 (id=7946): socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r0, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000940)=[{&(0x7f00000005c0)=""/151, 0x97}], 0x1, &(0x7f0000002f40)=""/229, 0xe5}, 0x0) sendmsg$tipc(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)="af07e145e8cc1a5e6f0e4f7d6001fff467348c43df2e59fef37fc84fd6c84e0880f5e64192f2ffdfe2d6a2703df6befdda1729e426b858d458759e2cdd94d9effc40e0a0936416a449ab48010ad740ba31f26fc123fda027271dcc1144fbd78b863d3a870d37defc7a969cb93e6868e470d70acf9ca3ff5717c84ee402ef94651e29468d63c1fe62d6b54ed7eb2de108385928598e3de424657e", 0x9a}], 0x1, 0x0, 0x0, 0x2000c800}, 0x4000000) close(r1) 485.391073ms ago: executing program 6 (id=7949): r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3804402, &(0x7f0000000600)={[{@user_xattr}, {@data_err_abort}, {@resuid}, {@errors_remount}, {@norecovery}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@stripe={'stripe', 0x3d, 0x5}}, {@noinit_itable}, {@nomblk_io_submit}, {@grpquota}, {@nogrpid}]}, 0x1, 0x54f, &(0x7f0000001080)="$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") r1 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x80044940, &(0x7f00000030c0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0x1a4203c, &(0x7f00000003c0)=ANY=[@ANYRES64=r2, @ANYRES8, @ANYRESHEX=r3, @ANYRESDEC, @ANYRES32=r0, @ANYRESDEC=r2, @ANYRESDEC=r5, @ANYRES8=0x0, @ANYRES8, @ANYRES64=r4], 0x0, 0x0, &(0x7f0000000000)) 360.292618ms ago: executing program 7 (id=7953): syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000a80)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000a00)={[{@i_version}, {@barrier}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x22}}, {@noinit_itable}, {@errors_remount}, {@auto_da_alloc}]}, 0x2, 0x500, &(0x7f0000000500)="$eJzs3U9sI1cZAPBvJn/sTdMmhR4AFbqUwoJWayfeNqp6oZwqhCoheuSwDYkTRbHjKHZKE/aQPXJHohInOHHmgMQBqSfuSBzgxqUckAqsQA0SByOP7V3njzfWbmzvxr+fNJo38+L53tvRvGd91s4LYGJdj4ijiJiNiPcjYqFzPuls8XZ7a/3dZ/fvrh3fv7uWRLP53j+TrL51Lno+0/Jc55r5iPjBOxE/Sk4F/VNE/eBwe7VSKe91ThUb1d1i/eDw1lZ1dbO8Wd4plVaWV5bevP1G6dL6+kr1N59ei4jf/+7Ln/zx6Fs/aTVrvlPX24/L1O76zIM4LdMR8b1hBBuDqU5/Zh/nw4/1IS5TGhGfi4hXs+d/Iaayu3nSydv07RG2DgAYhmZzIZoLvccAwFWXZjmwJC10cgHzkaaFQjuH91LMpZVavXFzo7a/s97OlS3GTLqxVSkvdXKFizGTbGxNl5ezcve4Ui6dOr4dES9GxM9y17Ljwlqtsj7OLz4AMMGeOzX//yfXnv8BgCsu/7CYG2c7AIDRyY+7AQDAyJn/AWDymP8BYPKY/wFg8pj/AWDymP8BYKJ8/913W1vzuPP+6/UPDva3ax/cWi/XtwvV/bXCWm1vt7BZq21m7+ypXnS9Sq22u/x67H9YbJTrjWL94PBOtba/07iTvdf7TnlmJL0CAB7lxVc+/ksSEUdvXcu26Hnf/4Vz9cvDbh0wTOm4GwCMzdS4GwCMzdnVvoBJIR8P9CzRe6/ndP5M4bSPBrp8at1QePrc+OIT5P+BZ5r8P0yux8v/+y4PV4H8P0yuZjOx5j8ATBg5fiC5oL739/+lZs/BYL//AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwJU0n21JWuisBT4faVooRDwfEYsxk2xsVcpLEfFCRPw5N5NrHS9HhHWDAOBZlv496az/dWPhtfnTtbO5/+ayfUT8+Bfv/fzD1UZjbzliNvnXg/ONjzrnS+NoPwBwke483Z3Huz67f3etu42yPZ9+p724aCvucWdr10zHdLbPZ7mGuX8nneO21veVqUuIf3QvIr5wXv+TLDey2Fn59HT8VuznRxo/PRE/zera+9a/xecvoS0waT5ujT9vn/f8pXE925///OezEerJdce/4zPjX/pg/JvqM/5dHzTG63/47pmTzYV23b2IL01HHHcv3jP+dOMnfeK/NmD8v778lVf71TV/GXEjzut/ciJWsVHdLdYPDm9tVVc3y5vlnVJpZXll6c3bb5SKWY662M1Un/WPt26+0C9+q/9zfeLnL+j/1wfs/6/+9/4Pv/qI+N/82vn3/6VHxG/Nid8YMP7q3G/z/epa8df79P+i+39zwPif/O1wfcA/BQBGoH5wuL1aqZT3hl1Ihx8iKyQRRyPoTruQ+/VP3xlVrCEW4ulohsLTVBj3yAQM28OHftwtAQAAAAAAAAAAAAAA+hnFfycadx8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4uv4fAAD//5iA1Hs=") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f00000004c0), 0x208e24b) cachestat(r0, &(0x7f0000000040), &(0x7f0000000080), 0x0) 359.923358ms ago: executing program 5 (id=7954): r0 = socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newlink={0x58, 0x10, 0x409, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, 0x200, 0x1}, [@IFLA_LINKINFO={0x38, 0x12, 0x0, 0x1, @bridge_slave={{0x11}, {0x20, 0x5, 0x0, 0x1, [@IFLA_BRPORT_FLUSH={0x4}, @IFLA_BRPORT_MCAST_FLOOD={0x5}, @IFLA_BRPORT_STATE={0x5, 0x1, 0x3}, @IFLA_BRPORT_GROUP_FWD_MASK={0x6, 0x1f, 0x9}]}}}]}, 0x58}}, 0x2) 274.197088ms ago: executing program 8 (id=7871): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @empty}, 0x1c) sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000840)={0x0, 0x3, 0x10}, &(0x7f0000000880)=0xc) 260.773009ms ago: executing program 0 (id=7955): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r0, 0x84, 0x2, &(0x7f0000000280)="1a3667feee000000", 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendto$inet6(r0, &(0x7f0000000500)="a4", 0xffe0, 0x4c, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) 241.957092ms ago: executing program 5 (id=7956): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x290, 0x0, 0x2b8, 0xb0000010, 0x2, 0x5c8f0200, 0x388, 0x3a8, 0x3a8, 0x388, 0x3a8, 0x3, 0x0, {[{{@ipv6={@private1, @local, [], [], 'vlan1\x00', 'veth0_to_team\x00'}, 0x0, 0xa8, 0xf0, 0x700}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x0, 'syz1\x00'}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@CONNSECMARK={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x2f0) 227.675913ms ago: executing program 0 (id=7957): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) setsockopt$inet6_opts(r0, 0x29, 0x39, &(0x7f0000000100)=@dstopts={0x1d}, 0x8) 204.993026ms ago: executing program 7 (id=7958): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000054850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000740)=ANY=[@ANYBLOB="540100001a001307000000000000001cac141400"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffffff0000000000000000000000000000000032000000ac141417000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c001c"], 0x154}}, 0x0) 204.478896ms ago: executing program 6 (id=7959): r0 = socket$nl_rdma(0x10, 0x3, 0x14) r1 = open(&(0x7f00000001c0)='.\x00', 0x0, 0x0) getdents(r1, &(0x7f0000000280)=""/4096, 0x9005) sendmsg$RDMA_NLDEV_CMD_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="48000000021401"], 0x48}, 0x1, 0x0, 0x0, 0x4000801}, 0x0) 203.561156ms ago: executing program 0 (id=7960): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000003c0), r0) sendmsg$NLBL_UNLABEL_C_ACCEPT(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000400)={0x1c, r2, 0x1, 0x0, 0x0, {}, [@NLBL_UNLABEL_A_ACPTFLG={0x5}]}, 0x1c}}, 0x0) 175.705549ms ago: executing program 0 (id=7961): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000100)=0x10000) ioctl$TCSETS(r0, 0x5402, &(0x7f00000000c0)={0x0, 0x0, 0x40000, 0x10001, 0x0, "59c27c65a78308634e78299ef68057107ea354"}) ioctl$TIOCSSOFTCAR(r0, 0x541a, &(0x7f0000000000)) 149.684662ms ago: executing program 0 (id=7962): r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$EVIOCGLED(r0, 0x80404519, 0x0) ioctl$EVIOCSCLOCKID(r0, 0x400445a0, &(0x7f0000000240)=0x7) 129.950044ms ago: executing program 7 (id=7963): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000a0db000000000000000000850000000e000000c50000002a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x11) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=@mpls_delroute={0x30, 0x18, 0x9, 0x0, 0x0, {0x1c, 0x14, 0x0, 0x0, 0xfe, 0x2, 0x0, 0x1}, [@RTA_VIA={0x14, 0x1a, {0x2, "cfbc6ac116946cf4a5b2f81c4d07"}}]}, 0x30}}, 0x4) 124.440585ms ago: executing program 0 (id=7964): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000340)='oom_score_adj\x00') seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000200)={0x1, &(0x7f0000000000)=[{0x6}]}) ioctl$F2FS_IOC_GET_PIN_FILE(0xffffffffffffffff, 0x8004f50e, 0x0) pread64(r0, 0x0, 0x0, 0x0) 124.373465ms ago: executing program 5 (id=7965): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000240)='kfree\x00', r0}, 0x10) r1 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000001b40), 0x1, 0x0) writev(r1, &(0x7f0000004340)=[{&(0x7f0000002080)="4f7f61bfe7ec271202403a540b524a03bda1e44111dd69d3924090d27ac2f6b2c654d94690a10a33d0", 0x29}], 0x1) 100.726338ms ago: executing program 6 (id=7966): r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0) perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x0, 0x30100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x23, 0x4, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x28f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000140)) write$ppp(r0, &(0x7f0000000000)="16c612", 0x3) 69.113742ms ago: executing program 7 (id=7967): r0 = socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newlink={0x58, 0x10, 0x409, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, 0x200, 0x1}, [@IFLA_LINKINFO={0x38, 0x12, 0x0, 0x1, @bridge_slave={{0x11}, {0x20, 0x5, 0x0, 0x1, [@IFLA_BRPORT_FLUSH={0x4}, @IFLA_BRPORT_MCAST_FLOOD={0x5}, @IFLA_BRPORT_STATE={0x5, 0x1, 0x3}, @IFLA_BRPORT_GROUP_FWD_MASK={0x6, 0x1f, 0x9}]}}}]}, 0x58}}, 0x2) 54.043223ms ago: executing program 5 (id=7968): r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000080)={@private0, 0x8000000, 0x0, 0xff, 0x1}, 0x20) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000300)={@mcast2, 0x0, 0x0, 0xff, 0x3}, 0x20) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000380)={@ipv4={'\x00', '\xff\xff', @empty}, 0x1, 0x1, 0x1, 0x0, 0x8}, 0x20) 33.590966ms ago: executing program 7 (id=7969): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r0, 0x84, 0x2, &(0x7f0000000280)="1a3667feee000000", 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendto$inet6(r0, &(0x7f0000000500)="a4", 0xffe0, 0x4c, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) 0s ago: executing program 7 (id=7970): socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r0, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000940)=[{&(0x7f00000005c0)=""/151, 0x97}], 0x1, &(0x7f0000002f40)=""/229, 0xe5}, 0x0) sendmsg$tipc(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)="af07e145e8cc1a5e6f0e4f7d6001fff467348c43df2e59fef37fc84fd6c84e0880f5e64192f2ffdfe2d6a2703df6befdda1729e426b858d458759e2cdd94d9effc40e0a0936416a449ab48010ad740ba31f26fc123fda027271dcc1144fbd78b863d3a870d37defc7a969cb93e6868e470d70acf9ca3ff5717c84ee402ef94651e29468d63c1fe62d6b54ed7eb2de108385928598e3de424657e", 0x9a}], 0x1, 0x0, 0x0, 0x2000c800}, 0x4000000) close(r1) kernel console output (not intermixed with test programs): 32768, ipg=32, mo=a842c01c, mo2=0002] [ 129.571388][T14973] System zones: 0-2, 18-18, 34-34 [ 129.577333][T14973] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1138: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 129.592317][T14973] EXT4-fs (loop4): 1 truncate cleaned up [ 129.598297][T14973] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 129.623659][ T3327] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 130.347815][T15063] loop5: detected capacity change from 0 to 512 [ 130.354442][T15063] EXT4-fs: Ignoring removed orlov option [ 130.366290][T15063] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 130.380747][T15063] EXT4-fs (loop5): 1 truncate cleaned up [ 130.386746][T15063] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 130.412657][T12684] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 130.423311][T15070] netlink: 'syz.6.5160': attribute type 10 has an invalid length. [ 130.509206][T15076] __nla_validate_parse: 6 callbacks suppressed [ 130.509220][T15076] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5163'. [ 130.548803][T15080] tipc: Can't bind to reserved service type 1 [ 130.904820][T15135] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5190'. [ 131.036500][T15157] netlink: 'syz.1.5197': attribute type 10 has an invalid length. [ 131.133505][T15185] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5208'. [ 131.497665][T15254] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5235'. [ 131.535891][T15260] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5239'. [ 131.658911][T15289] netlink: 28 bytes leftover after parsing attributes in process `syz.5.5249'. [ 131.754587][T15309] loop6: detected capacity change from 0 to 164 [ 131.776477][T15309] Unable to read rock-ridge attributes [ 131.784733][T15309] netlink: 20 bytes leftover after parsing attributes in process `syz.6.5256'. [ 131.839451][T15327] syz.0.5263[15327] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 131.839574][T15327] syz.0.5263[15327] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 131.875598][T15327] syz.0.5263[15327] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 131.969667][T15360] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5274'. [ 132.022803][T15366] netlink: 28 bytes leftover after parsing attributes in process `syz.6.5275'. [ 132.135009][T15398] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5286'. [ 132.243561][T15418] loop6: detected capacity change from 0 to 1024 [ 132.257641][T15418] EXT4-fs: Ignoring removed orlov option [ 132.263407][T15418] EXT4-fs: Ignoring removed nomblk_io_submit option [ 132.324027][T15418] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 132.345904][ T29] kauditd_printk_skb: 16 callbacks suppressed [ 132.345918][ T29] audit: type=1400 audit(1730212189.449:15492): avc: denied { setattr } for pid=15417 comm="syz.6.5292" name="file1" dev="loop6" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 132.422513][T12704] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 132.457012][ T29] audit: type=1400 audit(1730212189.559:15493): avc: denied { ioctl } for pid=15449 comm="syz.4.5302" path="/dev/mISDNtimer" dev="devtmpfs" ino=248 ioctlcmd=0x4940 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 132.570666][T15483] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(5) [ 132.577306][T15483] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 132.585104][T15483] vhci_hcd vhci_hcd.0: Device attached [ 132.614047][T15484] vhci_hcd: connection closed [ 132.614205][ T40] vhci_hcd: stop threads [ 132.623226][ T40] vhci_hcd: release socket [ 132.627711][ T40] vhci_hcd: disconnect device [ 132.661833][ T29] audit: type=1400 audit(1730212189.769:15494): avc: denied { sqpoll } for pid=15504 comm="syz.4.5319" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 132.683463][T15506] loop5: detected capacity change from 0 to 2048 [ 132.722670][T15506] EXT4-fs: Ignoring removed mblk_io_submit option [ 132.741026][T15506] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 132.779589][T15506] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.5318: bg 0: block 234: padding at end of block bitmap is not set [ 132.814195][T15506] EXT4-fs (loop5): Remounting filesystem read-only [ 132.854523][T12684] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 132.899459][ T29] audit: type=1326 audit(1730212190.009:15495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15556 comm="syz.5.5331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2dc3ee719 code=0x7ffc0000 [ 132.923088][ T29] audit: type=1326 audit(1730212190.009:15496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15556 comm="syz.5.5331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2dc3ee719 code=0x7ffc0000 [ 132.959531][ T29] audit: type=1326 audit(1730212190.059:15497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15556 comm="syz.5.5331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fb2dc3ee719 code=0x7ffc0000 [ 132.983244][ T29] audit: type=1326 audit(1730212190.059:15498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15556 comm="syz.5.5331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2dc3ee719 code=0x7ffc0000 [ 133.006818][ T29] audit: type=1326 audit(1730212190.059:15499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15556 comm="syz.5.5331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2dc3ee719 code=0x7ffc0000 [ 133.030755][ T29] audit: type=1326 audit(1730212190.059:15500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15556 comm="syz.5.5331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7fb2dc3ee719 code=0x7ffc0000 [ 133.054433][ T29] audit: type=1326 audit(1730212190.059:15501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15556 comm="syz.5.5331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2dc3ee719 code=0x7ffc0000 [ 133.128506][T15589] random: crng reseeded on system resumption [ 133.443185][ T3364] hid-generic 0007:0006:0004.0003: unknown main item tag 0x6 [ 133.444621][T15655] syz.6.5368[15655] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 133.451041][ T3364] hid-generic 0007:0006:0004.0003: hidraw0: HID v1.6e Device [syz1] on syz0 [ 133.487588][T15655] syz.6.5368[15655] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 133.487644][T15655] syz.6.5368[15655] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 133.801131][T15716] loop6: detected capacity change from 0 to 1024 [ 133.879840][T15716] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 133.912802][T15716] VFS: Lookup of 'file0' in ext4 loop6 would have caused loop [ 133.961565][T12704] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 134.142873][T15791] syz.0.5407[15791] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 134.142930][T15791] syz.0.5407[15791] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 134.164766][T15791] syz.0.5407[15791] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 134.316861][T15816] loop6: detected capacity change from 0 to 512 [ 134.353253][T15816] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22 [ 134.456760][T15844] loop4: detected capacity change from 0 to 256 [ 134.573153][T15871] loop4: detected capacity change from 0 to 164 [ 134.667825][T15884] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5) [ 134.674466][T15884] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 134.682206][T15884] vhci_hcd vhci_hcd.0: Device attached [ 134.700551][T15889] vhci_hcd: connection closed [ 134.706216][ T3417] vhci_hcd: stop threads [ 134.715256][ T3417] vhci_hcd: release socket [ 134.719760][ T3417] vhci_hcd: disconnect device [ 134.720142][T15898] x_tables: ip_tables: udp match: only valid for protocol 17 [ 134.736072][T15902] loop4: detected capacity change from 0 to 512 [ 134.756364][T15906] IPv6: sit1: Disabled Multicast RS [ 134.777110][T15902] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22 [ 134.780483][T15900] loop5: detected capacity change from 0 to 2048 [ 134.790028][T15908] loop6: detected capacity change from 0 to 764 [ 134.817426][T15900] EXT4-fs: Ignoring removed bh option [ 134.831871][T15908] rock: directory entry would overflow storage [ 134.838094][T15908] rock: sig=0x4f50, size=4, remaining=3 [ 134.843676][T15908] iso9660: Corrupted directory entry in block 6 of inode 1792 [ 134.860724][T15900] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 134.888495][T15900] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 134.904852][T15900] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 1 with error 28 [ 134.908176][T15926] loop6: detected capacity change from 0 to 128 [ 134.917258][T15900] EXT4-fs (loop5): This should not happen!! Data will be lost [ 134.917258][T15900] [ 134.933601][T15900] EXT4-fs (loop5): Total free blocks count 0 [ 134.939684][T15900] EXT4-fs (loop5): Free/Dirty block details [ 134.945584][T15900] EXT4-fs (loop5): free_blocks=2415919104 [ 134.951445][T15900] EXT4-fs (loop5): dirty_blocks=32 [ 134.956571][T15900] EXT4-fs (loop5): Block reservation details [ 134.962637][T15900] EXT4-fs (loop5): i_reserved_data_blocks=2 [ 134.977733][T15926] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 134.990704][T15926] ext4 filesystem being mounted at /221/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 134.990775][ T50] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 135.014800][T15926] EXT4-fs warning (device loop6): verify_group_input:137: Cannot add at group 2 (only 1 groups) [ 135.049645][T12704] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 135.133658][T15953] netlink: 'syz.6.5481': attribute type 29 has an invalid length. [ 135.162127][T15953] netlink: 'syz.6.5481': attribute type 29 has an invalid length. [ 135.221581][T15967] debugfs: Bad value for 'uid' [ 135.226419][T15967] debugfs: Bad value for 'uid' [ 135.234972][T15965] 9pnet_fd: Insufficient options for proto=fd [ 135.301630][T15985] netlink: 'syz.1.5496': attribute type 322 has an invalid length. [ 135.402061][T16005] 9pnet_fd: Insufficient options for proto=fd [ 135.512848][T16033] netlink: 'syz.1.5519': attribute type 29 has an invalid length. [ 135.521555][T16033] netlink: 'syz.1.5519': attribute type 29 has an invalid length. [ 135.529494][T16035] loop6: detected capacity change from 0 to 1024 [ 135.536239][T16035] EXT4-fs: Ignoring removed orlov option [ 135.541984][T16035] EXT4-fs: Ignoring removed nomblk_io_submit option [ 135.570276][T16035] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 135.594700][T12704] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 135.705780][T16065] __nla_validate_parse: 19 callbacks suppressed [ 135.705868][T16065] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5531'. [ 135.862119][T16101] netlink: 'syz.1.5539': attribute type 3 has an invalid length. [ 135.938460][T16113] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5544'. [ 136.020026][T16130] IPv6: NLM_F_CREATE should be specified when creating new route [ 136.031400][T16128] loop6: detected capacity change from 0 to 2048 [ 136.041221][T16128] EXT4-fs: Ignoring removed bh option [ 136.071647][T16128] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 136.087730][T16128] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 136.102813][T16128] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 1 with error 28 [ 136.104172][T16134] xt_addrtype: both incoming and outgoing interface limitation cannot be selected [ 136.115192][T16128] EXT4-fs (loop6): This should not happen!! Data will be lost [ 136.115192][T16128] [ 136.134171][T16128] EXT4-fs (loop6): Total free blocks count 0 [ 136.140191][T16128] EXT4-fs (loop6): Free/Dirty block details [ 136.146112][T16128] EXT4-fs (loop6): free_blocks=2415919104 [ 136.151859][T16128] EXT4-fs (loop6): dirty_blocks=32 [ 136.157015][T16128] EXT4-fs (loop6): Block reservation details [ 136.163066][T16128] EXT4-fs (loop6): i_reserved_data_blocks=2 [ 136.181454][ T50] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 136.360558][T16176] netlink: 'syz.5.5573': attribute type 12 has an invalid length. [ 136.368505][T16176] netlink: 132 bytes leftover after parsing attributes in process `syz.5.5573'. [ 137.120560][T16336] IPv6: Can't replace route, no match found [ 137.329399][T16378] sch_tbf: peakrate 8 is lower than or equals to rate 12 ! [ 137.397823][ T29] kauditd_printk_skb: 47 callbacks suppressed [ 137.397837][ T29] audit: type=1400 audit(1730212194.509:15549): avc: denied { write } for pid=16388 comm="syz.4.5673" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 137.441285][T16393] SELinux: policydb version 0 does not match my version range 15-33 [ 137.451580][T16393] SELinux: failed to load policy [ 137.496520][ T29] audit: type=1400 audit(1730212194.599:15550): avc: denied { create } for pid=16402 comm="syz.5.5682" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_crypto_socket permissive=1 [ 137.642690][T16427] loop4: detected capacity change from 0 to 512 [ 137.661156][T16427] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 137.673852][T16427] ext4 filesystem being mounted at /1184/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 137.705216][ T3327] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.751242][T16441] netlink: 64 bytes leftover after parsing attributes in process `syz.4.5695'. [ 137.811322][T16455] SELinux: policydb version 0 does not match my version range 15-33 [ 137.820577][T16455] SELinux: failed to load policy [ 137.914991][T16473] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5713'. [ 137.956242][ T29] audit: type=1400 audit(1730212195.059:15551): avc: denied { recv } for pid=16479 comm="syz.1.5717" saddr=10.128.0.163 src=30030 daddr=10.128.0.172 dest=51136 netif=eth0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1 [ 137.995540][ T29] audit: type=1400 audit(1730212195.069:15552): avc: denied { read write } for pid=12684 comm="syz-executor" name="loop5" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 138.020589][ T29] audit: type=1400 audit(1730212195.069:15553): avc: denied { open } for pid=12684 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 138.045138][ T29] audit: type=1400 audit(1730212195.069:15554): avc: denied { ioctl } for pid=12684 comm="syz-executor" path="/dev/loop5" dev="devtmpfs" ino=105 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 138.071136][ T29] audit: type=1400 audit(1730212195.089:15555): avc: denied { prog_load } for pid=16481 comm="syz.5.5718" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 138.071156][ T29] audit: type=1400 audit(1730212195.089:15556): avc: denied { bpf } for pid=16481 comm="syz.5.5718" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 138.071176][ T29] audit: type=1400 audit(1730212195.089:15557): avc: denied { perfmon } for pid=16481 comm="syz.5.5718" capability=38 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 138.071231][ T29] audit: type=1400 audit(1730212195.099:15558): avc: denied { append } for pid=2998 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 138.104912][T16495] netlink: 'syz.1.5724': attribute type 8 has an invalid length. [ 138.404880][T16544] loop6: detected capacity change from 0 to 512 [ 138.424925][T16550] loop5: detected capacity change from 0 to 512 [ 138.432984][T16544] EXT4-fs (loop6): fragment/cluster size (8192) != block size (4096) [ 138.440840][T16550] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 138.478014][T16550] EXT4-fs (loop5): 1 truncate cleaned up [ 138.491382][T16544] netlink: 'syz.6.5749': attribute type 8 has an invalid length. [ 138.497754][T16550] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 138.560951][T16550] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.5750: corrupted in-inode xattr: overlapping e_value [ 138.582477][T16550] EXT4-fs warning (device loop5): ext4_xattr_set_entry:1772: inode #15: comm syz.5.5750: unable to update i_inline_off [ 138.598700][T16577] loop6: detected capacity change from 0 to 512 [ 138.605680][T16578] EXT4-fs error (device loop5): ext4_xattr_ibody_get:653: inode #15: comm syz.5.5750: corrupted in-inode xattr: overlapping e_value [ 138.621989][T16577] EXT4-fs error (device loop6): ext4_get_branch:178: inode #11: block 4294967295: comm syz.6.5764: invalid block [ 138.655343][T16577] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.5764: invalid indirect mapped block 4294967295 (level 1) [ 138.673445][T16577] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.5764: invalid indirect mapped block 4294967295 (level 1) [ 138.692120][T12684] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.694461][T16577] EXT4-fs (loop6): 2 truncates cleaned up [ 138.707545][T16577] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 138.769747][T12704] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.905974][T16628] loop5: detected capacity change from 0 to 256 [ 138.960241][T16628] FAT-fs (loop5): Directory bread(block 64) failed [ 138.975492][T16628] FAT-fs (loop5): Directory bread(block 65) failed [ 138.983413][T16628] FAT-fs (loop5): Directory bread(block 66) failed [ 138.990240][T16628] FAT-fs (loop5): Directory bread(block 67) failed [ 138.996900][T16628] FAT-fs (loop5): Directory bread(block 68) failed [ 139.004350][T16628] FAT-fs (loop5): Directory bread(block 69) failed [ 139.025780][T16628] FAT-fs (loop5): Directory bread(block 70) failed [ 139.045923][T16628] FAT-fs (loop5): Directory bread(block 71) failed [ 139.072440][T16628] FAT-fs (loop5): Directory bread(block 72) failed [ 139.090903][T16628] FAT-fs (loop5): Directory bread(block 73) failed [ 139.129032][T16666] loop4: detected capacity change from 0 to 512 [ 139.129742][T16666] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 139.139312][T16666] EXT4-fs (loop4): 1 truncate cleaned up [ 139.139671][T16666] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 139.153710][T16669] netlink: 92 bytes leftover after parsing attributes in process `syz.0.5809'. [ 139.166538][T16666] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.5807: corrupted in-inode xattr: overlapping e_value [ 139.166777][T16666] EXT4-fs warning (device loop4): ext4_xattr_set_entry:1772: inode #15: comm syz.4.5807: unable to update i_inline_off [ 139.167650][T16666] EXT4-fs error (device loop4): ext4_xattr_ibody_get:653: inode #15: comm syz.4.5807: corrupted in-inode xattr: overlapping e_value [ 139.217313][ T3327] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.253459][T16678] loop6: detected capacity change from 0 to 512 [ 139.339454][T16678] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 139.383651][T16678] ext4 filesystem being mounted at /288/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 139.414553][T12704] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.515055][T16722] loop4: detected capacity change from 0 to 512 [ 139.548237][T16722] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.5835: invalid indirect mapped block 4294967295 (level 1) [ 139.571971][T16722] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.5835: invalid indirect mapped block 4294967295 (level 1) [ 139.588197][T16722] EXT4-fs (loop4): 2 truncates cleaned up [ 139.594372][T16722] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 139.622948][ T3327] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.645493][ T3393] IPVS: starting estimator thread 0... [ 139.714692][T16756] loop6: detected capacity change from 0 to 512 [ 139.732599][T16756] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 139.746338][T16756] EXT4-fs (loop6): 1 truncate cleaned up [ 139.747149][T16760] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5852'. [ 139.752057][T16742] IPVS: using max 2832 ests per chain, 141600 per kthread [ 139.770930][T16756] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 139.798914][T16756] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2240: inode #15: comm syz.6.5851: corrupted in-inode xattr: overlapping e_value [ 139.829185][T16756] EXT4-fs warning (device loop6): ext4_xattr_set_entry:1772: inode #15: comm syz.6.5851: unable to update i_inline_off [ 139.846738][T16767] vxcan1: entered allmulticast mode [ 139.858463][T16776] EXT4-fs error (device loop6): ext4_xattr_ibody_get:653: inode #15: comm syz.6.5851: corrupted in-inode xattr: overlapping e_value [ 139.894390][T12704] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.925361][T16788] netlink: 92 bytes leftover after parsing attributes in process `syz.5.5866'. [ 139.940702][T16791] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5867'. [ 140.030395][T16803] vxcan1: entered allmulticast mode [ 140.049187][ T9] IPVS: starting estimator thread 0... [ 140.152670][T16806] IPVS: using max 2688 ests per chain, 134400 per kthread [ 140.244398][T16834] loop5: detected capacity change from 0 to 512 [ 140.286731][T16834] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 140.301541][T16834] ext4 filesystem being mounted at /281/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 140.325310][T16843] devtmpfs: Bad value for 'nr_blocks' [ 140.333026][T12684] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 140.464576][T16859] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5900'. [ 140.490869][T16865] netlink: 'syz.5.5902': attribute type 24 has an invalid length. [ 140.595853][T16888] loop6: detected capacity change from 0 to 736 [ 140.614601][T16888] rock: directory entry would overflow storage [ 140.620830][T16888] rock: sig=0x3b10, size=4, remaining=3 [ 140.746530][T16911] __nla_validate_parse: 1 callbacks suppressed [ 140.746545][T16911] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5926'. [ 140.746871][T16909] loop4: detected capacity change from 0 to 512 [ 140.777342][T16913] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(5) [ 140.783906][T16913] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 140.792280][T16913] vhci_hcd vhci_hcd.0: Device attached [ 140.798088][T16909] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 140.809499][T16914] vhci_hcd: connection closed [ 140.812963][ T3417] vhci_hcd: stop threads [ 140.822537][ T3417] vhci_hcd: release socket [ 140.826943][ T3417] vhci_hcd: disconnect device [ 140.834041][T16909] EXT4-fs (loop4): 1 truncate cleaned up [ 140.841410][T16909] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 140.857482][T16909] EXT4-fs warning (device loop4): verify_group_input:137: Cannot add at group 13 (only 1 groups) [ 140.894741][ T3327] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 141.003526][T16933] syz.4.5935[16933] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 141.003585][T16933] syz.4.5935[16933] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 141.015414][T16933] syz.4.5935[16933] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 141.048134][T16939] loop4: detected capacity change from 0 to 736 [ 141.085518][T16939] rock: directory entry would overflow storage [ 141.091779][T16939] rock: sig=0x3b10, size=4, remaining=3 [ 141.162190][T16960] netlink: 160 bytes leftover after parsing attributes in process `syz.6.5947'. [ 142.202670][T17024] Invalid option length (181) for dns_resolver key [ 143.137183][ T29] kauditd_printk_skb: 133 callbacks suppressed [ 143.137196][ T29] audit: type=1400 audit(1730212198.900:15692): avc: denied { ioctl } for pid=17074 comm="syz.5.6002" path="/dev/usbmon0" dev="devtmpfs" ino=141 ioctlcmd=0x9204 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 143.213878][ T29] audit: type=1400 audit(1730212198.990:15693): avc: denied { write } for pid=2998 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 143.236144][ T29] audit: type=1400 audit(1730212198.990:15694): avc: denied { remove_name } for pid=2998 comm="syslogd" name="messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 143.259851][ T29] audit: type=1400 audit(1730212198.990:15695): avc: denied { rename } for pid=2998 comm="syslogd" name="messages" dev="tmpfs" ino=7 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 143.282427][ T29] audit: type=1400 audit(1730212198.990:15696): avc: denied { add_name } for pid=2998 comm="syslogd" name="messages.0" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 143.305756][ T29] audit: type=1400 audit(1730212198.990:15697): avc: denied { unlink } for pid=2998 comm="syslogd" name="messages.0" dev="tmpfs" ino=6 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 143.328906][ T29] audit: type=1400 audit(1730212198.990:15698): avc: denied { create } for pid=2998 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 143.349701][ T29] audit: type=1400 audit(1730212199.090:15699): avc: denied { bind } for pid=17085 comm="syz.1.6008" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 143.369856][ T29] audit: type=1400 audit(1730212199.090:15700): avc: denied { name_bind } for pid=17085 comm="syz.1.6008" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1 [ 143.390869][ T29] audit: type=1400 audit(1730212199.090:15701): avc: denied { node_bind } for pid=17085 comm="syz.1.6008" saddr=::ffff:224.0.0.1 src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=dccp_socket permissive=1 [ 143.486919][T17100] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6014'. [ 143.564254][T17109] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 143.573227][T17109] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 143.582030][T17109] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 143.591419][T17109] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 143.609578][T17121] netlink: 44 bytes leftover after parsing attributes in process `syz.4.6025'. [ 143.619273][T17121] netlink: 43 bytes leftover after parsing attributes in process `syz.4.6025'. [ 143.621784][T17127] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6028'. [ 143.628248][T17121] netlink: 'syz.4.6025': attribute type 5 has an invalid length. [ 143.644988][T17121] netlink: 43 bytes leftover after parsing attributes in process `syz.4.6025'. [ 143.693281][T17132] netlink: 'syz.1.6030': attribute type 21 has an invalid length. [ 143.709548][T17132] netlink: 132 bytes leftover after parsing attributes in process `syz.1.6030'. [ 143.719913][T17141] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6034'. [ 143.857839][T17164] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6045'. [ 143.989693][T17194] netlink: 'syz.5.6056': attribute type 21 has an invalid length. [ 144.041123][T17202] loop6: detected capacity change from 0 to 512 [ 144.109383][T17202] EXT4-fs error (device loop6): ext4_clear_blocks:876: inode #13: comm syz.6.6064: attempt to clear invalid blocks 1 len 1 [ 144.125994][T17202] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.6064: bg 0: block 343: padding at end of block bitmap is not set [ 144.143468][T17202] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 144.153571][T17202] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.6064: invalid indirect mapped block 1819239214 (level 0) [ 144.179327][T17202] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.6064: invalid indirect mapped block 1819239214 (level 1) [ 144.179617][T17202] EXT4-fs (loop6): 1 truncate cleaned up [ 144.202706][T17202] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 144.242503][T12704] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 144.335026][T17254] loop6: detected capacity change from 0 to 512 [ 144.372657][T17254] EXT4-fs warning (device loop6): ext4_enable_quotas:7097: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 144.390740][T17254] EXT4-fs (loop6): mount failed [ 144.540996][T17302] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(5) [ 144.547547][T17302] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 144.555088][T17302] vhci_hcd vhci_hcd.0: Device attached [ 144.564304][T17303] vhci_hcd: connection closed [ 144.564544][ T260] vhci_hcd: stop threads [ 144.574151][ T260] vhci_hcd: release socket [ 144.578601][ T260] vhci_hcd: disconnect device [ 144.792048][T17320] loop5: detected capacity change from 0 to 1024 [ 144.798856][T17320] EXT4-fs: Ignoring removed oldalloc option [ 144.805754][T17320] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 144.818551][T17320] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 144.841446][T12684] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 145.021180][T17347] loop4: detected capacity change from 0 to 512 [ 145.028336][T17347] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 145.049426][T17347] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 145.062016][T17347] ext4 filesystem being mounted at /1274/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 145.091359][ T3327] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 145.248406][T17373] loop4: detected capacity change from 0 to 1024 [ 145.255245][T17373] EXT4-fs: Ignoring removed oldalloc option [ 145.269092][T17373] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 145.301227][T17373] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 145.349007][T17391] bond_slave_0: entered promiscuous mode [ 145.354844][T17391] bond_slave_1: entered promiscuous mode [ 145.363384][T17391] bond_slave_0: left promiscuous mode [ 145.368826][T17391] bond_slave_1: left promiscuous mode [ 145.378172][ T3327] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 146.189799][T17459] __nla_validate_parse: 4 callbacks suppressed [ 146.189813][T17459] netlink: 68 bytes leftover after parsing attributes in process `syz.1.6183'. [ 146.350726][T17481] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6192'. [ 146.379517][T17480] Option ' AX؀:}' to dns_resolver key: bad/missing value [ 146.483157][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.491179][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.498590][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.505992][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.513399][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.521482][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.528961][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.536367][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.543834][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.551859][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.559336][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.566749][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.574213][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.582267][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.589667][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.597128][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.604501][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.612486][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.619881][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.627357][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.634857][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.642922][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.650311][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.657702][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.665115][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.673087][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.680503][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.687966][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.695351][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.703350][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.710751][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.718144][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.725540][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.733544][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.741090][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.748503][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.755975][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.763952][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.771403][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.778788][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.786166][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.794200][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.801620][ T9] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 146.823667][ T9] hid-generic 0000:0000:0000.0004: hidraw0: HID v0.00 Device [syz0] on syz0 [ 147.296911][T17533] loop6: detected capacity change from 0 to 512 [ 147.498516][T17533] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 147.539861][T17533] ext4 filesystem being mounted at /379/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 147.608785][T12704] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 147.631388][T17566] Option '/x]'+BGו*;%Є)о`q6mİ:c \8O%g$I' to dns_resolver key: bad/missing value [ 147.689616][T17568] block device autoloading is deprecated and will be removed. [ 148.040259][T17601] netlink: 'syz.5.6248': attribute type 5 has an invalid length. [ 148.719748][T17626] vhci_hcd: invalid port number 252 [ 148.724994][T17626] vhci_hcd: invalid port number 252 [ 148.782346][T17634] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6271'. [ 148.878515][ T29] kauditd_printk_skb: 176 callbacks suppressed [ 148.878531][ T29] audit: type=1400 audit(1730212204.660:15877): avc: denied { read } for pid=17637 comm="syz.5.6263" path="socket:[49681]" dev="sockfs" ino=49681 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 148.981707][T17640] netlink: 'syz.6.6264': attribute type 5 has an invalid length. [ 149.112532][T17650] netlink: 87 bytes leftover after parsing attributes in process `syz.6.6269'. [ 149.153130][ T29] audit: type=1400 audit(1730212204.930:15878): avc: denied { create } for pid=17653 comm="syz.6.6272" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 149.174968][ T29] audit: type=1400 audit(1730212204.930:15879): avc: denied { connect } for pid=17653 comm="syz.6.6272" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 149.195621][ T29] audit: type=1400 audit(1730212204.930:15880): avc: denied { ioctl } for pid=17653 comm="syz.6.6272" path="socket:[49712]" dev="sockfs" ino=49712 ioctlcmd=0x7437 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 149.228780][ T29] audit: type=1400 audit(1730212205.010:15881): avc: denied { create } for pid=17655 comm="syz.6.6273" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 149.249142][ T29] audit: type=1400 audit(1730212205.010:15882): avc: denied { write } for pid=17657 comm="syz.1.6274" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 149.268832][ T29] audit: type=1400 audit(1730212205.010:15883): avc: denied { bind } for pid=17655 comm="syz.6.6273" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 149.288915][ T29] audit: type=1400 audit(1730212205.010:15884): avc: denied { write } for pid=17655 comm="syz.6.6273" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 149.293380][T17662] loop6: detected capacity change from 0 to 164 [ 149.324528][ T29] audit: type=1400 audit(1730212205.100:15885): avc: denied { mount } for pid=17661 comm="syz.6.6276" name="/" dev="loop6" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1 [ 149.359819][T17662] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 149.374284][ T29] audit: type=1400 audit(1730212205.150:15886): avc: denied { unmount } for pid=12704 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1 [ 149.435470][T17667] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6279'. [ 149.461527][T17669] netlink: 'syz.1.6280': attribute type 11 has an invalid length. [ 149.539660][T17677] netlink: 32 bytes leftover after parsing attributes in process `syz.1.6284'. [ 150.046238][T17722] netlink: 'syz.6.6306': attribute type 32 has an invalid length. [ 150.054740][T17722] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6306'. [ 150.071164][T17722] (unnamed net_device) (uninitialized): option coupled_control: invalid value (115) [ 150.633756][T17785] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6331'. [ 150.642871][T17785] netlink: 'syz.0.6331': attribute type 2 has an invalid length. [ 150.706213][T17793] No such timeout policy "syz0" [ 150.937346][ T9] hid-generic 0009:8001:0001.0005: hidraw0: HID vffffff.e8 Device [syz1] on syz1 [ 151.151363][T17838] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=17838 comm=syz.1.6361 [ 151.232598][T17847] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6365'. [ 151.257700][T17850] IPVS: sync thread started: state = BACKUP, mcast_ifn = wg0, syncid = 4, id = 0 [ 151.360100][T17860] netlink: 'syz.0.6370': attribute type 11 has an invalid length. [ 151.501392][T17875] netlink: 'syz.0.6378': attribute type 4 has an invalid length. [ 151.578460][T17881] loop6: detected capacity change from 0 to 512 [ 151.598511][T17881] EXT4-fs error (device loop6): ext4_get_journal_inode:5762: comm syz.6.6381: inode #196608: comm syz.6.6381: iget: illegal inode # [ 151.642329][T17881] EXT4-fs (loop6): Remounting filesystem read-only [ 151.649002][T17881] EXT4-fs (loop6): no journal found [ 151.654209][T17881] EXT4-fs (loop6): can't get journal size [ 151.685838][T17881] EXT4-fs (loop6): warning: mounting fs with errors, running e2fsck is recommended [ 151.695582][T17881] EXT4-fs (loop6): failed to initialize system zone (-22) [ 151.723523][T17881] EXT4-fs (loop6): mount failed [ 151.742019][T17881] IPv6: sit1: Disabled Multicast RS [ 151.832385][T17899] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6389'. [ 151.849836][T17899] A link change request failed with some changes committed already. Interface wg0 may have been left with an inconsistent configuration, please check. [ 152.206591][T17924] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6401'. [ 152.315477][T17935] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6406'. [ 152.534208][T17952] openvswitch: netlink: Key type 10240 is out of range max 32 [ 152.665265][T17959] loop0: detected capacity change from 0 to 2048 [ 152.721039][T17959] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 152.797954][T17959] EXT4-fs error (device loop0): ext4_ext_precache:631: inode #2: comm syz.0.6417: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5) [ 152.928345][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 153.095008][T18009] loop5: detected capacity change from 0 to 512 [ 153.155575][T18009] EXT4-fs warning (device loop5): ext4_block_to_path:107: block 3279945729 > max in inode 13 [ 153.208290][T18009] EXT4-fs warning (device loop5): ext4_block_to_path:107: block 3279945730 > max in inode 13 [ 153.270942][T18009] EXT4-fs (loop5): 1 truncate cleaned up [ 153.298614][T18009] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 153.383122][T18034] xt_TPROXY: Can be used only with -p tcp or -p udp [ 153.410241][T12684] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 153.700919][T18063] loop0: detected capacity change from 0 to 128 [ 153.724652][T18063] EXT4-fs: dax option not supported [ 153.852950][T18072] netlink: 128 bytes leftover after parsing attributes in process `syz.0.6469'. [ 154.117645][ T29] kauditd_printk_skb: 60 callbacks suppressed [ 154.117658][ T29] audit: type=1326 audit(1730212209.906:15947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18093 comm="syz.5.6480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2dc3ee719 code=0x7ffc0000 [ 154.148067][ T29] audit: type=1326 audit(1730212209.906:15948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18093 comm="syz.5.6480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2dc3ee719 code=0x7ffc0000 [ 154.406175][ T29] audit: type=1326 audit(1730212209.956:15949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18093 comm="syz.5.6480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7fb2dc3ee719 code=0x7ffc0000 [ 154.430523][ T29] audit: type=1326 audit(1730212209.956:15950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18093 comm="syz.5.6480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2dc3ee719 code=0x7ffc0000 [ 154.454101][ T29] audit: type=1326 audit(1730212209.956:15951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18093 comm="syz.5.6480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2dc3ee719 code=0x7ffc0000 [ 154.529935][T18115] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=18115 comm=syz.6.6490 [ 154.581366][T18118] loop0: detected capacity change from 0 to 128 [ 154.635670][T18118] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 154.844188][ T29] audit: type=1400 audit(1730212210.286:15952): avc: denied { create } for pid=18110 comm="syz.0.6488" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 154.864156][ T29] audit: type=1400 audit(1730212210.286:15953): avc: denied { connect } for pid=18110 comm="syz.0.6488" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 154.884759][ T29] audit: type=1400 audit(1730212210.386:15954): avc: denied { read } for pid=18113 comm="syz.6.6490" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 154.905272][ T29] audit: type=1400 audit(1730212210.466:15955): avc: denied { mount } for pid=18116 comm="syz.0.6491" name="/" dev="loop0" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 154.928194][ T29] audit: type=1400 audit(1730212210.496:15956): avc: denied { unmount } for pid=3322 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 155.009977][T18146] loop6: detected capacity change from 0 to 512 [ 155.160424][T18146] EXT4-fs error (device loop6): ext4_xattr_block_get:596: inode #2: comm syz.6.6505: corrupted xattr block 255: invalid header [ 155.175484][T18159] RDS: rds_bind could not find a transport for 200:0:e000:1::, load rds_tcp or rds_rdma? [ 155.230049][T18146] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -117 [ 155.268510][T18146] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 155.339529][T18146] EXT4-fs error (device loop6): ext4_xattr_block_get:596: inode #2: comm syz.6.6505: corrupted xattr block 255: invalid header [ 155.418201][T18146] SELinux: (dev loop6, type ext4) getxattr errno 117 [ 155.429027][T18177] loop5: detected capacity change from 0 to 128 [ 155.469215][T18146] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 155.480606][T18177] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 155.519334][T18177] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 155.649754][T18188] loop5: detected capacity change from 0 to 1024 [ 155.678883][T18188] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 155.719078][T18188] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 155.792075][T12684] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 156.126220][T18226] netlink: 12 bytes leftover after parsing attributes in process `syz.6.6543'. [ 156.359817][T18242] loop6: detected capacity change from 0 to 512 [ 156.432344][T18242] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c118, mo2=0002] [ 156.468862][T18242] EXT4-fs (loop6): failed to initialize system zone (-117) [ 156.501852][T18242] EXT4-fs (loop6): mount failed [ 156.764034][T18263] loop0: detected capacity change from 0 to 2048 [ 156.820432][T18263] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 156.929409][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 157.072522][T18286] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6571'. [ 157.460044][T18326] sg_write: data in/out 91/4 bytes for SCSI command 0x92-- guessing data in; [ 157.460044][T18326] program syz.0.6590 not setting count and/or reply_len properly [ 157.758492][T18359] loop0: detected capacity change from 0 to 1024 [ 157.792186][T18359] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 157.860073][T18374] netlink: 165 bytes leftover after parsing attributes in process `syz.1.6611'. [ 157.886163][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 158.163785][T18412] loop5: detected capacity change from 0 to 128 [ 158.210749][T18417] netlink: 'syz.5.6635': attribute type 11 has an invalid length. [ 158.339476][T18436] netlink: 'syz.0.6643': attribute type 32 has an invalid length. [ 158.347405][T18436] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6643'. [ 158.358012][T18436] (unnamed net_device) (uninitialized): option coupled_control: invalid value (115) [ 158.569163][T18450] tmpfs: Bad value for 'size' [ 158.728914][T18467] netlink: 52 bytes leftover after parsing attributes in process `syz.6.6657'. [ 158.751713][T18467] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 158.890776][T18481] loop6: detected capacity change from 0 to 512 [ 158.900090][T18481] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 158.923961][ T3364] hid-generic 0009:8001:0001.0006: hidraw0: HID vffffff.e8 Device [syz1] on syz1 [ 158.935143][T18481] EXT4-fs (loop6): 1 truncate cleaned up [ 158.942663][T18481] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 158.992833][T18481] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2240: inode #15: comm syz.6.6663: corrupted in-inode xattr: overlapping e_value [ 159.008538][T18481] EXT4-fs (loop6): Remounting filesystem read-only [ 159.015057][T18481] EXT4-fs warning (device loop6): ext4_xattr_set_entry:1772: inode #15: comm syz.6.6663: unable to update i_inline_off [ 159.116885][T12704] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 159.151051][T18496] loop0: detected capacity change from 0 to 512 [ 159.185341][ T29] kauditd_printk_skb: 37 callbacks suppressed [ 159.185357][ T29] audit: type=1400 audit(1730212214.966:15994): avc: denied { create } for pid=18500 comm="syz.1.6673" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 159.214971][T18496] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -13 [ 159.232108][T18496] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 3279945729 > max in inode 13 [ 159.253346][T18496] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 3279945730 > max in inode 13 [ 159.264787][ T29] audit: type=1400 audit(1730212215.006:15995): avc: denied { listen } for pid=18500 comm="syz.1.6673" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 159.285174][ T29] audit: type=1400 audit(1730212215.006:15996): avc: denied { connect } for pid=18500 comm="syz.1.6673" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 159.316888][T18496] EXT4-fs (loop0): 1 truncate cleaned up [ 159.331693][T18496] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 159.425100][T18496] EXT4-fs warning (device loop0): ext4_lookup:1825: Inconsistent encryption contexts: 2/12 [ 159.443757][T18509] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6677'. [ 159.453289][T18496] EXT4-fs warning (device loop0): ext4_lookup:1825: Inconsistent encryption contexts: 2/12 [ 159.488423][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 159.559280][T18514] netlink: 140 bytes leftover after parsing attributes in process `syz.0.6679'. [ 159.595302][ T29] audit: type=1400 audit(1730212215.376:15997): avc: denied { ioctl } for pid=18515 comm="syz.5.6681" path="socket:[53295]" dev="sockfs" ino=53295 ioctlcmd=0x8955 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 159.684174][ T29] audit: type=1400 audit(1730212215.446:15998): avc: denied { read } for pid=18522 comm="syz.0.6683" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 159.859761][T18548] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6694'. [ 160.039843][ T29] audit: type=1326 audit(1730212215.826:15999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18556 comm="syz.0.6698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff379b3e719 code=0x7ffc0000 [ 160.064102][ T29] audit: type=1326 audit(1730212215.826:16000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18556 comm="syz.0.6698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7ff379b3e719 code=0x7ffc0000 [ 160.088408][ T29] audit: type=1326 audit(1730212215.826:16001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18556 comm="syz.0.6698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff379b3e719 code=0x7ffc0000 [ 160.112083][ T29] audit: type=1326 audit(1730212215.826:16002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18556 comm="syz.0.6698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff379b3e719 code=0x7ffc0000 [ 160.194350][T18569] netlink: 28 bytes leftover after parsing attributes in process `syz.6.6712'. [ 160.315985][ T29] audit: type=1400 audit(1730212216.076:16003): avc: denied { map } for pid=18576 comm="syz.6.6706" path="socket:[53500]" dev="sockfs" ino=53500 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 160.453568][T18595] xt_TPROXY: Can be used only with -p tcp or -p udp [ 160.567711][T18604] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6720'. [ 160.752839][ T3417] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 160.824086][ T3417] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 160.866969][T18667] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0) [ 160.907929][T18670] loop5: detected capacity change from 0 to 1024 [ 160.928857][ T3417] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 160.939795][T18670] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 160.965290][T18605] chnl_net:caif_netlink_parms(): no params data found [ 160.980032][ T3417] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 161.046858][T12684] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.120399][T18702] loop6: detected capacity change from 0 to 128 [ 161.201190][T18605] bridge0: port 1(bridge_slave_0) entered blocking state [ 161.208961][T18605] bridge0: port 1(bridge_slave_0) entered disabled state [ 161.216214][T18605] bridge_slave_0: entered allmulticast mode [ 161.223004][T18605] bridge_slave_0: entered promiscuous mode [ 161.229644][T18605] bridge0: port 2(bridge_slave_1) entered blocking state [ 161.236695][T18605] bridge0: port 2(bridge_slave_1) entered disabled state [ 161.244430][T18605] bridge_slave_1: entered allmulticast mode [ 161.250751][T18605] bridge_slave_1: entered promiscuous mode [ 161.262378][T18724] Invalid logical block size (3584) [ 161.315977][ T3417] bridge_slave_1: left allmulticast mode [ 161.321724][ T3417] bridge_slave_1: left promiscuous mode [ 161.328003][ T3417] bridge0: port 2(bridge_slave_1) entered disabled state [ 161.358252][ T3417] bridge_slave_0: left allmulticast mode [ 161.363936][ T3417] bridge_slave_0: left promiscuous mode [ 161.369743][ T3417] bridge0: port 1(bridge_slave_0) entered disabled state [ 161.396539][ T3417] tipc: Resetting bearer [ 161.469474][ T3417] dvmrp1 (unregistering): left allmulticast mode [ 161.479005][ T3417] tipc: Disabling bearer [ 161.509611][ T3417] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 161.522236][ T3417] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 161.533286][ T3417] bond0 (unregistering): Released all slaves [ 161.543606][T18605] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 161.554016][T18605] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 161.564470][T18760] tipc: Enabling of bearer rejected, failed to enable media [ 161.575170][T18765] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6791'. [ 161.598958][ T3417] tipc: Left network mode [ 161.610459][T18605] team0: Port device team_slave_0 added [ 161.619608][ T3417] hsr_slave_0: left promiscuous mode [ 161.636357][ T3417] hsr_slave_1: left promiscuous mode [ 161.673783][ T3417] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 161.681926][ T3417] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 161.718351][ T3417] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 161.724426][T18791] loop0: detected capacity change from 0 to 512 [ 161.725775][ T3417] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 161.752231][ T3417] veth1_macvtap: left promiscuous mode [ 161.757826][ T3417] veth0_macvtap: left promiscuous mode [ 161.763400][ T3417] veth1_vlan: left promiscuous mode [ 161.769222][ T3417] veth0_vlan: left allmulticast mode [ 161.774628][ T3417] veth0_vlan: left promiscuous mode [ 161.791749][T18791] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 161.812439][T18791] ext4 filesystem being mounted at /1417/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 161.842525][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 161.884089][ T3417] pimreg (unregistering): left allmulticast mode [ 161.889143][T18814] loop0: detected capacity change from 0 to 512 [ 161.898838][T18814] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 161.930403][ T3417] team0 (unregistering): Port device vlan0 removed [ 161.942049][T18814] EXT4-fs (loop0): 1 truncate cleaned up [ 161.948890][T18814] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 161.983404][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.993061][ T3417] team0 (unregistering): Port device team_slave_1 removed [ 162.008241][ T3417] team0 (unregistering): Port device team_slave_0 removed [ 162.059844][T18605] team0: Port device team_slave_1 added [ 162.095943][T18832] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6824'. [ 162.115221][T18605] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 162.122225][T18605] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 162.148828][T18605] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 162.182520][T18605] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 162.190072][T18605] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 162.216342][T18605] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 162.295279][T18605] hsr_slave_0: entered promiscuous mode [ 162.303491][T18605] hsr_slave_1: entered promiscuous mode [ 162.310663][T18605] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 162.321165][T18605] Cannot create hsr debugfs directory [ 162.369176][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.376607][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.384725][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.392160][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.399752][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.407837][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.414239][T18885] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6834'. [ 162.415210][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.415233][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.439667][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.444665][T18887] loop5: detected capacity change from 0 to 512 [ 162.447291][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.460937][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.468931][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.476314][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.483715][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.491165][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.493021][T18887] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 162.498641][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.498666][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.498727][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.498748][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.498807][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.498830][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.498900][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.498922][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.498945][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.498999][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.499023][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.499046][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.499084][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.499106][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.499128][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.499162][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.499182][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.499204][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.514095][T18887] ext4 filesystem being mounted at /463/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 162.519715][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.664918][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.672305][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.679747][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.687801][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.695189][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.702578][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.709979][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.717896][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.725275][ T3451] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 162.733213][ T3451] hid-generic 0000:0000:0000.0007: hidraw0: HID v0.00 Device [syz0] on syz0 [ 162.760449][T12684] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 162.873342][T18605] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 162.895016][T18605] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 162.954894][T18605] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 162.974888][T18605] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 163.025655][T18605] 8021q: adding VLAN 0 to HW filter on device bond0 [ 163.037119][T18605] 8021q: adding VLAN 0 to HW filter on device team0 [ 163.062577][ T56] bridge0: port 1(bridge_slave_0) entered blocking state [ 163.069684][ T56] bridge0: port 1(bridge_slave_0) entered forwarding state [ 163.085137][ T56] bridge0: port 2(bridge_slave_1) entered blocking state [ 163.092253][ T56] bridge0: port 2(bridge_slave_1) entered forwarding state [ 163.124243][ T3417] IPVS: stop unused estimator thread 0... [ 163.192756][T18605] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 163.210917][T18941] loop6: detected capacity change from 0 to 4096 [ 163.223617][T18960] netlink: 732 bytes leftover after parsing attributes in process `syz.0.6860'. [ 163.232719][T18960] netlink: 732 bytes leftover after parsing attributes in process `syz.0.6860'. [ 163.293503][T18941] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 163.328066][T18979] loop0: detected capacity change from 0 to 512 [ 163.363670][T12704] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 163.390439][T18979] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 163.407902][T18979] ext4 filesystem being mounted at /1432/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 163.438601][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 163.463401][T18605] veth0_vlan: entered promiscuous mode [ 163.475986][T18605] veth1_vlan: entered promiscuous mode [ 163.498982][T18605] veth0_macvtap: entered promiscuous mode [ 163.531038][T18605] veth1_macvtap: entered promiscuous mode [ 163.580683][T18605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 163.591778][T18605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 163.601641][T18605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 163.612163][T18605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 163.622939][T18605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 163.633426][T18605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 163.643325][T18605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 163.654366][T18605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 163.673979][T18605] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 163.685135][T18605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 163.695686][T18605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 163.705685][T18605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 163.716697][T18605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 163.726599][T18605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 163.737079][T18605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 163.746880][T18605] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 163.757905][T18605] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 163.772270][T18605] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 163.791783][T18605] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 163.801124][T18605] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 163.809870][T18605] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 163.818725][T18605] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 163.889083][T19049] loop6: detected capacity change from 0 to 1024 [ 163.912340][T19049] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 164.006266][T12704] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.083300][T19090] loop0: detected capacity change from 0 to 128 [ 164.164315][T19105] netlink: 165 bytes leftover after parsing attributes in process `syz.6.6899'. [ 164.230418][T19119] loop6: detected capacity change from 0 to 512 [ 164.249013][T19119] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 164.260793][ T29] kauditd_printk_skb: 55 callbacks suppressed [ 164.260805][ T29] audit: type=1400 audit(1730212220.047:16059): avc: denied { create } for pid=19122 comm="syz.1.6907" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 164.289899][T19119] EXT4-fs (loop6): 1 truncate cleaned up [ 164.295922][T19119] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 164.296240][ T29] audit: type=1400 audit(1730212220.047:16060): avc: denied { bind } for pid=19122 comm="syz.1.6907" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 164.351301][T19119] EXT4-fs error (device loop6): ext4_readdir:261: inode #2: block 13: comm syz.6.6906: path /569/file1: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967042, rec_len=127, size=1024 fake=1 [ 164.364697][T19134] loop7: detected capacity change from 0 to 512 [ 164.393470][T19134] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 164.454180][T19134] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 164.470683][ T29] audit: type=1400 audit(1730212220.237:16061): avc: denied { checkpoint_restore } for pid=19150 comm="syz.0.6917" capability=40 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 164.495574][T12704] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.511872][T19134] ext4 filesystem being mounted at /8/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 164.589767][T18605] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.649268][T19175] loop6: detected capacity change from 0 to 1024 [ 164.654211][T19181] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 164.669387][T19175] EXT4-fs: Ignoring removed orlov option [ 164.669421][T19175] EXT4-fs: Ignoring removed nomblk_io_submit option [ 164.715213][T19175] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 164.807309][T19211] netlink: 20 bytes leftover after parsing attributes in process `syz.5.6936'. [ 164.812096][T12704] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.824503][ T29] audit: type=1400 audit(1730212220.607:16062): avc: denied { write } for pid=19210 comm="syz.1.6935" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 164.913316][T19226] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=61 sclass=netlink_xfrm_socket pid=19226 comm=syz.6.6934 [ 164.965649][T19238] netlink: 16 bytes leftover after parsing attributes in process `syz.6.6934'. [ 165.098526][T19264] smc: net device lo applied user defined pnetid SYZ2 [ 165.153357][T19269] loop0: detected capacity change from 0 to 1024 [ 165.188370][T19269] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 165.217693][T19282] netlink: 40 bytes leftover after parsing attributes in process `syz.5.6965'. [ 165.235714][T19286] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6967'. [ 165.303241][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.321936][T19302] netlink: 140 bytes leftover after parsing attributes in process `syz.5.6973'. [ 165.357431][T19304] loop6: detected capacity change from 0 to 128 [ 165.364552][T19304] EXT4-fs: dax option not supported [ 165.447361][T19320] loop7: detected capacity change from 0 to 512 [ 165.463544][T19320] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c118, mo2=0002] [ 165.473839][T19320] EXT4-fs (loop7): failed to initialize system zone (-117) [ 165.482012][T19320] EXT4-fs (loop7): mount failed [ 165.502208][ T29] audit: type=1400 audit(1730212221.287:16063): avc: denied { connect } for pid=19331 comm="syz.0.6998" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 165.536406][T19334] loop0: detected capacity change from 0 to 512 [ 165.547421][T19334] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 165.581470][T19334] EXT4-fs (loop0): 1 truncate cleaned up [ 165.592221][T19334] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 165.636292][T19334] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.6988: corrupted in-inode xattr: overlapping e_value [ 165.676996][T19334] EXT4-fs (loop0): Remounting filesystem read-only [ 165.684171][T19334] EXT4-fs warning (device loop0): ext4_xattr_set_entry:1772: inode #15: comm syz.0.6988: unable to update i_inline_off [ 165.721793][ T29] audit: type=1400 audit(1730212221.507:16064): avc: denied { create } for pid=19352 comm="syz.7.6996" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_dnrt_socket permissive=1 [ 165.777732][ T29] audit: type=1400 audit(1730212221.537:16065): avc: denied { write } for pid=19358 comm="syz.5.6999" name="urandom" dev="devtmpfs" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:urandom_device_t tclass=chr_file permissive=1 [ 165.779772][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.898689][ T29] audit: type=1326 audit(1730212221.667:16066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19374 comm="syz.5.7008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2dc3ee719 code=0x7ffc0000 [ 165.922312][ T29] audit: type=1326 audit(1730212221.667:16067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19374 comm="syz.5.7008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb2dc3ee719 code=0x7ffc0000 [ 165.946500][ T29] audit: type=1326 audit(1730212221.677:16068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19374 comm="syz.5.7008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fb2dc3ee719 code=0x7ffc0000 [ 166.034034][T19400] loop6: detected capacity change from 0 to 1024 [ 166.103348][T19400] EXT4-fs: Ignoring removed oldalloc option [ 166.126998][T19400] EXT4-fs (loop6): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 166.184339][T19400] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 166.235121][T12704] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 166.246150][T19442] netlink: 'syz.7.7041': attribute type 3 has an invalid length. [ 166.277139][T19446] syz.0.7043[19446] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 166.277201][T19446] syz.0.7043[19446] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 166.296980][T19446] syz.0.7043[19446] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 166.361358][T19457] SELinux: security_context_str_to_sid (root) failed with errno=-22 [ 166.479087][T19484] loop5: detected capacity change from 0 to 512 [ 166.523714][T19484] EXT4-fs: Ignoring removed nomblk_io_submit option [ 166.540922][T19484] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended [ 166.555556][T19484] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a85ec028, mo2=0002] [ 166.564334][T19484] System zones: 0-2, 18-18, 34-34 [ 166.571554][T19484] EXT4-fs warning (device loop5): ext4_update_dynamic_rev:1138: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 166.589862][T19484] EXT4-fs (loop5): 1 truncate cleaned up [ 166.598134][T19484] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 166.625252][T19504] xt_ecn: cannot match TCP bits for non-tcp packets [ 166.625256][T12684] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 166.723882][T19524] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 166.757817][T19524] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 166.834940][T19537] tipc: Enabling of bearer rejected, failed to enable media [ 166.944778][T19556] netlink: 'syz.1.7088': attribute type 1 has an invalid length. [ 167.238756][T19598] loop7: detected capacity change from 0 to 4096 [ 167.245480][T19598] EXT4-fs: Ignoring removed nomblk_io_submit option [ 167.267013][T19609] tap0: tun_chr_ioctl cmd 1074025676 [ 167.272503][T19609] tap0: owner set to 0 [ 167.278076][T19598] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 167.290582][T19612] IPVS: set_ctl: invalid protocol: 255 172.30.1.6:20000 [ 167.309146][T19598] EXT4-fs error (device loop7): ext4_do_update_inode:5121: inode #15: comm syz.7.7099: corrupted inode contents [ 167.326853][T19598] EXT4-fs error (device loop7): ext4_dirty_inode:5984: inode #15: comm syz.7.7099: mark_inode_dirty error [ 167.352893][T19598] EXT4-fs error (device loop7): ext4_do_update_inode:5121: inode #15: comm syz.7.7099: corrupted inode contents [ 167.382276][T19598] EXT4-fs error (device loop7): __ext4_ext_dirty:207: inode #15: comm syz.7.7099: mark_inode_dirty error [ 167.397546][T19598] EXT4-fs error (device loop7): ext4_do_update_inode:5121: inode #15: comm syz.7.7099: corrupted inode contents [ 167.425805][T19598] EXT4-fs error (device loop7): __ext4_ext_dirty:207: inode #15: comm syz.7.7099: mark_inode_dirty error [ 167.459412][T19598] EXT4-fs error (device loop7): ext4_do_update_inode:5121: inode #15: comm syz.7.7099: corrupted inode contents [ 167.486171][T19598] EXT4-fs error (device loop7): ext4_truncate:4208: inode #15: comm syz.7.7099: mark_inode_dirty error [ 167.523010][T19598] EXT4-fs error (device loop7): ext4_evict_inode:267: comm syz.7.7099: couldn't truncate inode 15 (err -117) [ 167.569902][T18605] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 167.822100][T19689] tap0: tun_chr_ioctl cmd 35108 [ 167.924954][T19695] loop6: detected capacity change from 0 to 2048 [ 167.941313][T19695] EXT4-fs: Ignoring removed oldalloc option [ 168.039822][T19695] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 168.059710][T19695] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 168.125115][T19716] pimreg3: entered allmulticast mode [ 168.209732][T12704] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 168.457771][T19738] netdevsim netdevsim5 netdevsim0: entered promiscuous mode [ 168.729632][T19769] __nla_validate_parse: 4 callbacks suppressed [ 168.729647][T19769] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7174'. [ 168.853512][T19780] loop0: detected capacity change from 0 to 512 [ 168.870706][T19780] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 168.886815][T19780] ext4 filesystem being mounted at /1490/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 168.927904][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 168.941641][T19789] netlink: 48 bytes leftover after parsing attributes in process `syz.1.7182'. [ 169.019285][T19799] bridge: RTM_NEWNEIGH with invalid state 0x0 [ 169.045354][T19805] netlink: 132 bytes leftover after parsing attributes in process `syz.6.7190'. [ 169.081950][T19809] loop0: detected capacity change from 0 to 1024 [ 169.086339][T19813] loop6: detected capacity change from 0 to 512 [ 169.109201][T19809] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 169.123486][T19813] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 169.143224][T19813] ext4 filesystem being mounted at /626/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 169.159682][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 169.180484][T12704] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 169.255908][T19826] loop7: detected capacity change from 0 to 512 [ 169.291605][T19826] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode [ 169.325092][T19832] loop0: detected capacity change from 0 to 512 [ 169.339228][T19826] EXT4-fs (loop7): 1 truncate cleaned up [ 169.356376][T19826] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 169.380132][T19832] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 169.406980][T19832] EXT4-fs (loop0): 1 truncate cleaned up [ 169.413667][T19832] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 169.440169][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 169.451066][T19826] EXT4-fs error (device loop7): ext4_readdir:261: inode #2: block 13: comm syz.7.7198: path /65/file1: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967042, rec_len=127, size=1024 fake=1 [ 169.522826][T18605] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 169.650898][T19869] netlink: 16402 bytes leftover after parsing attributes in process `syz.7.7209'. [ 169.666602][T19857] netlink: 16402 bytes leftover after parsing attributes in process `syz.7.7209'. [ 169.721531][T19884] syz.1.7221[19884] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 169.721706][T19884] syz.1.7221[19884] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 169.733481][T19884] syz.1.7221[19884] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 169.736402][T19885] loop7: detected capacity change from 0 to 128 [ 169.789093][T19885] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 169.802154][T19885] ext4 filesystem being mounted at /67/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 169.814966][ T29] kauditd_printk_skb: 102 callbacks suppressed [ 169.815028][ T29] audit: type=1400 audit(1730212225.597:16171): avc: denied { create } for pid=19883 comm="syz.7.7224" name="encrypted_dir" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 169.844738][T18605] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 169.941235][ T29] audit: type=1326 audit(1730212225.727:16172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19915 comm="syz.7.7239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cebe0e719 code=0x7ffc0000 [ 169.964924][ T29] audit: type=1326 audit(1730212225.727:16173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19915 comm="syz.7.7239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cebe0e719 code=0x7ffc0000 [ 169.989269][ T29] audit: type=1326 audit(1730212225.727:16174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19915 comm="syz.7.7239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f0cebe0e719 code=0x7ffc0000 [ 170.012709][ T29] audit: type=1326 audit(1730212225.727:16175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19915 comm="syz.7.7239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cebe0e719 code=0x7ffc0000 [ 170.275488][ T29] audit: type=1400 audit(1730212226.057:16176): avc: denied { accept } for pid=19938 comm="syz.7.7248" laddr=::1 lport=65532 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 170.380372][T19962] loop5: detected capacity change from 0 to 512 [ 170.386918][T19962] EXT4-fs: Ignoring removed mblk_io_submit option [ 170.411396][T19962] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 170.432283][ T29] audit: type=1400 audit(1730212226.217:16177): avc: denied { setopt } for pid=19968 comm="syz.7.7260" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 170.468146][T12684] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 170.492224][ T29] audit: type=1400 audit(1730212226.277:16178): avc: denied { bind } for pid=19972 comm="syz.6.7262" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 170.585017][T19980] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7268'. [ 170.663944][T20006] loop0: detected capacity change from 0 to 512 [ 170.670760][T20006] EXT4-fs: Ignoring removed mblk_io_submit option [ 170.693864][T20006] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 170.713496][T20006] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002] [ 170.730308][T20009] loop5: detected capacity change from 0 to 1024 [ 170.737133][T20006] System zones: 1-12 [ 170.744971][T20006] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.7277: corrupted in-inode xattr: e_value size too large [ 170.762164][T20006] EXT4-fs error (device loop0): ext4_orphan_get:1393: comm syz.0.7277: couldn't read orphan inode 15 (err -117) [ 170.779834][T20006] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 170.802123][ T29] audit: type=1400 audit(1730212226.587:16179): avc: denied { create } for pid=20015 comm="syz.6.7285" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 170.828726][ T29] audit: type=1400 audit(1730212226.587:16180): avc: denied { setattr } for pid=20015 comm="syz.6.7285" name="file0" dev="tmpfs" ino=3395 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 170.834497][T20009] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 170.890606][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 170.890819][T12684] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 171.029340][T20058] netlink: 16 bytes leftover after parsing attributes in process `syz.5.7298'. [ 171.038412][T20058] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7298'. [ 171.044935][T20060] loop0: detected capacity change from 0 to 128 [ 171.056897][T20060] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 171.075143][T20060] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 171.101176][ T50] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 171.195006][T20075] sg_write: process 1158 (syz.5.7310) changed security contexts after opening file descriptor, this is not allowed. [ 171.211399][T20075] program syz.5.7310 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 171.273678][T20085] netlink: 20 bytes leftover after parsing attributes in process `syz.1.7315'. [ 171.450295][T20114] loop6: detected capacity change from 0 to 764 [ 171.462248][T20112] loop7: detected capacity change from 0 to 764 [ 171.469647][T20115] IPVS: sync thread started: state = MASTER, mcast_ifn = sit0, syncid = 0, id = 0 [ 171.662747][T20143] netlink: 'syz.0.7342': attribute type 1 has an invalid length. [ 171.935714][T20158] loop5: detected capacity change from 0 to 256 [ 172.086886][T20166] netlink: 'syz.5.7351': attribute type 3 has an invalid length. [ 173.235567][T20221] loop6: detected capacity change from 0 to 256 [ 173.425275][T20244] 9pnet_fd: Insufficient options for proto=fd [ 173.459553][T20250] loop0: detected capacity change from 0 to 1024 [ 173.479537][T20250] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 173.491524][T20257] program syz.7.7393 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 173.590785][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 173.999006][T20295] netlink: 'syz.6.7404': attribute type 1 has an invalid length. [ 174.059883][T20301] netlink: 16 bytes leftover after parsing attributes in process `syz.6.7407'. [ 174.068908][T20301] netlink: 184 bytes leftover after parsing attributes in process `syz.6.7407'. [ 174.126030][T20301] netlink: 24 bytes leftover after parsing attributes in process `syz.6.7407'. [ 174.322822][T20326] netlink: 2 bytes leftover after parsing attributes in process `syz.7.7419'. [ 174.362705][T20329] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7420'. [ 174.686789][T20358] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 174.698019][T20358] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 174.707848][T20358] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 174.718300][T20358] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 174.728756][T20358] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 174.739191][T20358] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 174.749002][T20358] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 174.760062][T20358] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 174.769877][T20358] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 174.780321][T20358] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 174.792594][T20358] vlan2: entered promiscuous mode [ 174.797685][T20358] batadv_slave_1: entered promiscuous mode [ 174.803627][T20358] vlan2: entered allmulticast mode [ 174.808760][T20358] batadv_slave_1: entered allmulticast mode [ 174.979264][T20366] loop5: detected capacity change from 0 to 512 [ 174.999660][T20368] loop7: detected capacity change from 0 to 128 [ 175.010837][T20366] EXT4-fs error (device loop5): ext4_xattr_block_get:596: inode #2: comm syz.5.7437: corrupted xattr block 255: invalid header [ 175.020454][T20368] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 175.036490][T20368] ext4 filesystem being mounted at /112/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 175.047396][T20366] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117 [ 175.077933][T20366] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 175.090673][T20366] EXT4-fs error (device loop5): ext4_xattr_block_get:596: inode #2: comm syz.5.7437: corrupted xattr block 255: invalid header [ 175.117078][T20366] SELinux: (dev loop5, type ext4) getxattr errno 117 [ 175.117145][T18605] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 175.126850][T20373] netlink: 16 bytes leftover after parsing attributes in process `syz.6.7440'. [ 175.142774][T20366] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 175.192825][T20377] bpf: Bad value for 'gid' [ 175.194257][ T29] kauditd_printk_skb: 63 callbacks suppressed [ 175.194270][ T29] audit: type=1400 audit(1730212230.977:16244): avc: denied { create } for pid=20376 comm="syz.6.7441" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 175.224337][ T29] audit: type=1400 audit(1730212230.977:16245): avc: denied { getopt } for pid=20376 comm="syz.6.7441" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 175.244677][ T29] audit: type=1400 audit(1730212230.987:16246): avc: denied { read } for pid=20378 comm="syz.7.7442" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 175.268689][ T29] audit: type=1400 audit(1730212230.987:16247): avc: denied { open } for pid=20378 comm="syz.7.7442" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 175.292706][ T29] audit: type=1400 audit(1730212230.987:16248): avc: denied { ioctl } for pid=20378 comm="syz.7.7442" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x937e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 175.358832][ T29] audit: type=1326 audit(1730212231.147:16249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20382 comm="syz.7.7444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cebe0e719 code=0x7ffc0000 [ 175.382997][ T29] audit: type=1326 audit(1730212231.147:16250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20382 comm="syz.7.7444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cebe0e719 code=0x7ffc0000 [ 175.426739][T20383] loop7: detected capacity change from 0 to 512 [ 175.456455][ T29] audit: type=1326 audit(1730212231.147:16251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20382 comm="syz.7.7444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0cebe0e719 code=0x7ffc0000 [ 175.480718][ T29] audit: type=1326 audit(1730212231.147:16252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20382 comm="syz.7.7444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f0cebe0e753 code=0x7ffc0000 [ 175.504462][ T29] audit: type=1326 audit(1730212231.147:16253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20382 comm="syz.7.7444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f0cebe0d1ff code=0x7ffc0000 [ 175.551922][T20383] ext4 filesystem being mounted at /115/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 175.669484][T20408] loop6: detected capacity change from 0 to 1024 [ 175.785175][T20419] loop0: detected capacity change from 0 to 1024 [ 175.819317][T20419] EXT4-fs: Ignoring removed orlov option [ 175.825015][T20419] EXT4-fs: Ignoring removed nomblk_io_submit option [ 176.140161][T20438] bridge1: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 176.294014][T20451] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 176.485737][T20481] netlink: 132 bytes leftover after parsing attributes in process `syz.6.7476'. [ 176.701704][T20507] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0) [ 176.713861][T20507] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:1) [ 176.725813][T20507] bridge_slave_0: default FDB implementation only supports local addresses [ 176.764691][T20511] nicvf0: tun_chr_ioctl cmd 2148553947 [ 177.098053][T20562] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7502'. [ 177.182210][T20576] program syz.0.7507 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 177.197240][T20574] bridge0: port 1(bridge_slave_0) entered disabled state [ 177.674903][T20621] loop0: detected capacity change from 0 to 2048 [ 177.684173][T20634] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7520'. [ 177.875939][T20660] loop6: detected capacity change from 0 to 128 [ 177.903167][T20662] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7529'. [ 177.914852][T20660] FAT-fs (loop6): error, invalid access to FAT (entry 0x0f000000) [ 177.923469][T20660] FAT-fs (loop6): Filesystem has been set read-only [ 177.981461][T20670] ALSA: seq fatal error: cannot create timer (-19) [ 178.216171][T20703] loop5: detected capacity change from 0 to 128 [ 178.231017][T20703] ext4 filesystem being mounted at /617/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 178.295163][T20703] EXT4-fs warning (device loop5): ext4_group_extend:1862: can't shrink FS - resize aborted [ 178.463393][T20720] loop7: detected capacity change from 0 to 512 [ 178.479950][T20720] ext4 filesystem being mounted at /129/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 178.674445][T20738] loop0: detected capacity change from 0 to 512 [ 178.694654][T20742] loop7: detected capacity change from 0 to 1024 [ 178.697554][T20738] EXT4-fs: Ignoring removed bh option [ 178.718827][T20742] EXT4-fs: Ignoring removed nomblk_io_submit option [ 178.726006][T20738] EXT4-fs (loop0): can't mount with data=, fs mounted w/o journal [ 178.744378][T20742] EXT4-fs (loop7): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 178.880228][T20752] Invalid ELF header magic: != ELF [ 178.893793][T20742] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 179.076463][T20769] __nla_validate_parse: 2 callbacks suppressed [ 179.076479][T20769] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7570'. [ 179.104821][T20771] xt_CT: You must specify a L4 protocol and not use inversions on it [ 179.282762][ T3016] udevd[3016]: worker [3487] terminated by signal 33 (Unknown signal 33) [ 179.299262][T20789] netlink: 10 bytes leftover after parsing attributes in process `syz.7.7579'. [ 179.395799][T20803] netlink: 104 bytes leftover after parsing attributes in process `syz.7.7585'. [ 179.460411][T20807] syzkaller0: tun_chr_ioctl cmd 2147767517 [ 179.549703][T20823] syz.7.7595[20823] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 179.549768][T20823] syz.7.7595[20823] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 179.570920][T20823] syz.7.7595[20823] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 179.584314][T20825] netlink: 16 bytes leftover after parsing attributes in process `syz.5.7596'. [ 179.618283][T20827] sctp: [Deprecated]: syz.0.7597 (pid 20827) Use of int in max_burst socket option deprecated. [ 179.618283][T20827] Use struct sctp_assoc_value instead [ 179.638065][T20823] Invalid ELF header magic: != ELF [ 179.688265][T20835] netlink: 'syz.5.7600': attribute type 26 has an invalid length. [ 179.973906][T20861] loop6: detected capacity change from 0 to 8192 [ 179.996411][T20861] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 180.083887][T20888] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7626'. [ 180.092831][T20888] netlink: 96 bytes leftover after parsing attributes in process `syz.5.7626'. [ 180.124803][T20896] syz.7.7630[20896] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 180.124940][T20896] syz.7.7630[20896] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 180.137661][T20896] syz.7.7630[20896] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 180.210757][T20904] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 180.251694][T20907] loop5: detected capacity change from 0 to 512 [ 180.289815][T20907] __quota_error: 94 callbacks suppressed [ 180.289831][T20907] Quota error (device loop5): v2_read_file_info: Free block number 1 out of range (1, 6). [ 180.313283][T20907] EXT4-fs warning (device loop5): ext4_enable_quotas:7097: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 180.328894][T20907] EXT4-fs (loop5): mount failed [ 180.369069][T20925] syz.5.7642[20925] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 180.369217][T20925] syz.5.7642[20925] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 180.383715][T20927] netlink: 'syz.6.7643': attribute type 1 has an invalid length. [ 180.418871][T20929] netlink: 'syz.5.7642': attribute type 21 has an invalid length. [ 180.427035][T20929] netlink: 156 bytes leftover after parsing attributes in process `syz.5.7642'. [ 180.450288][T20925] syz.5.7642[20925] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 180.627134][ T29] audit: type=1400 audit(1730212236.397:16348): avc: denied { mount } for pid=20940 comm="syz.7.7649" name="/" dev="configfs" ino=2112 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1 [ 180.662857][ T29] audit: type=1400 audit(1730212236.397:16349): avc: denied { read } for pid=20940 comm="syz.7.7649" name="/" dev="configfs" ino=2112 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 180.685617][ T29] audit: type=1400 audit(1730212236.397:16350): avc: denied { open } for pid=20940 comm="syz.7.7649" path="/161/file0" dev="configfs" ino=2112 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 180.727669][ T29] audit: type=1400 audit(1730212236.507:16351): avc: denied { unmount } for pid=18605 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1 [ 180.803020][T20955] loop7: detected capacity change from 0 to 1024 [ 180.979001][T20959] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7657'. [ 181.199926][ T29] audit: type=1400 audit(1730212236.987:16352): avc: denied { nlmsg_write } for pid=20974 comm="syz.7.7665" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 181.247767][ T29] audit: type=1400 audit(1730212237.037:16353): avc: denied { getopt } for pid=20973 comm="syz.0.7664" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 181.387108][T20985] netlink: 28 bytes leftover after parsing attributes in process `syz.7.7668'. [ 181.452224][T20994] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7673'. [ 181.537322][T20998] binfmt_misc: register: failed to install interpreter file ./file0 [ 181.644993][T21005] IPv6: sit1: Disabled Multicast RS [ 181.658937][T21005] sit1: entered allmulticast mode [ 181.676912][ T29] audit: type=1326 audit(1730212237.457:16354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21009 comm="syz.6.7682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f735fcfe719 code=0x7ffc0000 [ 181.701102][ T29] audit: type=1326 audit(1730212237.457:16355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21009 comm="syz.6.7682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f735fcfe719 code=0x7ffc0000 [ 181.730866][T21012] netlink: 'syz.0.7681': attribute type 10 has an invalid length. [ 181.742219][ T29] audit: type=1326 audit(1730212237.517:16356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21009 comm="syz.6.7682" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f735fcfe719 code=0x7ffc0000 [ 181.995726][T21033] loop5: detected capacity change from 0 to 4096 [ 182.020234][T21033] EXT4-fs: Ignoring removed nomblk_io_submit option [ 182.243940][T21075] IPv6: NLM_F_CREATE should be specified when creating new route [ 182.545211][T21107] loop7: detected capacity change from 0 to 2048 [ 182.611357][T21115] loop7: detected capacity change from 0 to 512 [ 182.628185][T21115] EXT4-fs (loop7): revision level too high, forcing read-only mode [ 182.636173][T21115] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e028, mo2=0002] [ 182.644938][T21115] System zones: 0-1, 15-15, 18-18, 34-34 [ 182.653308][T21115] EXT4-fs (loop7): orphan cleanup on readonly fs [ 182.659748][T21115] EXT4-fs warning (device loop7): ext4_enable_quotas:7097: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 182.675024][T21115] EXT4-fs (loop7): Cannot turn on quotas: error -22 [ 182.684806][T21115] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.7727: bg 0: block 40: padding at end of block bitmap is not set [ 182.702357][T21115] EXT4-fs (loop7): Remounting filesystem read-only [ 182.708992][T21115] EXT4-fs (loop7): 1 truncate cleaned up [ 182.715132][T21115] SELinux: (dev loop7, type ext4) getxattr errno 5 [ 182.759804][T21130] syz.6.7734[21130] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 182.775372][T21134] loop0: detected capacity change from 0 to 1024 [ 182.862800][T21140] loop0: detected capacity change from 0 to 1024 [ 182.872438][T21140] EXT4-fs: Ignoring removed orlov option [ 182.878752][T21140] EXT4-fs: Ignoring removed nomblk_io_submit option [ 183.093829][T21152] program syz.5.7742 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 183.118215][T21154] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 183.273119][T21167] loop0: detected capacity change from 0 to 512 [ 183.290530][T21167] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 183.325828][T21167] EXT4-fs (loop0): 1 truncate cleaned up [ 183.410416][T21161] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 183.444968][T21161] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 183.515471][T21196] loop7: detected capacity change from 0 to 1024 [ 183.764365][T21222] program syz.0.7774 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 183.786969][T21224] loop0: detected capacity change from 0 to 128 [ 183.862239][T21231] vhci_hcd: default hub control req: 4008 v0000 i0000 l0 [ 184.229665][T21267] netlink: 'syz.0.7796': attribute type 5 has an invalid length. [ 184.319445][T21276] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 184.340781][T21276] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 184.679326][T21306] pimreg: entered allmulticast mode [ 184.698890][T21306] pimreg: left allmulticast mode [ 184.787479][T21296] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 184.816427][T21296] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 184.844672][T21311] __nla_validate_parse: 5 callbacks suppressed [ 184.844685][T21311] netlink: 28 bytes leftover after parsing attributes in process `syz.7.7815'. [ 184.916246][T21321] netlink: 256 bytes leftover after parsing attributes in process `syz.5.7820'. [ 185.154416][T21345] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7830'. [ 185.180137][T21347] netlink: 36 bytes leftover after parsing attributes in process `syz.7.7831'. [ 185.189868][T21347] netlink: 36 bytes leftover after parsing attributes in process `syz.7.7831'. [ 185.199918][T21347] netlink: 36 bytes leftover after parsing attributes in process `syz.7.7831'. [ 185.222098][T21347] netlink: 36 bytes leftover after parsing attributes in process `syz.7.7831'. [ 185.231104][T21347] netlink: 36 bytes leftover after parsing attributes in process `syz.7.7831'. [ 185.241510][T21347] netlink: 36 bytes leftover after parsing attributes in process `syz.7.7831'. [ 185.281573][T21347] netlink: 36 bytes leftover after parsing attributes in process `syz.7.7831'. [ 185.322971][ T29] kauditd_printk_skb: 56 callbacks suppressed [ 185.322986][ T29] audit: type=1326 audit(1730212241.107:16412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21362 comm="syz.7.7838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cebe0e719 code=0x7ffc0000 [ 185.369615][ T29] audit: type=1326 audit(1730212241.107:16413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21362 comm="syz.7.7838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cebe0e719 code=0x7ffc0000 [ 185.393326][ T29] audit: type=1326 audit(1730212241.107:16414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21362 comm="syz.7.7838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0cebe0e719 code=0x7ffc0000 [ 185.417530][ T29] audit: type=1326 audit(1730212241.117:16415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21362 comm="syz.7.7838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cebe0e719 code=0x7ffc0000 [ 185.441198][ T29] audit: type=1326 audit(1730212241.117:16416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21362 comm="syz.7.7838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cebe0e719 code=0x7ffc0000 [ 185.465471][ T29] audit: type=1326 audit(1730212241.117:16417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21362 comm="syz.7.7838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=79 compat=0 ip=0x7f0cebe0e719 code=0x7ffc0000 [ 185.489666][ T29] audit: type=1326 audit(1730212241.117:16418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21362 comm="syz.7.7838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cebe0e719 code=0x7ffc0000 [ 185.513303][ T29] audit: type=1326 audit(1730212241.137:16419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21362 comm="syz.7.7838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cebe0e719 code=0x7ffc0000 [ 185.554245][T21373] pimreg: entered allmulticast mode [ 185.562803][T21373] pimreg: left allmulticast mode [ 185.648234][T21379] loop0: detected capacity change from 0 to 1024 [ 185.669834][T21365] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 185.680860][ T29] audit: type=1400 audit(1730212241.467:16420): avc: denied { map } for pid=21378 comm="syz.0.7844" path="/1665/file1/bus" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 185.704310][T21365] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 185.713088][T21379] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 185.728644][T21379] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 16384 with max blocks 1 with error 28 [ 185.741178][T21379] EXT4-fs (loop0): This should not happen!! Data will be lost [ 185.741178][T21379] [ 185.750842][T21379] EXT4-fs (loop0): Total free blocks count 0 [ 185.756833][T21379] EXT4-fs (loop0): Free/Dirty block details [ 185.763335][T21379] EXT4-fs (loop0): free_blocks=68451041280 [ 185.769194][T21379] EXT4-fs (loop0): dirty_blocks=16 [ 185.774341][T21379] EXT4-fs (loop0): Block reservation details [ 185.780337][T21379] EXT4-fs (loop0): i_reserved_data_blocks=1 [ 186.031564][T21401] pimreg: entered allmulticast mode [ 186.041675][T21401] pimreg: left allmulticast mode [ 186.225684][T21399] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 186.235175][T21399] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 186.255046][T21420] loop7: detected capacity change from 0 to 2048 [ 186.269218][T21420] EXT4-fs: Ignoring removed orlov option [ 186.587156][T21447] Invalid ELF header magic: != ELF [ 186.761054][ T260] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 186.775294][T21443] chnl_net:caif_netlink_parms(): no params data found [ 186.835125][T21475] ALSA: seq fatal error: cannot create timer (-19) [ 186.851804][ T260] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 186.896971][ T29] audit: type=1400 audit(1730212242.677:16421): avc: denied { ioctl } for pid=21491 comm="syz.6.7889" path="socket:[61230]" dev="sockfs" ino=61230 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 186.922905][T21443] bridge0: port 1(bridge_slave_0) entered blocking state [ 186.930856][T21443] bridge0: port 1(bridge_slave_0) entered disabled state [ 186.938053][T21443] bridge_slave_0: entered allmulticast mode [ 186.945111][T21443] bridge_slave_0: entered promiscuous mode [ 186.952057][T21443] bridge0: port 2(bridge_slave_1) entered blocking state [ 186.959850][T21443] bridge0: port 2(bridge_slave_1) entered disabled state [ 186.967118][T21443] bridge_slave_1: entered allmulticast mode [ 186.973521][T21443] bridge_slave_1: entered promiscuous mode [ 186.986524][ T260] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 187.014589][T21443] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 187.025864][T21443] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 187.063757][ T260] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 187.105175][T21443] team0: Port device team_slave_0 added [ 187.115840][T21443] team0: Port device team_slave_1 added [ 187.139275][T21443] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 187.146240][T21443] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 187.172957][T21443] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 187.196317][T21443] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 187.203394][T21443] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 187.229419][T21443] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 187.256962][ T260] bridge_slave_1: left allmulticast mode [ 187.263268][ T260] bridge_slave_1: left promiscuous mode [ 187.269069][ T260] bridge0: port 2(bridge_slave_1) entered disabled state [ 187.279145][ T260] bridge_slave_0: left promiscuous mode [ 187.284828][ T260] bridge0: port 1(bridge_slave_0) entered disabled state [ 187.410373][ T260] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 187.420677][ T260] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 187.431569][ T260] bond0 (unregistering): Released all slaves [ 187.440722][ T260] bond1 (unregistering): Released all slaves [ 187.446997][T21516] ALSA: seq fatal error: cannot create timer (-19) [ 187.490165][ T260] tipc: Left network mode [ 187.500095][T21443] hsr_slave_0: entered promiscuous mode [ 187.506579][T21443] hsr_slave_1: entered promiscuous mode [ 187.514878][T21443] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 187.522906][T21443] Cannot create hsr debugfs directory [ 187.538259][ T260] hsr_slave_0: left promiscuous mode [ 187.547833][ T260] hsr_slave_1: left promiscuous mode [ 187.560566][ T260] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 187.568639][ T260] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 187.579191][ T260] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 187.586653][ T260] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 187.597317][ T260] veth1_to_bridge: left promiscuous mode [ 187.603149][ T260] veth1_macvtap: left promiscuous mode [ 187.609473][ T260] veth0_macvtap: left promiscuous mode [ 187.615030][ T260] veth1_vlan: left promiscuous mode [ 187.620339][ T260] veth0_vlan: left promiscuous mode [ 187.704453][ T260] team0 (unregistering): Port device team_slave_1 removed [ 187.714362][ T260] team0 (unregistering): Port device team_slave_0 removed [ 187.736600][ T260] vxcan1 (unregistering): left allmulticast mode [ 187.874301][T21443] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 187.897223][T21443] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 187.905744][T21443] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 187.926034][T21556] atomic_op ffff888104642128 conn xmit_atomic 0000000000000000 [ 187.935951][T21443] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 187.956561][T21560] ALSA: seq fatal error: cannot create timer (-19) [ 188.000336][T21443] 8021q: adding VLAN 0 to HW filter on device bond0 [ 188.031374][T21443] 8021q: adding VLAN 0 to HW filter on device team0 [ 188.057398][ T28] bridge0: port 1(bridge_slave_0) entered blocking state [ 188.064527][ T28] bridge0: port 1(bridge_slave_0) entered forwarding state [ 188.109336][ T28] bridge0: port 2(bridge_slave_1) entered blocking state [ 188.116447][ T28] bridge0: port 2(bridge_slave_1) entered forwarding state [ 188.152586][ T260] IPVS: stop unused estimator thread 0... [ 188.163588][T21443] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 188.198415][T21584] Invalid ELF header magic: != ELF [ 188.253159][T21443] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 188.311464][T21605] loop7: detected capacity change from 0 to 512 [ 188.337811][T21610] Invalid ELF header magic: != ELF [ 188.345553][T21605] EXT4-fs mount: 34 callbacks suppressed [ 188.345567][T21605] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 188.394679][T21605] ext4 filesystem being mounted at /234/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 188.451527][T18605] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 188.486950][T21631] atomic_op ffff88810fd24528 conn xmit_atomic 0000000000000000 [ 188.491844][T21632] loop5: detected capacity change from 0 to 512 [ 188.499700][T21443] veth0_vlan: entered promiscuous mode [ 188.514179][T21443] veth1_vlan: entered promiscuous mode [ 188.521644][T21632] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 188.526899][T21443] veth0_macvtap: entered promiscuous mode [ 188.537292][T21632] ext4 filesystem being mounted at /695/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 188.541272][T21443] veth1_macvtap: entered promiscuous mode [ 188.569262][T21443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 188.579742][T21443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 188.589645][T21443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 188.600083][T21443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 188.609986][T21443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 188.620434][T21443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 188.630337][T21443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 188.640847][T21443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 188.651983][T21443] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 188.661264][T21443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 188.668366][T12684] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 188.671771][T21443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 188.690639][T21443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 188.701105][T21443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 188.710929][T21443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 188.721408][T21443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 188.731244][T21443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 188.741732][T21443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 188.753126][T21443] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 188.759758][T21654] loop6: detected capacity change from 0 to 1024 [ 188.775929][T21654] EXT4-fs: Ignoring removed nomblk_io_submit option [ 188.778131][T21443] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 188.791974][T21443] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 188.800750][T21443] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 188.807858][T21654] EXT4-fs (loop6): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 188.810168][T21443] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 188.840729][T21661] loop7: detected capacity change from 0 to 512 [ 188.847333][T21661] EXT4-fs: Ignoring removed i_version option [ 188.856587][T21663] bridge0: port 2(bridge_slave_1) entered forwarding state [ 188.865583][T21654] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 188.867364][T21663] bridge0: port 2(bridge_slave_1) entered disabled state [ 188.889891][T21661] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 188.903579][T21661] ext4 filesystem being mounted at /240/w5T)`)YFnA@T<3ڂ$rcnHwC" -8 supports timestamps until 2038-01-19 (0x7fffffff) [ 188.905761][T21654] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 189.013452][T12704] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 189.016725][T18605] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 189.082668][T21689] netlink: 'syz.7.7963': attribute type 26 has an invalid length. [ 189.106745][T21697] bridge0: port 2(bridge_slave_1) entered forwarding state [ 189.118697][T21697] bridge0: port 2(bridge_slave_1) entered disabled state [ 239.007730][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 367.007232][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 370.987154][ C1] ================================================================== [ 370.995338][ C1] BUG: KCSAN: data-race in __tmigr_cpu_activate / tmigr_handle_remote [ 371.003483][ C1] [ 371.005789][ C1] write to 0xffff888237c205dc of 1 bytes by task 0 on cpu 0: [ 371.013143][ C1] __tmigr_cpu_activate+0x55/0x200 [ 371.018234][ C1] tmigr_cpu_activate+0x8a/0xc0 [ 371.023063][ C1] timer_clear_idle+0x28/0x100 [ 371.027808][ C1] tick_nohz_restart_sched_tick+0x22/0x110 [ 371.033601][ C1] tick_nohz_idle_exit+0xfe/0x1d0 [ 371.038656][ C1] do_idle+0x1ee/0x230 [ 371.042711][ C1] cpu_startup_entry+0x25/0x30 [ 371.047470][ C1] rest_init+0xef/0xf0 [ 371.051517][ C1] start_kernel+0x586/0x5e0 [ 371.055998][ C1] x86_64_start_reservations+0x2a/0x30 [ 371.061438][ C1] x86_64_start_kernel+0x9a/0xa0 [ 371.066369][ C1] common_startup_64+0x12c/0x137 [ 371.071318][ C1] [ 371.073624][ C1] read to 0xffff888237c205dc of 1 bytes by interrupt on cpu 1: [ 371.081142][ C1] tmigr_handle_remote+0x26e/0x940 [ 371.086232][ C1] run_timer_softirq+0x5f/0x70 [ 371.090979][ C1] handle_softirqs+0xbf/0x280 [ 371.095635][ C1] irq_exit_rcu+0x3e/0x90 [ 371.099943][ C1] sysvec_apic_timer_interrupt+0x73/0x80 [ 371.105558][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 371.111522][ C1] acpi_safe_halt+0x21/0x30 [ 371.116013][ C1] acpi_idle_do_entry+0x1d/0x30 [ 371.120853][ C1] acpi_idle_enter+0x96/0xb0 [ 371.125427][ C1] cpuidle_enter_state+0xc5/0x260 [ 371.130439][ C1] cpuidle_enter+0x40/0x70 [ 371.134850][ C1] do_idle+0x195/0x230 [ 371.138903][ C1] cpu_startup_entry+0x25/0x30 [ 371.143651][ C1] start_secondary+0x96/0xa0 [ 371.148220][ C1] common_startup_64+0x12c/0x137 [ 371.153142][ C1] [ 371.155441][ C1] value changed: 0x00 -> 0x01 [ 371.160115][ C1] [ 371.162415][ C1] Reported by Kernel Concurrency Sanitizer on: [ 371.168549][ C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.12.0-rc5-syzkaller-00005-ge42b1a9a2557 #0 [ 371.178863][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 371.188908][ C1] ==================================================================