last executing test programs: 2.310149332s ago: executing program 2 (id=1117): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={0x20, r2, 0x1, 0xfffffffe, 0x0, {}, [@TIPC_NLA_NODE={0x4b, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x20008010}, 0x4000004) 2.148944694s ago: executing program 2 (id=1119): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x1008a, &(0x7f00000000c0)={[{@nomblk_io_submit}, {@usrjquota, 0x22}, {@errors_continue}, {@noload}, {@mblk_io_submit}, {@grpjquota, 0x22}, {@errors_continue}, {@errors_remount}, {@jqfmt_vfsv1}]}, 0xfe, 0x455, &(0x7f0000000fc0)="$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") syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000)) 1.882842157s ago: executing program 0 (id=1127): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0a000000040000000600000003"], 0x50) close(0x3) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x49, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x20}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10) 1.831755747s ago: executing program 2 (id=1129): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x12, &(0x7f0000000100)=0x7b, 0x4) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10) sendto$inet(r0, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf746bec66ba", 0x994b6e03113064ae, 0x0, 0x0, 0x0) recvmsg(r0, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x437aba2}], 0x1, 0x0, 0x46, 0x407006}, 0x104) 1.806578998s ago: executing program 0 (id=1131): perf_event_open(0x0, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0x0) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00) sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0) perf_event_open(&(0x7f0000000300)={0x2, 0x80, 0x49, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_config_ext={0x80000001, 0xe}, 0x45ff5eb5c5b446aa, 0x2000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x9, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0) 1.401523702s ago: executing program 3 (id=1136): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000060000000000000000008500000007000000850000000e00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x10) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0) sendmsg$NFT_BATCH(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000180a0500000000000000000002000000300003802c00038014000100776732000000000000000000000100001400010076657468315f746f5f627269646765000900020073797a30000000000900010073797a300000000014000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x24040089}, 0x20008000) 1.304874154s ago: executing program 3 (id=1138): r0 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) fchdir(r0) open(&(0x7f0000000180)='./cgroup\x00', 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]}) add_key(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup\x00', 0x5bb981, 0x0) 918.910679ms ago: executing program 2 (id=1143): connect$inet(0xffffffffffffffff, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB="67a9fde500000000280012800a00010076786c616e"], 0x3}}, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc) splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0) 879.086549ms ago: executing program 0 (id=1145): r0 = socket$kcm(0x10, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x3e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18) sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)="d80000001c0081064e81f782db44b9040a1d08040000000000000aa1180002000607002603600e12080b0f0000810401a8001605200001400200000803604e0cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee422fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef5d2defd5ccae8d3fb7c27a1059ae31c60e2234d732", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0) 788.90628ms ago: executing program 4 (id=1147): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0xffffffffffffffff}, 0x18) r2 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r2, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)="d8000000180081054e81f782db44b904021d005c06007c09e8fe55a10a0015400600142603600e1208000b0000000401a8001600a400014009000200036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360d070100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0) 785.54501ms ago: executing program 0 (id=1148): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r2, 0x560a, &(0x7f0000000240)={0x19, 0x3d00, 0x1575}) 765.96169ms ago: executing program 4 (id=1149): r0 = socket(0x840000000002, 0x3, 0xfa) connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10) sendmmsg$inet(r0, &(0x7f0000005240), 0x4000095, 0x0) setsockopt$inet_opts(r0, 0x0, 0x4, 0x0, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=@newlink={0x34, 0x10, 0x437, 0x800000, 0x0, {0x0, 0x0, 0x0, 0x0, 0x4048b}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4001}, 0x0) 752.69499ms ago: executing program 0 (id=1150): syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@barrier}, {@debug}, {@noload}, {@mblk_io_submit}, {@commit={'commit', 0x3d, 0x5}}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x400}}]}, 0xfe, 0x471, &(0x7f00000008c0)="$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") chdir(&(0x7f0000000140)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000040)='./file3\x00', 0x143441, 0x0) openat(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', 0x105042, 0x0) r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8) 567.894012ms ago: executing program 4 (id=1151): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000200000000fcffffff18110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) mknod$loop(&(0x7f0000000080)='./file0\x00', 0x600a, 0x0) syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1018e58, &(0x7f0000000440)={[{@bsdgroups}, {@noblock_validity}, {@grpjquota}, {@init_itable_val={'init_itable', 0x3d, 0x6}}, {@debug}, {@errors_remount}]}, 0x1, 0x5fc, &(0x7f0000000600)="$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") bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x513, &(0x7f0000000c40)="$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") 491.991554ms ago: executing program 0 (id=1152): syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000140)='./file1\x00', 0x0, &(0x7f0000000180)=ANY=[@ANYRES64=0x0, @ANYRES16, @ANYRES16, @ANYRESHEX, @ANYRESHEX], 0x1, 0x11f4, &(0x7f0000001280)="$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") r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0) pwritev2(r0, &(0x7f00000015c0)=[{&(0x7f00000002c0)='\f', 0x1}], 0x1, 0xfffff, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r1, &(0x7f0000000180), 0x40010) 491.495633ms ago: executing program 1 (id=1153): r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000440)='kmem_cache_free\x00', r1}, 0x10) r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x3, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f271a76d2608064c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) syz_clone3(&(0x7f0000001240)={0x2d000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000001200)=[0x0], 0x1}, 0x58) 481.186584ms ago: executing program 3 (id=1154): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18) r1 = socket$inet6_sctp(0xa, 0x801, 0x84) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x3}, 0x8) sendto$inet6(r1, &(0x7f0000000000)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x6}, 0x3}, 0x1c) shutdown(r1, 0x1) 326.191336ms ago: executing program 3 (id=1155): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x800810, &(0x7f0000000040)={[{@nobh}, {@nojournal_checksum}]}, 0xff, 0x23f, &(0x7f0000000540)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cpuset.effective_mems\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) ftruncate(r0, 0x81ff) 234.493027ms ago: executing program 4 (id=1156): r0 = syz_io_uring_setup(0x49a, &(0x7f0000000400)={0x0, 0x79af, 0x10, 0x0, 0x24e}, &(0x7f0000000340)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='kfree\x00', r3}, 0x10) syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_TIMEOUT={0xb, 0x1, 0x0, 0x0, 0x7, 0x0, 0x1, 0x4, 0x1}) io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0x0) 184.944447ms ago: executing program 1 (id=1157): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_TID_CONFIG(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x24, r2, 0xc4fc9e906872338b, 0x70bd2d, 0x0, {{0x15}, {@void, @void}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x4, 0x3, 0x0, 0x0}]}]}]}]}, 0x24}}, 0x0) 159.446398ms ago: executing program 1 (id=1158): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10) r2 = syz_open_dev$tty1(0xc, 0x4, 0x3) ioctl$KDENABIO(r2, 0x4b36) 108.568259ms ago: executing program 1 (id=1159): socket$kcm(0x10, 0x2, 0x0) r0 = socket(0x10, 0x80002, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c0000005e00679a3601ffc4910700004f78d4c1a0731cccff"], 0x1c}}, 0x0) recvmmsg$unix(r0, &(0x7f0000002380)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) 108.169228ms ago: executing program 4 (id=1160): syz_io_uring_setup(0x10e, &(0x7f0000000140), 0x0, 0x0) r0 = syz_io_uring_setup(0x4bca, &(0x7f0000000340)={0x0, 0xd65b, 0x8, 0x2, 0xfffffffd}, &(0x7f0000000300), &(0x7f00000001c0)) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000180)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0) io_uring_register$IORING_REGISTER_SYNC_CANCEL(r0, 0x18, &(0x7f0000000000)={0x0, 0xffffffffffffffff, 0x6, {0x1, 0x8000000000000001}, 0x54}, 0x1) 107.729639ms ago: executing program 1 (id=1162): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000003c0)='kmem_cache_free\x00', r1}, 0x18) r2 = shmget$private(0x0, 0x3000, 0x200, &(0x7f0000ffc000/0x3000)=nil) shmat(r2, &(0x7f000033b000/0x3000)=nil, 0x7000) 44.877399ms ago: executing program 3 (id=1163): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x18) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', 0x0}) sendto$packet(r1, &(0x7f0000000180)="10030600e0ff020004004788aa96a13bb100001100007fca1a00", 0x10608, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14) 44.449119ms ago: executing program 1 (id=1164): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) fsetxattr$security_capability(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0, 0x0) r2 = socket$vsock_stream(0x28, 0x1, 0x0) fgetxattr(r2, &(0x7f0000000000)=ANY=[], 0x0, 0x0) 44.160389ms ago: executing program 2 (id=1165): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r0) r1 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c) listen(r1, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000340)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x18, 0x6, 0x0, @remote, @local, {[], {{0x4e23, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x6, 0x2, 0x3, 0x0, 0x0, {[@mptcp=@ack={0x1e, 0x4}]}}}}}}}}, 0x0) 17.059339ms ago: executing program 3 (id=1166): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) syz_emit_ethernet(0x22, &(0x7f0000001b40)={@local, @multicast, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x2, 0x13, 0x14, 0x67, 0x0, 0x2, 0x6c, 0x0, @empty, @broadcast}}}}}, 0x0) 500.99µs ago: executing program 2 (id=1167): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth1_to_team\x00', 0x0}) bind$packet(r1, &(0x7f0000000280)={0x11, 0x0, r2, 0x1, 0x1, 0x6, @local}, 0x14) bind$packet(r1, &(0x7f0000000100)={0x11, 0x3}, 0x14) 0s ago: executing program 4 (id=1168): socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.swap.events\x00', 0x275a, 0x0) setsockopt$sock_attach_bpf(r0, 0x1, 0x2a, &(0x7f0000000100)=r2, 0x4) sendmsg$unix(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000180)="2f0359", 0x3}], 0x1, 0x0, 0x0, 0x800}, 0x20004011) recvmsg$unix(r0, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x10002) sendmsg$inet(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)="8b", 0x1}], 0x1}, 0x0) kernel console output (not intermixed with test programs): g over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 31.802732][ T3324] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 31.816416][ T3324] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 31.825596][ T3324] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 31.856107][ T3324] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 31.882134][ T3314] hsr_slave_0: entered promiscuous mode [ 31.891144][ T3314] hsr_slave_1: entered promiscuous mode [ 31.899595][ T3314] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 31.909736][ T3314] Cannot create hsr debugfs directory [ 31.990552][ T3324] hsr_slave_0: entered promiscuous mode [ 31.999630][ T3324] hsr_slave_1: entered promiscuous mode [ 32.008141][ T3324] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 32.018134][ T3324] Cannot create hsr debugfs directory [ 32.130231][ T3319] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 32.151259][ T3319] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 32.172525][ T3319] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 32.185620][ T3319] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 32.225807][ T3318] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 32.242342][ T3318] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 32.252256][ T3318] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 32.263355][ T3318] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 32.297313][ T3316] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 32.318066][ T3316] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 32.338976][ T3316] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 32.351311][ T3316] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 32.389320][ T3314] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 32.401748][ T3314] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 32.425706][ T3314] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 32.442479][ T3314] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 32.465953][ T3319] 8021q: adding VLAN 0 to HW filter on device bond0 [ 32.483661][ T3324] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 32.494936][ T3324] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 32.511278][ T3324] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 32.523902][ T3324] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 32.555690][ T3318] 8021q: adding VLAN 0 to HW filter on device bond0 [ 32.564949][ T3319] 8021q: adding VLAN 0 to HW filter on device team0 [ 32.600399][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 32.608741][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 32.620957][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 32.629285][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 32.655819][ T3316] 8021q: adding VLAN 0 to HW filter on device bond0 [ 32.667280][ T3318] 8021q: adding VLAN 0 to HW filter on device team0 [ 32.689458][ T312] bridge0: port 1(bridge_slave_0) entered blocking state [ 32.697931][ T312] bridge0: port 1(bridge_slave_0) entered forwarding state [ 32.718479][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 32.728283][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 32.744099][ T3316] 8021q: adding VLAN 0 to HW filter on device team0 [ 32.759553][ T3314] 8021q: adding VLAN 0 to HW filter on device bond0 [ 32.775026][ T312] bridge0: port 1(bridge_slave_0) entered blocking state [ 32.783760][ T312] bridge0: port 1(bridge_slave_0) entered forwarding state [ 32.798723][ T3324] 8021q: adding VLAN 0 to HW filter on device bond0 [ 32.830432][ T312] bridge0: port 2(bridge_slave_1) entered blocking state [ 32.838355][ T312] bridge0: port 2(bridge_slave_1) entered forwarding state [ 32.855217][ T3314] 8021q: adding VLAN 0 to HW filter on device team0 [ 32.874049][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 32.882299][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 32.895348][ T3324] 8021q: adding VLAN 0 to HW filter on device team0 [ 32.907681][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 32.917018][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 32.938085][ T312] bridge0: port 2(bridge_slave_1) entered blocking state [ 32.946384][ T312] bridge0: port 2(bridge_slave_1) entered forwarding state [ 32.959975][ T312] bridge0: port 2(bridge_slave_1) entered blocking state [ 32.968964][ T312] bridge0: port 2(bridge_slave_1) entered forwarding state [ 32.982369][ T3319] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 33.048701][ T3324] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 33.060186][ T3324] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 33.110268][ T3318] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 33.217080][ T3324] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 33.232033][ T3316] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 33.266337][ T3314] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 33.301275][ T3318] veth0_vlan: entered promiscuous mode [ 33.327876][ T3318] veth1_vlan: entered promiscuous mode [ 33.384645][ T3319] veth0_vlan: entered promiscuous mode [ 33.407217][ T3319] veth1_vlan: entered promiscuous mode [ 33.440506][ T3318] veth0_macvtap: entered promiscuous mode [ 33.457186][ T3324] veth0_vlan: entered promiscuous mode [ 33.466828][ T3318] veth1_macvtap: entered promiscuous mode [ 33.487533][ T3319] veth0_macvtap: entered promiscuous mode [ 33.496374][ T3324] veth1_vlan: entered promiscuous mode [ 33.503775][ T3319] veth1_macvtap: entered promiscuous mode [ 33.544061][ T3318] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 33.553847][ T3319] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 33.563949][ T3314] veth0_vlan: entered promiscuous mode [ 33.575555][ T3318] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 33.584557][ T3316] veth0_vlan: entered promiscuous mode [ 33.593796][ T3319] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 33.606277][ T3314] veth1_vlan: entered promiscuous mode [ 33.617981][ T3324] veth0_macvtap: entered promiscuous mode [ 33.629473][ T3319] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 33.639793][ T3319] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 33.649666][ T3319] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 33.661707][ T3319] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 33.676213][ T3318] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 33.688214][ T3318] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 33.701559][ T3318] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 33.711699][ T3318] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 33.722748][ T3316] veth1_vlan: entered promiscuous mode [ 33.733261][ T3324] veth1_macvtap: entered promiscuous mode [ 33.760376][ T29] kauditd_printk_skb: 9 callbacks suppressed [ 33.760404][ T29] audit: type=1400 audit(1748273591.813:84): avc: denied { mounton } for pid=3318 comm="syz-executor" path="/root/syzkaller.N1hGDZ/syz-tmp" dev="sda1" ino=2041 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 33.798250][ T29] audit: type=1400 audit(1748273591.813:85): avc: denied { mount } for pid=3318 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 33.826416][ T29] audit: type=1400 audit(1748273591.813:86): avc: denied { mounton } for pid=3318 comm="syz-executor" path="/root/syzkaller.N1hGDZ/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 33.841473][ T3324] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 33.857174][ T29] audit: type=1400 audit(1748273591.813:87): avc: denied { mount } for pid=3318 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 33.857213][ T29] audit: type=1400 audit(1748273591.813:88): avc: denied { mounton } for pid=3318 comm="syz-executor" path="/root/syzkaller.N1hGDZ/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 33.872860][ T3314] veth0_macvtap: entered promiscuous mode [ 33.892344][ T29] audit: type=1400 audit(1748273591.813:89): avc: denied { mounton } for pid=3318 comm="syz-executor" path="/root/syzkaller.N1hGDZ/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=4467 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 33.929733][ T3316] veth0_macvtap: entered promiscuous mode [ 33.932278][ T29] audit: type=1400 audit(1748273591.813:90): avc: denied { unmount } for pid=3318 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 33.965678][ T29] audit: type=1400 audit(1748273592.023:91): avc: denied { mounton } for pid=3318 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=536 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 34.010941][ T3324] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 34.025330][ T29] audit: type=1400 audit(1748273592.023:92): avc: denied { mount } for pid=3318 comm="syz-executor" name="/" dev="gadgetfs" ino=3697 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 34.067436][ T3314] veth1_macvtap: entered promiscuous mode [ 34.075901][ T3319] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 34.080362][ T3314] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 34.108265][ T3324] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 34.117958][ T3324] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 34.128901][ T3324] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 34.139467][ T3324] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 34.155280][ T3316] veth1_macvtap: entered promiscuous mode [ 34.161591][ T29] audit: type=1400 audit(1748273592.213:93): avc: denied { read write } for pid=3318 comm="syz-executor" name="loop0" dev="devtmpfs" ino=100 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 34.199420][ T3316] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 34.209708][ T3314] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 34.229205][ T3316] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 34.245160][ T3316] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 34.256170][ T3316] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 34.266528][ T3316] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 34.276071][ T3316] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 34.309622][ T3314] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 34.320589][ T3314] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 34.330967][ T3314] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 34.341194][ T3314] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 34.386470][ T3455] loop4: detected capacity change from 0 to 512 [ 34.399898][ T3455] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 34.415108][ T3455] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 34.472775][ T3455] EXT4-fs (loop4): 1 truncate cleaned up [ 34.524825][ T3455] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 34.547451][ T3468] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3'. [ 34.590439][ T3473] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2'. [ 34.602779][ T3455] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 34.614828][ T3473] netem: change failed [ 34.737872][ T3478] program syz.1.11 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 34.763811][ T3478] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 34.802444][ T3488] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 34.822370][ T3489] netlink: 4083 bytes leftover after parsing attributes in process `syz.2.13'. [ 34.941500][ C1] hrtimer: interrupt took 30436 ns [ 35.027753][ T3506] netlink: 4083 bytes leftover after parsing attributes in process `syz.0.31'. [ 35.165455][ T3510] loop0: detected capacity change from 0 to 1024 [ 35.203778][ T3510] EXT4-fs error (device loop0): __ext4_fill_super:5502: inode #2: comm syz.0.23: casefold flag without casefold feature [ 35.220689][ T3510] EXT4-fs (loop0): get root inode failed [ 35.227133][ T3510] EXT4-fs (loop0): mount failed [ 35.369654][ T3488] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 35.506439][ T3521] loop0: detected capacity change from 0 to 8192 [ 35.515461][ T3521] ======================================================= [ 35.515461][ T3521] WARNING: The mand mount option has been deprecated and [ 35.515461][ T3521] and is ignored by this kernel. Remove the mand [ 35.515461][ T3521] option from the mount to silence this warning. [ 35.515461][ T3521] ======================================================= [ 35.627002][ T3488] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 35.757582][ T3526] loop4: detected capacity change from 0 to 512 [ 35.825711][ T3526] EXT4-fs (loop4): 1 orphan inode deleted [ 35.842331][ T3526] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 35.862347][ T3488] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 35.863414][ T1740] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:6: Failed to release dquot type 1 [ 35.892644][ T3526] ext4 filesystem being mounted at /4/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 35.946685][ T3537] loop2: detected capacity change from 0 to 1024 [ 35.954639][ T3537] EXT4-fs: Ignoring removed orlov option [ 35.955130][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 35.961210][ T3537] EXT4-fs: Ignoring removed nomblk_io_submit option [ 36.000681][ T3537] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 36.007077][ T3488] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.050945][ T3488] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.065853][ T3488] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.080272][ T3488] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 36.102442][ T3488] syz.3.16 (3488) used greatest stack depth: 10864 bytes left [ 36.110389][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 36.211699][ T3547] veth0_macvtap: left promiscuous mode [ 36.246175][ T3545] SELinux: ebitmap: truncated map [ 36.258876][ T3547] macvtap0: refused to change device tx_queue_len [ 36.264170][ T3545] SELinux: failed to load policy [ 36.546314][ T3563] netlink: 1347 bytes leftover after parsing attributes in process `syz.2.42'. [ 36.646948][ T3571] loop3: detected capacity change from 0 to 1024 [ 36.650468][ T3570] loop2: detected capacity change from 0 to 1024 [ 36.674164][ T3571] EXT4-fs: Ignoring removed orlov option [ 36.680199][ T3570] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 36.680448][ T3571] EXT4-fs: Ignoring removed nomblk_io_submit option [ 36.694907][ T3570] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 36.726248][ T3570] JBD2: no valid journal superblock found [ 36.733577][ T3570] EXT4-fs (loop2): Could not load journal inode [ 36.809182][ T3571] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 36.988156][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 37.429977][ T3578] Set syz1 is full, maxelem 65536 reached [ 38.770597][ T29] kauditd_printk_skb: 116 callbacks suppressed [ 38.770636][ T29] audit: type=1400 audit(1748273596.823:209): avc: denied { read write } for pid=3637 comm="syz.0.73" name="rdma_cm" dev="devtmpfs" ino=251 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1 [ 38.840963][ T29] audit: type=1400 audit(1748273596.823:210): avc: denied { open } for pid=3637 comm="syz.0.73" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=251 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1 [ 38.929655][ T29] audit: type=1400 audit(1748273596.953:211): avc: denied { read } for pid=3639 comm="syz.0.74" name="usbmon7" dev="devtmpfs" ino=163 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 38.961368][ T29] audit: type=1400 audit(1748273596.953:212): avc: denied { open } for pid=3639 comm="syz.0.74" path="/dev/usbmon7" dev="devtmpfs" ino=163 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 38.988974][ T29] audit: type=1400 audit(1748273596.953:213): avc: denied { write } for pid=3639 comm="syz.0.74" name="usbmon7" dev="devtmpfs" ino=163 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 39.005166][ T3646] loop1: detected capacity change from 0 to 512 [ 39.077214][ T3646] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 39.122850][ T3646] EXT4-fs (loop1): 1 truncate cleaned up [ 39.172527][ T3646] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 39.247807][ T29] audit: type=1400 audit(1748273597.303:214): avc: denied { write } for pid=3645 comm="syz.1.75" name="/" dev="loop1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 39.279769][ T29] audit: type=1400 audit(1748273597.303:215): avc: denied { add_name } for pid=3645 comm="syz.1.75" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 39.345597][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 39.364584][ T3654] loop4: detected capacity change from 0 to 512 [ 39.389458][ T29] audit: type=1400 audit(1748273597.303:216): avc: denied { create } for pid=3645 comm="syz.1.75" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 39.417910][ T29] audit: type=1400 audit(1748273597.363:217): avc: denied { read } for pid=3645 comm="syz.1.75" name="file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 39.418758][ T3654] EXT4-fs: Ignoring removed bh option [ 39.448915][ T29] audit: type=1400 audit(1748273597.363:218): avc: denied { unmount } for pid=3316 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 39.561036][ T3654] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 39.588687][ T3654] EXT4-fs (loop4): 1 truncate cleaned up [ 39.605991][ T3654] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 39.711263][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 39.727702][ T3677] loop2: detected capacity change from 0 to 1024 [ 39.791859][ T3677] EXT4-fs: Ignoring removed nomblk_io_submit option [ 39.857102][ T3677] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 39.930155][ T3694] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 40.008265][ T3698] loop3: detected capacity change from 0 to 512 [ 40.017866][ T3694] netlink: 4 bytes leftover after parsing attributes in process `syz.4.94'. [ 40.070597][ T3698] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 40.085886][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 40.192330][ T3698] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 40.295438][ T3716] xt_hashlimit: overflow, try lower: 18446744073709551615/7 [ 40.343512][ T3698] ext4 filesystem being mounted at /16/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 40.364574][ C0] IPv4: Oversized IP packet from 172.20.20.24 [ 40.505291][ T3731] netlink: 'syz.0.109': attribute type 4 has an invalid length. [ 40.554398][ T3738] netlink: 'syz.0.109': attribute type 4 has an invalid length. [ 40.729814][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 41.049126][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.060224][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.068948][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.077665][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.086884][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.097522][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.106968][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.118416][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.127766][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.139547][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.149413][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.158477][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.171271][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.182585][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.191877][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.203937][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.215589][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.225060][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.234517][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.243992][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.254534][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.267132][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.277609][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.287230][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.299283][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.309965][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.319410][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.328128][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.337518][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.346940][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.358823][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.367495][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.380614][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.390525][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.400039][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.411010][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.422992][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.432401][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.441998][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.450779][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.460773][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.469274][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.479178][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.488911][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.502568][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.513190][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.522536][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.531533][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.541990][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.554409][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.564989][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.578031][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.587231][ T10] hid-generic 0000:007F:FFFFFFFE.0001: unknown main item tag 0x0 [ 41.657304][ T3774] mmap: syz.0.124 (3774) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 41.759960][ T3782] loop2: detected capacity change from 0 to 128 [ 41.788660][ T3781] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100) [ 41.800332][ T3781] FAT-fs (loop2): Filesystem has been set read-only [ 41.823604][ T10] hid-generic 0000:007F:FFFFFFFE.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 41.844272][ T3781] syz.2.127: attempt to access beyond end of device [ 41.844272][ T3781] loop2: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 41.876879][ T3781] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100) [ 41.886924][ T3781] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100) [ 41.935524][ T3782] syz.2.127: attempt to access beyond end of device [ 41.935524][ T3782] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 42.012401][ T3785] fido_id[3785]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 42.056506][ T3789] loop4: detected capacity change from 0 to 1024 [ 42.063314][ T3782] syz.2.127: attempt to access beyond end of device [ 42.063314][ T3782] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 42.079796][ T3782] syz.2.127: attempt to access beyond end of device [ 42.079796][ T3782] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 42.093024][ T3789] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 42.106440][ T3789] EXT4-fs (loop4): group descriptors corrupted! [ 42.119194][ T3782] syz.2.127: attempt to access beyond end of device [ 42.119194][ T3782] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 42.417593][ T3808] SELinux: syz.4.140 (3808) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 42.634516][ T3827] 9pnet: p9_errstr2errno: server reported unknown error @pA;KZ44/@qkp [ 42.634516][ T3827] C<+P5"k [ 42.719255][ T3828] syz_tun: entered allmulticast mode [ 42.755409][ T3828] syz_tun: left allmulticast mode [ 42.935034][ T3848] netlink: 96 bytes leftover after parsing attributes in process `syz.1.159'. [ 43.032491][ T3859] syz.4.164 (3859) used greatest stack depth: 10800 bytes left [ 43.122244][ T3868] syz.2.169: attempt to access beyond end of device [ 43.122244][ T3868] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 43.237329][ T3880] loop4: detected capacity change from 0 to 512 [ 43.268575][ T3884] Zero length message leads to an empty skb [ 43.276389][ T3879] loop1: detected capacity change from 0 to 2048 [ 43.327529][ T3879] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 43.342286][ T3880] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 43.385112][ T3879] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000. [ 43.408195][ T3880] ext4 filesystem being mounted at /33/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 43.438813][ T3314] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters [ 43.457782][ T3900] tipc: Started in network mode [ 43.463484][ T3900] tipc: Node identity ac14140f, cluster identity 4711 [ 43.474436][ T3900] tipc: New replicast peer: 255.255.255.255 [ 43.474741][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 43.481078][ T3900] tipc: Enabled bearer , priority 10 [ 43.499415][ T3898] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 43.515508][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 43.610473][ T3910] loop4: detected capacity change from 0 to 128 [ 43.692724][ T3917] sd 0:0:1:0: device reset [ 43.779836][ T29] kauditd_printk_skb: 103 callbacks suppressed [ 43.779854][ T29] audit: type=1326 audit(1748273601.833:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3923 comm="syz.1.193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 43.824647][ T29] audit: type=1326 audit(1748273601.873:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3923 comm="syz.1.193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 43.859345][ T29] audit: type=1326 audit(1748273601.873:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3923 comm="syz.1.193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 43.887519][ T29] audit: type=1326 audit(1748273601.873:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3923 comm="syz.1.193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 43.917186][ T29] audit: type=1326 audit(1748273601.873:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3923 comm="syz.1.193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 43.945111][ T29] audit: type=1326 audit(1748273601.873:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3923 comm="syz.1.193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 43.976256][ T29] audit: type=1326 audit(1748273601.873:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3923 comm="syz.1.193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 44.006349][ T29] audit: type=1326 audit(1748273601.873:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3923 comm="syz.1.193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 44.034555][ T29] audit: type=1326 audit(1748273601.873:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3923 comm="syz.1.193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 44.062070][ T29] audit: type=1326 audit(1748273601.873:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3923 comm="syz.1.193" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 44.204947][ T3936] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 44.476293][ T3391] tipc: Node number set to 2886997007 [ 44.516294][ T3957] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 44.638212][ T3963] loop1: detected capacity change from 0 to 512 [ 44.650418][ T3967] loop0: detected capacity change from 0 to 128 [ 44.674763][ T3963] EXT4-fs: Ignoring removed mblk_io_submit option [ 44.726471][ T3963] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 44.735313][ T3982] loop2: detected capacity change from 0 to 512 [ 44.764002][ T3982] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 44.845437][ T3982] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.214: bad orphan inode 131083 [ 44.848403][ T3963] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 44.898144][ T3963] EXT4-fs (loop1): 1 truncate cleaned up [ 44.913502][ T3963] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 44.940296][ T3982] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 45.090698][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.170095][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.196212][ T3967] syz.0.212: attempt to access beyond end of device [ 45.196212][ T3967] loop0: rw=2049, sector=129, nr_sectors = 8 limit=128 [ 45.241759][ T3967] syz.0.212: attempt to access beyond end of device [ 45.241759][ T3967] loop0: rw=2049, sector=145, nr_sectors = 8 limit=128 [ 45.301184][ T3967] syz.0.212: attempt to access beyond end of device [ 45.301184][ T3967] loop0: rw=2049, sector=161, nr_sectors = 8 limit=128 [ 45.361051][ T3967] syz.0.212: attempt to access beyond end of device [ 45.361051][ T3967] loop0: rw=2049, sector=177, nr_sectors = 8 limit=128 [ 45.532066][ T4047] netlink: 104 bytes leftover after parsing attributes in process `syz.0.219'. [ 45.650516][ T4055] Cannot find del_set index 0 as target [ 45.680359][ T4057] netlink: 8 bytes leftover after parsing attributes in process `syz.2.224'. [ 45.990466][ T4081] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.046925][ T4081] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.067433][ T4087] serio: Serial port ptm0 [ 46.086104][ T4081] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.143801][ T4081] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.260294][ T4081] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.284234][ T4081] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.305099][ T4081] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.336224][ T4081] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.472726][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.482397][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.491462][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.500404][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.561200][ T4123] netlink: 12 bytes leftover after parsing attributes in process `syz.0.254'. [ 46.564254][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.581024][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.589257][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.598952][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.607286][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.617194][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.627659][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.637047][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.646374][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.655395][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.664139][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.673462][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.682161][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.691044][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.699954][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.708052][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.716548][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.725502][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.734327][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.744172][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.753025][ T3391] hid-generic 0000:0000:20000000.0002: unknown main item tag 0x0 [ 46.763804][ T3391] hid-generic 0000:0000:20000000.0002: hidraw0: HID v0.01 Device [syz0] on syz1 [ 46.794219][ T4127] fido_id[4127]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 47.098000][ T4154] atomic_op ffff888117820528 conn xmit_atomic 0000000000000000 [ 47.108938][ T4151] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 47.176025][ T4151] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 47.235711][ T4164] loop1: detected capacity change from 0 to 128 [ 47.247055][ T4151] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 47.307133][ T4151] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 47.343578][ T4164] bio_check_eod: 7 callbacks suppressed [ 47.343598][ T4164] syz.1.269: attempt to access beyond end of device [ 47.343598][ T4164] loop1: rw=2049, sector=131, nr_sectors = 1 limit=128 [ 47.366536][ T4164] Buffer I/O error on dev loop1, logical block 131, lost async page write [ 47.384733][ T4151] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.395129][ T4164] syz.1.269: attempt to access beyond end of device [ 47.395129][ T4164] loop1: rw=2049, sector=132, nr_sectors = 1 limit=128 [ 47.398088][ T4151] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.411584][ T4164] Buffer I/O error on dev loop1, logical block 132, lost async page write [ 47.426744][ T4151] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.452134][ T4164] syz.1.269: attempt to access beyond end of device [ 47.452134][ T4164] loop1: rw=2049, sector=133, nr_sectors = 1 limit=128 [ 47.466988][ T4164] Buffer I/O error on dev loop1, logical block 133, lost async page write [ 47.487034][ T4151] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.506785][ T4164] syz.1.269: attempt to access beyond end of device [ 47.506785][ T4164] loop1: rw=2049, sector=134, nr_sectors = 1 limit=128 [ 47.522237][ T4164] Buffer I/O error on dev loop1, logical block 134, lost async page write [ 47.574732][ T4164] syz.1.269: attempt to access beyond end of device [ 47.574732][ T4164] loop1: rw=2049, sector=135, nr_sectors = 1 limit=128 [ 47.592564][ T4164] Buffer I/O error on dev loop1, logical block 135, lost async page write [ 47.617028][ T4164] syz.1.269: attempt to access beyond end of device [ 47.617028][ T4164] loop1: rw=2049, sector=136, nr_sectors = 1 limit=128 [ 47.633235][ T4164] Buffer I/O error on dev loop1, logical block 136, lost async page write [ 47.682239][ T4164] syz.1.269: attempt to access beyond end of device [ 47.682239][ T4164] loop1: rw=2049, sector=137, nr_sectors = 64 limit=128 [ 47.743333][ T4164] syz.1.269: attempt to access beyond end of device [ 47.743333][ T4164] loop1: rw=2049, sector=209, nr_sectors = 8 limit=128 [ 47.790310][ T4164] syz.1.269: attempt to access beyond end of device [ 47.790310][ T4164] loop1: rw=2049, sector=225, nr_sectors = 9 limit=128 [ 47.900728][ T4198] hub 9-0:1.0: USB hub found [ 47.923540][ T4198] hub 9-0:1.0: 8 ports detected [ 48.107922][ T4210] loop1: detected capacity change from 0 to 1024 [ 48.113905][ T4212] netlink: 12 bytes leftover after parsing attributes in process `syz.3.285'. [ 48.125565][ T4212] netlink: 'syz.3.285': attribute type 5 has an invalid length. [ 48.146799][ T4210] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 48.223308][ T4212] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 48.232563][ T4212] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 48.241249][ T4212] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 48.250584][ T4212] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 48.261265][ T4212] vxlan0: entered promiscuous mode [ 48.815927][ T4212] syz.3.285 (4212) used greatest stack depth: 10360 bytes left [ 48.863389][ T4219] capability: warning: `syz.4.289' uses deprecated v2 capabilities in a way that may be insecure [ 49.010025][ T29] kauditd_printk_skb: 124 callbacks suppressed [ 49.010042][ T29] audit: type=1326 audit(1748273607.063:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4225 comm="syz.3.292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f0b0be969 code=0x7ffc0000 [ 49.039085][ T4221] bond1: entered promiscuous mode [ 49.050022][ T4221] bond1: entered allmulticast mode [ 49.080931][ T29] audit: type=1326 audit(1748273607.103:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4225 comm="syz.3.292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7f0b0be969 code=0x7ffc0000 [ 49.107880][ T29] audit: type=1326 audit(1748273607.103:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4225 comm="syz.3.292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f0b0be969 code=0x7ffc0000 [ 49.134351][ T29] audit: type=1326 audit(1748273607.103:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4225 comm="syz.3.292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7f0b0be969 code=0x7ffc0000 [ 49.160772][ T29] audit: type=1326 audit(1748273607.113:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4225 comm="syz.3.292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f0b0be969 code=0x7ffc0000 [ 49.188440][ T29] audit: type=1326 audit(1748273607.113:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4225 comm="syz.3.292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f0b0be969 code=0x7ffc0000 [ 49.215069][ T29] audit: type=1326 audit(1748273607.113:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4225 comm="syz.3.292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f7f0b0be969 code=0x7ffc0000 [ 49.244090][ T29] audit: type=1326 audit(1748273607.113:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4225 comm="syz.3.292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f0b0be969 code=0x7ffc0000 [ 49.270552][ T29] audit: type=1326 audit(1748273607.113:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4225 comm="syz.3.292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f0b0be969 code=0x7ffc0000 [ 49.298226][ T29] audit: type=1326 audit(1748273607.113:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4225 comm="syz.3.292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=275 compat=0 ip=0x7f7f0b0be969 code=0x7ffc0000 [ 49.324502][ T4221] 8021q: adding VLAN 0 to HW filter on device bond1 [ 49.342505][ T4221] bond1 (unregistering): Released all slaves [ 49.370785][ T4210] syz.1.287 (4210) used greatest stack depth: 9776 bytes left [ 49.414545][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.487727][ T4247] loop1: detected capacity change from 0 to 1024 [ 49.545525][ T4247] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 49.562635][ T4247] ext4 filesystem being mounted at /54/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 49.591181][ T4247] EXT4-fs error (device loop1): ext4_map_blocks:709: inode #15: block 1: comm syz.1.300: lblock 1 mapped to illegal pblock 1 (length 7) [ 49.635780][ T4262] netlink: 8 bytes leftover after parsing attributes in process `syz.4.306'. [ 49.645557][ T4247] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 7 with error 117 [ 49.659245][ T4247] EXT4-fs (loop1): This should not happen!! Data will be lost [ 49.659245][ T4247] [ 49.721401][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.732878][ T4269] netlink: 76 bytes leftover after parsing attributes in process `syz.2.307'. [ 49.806513][ T4274] loop1: detected capacity change from 0 to 128 [ 49.870368][ T4282] netlink: 16 bytes leftover after parsing attributes in process `syz.3.314'. [ 49.986141][ T4296] SELinux: Context is not valid (left unmapped). [ 50.019529][ T4303] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 50.035577][ T4297] bond1: entered promiscuous mode [ 50.041756][ T4297] bond1: entered allmulticast mode [ 50.058998][ T4297] 8021q: adding VLAN 0 to HW filter on device bond1 [ 50.064024][ T4303] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 50.080519][ T4297] bond1 (unregistering): Released all slaves [ 50.103890][ T4310] netlink: 4 bytes leftover after parsing attributes in process `syz.2.326'. [ 50.129087][ T4310] netlink: 4 bytes leftover after parsing attributes in process `syz.2.326'. [ 50.160060][ T4312] loop2: detected capacity change from 0 to 512 [ 50.168374][ T4312] EXT4-fs: Ignoring removed orlov option [ 50.199083][ T4312] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 50.261044][ T4312] EXT4-fs (loop2): 1 orphan inode deleted [ 50.268807][ T4312] EXT4-fs (loop2): 1 truncate cleaned up [ 50.298192][ T4312] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 50.319185][ T4312] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 50.343012][ T4312] EXT4-fs (loop2): Remounting filesystem read-only [ 50.359506][ T4325] netlink: 16 bytes leftover after parsing attributes in process `syz.3.333'. [ 50.371224][ T4325] bridge0: port 1(bridge_slave_0) entered disabled state [ 50.383143][ T4325] bridge_slave_0 (unregistering): left allmulticast mode [ 50.391559][ T4325] bridge_slave_0 (unregistering): left promiscuous mode [ 50.401161][ T4325] bridge0: port 1(bridge_slave_0) entered disabled state [ 50.425232][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.436522][ T4327] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 50.516204][ T4327] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 50.577920][ T4327] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 50.646158][ T4327] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 50.700253][ T4327] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.716090][ T4327] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.730075][ T4327] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 50.747640][ T4327] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 51.070342][ T4339] loop1: detected capacity change from 0 to 2048 [ 51.134270][ T3305] loop1: p1 < > p4 [ 51.140060][ T3305] loop1: p4 size 8388608 extends beyond EOD, truncated [ 51.168262][ T4339] loop1: p1 < > p4 [ 51.187061][ T4339] loop1: p4 size 8388608 extends beyond EOD, truncated [ 51.268470][ T3894] udevd[3894]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 51.268734][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 51.293295][ T4350] 9pnet_fd: Insufficient options for proto=fd [ 51.472502][ T4354] loop1: detected capacity change from 0 to 256 [ 51.581693][ T4358] netlink: 8 bytes leftover after parsing attributes in process `syz.1.347'. [ 51.628032][ T3006] udevd[3006]: worker [3894] terminated by signal 33 (Unknown signal 33) [ 51.667702][ T3006] udevd[3006]: worker [3894] failed while handling '/devices/virtual/block/loop1' [ 52.037102][ T4385] loop2: detected capacity change from 0 to 256 [ 52.063652][ T4387] bond1: entered promiscuous mode [ 52.069383][ T4387] bond1: entered allmulticast mode [ 52.078481][ T4387] 8021q: adding VLAN 0 to HW filter on device bond1 [ 52.094276][ T4387] bond1 (unregistering): Released all slaves [ 52.124856][ T4392] loop2: detected capacity change from 0 to 2048 [ 52.125920][ T4390] bond1: entered promiscuous mode [ 52.138514][ T4390] bond1: entered allmulticast mode [ 52.144517][ T4390] 8021q: adding VLAN 0 to HW filter on device bond1 [ 52.157858][ T4390] bond1 (unregistering): Released all slaves [ 52.166723][ T3305] loop2: p1 < > p4 [ 52.171988][ T3305] loop2: p4 size 8388608 extends beyond EOD, truncated [ 52.199496][ T4392] loop2: p1 < > p4 [ 52.205081][ T4392] loop2: p4 size 8388608 extends beyond EOD, truncated [ 52.296573][ T3548] udevd[3548]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 52.307977][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 52.336543][ T3308] udevd[3308]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 52.336890][ T3305] udevd[3305]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 52.404930][ T4405] loop1: detected capacity change from 0 to 1024 [ 52.420748][ T4409] loop3: detected capacity change from 0 to 1024 [ 52.436194][ T4405] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 52.457124][ T4409] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 52.471786][ T4409] ext4 filesystem being mounted at /61/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 52.500964][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 52.514930][ T4409] EXT4-fs error (device loop3): ext4_map_blocks:709: inode #15: block 1: comm syz.3.368: lblock 1 mapped to illegal pblock 1 (length 7) [ 52.561980][ T4409] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 7 with error 117 [ 52.577990][ T4409] EXT4-fs (loop3): This should not happen!! Data will be lost [ 52.577990][ T4409] [ 52.631299][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 52.673483][ T4424] netlink: 33912 bytes leftover after parsing attributes in process `syz.1.375'. [ 52.740990][ T4431] netlink: 8 bytes leftover after parsing attributes in process `syz.3.377'. [ 52.787025][ T4432] loop4: detected capacity change from 0 to 2048 [ 52.869385][ T3305] loop4: p1 < > p4 [ 52.880851][ T3305] loop4: p4 size 8388608 extends beyond EOD, truncated [ 52.920927][ T4432] loop4: p1 < > p4 [ 52.926081][ T4432] loop4: p4 size 8388608 extends beyond EOD, truncated [ 52.959493][ T4449] loop3: detected capacity change from 0 to 1024 [ 52.994909][ T4449] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 53.016890][ T4451] loop1: detected capacity change from 0 to 1024 [ 53.071128][ T4458] udevd[4458]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 53.128523][ T4451] EXT4-fs error (device loop1): __ext4_fill_super:5502: inode #2: comm syz.1.395: casefold flag without casefold feature [ 53.165239][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 53.191044][ T4470] netlink: 'syz.0.391': attribute type 1 has an invalid length. [ 53.207143][ T4451] EXT4-fs (loop1): get root inode failed [ 53.217836][ T4451] EXT4-fs (loop1): mount failed [ 53.277332][ T4474] wireguard0: entered promiscuous mode [ 53.286413][ T4474] wireguard0: entered allmulticast mode [ 53.330939][ T4477] loop3: detected capacity change from 0 to 1024 [ 53.350321][ T4477] EXT4-fs: Ignoring removed bh option [ 53.357917][ T4477] EXT4-fs: inline encryption not supported [ 53.365071][ T4477] EXT4-fs: Ignoring removed i_version option [ 53.382772][ T4477] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 53.406280][ T4477] EXT4-fs error (device loop3): ext4_map_blocks:709: inode #3: block 1: comm syz.3.390: lblock 1 mapped to illegal pblock 1 (length 1) [ 53.422511][ T4477] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.390: Failed to acquire dquot type 0 [ 53.438416][ T4477] EXT4-fs error (device loop3): ext4_free_blocks:6587: comm syz.3.390: Freeing blocks not in datazone - block = 0, count = 4096 [ 53.456084][ T4477] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.390: Invalid inode bitmap blk 0 in block_group 0 [ 53.472842][ T4477] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem [ 53.485377][ T52] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1) [ 53.513832][ T52] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 0 [ 53.528667][ T4477] EXT4-fs (loop3): 1 orphan inode deleted [ 53.551113][ T4477] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 53.596235][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 53.920427][ T4524] netlink: 33912 bytes leftover after parsing attributes in process `syz.3.410'. [ 54.015544][ T4531] loop3: detected capacity change from 0 to 512 [ 54.043555][ T29] kauditd_printk_skb: 79 callbacks suppressed [ 54.043570][ T29] audit: type=1400 audit(1748273612.103:542): avc: denied { write } for pid=4536 comm="syz.0.424" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 54.083846][ T4531] EXT4-fs: Ignoring removed orlov option [ 54.123605][ T4531] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 54.208312][ T4531] EXT4-fs (loop3): 1 orphan inode deleted [ 54.216431][ T4531] EXT4-fs (loop3): 1 truncate cleaned up [ 54.233668][ T4542] netlink: 'syz.4.416': attribute type 21 has an invalid length. [ 54.253591][ T4531] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 54.267519][ T4542] netlink: 'syz.4.416': attribute type 1 has an invalid length. [ 54.276837][ T4542] netlink: 144 bytes leftover after parsing attributes in process `syz.4.416'. [ 54.292612][ T4531] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 54.336313][ T4531] EXT4-fs (loop3): Remounting filesystem read-only [ 54.371557][ T29] audit: type=1400 audit(1748273612.413:543): avc: denied { compute_member } for pid=4545 comm="syz.4.419" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 54.443501][ T29] audit: type=1326 audit(1748273612.493:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4551 comm="syz.4.421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa9dee969 code=0x7ffc0000 [ 54.476271][ T29] audit: type=1326 audit(1748273612.493:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4551 comm="syz.4.421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7f5aa9dee969 code=0x7ffc0000 [ 54.505431][ T29] audit: type=1326 audit(1748273612.493:546): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4551 comm="syz.4.421" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa9dee969 code=0x7ffc0000 [ 54.544466][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 54.582617][ T4557] netlink: 33912 bytes leftover after parsing attributes in process `syz.4.425'. [ 54.630176][ T29] audit: type=1326 audit(1748273612.683:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4561 comm="syz.3.423" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7f0b0be969 code=0x0 [ 54.913236][ T29] audit: type=1400 audit(1748273612.923:548): avc: denied { bind } for pid=4570 comm="syz.1.429" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 54.966323][ T4574] netlink: 'syz.1.430': attribute type 1 has an invalid length. [ 55.063574][ T4580] netlink: 'syz.0.433': attribute type 4 has an invalid length. [ 55.072885][ T4580] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.433'. [ 55.101643][ T4579] loop2: detected capacity change from 0 to 1024 [ 55.199470][ T4579] EXT4-fs error (device loop2): __ext4_fill_super:5502: inode #2: comm syz.2.428: casefold flag without casefold feature [ 55.276944][ T29] audit: type=1326 audit(1748273613.333:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4588 comm="syz.0.437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faefe8fe969 code=0x7ffc0000 [ 55.333831][ T4579] EXT4-fs (loop2): get root inode failed [ 55.340709][ T4579] EXT4-fs (loop2): mount failed [ 55.379518][ T29] audit: type=1326 audit(1748273613.363:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4588 comm="syz.0.437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7faefe8fe969 code=0x7ffc0000 [ 55.410324][ T29] audit: type=1326 audit(1748273613.363:551): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4588 comm="syz.0.437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faefe8fe969 code=0x7ffc0000 [ 55.622177][ T4602] loop2: detected capacity change from 0 to 512 [ 55.652421][ T4602] EXT4-fs: Ignoring removed mblk_io_submit option [ 55.684051][ T4602] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 55.700495][ T4602] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 55.800664][ T4602] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended [ 55.848496][ T4602] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a043c01c, mo2=0102] [ 55.848764][ T4618] xt_hashlimit: overflow, try lower: 18446744073709551615/7 [ 55.863381][ T4602] System zones: 0-2, 18-18, 34-34 [ 55.883649][ T4602] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 55.943174][ T4602] EXT4-fs (loop2): 1 truncate cleaned up [ 55.959115][ T4602] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 56.124698][ T4635] loop4: detected capacity change from 0 to 512 [ 56.151504][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 56.166856][ T4635] EXT4-fs: Ignoring removed orlov option [ 56.191895][ T4635] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 56.220328][ T4635] EXT4-fs (loop4): 1 orphan inode deleted [ 56.226934][ T4635] EXT4-fs (loop4): 1 truncate cleaned up [ 56.244842][ T4635] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 56.275320][ T4635] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 56.293323][ T4639] loop3: detected capacity change from 0 to 8192 [ 56.301086][ T4635] EXT4-fs (loop4): Remounting filesystem read-only [ 56.394749][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 56.832276][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 56.841222][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 56.850957][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 56.860986][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 56.870365][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 56.874237][ T4645] netlink: 16 bytes leftover after parsing attributes in process `syz.4.462'. [ 56.878931][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 56.901196][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 56.913265][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 56.921876][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 56.931152][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 56.933226][ T4645] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.940123][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 56.956746][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 56.966313][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 56.975543][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 56.984399][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 56.998890][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.007759][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.016807][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.025969][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.035414][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.044933][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.055551][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.064684][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.075615][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.085467][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.096050][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.105384][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.113572][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.122319][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.131741][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.141635][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.150336][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.159075][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.168943][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.179025][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.187361][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.196059][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.205090][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.214023][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.222803][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.231597][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.240551][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.249698][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.261329][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.270889][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.281487][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.292326][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.302149][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.312581][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.322661][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.332451][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.341618][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.350202][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: unknown main item tag 0x0 [ 57.361737][ T4645] bridge_slave_0 (unregistering): left allmulticast mode [ 57.362256][ T1039] hid-generic 0000:007F:FFFFFFFE.0003: hidraw0: HID v0.00 Device [syz1] on syz0 [ 57.373404][ T4645] bridge_slave_0 (unregistering): left promiscuous mode [ 57.373473][ T4645] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.447083][ T4656] netlink: 4 bytes leftover after parsing attributes in process `syz.1.463'. [ 57.489518][ T4657] fido_id[4657]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 57.730511][ T4681] SELinux: Context system_u:object_r:crond_var_run_t:s0 is not valid (left unmapped). [ 57.770798][ T4684] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 57.800120][ T4684] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0' [ 57.821532][ T4689] loop2: detected capacity change from 0 to 512 [ 57.859339][ T4689] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802c198, mo2=0002] [ 57.869023][ T4689] System zones: 1-12 [ 57.882652][ T4689] EXT4-fs error (device loop2): ext4_iget_extra_inode:4693: inode #15: comm syz.2.479: corrupted in-inode xattr: invalid ea_ino [ 57.901655][ T4689] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.479: couldn't read orphan inode 15 (err -117) [ 57.936647][ T4689] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 57.969913][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 58.118003][ T4720] syz_tun: entered allmulticast mode [ 58.126586][ T4717] syz_tun: left allmulticast mode [ 58.212124][ T4733] netlink: 4 bytes leftover after parsing attributes in process `syz.3.500'. [ 58.375848][ T4762] SELinux: syz.3.515 (4762) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 58.492882][ T4780] capability: warning: `syz.2.524' uses 32-bit capabilities (legacy support in use) [ 58.695036][ T4797] loop2: detected capacity change from 0 to 512 [ 58.703780][ T4797] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 58.728999][ T4797] EXT4-fs (loop2): invalid journal inode [ 58.737655][ T4797] EXT4-fs (loop2): can't get journal size [ 58.755414][ T4797] EXT4-fs (loop2): 1 truncate cleaned up [ 58.764962][ T4797] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 58.799537][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 58.825396][ T4804] loop2: detected capacity change from 0 to 1024 [ 58.836034][ T4804] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 58.847211][ T4804] EXT4-fs (loop2): group descriptors corrupted! [ 59.018298][ T4820] xt_CT: No such helper "snmp_trap" [ 59.096315][ T29] kauditd_printk_skb: 125 callbacks suppressed [ 59.096417][ T29] audit: type=1400 audit(1748273617.153:677): avc: denied { execmem } for pid=4831 comm="syz.2.545" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 59.161139][ T4834] tipc: Started in network mode [ 59.166777][ T4834] tipc: Node identity ac14140f, cluster identity 4711 [ 59.181241][ T4834] tipc: New replicast peer: 255.255.255.255 [ 59.189621][ T4834] tipc: Enabled bearer , priority 10 [ 59.206707][ T4836] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 59.234760][ T4838] SELinux: syz.0.548 (4838) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 59.256102][ T4840] raw_sendmsg: syz.2.549 forgot to set AF_INET. Fix it! [ 59.276813][ T4842] Q6\bY4: renamed from lo [ 59.319937][ T29] audit: type=1400 audit(1748273617.373:678): avc: denied { sys_module } for pid=4844 comm="syz.0.551" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 59.385735][ T4855] loop4: detected capacity change from 0 to 512 [ 59.392626][ T4855] EXT4-fs: Ignoring removed mblk_io_submit option [ 59.413371][ T4855] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 59.429177][ T4855] EXT4-fs (loop4): 1 truncate cleaned up [ 59.454020][ T4855] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 59.707773][ T29] audit: type=1400 audit(1748273617.763:679): avc: denied { execute } for pid=4867 comm="syz.2.561" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=8907 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 59.820135][ T29] audit: type=1400 audit(1748273617.873:680): avc: denied { mount } for pid=4877 comm="syz.3.565" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1 [ 59.847793][ T29] audit: type=1400 audit(1748273617.903:681): avc: denied { unmount } for pid=4877 comm="syz.3.565" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1 [ 59.892490][ T29] audit: type=1400 audit(1748273617.943:682): avc: denied { mount } for pid=4879 comm="syz.0.566" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 59.969219][ T29] audit: type=1400 audit(1748273618.013:683): avc: denied { unmount } for pid=3318 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 60.077004][ T4899] syz.0.573 uses obsolete (PF_INET,SOCK_PACKET) [ 60.145657][ T4905] syz.2.578 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 60.213163][ T36] tipc: Node number set to 2886997007 [ 60.225525][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 60.273088][ T29] audit: type=1326 audit(1748273618.323:684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4919 comm="syz.0.586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faefe8fe969 code=0x7ffc0000 [ 60.312722][ T29] audit: type=1326 audit(1748273618.333:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4919 comm="syz.0.586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=97 compat=0 ip=0x7faefe8fe969 code=0x7ffc0000 [ 60.339682][ T29] audit: type=1326 audit(1748273618.333:686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4919 comm="syz.0.586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faefe8fe969 code=0x7ffc0000 [ 60.579568][ T4956] 8021q: adding VLAN 0 to HW filter on device bond1 [ 60.609732][ T4956] bond0: (slave bond1): Enslaving as an active interface with an up link [ 60.620665][ T4961] netlink: 12 bytes leftover after parsing attributes in process `syz.3.603'. [ 60.790825][ T4970] vhci_hcd: default hub control req: 0000 v0000 i0000 l31125 [ 61.053662][ T4981] netlink: 28 bytes leftover after parsing attributes in process `syz.3.610'. [ 61.064017][ T4981] netlink: 108 bytes leftover after parsing attributes in process `syz.3.610'. [ 61.089248][ T4981] netlink: 28 bytes leftover after parsing attributes in process `syz.3.610'. [ 61.127636][ T4981] netlink: 108 bytes leftover after parsing attributes in process `syz.3.610'. [ 61.140007][ T4981] netlink: 84 bytes leftover after parsing attributes in process `syz.3.610'. [ 61.344008][ T4995] loop3: detected capacity change from 0 to 128 [ 61.375776][ T4995] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 61.470761][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.480937][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.489785][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.499629][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.513546][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.522160][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.530681][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.539346][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.548090][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.556731][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.565707][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.575496][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.584687][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.595377][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.604638][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.614103][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.624585][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.633447][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.642732][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.652744][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.661774][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.670554][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.679732][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.688583][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.697359][ T10] hid-generic 0000:0000:20000000.0004: unknown main item tag 0x0 [ 61.869002][ T5024] atomic_op ffff88812dcd3128 conn xmit_atomic 0000000000000000 [ 61.884786][ T10] hid-generic 0000:0000:20000000.0004: hidraw0: HID v0.01 Device [syz0] on syz1 [ 61.912712][ T5026] program syz.2.630 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 61.947450][ T5030] openvswitch: netlink: Message has 6 unknown bytes. [ 61.964248][ T5031] syzkaller1: entered promiscuous mode [ 61.970203][ T5031] syzkaller1: entered allmulticast mode [ 62.041101][ T5041] netlink: 16 bytes leftover after parsing attributes in process `syz.0.647'. [ 62.455959][ T5065] loop2: detected capacity change from 0 to 512 [ 62.507209][ T5065] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 62.537702][ T5065] ext4 filesystem being mounted at /150/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 62.663667][ T5065] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #18: comm syz.2.645: corrupted inode contents [ 62.707799][ T5065] EXT4-fs error (device loop2): ext4_dirty_inode:6103: inode #18: comm syz.2.645: mark_inode_dirty error [ 62.735461][ T5065] EXT4-fs error (device loop2): ext4_do_update_inode:5211: inode #18: comm syz.2.645: corrupted inode contents [ 62.847230][ T5065] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2991: inode #18: comm syz.2.645: mark_inode_dirty error [ 62.864936][ T5065] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2994: inode #18: comm syz.2.645: mark inode dirty (error -117) [ 62.900309][ T5065] EXT4-fs warning (device loop2): ext4_evict_inode:279: xattr delete (err -117) [ 62.954904][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 62.966211][ T5085] loop4: detected capacity change from 0 to 512 [ 62.980605][ T5085] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 63.014102][ T5085] EXT4-fs (loop4): 1 truncate cleaned up [ 63.020968][ T5085] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 63.037863][ T5089] loop2: detected capacity change from 0 to 512 [ 63.046010][ T5089] EXT4-fs: Ignoring removed mblk_io_submit option [ 63.061873][ T5091] hub 9-0:1.0: USB hub found [ 63.063241][ T5089] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 63.075421][ T5091] hub 9-0:1.0: 8 ports detected [ 63.096668][ T5089] EXT4-fs (loop2): 1 truncate cleaned up [ 63.109352][ T5089] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 63.201406][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 63.260238][ T5101] netlink: 4 bytes leftover after parsing attributes in process `syz.4.660'. [ 63.278939][ T5101] netlink: 4 bytes leftover after parsing attributes in process `syz.4.660'. [ 63.311263][ T5103] netlink: 76 bytes leftover after parsing attributes in process `syz.3.661'. [ 63.502462][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 63.816512][ T5148] SELinux: Context system_u:object_r:user_cron_spool_t:s0 is not valid (left unmapped). [ 64.106649][ T5180] loop2: detected capacity change from 0 to 164 [ 64.116827][ T5180] rock: directory entry would overflow storage [ 64.123846][ T5180] rock: sig=0x66, size=4, remaining=3 [ 64.132706][ T29] kauditd_printk_skb: 71 callbacks suppressed [ 64.132723][ T29] audit: type=1400 audit(1748273622.183:758): avc: denied { mount } for pid=5179 comm="syz.2.695" name="/" dev="loop2" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1 [ 64.133870][ T5180] rock: directory entry would overflow storage [ 64.175309][ T5180] rock: sig=0x66, size=4, remaining=3 [ 64.195359][ T29] audit: type=1400 audit(1748273622.253:759): avc: denied { unmount } for pid=3324 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1 [ 64.368857][ T5197] hub 9-0:1.0: USB hub found [ 64.376356][ T5197] hub 9-0:1.0: 8 ports detected [ 64.403457][ T29] audit: type=1400 audit(1748273622.463:760): avc: denied { write } for pid=5199 comm="syz.2.705" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 64.472612][ T29] audit: type=1326 audit(1748273622.523:761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5205 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 64.503916][ T29] audit: type=1326 audit(1748273622.523:762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5205 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 64.559934][ T29] audit: type=1326 audit(1748273622.593:763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5205 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 64.591073][ T29] audit: type=1326 audit(1748273622.593:764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5205 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 64.629417][ T29] audit: type=1326 audit(1748273622.593:765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5205 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 64.662374][ T29] audit: type=1326 audit(1748273622.593:766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5205 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 64.698955][ T29] audit: type=1326 audit(1748273622.603:767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5205 comm="syz.1.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 64.937717][ T5226] SELinux: ebitmap: truncated map [ 64.953493][ T5226] SELinux: failed to load policy [ 65.166567][ T5248] netlink: 'syz.2.726': attribute type 3 has an invalid length. [ 65.320525][ T5262] netlink: 24 bytes leftover after parsing attributes in process `syz.1.732'. [ 65.331482][ T5262] netlink: 'syz.1.732': attribute type 1 has an invalid length. [ 65.341376][ T5262] netlink: 36 bytes leftover after parsing attributes in process `syz.1.732'. [ 65.363792][ T5264] loop4: detected capacity change from 0 to 128 [ 65.555655][ T5264] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 65.583438][ T5264] ext4 filesystem being mounted at /121/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 65.786085][ T3319] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 65.964217][ T5275] loop3: detected capacity change from 0 to 1024 [ 65.990893][ T5275] EXT4-fs: Ignoring removed mblk_io_submit option [ 66.069963][ T5275] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 66.160253][ T5275] EXT4-fs (loop3): can't enable nombcache during remount [ 66.246215][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 66.340453][ T5301] loop3: detected capacity change from 0 to 256 [ 66.349868][ T5301] msdos: Bad value for 'gid' [ 66.355953][ T5301] msdos: Bad value for 'gid' [ 66.371911][ T5300] loop1: detected capacity change from 0 to 512 [ 66.393975][ T5300] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 66.405670][ T5303] loop4: detected capacity change from 0 to 128 [ 66.413893][ T5300] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2 [ 66.435279][ T5300] EXT4-fs (loop1): 1 truncate cleaned up [ 66.441838][ T5300] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 66.459476][ T5300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 66.471998][ T5306] netdevsim netdevsim3 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 66.484450][ T5306] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 66.555498][ T5306] netdevsim netdevsim3 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 66.566392][ T5306] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 66.601357][ T5312] loop1: detected capacity change from 0 to 164 [ 66.609556][ T5312] rock: directory entry would overflow storage [ 66.617695][ T5312] rock: sig=0x66, size=4, remaining=3 [ 66.632407][ T5306] netdevsim netdevsim3 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 66.632951][ T5312] rock: directory entry would overflow storage [ 66.644015][ T5306] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 66.651293][ T5312] rock: sig=0x66, size=4, remaining=3 [ 66.687422][ T4035] kworker/u8:63: attempt to access beyond end of device [ 66.687422][ T4035] loop4: rw=1, sector=145, nr_sectors = 8 limit=128 [ 66.705212][ T4035] kworker/u8:63: attempt to access beyond end of device [ 66.705212][ T4035] loop4: rw=1, sector=161, nr_sectors = 8 limit=128 [ 66.730977][ T4035] kworker/u8:63: attempt to access beyond end of device [ 66.730977][ T4035] loop4: rw=1, sector=177, nr_sectors = 8 limit=128 [ 66.750210][ T4035] kworker/u8:63: attempt to access beyond end of device [ 66.750210][ T4035] loop4: rw=1, sector=193, nr_sectors = 8 limit=128 [ 66.767103][ T4035] kworker/u8:63: attempt to access beyond end of device [ 66.767103][ T4035] loop4: rw=1, sector=209, nr_sectors = 8 limit=128 [ 66.785751][ T5306] netdevsim netdevsim3 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 66.788359][ T4035] kworker/u8:63: attempt to access beyond end of device [ 66.788359][ T4035] loop4: rw=1, sector=225, nr_sectors = 8 limit=128 [ 66.796603][ T5306] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 66.814178][ T4035] kworker/u8:63: attempt to access beyond end of device [ 66.814178][ T4035] loop4: rw=1, sector=241, nr_sectors = 8 limit=128 [ 66.838789][ T4035] kworker/u8:63: attempt to access beyond end of device [ 66.838789][ T4035] loop4: rw=1, sector=257, nr_sectors = 8 limit=128 [ 66.853727][ T4035] kworker/u8:63: attempt to access beyond end of device [ 66.853727][ T4035] loop4: rw=1, sector=273, nr_sectors = 8 limit=128 [ 66.868515][ T4035] kworker/u8:63: attempt to access beyond end of device [ 66.868515][ T4035] loop4: rw=1, sector=289, nr_sectors = 8 limit=128 [ 66.920131][ T5306] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 66.929426][ T5306] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 66.971680][ T5306] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 66.981503][ T5306] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.006195][ T5306] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 67.017310][ T5306] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.034888][ T5306] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 67.044885][ T5306] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.476177][ T5349] loop1: detected capacity change from 0 to 1024 [ 67.513398][ T5349] EXT4-fs: Ignoring removed nomblk_io_submit option [ 67.605676][ T5349] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 67.920649][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 67.996443][ T5356] vhci_hcd: invalid port number 96 [ 68.001951][ T5356] vhci_hcd: default hub control req: 0000 vfffc i0060 l0 [ 68.078966][ T5362] loop2: detected capacity change from 0 to 512 [ 68.113853][ T5362] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 68.135895][ T5362] EXT4-fs (loop2): 1 truncate cleaned up [ 68.144671][ T5362] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 68.225318][ T5368] netlink: 16 bytes leftover after parsing attributes in process `syz.0.784'. [ 68.246597][ T5368] bridge0: port 1(bridge_slave_0) entered disabled state [ 68.301742][ T5368] bridge_slave_0 (unregistering): left allmulticast mode [ 68.302296][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.311379][ T5368] bridge_slave_0 (unregistering): left promiscuous mode [ 68.337157][ T5368] bridge0: port 1(bridge_slave_0) entered disabled state [ 68.478525][ T5391] netlink: 4 bytes leftover after parsing attributes in process `syz.0.785'. [ 68.660264][ T5407] netlink: 'syz.4.792': attribute type 4 has an invalid length. [ 68.698701][ T5407] netlink: 'syz.4.792': attribute type 4 has an invalid length. [ 68.874758][ T5414] loop4: detected capacity change from 0 to 512 [ 68.900811][ T5414] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 68.911929][ T5414] EXT4-fs (loop4): invalid journal inode [ 68.919878][ T5414] EXT4-fs (loop4): can't get journal size [ 68.928384][ T5414] EXT4-fs (loop4): 1 truncate cleaned up [ 68.937786][ T5414] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 68.977891][ T5423] loop1: detected capacity change from 0 to 512 [ 68.996929][ T5423] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802c198, mo2=0002] [ 69.019393][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.023287][ T5423] System zones: 1-12 [ 69.035754][ T5423] EXT4-fs error (device loop1): ext4_iget_extra_inode:4693: inode #15: comm syz.1.799: corrupted in-inode xattr: invalid ea_ino [ 69.092932][ T5423] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.799: couldn't read orphan inode 15 (err -117) [ 69.108152][ T5423] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 69.139666][ T29] kauditd_printk_skb: 1725 callbacks suppressed [ 69.139683][ T29] audit: type=1326 audit(1748273627.193:2493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5421 comm="syz.1.799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f07dd1ed2d0 code=0x7ffc0000 [ 69.196857][ T29] audit: type=1326 audit(1748273627.203:2494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5421 comm="syz.1.799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f07dd1ed6b7 code=0x7ffc0000 [ 69.222854][ T29] audit: type=1326 audit(1748273627.203:2495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5421 comm="syz.1.799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f07dd1ed2d0 code=0x7ffc0000 [ 69.265893][ T29] audit: type=1326 audit(1748273627.203:2496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5421 comm="syz.1.799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 69.305170][ T29] audit: type=1326 audit(1748273627.203:2497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5421 comm="syz.1.799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 69.356143][ T5439] vhci_hcd: invalid port number 96 [ 69.361714][ T5439] vhci_hcd: default hub control req: 0000 vfffc i0060 l0 [ 69.381248][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.386825][ T29] audit: type=1326 audit(1748273627.393:2498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5421 comm="syz.1.799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=137 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 69.420799][ T29] audit: type=1326 audit(1748273627.393:2499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5421 comm="syz.1.799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 69.446288][ T29] audit: type=1326 audit(1748273627.393:2500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5421 comm="syz.1.799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 69.686309][ T5479] loop2: detected capacity change from 0 to 512 [ 69.694826][ T5479] EXT4-fs: Ignoring removed bh option [ 69.712857][ T5479] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 69.729684][ T5479] EXT4-fs (loop2): 1 truncate cleaned up [ 69.736665][ T5479] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 69.779524][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.802747][ T29] audit: type=1400 audit(1748273627.853:2501): avc: denied { watch } for pid=5487 comm="syz.0.828" path="/185/file0" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 69.846527][ T29] audit: type=1400 audit(1748273627.903:2502): avc: denied { unmount } for pid=3318 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1 [ 69.911943][ T5503] loop3: detected capacity change from 0 to 128 [ 69.915331][ T5500] netlink: 16 bytes leftover after parsing attributes in process `syz.2.818'. [ 69.937397][ T5500] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.948739][ T5503] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 69.973087][ T5500] bridge_slave_0 (unregistering): left allmulticast mode [ 69.980406][ T5500] bridge_slave_0 (unregistering): left promiscuous mode [ 69.987825][ T5500] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.995505][ T5503] ext4 filesystem being mounted at /147/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 70.070654][ T5514] syz_tun: entered allmulticast mode [ 70.081056][ T3316] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 70.131461][ T5513] syz_tun: left allmulticast mode [ 70.214516][ T5516] loop2: detected capacity change from 0 to 8192 [ 70.264267][ T5516] loop2: p1 p2 p4 [ 70.268565][ T5516] loop2: p1 size 108920841 extends beyond EOD, truncated [ 70.286139][ T5516] loop2: p2 start 861536256 is beyond EOD, truncated [ 70.294258][ T5516] loop2: p4 size 65536 extends beyond EOD, truncated [ 70.395487][ T5535] sd 0:0:1:0: device reset [ 70.491385][ T5544] loop0: detected capacity change from 0 to 128 [ 70.531620][ T5544] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 70.554592][ T5544] ext4 filesystem being mounted at /191/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 70.590088][ T3318] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 70.872688][ T5571] xt_CT: No such helper "snmp_trap" [ 71.033414][ T5586] tipc: Started in network mode [ 71.039748][ T5586] tipc: Node identity ac14140f, cluster identity 4711 [ 71.050190][ T5586] tipc: New replicast peer: 255.255.255.255 [ 71.058180][ T5586] tipc: Enabled bearer , priority 10 [ 71.087588][ T5590] loop4: detected capacity change from 0 to 128 [ 71.100295][ T5588] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 71.109590][ T5588] FAT-fs (loop4): Filesystem has been set read-only [ 71.120667][ T5588] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 71.131611][ T5588] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 71.217589][ T5601] loop4: detected capacity change from 0 to 1024 [ 71.236390][ T5604] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=27745 sclass=netlink_route_socket pid=5604 comm=syz.2.858 [ 71.236759][ T5601] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 71.310933][ T5601] syz_tun: entered allmulticast mode [ 71.367644][ T5600] syz_tun: left allmulticast mode [ 71.452439][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.484378][ T5613] Cannot find del_set index 0 as target [ 71.734574][ T5633] netlink: 104 bytes leftover after parsing attributes in process `syz.4.876'. [ 71.777948][ T5623] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.851266][ T5623] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 71.894046][ T5642] loop4: detected capacity change from 0 to 512 [ 71.922414][ T5642] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 71.936380][ T5642] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 71.946652][ T5642] EXT4-fs (loop4): 1 truncate cleaned up [ 71.954659][ T5642] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 71.971473][ T5642] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.995574][ T5623] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.173295][ T10] tipc: Node number set to 2886997007 [ 72.258907][ T5623] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 72.310210][ T5663] syzkaller1: entered promiscuous mode [ 72.319937][ T5663] syzkaller1: entered allmulticast mode [ 72.397240][ T5623] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.412054][ T5623] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.435471][ T5623] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.535178][ T5623] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.819599][ T5689] netlink: 'syz.4.900': attribute type 4 has an invalid length. [ 72.894793][ T5695] loop1: detected capacity change from 0 to 512 [ 72.923698][ T5695] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 72.967427][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 72.976197][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 72.984660][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 72.993133][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.001647][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.011115][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.020572][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.029156][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.033068][ T5695] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 73.037680][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.061791][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.070355][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.079915][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.088525][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.088676][ T5695] ext4 filesystem being mounted at /166/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 73.096765][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.096797][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.096819][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.096841][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.096862][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.152452][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.164846][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.177272][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.187189][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.196899][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.205958][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.215940][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.225032][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.234959][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.243301][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.253425][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.261769][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.271451][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.281815][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.290331][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.299522][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.308452][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.317207][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.327069][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.336259][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.346304][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.356913][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.366986][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.375450][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.384209][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.393278][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.402179][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.411003][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.420247][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.429222][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.437606][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.446571][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.457104][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.466174][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.475366][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: unknown main item tag 0x0 [ 73.488701][ T1039] hid-generic 0000:007F:FFFFFFFE.0005: hidraw0: HID v0.00 Device [syz1] on syz0 [ 73.520737][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.635213][ T5692] Set syz1 is full, maxelem 65536 reached [ 73.699428][ T5714] netlink: 12 bytes leftover after parsing attributes in process `syz.1.907'. [ 73.807830][ T5714] bond1: entered promiscuous mode [ 73.813496][ T5714] 8021q: adding VLAN 0 to HW filter on device bond1 [ 73.887131][ T5722] 8021q: adding VLAN 0 to HW filter on device bond1 [ 73.927664][ T5722] bond1: (slave ipip0): The slave device specified does not support setting the MAC address [ 73.963158][ T5722] bond1: (slave ipip0): Error -95 calling set_mac_address [ 74.082133][ T5731] loop1: detected capacity change from 0 to 128 [ 74.104778][ T5731] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 74.154286][ T5731] ext4 filesystem being mounted at /169/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 74.263159][ T3314] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 74.278801][ T29] kauditd_printk_skb: 155 callbacks suppressed [ 74.278820][ T29] audit: type=1400 audit(1748273632.333:2658): avc: denied { append } for pid=5734 comm="syz.4.916" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 74.313708][ T5735] random: crng reseeded on system resumption [ 74.415940][ T29] audit: type=1400 audit(1748273632.373:2659): avc: denied { open } for pid=5734 comm="syz.4.916" path="/dev/snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 74.444247][ T29] audit: type=1400 audit(1748273632.373:2660): avc: denied { firmware_load } for pid=4003 comm="kworker/u8:36" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1 [ 74.472892][ T29] audit: type=1326 audit(1748273632.393:2661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5736 comm="syz.1.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 74.497954][ T29] audit: type=1326 audit(1748273632.393:2662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5736 comm="syz.1.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 74.529737][ T29] audit: type=1326 audit(1748273632.393:2663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5736 comm="syz.1.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 74.555411][ T29] audit: type=1326 audit(1748273632.393:2664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5736 comm="syz.1.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=264 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 74.582315][ T29] audit: type=1326 audit(1748273632.393:2665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5736 comm="syz.1.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f07dd1ee969 code=0x7ffc0000 [ 74.653031][ T29] audit: type=1326 audit(1748273632.673:2666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5734 comm="syz.4.916" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5aa9dee969 code=0x0 [ 74.775316][ T5744] loop1: detected capacity change from 0 to 8192 [ 74.778903][ T5724] syz.2.912 (5724) used greatest stack depth: 7208 bytes left [ 74.824832][ T5752] process 'syz.2.931' launched '/dev/fd/5' with NULL argv: empty string added [ 74.872735][ T29] audit: type=1400 audit(1748273632.883:2667): avc: denied { execute } for pid=5750 comm="syz.2.931" dev="tmpfs" ino=1070 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 74.904686][ T5744] FAT-fs (loop1): error, clusters badly computed (2 != 1) [ 74.913329][ T5744] FAT-fs (loop1): Filesystem has been set read-only [ 74.958289][ T5757] loop3: detected capacity change from 0 to 512 [ 75.028427][ T5759] loop1: detected capacity change from 0 to 8192 [ 75.067508][ T5757] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 75.087658][ T5757] ext4 filesystem being mounted at /169/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 75.130877][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.150649][ T5766] xt_hashlimit: max too large, truncated to 1048576 [ 75.179861][ T5768] rdma_op ffff88811adaed80 conn xmit_rdma 0000000000000000 [ 75.321646][ T5782] syzkaller1: entered promiscuous mode [ 75.327760][ T5782] syzkaller1: entered allmulticast mode [ 75.403112][ T5786] loop3: detected capacity change from 0 to 164 [ 75.437238][ T5786] bio_check_eod: 107 callbacks suppressed [ 75.437258][ T5786] syz.3.937: attempt to access beyond end of device [ 75.437258][ T5786] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 75.463047][ T5786] syz.3.937: attempt to access beyond end of device [ 75.463047][ T5786] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 75.785452][ T5808] xt_CT: No such helper "snmp_trap" [ 75.837677][ T5819] loop0: detected capacity change from 0 to 512 [ 75.890963][ T5819] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 75.911943][ T5821] SELinux: failed to load policy [ 75.929963][ T5819] EXT4-fs (loop0): 1 truncate cleaned up [ 75.942158][ T5819] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 76.020356][ T5825] netlink: 8 bytes leftover after parsing attributes in process `+}[@'. [ 76.139198][ T5837] netlink: 28 bytes leftover after parsing attributes in process `syz.3.959'. [ 76.184041][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.269455][ T5847] loop2: detected capacity change from 0 to 8192 [ 76.510451][ T5876] loop3: detected capacity change from 0 to 512 [ 76.518332][ T5880] xt_hashlimit: max too large, truncated to 1048576 [ 76.552348][ T5876] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 76.595019][ T5876] EXT4-fs (loop3): 1 truncate cleaned up [ 76.623775][ T5876] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 76.641473][ T5891] loop0: detected capacity change from 0 to 1024 [ 76.668150][ T5891] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 76.695428][ T5891] syz_tun: entered allmulticast mode [ 76.702508][ T5890] syz_tun: left allmulticast mode [ 76.720937][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.756929][ T10] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 76.765550][ T5901] loop1: detected capacity change from 0 to 256 [ 76.783193][ T10] hid-generic 0000:0000:0000.0006: hidraw0: HID v0.00 Device [syz1] on syz0 [ 76.887388][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.037313][ T5910] loop1: detected capacity change from 0 to 1024 [ 77.047082][ T5910] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 77.114840][ T5910] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 77.135249][ T5917] netlink: 4 bytes leftover after parsing attributes in process `syz.3.995'. [ 77.161239][ T5910] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000] [ 77.176211][ T5917] (unnamed net_device) (uninitialized): Invalid ad_actor_system MAC address. [ 77.185889][ T5917] (unnamed net_device) (uninitialized): option ad_actor_system: invalid value (1) [ 77.197284][ T5910] EXT4-fs error (device loop1): ext4_map_blocks:675: inode #3: block 2: comm syz.1.992: lblock 2 mapped to illegal pblock 2 (length 1) [ 77.218548][ T5910] EXT4-fs (loop1): Remounting filesystem read-only [ 77.218770][ T5921] loop4: detected capacity change from 0 to 512 [ 77.248442][ T5923] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1006'. [ 77.272766][ T5921] EXT4-fs: Ignoring removed nomblk_io_submit option [ 77.279984][ T5921] EXT4-fs: Ignoring removed mblk_io_submit option [ 77.280553][ T5910] EXT4-fs (loop1): 1 orphan inode deleted [ 77.306118][ T5921] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 77.308684][ T5910] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 77.316559][ T5921] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 77.345895][ T5928] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 77.347788][ T5921] EXT4-fs (loop4): 1 truncate cleaned up [ 77.358918][ T5910] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.365805][ T5921] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 77.379393][ T5928] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 77.404369][ T5921] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 77.416458][ T5910] loop1: detected capacity change from 0 to 512 [ 77.439424][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.457388][ T5910] EXT4-fs (loop1): 1 orphan inode deleted [ 77.463888][ T5910] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 77.479732][ T4035] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:63: Failed to release dquot type 1 [ 77.493574][ T5910] ext4 filesystem being mounted at /189/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 77.532752][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.806750][ T9] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 77.822195][ T9] hid-generic 0000:0000:0000.0007: hidraw0: HID v0.00 Device [syz1] on syz0 [ 77.975156][ T5978] batadv_slave_1: entered promiscuous mode [ 77.983341][ T5977] batadv_slave_1: left promiscuous mode [ 78.011740][ T5980] netlink: 'syz.0.1019': attribute type 10 has an invalid length. [ 78.110724][ T5990] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1025'. [ 78.130776][ T5990] bond1: entered promiscuous mode [ 78.135103][ T5988] SELinux: failed to load policy [ 78.138368][ T5990] 8021q: adding VLAN 0 to HW filter on device bond1 [ 78.179665][ T5990] 8021q: adding VLAN 0 to HW filter on device bond1 [ 78.191007][ T5990] bond1: (slave ipip1): The slave device specified does not support setting the MAC address [ 78.204401][ T5990] bond1: (slave ipip1): Error -95 calling set_mac_address [ 78.310378][ T5999] loop1: detected capacity change from 0 to 8192 [ 78.579673][ T6029] loop3: detected capacity change from 0 to 512 [ 78.581955][ T6031] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1043'. [ 78.608208][ T6034] netlink: 14 bytes leftover after parsing attributes in process `syz.4.1044'. [ 78.620695][ T6029] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 78.626772][ T6031] bond1: entered promiscuous mode [ 78.637117][ T6031] 8021q: adding VLAN 0 to HW filter on device bond1 [ 78.643898][ T6029] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e042c118, mo2=0002] [ 78.659743][ T6029] System zones: 1-12 [ 78.666260][ T6029] EXT4-fs error (device loop3): ext4_iget_extra_inode:4693: inode #15: comm syz.3.1042: corrupted in-inode xattr: e_value size too large [ 78.685647][ T6029] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.1042: couldn't read orphan inode 15 (err -117) [ 78.707544][ T6031] 8021q: adding VLAN 0 to HW filter on device bond1 [ 78.717221][ T6029] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 78.732895][ T6031] bond1: (slave ipip0): The slave device specified does not support setting the MAC address [ 78.758332][ T6031] bond1: (slave ipip0): Error -95 calling set_mac_address [ 78.815573][ T6046] program syz.1.1049 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 78.851704][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.907653][ T6056] loop3: detected capacity change from 0 to 1764 [ 78.920245][ T6056] ISOFS: unable to read i-node block [ 78.926126][ T6056] isofs_fill_super: get root inode failed [ 78.982946][ T3391] kernel write not supported for file 436/task/437/loginuid (pid: 3391 comm: kworker/1:4) [ 79.089151][ T6074] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1061'. [ 79.105378][ T6074] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1061'. [ 79.141827][ T6078] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1063'. [ 79.162160][ T6078] bond1: entered promiscuous mode [ 79.169697][ T6078] 8021q: adding VLAN 0 to HW filter on device bond1 [ 79.194045][ T6078] 8021q: adding VLAN 0 to HW filter on device bond1 [ 79.201927][ T6078] bond1: (slave ipip0): The slave device specified does not support setting the MAC address [ 79.216478][ T6078] bond1: (slave ipip0): Error -95 calling set_mac_address [ 79.311285][ T29] kauditd_printk_skb: 120 callbacks suppressed [ 79.311303][ T29] audit: type=1400 audit(1748273637.363:2785): avc: denied { read } for pid=6094 comm="syz.3.1069" name="ptp0" dev="devtmpfs" ino=246 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 79.348664][ T29] audit: type=1400 audit(1748273637.403:2786): avc: denied { open } for pid=6094 comm="syz.3.1069" path="/dev/ptp0" dev="devtmpfs" ino=246 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 79.375280][ T29] audit: type=1400 audit(1748273637.403:2787): avc: denied { ioctl } for pid=6094 comm="syz.3.1069" path="/dev/ptp0" dev="devtmpfs" ino=246 ioctlcmd=0x3d05 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 79.462776][ T29] audit: type=1400 audit(1748273637.493:2788): avc: denied { setopt } for pid=6102 comm="syz.3.1075" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 79.534810][ T29] audit: type=1400 audit(1748273637.593:2789): avc: denied { bind } for pid=6105 comm="syz.3.1076" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 79.587868][ T29] audit: type=1400 audit(1748273637.593:2790): avc: denied { setopt } for pid=6105 comm="syz.3.1076" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 79.686383][ T6114] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 79.708682][ T6114] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 79.866933][ T29] audit: type=1400 audit(1748273637.923:2791): avc: denied { read write } for pid=3319 comm="syz-executor" name="loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 79.902089][ T29] audit: type=1400 audit(1748273637.953:2792): avc: denied { open } for pid=3319 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 79.938527][ T29] audit: type=1400 audit(1748273637.953:2793): avc: denied { ioctl } for pid=3319 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=104 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 79.989660][ T29] audit: type=1400 audit(1748273638.043:2794): avc: denied { read write } for pid=3318 comm="syz-executor" name="loop0" dev="devtmpfs" ino=679 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 80.268148][ T6132] netlink: 8 bytes leftover after parsing attributes in process `+}[@'. [ 80.700219][ T6151] SELinux: failed to load policy [ 81.125099][ T6191] loop4: detected capacity change from 0 to 512 [ 81.213719][ T6202] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1115'. [ 81.238132][ T6202] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1115'. [ 81.273195][ T6206] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=6206 comm=syz.1.1113 [ 81.296795][ T6206] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=6206 comm=syz.1.1113 [ 81.335021][ T6208] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1117'. [ 81.410410][ T6212] loop2: detected capacity change from 0 to 512 [ 81.436433][ T6212] EXT4-fs: Ignoring removed nomblk_io_submit option [ 81.445422][ T6191] EXT4-fs (loop4): orphan cleanup on readonly fs [ 81.452853][ T6191] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.1109: bad orphan inode 13 [ 81.464415][ T6191] ext4_test_bit(bit=12, block=18) = 1 [ 81.470600][ T6191] is_bad_inode(inode)=0 [ 81.475782][ T6191] NEXT_ORPHAN(inode)=2130706432 [ 81.481087][ T6191] max_ino=32 [ 81.484878][ T6191] i_nlink=1 [ 81.490341][ T6191] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 81.511766][ T6212] EXT4-fs: Ignoring removed mblk_io_submit option [ 81.520274][ T6191] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended [ 81.538780][ T6191] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1109: bg 0: block 248: padding at end of block bitmap is not set [ 81.563740][ T6212] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 81.574001][ T6191] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.1109: Failed to acquire dquot type 1 [ 81.583332][ T6212] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 81.597393][ T6191] EXT4-fs warning (device loop4): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 81.632766][ T6212] EXT4-fs (loop2): 1 truncate cleaned up [ 81.642177][ T6212] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 81.678262][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.700538][ T6212] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 81.712359][ T6233] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 81.722093][ T6233] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 81.770893][ T6237] pim6reg: entered allmulticast mode [ 81.778367][ T3324] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.791204][ T6237] pim6reg: left allmulticast mode [ 82.136478][ T6233] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 82.157525][ T6233] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 82.715610][ T6277] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1145'. [ 82.716666][ T6280] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1143'. [ 82.744314][ T6279] loop1: detected capacity change from 0 to 1024 [ 82.755374][ T6282] netlink: 'syz.4.1147': attribute type 21 has an invalid length. [ 82.771641][ T6279] EXT4-fs: Ignoring removed orlov option [ 82.806874][ T6279] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 82.826151][ T6279] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 82.864519][ T3314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.874783][ T6291] loop0: detected capacity change from 0 to 512 [ 82.893450][ T6291] EXT4-fs: Ignoring removed mblk_io_submit option [ 82.925032][ T6291] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 82.959716][ T6291] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c118, mo2=0002] [ 82.970551][ T6291] System zones: 1-12 [ 82.975624][ T6291] EXT4-fs error (device loop0): ext4_iget_extra_inode:4693: inode #15: comm syz.0.1150: corrupted in-inode xattr: e_value size too large [ 82.992652][ T6291] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.1150: couldn't read orphan inode 15 (err -117) [ 83.005893][ T6291] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 83.017896][ T6296] loop4: detected capacity change from 0 to 1024 [ 83.030202][ T6296] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 83.046120][ T6296] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 83.081039][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.096471][ T6296] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c840e02c, mo2=0000] [ 83.107727][ T6296] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 2: comm syz.4.1151: lblock 2 mapped to illegal pblock 2 (length 1) [ 83.126352][ T6296] EXT4-fs (loop4): Remounting filesystem read-only [ 83.134182][ T6296] EXT4-fs (loop4): 1 orphan inode deleted [ 83.140827][ T6296] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 83.157507][ T6296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.193981][ T6296] loop4: detected capacity change from 0 to 512 [ 83.233896][ T6305] loop0: detected capacity change from 0 to 8192 [ 83.252825][ T6296] EXT4-fs (loop4): 1 orphan inode deleted [ 83.263658][ T6296] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 83.268151][ T3985] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:20: Failed to release dquot type 1 [ 83.293192][ T6296] ext4 filesystem being mounted at /221/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 83.294489][ T6310] loop3: detected capacity change from 0 to 128 [ 83.320352][ T6310] EXT4-fs: Ignoring removed nobh option [ 83.340621][ T3319] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.355043][ T6310] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 83.369235][ T6310] ext4 filesystem being mounted at /223/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 83.485899][ T3316] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 83.573993][ T6305] ================================================================== [ 83.582733][ T6305] BUG: KCSAN: data-race in fat16_ent_put / fat_mirror_bhs [ 83.596683][ T6305] [ 83.599127][ T6305] write to 0xffff88812fcc1820 of 2 bytes by task 6311 on cpu 1: [ 83.607732][ T6305] fat16_ent_put+0x28/0x60 [ 83.612805][ T6305] fat_alloc_clusters+0x4ce/0xa80 [ 83.620083][ T6305] fat_get_block+0x258/0x5e0 [ 83.626154][ T6305] __block_write_begin_int+0x419/0xf70 [ 83.638269][ T6305] cont_write_begin+0x5a3/0x8e0 [ 83.643445][ T6305] fat_write_begin+0x4f/0xe0 [ 83.648577][ T6305] generic_perform_write+0x181/0x490 [ 83.655923][ T6305] __generic_file_write_iter+0x9e/0x120 [ 83.662299][ T6305] generic_file_write_iter+0x8d/0x2f0 [ 83.669895][ T6305] vfs_write+0x4a0/0x8d0 [ 83.675316][ T6305] ksys_write+0xda/0x1a0 [ 83.680114][ T6305] __x64_sys_write+0x40/0x50 [ 83.685374][ T6305] x64_sys_call+0x2cdd/0x2fb0 [ 83.692042][ T6305] do_syscall_64+0xd0/0x1a0 [ 83.698061][ T6305] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 83.704362][ T6305] [ 83.706704][ T6305] read to 0xffff88812fcc1800 of 512 bytes by task 6305 on cpu 0: [ 83.716459][ T6305] fat_mirror_bhs+0x1df/0x320 [ 83.722530][ T6305] fat_alloc_clusters+0x98b/0xa80 [ 83.727864][ T6305] fat_get_block+0x258/0x5e0 [ 83.738116][ T6305] __block_write_begin_int+0x419/0xf70 [ 83.744077][ T6305] cont_write_begin+0x5a3/0x8e0 [ 83.749233][ T6305] fat_write_begin+0x4f/0xe0 [ 83.762077][ T6305] cont_write_begin+0x19b/0x8e0 [ 83.767580][ T6305] fat_write_begin+0x4f/0xe0 [ 83.774361][ T6305] generic_perform_write+0x181/0x490 [ 83.782643][ T6305] __generic_file_write_iter+0x9e/0x120 [ 83.790037][ T6305] generic_file_write_iter+0x8d/0x2f0 [ 83.797268][ T6305] do_iter_readv_writev+0x3ee/0x4b0 [ 83.804485][ T6305] vfs_writev+0x2c9/0x870 [ 83.811585][ T6305] __se_sys_pwritev2+0xfc/0x1c0 [ 83.822530][ T6305] __x64_sys_pwritev2+0x67/0x80 [ 83.827863][ T6305] x64_sys_call+0x1cea/0x2fb0 [ 83.835951][ T6305] do_syscall_64+0xd0/0x1a0 [ 83.841475][ T6305] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 83.849284][ T6305] [ 83.852724][ T6305] Reported by Kernel Concurrency Sanitizer on: [ 83.860492][ T6305] CPU: 0 UID: 0 PID: 6305 Comm: syz.0.1152 Not tainted 6.15.0-syzkaller #0 PREEMPT(voluntary) [ 83.871372][ T6305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 83.883779][ T6305] ==================================================================