last executing test programs: 1.73981272s ago: executing program 0 (id=4477): timer_settime(0x0, 0x5, &(0x7f00000001c0)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) r0 = fsopen(&(0x7f0000000040)='autofs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='/sys/fs/smackfs/revoke-subject\x00', &(0x7f0000000080)='autofs\x00', 0x0) readv(r0, &(0x7f0000000140)=[{&(0x7f0000000200)=""/4096, 0x3d}], 0x5a) 1.712170252s ago: executing program 0 (id=4478): r0 = syz_open_dev$evdev(&(0x7f0000000180), 0x0, 0x0) ioctl$EVIOCGRAB(r0, 0x40044591, 0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000c85000)={0x90000004}) 1.677921705s ago: executing program 0 (id=4482): r0 = socket$nl_generic(0x10, 0x3, 0x10) perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x35, 0x1, 0x0, 0x0, 0x0, 0x7, 0x4010, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5, 0xffffffffffff3158}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="2c0000003b00090000000000cd00000001000000180003"], 0x2c}}, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x800) 1.618265491s ago: executing program 0 (id=4487): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000010100008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xffffffff, 0x0, 0x0, @void, @value, @void, @value}, 0x48) 1.583038084s ago: executing program 4 (id=4489): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000440)={0xffffffffffffffff}, 0x2, 0x48d024685c39fb1b}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r1, &(0x7f00000004c0)={0x4, 0x8, 0xfa00, {r2, 0x6}}, 0x10) 1.558140826s ago: executing program 4 (id=4491): r0 = socket$igmp(0x2, 0x3, 0x2) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000004c0)={'pimreg\x00', 0x5dcf70ef8daa5d0e}) setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000080)={0x0, 0x4, 0x0, 0x0, @vifc_lcl_ifindex, @local}, 0x10) 1.554665997s ago: executing program 0 (id=4492): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x200000, &(0x7f0000000180), 0xfc, 0x57c, &(0x7f00000013c0)="$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") mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)='proc\x00', 0x0, 0x0) chdir(&(0x7f00000001c0)='./file0\x00') rmdir(&(0x7f0000000000)='./bus\x00') 1.451865156s ago: executing program 4 (id=4495): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000010000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='tlb_flush\x00', r0}, 0x10) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2) 1.428924418s ago: executing program 0 (id=4496): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000001c0)='syz_tun\x00', 0x10) syz_emit_ethernet(0x6e, &(0x7f00000003c0)={@multicast, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "02adf7", 0x38, 0x3a, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[], @time_exceed={0x2, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "fd9063", 0x0, 0x3a, 0x0, @ipv4={'\x00', '\xff\xff', @local}, @loopback={0x0, 0xffffac1414aa}, [], "1e520b4c951ee12e"}}}}}}}, 0x0) 1.002552748s ago: executing program 4 (id=4504): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @local, 0x1}, 0x1c) r1 = epoll_create(0x689) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000000c0)={0x10000000}) 603.240424ms ago: executing program 1 (id=4524): creat(&(0x7f00000000c0)='./bus\x00', 0x0) mount(&(0x7f0000000380)=@sg0, &(0x7f0000000340)='./bus\x00', 0x0, 0x1000, 0x0) r0 = creat(&(0x7f0000000380)='./bus\x00', 0x0) poll(&(0x7f0000000ac0)=[{r0, 0x441e}], 0x1, 0x20800) 577.406336ms ago: executing program 1 (id=4525): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @none, 0x4}, 0xe) connect$bt_l2cap(r0, &(0x7f0000000240)={0x1f, 0x0, @any, 0x4, 0x2}, 0xe) getsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, &(0x7f0000000180)) 546.038279ms ago: executing program 1 (id=4528): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0900000005000000080000004000000042000000", @ANYRES32, @ANYBLOB="0000000000000000000000000000000300000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/17], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000580), 0x1000, r0}, 0x38) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000001600)={r0, &(0x7f0000000580), &(0x7f0000001580)=""/92}, 0x20) 452.017918ms ago: executing program 1 (id=4534): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000060000000000000000008500000007000000850000000e00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={&(0x7f0000000040)='kfree\x00', r0}, 0x10) r1 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000001000)={0x0, 0x8000, 0x1000, 0x0, 0x4}, 0x20) 420.955761ms ago: executing program 1 (id=4537): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x6, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xd, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000002a00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10) getpgid(0xffffffffffffffff) 380.889025ms ago: executing program 1 (id=4540): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) ppoll(&(0x7f0000000180)=[{}, {r0}], 0x2, 0x0, 0x0, 0x0) 243.995727ms ago: executing program 3 (id=4548): rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000c80)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00010000850000000d000000b7000000000000009500000000000000496cf2827fb43a431ca7f8fbc9cdfa146ec56175037958e271f60d25b7937f02c8695e5a1b2cdf41dc10d1e8bf076d83923dd29c0301000000010000003d5d78c07fa1f7e4d5b318e2ec0e0700897a74a0091ff110026e6d2ef831ab7ea0c34f17e3ad6e70af07da5ceb01b7551ef3bb622003b538dfd8e012e79578e51bc53099e90fbdb2ca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e060e3670ef0e789f93781965f1328d6704902cbe7bc0476619f28d99cde7a6b73340cc2160a1fe3c184b751c51160fbce841dfebd31a08b32808b80200000000009dd27080e71113610e10d8fb9c2aec61ce63a3462fd50117b89a9ab759b4eeb8cb000067d42b4e54861d0227dbfd2ed8576a3f7f3deadd7130856f756436303767d2e24f29e5dad9796edb697a6ea0180aabc18cae2ed4b4390af9a9ceafd07ed0030000002cab154ad029a119ca3c972780870014605c83d7d11c3c975d5aec84222fff0d7216fdb0d3a0ec4bfae563858dc06e7c337642d3e5a815212f5e16c1b30c3a2a71bc85018e5ff2c910496f18afc9ffc2cc788bee1b47683db01a46939868d75211bbae0e7313bff5d4c391ddece00fc772dd6b4d4d0a917b239fe12280fc92c88c5b8dcdcc22ee1747790a8992533ac2a9f5a699593f084419cae0b4183fb01c73f99857399537f5cc2acb72c7eae993fc9eb22d130665b6341da114f08cd0509d380578673fffffff7f23877a6b24db0e067345560942fa629fbef2461c96a08707671215c302fae29187d4f5c06a960fd37c10223fdae7ed04935c3c90d3add8eebc8619d73415e6adcda2130f5011e42e50adab988dd8e12baf5cc9398c88607a08009c2977aab37d9a44cfc1c7b4000000000000fa47742f6c5b9c4b11e7d7262a1457c39495c826b956ba859adfe38f77b91bd7d5ca1664fe2f3ced8468911806e8916dc15e21644db60c2499d5d16d7d915836ab26c169482008ef069dc42749289f854797f2f900c2a12d8c38a967c1bbe09315c29877a331bcc874b2f663ddeef0005b3d96c7aae73835d5a3cda9e90d76c1993e0799d4894ee7f8249dc1e3428d2129369ee1b85afa1a5b6154eb2eea0d0df414b315f65112412392191fa83ee830548f11e1038debd64cbe359454a3f2239cfe35f81b7ade8a5b859968ff0e90500d0b07c0dd00490f167e6d5c1109681739dc33f75b20428d6474a0a91ee90b8de802c6b538622e6bbcb80f87b415263c401e64ed69a2f75409000000000000001d695c4559b82cabac3cccadc1e1c19af4e03020abf5ff0433d660f20898d2a045d009a0ffb20a77c9af2b80c05184a66d30bbea2ca45a4d6d6d1e6e79aef42355a500587b603306a5af8d867d80a07f10d82eafb03062e95196d5e3ffea0000000000000be959096ea948cfa8e7194123e918914a71ad5a8521fb9553bc60f7d9719b55b3abb6bba3d113a680a8d46fe074c83fbe378a3889e8145b2eaceab05ef932c6e4f8ef0ed0d818a7b76d839cf3c63ebb4380b168c38fa32e49563cfee3a7f0fc18bfa32c418cef875fb49e2989177a1bcd1e30280bc586e79a5dd80701018e7d6e97b3ce267dd4e27b6ef206660090bb2164474cef378f97ca33fc03000000000000001547053453d0c9aec91a24079b21d52fb5516bf0c28ef37aa76442f6083dc99cd61afaf6be45d7b00d3639f2f10ac2d5c759c3e5468f0000000011d415b6b085fb73a2c7c3852e0e658ffeb4e863428a792bee94f6cd895424360e0464f9d7ea425f2fa6aac029d15af607ad83532ff181c985f54b39370c06e63055b4d6a36fa98a44e379d28307c9912fb097601f3f88a2ca6fd1f9320cfe7fc8e9f7f15f02e177ce23f43a154b42e26f037e8a01377cbd3f509e6e540c9ba9c2a589c95d8ad67a65e9a44c576dc24452eaa9d819e2b04bdd1c000000070000000000000000000000005333c6199c12dcd926891927a7267c47cf897853d160100b39b613faefe16bed1fc105dddd77ab929b837d4442d13d5a29179a00837918dd7854aa17eb9fbdc2bdc0e98ae2c3f23a6131e2879f04ff01000030b92dd493be66c2242f8184733b80ba28e8ffffff7f00000000bb2f89049c5f6d63d56995747639964217aacfe548bc869098aa8e07e51dbc9e2d4db3c5f79fd355222ec2a00cf7f2ccd6dd6d2dc2a815d8314221a5472f1318a9dfbec5a759579caf3262129b14e99040b5d91398e17df85c25ccae973eecc7d187168d5c9cd848d566cc17587641ed01889c927da38d83314480b15e23138c5b877a72bd4cf74a299df4fbfc8e6ea96939f15d254d9033c5d371c61f550e9d86aabda45706bda78ab60200000000000000000000000000000000000000706f78f0a2ea9667fb5b951808545a46830970c2dfae01adbda7d29bf1f7abdaf52e0de6f9d7150808ed086642e64ebf98762b34338b80e41b704c3eefaf0bb5ff070000000000000ea15ccc0d7a830b6eb33b6b61675511d693ef5e3c44bbf71cabc5f45c879e7499f8baae2a1a09cf38da73297764fbc0e723e1cc3abb12e3076982ed32c94a2ce3e6f37c47e983da4ca5c96187db5a2a2e1742bc93a65d7187126126b3a80f17dd2f7dbbe82d104ede9ba6925afc2ee6cb94f56f1363cad635abf8f983292c49c0ebf5005154c7b58a3a2a2ea86d2fd92b8661264f781e3fb02d05a28f3f17b64d0258853d45cb5ebde10cd3d82eeed2f1ed925b7cf400304932c5ed0a362b235ce37e1f17700f7d1fecf8be8a2c5d25a9c60657560d05441387ff158a018d19a286c58684a1d2f624c3eb59d509ee89cc2df52881d005b2e5c27563ba54e4153c132d0366aa660000000000000009c1aaec93ec0f925921fb2e9eb202a29bef28224dbabe723de5c584bc398a8792e493048c87f60a51a391e95921218149403558fd13c649f90b0911d57eeb298b590581eba1ce383b539ab80fd15445987b1bb4eb512545e1ab65fef3103ce10b1ee362b51c72f82edf2f502ddf52567775e34a56d1be892f1e62b08950d517fa6fb1b0ef2edf1b67f8644786116b037d4a36fdd30b000063e58c856ec44cbbc2d370553f832af9480215e09aaa3843fe360b1c293a14627f2cfbe278f31d0abc0f5aaa10926dbbfe8a4b131c13a73d4e6d065c2c0fed3ab8442520ce0e0ad7d2d177377ab197ace3ef8b1c24ceb0bdee84bd6e6317633938dd19dc42de7f8f860eca6d9c74525fcd3497526df4c13e3ba5f0d75365a4542ae9440d2fede416d618cdaaf7e038879c5d177b3876fda4121e00000100000000003edd3d43cc64e0d26b46907b42e08d000000000000903350932d3eef7fdada20c19807066e2c72d0d816eb9fa50be213bf6bbb7ccb9f2e8a153e6ced68f192ebed6e86af0f2cec7335fa8039fd6eb025440bc2a34d071f0a0e6774308a74748b8cd994ed368695aa2c5986aa9200a1306ffa5a71ca69e89a6980612b35fc858f37c2c398515a910a35e22ab0573c10b85df4c2972a2fb8b9c080fbb41a753791df727fdeaded2930376eda31312256191c620cce34d1e3bf40a4a207ab1575b399eb8155781bfc7cb5920b49c039935a888d77041894f60fbbcafa487ee96b368e8769da90b44190e569fe8b923c32c288baaca5c5558b5a78bb43e5d9e47a1d5809bb178184b5672d08e29aecf1f572ac1e6cab7e820751e95999b7532603494d37a2bff35a9eec46dfc8a52433f605ebf151c837b4966b5f3628a406175a87e32c5e4268d3000933b580415b162e2946446b8f02554c8a1225217d69d049685dd06aa8528673a9673a723ac414af77f523ad730d00e8700c213f95c87a94f39f506b9e000000000000000000000000000000000000000000000000000090668ac41a1c2a4f7831e6c6a3e9c68ca2c449482bb70a994e71a7f24873848fbb128c820c1de19cc003dfa65a2b296caeb1253802080e08eeb724c4c7b7e052afa19b0f2cd7a13bda4b5a8f3b8fa3ca70bb756a3d529718d5c79d9bdb89e5d33793533211d76d00a45079eff797476106bf76f1fed952a7c9162b88911b5b00c3d26fd2fb4d7b29d1ce025e102d458efd5cca3f3835ce760359eaa01cb13cb28d60e8942fdc02b6824c00dac62f8a2d4c680ae284a82f09d6641921536814b444e4188d9b2e97eb3b108e7876f0f3f3863147ab694218c7cecc075d52d590dddbb57fc6fedf5ec69d7894a7b5c8109f303dab998815c80534b0bd34c49eea63997e56728a8185a8bb6988a7197b87f5548f5edfdfb3efc907fe561b33a6f7c707f7828c6adaf3b2a39929b4b65253e787d65c08aff5e4a9b2267bd8f803ea38f10a6e9c4a49bf23525e08c12d229211fe4d88cf1440f29accfa50f327ac1fb20d7f164100111bd21fca713b2475f1c997f3000000000080c426bcec79c6bc83ce4e6cbb17c01be69db342192d0a716cc24710d23321441f475ec485d642b61c6bd907071dbbe37c0b78f60fd2ad0d13ca62d9d9aafb01c3920b64cb5e023810e2de4327f90c389ce36d90ff9f3cb9d8cd2260d05a8126943a3df17157470595c68ac8df7fea6d42ecb2cdb65b4f2aef0db2b2de949a6d4ec37f2fd693ae44944041a64fe6336aba1c66b1b95d2edbc40364a049616ae962d75eae619548aa86bd5f0bad56e7ad7de2ee5e6f3b42e3a27094b6b5face99456d9af1926b21d37faf7612d9752cf58e6424decd530b5419e117ec08647566b1bdd75d6a9a1e600aaf0f42ce94b4725d4c2da80150dc34e5975d6904f061ed9a7608959f2d24ee6ec4f2395d16e02f53c746f74b12013f738d76456c3407188eff97f31ca36e5d79e1f1c7c3b688ee21d37ba5ebf4afc2a61f16"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x55, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) socket$packet(0x11, 0xa, 0x300) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe06, 0x1000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c) 172.044664ms ago: executing program 3 (id=4551): bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa4"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IPVS_CMD_NEW_DAEMON(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000800)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01000000000000000000090000003c0003800800010002000000140002007663616e300000000000000000000000080003000000000014000600"], 0x50}}, 0x0) 140.850986ms ago: executing program 3 (id=4552): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='setgroups\x00') r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue1\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) 140.626627ms ago: executing program 2 (id=4553): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000700ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) request_key(&(0x7f0000000180)='rxrpc\x00', &(0x7f0000000040)={'syz', 0x1}, &(0x7f00000001c0)='{-^@\\\x83+C\x17\xd0]\x05\xc1\xbb]\x81\xa2!n\x94\xa0\xfb\x9c\x1c\xfa\xeb\xae\x93\xe4\xf0\x11\xdf\xed.\a\xf2W{\x061\xb7W\xc5b\xac\xd9c^\x91\xc3\'\x8e)\f$\x1f\x03\xb1\x91K\xbeK\xb4\x80\nwO\xb0\xd5\x90TTU\xb0E\xfa\x85]\x85\xe8\xb5\t\x9b\xcf\xf4\xb9\x1c>\xc8F?\x0f\xc6\x83IC\x02b\xa2\x11\xd3\xd8\xf0\xb3\x85\v\x02I*#\xc6@\xca\xdbM\xea<\xf3\xa3_\xff*\xaa~b{+\xc4I\xd1$)\xcf^\xaf\x92\xe1\xb4\x93\xfb\x05\x00\x00\x00\x00\x00\x00\x00\x9f\v\x81\xda\xe3`\xe7\x15\x05\b\x03-\xeckHP\xee\xcd\xd0\xe3\x0e\x05)\x97z\xdd0h\x8e\xe2\xb8\xeb\x8dOKK\x1b\xf7\xac\xfe\xc9\xf7\xcb\xb5\xac\x90\x9cZ\x18\x80I\t\xa2\xee\x1f\xfa\xa1\xc9\x84\x93\xcc\x85', 0xffffffffffffffff) 136.958137ms ago: executing program 3 (id=4554): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfffffffffffffef4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x64) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c00000013000100"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000008001300", @ANYRES32=0x0, @ANYBLOB="08001c"], 0x3c}}, 0x0) 126.712258ms ago: executing program 2 (id=4555): r0 = socket$inet(0x2, 0x2, 0x1) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='kfree\x00', r1}, 0x10) sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000540)=[{&(0x7f0000000400)="08001efbb07d586e", 0xffe8}], 0x1, &(0x7f0000000040)=[@ip_tos_int={{0x14, 0x0, 0x7}}], 0x18}, 0x0) 115.404359ms ago: executing program 3 (id=4556): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r1}, 0x10) ustat(0x0, 0x0) 105.32214ms ago: executing program 2 (id=4557): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"}) r1 = syz_open_pts(r0, 0x0) ioctl$TCFLSH(r1, 0x540b, 0x1) 91.098651ms ago: executing program 2 (id=4558): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000dfff75390000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r0}, 0x10) r1 = io_uring_setup(0x1694, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x400000}) io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r1, 0x1d, 0x0, 0x0) 73.979753ms ago: executing program 3 (id=4559): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000440)={[{@grpid}, {@grpquota}]}, 0x6, 0x4eb, &(0x7f0000000540)="$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") unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0) 72.145023ms ago: executing program 2 (id=4560): r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'wg2\x00', 0x0}) sendto$packet(r0, &(0x7f0000000400)="58b3", 0x2, 0x4004854, &(0x7f0000000040)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, 0x14) 47.054906ms ago: executing program 2 (id=4561): r0 = socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'erspan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=@newlink={0x40, 0x10, 0xc3b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, 0x0, 0x10}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_ERSPAN_VER={0x5, 0x16, 0x1}]}}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) 44.660356ms ago: executing program 4 (id=4562): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 0s ago: executing program 4 (id=4563): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x58, 0x16, 0xa, 0x203, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x2c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'syz_tun\x00'}]}]}]}], {0x14}}, 0x80}}, 0x0) syz_emit_ethernet(0x66, &(0x7f00000004c0)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000008004500005800000000082f9078ac1414bb0700000086dd"], 0x0) kernel console output (not intermixed with test programs): 156][ T9545] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 94.723739][ T7375] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 94.778577][ T9557] loop3: detected capacity change from 0 to 256 [ 94.864759][ T9566] loop4: detected capacity change from 0 to 2048 [ 94.923044][ T9566] Alternate GPT is invalid, using primary GPT. [ 94.929478][ T9566] loop4: p2 p3 p7 [ 95.049258][ T9591] loop4: detected capacity change from 0 to 164 [ 95.116478][ T9596] bridge_slave_0: left allmulticast mode [ 95.122219][ T9596] bridge_slave_0: left promiscuous mode [ 95.128090][ T9596] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.158868][ T9596] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 95.304633][ T9618] __nla_validate_parse: 13 callbacks suppressed [ 95.304650][ T9618] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2474'. [ 95.345427][ T9618] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2474'. [ 95.369155][ T9621] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2475'. [ 95.501882][ T9633] bridge_slave_0: left allmulticast mode [ 95.507661][ T9633] bridge_slave_0: left promiscuous mode [ 95.513442][ T9633] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.529169][ T9633] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 95.710052][ T9659] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 95.717587][ T9659] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 95.720854][ T9661] loop4: detected capacity change from 0 to 512 [ 95.731589][ T9659] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check. [ 95.748001][ T9660] IPv6: NLM_F_CREATE should be specified when creating new route [ 95.765377][ T9665] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=9665 comm=syz.2.2496 [ 95.792355][ T9667] loop1: detected capacity change from 0 to 128 [ 95.803295][ T9661] EXT4-fs error (device loop4): ext4_get_first_dir_block:3532: inode #12: comm syz.4.2495: Directory hole found for htree leaf block 0 [ 95.838581][ T9667] tmpfs: Bad value for 'mpol' [ 95.879419][ T9673] bridge_slave_0: left allmulticast mode [ 95.885125][ T9673] bridge_slave_0: left promiscuous mode [ 95.890828][ T9673] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.900424][ T9673] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 96.037843][ T9693] syz.4.2511[9693] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 96.054511][ T9697] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2512'. [ 96.076402][ T9699] netlink: 72 bytes leftover after parsing attributes in process `syz.4.2513'. [ 96.157153][ T9619] 9pnet_fd: p9_fd_create_tcp (9619): problem connecting socket to 127.0.0.1 [ 96.213515][ T9726] loop4: detected capacity change from 0 to 512 [ 96.226360][ T9726] EXT4-fs: Ignoring removed oldalloc option [ 96.232778][ T9726] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 96.287758][ T9734] loop3: detected capacity change from 0 to 512 [ 96.294466][ T9726] EXT4-fs (loop4): 1 truncate cleaned up [ 96.315830][ T9734] EXT4-fs error (device loop3): ext4_get_first_dir_block:3532: inode #12: comm syz.3.2530: Directory hole found for htree leaf block 0 [ 96.508753][ T9749] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2536'. [ 96.518541][ T9749] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2536'. [ 96.541110][ T9752] IPv6: NLM_F_CREATE should be specified when creating new route [ 96.605640][ T9758] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2549'. [ 96.749202][ T9773] netlink: 3 bytes leftover after parsing attributes in process `syz.2.2557'. [ 96.764516][ T9773] 0ªX¹¦À: renamed from caif0 [ 96.781970][ T9773] 0ªX¹¦À: entered allmulticast mode [ 96.787265][ T9773] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 96.823890][ T9779] loop0: detected capacity change from 0 to 512 [ 96.873688][ T9781] loop4: detected capacity change from 0 to 512 [ 96.883026][ T9781] EXT4-fs: Ignoring removed i_version option [ 96.946713][ T9781] EXT4-fs (loop4): 1 truncate cleaned up [ 96.953252][ T9779] EXT4-fs error (device loop0): ext4_acquire_dquot:6879: comm syz.0.2547: Failed to acquire dquot type 1 [ 96.988999][ T9779] EXT4-fs (loop0): 1 truncate cleaned up [ 97.050100][ T9801] netlink: 'syz.3.2559': attribute type 6 has an invalid length. [ 97.067344][ T29] kauditd_printk_skb: 227 callbacks suppressed [ 97.067363][ T29] audit: type=1400 audit(97.059:2253): avc: denied { mount } for pid=9798 comm="syz.4.2560" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1 [ 97.138958][ T29] audit: type=1400 audit(97.119:2254): avc: denied { mount } for pid=9804 comm="syz.2.2561" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 97.148920][ T9803] bridge_slave_0: left allmulticast mode [ 97.165993][ T9803] bridge_slave_0: left promiscuous mode [ 97.171858][ T9803] bridge0: port 1(bridge_slave_0) entered disabled state [ 97.180164][ T29] audit: type=1400 audit(97.169:2255): avc: denied { compute_member } for pid=9808 comm="syz.4.2562" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 97.200186][ T29] audit: type=1400 audit(97.179:2256): avc: denied { read write } for pid=9810 comm="syz.2.2574" name="ppp" dev="devtmpfs" ino=116 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 97.222845][ T29] audit: type=1400 audit(97.179:2257): avc: denied { open } for pid=9810 comm="syz.2.2574" path="/dev/ppp" dev="devtmpfs" ino=116 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 97.228947][ T9817] loop4: detected capacity change from 0 to 512 [ 97.245461][ T29] audit: type=1400 audit(97.179:2258): avc: denied { ioctl } for pid=9810 comm="syz.2.2574" path="/dev/ppp" dev="devtmpfs" ino=116 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 97.254159][ T9817] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 97.280711][ T9803] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 97.298893][ T9817] EXT4-fs (loop4): 1 truncate cleaned up [ 97.303358][ T9812] netlink: 3 bytes leftover after parsing attributes in process `syz.3.2563'. [ 97.323442][ T29] audit: type=1400 audit(97.309:2259): avc: denied { rename } for pid=9816 comm="syz.4.2565" name="file0" dev="loop4" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 97.345212][ T29] audit: type=1400 audit(97.309:2260): avc: denied { unlink } for pid=9816 comm="syz.4.2565" name="file1" dev="loop4" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 97.349426][ T9812] 0ªX¹¦À: renamed from caif0 [ 97.367174][ T29] audit: type=1400 audit(97.309:2261): avc: denied { write } for pid=9816 comm="syz.4.2565" path="/182/bus/file0/bus" dev="loop4" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 97.399549][ T9812] 0ªX¹¦À: entered allmulticast mode [ 97.399553][ T29] audit: type=1400 audit(97.389:2262): avc: denied { mounton } for pid=9820 comm="syz.1.2566" path="/228/bus" dev="tmpfs" ino=1188 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 97.426841][ T9812] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 97.453215][ T9824] loop0: detected capacity change from 0 to 256 [ 97.476379][ T9824] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 97.504561][ T9834] loop0: detected capacity change from 0 to 164 [ 97.534766][ T9841] loop3: detected capacity change from 0 to 512 [ 97.541625][ T9841] EXT4-fs: Ignoring removed bh option [ 97.554087][ T9837] loop1: detected capacity change from 0 to 1024 [ 97.558019][ T9841] EXT4-fs error (device loop3): __ext4_iget:4952: inode #15: block 1803188595: comm syz.3.2576: invalid block [ 97.572447][ T9841] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.2576: couldn't read orphan inode 15 (err -117) [ 97.594725][ T9847] cgroup: No subsys list or none specified [ 97.647387][ T9856] loop3: detected capacity change from 0 to 512 [ 97.665730][ T9856] EXT4-fs: Ignoring removed mblk_io_submit option [ 97.728001][ T9869] loop1: detected capacity change from 0 to 512 [ 97.739298][ T9869] EXT4-fs: Ignoring removed nobh option [ 97.759901][ T9869] journal_path: Lookup failure for '.' [ 97.765403][ T9869] EXT4-fs: error: could not find journal device path [ 97.765357][ T9867] loop3: detected capacity change from 0 to 2048 [ 97.781176][ T9881] netlink: 'syz.2.2595': attribute type 1 has an invalid length. [ 97.880161][ T9903] syz_tun: entered promiscuous mode [ 97.885874][ T9902] syz_tun: left promiscuous mode [ 98.014201][ T9913] bpf_get_probe_write_proto: 14 callbacks suppressed [ 98.014221][ T9913] syz.3.2607[9913] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 98.022319][ T9913] syz.3.2607[9913] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 98.034090][ T9913] syz.3.2607[9913] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 98.037295][ T9915] loop0: detected capacity change from 0 to 512 [ 98.066131][ T9915] EXT4-fs: Ignoring removed oldalloc option [ 98.074249][ T9915] EXT4-fs error (device loop0): ext4_xattr_inode_iget:436: comm syz.0.2608: Parent and EA inode have the same ino 15 [ 98.087177][ T9915] EXT4-fs (loop0): Remounting filesystem read-only [ 98.093773][ T9915] EXT4-fs warning (device loop0): ext4_evict_inode:259: couldn't mark inode dirty (err -5) [ 98.105274][ T9915] EXT4-fs (loop0): 1 orphan inode deleted [ 98.111810][ T9915] SELinux: (dev loop0, type ext4) getxattr errno 5 [ 98.333429][ T9943] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 98.455929][ T9958] SELinux: policydb version -544360880 does not match my version range 15-33 [ 98.465547][ T9958] SELinux: failed to load policy [ 98.545819][ T9973] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 98.684316][ T9988] netlink: 'syz.1.2642': attribute type 3 has an invalid length. [ 98.693977][ T9992] loop3: detected capacity change from 0 to 256 [ 98.741733][ T9994] netlink: 'syz.1.2646': attribute type 10 has an invalid length. [ 98.750824][ T9994] team0: Device lo is loopback device. Loopback devices can't be added as a team port [ 98.761703][ T9994] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 98.799277][ T9996] loop4: detected capacity change from 0 to 256 [ 98.814841][T10002] loop1: detected capacity change from 0 to 512 [ 98.815295][ T9996] FAT-fs (loop4): Directory bread(block 64) failed [ 98.829065][ T9996] FAT-fs (loop4): Directory bread(block 65) failed [ 98.835661][ T9996] FAT-fs (loop4): Directory bread(block 66) failed [ 98.843097][ T9996] FAT-fs (loop4): Directory bread(block 67) failed [ 98.849803][ T9996] FAT-fs (loop4): Directory bread(block 68) failed [ 98.865479][ T9996] FAT-fs (loop4): Directory bread(block 69) failed [ 98.873123][ T9996] FAT-fs (loop4): Directory bread(block 70) failed [ 98.879843][ T9996] FAT-fs (loop4): Directory bread(block 71) failed [ 98.886404][ T9996] FAT-fs (loop4): Directory bread(block 72) failed [ 98.893100][ T9996] FAT-fs (loop4): Directory bread(block 73) failed [ 98.921298][T10008] loop1: detected capacity change from 0 to 512 [ 98.941106][T10008] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22 [ 98.943011][T10013] syz.2.2654[10013] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 98.952175][T10013] syz.2.2654[10013] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 98.952195][ T9996] syz.4.2648: attempt to access beyond end of device [ 98.952195][ T9996] loop4: rw=524288, sector=1736, nr_sectors = 32 limit=256 [ 98.963699][T10013] syz.2.2654[10013] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 98.989048][ T9996] syz.4.2648: attempt to access beyond end of device [ 98.989048][ T9996] loop4: rw=0, sector=1736, nr_sectors = 8 limit=256 [ 99.029823][T10017] loop1: detected capacity change from 0 to 164 [ 99.229234][T10044] loop3: detected capacity change from 0 to 512 [ 99.318686][T10058] syz.3.2672[10058] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 99.318748][T10058] syz.3.2672[10058] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 99.348855][T10058] syz.3.2672[10058] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 99.377307][T10067] loop3: detected capacity change from 0 to 512 [ 99.434806][T10080] loop2: detected capacity change from 0 to 1024 [ 100.317547][T10111] rdma_rxe: rxe_newlink: failed to add syzkaller0 [ 100.364403][T10116] SELinux: Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 100.395413][T10118] __nla_validate_parse: 1 callbacks suppressed [ 100.395434][T10118] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2700'. [ 100.404125][T10124] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2703'. [ 100.518411][T10122] loop2: detected capacity change from 0 to 512 [ 100.595282][T10132] vlan2: entered promiscuous mode [ 100.600477][T10132] vlan2: entered allmulticast mode [ 100.616057][T10132] macvlan0: entered allmulticast mode [ 100.622357][T10132] veth1_vlan: entered allmulticast mode [ 100.628271][T10132] macvlan0: entered promiscuous mode [ 100.635724][T10132] team0: Port device vlan2 added [ 100.658284][T10140] loop2: detected capacity change from 0 to 128 [ 100.675734][T10148] loop0: detected capacity change from 0 to 256 [ 100.695808][T10152] geneve1: entered promiscuous mode [ 100.713623][T10151] geneve1: left promiscuous mode [ 100.719656][T10158] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2719'. [ 100.799503][T10174] netlink: 3 bytes leftover after parsing attributes in process `syz.1.2727'. [ 100.815895][T10174] 1ªX¹¦À: renamed from 60ªX¹¦À [ 100.821976][T10176] netlink: 312 bytes leftover after parsing attributes in process `syz.0.2728'. [ 100.834521][T10174] A link change request failed with some changes committed already. Interface 61ªX¹¦À may have been left with an inconsistent configuration, please check. [ 100.859509][T10182] syz.2.2731[10182] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 100.888305][T10187] netlink: 68 bytes leftover after parsing attributes in process `syz.0.2732'. [ 100.908843][T10187] netlink: 68 bytes leftover after parsing attributes in process `syz.0.2732'. [ 101.010934][T10213] loop4: detected capacity change from 0 to 512 [ 101.024336][T10210] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2744'. [ 101.079475][T10228] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2754'. [ 101.155267][T10242] tap0: tun_chr_ioctl cmd 2147767517 [ 101.162895][T10238] loop0: detected capacity change from 0 to 764 [ 101.179441][T10240] loop4: detected capacity change from 0 to 2048 [ 101.281916][ T3609] kernel write not supported for file task/541/attr/fscreate (pid: 3609 comm: kworker/0:5) [ 101.327055][T10272] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2775'. [ 101.339440][T10277] loop1: detected capacity change from 0 to 128 [ 101.362494][T10260] loop2: detected capacity change from 0 to 2048 [ 101.363065][T10280] loop4: detected capacity change from 0 to 128 [ 101.386583][T10284] netlink: 'syz.3.2781': attribute type 2 has an invalid length. [ 101.401870][T10260] EXT4-fs error (device loop2): ext4_lookup:1813: inode #16: comm syz.2.2768: unexpected EA_INODE flag [ 101.723858][T10347] loop4: detected capacity change from 0 to 136 [ 101.789166][T10351] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 101.838372][T10367] tap0: tun_chr_ioctl cmd 2148553947 [ 101.924185][T10389] loop0: detected capacity change from 0 to 2048 [ 101.944268][T10394] vxcan1: tx address claim with dest, not broadcast [ 101.980860][T10403] loop2: detected capacity change from 0 to 128 [ 101.990727][T10403] FAT-fs (loop2): error, invalid FAT chain (i_pos 548, last_block 8) [ 101.998918][T10403] FAT-fs (loop2): Filesystem has been set read-only [ 102.007443][T10403] FAT-fs (loop2): error, corrupted file size (i_pos 548, 522) [ 102.036971][T10407] loop0: detected capacity change from 0 to 512 [ 102.044360][T10407] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 102.061567][T10407] EXT4-fs error (device loop0): ext4_xattr_block_get:596: inode #15: comm syz.0.2838: corrupted xattr block 32: bad e_name length [ 102.075281][T10407] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=15 [ 102.084413][T10407] EXT4-fs error (device loop0): ext4_xattr_block_get:596: inode #15: comm syz.0.2838: corrupted xattr block 32: bad e_name length [ 102.098762][T10407] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=15 [ 102.109093][ T29] kauditd_printk_skb: 171 callbacks suppressed [ 102.109110][ T29] audit: type=1400 audit(102.099:2434): avc: denied { mounton } for pid=10405 comm="syz.0.2838" path="/278/file0/file1" dev="loop0" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 102.198853][ T29] audit: type=1400 audit(102.189:2435): avc: denied { read } for pid=10428 comm="syz.0.2848" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 102.218438][T10431] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22 [ 102.296959][T10440] loop0: detected capacity change from 0 to 2048 [ 102.332351][T10440] Alternate GPT is invalid, using primary GPT. [ 102.339422][T10440] loop0: p2 p3 p7 [ 102.629707][ T29] audit: type=1326 audit(102.619:2436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10458 comm="syz.1.2862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe10c81dff9 code=0x7ffc0000 [ 102.653359][ T29] audit: type=1326 audit(102.619:2437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10458 comm="syz.1.2862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe10c81dff9 code=0x7ffc0000 [ 102.676317][ T29] audit: type=1326 audit(102.619:2438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10458 comm="syz.1.2862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe10c81dff9 code=0x7ffc0000 [ 102.699438][ T29] audit: type=1326 audit(102.619:2439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10458 comm="syz.1.2862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe10c81dff9 code=0x7ffc0000 [ 102.722494][ T29] audit: type=1326 audit(102.619:2440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10458 comm="syz.1.2862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe10c81dff9 code=0x7ffc0000 [ 102.745424][ T29] audit: type=1326 audit(102.639:2441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10458 comm="syz.1.2862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe10c81dff9 code=0x7ffc0000 [ 102.768308][ T29] audit: type=1326 audit(102.639:2442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10458 comm="syz.1.2862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe10c81dff9 code=0x7ffc0000 [ 102.809235][ T29] audit: type=1326 audit(102.639:2443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10458 comm="syz.1.2862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7fe10c81dff9 code=0x7ffc0000 [ 102.869046][T10473] loop1: detected capacity change from 0 to 512 [ 102.877257][T10473] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 102.887452][T10473] EXT4-fs (loop1): orphan cleanup on readonly fs [ 102.908676][T10473] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2869: bg 0: block 248: padding at end of block bitmap is not set [ 102.923401][T10473] EXT4-fs error (device loop1): ext4_acquire_dquot:6879: comm syz.1.2869: Failed to acquire dquot type 1 [ 102.936325][T10473] EXT4-fs (loop1): 1 truncate cleaned up [ 102.950294][T10473] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 102.961318][T10473] EXT4-fs error (device loop1): __ext4_remount:6522: comm syz.1.2869: Abort forced by user [ 102.971846][T10473] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended [ 102.987153][T10473] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 103.097993][T10515] loop3: detected capacity change from 0 to 512 [ 103.104441][T10515] EXT4-fs: Ignoring removed i_version option [ 103.117977][T10515] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 103.130581][T10515] EXT4-fs (loop3): 1 truncate cleaned up [ 103.140020][T10523] loop1: detected capacity change from 0 to 1024 [ 103.160877][T10524] usb usb1: usbfs: process 10524 (syz.2.2891) did not claim interface 0 before use [ 103.366133][T10566] loop1: detected capacity change from 0 to 1024 [ 103.470709][T10586] loop1: detected capacity change from 0 to 164 [ 103.517797][T10598] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 103.564987][ T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 103.572432][ T8] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 103.581529][ T8] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz0] on syz1 [ 104.101609][T10657] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(4) [ 104.108257][T10657] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 104.115917][T10657] vhci_hcd vhci_hcd.0: Device attached [ 104.307712][T10687] loop1: detected capacity change from 0 to 512 [ 104.328360][T10687] EXT4-fs (loop1): too many log groups per flexible block group [ 104.336105][T10687] EXT4-fs (loop1): failed to initialize mballoc (-12) [ 104.343242][T10687] EXT4-fs (loop1): mount failed [ 104.376695][ T8] usb 9-1: new high-speed USB device number 2 using vhci_hcd [ 104.626239][T10658] vhci_hcd: connection reset by peer [ 104.632007][ T28] vhci_hcd: stop threads [ 104.636315][ T28] vhci_hcd: release socket [ 104.640871][ T28] vhci_hcd: disconnect device [ 104.648834][T10741] bpf_get_probe_write_proto: 8 callbacks suppressed [ 104.648847][T10741] syz.4.2958[10741] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 104.655606][T10741] syz.4.2958[10741] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 104.668886][T10741] syz.4.2958[10741] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 104.740311][T10758] syz.4.2961[10758] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 104.756855][T10758] syz.4.2961[10758] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 104.796790][T10758] syz.4.2961[10758] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 104.887109][T10782] hub 2-0:1.0: USB hub found [ 104.904955][T10782] hub 2-0:1.0: 8 ports detected [ 105.110895][T10839] loop4: detected capacity change from 0 to 512 [ 105.118352][T10839] EXT4-fs: Ignoring removed oldalloc option [ 105.138370][T10839] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.2978: Parent and EA inode have the same ino 15 [ 105.150375][T10850] vlan3: entered allmulticast mode [ 105.155882][T10850] bridge_slave_0: entered allmulticast mode [ 105.160271][T10839] EXT4-fs (loop4): Remounting filesystem read-only [ 105.168420][T10839] EXT4-fs warning (device loop4): ext4_evict_inode:259: couldn't mark inode dirty (err -5) [ 105.179322][T10839] EXT4-fs (loop4): 1 orphan inode deleted [ 105.185569][T10839] SELinux: (dev loop4, type ext4) getxattr errno 5 [ 105.200195][T10855] 9pnet_fd: Insufficient options for proto=fd [ 105.328506][T10872] loop2: detected capacity change from 0 to 512 [ 105.450297][T10894] loop2: detected capacity change from 0 to 256 [ 105.467429][T10894] FAT-fs (loop2): Directory bread(block 64) failed [ 105.474212][T10894] FAT-fs (loop2): Directory bread(block 65) failed [ 105.482670][T10894] FAT-fs (loop2): Directory bread(block 66) failed [ 105.489754][T10894] FAT-fs (loop2): Directory bread(block 67) failed [ 105.507374][T10894] FAT-fs (loop2): Directory bread(block 68) failed [ 105.518571][T10894] FAT-fs (loop2): Directory bread(block 69) failed [ 105.525296][T10894] FAT-fs (loop2): Directory bread(block 70) failed [ 105.532850][T10894] FAT-fs (loop2): Directory bread(block 71) failed [ 105.539955][T10894] FAT-fs (loop2): Directory bread(block 72) failed [ 105.546578][T10894] FAT-fs (loop2): Directory bread(block 73) failed [ 105.566003][T10908] __nla_validate_parse: 11 callbacks suppressed [ 105.566022][T10908] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3005'. [ 105.583502][T10908] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3005'. [ 105.601473][T10894] syz.2.2998: attempt to access beyond end of device [ 105.601473][T10894] loop2: rw=524288, sector=1736, nr_sectors = 32 limit=256 [ 105.626071][T10894] syz.2.2998: attempt to access beyond end of device [ 105.626071][T10894] loop2: rw=0, sector=1736, nr_sectors = 8 limit=256 [ 105.682595][T10914] loop4: detected capacity change from 0 to 512 [ 105.697537][T10914] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 105.712447][T10918] hub 2-0:1.0: USB hub found [ 105.715967][T10914] EXT4-fs (loop4): orphan cleanup on readonly fs [ 105.717592][T10918] hub 2-0:1.0: 8 ports detected [ 105.726602][T10914] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3009: bg 0: block 248: padding at end of block bitmap is not set [ 105.747798][T10914] EXT4-fs error (device loop4): ext4_acquire_dquot:6879: comm syz.4.3009: Failed to acquire dquot type 1 [ 105.761212][T10914] EXT4-fs (loop4): 1 truncate cleaned up [ 105.772890][T10914] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 105.797722][T10914] EXT4-fs error (device loop4): __ext4_remount:6522: comm syz.4.3009: Abort forced by user [ 105.808484][T10914] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended [ 105.862531][T10914] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 105.895923][T10934] loop2: detected capacity change from 0 to 512 [ 105.907568][T10934] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 105.938545][T10934] EXT4-fs (loop2): 1 truncate cleaned up [ 105.975741][T10943] loop4: detected capacity change from 0 to 128 [ 106.049746][T10943] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 106.076411][T10943] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 106.128013][ T4402] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 106.204422][T10957] loop2: detected capacity change from 0 to 512 [ 106.281935][T10967] loop2: detected capacity change from 0 to 1024 [ 106.381721][T10973] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3034'. [ 106.391442][T10973] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3034'. [ 106.408857][T10973] bond1: entered promiscuous mode [ 106.414027][T10973] bond1: entered allmulticast mode [ 106.419554][T10973] 8021q: adding VLAN 0 to HW filter on device bond1 [ 106.499817][T10910] syz.1.3015 (10910) used greatest stack depth: 7160 bytes left [ 106.686515][T11004] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3047'. [ 106.697256][T11004] 1ªX¹¦À: renamed from 60ªX¹¦À [ 106.705804][T11004] A link change request failed with some changes committed already. Interface 61ªX¹¦À may have been left with an inconsistent configuration, please check. [ 106.817013][T11020] loop2: detected capacity change from 0 to 2048 [ 106.843405][T11023] netlink: 'syz.0.3055': attribute type 1 has an invalid length. [ 106.920954][ T4402] tipc: Subscription rejected, illegal request [ 107.089243][T11046] loop4: detected capacity change from 0 to 512 [ 107.096118][T11046] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 107.109407][T11046] EXT4-fs (loop4): 1 orphan inode deleted [ 107.115178][T11046] EXT4-fs (loop4): 1 truncate cleaned up [ 107.133336][ T29] kauditd_printk_skb: 90 callbacks suppressed [ 107.133442][ T29] audit: type=1400 audit(107.109:2530): avc: denied { ioctl } for pid=11045 comm="syz.4.3068" path="/258/bus/cpuset.effective_cpus" dev="loop4" ino=17 ioctlcmd=0x5829 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 107.373678][ T859] kernel write not supported for file task/657/attr/fscreate (pid: 859 comm: kworker/0:2) [ 107.421285][ T29] audit: type=1326 audit(107.409:2531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11061 comm="syz.1.3074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe10c81dff9 code=0x7ffc0000 [ 107.444257][ T29] audit: type=1326 audit(107.409:2532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11061 comm="syz.1.3074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe10c81dff9 code=0x7ffc0000 [ 107.469055][T11065] syz.3.3073[11065] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 107.469122][T11065] syz.3.3073[11065] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 107.470064][ T29] audit: type=1326 audit(107.409:2533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11061 comm="syz.1.3074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7fe10c81dff9 code=0x7ffc0000 [ 107.486773][T11065] syz.3.3073[11065] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 107.492014][ T29] audit: type=1326 audit(107.409:2534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11061 comm="syz.1.3074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe10c81dff9 code=0x7ffc0000 [ 107.492054][ T29] audit: type=1326 audit(107.429:2535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11061 comm="syz.1.3074" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe10c81dff9 code=0x7ffc0000 [ 107.516528][T11064] loop4: detected capacity change from 0 to 2048 [ 107.580573][ T29] audit: type=1107 audit(107.569:2536): pid=11060 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='' [ 107.609708][T11064] EXT4-fs mount: 58 callbacks suppressed [ 107.609783][T11064] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 107.637849][ T7375] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.652899][T11075] loop3: detected capacity change from 0 to 136 [ 107.680873][ T29] audit: type=1400 audit(107.669:2537): avc: denied { create } for pid=11080 comm="syz.3.3081" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 107.715164][ T29] audit: type=1400 audit(107.699:2538): avc: denied { ioctl } for pid=11080 comm="syz.3.3081" path="socket:[31821]" dev="sockfs" ino=31821 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 107.745618][T11087] loop4: detected capacity change from 0 to 512 [ 107.758486][T11087] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 107.789002][T11087] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 107.821196][T11087] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #15: comm syz.4.3084: corrupted xattr block 32: bad e_name length [ 107.840095][T11087] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 107.856046][T11087] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #15: comm syz.4.3084: corrupted xattr block 32: bad e_name length [ 107.880147][T11087] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 107.882974][T11107] syz.1.3092[11107] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 107.895023][T11107] loop1: detected capacity change from 0 to 128 [ 107.916278][T11107] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 107.928358][T11107] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 107.928899][ T7375] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.999830][T11119] loop3: detected capacity change from 0 to 256 [ 108.013886][T11119] FAT-fs (loop3): Directory bread(block 64) failed [ 108.021562][T11119] FAT-fs (loop3): Directory bread(block 65) failed [ 108.028225][T11119] FAT-fs (loop3): Directory bread(block 66) failed [ 108.031788][T11115] loop0: detected capacity change from 0 to 4096 [ 108.036694][T11119] FAT-fs (loop3): Directory bread(block 67) failed [ 108.048058][T11119] FAT-fs (loop3): Directory bread(block 68) failed [ 108.055833][T11115] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 108.057028][T11119] FAT-fs (loop3): Directory bread(block 69) failed [ 108.074242][T11115] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.074897][T11119] FAT-fs (loop3): Directory bread(block 70) failed [ 108.074917][T11119] FAT-fs (loop3): Directory bread(block 71) failed [ 108.074938][T11119] FAT-fs (loop3): Directory bread(block 72) failed [ 108.074955][T11119] FAT-fs (loop3): Directory bread(block 73) failed [ 108.115530][T11119] syz.3.3098: attempt to access beyond end of device [ 108.115530][T11119] loop3: rw=524288, sector=1736, nr_sectors = 32 limit=256 [ 108.130395][T11119] syz.3.3098: attempt to access beyond end of device [ 108.130395][T11119] loop3: rw=0, sector=1736, nr_sectors = 8 limit=256 [ 108.202195][T11136] loop3: detected capacity change from 0 to 512 [ 108.214086][T11136] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 108.229948][T11136] EXT4-fs (loop3): 1 truncate cleaned up [ 108.236106][T11136] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 108.273342][ T7232] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.367781][T11154] loop3: detected capacity change from 0 to 128 [ 108.383023][T11154] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 108.397922][T11154] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 108.459506][T11167] loop2: detected capacity change from 0 to 512 [ 108.466243][T11169] loop4: detected capacity change from 0 to 2048 [ 108.474245][T11167] EXT4-fs: Ignoring removed i_version option [ 108.480692][ T3370] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 108.491165][T11167] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 108.514482][T11167] EXT4-fs (loop2): 1 truncate cleaned up [ 108.520513][T11167] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 108.521145][T11173] netlink: 3 bytes leftover after parsing attributes in process `syz.4.3122'. [ 108.542953][ T29] audit: type=1326 audit(108.529:2539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11174 comm="syz.1.3123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe10c81dff9 code=0x7ffc0000 [ 108.567134][T11173] 0ªX¹¦À: renamed from caif0 [ 108.572618][ T7372] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.582944][T11173] 0ªX¹¦À: entered allmulticast mode [ 108.588799][T11173] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 108.608723][T11177] syzkaller0: tun_chr_ioctl cmd 1074025677 [ 108.616798][T11177] syzkaller0: linktype set to 65534 [ 108.629256][T11180] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 108.656205][T11184] loop2: detected capacity change from 0 to 1024 [ 108.663142][T11184] EXT4-fs: Ignoring removed nobh option [ 108.695767][T11184] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 108.734100][ T7372] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.793408][T11207] loop1: detected capacity change from 0 to 128 [ 108.808322][T11207] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 108.854144][T11221] loop2: detected capacity change from 0 to 2048 [ 108.858951][T11222] siw: device registration error -23 [ 108.869859][ T7351] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 108.891650][T11221] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 108.910489][T11232] 9pnet_fd: Insufficient options for proto=fd [ 108.925685][T11234] loop1: detected capacity change from 0 to 512 [ 108.932474][T11234] EXT4-fs: Ignoring removed i_version option [ 108.940424][T11234] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 108.953607][ T7372] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.964658][T11234] EXT4-fs (loop1): 1 truncate cleaned up [ 108.971048][T11234] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 108.996547][ T7351] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.164311][T11241] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 109.174009][T11241] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 109.190341][T11273] loop1: detected capacity change from 0 to 256 [ 109.203491][T11273] FAT-fs (loop1): Directory bread(block 64) failed [ 109.212227][T11273] FAT-fs (loop1): Directory bread(block 65) failed [ 109.219423][T11273] FAT-fs (loop1): Directory bread(block 66) failed [ 109.226341][T11273] FAT-fs (loop1): Directory bread(block 67) failed [ 109.233993][T11273] FAT-fs (loop1): Directory bread(block 68) failed [ 109.240637][T11273] FAT-fs (loop1): Directory bread(block 69) failed [ 109.247820][T11273] FAT-fs (loop1): Directory bread(block 70) failed [ 109.254392][T11273] FAT-fs (loop1): Directory bread(block 71) failed [ 109.260956][T11273] FAT-fs (loop1): Directory bread(block 72) failed [ 109.267594][T11273] FAT-fs (loop1): Directory bread(block 73) failed [ 109.285172][T11273] syz.1.3167: attempt to access beyond end of device [ 109.285172][T11273] loop1: rw=524288, sector=1736, nr_sectors = 32 limit=256 [ 109.299513][T11273] syz.1.3167: attempt to access beyond end of device [ 109.299513][T11273] loop1: rw=0, sector=1736, nr_sectors = 8 limit=256 [ 109.487381][ T8] vhci_hcd: vhci_device speed not set [ 109.701448][T11305] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3190'. [ 109.710932][T11305] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3190'. [ 109.731155][T11305] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3190'. [ 109.733488][T11310] bpf_get_probe_write_proto: 5 callbacks suppressed [ 109.733505][T11310] syz.4.3182[11310] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 109.741683][T11305] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3190'. [ 109.747963][T11310] syz.4.3182[11310] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 109.769709][T11310] syz.4.3182[11310] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 110.195082][T11367] syz.3.3208[11367] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 110.210348][T11367] syz.3.3208[11367] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 110.223657][T11367] syz.3.3208[11367] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 110.466243][T11406] loop2: detected capacity change from 0 to 512 [ 110.484810][T11406] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 110.506496][T11406] EXT4-fs (loop2): 1 orphan inode deleted [ 110.512372][T11406] EXT4-fs (loop2): 1 truncate cleaned up [ 110.518535][T11406] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 110.546650][ T7372] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 110.998947][T11453] loop0: detected capacity change from 0 to 1024 [ 111.005931][T11453] EXT4-fs: Ignoring removed nobh option [ 111.038803][T11453] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 111.066291][ T7370] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.218394][T11473] loop0: detected capacity change from 0 to 8192 [ 111.226008][T11473] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 111.307576][T11487] bpf: Bad value for 'gid' [ 111.466072][T11518] bridge_slave_0: default FDB implementation only supports local addresses [ 111.496846][T11521] loop3: detected capacity change from 0 to 1024 [ 111.503730][T11521] EXT4-fs: Ignoring removed orlov option [ 111.509532][T11521] EXT4-fs: Ignoring removed nomblk_io_submit option [ 111.517902][T11521] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a84ec018, mo2=0002] [ 111.518691][T11524] netlink: 'syz.2.3280': attribute type 7 has an invalid length. [ 111.526070][T11521] System zones: 0-1, 3-36 [ 111.534467][T11524] netlink: 'syz.2.3280': attribute type 5 has an invalid length. [ 111.540322][T11521] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 111.546291][T11524] __nla_validate_parse: 3 callbacks suppressed [ 111.546368][T11524] netlink: 17 bytes leftover after parsing attributes in process `syz.2.3280'. [ 111.584242][ T7232] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.744925][T11552] syz.2.3294[11552] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 111.745000][T11552] syz.2.3294[11552] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 111.757988][T11552] syz.2.3294[11552] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 111.916155][T11575] syz.2.3305[11575] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 111.988132][T11583] usb usb8: usbfs: process 11583 (syz.2.3309) did not claim interface 0 before use [ 112.045563][T11591] loop2: detected capacity change from 0 to 2048 [ 112.092280][T11591] Alternate GPT is invalid, using primary GPT. [ 112.099328][T11591] loop2: p2 p3 p7 [ 112.182248][ T29] kauditd_printk_skb: 72 callbacks suppressed [ 112.182265][ T29] audit: type=1400 audit(112.169:2612): avc: denied { bind } for pid=11614 comm="syz.0.3323" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 112.208190][ T29] audit: type=1400 audit(112.169:2613): avc: denied { node_bind } for pid=11614 comm="syz.0.3323" saddr=172.20.20.0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1 [ 112.271699][T11623] loop1: detected capacity change from 0 to 256 [ 112.314556][T11627] SELinux: Context system_u:object_r:auditd_initrc_exec_t:s0 is not valid (left unmapped). [ 112.317983][ T29] audit: type=1400 audit(112.299:2614): avc: denied { relabelfrom } for pid=11626 comm="syz.3.3330" name="NETLINK" dev="sockfs" ino=33478 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 112.349336][ T29] audit: type=1400 audit(112.309:2615): avc: denied { relabelto } for pid=11626 comm="syz.3.3330" name="NETLINK" dev="sockfs" ino=33478 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=netlink_generic_socket permissive=1 trawcon="system_u:object_r:auditd_initrc_exec_t:s0" [ 112.450086][ T29] audit: type=1326 audit(112.439:2616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11635 comm="syz.3.3336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ca099dff9 code=0x7ffc0000 [ 112.480273][ T29] audit: type=1326 audit(112.469:2617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11635 comm="syz.3.3336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ca099dff9 code=0x7ffc0000 [ 112.504411][ T29] audit: type=1326 audit(112.469:2618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11635 comm="syz.3.3336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1ca099dff9 code=0x7ffc0000 [ 112.527468][ T29] audit: type=1326 audit(112.469:2619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11635 comm="syz.3.3336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ca099dff9 code=0x7ffc0000 [ 112.550927][ T29] audit: type=1326 audit(112.469:2620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11635 comm="syz.3.3336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ca099dff9 code=0x7ffc0000 [ 112.574265][ T29] audit: type=1326 audit(112.469:2621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11635 comm="syz.3.3336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1ca099dff9 code=0x7ffc0000 [ 112.680093][T11663] netlink: 'syz.4.3348': attribute type 10 has an invalid length. [ 112.726978][T11674] loop3: detected capacity change from 0 to 256 [ 112.923272][T11701] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3366'. [ 112.968590][T11703] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 113.114623][T11724] loop3: detected capacity change from 0 to 1024 [ 113.149605][T11724] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 113.157256][T11733] loop2: detected capacity change from 0 to 512 [ 113.170132][T11733] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 113.184991][T11737] ebt_among: dst integrity fail: 200 [ 113.194131][T11728] infiniband syz0: set active [ 113.198936][T11728] infiniband syz0: added team0 [ 113.206778][T11733] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3381: bg 0: block 64: padding at end of block bitmap is not set [ 113.221575][T11733] EXT4-fs error (device loop2): ext4_acquire_dquot:6879: comm syz.2.3381: Failed to acquire dquot type 0 [ 113.246741][T11733] EXT4-fs (loop2): 1 truncate cleaned up [ 113.254436][T11733] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 113.254486][T11728] RDS/IB: syz0: added [ 113.271649][T11728] smc: adding ib device syz0 with port count 1 [ 113.278558][T11728] smc: ib device syz0 port 1 has pnetid [ 113.300668][ T7232] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 113.312511][ T7372] EXT4-fs error (device loop2): ext4_acquire_dquot:6879: comm syz-executor: Failed to acquire dquot type 0 [ 113.383651][T11749] sch_tbf: burst 53766 is lower than device lo mtu (65550) ! [ 113.490933][ T7372] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 113.540760][T11764] loop1: detected capacity change from 0 to 512 [ 113.548622][T11766] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3394'. [ 113.557676][T11766] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3394'. [ 113.602642][T11764] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 113.707019][T11764] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.3395: corrupted in-inode xattr: e_name out of bounds [ 113.730672][T11764] EXT4-fs (loop1): 1 truncate cleaned up [ 113.742328][T11764] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 113.807034][ T7351] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 113.834461][T11794] netlink: 72 bytes leftover after parsing attributes in process `syz.0.3405'. [ 113.851721][T11798] netlink: 277 bytes leftover after parsing attributes in process `syz.3.3407'. [ 113.898041][T11801] @: renamed from vlan0 (while UP) [ 113.990307][T11814] loop4: detected capacity change from 0 to 1024 [ 113.997196][T11814] EXT4-fs: Ignoring removed i_version option [ 114.005276][T11814] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 114.022711][T11814] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 114.058406][T11770] chnl_net:caif_netlink_parms(): no params data found [ 114.080167][T11824] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 114.112637][ T7375] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 114.135518][T11770] bridge0: port 1(bridge_slave_0) entered blocking state [ 114.143358][T11770] bridge0: port 1(bridge_slave_0) entered disabled state [ 114.158200][T11770] bridge_slave_0: entered allmulticast mode [ 114.165118][T11770] bridge_slave_0: entered promiscuous mode [ 114.180736][T11770] bridge0: port 2(bridge_slave_1) entered blocking state [ 114.187842][T11770] bridge0: port 2(bridge_slave_1) entered disabled state [ 114.197237][T11770] bridge_slave_1: entered allmulticast mode [ 114.199547][T11843] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3419'. [ 114.203897][T11770] bridge_slave_1: entered promiscuous mode [ 114.244877][T11770] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 114.251752][T11848] loop3: detected capacity change from 0 to 256 [ 114.263015][T11770] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 114.302577][T11843] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3419'. [ 114.339008][T11770] team0: Port device team_slave_0 added [ 114.347906][T11770] team0: Port device team_slave_1 added [ 114.374888][T11770] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 114.381934][T11770] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 114.408092][T11770] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 114.424111][T11770] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 114.431112][T11770] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 114.457095][T11770] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 114.474939][T11864] loop4: detected capacity change from 0 to 164 [ 114.485194][T11864] Unable to read rock-ridge attributes [ 114.495585][T11864] Unable to read rock-ridge attributes [ 114.525525][T11872] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 114.548778][T11770] hsr_slave_0: entered promiscuous mode [ 114.564903][T11770] hsr_slave_1: entered promiscuous mode [ 114.572649][T11877] netlink: 256 bytes leftover after parsing attributes in process `syz.0.3442'. [ 114.583916][T11770] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 114.591801][T11770] Cannot create hsr debugfs directory [ 114.592113][T11881] loop3: detected capacity change from 0 to 512 [ 114.604187][T11881] EXT4-fs: Ignoring removed orlov option [ 114.646948][T11881] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 114.677027][T11881] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #15: comm syz.3.3444: corrupted xattr block 33: invalid ea_ino [ 114.697393][T11881] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 114.717609][T11881] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #15: comm syz.3.3444: corrupted xattr block 33: invalid ea_ino [ 114.752272][T11881] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 114.785786][T11881] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #15: comm syz.3.3444: corrupted xattr block 33: invalid ea_ino [ 114.794570][T11770] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 114.825886][T11881] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 114.849245][T11881] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #15: comm syz.3.3444: corrupted xattr block 33: invalid ea_ino [ 114.863424][T11881] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #15: comm syz.3.3444: corrupted xattr block 33: invalid ea_ino [ 114.887375][T11881] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 114.898205][T11770] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 114.901760][T11881] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 114.949384][ T7232] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 114.989510][T11770] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 115.009170][T11903] netlink: 'syz.1.3452': attribute type 29 has an invalid length. [ 115.025391][T11903] netlink: 'syz.1.3452': attribute type 29 has an invalid length. [ 115.033842][T11903] netlink: 'syz.1.3452': attribute type 29 has an invalid length. [ 115.103916][T11770] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 115.152678][T11919] loop4: detected capacity change from 0 to 1024 [ 115.166934][T11919] EXT4-fs: Ignoring removed orlov option [ 115.172689][T11919] EXT4-fs: Ignoring removed nomblk_io_submit option [ 115.224425][T11919] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 115.252188][ T7375] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 115.266184][T11770] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 115.286410][T11770] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 115.289023][T11943] loop3: detected capacity change from 0 to 512 [ 115.305342][T11770] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 115.314971][T11943] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -13 [ 115.325304][T11770] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 115.352664][T11943] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.3462: invalid indirect mapped block 2683928664 (level 1) [ 115.372854][T11943] EXT4-fs (loop3): 1 truncate cleaned up [ 115.376092][T11770] 8021q: adding VLAN 0 to HW filter on device bond0 [ 115.390004][T11943] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 115.407926][T11770] 8021q: adding VLAN 0 to HW filter on device team0 [ 115.417418][ T4402] bridge0: port 1(bridge_slave_0) entered blocking state [ 115.424635][ T4402] bridge0: port 1(bridge_slave_0) entered forwarding state [ 115.445878][T11953] netlink: 'syz.1.3466': attribute type 9 has an invalid length. [ 115.455158][ T7232] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 115.472804][ T4402] bridge0: port 2(bridge_slave_1) entered blocking state [ 115.479949][ T4402] bridge0: port 2(bridge_slave_1) entered forwarding state [ 115.525359][T11770] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 115.562611][T11965] loop0: detected capacity change from 0 to 2048 [ 115.613903][T11770] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 115.614792][T11965] Alternate GPT is invalid, using primary GPT. [ 115.627203][T11965] loop0: p2 p3 p7 [ 115.654358][T11975] loop3: detected capacity change from 0 to 2048 [ 115.683043][T11975] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 115.742921][ T7232] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 115.748673][T11770] veth0_vlan: entered promiscuous mode [ 115.761036][T11770] veth1_vlan: entered promiscuous mode [ 115.780592][T11770] veth0_macvtap: entered promiscuous mode [ 115.805300][T11770] veth1_macvtap: entered promiscuous mode [ 115.830567][T11770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 115.841223][T11770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.851251][T11770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 115.861790][T11770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.871764][T11770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 115.882326][T11770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.894439][T11770] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 115.907862][T11770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 115.913022][T11998] loop3: detected capacity change from 0 to 256 [ 115.918383][T11770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.918402][T11770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 115.945639][T11770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.955513][T11770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 115.966096][T11770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.976575][T11770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 115.987358][T11770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.997988][T11770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 116.008513][T11770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 116.020001][T11770] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 116.033642][T11770] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.042521][T11770] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.051389][T11770] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.060255][T11770] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.133892][T12014] loop4: detected capacity change from 0 to 512 [ 116.158007][T12014] EXT4-fs (loop4): too many log groups per flexible block group [ 116.165775][T12014] EXT4-fs (loop4): failed to initialize mballoc (-12) [ 116.172921][T12014] EXT4-fs (loop4): mount failed [ 116.224113][T12026] loop4: detected capacity change from 0 to 1024 [ 116.231515][T12026] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 116.248701][T12026] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 116.268483][T12026] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2792: inode #12: comm syz.4.3492: corrupted in-inode xattr: bad magic number in in-inode xattr [ 116.317856][ T7375] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 116.372641][T12035] loop4: detected capacity change from 0 to 1024 [ 116.379653][T12035] EXT4-fs: Ignoring removed i_version option [ 116.388913][T12035] EXT4-fs: Ignoring removed bh option [ 116.394853][T12035] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 116.416599][T12035] EXT4-fs warning (device loop4): ext4_enable_quotas:7097: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix. [ 116.447900][T12047] loop1: detected capacity change from 0 to 512 [ 116.449359][T12035] EXT4-fs (loop4): mount failed [ 116.460283][T12047] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 116.471188][T12047] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c018, mo2=0002] [ 116.479382][T12047] System zones: 1-12 [ 116.484546][T12047] EXT4-fs (loop1): 1 truncate cleaned up [ 116.496224][T12047] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 116.541515][ T7351] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 116.613212][T12072] netlink: 256 bytes leftover after parsing attributes in process `syz.4.3511'. [ 116.613883][T12074] loop3: detected capacity change from 0 to 2048 [ 116.913136][T12128] loop1: detected capacity change from 0 to 512 [ 116.942820][T12128] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 116.970703][T12128] EXT4-fs (loop1): shut down requested (0) [ 117.002338][ T7351] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 117.022614][T12142] loop2: detected capacity change from 0 to 128 [ 117.043079][T12142] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 117.075286][T12149] loop1: detected capacity change from 0 to 512 [ 117.084161][T12149] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22 [ 117.095070][T11770] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 117.172217][T12158] rdma_rxe: rxe_newlink: failed to add team0 [ 117.187249][T12160] bpf_get_probe_write_proto: 8 callbacks suppressed [ 117.187268][T12160] syz.4.3552[12160] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 117.195733][T12160] syz.4.3552[12160] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 117.222129][T12160] syz.4.3552[12160] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 117.247150][ T29] kauditd_printk_skb: 191 callbacks suppressed [ 117.247169][ T29] audit: type=1400 audit(117.219:2807): avc: denied { create } for pid=12163 comm="syz.1.3553" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 117.283983][ T29] audit: type=1400 audit(117.229:2808): avc: denied { setopt } for pid=12163 comm="syz.1.3553" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 117.314592][ T29] audit: type=1326 audit(117.299:2809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12159 comm="syz.4.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde5a5dff9 code=0x7ffc0000 [ 117.337756][ T29] audit: type=1326 audit(117.299:2810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12159 comm="syz.4.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde5a5dff9 code=0x7ffc0000 [ 117.364403][ T29] audit: type=1326 audit(117.299:2811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12159 comm="syz.4.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7fbde5a5dff9 code=0x7ffc0000 [ 117.387701][ T29] audit: type=1326 audit(117.299:2812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12159 comm="syz.4.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde5a5dff9 code=0x7ffc0000 [ 117.410848][ T29] audit: type=1326 audit(117.329:2813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12159 comm="syz.4.3552" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde5a5dff9 code=0x7ffc0000 [ 117.442457][T12176] loop2: detected capacity change from 0 to 164 [ 117.450794][ T29] audit: type=1326 audit(117.429:2814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12179 comm="syz.0.3560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8441adff9 code=0x7ffc0000 [ 117.470093][T12178] netlink: 65047 bytes leftover after parsing attributes in process `syz.4.3561'. [ 117.473715][ T29] audit: type=1326 audit(117.429:2815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12179 comm="syz.0.3560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8441adff9 code=0x7ffc0000 [ 117.505948][ T29] audit: type=1326 audit(117.429:2816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12179 comm="syz.0.3560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb8441adff9 code=0x7ffc0000 [ 117.545227][T12186] loop4: detected capacity change from 0 to 1024 [ 117.562280][T12186] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 117.599701][ T7375] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 118.010706][T12238] netlink: 'syz.3.3587': attribute type 2 has an invalid length. [ 118.111878][T12251] xt_CT: No such helper "pptp" [ 118.139649][T12256] loop0: detected capacity change from 0 to 2048 [ 118.199117][T12256] Alternate GPT is invalid, using primary GPT. [ 118.205551][T12256] loop0: p1 p2 p3 [ 118.276229][T12274] loop0: detected capacity change from 0 to 512 [ 118.279428][T12277] loop4: detected capacity change from 0 to 512 [ 118.291408][T12274] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #13: comm syz.0.3603: attempt to clear invalid blocks 1 len 1 [ 118.307780][T12274] EXT4-fs (loop0): Remounting filesystem read-only [ 118.314661][T12274] EXT4-fs (loop0): 1 truncate cleaned up [ 118.322308][T12277] EXT4-fs (loop4): mounted filesystem 00800000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 118.347281][T12274] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 118.413685][T12274] SELinux: (dev loop0, type ext4) getxattr errno 5 [ 118.440342][T12274] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 118.474149][ T7375] EXT4-fs (loop4): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 118.482391][T12293] syz.2.3610[12293] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 118.483250][T12293] syz.2.3610[12293] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 118.531654][T12293] syz.2.3610[12293] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 118.570799][T12298] loop0: detected capacity change from 0 to 128 [ 118.610249][T12302] loop4: detected capacity change from 0 to 128 [ 118.660423][T12298] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 118.673982][T12302] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 118.726525][ T7370] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 118.737562][T12314] netlink: 3 bytes leftover after parsing attributes in process `syz.1.3621'. [ 118.746574][T12314] 0ªX¹¦À: renamed from 61ªX¹¦À [ 118.766503][ T7375] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 118.776594][T12314] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 118.831122][T12324] loop1: detected capacity change from 0 to 512 [ 118.843875][T12324] EXT4-fs error (device loop1): ext4_orphan_get:1388: inode #17: comm syz.1.3625: iget: bogus i_mode (0) [ 118.858442][T12324] EXT4-fs error (device loop1): ext4_orphan_get:1393: comm syz.1.3625: couldn't read orphan inode 17 (err -117) [ 118.876428][T12324] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 118.906143][T12324] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.3625: bg 0: block 7: invalid block bitmap [ 118.975224][ T7351] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 119.058505][T12365] loop1: detected capacity change from 0 to 512 [ 119.066780][T12365] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 119.102725][T12365] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 119.131148][T12365] EXT4-fs (loop1): 1 truncate cleaned up [ 119.139226][T12365] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 119.168840][ T7351] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 119.198935][T12395] loop0: detected capacity change from 0 to 512 [ 119.216590][T12398] loop1: detected capacity change from 0 to 512 [ 119.227988][T12402] random: crng reseeded on system resumption [ 119.239410][T12398] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 119.252979][T12395] EXT4-fs error (device loop0): ext4_acquire_dquot:6879: comm syz.0.3660: Failed to acquire dquot type 1 [ 119.267485][T12395] EXT4-fs (loop0): 1 truncate cleaned up [ 119.273492][T12395] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 119.299826][T12398] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 119.317457][T12398] EXT4-fs error (device loop1): ext4_acquire_dquot:6879: comm syz.1.3658: Failed to acquire dquot type 1 [ 119.341794][T12410] loop4: detected capacity change from 0 to 256 [ 119.365255][T12410] FAT-fs (loop4): Directory bread(block 64) failed [ 119.372190][T12410] FAT-fs (loop4): Directory bread(block 65) failed [ 119.378871][T12410] FAT-fs (loop4): Directory bread(block 66) failed [ 119.385406][T12410] FAT-fs (loop4): Directory bread(block 67) failed [ 119.394620][T12410] FAT-fs (loop4): Directory bread(block 68) failed [ 119.401261][T12410] FAT-fs (loop4): Directory bread(block 69) failed [ 119.413308][T12410] FAT-fs (loop4): Directory bread(block 70) failed [ 119.423077][T12410] FAT-fs (loop4): Directory bread(block 71) failed [ 119.429752][T12410] FAT-fs (loop4): Directory bread(block 72) failed [ 119.436376][T12410] FAT-fs (loop4): Directory bread(block 73) failed [ 119.448128][T12422] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3670'. [ 119.467324][T12410] syz.4.3664: attempt to access beyond end of device [ 119.467324][T12410] loop4: rw=524288, sector=1736, nr_sectors = 32 limit=256 [ 119.481588][T12410] syz.4.3664: attempt to access beyond end of device [ 119.481588][T12410] loop4: rw=0, sector=1736, nr_sectors = 8 limit=256 [ 119.587423][T12442] xt_SECMARK: invalid security context 'system_u:object_r:devicekit_exec_t:s0' [ 120.105744][T12497] hub 9-0:1.0: USB hub found [ 120.126231][T12497] hub 9-0:1.0: 8 ports detected [ 120.175225][T12501] loop0: detected capacity change from 0 to 128 [ 120.282110][T12515] loop1: detected capacity change from 0 to 128 [ 120.313548][T12521] syz.2.3716[12521] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 120.313616][T12521] syz.2.3716[12521] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 120.331795][T12521] syz.2.3716[12521] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 120.331861][T12524] loop1: detected capacity change from 0 to 512 [ 120.364974][T12524] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 120.374122][T12524] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 120.406740][T12524] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 120.414919][T12524] System zones: 0-2, 18-18, 34-34 [ 120.422046][T12533] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3721'. [ 120.431035][T12524] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1138: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 120.450723][T12534] loop2: detected capacity change from 0 to 512 [ 120.461441][T12524] EXT4-fs (loop1): 1 truncate cleaned up [ 120.471747][T12534] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 120.486830][T12534] EXT4-fs (loop2): 1 truncate cleaned up [ 120.566812][T12555] loop0: detected capacity change from 0 to 512 [ 120.670395][T12573] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3740'. [ 120.689790][ T24] IPVS: starting estimator thread 0... [ 120.734436][T12588] syz.1.3748[12588] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 120.752086][T12590] loop0: detected capacity change from 0 to 512 [ 120.777833][T12596] netlink: 3 bytes leftover after parsing attributes in process `syz.3.3750'. [ 120.787166][T12578] IPVS: using max 2688 ests per chain, 134400 per kthread [ 120.792910][T12596] 1ªX¹¦À: renamed from 60ªX¹¦À [ 120.810124][T12596] A link change request failed with some changes committed already. Interface 61ªX¹¦À may have been left with an inconsistent configuration, please check. [ 120.840954][T12590] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 120.855622][T12590] EXT4-fs error (device loop0): ext4_acquire_dquot:6879: comm syz.0.3747: Failed to acquire dquot type 1 [ 120.955461][T12626] loop1: detected capacity change from 0 to 1764 [ 120.965307][T12626] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 121.036911][T12637] loop0: detected capacity change from 0 to 2048 [ 121.058619][T12644] loop3: detected capacity change from 0 to 256 [ 121.081053][T12644] FAT-fs (loop3): Directory bread(block 64) failed [ 121.088060][T12644] FAT-fs (loop3): Directory bread(block 65) failed [ 121.094684][T12644] FAT-fs (loop3): Directory bread(block 66) failed [ 121.101459][T12644] FAT-fs (loop3): Directory bread(block 67) failed [ 121.108039][T12644] FAT-fs (loop3): Directory bread(block 68) failed [ 121.114784][T12644] FAT-fs (loop3): Directory bread(block 69) failed [ 121.129475][T12644] FAT-fs (loop3): Directory bread(block 70) failed [ 121.148832][T12644] FAT-fs (loop3): Directory bread(block 71) failed [ 121.157894][T12644] FAT-fs (loop3): Directory bread(block 72) failed [ 121.180328][T12644] FAT-fs (loop3): Directory bread(block 73) failed [ 121.204663][T12644] syz.3.3772: attempt to access beyond end of device [ 121.204663][T12644] loop3: rw=524288, sector=1736, nr_sectors = 32 limit=256 [ 121.209572][T12661] loop2: detected capacity change from 0 to 512 [ 121.221645][T12644] syz.3.3772: attempt to access beyond end of device [ 121.221645][T12644] loop3: rw=0, sector=1736, nr_sectors = 8 limit=256 [ 121.228754][T12661] EXT4-fs: Ignoring removed oldalloc option [ 121.247652][T12661] EXT4-fs error (device loop2): ext4_xattr_inode_iget:436: comm syz.2.3780: Parent and EA inode have the same ino 15 [ 121.260776][T12661] EXT4-fs error (device loop2): ext4_xattr_inode_iget:436: comm syz.2.3780: Parent and EA inode have the same ino 15 [ 121.273613][T12661] EXT4-fs (loop2): 1 orphan inode deleted [ 121.350749][T12675] loop2: detected capacity change from 0 to 512 [ 121.459564][T12701] loop2: detected capacity change from 0 to 128 [ 121.474437][T12705] loop3: detected capacity change from 0 to 1024 [ 121.495218][T12705] EXT4-fs: Ignoring removed nomblk_io_submit option [ 121.502610][T12707] IPv6: Can't replace route, no match found [ 121.515252][T12705] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 121.521197][T12710] loop1: detected capacity change from 0 to 512 [ 121.535832][T12711] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3802'. [ 121.536608][T12713] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3804'. [ 121.545214][T12711] 0ªX¹¦À: renamed from caif0 [ 121.564269][T12711] 0ªX¹¦À: entered allmulticast mode [ 121.569577][T12711] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 121.600383][T12705] EXT4-fs error (device loop3): ext4_append:79: inode #2: comm syz.3.3799: Logical block already allocated [ 121.612105][T12705] EXT4-fs (loop3): Remounting filesystem read-only [ 121.822421][T12756] loop3: detected capacity change from 0 to 512 [ 121.835484][T12759] IPv6: NLM_F_CREATE should be specified when creating new route [ 121.865410][T12765] loop4: detected capacity change from 0 to 1024 [ 121.873519][T12765] EXT4-fs: Ignoring removed orlov option [ 121.879438][T12765] EXT4-fs: Ignoring removed nomblk_io_submit option [ 121.888013][T12756] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.3823: invalid indirect mapped block 256 (level 2) [ 121.891312][T12765] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a842e028, mo2=0002] [ 121.909492][T12765] System zones: 0-1, 3-12 [ 121.929003][T12769] loop0: detected capacity change from 0 to 1024 [ 121.938386][T12756] EXT4-fs (loop3): 2 truncates cleaned up [ 121.941782][T12765] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #14: comm syz.4.3827: attempt to clear invalid blocks 1886221359 len 1 [ 121.948932][T12769] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (29950!=20869) [ 121.967268][T12756] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.3823: bg 0: block 5: invalid block bitmap [ 121.980936][T12769] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 121.988115][T12765] EXT4-fs (loop4): Remounting filesystem read-only [ 121.993047][T12769] EXT4-fs (loop0): invalid journal inode [ 122.004868][T12769] EXT4-fs (loop0): can't get journal size [ 122.021889][T12769] EXT4-fs error (device loop0): ext4_protect_reserved_inode:182: inode #2: comm syz.0.3828: blocks 48-48 from inode overlap system zone [ 122.045643][T12769] EXT4-fs (loop0): failed to initialize system zone (-117) [ 122.054656][T12769] EXT4-fs (loop0): mount failed [ 122.067904][T12773] loop2: detected capacity change from 0 to 512 [ 122.072853][T12777] loop4: detected capacity change from 0 to 1024 [ 122.081103][T12777] EXT4-fs: Ignoring removed i_version option [ 122.081525][T12773] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.3830: corrupted in-inode xattr: invalid ea_ino [ 122.101670][T12773] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.3830: couldn't read orphan inode 15 (err -117) [ 122.142778][T12784] loop3: detected capacity change from 0 to 512 [ 122.213836][T12797] loop2: detected capacity change from 0 to 512 [ 122.223953][T12797] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.3837: corrupted in-inode xattr: invalid ea_ino [ 122.228586][T12795] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3838'. [ 122.254089][T12797] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.3837: couldn't read orphan inode 15 (err -117) [ 122.261764][T12803] bridge_slave_1: left allmulticast mode [ 122.273127][T12803] bridge_slave_1: left promiscuous mode [ 122.273650][T12797] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.3837: invalid indirect mapped block 234881024 (level 0) [ 122.278809][T12803] bridge0: port 2(bridge_slave_1) entered disabled state [ 122.308052][T12803] netlink: 'syz.3.3841': attribute type 2 has an invalid length. [ 122.315885][T12803] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check. [ 122.408688][ T29] kauditd_printk_skb: 177 callbacks suppressed [ 122.408701][ T29] audit: type=1400 audit(378.240:2988): avc: denied { create } for pid=12818 comm="syz.2.3848" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 122.435438][ T29] audit: type=1400 audit(378.240:2989): avc: denied { setopt } for pid=12818 comm="syz.2.3848" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 122.468522][ T29] audit: type=1400 audit(378.268:2990): avc: denied { create } for pid=12810 comm="syz.4.3844" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 122.489959][ T29] audit: type=1400 audit(378.268:2991): avc: denied { write } for pid=12810 comm="syz.4.3844" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 122.509821][ T29] audit: type=1400 audit(378.268:2992): avc: denied { nlmsg_read } for pid=12810 comm="syz.4.3844" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 122.551689][ T29] audit: type=1400 audit(378.388:2993): avc: denied { ioctl } for pid=12825 comm="syz.2.3851" path="socket:[37521]" dev="sockfs" ino=37521 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 122.589685][ T29] audit: type=1400 audit(378.416:2994): avc: denied { create } for pid=12829 comm="syz.0.3852" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 122.621252][ T29] audit: type=1400 audit(378.443:2995): avc: denied { name_bind } for pid=12832 comm="syz.2.3855" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 122.648089][ T29] audit: type=1400 audit(378.443:2996): avc: denied { node_bind } for pid=12832 comm="syz.2.3855" saddr=224.0.0.2 src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1 [ 122.648253][T12834] tipc: Started in network mode [ 122.669698][ T29] audit: type=1400 audit(378.443:2997): avc: denied { create } for pid=12831 comm="syz.3.3856" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 122.694618][T12834] tipc: Node identity ac14140f, cluster identity 4711 [ 122.707915][T12834] tipc: New replicast peer: 255.255.255.255 [ 122.714076][T12834] tipc: Enabled bearer , priority 10 [ 122.724503][T12844] SELinux: policydb version -795592283 does not match my version range 15-33 [ 122.733597][T12844] SELinux: failed to load policy [ 122.795935][T12846] loop1: detected capacity change from 0 to 512 [ 122.827644][T12846] EXT4-fs error (device loop1): ext4_orphan_get:1388: inode #15: comm syz.1.3861: iget: bad extended attribute block 1 [ 122.867543][T12866] loop4: detected capacity change from 0 to 512 [ 122.903198][T12846] EXT4-fs error (device loop1): ext4_orphan_get:1393: comm syz.1.3861: couldn't read orphan inode 15 (err -117) [ 122.907311][T12865] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5) [ 122.921754][T12865] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 122.930742][T12865] vhci_hcd vhci_hcd.0: Device attached [ 122.979247][T12868] vhci_hcd: connection closed [ 122.979579][ T4390] vhci_hcd: stop threads [ 122.988583][ T4390] vhci_hcd: release socket [ 122.993001][ T4390] vhci_hcd: disconnect device [ 123.028179][T12884] loop4: detected capacity change from 0 to 512 [ 123.070094][T12892] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3879'. [ 123.082523][T12884] EXT4-fs: Cannot change journaled quota options when quota turned on [ 123.357559][T12931] loop0: detected capacity change from 0 to 1024 [ 123.371044][T12931] EXT4-fs: Ignoring removed i_version option [ 123.431263][T12944] loop1: detected capacity change from 0 to 2048 [ 123.454494][T12951] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-xor(2) [ 123.532401][T12971] loop1: detected capacity change from 0 to 1024 [ 123.540861][T12971] EXT4-fs: Ignoring removed orlov option [ 123.543421][T12961] netlink: 'syz.0.3909': attribute type 21 has an invalid length. [ 123.546607][T12971] EXT4-fs: Ignoring removed nomblk_io_submit option [ 123.554446][T12961] IPv6: NLM_F_CREATE should be specified when creating new route [ 123.601949][T12978] netlink: 'syz.2.3913': attribute type 21 has an invalid length. [ 123.610497][T12971] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a842e028, mo2=0002] [ 123.622742][T12971] System zones: 0-1, 3-12 [ 123.628116][T12976] 9pnet: Could not find request transport: A [ 123.642311][T12971] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #14: comm syz.1.3911: attempt to clear invalid blocks 1886221359 len 1 [ 123.661426][T12971] EXT4-fs (loop1): Remounting filesystem read-only [ 123.747388][T13005] bpf_get_probe_write_proto: 11 callbacks suppressed [ 123.747409][T13005] syz.0.3925[13005] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 123.754325][T13005] syz.0.3925[13005] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 123.767025][T13005] syz.0.3925[13005] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 123.869257][T13012] loop0: detected capacity change from 0 to 512 [ 123.890939][T13012] EXT4-fs error (device loop0): __ext4_iget:4952: inode #15: block 1803188595: comm syz.0.3930: invalid block [ 123.904200][T13012] EXT4-fs error (device loop0): ext4_orphan_get:1393: comm syz.0.3930: couldn't read orphan inode 15 (err -117) [ 123.920304][T13012] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.3930: invalid indirect mapped block 234881024 (level 0) [ 123.925972][ T35] tipc: Node number set to 2886997007 [ 124.031260][T13025] loop0: detected capacity change from 0 to 512 [ 124.065327][ T7370] EXT4-fs error (device loop0): ext4_readdir:261: inode #12: block 32: comm syz-executor: path /517/file0/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 124.140005][T13038] loop3: detected capacity change from 0 to 128 [ 124.237441][T13043] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3943'. [ 124.510496][T13051] loop1: detected capacity change from 0 to 512 [ 125.211857][T13076] tap0: tun_chr_ioctl cmd 1074025694 [ 125.547758][T13099] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3969'. [ 125.665105][T13105] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3972'. [ 125.736011][T13092] loop2: detected capacity change from 0 to 32768 [ 125.775498][T13114] loop4: detected capacity change from 0 to 256 [ 125.802067][T13092] loop2: p1 p2 p3 < p5 p6 > [ 125.806865][T13092] loop2: p1 size 242222080 extends beyond EOD, truncated [ 126.021118][T13135] syz.1.3985[13135] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 126.021174][T13135] syz.1.3985[13135] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 126.034667][T13136] netlink: 312 bytes leftover after parsing attributes in process `syz.3.3987'. [ 126.049669][T13135] syz.1.3985[13135] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 126.316326][T13160] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22 [ 126.420668][T13169] loop4: detected capacity change from 0 to 2048 [ 126.440062][T13180] syz.3.4006[13180] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 126.440211][T13180] syz.3.4006[13180] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 126.478066][T13169] Alternate GPT is invalid, using primary GPT. [ 126.497334][T13169] loop4: p2 p3 p7 [ 126.502467][T13180] syz.3.4006[13180] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 126.508195][T13184] loop3: detected capacity change from 0 to 512 [ 126.772219][T13212] SELinux: Context system_u:object_r:systemd_passwd_agent_exec_t:s0 is not valid (left unmapped). [ 126.945421][T13225] syz.1.4019[13225] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 127.255400][T13242] loop1: detected capacity change from 0 to 1024 [ 127.301224][T13242] EXT4-fs: Ignoring removed nobh option [ 127.336638][T13247] loop3: detected capacity change from 0 to 2048 [ 127.494691][T13263] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4035'. [ 127.503791][T13263] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4035'. [ 127.517544][T13247] SELinux: Context system_u:object_r:auditd_var_run_t:s0 is not valid (left unmapped). [ 127.746933][T13273] loop2: detected capacity change from 0 to 512 [ 127.754047][T13273] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 127.766716][T13273] EXT4-fs (loop2): 1 truncate cleaned up [ 127.789778][T13273] EXT4-fs error (device loop2): mb_free_blocks:1948: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt. [ 127.846592][ T29] kauditd_printk_skb: 138 callbacks suppressed [ 127.846610][ T29] audit: type=1400 audit(383.266:3136): avc: denied { create } for pid=13277 comm="syz.3.4036" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 127.891419][ T29] audit: type=1326 audit(383.275:3137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13279 comm="syz.1.4032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe10c81dff9 code=0x7ffc0000 [ 127.915641][ T29] audit: type=1326 audit(383.275:3138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13279 comm="syz.1.4032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe10c81dff9 code=0x7ffc0000 [ 127.938615][ T29] audit: type=1326 audit(383.275:3139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13279 comm="syz.1.4032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7fe10c81dff9 code=0x7ffc0000 [ 127.962974][ T29] audit: type=1326 audit(383.275:3140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13279 comm="syz.1.4032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe10c81dff9 code=0x7ffc0000 [ 127.985887][ T29] audit: type=1326 audit(383.275:3141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13279 comm="syz.1.4032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe10c81dff9 code=0x7ffc0000 [ 128.020330][ T29] audit: type=1400 audit(383.423:3142): avc: denied { connect } for pid=13277 comm="syz.3.4036" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 128.040777][ T29] audit: type=1400 audit(383.423:3143): avc: denied { name_connect } for pid=13277 comm="syz.3.4036" dest=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1 [ 128.098473][ T29] audit: type=1400 audit(383.488:3144): avc: denied { write } for pid=13292 comm="syz.2.4048" name="ptp0" dev="devtmpfs" ino=222 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 128.121208][ T29] audit: type=1400 audit(383.488:3145): avc: denied { open } for pid=13292 comm="syz.2.4048" path="/dev/ptp0" dev="devtmpfs" ino=222 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 128.261644][T13249] 9pnet_fd: p9_fd_create_tcp (13249): problem connecting socket to 127.0.0.1 [ 128.287961][T13299] bridge0: port 2(bridge_slave_1) entered disabled state [ 128.415019][T13312] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 128.892395][T13358] netlink: 'syz.3.4079': attribute type 1 has an invalid length. [ 128.900270][T13358] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4079'. [ 129.003376][T13374] netlink: 'syz.1.4087': attribute type 5 has an invalid length. [ 129.011248][T13374] netlink: 156 bytes leftover after parsing attributes in process `syz.1.4087'. [ 129.227543][T13390] tun1: tun_chr_ioctl cmd 1074025677 [ 129.232970][T13390] tun1: linktype set to 776 [ 129.720551][T13402] bpf_get_probe_write_proto: 5 callbacks suppressed [ 129.720567][T13402] syz.2.4100[13402] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 129.727885][T13402] syz.2.4100[13402] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 129.739703][T13402] syz.2.4100[13402] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 129.754914][T13402] netlink: 72 bytes leftover after parsing attributes in process `syz.2.4100'. [ 129.879204][T13414] netlink: 48 bytes leftover after parsing attributes in process `syz.2.4106'. [ 130.170328][T13442] loop3: detected capacity change from 0 to 128 [ 130.198968][T13442] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 130.341677][T13455] SELinux: security_context_str_to_sid () failed with errno=-22 [ 130.378452][T13460] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4128'. [ 130.551542][T13482] loop2: detected capacity change from 0 to 1024 [ 130.569047][T13482] EXT4-fs: Ignoring removed nomblk_io_submit option [ 131.038266][T13510] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4151'. [ 131.047444][T13510] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4151'. [ 131.056466][T13510] netlink: 1 bytes leftover after parsing attributes in process `syz.4.4151'. [ 131.153990][T13520] netem: change failed [ 131.460183][T13545] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4168'. [ 131.469263][T13545] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4168'. [ 131.598260][T13561] syz.1.4176[13561] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 131.598472][T13561] syz.1.4176[13561] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 131.610612][T13561] syz.1.4176[13561] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 131.764478][T13568] xt_nfacct: accounting object `syz1' does not exists [ 132.605557][T13622] loop3: detected capacity change from 0 to 128 [ 132.689602][T13631] SELinux: policydb version -1681192944 does not match my version range 15-33 [ 132.712840][T13631] SELinux: failed to load policy [ 132.819817][T13636] netlink: 'syz.1.4212': attribute type 8 has an invalid length. [ 132.902042][T13640] loop1: detected capacity change from 0 to 1024 [ 132.920383][T13640] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 132.996121][T13640] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 132.996241][T13634] loop3: detected capacity change from 0 to 1024 [ 133.004128][T13640] EXT4-fs (loop1): orphan cleanup on readonly fs [ 133.044114][T13640] EXT4-fs error (device loop1): ext4_map_blocks:705: inode #3: block 3: comm syz.1.4213: lblock 3 mapped to illegal pblock 3 (length 1) [ 133.060921][T13640] EXT4-fs error (device loop1): ext4_acquire_dquot:6879: comm syz.1.4213: Failed to acquire dquot type 0 [ 133.087328][T13640] EXT4-fs error (device loop1): ext4_map_blocks:671: inode #3: block 3: comm syz.1.4213: lblock 3 mapped to illegal pblock 3 (length 1) [ 133.113471][T13640] EXT4-fs error (device loop1): ext4_acquire_dquot:6879: comm syz.1.4213: Failed to acquire dquot type 0 [ 133.129473][T13640] EXT4-fs error (device loop1): ext4_free_blocks:6589: comm syz.1.4213: Freeing blocks not in datazone - block = 0, count = 4096 [ 133.145242][T13640] EXT4-fs error (device loop1): ext4_map_blocks:671: inode #3: block 3: comm syz.1.4213: lblock 3 mapped to illegal pblock 3 (length 1) [ 133.159748][T13656] netlink: 'syz.4.4219': attribute type 3 has an invalid length. [ 133.179757][T13640] EXT4-fs error (device loop1): ext4_acquire_dquot:6879: comm syz.1.4213: Failed to acquire dquot type 0 [ 133.196035][T13640] EXT4-fs (loop1): 1 orphan inode deleted [ 133.269660][ T29] kauditd_printk_skb: 165 callbacks suppressed [ 133.269678][ T29] audit: type=1400 audit(388.278:3306): avc: denied { setopt } for pid=13663 comm="syz.4.4223" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 133.303928][ T29] audit: type=1400 audit(388.287:3307): avc: denied { bind } for pid=13663 comm="syz.4.4223" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 133.322864][ T29] audit: type=1400 audit(388.287:3308): avc: denied { name_bind } for pid=13663 comm="syz.4.4223" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1 [ 133.344171][ T29] audit: type=1400 audit(388.287:3309): avc: denied { node_bind } for pid=13663 comm="syz.4.4223" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1 [ 133.364489][ T29] audit: type=1326 audit(388.306:3310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13667 comm="syz.3.4225" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ca099dff9 code=0x7ffc0000 [ 133.387389][ T29] audit: type=1326 audit(388.306:3311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13667 comm="syz.3.4225" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ca099dff9 code=0x7ffc0000 [ 133.410376][ T29] audit: type=1326 audit(388.306:3312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13667 comm="syz.3.4225" exe="/root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7f1ca099dff9 code=0x7ffc0000 [ 133.433276][ T29] audit: type=1326 audit(388.306:3313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13667 comm="syz.3.4225" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ca099dff9 code=0x7ffc0000 [ 133.456445][ T29] audit: type=1326 audit(388.306:3314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13667 comm="syz.3.4225" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ca099dff9 code=0x7ffc0000 [ 133.624374][ T29] audit: type=1400 audit(388.306:3315): avc: denied { getopt } for pid=13663 comm="syz.4.4223" laddr=::ffff:0.0.0.0 lport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 134.132363][T13707] tipc: Started in network mode [ 134.137258][T13707] tipc: Node identity -name-of, cluster identity 4711 [ 134.144089][T13707] tipc: Enabling of bearer rejected, failed to enable media [ 134.253933][T13724] random: crng reseeded on system resumption [ 134.361583][T13731] vhci_hcd: default hub control req: 2017 v0080 i0000 l0 [ 134.409242][T13733] loop2: detected capacity change from 0 to 2048 [ 134.428650][T13733] EXT4-fs: Ignoring removed mblk_io_submit option [ 134.466684][T13733] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.4254: bg 0: block 234: padding at end of block bitmap is not set [ 134.524698][T13733] EXT4-fs (loop2): Remounting filesystem read-only [ 134.613632][T13749] netlink: 'syz.3.4260': attribute type 10 has an invalid length. [ 134.621610][T13749] netlink: 'syz.3.4260': attribute type 4 has an invalid length. [ 134.629431][T13749] __nla_validate_parse: 3 callbacks suppressed [ 134.629443][T13749] netlink: 152 bytes leftover after parsing attributes in process `syz.3.4260'. [ 134.649639][T13749] A link change request failed with some changes committed already. Interface netdevsim1 may have been left with an inconsistent configuration, please check. [ 134.688819][T13753] loop3: detected capacity change from 0 to 1024 [ 134.869777][T13764] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5) [ 134.876361][T13764] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 134.884037][T13764] vhci_hcd vhci_hcd.0: Device attached [ 134.918806][T13765] vhci_hcd: connection closed [ 134.919091][ T4390] vhci_hcd: stop threads [ 134.928291][ T4390] vhci_hcd: release socket [ 134.932734][ T4390] vhci_hcd: disconnect device [ 135.209258][T13788] netlink: 'syz.4.4273': attribute type 4 has an invalid length. [ 135.217181][T13788] netlink: 152 bytes leftover after parsing attributes in process `syz.4.4273'. [ 135.262446][ T4390] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 135.373694][ T4390] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 135.453339][ T4390] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 135.563090][ T4390] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 135.622266][T13774] chnl_net:caif_netlink_parms(): no params data found [ 135.695758][T13804] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4279'. [ 135.781042][ T4390] bridge_slave_1: left allmulticast mode [ 135.786726][ T4390] bridge_slave_1: left promiscuous mode [ 135.793591][ T4390] bridge0: port 2(bridge_slave_1) entered disabled state [ 135.913549][T13817] loop4: detected capacity change from 0 to 128 [ 135.960322][ T4390] batman_adv: batadv0: Removing interface: erspan1 [ 136.019957][T13822] 9pnet_fd: Insufficient options for proto=fd [ 136.053493][ T4390] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 136.064509][ T4390] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 136.074796][ T4390] bond0 (unregistering): Released all slaves [ 136.093919][T13813] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4282'. [ 136.111794][T13820] netlink: 144 bytes leftover after parsing attributes in process `syz.4.4285'. [ 136.136463][T13774] bridge0: port 1(bridge_slave_0) entered blocking state [ 136.143762][T13774] bridge0: port 1(bridge_slave_0) entered disabled state [ 136.174197][T13774] bridge_slave_0: entered allmulticast mode [ 136.192599][T13774] bridge_slave_0: entered promiscuous mode [ 136.199683][ T4390] tipc: Disabling bearer [ 136.205071][ T4390] tipc: Left network mode [ 136.205100][T13836] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4291'. [ 136.218483][T13774] bridge0: port 2(bridge_slave_1) entered blocking state [ 136.226914][T13774] bridge0: port 2(bridge_slave_1) entered disabled state [ 136.234786][T13774] bridge_slave_1: entered allmulticast mode [ 136.241369][T13774] bridge_slave_1: entered promiscuous mode [ 136.268705][T13840] loop2: detected capacity change from 0 to 1024 [ 136.282132][T13844] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4295'. [ 136.319138][T13774] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 136.360753][ T4390] hsr_slave_0: left promiscuous mode [ 136.377970][ T4390] hsr_slave_1: left promiscuous mode [ 136.384161][ T4390] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 136.391691][ T4390] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 136.410492][ T4390] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 136.418001][ T4390] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 136.427435][ T4390] macvlan0: left allmulticast mode [ 136.432672][ T4390] veth1_vlan: left allmulticast mode [ 136.438121][ T4390] macvlan0: left promiscuous mode [ 136.444856][ T4390] veth1_macvtap: left promiscuous mode [ 136.450400][ T4390] veth0_macvtap: left promiscuous mode [ 136.456040][ T4390] veth1_vlan: left promiscuous mode [ 136.461459][ T4390] veth0_vlan: left promiscuous mode [ 136.541485][ T4390] infiniband syz0: set down [ 136.548901][ T4390] team0 (unregistering): Port device vlan2 removed [ 136.590252][T13866] SELinux: Context system_u:object_r:initctl_t:s0 is not valid (left unmapped). [ 136.600998][ T4390] team0 (unregistering): Port device team_slave_1 removed [ 136.612468][ T4390] team0 (unregistering): Port device team_slave_0 removed [ 136.634932][T13869] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 136.634932][T13869] The task syz.1.4302 (13869) triggered the difference, watch for misbehavior. [ 136.651505][ T3370] smc: removing ib device syz0 [ 136.665041][T13774] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 136.675894][T13854] wg1: entered promiscuous mode [ 136.680860][T13854] wg1: entered allmulticast mode [ 136.686776][T13854] A link change request failed with some changes committed already. Interface wg1 may have been left with an inconsistent configuration, please check. [ 136.745799][T13774] team0: Port device team_slave_0 added [ 136.765581][T13774] team0: Port device team_slave_1 added [ 136.893216][T13774] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 136.900278][T13774] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 136.926302][T13774] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 136.940617][T13774] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 136.947656][T13774] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 136.973628][T13774] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 136.975747][T13899] netlink: 72 bytes leftover after parsing attributes in process `syz.4.4318'. [ 137.010061][T13774] hsr_slave_0: entered promiscuous mode [ 137.022283][T13774] hsr_slave_1: entered promiscuous mode [ 137.039211][T13774] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 137.043645][T13905] loop4: detected capacity change from 0 to 2048 [ 137.049774][T13774] Cannot create hsr debugfs directory [ 137.110011][ T4390] IPVS: stop unused estimator thread 0... [ 137.215544][T13936] netlink: 76 bytes leftover after parsing attributes in process `syz.3.4334'. [ 137.279294][T13946] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4339'. [ 137.369679][T13774] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 137.378632][T13774] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 137.390072][T13774] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 137.399423][T13774] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 137.450236][T13774] 8021q: adding VLAN 0 to HW filter on device bond0 [ 137.492880][T13774] 8021q: adding VLAN 0 to HW filter on device team0 [ 137.505888][ T4370] bridge0: port 1(bridge_slave_0) entered blocking state [ 137.513074][ T4370] bridge0: port 1(bridge_slave_0) entered forwarding state [ 137.527044][ T4402] bridge0: port 2(bridge_slave_1) entered blocking state [ 137.534172][ T4402] bridge0: port 2(bridge_slave_1) entered forwarding state [ 137.624837][T13774] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 137.714172][T13774] veth0_vlan: entered promiscuous mode [ 137.724829][T13774] veth1_vlan: entered promiscuous mode [ 137.744568][T13774] veth0_macvtap: entered promiscuous mode [ 137.754200][T13774] veth1_macvtap: entered promiscuous mode [ 137.764608][T13774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 137.775191][T13774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 137.785115][T13774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 137.796896][T13774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 137.806884][T13774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 137.817437][T13774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 137.829814][T13774] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 137.840479][T13774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 137.851130][T13774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 137.861031][T13774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 137.872906][T13774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 137.882881][T13774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 137.893397][T13774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 137.904447][T13774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 137.914904][T13774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 137.924785][T13774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 137.936402][T13774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 137.947087][T13774] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 137.958167][T13774] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 137.966925][T13774] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 137.977232][T13774] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 137.986164][T13774] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 138.222867][T14052] loop1: detected capacity change from 0 to 8192 [ 138.231769][T14052] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 138.315347][T14065] loop3: detected capacity change from 0 to 1024 [ 138.322200][T14065] EXT4-fs: Ignoring removed nobh option [ 138.327855][T14065] EXT4-fs: Ignoring removed orlov option [ 138.370865][T14065] EXT4-fs error (device loop3): __ext4_remount:6522: comm syz.3.4392: Abort forced by user [ 138.392071][T14065] EXT4-fs (loop3): Remounting filesystem read-only [ 138.431223][T14065] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none. [ 138.448677][T14085] netlink: 'syz.1.4398': attribute type 4 has an invalid length. [ 138.469588][T14091] loop0: detected capacity change from 0 to 2048 [ 138.478115][T14091] EXT4-fs: Ignoring removed mblk_io_submit option [ 138.511032][T14088] dvmrp5: entered allmulticast mode [ 138.525305][T14098] dvmrp5: left allmulticast mode [ 138.535390][T14091] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.4402: bg 0: block 234: padding at end of block bitmap is not set [ 138.555290][T14091] EXT4-fs (loop0): Remounting filesystem read-only [ 138.634037][T14112] netlink: 'syz.1.4412': attribute type 2 has an invalid length. [ 138.698604][ T29] kauditd_printk_skb: 225 callbacks suppressed [ 138.698620][ T29] audit: type=1326 audit(393.281:3541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14123 comm="syz.4.4417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde5a5dff9 code=0x7ffc0000 [ 138.731826][ T29] audit: type=1326 audit(393.317:3542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14123 comm="syz.4.4417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbde5a5dff9 code=0x7ffc0000 [ 138.754740][ T29] audit: type=1326 audit(393.317:3543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14123 comm="syz.4.4417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde5a5dff9 code=0x7ffc0000 [ 138.779162][ T29] audit: type=1326 audit(393.317:3544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14123 comm="syz.4.4417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde5a5dff9 code=0x7ffc0000 [ 138.803485][ T29] audit: type=1326 audit(393.317:3545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14123 comm="syz.4.4417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fbde5a5dff9 code=0x7ffc0000 [ 138.826497][ T29] audit: type=1326 audit(393.317:3546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14123 comm="syz.4.4417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde5a5dff9 code=0x7ffc0000 [ 138.829860][T14135] loop4: detected capacity change from 0 to 2048 [ 138.849464][ T29] audit: type=1326 audit(393.317:3547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14123 comm="syz.4.4417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde5a5dff9 code=0x7ffc0000 [ 138.889681][T14135] EXT4-fs: Ignoring removed mblk_io_submit option [ 138.922559][ T29] audit: type=1400 audit(393.493:3548): avc: denied { create } for pid=14130 comm="syz.0.4420" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 138.948740][T14135] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.4421: bg 0: block 234: padding at end of block bitmap is not set [ 138.977579][ T29] audit: type=1400 audit(393.511:3549): avc: denied { connect } for pid=14130 comm="syz.0.4420" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 138.982951][T14135] EXT4-fs (loop4): Remounting filesystem read-only [ 139.014950][T14147] loop3: detected capacity change from 0 to 764 [ 139.022367][T14147] iso9660: Unknown parameter 'ÿÿÿÿÿ' [ 139.028634][ T29] audit: type=1400 audit(393.585:3550): avc: denied { write } for pid=14152 comm="syz.0.4427" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 139.060233][ T7375] EXT4-fs unmount: 81 callbacks suppressed [ 139.060344][ T7375] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.155254][T14167] bridge_slave_0: entered allmulticast mode [ 139.166303][T14167] netlink: 'syz.4.4436': attribute type 4 has an invalid length. [ 139.425293][T14194] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6) [ 139.432023][T14194] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 139.432835][T14196] loop3: detected capacity change from 0 to 2048 [ 139.439603][T14194] vhci_hcd vhci_hcd.0: Device attached [ 139.460465][T14198] vhci_hcd: connection closed [ 139.461266][ T3370] vhci_hcd: stop threads [ 139.468432][T14203] syz.0.4452[14203] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 139.470299][ T3370] vhci_hcd: release socket [ 139.470426][T14203] syz.0.4452[14203] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 139.481729][ T3370] vhci_hcd: disconnect device [ 139.497320][T14196] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 139.499757][T14203] syz.0.4452[14203] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 139.565085][T14207] loop0: detected capacity change from 0 to 4096 [ 139.584035][ T7232] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.584934][T14211] Option ' ' to dns_resolver key: bad/missing value [ 139.620402][T14207] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 139.668332][T13774] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.692659][T14225] ALSA: seq fatal error: cannot create timer (-22) [ 139.829900][T14248] tap0: tun_chr_ioctl cmd 1074025681 [ 140.092424][T14279] loop1: detected capacity change from 0 to 128 [ 140.108317][T14279] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 140.128197][T14279] EXT4-fs error (device loop1): ext4_validate_block_bitmap:423: comm syz.1.4486: bg 0: bad block bitmap checksum [ 140.151962][T14291] loop0: detected capacity change from 0 to 1024 [ 140.166500][T14293] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 140.182291][T14291] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 140.195668][ T7351] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 140.227751][T13774] EXT4-fs error (device loop0): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /35/bus/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1 [ 140.251814][T13774] EXT4-fs error (device loop0): ext4_empty_dir:3096: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1 [ 140.252033][T14304] syz.1.4497[14304] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 140.271475][T14304] syz.1.4497[14304] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 140.283374][T14298] tap0: tun_chr_ioctl cmd 1074025681 [ 140.301182][T13774] EXT4-fs warning (device loop0): ext4_empty_dir:3098: inode #11: comm syz-executor: directory missing '.' [ 140.314273][T13774] EXT4-fs error (device loop0): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /35/bus/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1 [ 140.335854][T14304] syz.1.4497[14304] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 140.336914][T13774] EXT4-fs error (device loop0): ext4_empty_dir:3096: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1 [ 140.370862][T13774] EXT4-fs warning (device loop0): ext4_empty_dir:3098: inode #11: comm syz-executor: directory missing '.' [ 140.385427][T13774] EXT4-fs error (device loop0): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /35/bus/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1 [ 140.408873][T13774] EXT4-fs error (device loop0): ext4_empty_dir:3096: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1 [ 140.432446][T13774] EXT4-fs warning (device loop0): ext4_empty_dir:3098: inode #11: comm syz-executor: directory missing '.' [ 140.444902][T13774] EXT4-fs error (device loop0): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /35/bus/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1 [ 140.468549][T13774] EXT4-fs error (device loop0): ext4_empty_dir:3096: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1 [ 140.489401][T13774] EXT4-fs warning (device loop0): ext4_empty_dir:3098: inode #11: comm syz-executor: directory missing '.' [ 140.498514][T14310] loop1: detected capacity change from 0 to 128 [ 140.515759][T13774] EXT4-fs error (device loop0): ext4_readdir:261: inode #11: block 32: comm syz-executor: path /35/bus/lost+found: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1 [ 140.539654][T13774] EXT4-fs error (device loop0): ext4_empty_dir:3096: inode #11: block 32: comm syz-executor: bad entry in directory: inode out of bounds - offset=0, inode=134217739, rec_len=12, size=1024 fake=1 [ 140.563589][T13774] EXT4-fs warning (device loop0): ext4_empty_dir:3098: inode #11: comm syz-executor: directory missing '.' [ 140.576256][T13774] EXT4-fs warning (device loop0): ext4_empty_dir:3098: inode #11: comm syz-executor: directory missing '.' [ 140.589560][T13774] EXT4-fs warning (device loop0): ext4_empty_dir:3098: inode #11: comm syz-executor: directory missing '.' [ 140.605474][T13774] EXT4-fs warning (device loop0): ext4_empty_dir:3098: inode #11: comm syz-executor: directory missing '.' [ 140.618562][T13774] EXT4-fs warning (device loop0): ext4_empty_dir:3098: inode #11: comm syz-executor: directory missing '.' [ 140.636707][T14316] netem: incorrect gi model size [ 140.641751][T14316] netem: change failed [ 140.647522][T13774] EXT4-fs warning (device loop0): ext4_empty_dir:3098: inode #11: comm syz-executor: directory missing '.' [ 140.689626][T14323] loop1: detected capacity change from 0 to 512 [ 140.709102][T14323] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 140.746621][T14323] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 140.767818][T14323] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #15: comm syz.1.4507: corrupted xattr block 32: bad e_name length [ 140.781756][T14323] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop1 ino=15 [ 140.792370][T14323] EXT4-fs error (device loop1): ext4_xattr_block_get:596: inode #15: comm syz.1.4507: corrupted xattr block 32: bad e_name length [ 140.793941][T14340] netlink: 'syz.3.4513': attribute type 2 has an invalid length. [ 140.806313][T14323] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop1 ino=15 [ 140.835151][T14342] netlink: 'syz.3.4514': attribute type 10 has an invalid length. [ 140.843546][T14342] veth1_macvtap: left promiscuous mode [ 140.845443][ T7351] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 140.938749][T14352] __nla_validate_parse: 10 callbacks suppressed [ 140.938762][T14352] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4519'. [ 141.232821][T14389] IPVS: Error connecting to the multicast addr [ 141.326749][T14405] loop3: detected capacity change from 0 to 1764 [ 141.377492][T14412] loop3: detected capacity change from 0 to 512 [ 141.392968][T14412] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 141.417731][ T7232] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 141.527789][T14428] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4554'. [ 141.598916][T14439] loop3: detected capacity change from 0 to 512 [ 141.622182][T14439] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 141.640510][T14399] ================================================================== [ 141.648640][T14399] BUG: KCSAN: data-race in do_sys_poll / pollwake [ 141.655079][T14399] [ 141.657422][T14399] write to 0xffffc9000467fbd0 of 4 bytes by interrupt on cpu 1: [ 141.665060][T14399] pollwake+0xbe/0x110 [ 141.669174][T14399] __wake_up+0x65/0xb0 [ 141.673264][T14399] bpf_ringbuf_notify+0x22/0x30 [ 141.678144][T14399] irq_work_run+0xdf/0x2c0 [ 141.682582][T14399] __sysvec_irq_work+0x23/0x1a0 [ 141.687451][T14399] sysvec_irq_work+0x66/0x80 [ 141.692051][T14399] asm_sysvec_irq_work+0x1a/0x20 [ 141.697006][T14399] default_send_IPI_self+0x38/0x80 [ 141.702121][T14399] arch_irq_work_raise+0x48/0x50 [ 141.707064][T14399] __irq_work_queue_local+0x82/0x1d0 [ 141.712368][T14399] irq_work_queue+0x85/0x120 [ 141.716975][T14399] bpf_ringbuf_discard+0xcd/0xf0 [ 141.721926][T14399] bpf_prog_fe0ed97373b08409+0x47/0x4b [ 141.727395][T14399] bpf_trace_run3+0x10c/0x1d0 [ 141.732092][T14399] __traceiter_kmem_cache_free+0x33/0x50 [ 141.737746][T14399] kmem_cache_free+0x237/0x2d0 [ 141.742527][T14399] put_cred_rcu+0x1a3/0x210 [ 141.747045][T14399] rcu_core+0x57b/0xbc0 [ 141.751210][T14399] rcu_core_si+0xd/0x20 [ 141.755379][T14399] handle_softirqs+0xbf/0x280 [ 141.760063][T14399] run_ksoftirqd+0x1c/0x30 [ 141.764490][T14399] smpboot_thread_fn+0x31c/0x4c0 [ 141.769435][T14399] kthread+0x1d1/0x210 [ 141.773546][T14399] ret_from_fork+0x4b/0x60 [ 141.777977][T14399] ret_from_fork_asm+0x1a/0x30 [ 141.782758][T14399] [ 141.785078][T14399] read to 0xffffc9000467fbd0 of 4 bytes by task 14399 on cpu 0: [ 141.792707][T14399] do_sys_poll+0x986/0xc10 [ 141.797129][T14399] __se_sys_ppoll+0x1af/0x1f0 [ 141.801807][T14399] __x64_sys_ppoll+0x67/0x80 [ 141.806400][T14399] x64_sys_call+0xe71/0x2d60 [ 141.811007][T14399] do_syscall_64+0xc9/0x1c0 [ 141.815519][T14399] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 141.821431][T14399] [ 141.823750][T14399] value changed: 0x00000000 -> 0x00000001 [ 141.829464][T14399] [ 141.831786][T14399] Reported by Kernel Concurrency Sanitizer on: [ 141.837938][T14399] CPU: 0 UID: 0 PID: 14399 Comm: syz.1.4540 Tainted: G W 6.12.0-rc1-syzkaller #0 [ 141.848445][T14399] Tainted: [W]=WARN [ 141.852262][T14399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 141.862324][T14399] ================================================================== [ 141.887938][ T7232] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 143.201384][T13774] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 143.213970][ T4370] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.257650][ T4370] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.313646][ T4370] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.379499][ T4370] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.456379][ T4370] bridge_slave_1: left allmulticast mode [ 143.462103][ T4370] bridge_slave_1: left promiscuous mode [ 143.467859][ T4370] bridge0: port 2(bridge_slave_1) entered disabled state [ 143.477249][ T4370] bridge_slave_0: left allmulticast mode [ 143.484309][ T4370] bridge_slave_0: left promiscuous mode [ 143.489958][ T4370] bridge0: port 1(bridge_slave_0) entered disabled state [ 143.615786][ T4370] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 143.627873][ T4370] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 143.638404][ T4370] bond0 (unregistering): Released all slaves [ 143.722533][ T4370] hsr_slave_0: left promiscuous mode [ 143.728115][ T4370] hsr_slave_1: left promiscuous mode [ 143.736812][ T4370] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 143.744286][ T4370] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 143.752159][ T4370] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 143.759617][ T4370] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 143.769162][ T4370] veth1_macvtap: left promiscuous mode [ 143.774684][ T4370] veth0_macvtap: left promiscuous mode [ 143.780289][ T4370] veth1_vlan: left promiscuous mode [ 143.785584][ T4370] veth0_vlan: left promiscuous mode [ 143.893288][ T4370] team0 (unregistering): Port device team_slave_1 removed [ 143.905172][ T4370] team0 (unregistering): Port device team_slave_0 removed