last executing test programs: 1.348972606s ago: executing program 0 (id=2657): bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000700)={&(0x7f0000000580)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x28, 0x28, 0x3, [@ptr={0x7, 0x0, 0x0, 0x2, 0x1}, @fwd={0x7}, @var={0xa, 0x0, 0x0, 0xe, 0x5}]}, {0x0, [0x5f]}}, 0x0, 0x43, 0x0, 0x0, 0x9, 0x0, @void, @value}, 0x20) r0 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x86e1, 0x1, 0x8}, &(0x7f0000010080), &(0x7f0000000000)) io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000010300)=[{0x0}, {0x0}], 0x2) io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}], &(0x7f00000005c0), 0x1}, 0x20) 1.313602929s ago: executing program 1 (id=2661): r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'\x00', 0x8411}) ioctl$TUNSETOFFLOAD(r0, 0x400454c9, 0x9) ioctl$TUNATTACHFILTER(r0, 0x400454ce, 0x0) 1.267837413s ago: executing program 0 (id=2663): r0 = socket(0x10, 0x3, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001500)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f00000047c0)=r1, 0x4) syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0) 1.20117154s ago: executing program 1 (id=2677): openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0) capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000040)) r0 = syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000240)={0x53, 0x0, 0x6, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000180)="b6cbf1775504", 0x0, 0x0, 0x0, 0x0, 0x0}) 1.145728735s ago: executing program 1 (id=2670): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000100)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000400000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) setresuid(0x0, 0x0, 0x0) 1.036404225s ago: executing program 1 (id=2684): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000f3ffffff850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0xfca804a0, 0x0, 0x17e0, 0x0, 0x0, 0x21000000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.000039898s ago: executing program 2 (id=2676): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x40, &(0x7f0000000340), 0x1, 0x548, &(0x7f0000000b40)="$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") close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) fadvise64(r0, 0xe0ffff, 0x4101, 0x3) 980.19942ms ago: executing program 4 (id=2678): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000500), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000bc0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r0, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000280)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000001d00000008000300", @ANYRES32=r2, @ANYBLOB='8\x00/'], 0x54}, 0x1, 0x0, 0x0, 0x4084}, 0x0) 925.548375ms ago: executing program 2 (id=2679): r0 = socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macsec0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000c80)=@newlink={0x3c, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_INC_SCI={0x5, 0xf, 0x95}]}}}]}, 0x3c}}, 0x0) 891.967968ms ago: executing program 4 (id=2681): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000003a00)={&(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x42}, 0x1}}, 0x10, 0x0}, 0x4000084) 872.94764ms ago: executing program 2 (id=2683): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x8, &(0x7f0000000780)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a800000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 845.174672ms ago: executing program 4 (id=2685): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10) set_tid_address(0x0) 785.603798ms ago: executing program 4 (id=2688): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001800)={&(0x7f0000000580)='kfree\x00', r1}, 0x9) syz_usbip_server_init(0x1) 785.055548ms ago: executing program 2 (id=2698): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0) 542.21151ms ago: executing program 2 (id=2700): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000840)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f0000000bc0)="0100000200373a4541062000a59ea940d2cb0b36b8f5020000a00000050000000000eb000000a5e5be21c44e", 0x2c, r1) 519.683172ms ago: executing program 2 (id=2690): r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0) mknod(&(0x7f0000000540)='./file1\x00', 0x1, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') mount$9p_fd(0x0, &(0x7f00000006c0)='./file1\x00', &(0x7f0000000000), 0x10000, &(0x7f0000000700)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}}) 417.542881ms ago: executing program 0 (id=2693): openat$ttyS3(0xffffffffffffff9c, 0x0, 0x2982, 0x0) r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$TCSETSF(r0, 0x5409, 0x0) 416.178392ms ago: executing program 3 (id=2694): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000040)=@broute={'broute\x00', 0x20, 0x1, 0x220, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000560], 0x7, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="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"/544]}, 0x298) 391.508724ms ago: executing program 3 (id=2695): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, &(0x7f0000000f00)=@framed, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x5f, 0xffffffffffffffff, {0x29}}, './file0\x00'}) 344.872458ms ago: executing program 3 (id=2696): r0 = socket$kcm(0x10, 0x2, 0x0) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0xfffffffe, &(0x7f0000000300)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0) sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x3, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0) 152.774816ms ago: executing program 4 (id=2697): clock_gettime(0x0, 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) lsetxattr$system_posix_acl(&(0x7f00000003c0)='./bus\x00', &(0x7f0000000540)='system.posix_acl_access\x00', &(0x7f0000000100)={{}, {}, [{}]}, 0x2c, 0x0) getxattr(&(0x7f0000000140)='./bus\x00', &(0x7f00000001c0)=@known='system.posix_acl_access\x00', &(0x7f0000000400)=""/254, 0x145) 127.333468ms ago: executing program 0 (id=2699): open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0) r0 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, r0, 0x0) futex(0x0, 0x85, 0x0, 0x0, &(0x7f0000000080), 0x0) 89.052842ms ago: executing program 0 (id=2701): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000a00), r1) sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x20, r2, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy3\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x5}, 0x4404) 87.352202ms ago: executing program 4 (id=2702): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) ppoll(&(0x7f0000000180)=[{}, {r0}], 0x2, 0x0, 0x0, 0x0) 86.220662ms ago: executing program 1 (id=2703): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0xa}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @rt={{0x7}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_RT_DREG={0x8, 0x1, 0x1, 0x0, 0x15}, @NFTA_RT_KEY={0x8, 0x2, 0x1, 0x0, 0x3}]}}}]}]}], {0x14}}, 0xd4}}, 0x0) 74.835383ms ago: executing program 3 (id=2704): r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r0, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0xd6}, [@call={0x85, 0x0, 0x0, 0x41}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x12, 0x0, 0x0, 0x0, 0x0, 0x4fd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50) 36.183457ms ago: executing program 0 (id=2705): r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) keyctl$KEYCTL_MOVE(0x1e, r0, 0xfffffffffffffffd, 0xfffffffffffffffe, 0x1) 33.677357ms ago: executing program 3 (id=2706): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x4, 0x7fe4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000009c0)='kfree\x00', r1}, 0x10) unlinkat(0xffffffffffffffff, &(0x7f00000015c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200) 1.18706ms ago: executing program 3 (id=2707): r0 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0) syz_usb_disconnect(r0) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[], 0x0) ioctl$EVIOCRMFF(r0, 0x5509, 0x0) 0s ago: executing program 1 (id=2717): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000580)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_SET_CHANNEL(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000006c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000900000008000300", @ANYRES32=r2, @ANYBLOB="050007000300000005000800"], 0x2c}}, 0x0) kernel console output (not intermixed with test programs): ase check. [ 49.005992][ T3266] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.161901][ T4032] veth0_vlan: entered allmulticast mode [ 49.225108][ T4032] veth0_vlan: left promiscuous mode [ 49.256457][ T4032] veth0_vlan: entered promiscuous mode [ 49.339531][ T4051] 9pnet_fd: Insufficient options for proto=fd [ 49.451054][ T4066] netlink: 4 bytes leftover after parsing attributes in process `syz.2.296'. [ 49.523376][ T4074] loop2: detected capacity change from 0 to 512 [ 49.568788][ T4074] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 49.585063][ T4074] ext4 filesystem being mounted at /63/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 49.635388][ T3261] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.682447][ T4087] netlink: 12 bytes leftover after parsing attributes in process `syz.3.307'. [ 49.814434][ T4099] loop0: detected capacity change from 0 to 512 [ 49.844455][ T4099] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.312: casefold flag without casefold feature [ 49.876293][ T4107] netlink: 12 bytes leftover after parsing attributes in process `syz.1.315'. [ 49.890439][ T4099] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.312: couldn't read orphan inode 15 (err -117) [ 49.921127][ T4099] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 49.974646][ T3266] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.013078][ T4119] netlink: 268 bytes leftover after parsing attributes in process `syz.0.320'. [ 50.014527][ T4121] syz.1.322[4121] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 50.024829][ T4119] unsupported nla_type 65024 [ 50.025008][ T4121] syz.1.322[4121] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 50.083448][ T4123] loop0: detected capacity change from 0 to 256 [ 50.156879][ T4135] loop0: detected capacity change from 0 to 512 [ 50.176493][ T4135] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 50.201891][ T4135] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 50.219326][ T4135] ext4 filesystem being mounted at /71/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 50.237075][ T4135] EXT4-fs error (device loop0): __ext4_new_inode:1279: comm syz.0.329: failed to insert inode 16: doubly allocated? [ 50.283934][ T3266] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.335492][ T4151] netlink: 16 bytes leftover after parsing attributes in process `syz.1.336'. [ 50.402415][ T4161] syz.1.341[4161] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 50.402489][ T4161] syz.1.341[4161] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 50.545476][ T4177] netlink: 4 bytes leftover after parsing attributes in process `syz.4.348'. [ 50.577389][ T4177] netlink: 20 bytes leftover after parsing attributes in process `syz.4.348'. [ 50.590365][ T4177] netlink: 4 bytes leftover after parsing attributes in process `syz.4.348'. [ 50.634281][ T4181] syz.2.350 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 50.694647][ T4187] loop1: detected capacity change from 0 to 4096 [ 50.710969][ T4187] EXT4-fs: Ignoring removed nomblk_io_submit option [ 50.732996][ T4187] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 50.749546][ T4197] 9pnet_fd: p9_fd_create_tcp (4197): problem connecting socket to 127.0.0.1 [ 50.780436][ T4187] EXT4-fs error (device loop1): ext4_do_update_inode:5151: inode #15: comm syz.1.353: corrupted inode contents [ 50.824418][ T4187] EXT4-fs error (device loop1): ext4_dirty_inode:6011: inode #15: comm syz.1.353: mark_inode_dirty error [ 50.852167][ T4187] EXT4-fs error (device loop1): ext4_do_update_inode:5151: inode #15: comm syz.1.353: corrupted inode contents [ 50.872869][ T4212] netlink: 'syz.4.365': attribute type 10 has an invalid length. [ 50.875010][ T4187] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #15: comm syz.1.353: mark_inode_dirty error [ 50.898989][ T4212] veth0_macvtap: left promiscuous mode [ 50.905773][ T4187] EXT4-fs error (device loop1): ext4_do_update_inode:5151: inode #15: comm syz.1.353: corrupted inode contents [ 50.921061][ T4187] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #15: comm syz.1.353: mark_inode_dirty error [ 50.938254][ T4187] EXT4-fs error (device loop1): ext4_do_update_inode:5151: inode #15: comm syz.1.353: corrupted inode contents [ 50.951781][ T4212] veth0_macvtap: entered promiscuous mode [ 50.959487][ T4187] EXT4-fs error (device loop1): ext4_truncate:4238: inode #15: comm syz.1.353: mark_inode_dirty error [ 50.959690][ T4187] EXT4-fs error (device loop1) in ext4_setattr:5550: Corrupt filesystem [ 50.986689][ T4213] EXT4-fs error (device loop1): ext4_do_update_inode:5151: inode #15: comm syz.1.353: corrupted inode contents [ 51.002801][ T4212] team0: Device macvtap0 failed to register rx_handler [ 51.013453][ T4212] veth0_macvtap: left promiscuous mode [ 51.053979][ T3264] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.102810][ T4226] netlink: 24 bytes leftover after parsing attributes in process `syz.2.372'. [ 51.183436][ T4238] loop2: detected capacity change from 0 to 1764 [ 51.272891][ T4252] tmpfs: Unknown parameter 'nolazytimeĞ DlvpV 9:$VQ p4 [ 53.313865][ T4431] loop4: p4 size 8388608 extends beyond EOD, truncated [ 53.322872][ T4437] tun0: tun_chr_ioctl cmd 2147767520 [ 53.330952][ T3266] EXT4-fs warning (device loop0): ext4_evict_inode:254: couldn't mark inode dirty (err -117) [ 53.359473][ T3266] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 53.462772][ T4453] ======================================================= [ 53.462772][ T4453] WARNING: The mand mount option has been deprecated and [ 53.462772][ T4453] and is ignored by this kernel. Remove the mand [ 53.462772][ T4453] option from the mount to silence this warning. [ 53.462772][ T4453] ======================================================= [ 53.671054][ T4482] loop3: detected capacity change from 0 to 256 [ 53.685914][ T4482] FAT-fs (loop3): Directory bread(block 64) failed [ 53.694034][ T4482] FAT-fs (loop3): Directory bread(block 65) failed [ 53.706275][ T4482] FAT-fs (loop3): Directory bread(block 66) failed [ 53.714064][ T4482] FAT-fs (loop3): Directory bread(block 67) failed [ 53.723357][ T4482] FAT-fs (loop3): Directory bread(block 68) failed [ 53.735629][ T4482] FAT-fs (loop3): Directory bread(block 69) failed [ 53.745456][ T4482] FAT-fs (loop3): Directory bread(block 70) failed [ 53.745488][ T4468] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 53.753860][ T4482] FAT-fs (loop3): Directory bread(block 71) failed [ 53.790015][ T4468] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 53.802234][ T4482] FAT-fs (loop3): Directory bread(block 72) failed [ 53.812036][ T4482] FAT-fs (loop3): Directory bread(block 73) failed [ 53.854334][ T4482] process 'syz.3.484' launched './file0' with NULL argv: empty string added [ 53.868813][ T4493] 9pnet_fd: Insufficient options for proto=fd [ 53.878377][ T4482] syz.3.484: attempt to access beyond end of device [ 53.878377][ T4482] loop3: rw=524288, sector=1736, nr_sectors = 32 limit=256 [ 53.905431][ T4482] syz.3.484: attempt to access beyond end of device [ 53.905431][ T4482] loop3: rw=0, sector=1736, nr_sectors = 8 limit=256 [ 53.956302][ T4500] netlink: 'syz.2.493': attribute type 3 has an invalid length. [ 53.964927][ T4500] __nla_validate_parse: 5 callbacks suppressed [ 53.964943][ T4500] netlink: 8 bytes leftover after parsing attributes in process `syz.2.493'. [ 53.984098][ T4500] netlink: 'syz.2.493': attribute type 3 has an invalid length. [ 53.993021][ T4500] netlink: 8 bytes leftover after parsing attributes in process `syz.2.493'. [ 54.022946][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.031284][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.038476][ T4512] syz.4.498[4512] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 54.039622][ T4512] syz.4.498[4512] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 54.039630][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.039663][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.083873][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.094068][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.103090][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.111838][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.119742][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.128767][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.137245][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.146430][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156073][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156108][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156148][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156186][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156212][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156238][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156274][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156300][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156421][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156450][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156475][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156497][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156522][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156551][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156578][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156621][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156643][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156664][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156758][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156786][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156812][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156838][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156862][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.156957][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.362651][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.370736][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.378617][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.388986][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.397832][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.405827][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.414314][ T35] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 54.427968][ T35] hid-generic 0002:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 54.603611][ T4555] loop2: detected capacity change from 0 to 2048 [ 54.610128][ T4559] loop1: detected capacity change from 0 to 512 [ 54.620087][ T4557] netlink: 'syz.4.519': attribute type 11 has an invalid length. [ 54.642332][ T4555] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 54.648532][ T4559] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 54.667875][ T4567] (unnamed net_device) (uninitialized): option ad_user_port_key: invalid value (46336) [ 54.681915][ T4555] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, [ 54.686395][ T4567] (unnamed net_device) (uninitialized): option ad_user_port_key: allowed values 0 - 1023 [ 54.709317][ T4555] block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 54.713014][ T4559] ext4 filesystem being mounted at /101/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 54.745740][ T4555] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 17 with error 28 [ 54.760717][ T4555] EXT4-fs (loop2): This should not happen!! Data will be lost [ 54.760717][ T4555] [ 54.772880][ T4555] EXT4-fs (loop2): Total free blocks count 0 [ 54.780646][ T4555] EXT4-fs (loop2): Free/Dirty block details [ 54.789224][ T4555] EXT4-fs (loop2): free_blocks=2415919104 [ 54.794639][ T4577] loop0: detected capacity change from 0 to 2048 [ 54.795760][ T4555] EXT4-fs (loop2): dirty_blocks=32 [ 54.808476][ T4555] EXT4-fs (loop2): Block reservation details [ 54.815575][ T4555] EXT4-fs (loop2): i_reserved_data_blocks=2 [ 54.824424][ T4572] mmap: syz.4.524 (4572) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 54.861162][ T3264] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 54.874838][ T28] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 54.890229][ T4577] loop0: p1 < > p4 [ 54.903355][ T4577] loop0: p4 size 8388608 extends beyond EOD, truncated [ 54.941332][ T4585] loop1: detected capacity change from 0 to 1024 [ 54.952081][ T4585] EXT4-fs: Ignoring removed oldalloc option [ 54.963787][ T4585] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 54.975636][ T4590] netlink: 2 bytes leftover after parsing attributes in process `syz.3.533'. [ 55.017989][ T4585] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 55.068643][ T4603] loop4: detected capacity change from 0 to 1024 [ 55.079697][ T4603] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 55.094573][ T4603] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (30349!=20869) [ 55.112431][ T3264] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 55.140459][ T4603] EXT4-fs (loop4): invalid journal inode [ 55.147218][ T4603] EXT4-fs (loop4): can't get journal size [ 55.161079][ T4611] loop3: detected capacity change from 0 to 256 [ 55.190312][ T4603] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 55.212722][ T4618] loop1: detected capacity change from 0 to 2048 [ 55.222614][ T4620] sctp: [Deprecated]: syz.0.543 (pid 4620) Use of int in max_burst socket option deprecated. [ 55.222614][ T4620] Use struct sctp_assoc_value instead [ 55.231278][ T4603] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 37: comm syz.4.537: path /112/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0 [ 55.273650][ T4603] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 3: comm syz.4.537: path /112/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=511, rec_len=65535, size=1024 fake=0 [ 55.293702][ T4626] loop3: detected capacity change from 0 to 512 [ 55.312562][ T4618] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 55.332349][ T4626] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 55.333425][ T3263] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 55.378858][ T4626] EXT4-fs (loop3): 1 truncate cleaned up [ 55.398780][ T4626] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 55.414382][ T4618] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 55.441021][ T4618] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 17 with error 28 [ 55.455125][ T4618] EXT4-fs (loop1): This should not happen!! Data will be lost [ 55.455125][ T4618] [ 55.467573][ T4618] EXT4-fs (loop1): Total free blocks count 0 [ 55.475059][ T4618] EXT4-fs (loop1): Free/Dirty block details [ 55.481419][ T4618] EXT4-fs (loop1): free_blocks=2415919104 [ 55.488056][ T4618] EXT4-fs (loop1): dirty_blocks=32 [ 55.493619][ T4618] EXT4-fs (loop1): Block reservation details [ 55.501721][ T4618] EXT4-fs (loop1): i_reserved_data_blocks=2 [ 55.511974][ T3265] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 55.558693][ T3363] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 55.592066][ T4658] SELinux: Context system_u:object_r:auditd_var_run_t:s0 is not valid (left unmapped). [ 55.597356][ T4656] loop0: detected capacity change from 0 to 2048 [ 55.659175][ T4656] loop0: p1 < > p4 [ 55.664610][ T4656] loop0: p4 size 8388608 extends beyond EOD, truncated [ 55.766933][ T4689] loop3: detected capacity change from 0 to 1764 [ 55.859960][ T4707] syz.3.583[4707] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 55.860034][ T4707] syz.3.583[4707] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 55.955129][ T4719] loop0: detected capacity change from 0 to 256 [ 56.009622][ T4719] FAT-fs (loop0): Directory bread(block 64) failed [ 56.019134][ T4719] FAT-fs (loop0): Directory bread(block 65) failed [ 56.039828][ T4719] FAT-fs (loop0): Directory bread(block 66) failed [ 56.057966][ T4719] FAT-fs (loop0): Directory bread(block 67) failed [ 56.074996][ T4719] FAT-fs (loop0): Directory bread(block 68) failed [ 56.086557][ T4719] FAT-fs (loop0): Directory bread(block 69) failed [ 56.100489][ T4719] FAT-fs (loop0): Directory bread(block 70) failed [ 56.118322][ T4719] FAT-fs (loop0): Directory bread(block 71) failed [ 56.133268][ T4719] FAT-fs (loop0): Directory bread(block 72) failed [ 56.135573][ T4727] loop3: detected capacity change from 0 to 512 [ 56.150897][ T4719] FAT-fs (loop0): Directory bread(block 73) failed [ 56.171660][ T4727] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 56.199458][ T4719] syz.0.590: attempt to access beyond end of device [ 56.199458][ T4719] loop0: rw=524288, sector=1736, nr_sectors = 32 limit=256 [ 56.228838][ T4727] ext4 filesystem being mounted at /113/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 56.230628][ T4719] syz.0.590: attempt to access beyond end of device [ 56.230628][ T4719] loop0: rw=0, sector=1736, nr_sectors = 8 limit=256 [ 56.283205][ T4727] EXT4-fs error (device loop3): ext4_do_update_inode:5151: inode #2: comm syz.3.594: corrupted inode contents [ 56.313475][ T4727] EXT4-fs error (device loop3): ext4_dirty_inode:6011: inode #2: comm syz.3.594: mark_inode_dirty error [ 56.325276][ T4741] loop2: detected capacity change from 0 to 1024 [ 56.336175][ T4741] ext4: Bad value for 'sb' [ 56.342223][ T4727] EXT4-fs error (device loop3): ext4_do_update_inode:5151: inode #2: comm syz.3.594: corrupted inode contents [ 56.351985][ T4744] loop4: detected capacity change from 0 to 2048 [ 56.381487][ T4744] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 56.437658][ T3265] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 56.465932][ T4744] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.600: bg 0: block 274: padding at end of block bitmap is not set [ 56.492439][ T4744] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 8 with error 117 [ 56.509214][ T4744] EXT4-fs (loop4): This should not happen!! Data will be lost [ 56.509214][ T4744] [ 56.574275][ T4772] netlink: 16 bytes leftover after parsing attributes in process `syz.2.612'. [ 56.594732][ T4744] syz.4.600 (4744) used greatest stack depth: 9648 bytes left [ 56.611606][ T4774] loop0: detected capacity change from 0 to 764 [ 56.622479][ T3263] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 56.636652][ T4774] Symlink component flag not implemented [ 56.643845][ T4774] Symlink component flag not implemented (129) [ 56.667543][ T4774] rock: directory entry would overflow storage [ 56.674752][ T4774] rock: sig=0x4f50, size=4, remaining=3 [ 56.681821][ T4774] iso9660: Corrupted directory entry in block 6 of inode 1792 [ 56.701269][ T4782] loop2: detected capacity change from 0 to 1024 [ 56.709387][ T4782] EXT4-fs: Ignoring removed oldalloc option [ 56.716222][ T29] kauditd_printk_skb: 184 callbacks suppressed [ 56.716248][ T29] audit: type=1400 audit(1726747002.267:630): avc: denied { read } for pid=4783 comm="syz.3.618" name="usbmon0" dev="devtmpfs" ino=117 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 56.738768][ T4782] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 56.749817][ T29] audit: type=1400 audit(1726747002.267:631): avc: denied { open } for pid=4783 comm="syz.3.618" path="/dev/usbmon0" dev="devtmpfs" ino=117 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 56.807148][ T29] audit: type=1400 audit(1726747002.277:632): avc: denied { map } for pid=4783 comm="syz.3.618" path="/dev/usbmon0" dev="devtmpfs" ino=117 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 56.812304][ T4782] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 56.886539][ T3261] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 56.898504][ T29] audit: type=1400 audit(1726747002.457:633): avc: denied { setopt } for pid=4785 comm="syz.0.619" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 56.931916][ T4795] loop4: detected capacity change from 0 to 512 [ 56.953831][ T29] audit: type=1326 audit(1726747002.487:634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4799 comm="syz.3.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a3d30def9 code=0x7ffc0000 [ 56.983096][ T29] audit: type=1326 audit(1726747002.487:635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4799 comm="syz.3.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a3d30def9 code=0x7ffc0000 [ 57.009980][ T29] audit: type=1326 audit(1726747002.487:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4799 comm="syz.3.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9a3d30def9 code=0x7ffc0000 [ 57.039540][ T29] audit: type=1326 audit(1726747002.487:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4799 comm="syz.3.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a3d30def9 code=0x7ffc0000 [ 57.066413][ T29] audit: type=1326 audit(1726747002.487:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4799 comm="syz.3.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a3d30def9 code=0x7ffc0000 [ 57.094692][ T29] audit: type=1326 audit(1726747002.487:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4799 comm="syz.3.625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9a3d30def9 code=0x7ffc0000 [ 57.108850][ T4795] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 57.138141][ T4795] ext4 filesystem being mounted at /133/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 57.211333][ T3263] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 57.270378][ T4811] loop0: detected capacity change from 0 to 8192 [ 57.272862][ T4815] netlink: 277 bytes leftover after parsing attributes in process `syz.3.631'. [ 57.290275][ T4818] loop4: detected capacity change from 0 to 2048 [ 57.302917][ T4811] syz.0.629: attempt to access beyond end of device [ 57.302917][ T4811] loop0: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 57.318509][ T4811] Buffer I/O error on dev loop0, logical block 57847, async page read [ 57.328418][ T4811] syz.0.629: attempt to access beyond end of device [ 57.328418][ T4811] loop0: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 57.344868][ T4811] Buffer I/O error on dev loop0, logical block 57847, async page read [ 57.355957][ T4818] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 57.373342][ T4811] syz.0.629: attempt to access beyond end of device [ 57.373342][ T4811] loop0: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 57.387902][ T4811] Buffer I/O error on dev loop0, logical block 57847, async page read [ 57.410493][ T4828] loop1: detected capacity change from 0 to 2048 [ 57.421860][ T4828] EXT4-fs error (device loop1): __ext4_fill_super:5435: inode #2: comm syz.1.634: casefold flag without casefold feature [ 57.440365][ T4818] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 57.451163][ T4828] EXT4-fs (loop1): get root inode failed [ 57.458640][ T4818] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 17 with error 28 [ 57.463964][ T4828] EXT4-fs (loop1): mount failed [ 57.477515][ T4818] EXT4-fs (loop4): This should not happen!! Data will be lost [ 57.477515][ T4818] [ 57.493271][ T4818] EXT4-fs (loop4): Total free blocks count 0 [ 57.500571][ T4818] EXT4-fs (loop4): Free/Dirty block details [ 57.508481][ T4818] EXT4-fs (loop4): free_blocks=2415919104 [ 57.515452][ T4818] EXT4-fs (loop4): dirty_blocks=32 [ 57.521669][ T4818] EXT4-fs (loop4): Block reservation details [ 57.528849][ T4818] EXT4-fs (loop4): i_reserved_data_blocks=2 [ 57.563006][ T4840] loop3: detected capacity change from 0 to 2048 [ 57.577099][ T120] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 57.612635][ T4840] Alternate GPT is invalid, using primary GPT. [ 57.619216][ T4840] loop3: p1 p2 p3 [ 57.645410][ T4847] loop1: detected capacity change from 0 to 512 [ 57.670147][ T4851] netlink: 'syz.3.645': attribute type 1 has an invalid length. [ 57.673043][ T4847] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 57.678753][ T4851] netlink: 4 bytes leftover after parsing attributes in process `syz.3.645'. [ 57.692856][ T4847] ext4 filesystem being mounted at /117/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 57.772871][ T3264] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 57.851043][ T4865] loop3: detected capacity change from 0 to 764 [ 57.936633][ T4869] loop1: detected capacity change from 0 to 2048 [ 57.961347][ T4875] syz.0.656[4875] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 57.961467][ T4875] syz.0.656[4875] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 57.980884][ T4875] Invalid ELF header magic: != ELF [ 58.002071][ T4869] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 58.045740][ T3264] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 58.104266][ T4884] tun0: tun_chr_ioctl cmd 1074812118 [ 58.209603][ T4906] loop1: detected capacity change from 0 to 2048 [ 58.258352][ T4917] netlink: 4 bytes leftover after parsing attributes in process `syz.2.675'. [ 58.269938][ T4906] Alternate GPT is invalid, using primary GPT. [ 58.276741][ T4906] loop1: p1 p2 p3 [ 58.279722][ T4917] bridge_slave_1: left allmulticast mode [ 58.287682][ T4917] bridge_slave_1: left promiscuous mode [ 58.293605][ T4917] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.309050][ T4917] bridge_slave_0: left allmulticast mode [ 58.315600][ T4917] bridge_slave_0: left promiscuous mode [ 58.322211][ T4917] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.343247][ T4922] loop1: detected capacity change from 0 to 1024 [ 58.350473][ T4922] EXT4-fs: Ignoring removed orlov option [ 58.357275][ T4922] EXT4-fs: Ignoring removed nomblk_io_submit option [ 58.370050][ T4922] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 58.391887][ T4922] EXT4-fs error (device loop1): ext4_expand_extra_isize_ea:2792: inode #14: comm syz.1.677: corrupted in-inode xattr: bad magic number in in-inode xattr [ 58.410960][ T4922] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #14: comm syz.1.677: attempt to clear invalid blocks 1634560256 len 1 [ 58.441471][ T3264] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 58.485653][ T4934] syz.0.682[4934] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 58.485730][ T4934] syz.0.682[4934] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 58.611976][ T4953] hub 9-0:1.0: USB hub found [ 58.634970][ T4953] hub 9-0:1.0: 8 ports detected [ 58.672164][ T4959] tap0: tun_chr_ioctl cmd 1074025677 [ 58.681532][ T4959] tap0: linktype set to 825 [ 58.869520][ T4997] loop4: detected capacity change from 0 to 256 [ 58.892479][ T4997] FAT-fs (loop4): Directory bread(block 64) failed [ 58.909542][ T4997] FAT-fs (loop4): Directory bread(block 65) failed [ 58.927471][ T4997] FAT-fs (loop4): Directory bread(block 66) failed [ 58.937436][ T4997] FAT-fs (loop4): Directory bread(block 67) failed [ 58.946458][ T4997] FAT-fs (loop4): Directory bread(block 68) failed [ 58.953468][ T4997] FAT-fs (loop4): Directory bread(block 69) failed [ 58.971290][ T4997] FAT-fs (loop4): Directory bread(block 70) failed [ 58.986907][ T4997] FAT-fs (loop4): Directory bread(block 71) failed [ 59.006760][ T5018] Invalid ELF header magic: != ELF [ 59.013183][ T4997] FAT-fs (loop4): Directory bread(block 72) failed [ 59.024045][ T4997] FAT-fs (loop4): Directory bread(block 73) failed [ 59.133808][ T5031] netlink: 32 bytes leftover after parsing attributes in process `syz.3.724'. [ 59.250167][ T5054] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 59.265795][ T5054] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 59.300176][ T5060] loop1: detected capacity change from 0 to 164 [ 59.325173][ T5060] syz.1.735: attempt to access beyond end of device [ 59.325173][ T5060] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 59.341504][ T5060] syz.1.735: attempt to access beyond end of device [ 59.341504][ T5060] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 59.425178][ T5073] devtmpfs: Unknown parameter 'di' [ 60.207598][ T5150] syz.2.781[5150] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 60.207669][ T5150] syz.2.781[5150] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 60.392607][ T5162] netlink: 8 bytes leftover after parsing attributes in process `syz.2.786'. [ 60.414655][ T5162] netlink: 4 bytes leftover after parsing attributes in process `syz.2.786'. [ 60.474314][ T5167] syz.1.788[5167] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 60.474386][ T5167] syz.1.788[5167] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 60.548930][ T5175] netlink: 36 bytes leftover after parsing attributes in process `syz.2.792'. [ 60.752652][ T5195] tun0: tun_chr_ioctl cmd 1074025677 [ 60.765688][ T5195] tun0: linktype set to 0 [ 60.995845][ T5229] netlink: 56 bytes leftover after parsing attributes in process `syz.1.811'. [ 61.262046][ T5253] SELinux: policydb version -1681192944 does not match my version range 15-33 [ 61.285514][ T5253] SELinux: failed to load policy [ 61.370273][ T5267] program syz.1.830 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 61.389654][ T5269] xt_CT: You must specify a L4 protocol and not use inversions on it [ 61.434916][ T5278] netlink: 277 bytes leftover after parsing attributes in process `syz.1.835'. [ 61.465480][ T5284] bpf_get_probe_write_proto: 2 callbacks suppressed [ 61.465501][ T5284] syz.2.839[5284] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 61.478307][ T5284] syz.2.839[5284] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 61.513084][ T5289] loop1: detected capacity change from 0 to 256 [ 61.538318][ T5287] tap0: tun_chr_ioctl cmd 2148553947 [ 61.569101][ T5289] FAT-fs (loop1): unable to read block(4294967296) for building NFS inode [ 61.606992][ T5301] loop3: detected capacity change from 0 to 512 [ 61.621559][ T5301] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22 [ 61.658846][ T5305] @: renamed from veth0_vlan (while UP) [ 61.673169][ T5313] syz.3.852[5313] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 61.673232][ T5313] syz.3.852[5313] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 61.763401][ T5330] netlink: 20 bytes leftover after parsing attributes in process `syz.4.859'. [ 61.764037][ T29] kauditd_printk_skb: 602 callbacks suppressed [ 61.764053][ T29] audit: type=1326 audit(1726747007.317:1242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5326 comm="syz.1.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fecfdef9 code=0x7ffc0000 [ 61.854742][ T29] audit: type=1400 audit(1726747007.347:1243): avc: denied { connect } for pid=5334 comm="syz.4.863" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 61.877302][ T29] audit: type=1326 audit(1726747007.377:1244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5326 comm="syz.1.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fecfdef9 code=0x7ffc0000 [ 61.904181][ T29] audit: type=1326 audit(1726747007.377:1245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5326 comm="syz.1.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f77fecfdef9 code=0x7ffc0000 [ 61.932421][ T29] audit: type=1326 audit(1726747007.377:1246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5326 comm="syz.1.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fecfdef9 code=0x7ffc0000 [ 61.962009][ T29] audit: type=1326 audit(1726747007.377:1247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5326 comm="syz.1.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f77fecfdef9 code=0x7ffc0000 [ 61.989238][ T29] audit: type=1326 audit(1726747007.387:1248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5326 comm="syz.1.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fecfdef9 code=0x7ffc0000 [ 62.016621][ T29] audit: type=1326 audit(1726747007.387:1249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5326 comm="syz.1.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fecfdef9 code=0x7ffc0000 [ 62.041516][ T29] audit: type=1326 audit(1726747007.387:1250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5326 comm="syz.1.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=442 compat=0 ip=0x7f77fecfdef9 code=0x7ffc0000 [ 62.067689][ T29] audit: type=1326 audit(1726747007.387:1251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5326 comm="syz.1.860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fecfdef9 code=0x7ffc0000 [ 62.102868][ T5351] loop2: detected capacity change from 0 to 1024 [ 62.131347][ T5351] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 62.162774][ T5351] EXT4-fs error (device loop2): ext4_xattr_inode_iget:440: inode #11: comm syz.2.871: missing EA_INODE flag [ 62.187287][ T5351] EXT4-fs (loop2): Remounting filesystem read-only [ 62.199941][ T5367] @: renamed from vlan0 (while UP) [ 62.233963][ T3261] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 62.402787][ T5401] program syz.3.891 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 62.518677][ T5417] netlink: 277 bytes leftover after parsing attributes in process `syz.3.900'. [ 62.551150][ T5425] syz.0.902[5425] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 62.551253][ T5425] syz.0.902[5425] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 62.593383][ T5431] program syz.0.907 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 62.657341][ T5437] syz.0.910[5437] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 62.657435][ T5437] syz.0.910[5437] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 62.714602][ T5445] netlink: 36 bytes leftover after parsing attributes in process `syz.0.913'. [ 62.832000][ T5464] loop3: detected capacity change from 0 to 256 [ 62.846868][ T5464] FAT-fs (loop3): unable to read block(4294967296) for building NFS inode [ 62.857952][ T5465] loop4: detected capacity change from 0 to 2048 [ 62.893088][ T5470] program syz.2.922 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 62.918839][ T5465] loop4: p1 < > p4 [ 62.925696][ T5465] loop4: p4 size 8388608 extends beyond EOD, truncated [ 62.969694][ T5476] loop2: detected capacity change from 0 to 512 [ 62.977292][ T5476] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22 [ 62.999128][ T5480] @: renamed from veth0_vlan (while UP) [ 63.069762][ T5491] netlink: 36 bytes leftover after parsing attributes in process `syz.2.932'. [ 63.135931][ T5505] program syz.0.949 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 63.145970][ T5505] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 63.281125][ T5530] tap0: tun_chr_ioctl cmd 2148553947 [ 63.376247][ T5541] loop2: detected capacity change from 0 to 2048 [ 63.384692][ T5545] @: renamed from veth0_vlan (while UP) [ 63.412571][ T5541] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 63.432266][ T5550] program syz.3.954 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 63.455030][ T5550] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 63.469736][ T5541] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.967: bg 0: block 274: padding at end of block bitmap is not set [ 63.486429][ T5541] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 8 with error 117 [ 63.501750][ T5541] EXT4-fs (loop2): This should not happen!! Data will be lost [ 63.501750][ T5541] [ 63.602790][ T3261] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 63.686776][ T5584] 9pnet_fd: Insufficient options for proto=fd [ 63.959556][ T5610] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 64.040533][ T5623] loop2: detected capacity change from 0 to 1024 [ 64.094516][ T5631] loop3: detected capacity change from 0 to 2048 [ 64.160483][ T5641] loop0: detected capacity change from 0 to 2048 [ 64.182493][ T5649] loop3: detected capacity change from 0 to 512 [ 64.193403][ T5649] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 64.209660][ T5649] EXT4-fs (loop3): invalid journal inode [ 64.214107][ T5653] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 64.223641][ T5653] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 64.225195][ T5649] EXT4-fs (loop3): can't get journal size [ 64.255753][ T5649] EXT4-fs (loop3): 1 truncate cleaned up [ 64.263703][ T5653] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check. [ 64.267483][ T5650] loop1: detected capacity change from 0 to 8192 [ 64.687732][ T5692] loop0: detected capacity change from 0 to 2048 [ 64.739341][ T5692] Alternate GPT is invalid, using primary GPT. [ 64.747036][ T5692] loop0: p1 p2 p3 [ 64.817984][ T5703] loop1: detected capacity change from 0 to 2048 [ 64.863093][ T5712] syz.0.1042[5712] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 64.863192][ T5712] syz.0.1042[5712] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 65.077338][ T5736] loop0: detected capacity change from 0 to 512 [ 65.111642][ T5736] ext4 filesystem being mounted at /202/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 65.329879][ T5757] loop0: detected capacity change from 0 to 1024 [ 65.337437][ T5757] EXT4-fs: Ignoring removed orlov option [ 65.345408][ T5757] EXT4-fs: Ignoring removed nomblk_io_submit option [ 65.367929][ T5757] EXT4-fs error (device loop0): ext4_expand_extra_isize_ea:2792: inode #14: comm syz.0.1052: corrupted in-inode xattr: bad magic number in in-inode xattr [ 65.371070][ T5759] tap0: tun_chr_ioctl cmd 1074025677 [ 65.386820][ T5757] EXT4-fs error (device loop0): ext4_clear_blocks:883: inode #14: comm syz.0.1052: attempt to clear invalid blocks 1634560256 len 1 [ 65.410525][ T5759] tap0: linktype set to 825 [ 65.423822][ T5765] pim6reg1: entered promiscuous mode [ 65.429365][ T5765] pim6reg1: entered allmulticast mode [ 65.570052][ T5776] loop3: detected capacity change from 0 to 512 [ 65.583812][ T5778] loop0: detected capacity change from 0 to 764 [ 65.592458][ T5776] ext4 filesystem being mounted at /203/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 65.633011][ T5784] loop2: detected capacity change from 0 to 2048 [ 65.721313][ T5791] tun0: tun_chr_ioctl cmd 1074812118 [ 65.811856][ T5797] Invalid ELF header magic: != ELF [ 65.903189][ T5811] hub 9-0:1.0: USB hub found [ 65.910540][ T5811] hub 9-0:1.0: 8 ports detected [ 65.946966][ T5815] loop3: detected capacity change from 0 to 2048 [ 65.978106][ T5815] EXT4-fs: Ignoring removed mblk_io_submit option [ 66.023708][ T5826] __nla_validate_parse: 3 callbacks suppressed [ 66.023728][ T5826] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1078'. [ 66.050536][ T5815] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1074: bg 0: block 234: padding at end of block bitmap is not set [ 66.083878][ T5826] bridge_slave_1: left allmulticast mode [ 66.090450][ T5826] bridge_slave_1: left promiscuous mode [ 66.096837][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state [ 66.105976][ T5815] EXT4-fs (loop3): Remounting filesystem read-only [ 66.113694][ T5826] bridge_slave_0: left allmulticast mode [ 66.120163][ T5826] bridge_slave_0: left promiscuous mode [ 66.126154][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state [ 66.333037][ T5851] loop3: detected capacity change from 0 to 1024 [ 66.335447][ T5850] pim6reg1: entered promiscuous mode [ 66.342791][ T5851] EXT4-fs: Ignoring removed orlov option [ 66.347715][ T5850] pim6reg1: entered allmulticast mode [ 66.356446][ T5851] EXT4-fs: Ignoring removed nomblk_io_submit option [ 66.391648][ T5851] EXT4-fs error (device loop3): ext4_expand_extra_isize_ea:2792: inode #14: comm syz.3.1089: corrupted in-inode xattr: bad magic number in in-inode xattr [ 66.410431][ T5851] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #14: comm syz.3.1089: attempt to clear invalid blocks 1634560256 len 1 [ 66.454750][ T5858] loop4: detected capacity change from 0 to 2048 [ 66.463234][ T5858] EXT4-fs: Ignoring removed mblk_io_submit option [ 66.483574][ T5858] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1092: bg 0: block 234: padding at end of block bitmap is not set [ 66.503278][ T5858] EXT4-fs (loop4): Remounting filesystem read-only [ 66.552908][ T5871] netlink: 'syz.4.1097': attribute type 10 has an invalid length. [ 66.561189][ T5871] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1097'. [ 66.573370][ T5871] A link change request failed with some changes committed already. Interface ipvlan0 may have been left with an inconsistent configuration, please check. [ 66.627954][ T5874] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 66.635846][ T5874] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 66.644243][ T5874] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check. [ 66.766815][ T5882] hub 9-0:1.0: USB hub found [ 66.772405][ T5882] hub 9-0:1.0: 8 ports detected [ 66.903488][ T5901] loop4: detected capacity change from 0 to 1024 [ 66.947184][ T29] kauditd_printk_skb: 102 callbacks suppressed [ 66.947202][ T29] audit: type=1326 audit(1726747012.497:1354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5906 comm="syz.2.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb23906def9 code=0x7ffc0000 [ 66.995802][ T29] audit: type=1326 audit(1726747012.537:1355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5906 comm="syz.2.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7fb23906def9 code=0x7ffc0000 [ 67.021344][ T29] audit: type=1326 audit(1726747012.537:1356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5906 comm="syz.2.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb23906def9 code=0x7ffc0000 [ 67.047573][ T29] audit: type=1326 audit(1726747012.537:1357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5906 comm="syz.2.1113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb23906def9 code=0x7ffc0000 [ 67.074025][ T29] audit: type=1326 audit(1726747012.537:1358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5908 comm="syz.4.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be2c2def9 code=0x7ffc0000 [ 67.100081][ T29] audit: type=1326 audit(1726747012.537:1359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5908 comm="syz.4.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be2c2def9 code=0x7ffc0000 [ 67.125266][ T29] audit: type=1326 audit(1726747012.537:1360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5908 comm="syz.4.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=253 compat=0 ip=0x7f3be2c2def9 code=0x7ffc0000 [ 67.150887][ T29] audit: type=1326 audit(1726747012.537:1361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5908 comm="syz.4.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be2c2def9 code=0x7ffc0000 [ 67.178009][ T29] audit: type=1326 audit(1726747012.537:1362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5908 comm="syz.4.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be2c2def9 code=0x7ffc0000 [ 67.311480][ T5919] loop2: detected capacity change from 0 to 8192 [ 67.517918][ T5946] bpf_get_probe_write_proto: 2 callbacks suppressed [ 67.517939][ T5946] syz.3.1131[5946] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 67.526107][ T5946] syz.3.1131[5946] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 67.570203][ T29] audit: type=1326 audit(1726747013.127:1363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5945 comm="syz.3.1131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a3d30def9 code=0x7ffc0000 [ 67.972589][ T5969] bond1: entered promiscuous mode [ 67.978607][ T5969] bond1: entered allmulticast mode [ 67.994906][ T5969] 8021q: adding VLAN 0 to HW filter on device bond1 [ 68.011705][ T5969] bond1 (unregistering): Released all slaves [ 68.038626][ T5975] loop3: detected capacity change from 0 to 4096 [ 68.140790][ T5990] syz.0.1149[5990] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 68.140961][ T5990] syz.0.1149[5990] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 68.195939][ T6000] loop0: detected capacity change from 0 to 128 [ 68.324339][ T6020] syz.2.1162[6020] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 68.324424][ T6020] syz.2.1162[6020] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 68.397360][ T6028] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 68.586476][ T6055] syz.3.1178[6055] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 68.586544][ T6055] syz.3.1178[6055] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 68.656854][ T6065] loop3: detected capacity change from 0 to 512 [ 68.678814][ T6065] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 68.683398][ T6067] loop2: detected capacity change from 0 to 4096 [ 68.692073][ T6065] EXT4-fs (loop3): orphan cleanup on readonly fs [ 68.704789][ T6065] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1184: bg 0: block 248: padding at end of block bitmap is not set [ 68.723373][ T6065] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.1184: Failed to acquire dquot type 1 [ 68.739937][ T6065] EXT4-fs (loop3): 1 truncate cleaned up [ 68.786962][ T6065] syz.3.1184 (6065) used greatest stack depth: 9424 bytes left [ 68.802950][ T6083] loop2: detected capacity change from 0 to 1024 [ 68.811073][ T6085] tun0: tun_chr_ioctl cmd 1074025677 [ 68.811785][ T6083] EXT4-fs: Ignoring removed bh option [ 68.819748][ T6085] tun0: linktype set to 0 [ 68.942227][ T6109] syz.2.1203[6109] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 68.942296][ T6109] syz.2.1203[6109] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 68.956961][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 69.020678][ T6120] loop3: detected capacity change from 0 to 1024 [ 69.026216][ T6114] xt_CT: You must specify a L4 protocol and not use inversions on it [ 69.028054][ T6120] EXT4-fs: Ignoring removed bh option [ 69.038629][ T6118] bond1: entered promiscuous mode [ 69.048753][ T6118] bond1: entered allmulticast mode [ 69.056345][ T6118] 8021q: adding VLAN 0 to HW filter on device bond1 [ 69.072285][ T6118] bond1 (unregistering): Released all slaves [ 69.152236][ T6130] tun0: tun_chr_ioctl cmd 1074025677 [ 69.158596][ T6130] tun0: linktype set to 0 [ 69.207349][ T6138] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1213'. [ 69.229453][ T6138] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 69.243714][ T6142] loop1: detected capacity change from 0 to 2048 [ 69.252742][ T6142] EXT4-fs: Ignoring removed mblk_io_submit option [ 69.272984][ T6142] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1226: bg 0: block 234: padding at end of block bitmap is not set [ 69.295246][ T6142] EXT4-fs (loop1): Remounting filesystem read-only [ 69.551366][ T6181] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1231'. [ 69.561861][ T6181] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 69.657425][ T6189] loop4: detected capacity change from 0 to 512 [ 69.679305][ T6189] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.1236: iget: bad extended attribute block 1 [ 69.694734][ T6189] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.1236: couldn't read orphan inode 15 (err -117) [ 69.900993][ T6209] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1246'. [ 69.902615][ T6211] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1247'. [ 69.927745][ T6211] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 70.063696][ T6227] loop3: detected capacity change from 0 to 512 [ 70.075281][ T6225] loop4: detected capacity change from 0 to 2048 [ 70.087409][ T6227] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.1253: iget: bad extended attribute block 1 [ 70.103782][ T6227] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.1253: couldn't read orphan inode 15 (err -117) [ 70.159777][ T6239] loop0: detected capacity change from 0 to 164 [ 70.261729][ T6247] SELinux: Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 70.372991][ T6265] SELinux: Context system_u:object_r:dhcp_state_t:s0 is not valid (left unmapped). [ 70.601992][ T6292] x_tables: duplicate underflow at hook 2 [ 70.724052][ T6169] coredump: 1(syz.0.1225): written to core: VMAs: 29, size 72253440; core: 60121774 bytes, pos 72261632 [ 70.856614][ T6326] loop0: detected capacity change from 0 to 2048 [ 70.864755][ T6326] EXT4-fs: Ignoring removed mblk_io_submit option [ 70.894264][ T6326] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1298: bg 0: block 234: padding at end of block bitmap is not set [ 70.909855][ T6326] EXT4-fs (loop0): Remounting filesystem read-only [ 70.938553][ T6333] netlink: 'syz.0.1300': attribute type 10 has an invalid length. [ 70.949982][ T6333] hsr0: entered promiscuous mode [ 70.957698][ T6333] bond0: (slave hsr0): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 70.971008][ T6333] bond0: (slave hsr0): The slave device specified does not support setting the MAC address [ 70.982934][ T6333] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets). [ 71.002664][ T6333] bond0: (slave hsr0): Error -22 calling dev_set_mtu [ 71.044701][ T6339] sg_write: process 580 (syz.0.1303) changed security contexts after opening file descriptor, this is not allowed. [ 71.060701][ T6339] program syz.0.1303 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 71.287335][ T6369] netlink: 'syz.0.1318': attribute type 10 has an invalid length. [ 71.571954][ T6412] loop0: detected capacity change from 0 to 128 [ 71.587983][ T6412] ext4 filesystem being mounted at /298/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 71.703790][ T6428] loop0: detected capacity change from 0 to 1024 [ 71.863287][ T6453] loop1: detected capacity change from 0 to 128 [ 71.923001][ T6463] loop0: detected capacity change from 0 to 1024 [ 71.931215][ T6463] EXT4-fs: Ignoring removed bh option [ 71.937246][ T6463] EXT4-fs: Ignoring removed mblk_io_submit option [ 72.000505][ T29] kauditd_printk_skb: 267 callbacks suppressed [ 72.000523][ T29] audit: type=1400 audit(1860964745.551:1629): avc: denied { read write } for pid=3264 comm="syz-executor" name="loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 72.039353][ T29] audit: type=1400 audit(1860964745.551:1630): avc: denied { open } for pid=3261 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 72.066632][ T29] audit: type=1400 audit(1860964745.551:1631): avc: denied { ioctl } for pid=3261 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=102 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 72.095217][ T29] audit: type=1400 audit(1860964745.581:1632): avc: denied { mounton } for pid=6474 comm="syz.0.1367" path="/312/file0" dev="tmpfs" ino=1630 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 72.122739][ T29] audit: type=1400 audit(1860964745.581:1633): avc: denied { mount } for pid=6474 comm="syz.0.1367" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 72.149434][ T29] audit: type=1400 audit(1860964745.581:1634): avc: denied { read } for pid=6474 comm="syz.0.1367" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 72.178254][ T29] audit: type=1400 audit(1860964745.581:1635): avc: denied { open } for pid=6474 comm="syz.0.1367" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 72.204606][ T29] audit: type=1400 audit(1860964745.581:1636): avc: denied { ioctl } for pid=6474 comm="syz.0.1367" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x9374 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 72.230743][ T29] audit: type=1400 audit(1860964745.581:1637): avc: denied { create } for pid=6476 comm="syz.1.1368" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 72.257247][ T29] audit: type=1400 audit(1860964745.591:1638): avc: denied { unmount } for pid=3266 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 72.362846][ T6499] netlink: 'syz.2.1378': attribute type 15 has an invalid length. [ 72.447621][ T6513] loop2: detected capacity change from 0 to 764 [ 72.666900][ T6537] loop2: detected capacity change from 0 to 512 [ 72.682811][ T6535] loop3: detected capacity change from 0 to 4096 [ 72.693511][ T6537] ext4 filesystem being mounted at /267/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 72.777574][ T6548] xt_CT: You must specify a L4 protocol and not use inversions on it [ 72.819372][ T6558] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1401'. [ 72.954983][ T6572] loop2: detected capacity change from 0 to 2048 [ 73.148391][ T6588] veth1_macvtap: left promiscuous mode [ 73.155461][ T6588] macsec0: entered allmulticast mode [ 73.165143][ T6588] A link change request failed with some changes committed already. Interface macsec0 may have been left with an inconsistent configuration, please check. [ 73.303990][ T6604] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1422'. [ 73.358357][ T6608] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 73.474573][ T6623] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1432'. [ 73.533992][ T6632] loop2: detected capacity change from 0 to 1024 [ 73.544254][ T6632] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 73.560699][ T6632] EXT4-fs error (device loop2): ext4_ext_check_inode:520: inode #11: comm syz.2.1436: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 73.581357][ T6632] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.1436: couldn't read orphan inode 11 (err -117) [ 73.597995][ T6632] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.1436: Invalid block bitmap block 0 in block_group 0 [ 73.604484][ T6640] loop1: detected capacity change from 0 to 1024 [ 73.618600][ T6632] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.1436: Failed to acquire dquot type 0 [ 73.637403][ T6640] EXT4-fs: Ignoring removed bh option [ 73.655201][ T6640] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 73.690087][ T6640] EXT4-fs warning (device loop1): ext4_enable_quotas:7066: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix. [ 73.721558][ T6640] EXT4-fs (loop1): mount failed [ 73.776316][ T6655] Invalid ELF header magic: != ELF [ 73.786682][ T6658] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1447'. [ 73.795982][ T6658] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1447'. [ 73.894264][ T6675] block device autoloading is deprecated and will be removed. [ 74.000182][ T6691] loop2: detected capacity change from 0 to 512 [ 74.007392][ T6689] sctp: [Deprecated]: syz.4.1459 (pid 6689) Use of struct sctp_assoc_value in delayed_ack socket option. [ 74.007392][ T6689] Use struct sctp_sack_info instead [ 74.008355][ T6691] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #15: comm syz.2.1463: casefold flag without casefold feature [ 74.040630][ T6691] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.1463: couldn't read orphan inode 15 (err -117) [ 74.052573][ T6666] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 74.063076][ T6666] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 74.105529][ T6701] bpf_get_probe_write_proto: 4 callbacks suppressed [ 74.105574][ T6701] syz.3.1468[6701] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 74.113614][ T6701] syz.3.1468[6701] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 74.139698][ T6707] program syz.4.1471 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 74.141745][ T6706] program syz.2.1470 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 74.191644][ T6713] netlink: 188 bytes leftover after parsing attributes in process `syz.4.1474'. [ 74.327514][ T6741] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1488'. [ 74.358611][ T6746] loop2: detected capacity change from 0 to 128 [ 74.380491][ T6746] FAT-fs (loop2): error, corrupted directory (invalid i_start) [ 74.388949][ T6746] FAT-fs (loop2): Filesystem has been set read-only [ 74.562766][ T6774] loop4: detected capacity change from 0 to 512 [ 74.580324][ T6774] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 74.600850][ T6774] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.1504: iget: bad extended attribute block 1 [ 74.618217][ T6774] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.1504: couldn't read orphan inode 15 (err -117) [ 74.724595][ T6804] loop1: detected capacity change from 0 to 512 [ 74.735620][ T6804] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13 [ 74.749595][ T6806] netlink: 'syz.0.1519': attribute type 5 has an invalid length. [ 74.760019][ T6806] netlink: 'syz.0.1519': attribute type 11 has an invalid length. [ 74.767191][ T6804] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.1518: invalid indirect mapped block 2683928664 (level 1) [ 74.793677][ T6804] EXT4-fs (loop1): 1 truncate cleaned up [ 74.833019][ T6818] loop3: detected capacity change from 0 to 512 [ 74.847624][ T6818] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 74.863652][ T6826] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1528'. [ 74.887151][ T6818] ext4 filesystem being mounted at /308/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 74.945850][ T6818] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 75.100265][ T6880] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22 [ 75.111369][ T6880] netdevsim netdevsim2: Direct firmware load for . failed with error -22 [ 75.261428][ T6908] netlink: 'syz.2.1568': attribute type 21 has an invalid length. [ 75.304465][ T6912] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1569'. [ 75.598027][ T6958] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1591'. [ 75.638191][ T6962] netlink: 'syz.1.1593': attribute type 6 has an invalid length. [ 75.860516][ T6998] loop1: detected capacity change from 0 to 512 [ 75.878325][ T6998] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c09c, mo2=0002] [ 75.890103][ T6998] EXT4-fs (loop1): orphan cleanup on readonly fs [ 75.905514][ T6998] EXT4-fs warning (device loop1): ext4_enable_quotas:7066: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 75.934780][ T6998] EXT4-fs (loop1): Cannot turn on quotas: error -22 [ 75.943644][ T6998] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #13: comm syz.1.1610: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 75.975346][ T6998] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.1610: couldn't read orphan inode 13 (err -117) [ 76.005627][ T6998] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended [ 76.031845][ T6998] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c09c, mo2=0002] [ 76.069870][ T6998] EXT4-fs warning (device loop1): ext4_enable_quotas:7066: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 76.141643][ T7028] loop0: detected capacity change from 0 to 256 [ 76.158482][ T7032] loop4: detected capacity change from 0 to 164 [ 76.170207][ T7032] rock: directory entry would overflow storage [ 76.180292][ T7032] rock: sig=0x4f50, size=4, remaining=3 [ 76.186345][ T7028] FAT-fs (loop0): Directory bread(block 64) failed [ 76.188749][ T7032] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 76.222472][ T7028] FAT-fs (loop0): Directory bread(block 65) failed [ 76.231071][ T7039] syz.4.1629[7039] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 76.231196][ T7039] syz.4.1629[7039] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 76.231369][ T7028] FAT-fs (loop0): Directory bread(block 66) failed [ 76.269895][ T7028] FAT-fs (loop0): Directory bread(block 67) failed [ 76.282478][ T7028] FAT-fs (loop0): Directory bread(block 68) failed [ 76.294757][ T7028] FAT-fs (loop0): Directory bread(block 69) failed [ 76.307446][ T7028] FAT-fs (loop0): Directory bread(block 70) failed [ 76.315508][ T7028] FAT-fs (loop0): Directory bread(block 71) failed [ 76.325435][ T7028] FAT-fs (loop0): Directory bread(block 72) failed [ 76.342338][ T7028] FAT-fs (loop0): Directory bread(block 73) failed [ 76.362051][ T7046] tun0: tun_chr_ioctl cmd 1074025678 [ 76.370070][ T7046] tun0: group set to 0 [ 76.581234][ T3332] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.589663][ T3332] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.610760][ T3332] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz0] on syz1 [ 76.666470][ T7084] netlink: 'syz.4.1649': attribute type 58 has an invalid length. [ 76.676146][ T7084] bridge_slave_0: entered allmulticast mode [ 76.761024][ T7097] loop3: detected capacity change from 0 to 1024 [ 76.799680][ T7097] EXT4-fs mount: 66 callbacks suppressed [ 76.799704][ T7097] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 76.833462][ T7097] ext4 filesystem being mounted at /329/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 76.862508][ T3265] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.954054][ T7117] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6) [ 76.963424][ T7117] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 76.974730][ T7117] vhci_hcd vhci_hcd.0: Device attached [ 77.016251][ T7118] vhci_hcd: connection closed [ 77.016488][ T11] vhci_hcd: stop threads [ 77.029830][ T11] vhci_hcd: release socket [ 77.035015][ T11] vhci_hcd: disconnect device [ 77.070526][ T7124] syz.1.1668[7124] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 77.070621][ T7124] syz.1.1668[7124] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 77.494503][ T7050] coredump: 1(syz.1.1634): written to core: VMAs: 29, size 89030656; core: 60134062 bytes, pos 89038848 [ 77.614939][ T29] kauditd_printk_skb: 303 callbacks suppressed [ 77.614953][ T29] audit: type=1400 audit(1860965007.165:1939): avc: denied { setattr } for pid=7141 comm="syz.4.1676" name="KEY" dev="sockfs" ino=15470 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 77.677832][ T7146] netlink: 'syz.4.1679': attribute type 10 has an invalid length. [ 77.712965][ T7146] team0: Port device netdevsim1 added [ 77.726398][ T7146] netlink: 'syz.4.1679': attribute type 10 has an invalid length. [ 77.753616][ T7146] team0: Port device netdevsim1 removed [ 77.777359][ T7146] bond0: (slave netdevsim1): Enslaving as an active interface with an up link [ 77.826481][ T29] audit: type=1326 audit(1860965007.375:1940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7155 comm="syz.4.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be2c2def9 code=0x7ffc0000 [ 77.887534][ T29] audit: type=1326 audit(1860965007.415:1941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7155 comm="syz.4.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f3be2c2def9 code=0x7ffc0000 [ 77.918395][ T29] audit: type=1326 audit(1860965007.415:1942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7155 comm="syz.4.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be2c2def9 code=0x7ffc0000 [ 77.948215][ T29] audit: type=1326 audit(1860965007.415:1943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7155 comm="syz.4.1683" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be2c2def9 code=0x7ffc0000 [ 78.056860][ T29] audit: type=1400 audit(1860965007.605:1944): avc: denied { write } for pid=7171 comm="syz.2.1691" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1 [ 78.363667][ T29] audit: type=1400 audit(1860965007.915:1945): avc: denied { validate_trans } for pid=7205 comm="syz.3.1706" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 78.424500][ T7209] vxcan1: tx address claim with dlc 1 [ 78.434187][ T29] audit: type=1326 audit(1860965007.955:1946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7204 comm="syz.2.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb23906def9 code=0x7ffc0000 [ 78.464757][ T29] audit: type=1326 audit(1860965007.955:1947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7204 comm="syz.2.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb23906def9 code=0x7ffc0000 [ 78.501227][ T29] audit: type=1326 audit(1860965007.955:1948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7204 comm="syz.2.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=234 compat=0 ip=0x7fb23906def9 code=0x7ffc0000 [ 78.539182][ T7211] netlink: 'syz.0.1708': attribute type 2 has an invalid length. [ 78.687711][ T7230] loop0: detected capacity change from 0 to 2048 [ 78.690125][ T7234] loop4: detected capacity change from 0 to 512 [ 78.714249][ T7232] __nla_validate_parse: 6 callbacks suppressed [ 78.714266][ T7232] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1719'. [ 78.757785][ T7234] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 78.765492][ T7230] GPT:first_usable_lbas don't match. [ 78.786883][ T7230] GPT:34 != 290 [ 78.792844][ T7230] GPT: Use GNU Parted to correct GPT errors. [ 78.794984][ T7234] ext4 filesystem being mounted at /303/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 78.800718][ T7230] loop0: p1 p2 p3 [ 78.849824][ T7168] +}[@ (7168) used greatest stack depth: 7480 bytes left [ 78.889608][ T3263] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.931264][ T7249] SELinux: policydb version -1634696897 does not match my version range 15-33 [ 78.964421][ T7249] SELinux: failed to load policy [ 78.976600][ T7263] syz.1.1731[7263] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 78.976750][ T7263] syz.1.1731[7263] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 79.036774][ T7271] loop4: detected capacity change from 0 to 128 [ 79.050389][ T7273] loop0: detected capacity change from 0 to 128 [ 79.070345][ T7276] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1737'. [ 79.082604][ T7271] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 79.093697][ T7273] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 79.107020][ T7271] ext4 filesystem being mounted at /305/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 79.176958][ T7285] loop0: detected capacity change from 0 to 512 [ 79.224208][ T7285] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1742: corrupted in-inode xattr: invalid ea_ino [ 79.252781][ T3263] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 79.275570][ T7285] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.1742: couldn't read orphan inode 15 (err -117) [ 79.320628][ T7285] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 79.403237][ T3266] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 79.593499][ T7326] syz.0.1759[7326] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 79.593584][ T7326] syz.0.1759[7326] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 79.730405][ T7347] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1768'. [ 79.752663][ T7350] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1771'. [ 79.820170][ T7356] loop0: detected capacity change from 0 to 512 [ 79.842491][ T7356] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 79.868886][ T7356] ext4 filesystem being mounted at /365/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 79.932174][ T3266] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 79.955267][ T7377] syz.3.1784[7377] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 79.955490][ T7377] syz.3.1784[7377] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 80.131829][ T7416] loop1: detected capacity change from 0 to 2048 [ 80.182032][ T7416] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 80.211863][ T7416] tmpfs: Unknown parameter 'rootcontext6M-i{)RJKzi!PB(RJ$BLxA*9y Qr ^SEA#HLVݸ#&3yo~oPZ}1菈ZD$[|/}sKcY냤.m덈و>"$˲' [ 80.242569][ T7433] loop0: detected capacity change from 0 to 512 [ 80.277212][ T7442] syz.2.1813[7442] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 80.277338][ T7442] syz.2.1813[7442] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 80.303796][ T3264] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.345136][ T7433] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 80.363917][ T7433] ext4 filesystem being mounted at /373/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 80.399415][ T7454] netlink: 268 bytes leftover after parsing attributes in process `syz.4.1819'. [ 80.430601][ T3266] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.473188][ T7463] SELinux: failed to load policy [ 80.539961][ T7480] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 80.571057][ T7486] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1833'. [ 80.584762][ T7486] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1833'. [ 80.655769][ T7494] loop0: detected capacity change from 0 to 1024 [ 80.657934][ T7496] loop1: detected capacity change from 0 to 512 [ 80.683547][ T7494] EXT4-fs: Ignoring removed bh option [ 80.690634][ T7494] EXT4-fs: Ignoring removed oldalloc option [ 80.693218][ T7498] loop2: detected capacity change from 0 to 512 [ 80.707106][ T7494] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 80.721745][ T7496] EXT4-fs warning (device loop1): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 80.722023][ T7498] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.1837: invalid block [ 80.757346][ T7498] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.1837: invalid indirect mapped block 4294967295 (level 1) [ 80.774961][ T7498] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.1837: invalid indirect mapped block 4294967295 (level 1) [ 80.777505][ T7494] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 80.791677][ T7498] EXT4-fs (loop2): 2 truncates cleaned up [ 80.792066][ T7498] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 80.839567][ T7496] EXT4-fs (loop1): mount failed [ 80.853508][ T3266] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.876679][ T3261] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.903331][ T7512] loop1: detected capacity change from 0 to 512 [ 80.917248][ T7512] EXT4-fs: Ignoring removed orlov option [ 80.932200][ T7512] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 80.957336][ T7512] EXT4-fs (loop1): 1 orphan inode deleted [ 80.963791][ T7512] EXT4-fs (loop1): 1 truncate cleaned up [ 80.972594][ T7512] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 81.027287][ T3264] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.092800][ T7547] loop0: detected capacity change from 0 to 256 [ 81.105737][ T7547] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 81.316196][ T7597] loop3: detected capacity change from 0 to 512 [ 81.336412][ T7602] loop4: detected capacity change from 0 to 512 [ 81.337817][ T7597] EXT4-fs error (device loop3): ext4_xattr_inode_iget:436: comm syz.3.1883: Parent and EA inode have the same ino 15 [ 81.361040][ T7597] EXT4-fs (loop3): Remounting filesystem read-only [ 81.362436][ T7602] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 81.368124][ T7597] EXT4-fs warning (device loop3): ext4_evict_inode:254: couldn't mark inode dirty (err -5) [ 81.389172][ T7602] ext4 filesystem being mounted at /335/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 81.411875][ T7597] EXT4-fs (loop3): 1 orphan inode deleted [ 81.422391][ T7597] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 81.437439][ T7597] SELinux: (dev loop3, type ext4) getxattr errno 5 [ 81.452052][ T7597] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.609389][ T3263] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.718851][ T7639] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1903'. [ 81.732014][ T7639] netlink: 7 bytes leftover after parsing attributes in process `syz.2.1903'. [ 81.784426][ T7649] SELinux: policydb version 1446001614 does not match my version range 15-33 [ 81.798425][ T7649] SELinux: failed to load policy [ 81.894020][ T7669] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1917'. [ 81.922248][ T7667] netlink: 'syz.2.1916': attribute type 46 has an invalid length. [ 81.962549][ T7678] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2305 sclass=netlink_route_socket pid=7678 comm=syz.1.1922 [ 82.109954][ T7702] netlink: 'syz.3.1933': attribute type 2 has an invalid length. [ 82.265075][ T7726] coredump: 873(syz.2.1944): written to core: VMAs: 3, size 4096; core: 2771 bytes, pos 8192 [ 82.355605][ T7739] syz.4.1950[7739] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 82.355698][ T7739] syz.4.1950[7739] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 82.574430][ T7771] loop3: detected capacity change from 0 to 512 [ 82.610674][ T7771] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 82.631296][ T7771] ext4 filesystem being mounted at /408/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 82.663562][ T7779] loop2: detected capacity change from 0 to 512 [ 82.676125][ T7779] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 82.682886][ T7771] EXT4-fs error (device loop3): ext4_empty_dir:3088: inode #12: comm syz.3.1965: Directory hole found for htree leaf block 0 [ 82.689627][ T7779] EXT4-fs (loop2): invalid journal inode [ 82.709558][ T7779] EXT4-fs (loop2): can't get journal size [ 82.716674][ T7779] EXT4-fs (loop2): 1 truncate cleaned up [ 82.725374][ T7779] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 82.760041][ T3265] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.764111][ T7790] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 82.777727][ T29] kauditd_printk_skb: 195 callbacks suppressed [ 82.777751][ T29] audit: type=1400 audit(1860965012.315:2143): avc: denied { ioctl } for pid=7789 comm="syz.0.1973" path="/dev/raw-gadget" dev="devtmpfs" ino=118 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 82.827708][ T7790] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 82.878523][ T3261] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.894934][ T29] audit: type=1326 audit(1860965012.445:2144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7795 comm="syz.4.1976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be2c2def9 code=0x7ffc0000 [ 82.928528][ T29] audit: type=1326 audit(1860965012.445:2145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7795 comm="syz.4.1976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be2c2def9 code=0x7ffc0000 [ 82.962445][ T29] audit: type=1326 audit(1860965012.445:2146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7795 comm="syz.4.1976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7f3be2c2def9 code=0x7ffc0000 [ 82.988209][ T29] audit: type=1326 audit(1860965012.445:2147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7795 comm="syz.4.1976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be2c2def9 code=0x7ffc0000 [ 83.022850][ T29] audit: type=1326 audit(1860965012.495:2148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7795 comm="syz.4.1976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be2c2def9 code=0x7ffc0000 [ 83.102842][ T29] audit: type=1400 audit(1860965012.655:2149): avc: denied { create } for pid=7813 comm="syz.2.1984" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 83.133238][ T29] audit: type=1400 audit(1860965012.685:2150): avc: denied { write } for pid=7813 comm="syz.2.1984" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 83.198335][ T29] audit: type=1326 audit(1860965012.745:2151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7827 comm="syz.4.1990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be2c2def9 code=0x7ffc0000 [ 83.210632][ T7829] loop3: detected capacity change from 0 to 512 [ 83.241610][ T29] audit: type=1326 audit(1860965012.745:2152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7827 comm="syz.4.1990" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3be2c2def9 code=0x7ffc0000 [ 83.291349][ T7834] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 83.315749][ T7837] loop2: detected capacity change from 0 to 256 [ 83.332627][ T7837] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 83.346857][ T7829] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 83.350931][ T7837] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 83.373295][ T7829] ext4 filesystem being mounted at /415/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 83.467163][ T3265] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.524839][ T7865] loop4: detected capacity change from 0 to 512 [ 83.539991][ T7865] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 83.568919][ T7871] 9pnet: Could not find request transport: f [ 83.580523][ T7865] EXT4-fs (loop4): 1 orphan inode deleted [ 83.587798][ T7865] EXT4-fs (loop4): 1 truncate cleaned up [ 83.590241][ T7843] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 83.594654][ T7865] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 83.623746][ T7843] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 83.657091][ T3263] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.822512][ T7919] loop3: detected capacity change from 0 to 512 [ 83.830937][ T7919] EXT4-fs: Ignoring removed mblk_io_submit option [ 83.835240][ T7923] syz.4.2036[7923] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 83.846842][ T7919] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.2033: corrupted in-inode xattr: invalid ea_ino [ 83.864577][ T7923] syz.4.2036[7923] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 83.884838][ T7919] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.2033: couldn't read orphan inode 15 (err -117) [ 83.917429][ T7919] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 83.990006][ T7936] loop4: detected capacity change from 0 to 256 [ 83.991247][ T7937] loop2: detected capacity change from 0 to 128 [ 84.009283][ T7937] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 84.025902][ T7937] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 84.029497][ T3265] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 84.060632][ T120] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 84.104782][ T7951] IPv6: NLM_F_CREATE should be specified when creating new route [ 84.199631][ T7966] loop2: detected capacity change from 0 to 2048 [ 84.209427][ T7968] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6) [ 84.218343][ T7968] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 84.218448][ T7971] loop1: detected capacity change from 0 to 512 [ 84.228178][ T7968] vhci_hcd vhci_hcd.0: Device attached [ 84.230217][ T7972] vhci_hcd: connection closed [ 84.245270][ T7971] EXT4-fs: Ignoring removed i_version option [ 84.248934][ T28] vhci_hcd: stop threads [ 84.268758][ T28] vhci_hcd: release socket [ 84.273389][ T28] vhci_hcd: disconnect device [ 84.281611][ T7975] SELinux: failed to load policy [ 84.282744][ T7971] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a016c018, mo2=0002] [ 84.299496][ T7966] loop2: p1 < > p4 [ 84.305679][ T7966] loop2: p4 size 8388608 extends beyond EOD, truncated [ 84.315748][ T7971] System zones: 1-12 [ 84.321253][ T7971] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2059: bg 0: block 131: padding at end of block bitmap is not set [ 84.339353][ T7971] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 84.355959][ T7971] EXT4-fs (loop1): 1 truncate cleaned up [ 84.356546][ T7979] vhci_hcd: invalid port number 0 [ 84.364545][ T7971] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 84.405233][ T3264] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 84.425856][ T7980] loop4: detected capacity change from 0 to 2048 [ 84.447409][ T7980] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 84.460938][ T7989] program syz.1.2064 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 84.500503][ T3263] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 84.660665][ T8016] loop2: detected capacity change from 0 to 512 [ 84.704219][ T8016] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 84.735611][ T8016] ext4 filesystem being mounted at /447/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 84.802048][ T3261] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 84.875546][ T8043] bpf_get_probe_write_proto: 4 callbacks suppressed [ 84.875567][ T8043] syz.1.2081[8043] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 84.898227][ T8043] syz.1.2081[8043] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 84.929157][ T8050] syz.2.2091[8050] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 84.947716][ T8050] syz.2.2091[8050] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 85.001783][ T8061] loop4: detected capacity change from 0 to 164 [ 85.062180][ T8069] loop2: detected capacity change from 0 to 256 [ 85.073349][ T8069] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 85.089452][ T8069] FAT-fs (loop2): Filesystem has been set read-only [ 85.098952][ T8069] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 85.105500][ T8073] __nla_validate_parse: 8 callbacks suppressed [ 85.105520][ T8073] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2103'. [ 85.156008][ T8069] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 85.302140][ T8105] loop1: detected capacity change from 0 to 2048 [ 85.339970][ T8105] Alternate GPT is invalid, using primary GPT. [ 85.347888][ T8105] loop1: p1 p2 p3 [ 85.356689][ T8122] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 512 [ 85.411383][ T8126] SELinux: Context system_u:object_r:initctl_t:s0 is not valid (left unmapped). [ 85.424424][ T8133] loop1: detected capacity change from 0 to 1024 [ 85.456200][ T8133] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=f05cc01c, mo2=0002] [ 85.490135][ T8133] System zones: 0-1, 3-36 [ 85.514520][ T8133] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 85.568557][ T3264] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.611611][ T8163] loop1: detected capacity change from 0 to 512 [ 85.640993][ T8163] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.2144: Failed to acquire dquot type 1 [ 85.651741][ T8173] SELinux: Context is not valid (left unmapped). [ 85.681870][ T8163] EXT4-fs (loop1): 1 truncate cleaned up [ 85.692913][ T8163] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 85.717748][ T8163] ext4 filesystem being mounted at /407/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 85.727399][ T8176] loop3: detected capacity change from 0 to 512 [ 85.746833][ T3264] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.797363][ T8180] Failed to initialize the IGMP autojoin socket (err -2) [ 85.993300][ T8210] loop3: detected capacity change from 0 to 512 [ 86.035329][ T8210] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 86.054032][ T8210] ext4 filesystem being mounted at /453/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 86.086875][ T3265] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 86.137587][ T8240] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.149980][ T8240] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.162317][ T8240] bridge0: port 2(bridge_slave_1) entered forwarding state [ 86.256299][ T8260] syz.1.2188[8260] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 86.256424][ T8260] syz.1.2188[8260] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 86.311204][ C1] hrtimer: interrupt took 35343 ns [ 86.320786][ T8271] syz.4.2194[8271] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 86.340872][ T8271] syz.4.2194[8271] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 86.397313][ T8280] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2198'. [ 86.629705][ T8292] Zero length message leads to an empty skb [ 86.659911][ T8294] random: crng reseeded on system resumption [ 87.002755][ T8326] loop4: detected capacity change from 0 to 512 [ 87.021728][ T8326] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 87.037136][ T8326] ext4 filesystem being mounted at /416/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 87.075046][ T3263] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 87.204987][ T8357] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2233'. [ 87.236908][ T8358] loop0: detected capacity change from 0 to 512 [ 87.245816][ T8358] EXT4-fs: Ignoring removed i_version option [ 87.252994][ T8358] EXT4-fs: Ignoring removed nobh option [ 87.260485][ T8358] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 87.277021][ T8358] EXT4-fs (loop0): 1 truncate cleaned up [ 87.289595][ T8358] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 87.310985][ T8358] EXT4-fs warning (device loop0): ext4_group_add:1735: No reserved GDT blocks, can't resize [ 87.382054][ T3266] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 87.646569][ T8395] program syz.0.2247 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 87.672528][ T8398] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2249'. [ 87.765131][ T8413] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2259'. [ 87.794451][ T29] kauditd_printk_skb: 143 callbacks suppressed [ 87.794535][ T29] audit: type=1326 audit(1860965017.345:2294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8416 comm="syz.1.2261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fecfdef9 code=0x7ffc0000 [ 87.841087][ T29] audit: type=1326 audit(1860965017.355:2295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8416 comm="syz.1.2261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fecfdef9 code=0x7ffc0000 [ 87.874821][ T29] audit: type=1326 audit(1860965017.355:2296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8416 comm="syz.1.2261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f77fecfdef9 code=0x7ffc0000 [ 87.906326][ T29] audit: type=1326 audit(1860965017.355:2297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8416 comm="syz.1.2261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fecfdef9 code=0x7ffc0000 [ 87.940799][ T29] audit: type=1326 audit(1860965017.355:2298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8416 comm="syz.1.2261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fecfdef9 code=0x7ffc0000 [ 87.971217][ T29] audit: type=1326 audit(1860965017.355:2299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8416 comm="syz.1.2261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f77fecfdef9 code=0x7ffc0000 [ 88.011361][ T29] audit: type=1326 audit(1860965017.355:2300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8416 comm="syz.1.2261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fecfdef9 code=0x7ffc0000 [ 88.044523][ T29] audit: type=1326 audit(1860965017.355:2301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8416 comm="syz.1.2261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=265 compat=0 ip=0x7f77fecfdef9 code=0x7ffc0000 [ 88.082330][ T29] audit: type=1326 audit(1860965017.355:2302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8416 comm="syz.1.2261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fecfdef9 code=0x7ffc0000 [ 88.116868][ T29] audit: type=1326 audit(1860965017.355:2303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8416 comm="syz.1.2261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fecfdef9 code=0x7ffc0000 [ 88.349189][ T8435] loop0: detected capacity change from 0 to 2048 [ 88.380674][ T8435] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 88.411509][ T3266] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 88.437322][ T8444] loop3: detected capacity change from 0 to 164 [ 89.194571][ T8510] syz.4.2304[8510] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 89.194808][ T8510] syz.4.2304[8510] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 89.295554][ T8522] loop4: detected capacity change from 0 to 2048 [ 89.323998][ T8530] netlink: 'syz.1.2313': attribute type 10 has an invalid length. [ 89.336611][ T8530] hsr0: entered promiscuous mode [ 89.343160][ T8522] EXT4-fs: Ignoring removed mblk_io_submit option [ 89.345771][ T8530] bond0: (slave hsr0): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 89.368074][ T8530] bond0: (slave hsr0): The slave device specified does not support setting the MAC address [ 89.383206][ T8530] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets). [ 89.405362][ T8530] bond0: (slave hsr0): Error -22 calling dev_set_mtu [ 89.439589][ T8522] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 89.487012][ T8522] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2310: bg 0: block 234: padding at end of block bitmap is not set [ 89.509524][ T8522] EXT4-fs (loop4): Remounting filesystem read-only [ 89.532375][ T3263] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 89.793170][ T8569] netlink: 'syz.2.2331': attribute type 10 has an invalid length. [ 89.969077][ T8607] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 90.015950][ T8611] loop4: detected capacity change from 0 to 128 [ 90.026279][ T8611] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 90.049388][ T8611] ext4 filesystem being mounted at /450/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 90.104487][ T3263] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 90.407996][ T8642] Failed to initialize the IGMP autojoin socket (err -2) [ 90.586201][ T8661] loop3: detected capacity change from 0 to 128 [ 90.678893][ T8669] loop3: detected capacity change from 0 to 1024 [ 90.688123][ T8669] EXT4-fs: Ignoring removed bh option [ 90.697085][ T8669] EXT4-fs: Ignoring removed mblk_io_submit option [ 90.729812][ T8669] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 90.763270][ T3265] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 91.084717][ T8707] netlink: 'syz.1.2394': attribute type 15 has an invalid length. [ 91.115945][ T8713] loop3: detected capacity change from 0 to 764 [ 91.279395][ T8731] loop2: detected capacity change from 0 to 4096 [ 91.300081][ T8733] loop3: detected capacity change from 0 to 512 [ 91.316280][ T8731] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 91.336622][ T8733] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 91.358675][ T8733] ext4 filesystem being mounted at /500/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 91.361423][ T3261] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 91.408020][ T3265] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 91.577972][ T8764] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2416'. [ 91.639137][ T8771] loop3: detected capacity change from 0 to 2048 [ 91.665500][ T8771] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 91.695769][ T8782] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2425'. [ 91.715771][ T3265] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 91.780033][ T8790] veth1_macvtap: left promiscuous mode [ 91.789707][ T8790] macsec0: entered allmulticast mode [ 91.824152][ T8790] A link change request failed with some changes committed already. Interface macsec0 may have been left with an inconsistent configuration, please check. [ 91.930439][ T8808] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2438'. [ 91.946876][ T8811] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2439'. [ 91.950309][ T8812] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2450'. [ 91.996236][ T8815] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 92.166465][ T8840] loop4: detected capacity change from 0 to 1024 [ 92.179250][ T8840] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 92.227058][ T8840] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #11: comm syz.4.2453: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 92.256499][ T8840] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.2453: couldn't read orphan inode 11 (err -117) [ 92.286123][ T8840] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.2453: Invalid block bitmap block 0 in block_group 0 [ 92.305696][ T8840] EXT4-fs error (device loop4): ext4_acquire_dquot:6848: comm syz.4.2453: Failed to acquire dquot type 0 [ 92.385619][ T8855] loop3: detected capacity change from 0 to 1024 [ 92.398529][ T8855] EXT4-fs: Ignoring removed bh option [ 92.426841][ T8855] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 92.446558][ T8855] EXT4-fs warning (device loop3): ext4_enable_quotas:7066: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix. [ 92.471347][ T8855] EXT4-fs (loop3): mount failed [ 92.481873][ T8864] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2465'. [ 92.494981][ T8864] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2465'. [ 92.834570][ T29] kauditd_printk_skb: 186 callbacks suppressed [ 92.834585][ T29] audit: type=1400 audit(1860965022.385:2487): avc: denied { bind } for pid=8888 comm="syz.3.2475" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 92.847372][ T8884] loop2: detected capacity change from 0 to 2048 [ 92.865185][ T29] audit: type=1400 audit(1860965022.385:2488): avc: denied { name_bind } for pid=8888 comm="syz.3.2475" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1 [ 92.865222][ T29] audit: type=1400 audit(1860965022.385:2489): avc: denied { node_bind } for pid=8888 comm="syz.3.2475" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1 [ 92.867602][ T8891] loop4: detected capacity change from 0 to 164 [ 92.969545][ T29] audit: type=1400 audit(1860965022.495:2490): avc: denied { create } for pid=8892 comm="syz.0.2478" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 93.016288][ T8897] sctp: [Deprecated]: syz.3.2475 (pid 8897) Use of struct sctp_assoc_value in delayed_ack socket option. [ 93.016288][ T8897] Use struct sctp_sack_info instead [ 93.124792][ T8905] loop4: detected capacity change from 0 to 512 [ 93.151954][ T8905] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.2482: casefold flag without casefold feature [ 93.161776][ T8910] syz.0.2484[8910] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 93.177361][ T8905] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.2482: couldn't read orphan inode 15 (err -117) [ 93.180664][ T8910] syz.0.2484[8910] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 93.220391][ T29] audit: type=1400 audit(1860965022.755:2491): avc: denied { read write } for pid=8904 comm="syz.4.2482" path="/468/file0/file2" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 93.273564][ T8914] program syz.1.2486 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 93.275940][ T8916] netlink: 188 bytes leftover after parsing attributes in process `syz.3.2488'. [ 93.327523][ T29] audit: type=1326 audit(1860965022.875:2492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8912 comm="syz.2.2487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb23906def9 code=0x7ffc0000 [ 93.365259][ T29] audit: type=1400 audit(1860965022.915:2493): avc: denied { setopt } for pid=8919 comm="syz.3.2500" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 93.391125][ T29] audit: type=1326 audit(1860965022.915:2494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8912 comm="syz.2.2487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb23906def9 code=0x7ffc0000 [ 93.423740][ T29] audit: type=1400 audit(1860965022.915:2495): avc: denied { create } for pid=8919 comm="syz.3.2500" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1 [ 93.453847][ T29] audit: type=1326 audit(1860965022.985:2496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8912 comm="syz.2.2487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=6 compat=0 ip=0x7fb23906def9 code=0x7ffc0000 [ 93.602954][ T8948] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2502'. [ 93.640208][ T8953] loop1: detected capacity change from 0 to 128 [ 93.685509][ T8953] FAT-fs (loop1): error, corrupted directory (invalid i_start) [ 93.695963][ T8953] FAT-fs (loop1): Filesystem has been set read-only [ 93.811500][ T8983] loop3: detected capacity change from 0 to 2048 [ 93.833981][ T8987] loop1: detected capacity change from 0 to 512 [ 93.850846][ T8987] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 93.881825][ T8987] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.2522: iget: bad extended attribute block 1 [ 93.901951][ T8987] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.2522: couldn't read orphan inode 15 (err -117) [ 93.927343][ T8966] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 93.945935][ T9005] loop4: detected capacity change from 0 to 512 [ 93.959823][ T9005] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -13 [ 93.972651][ T8966] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 94.009705][ T9005] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.2538: invalid indirect mapped block 2683928664 (level 1) [ 94.053545][ T9005] EXT4-fs (loop4): 1 truncate cleaned up [ 94.093225][ T9019] netlink: 'syz.3.2535': attribute type 5 has an invalid length. [ 94.105182][ T9019] netlink: 'syz.3.2535': attribute type 11 has an invalid length. [ 94.230141][ T9040] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2546'. [ 94.261720][ T9041] loop1: detected capacity change from 0 to 2048 [ 94.313936][ T9056] loop2: detected capacity change from 0 to 512 [ 94.323592][ T9056] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 94.343005][ T9056] ext4 filesystem being mounted at /521/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 94.369872][ T9056] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 94.376263][ T9066] loop1: detected capacity change from 0 to 164 [ 94.492696][ T9085] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22 [ 94.503269][ T9085] netdevsim netdevsim3: Direct firmware load for . failed with error -22 [ 94.580661][ T9090] loop1: detected capacity change from 0 to 2048 [ 94.710643][ T9119] netlink: 'syz.1.2582': attribute type 21 has an invalid length. [ 95.077967][ T9190] loop0: detected capacity change from 0 to 256 [ 95.189019][ T9204] netlink: 'syz.2.2623': attribute type 6 has an invalid length. [ 95.343871][ T9199] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 95.357372][ T9199] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 95.579463][ T9257] loop2: detected capacity change from 0 to 512 [ 95.590854][ T9257] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c09c, mo2=0002] [ 95.602936][ T9258] loop1: detected capacity change from 0 to 256 [ 95.603139][ T9257] EXT4-fs (loop2): orphan cleanup on readonly fs [ 95.628280][ T9257] EXT4-fs warning (device loop2): ext4_enable_quotas:7066: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 95.651140][ T9257] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 95.661033][ T9257] EXT4-fs error (device loop2): ext4_ext_check_inode:520: inode #13: comm syz.2.2647: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 95.690199][ T9257] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.2647: couldn't read orphan inode 13 (err -117) [ 95.699638][ T9263] loop0: detected capacity change from 0 to 164 [ 95.723385][ T9263] rock: directory entry would overflow storage [ 95.734100][ T9258] FAT-fs (loop1): Directory bread(block 64) failed [ 95.738175][ T9263] rock: sig=0x4f50, size=4, remaining=3 [ 95.748443][ T9258] FAT-fs (loop1): Directory bread(block 65) failed [ 95.754497][ T9263] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 95.764350][ T9258] FAT-fs (loop1): Directory bread(block 66) failed [ 95.764382][ T9258] FAT-fs (loop1): Directory bread(block 67) failed [ 95.764484][ T9258] FAT-fs (loop1): Directory bread(block 68) failed [ 95.764514][ T9258] FAT-fs (loop1): Directory bread(block 69) failed [ 95.764542][ T9258] FAT-fs (loop1): Directory bread(block 70) failed [ 95.764565][ T9258] FAT-fs (loop1): Directory bread(block 71) failed [ 95.764594][ T9258] FAT-fs (loop1): Directory bread(block 72) failed [ 95.764613][ T9258] FAT-fs (loop1): Directory bread(block 73) failed [ 95.848897][ T9257] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended [ 95.868651][ T9257] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c09c, mo2=0002] [ 95.874778][ T9270] syz.3.2653[9270] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 95.879743][ T9270] syz.3.2653[9270] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 95.916973][ T9257] EXT4-fs warning (device loop2): ext4_enable_quotas:7066: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 96.022286][ T9284] tun0: tun_chr_ioctl cmd 1074025678 [ 96.029811][ T9284] tun0: group set to 0 [ 96.136921][ T3340] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 96.145507][ T3340] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 96.164044][ T3340] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz0] on syz1 [ 96.230092][ T9311] netlink: 'syz.3.2671': attribute type 58 has an invalid length. [ 96.328903][ T9324] loop2: detected capacity change from 0 to 1024 [ 96.352519][ T9324] ext4 filesystem being mounted at /550/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 96.474724][ T9341] syz.3.2687[9341] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 96.474788][ T9341] syz.3.2687[9341] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 96.560540][ T9347] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6) [ 96.582776][ T9347] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 96.592766][ T9347] vhci_hcd vhci_hcd.0: Device attached [ 96.635127][ T9348] vhci_hcd: connection closed [ 96.637688][ T28] vhci_hcd: stop threads [ 96.650539][ T28] vhci_hcd: release socket [ 96.655939][ T28] vhci_hcd: disconnect device [ 96.986819][ T9368] netlink: 'syz.3.2696': attribute type 10 has an invalid length. [ 97.031460][ T9368] team0: Port device netdevsim1 added [ 97.060894][ T9369] netlink: 'syz.3.2696': attribute type 10 has an invalid length. [ 97.128926][ T9369] team0: Port device netdevsim1 removed [ 97.148630][ T9280] coredump: 1(syz.4.2656): written to core: VMAs: 29, size 91127808; core: 62235310 bytes, pos 91136000 [ 97.168969][ T9369] bond0: (slave netdevsim1): Enslaving as an active interface with an up link [ 97.318447][ C0] ================================================================== [ 97.327642][ C0] BUG: KCSAN: data-race in do_sys_poll / pollwake [ 97.336597][ C0] [ 97.339220][ C0] read to 0xffffc9000cd43bd0 of 4 bytes by task 9375 on cpu 1: [ 97.348824][ C0] do_sys_poll+0x986/0xc10 [ 97.356708][ C0] __se_sys_ppoll+0x1af/0x1f0 [ 97.362400][ C0] __x64_sys_ppoll+0x67/0x80 [ 97.369102][ C0] x64_sys_call+0xe71/0x2d60 [ 97.379101][ C0] do_syscall_64+0xc9/0x1c0 [ 97.385304][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 97.395030][ C0] [ 97.397570][ C0] write to 0xffffc9000cd43bd0 of 4 bytes by interrupt on cpu 0: [ 97.406281][ C0] pollwake+0xbe/0x110 [ 97.413491][ C0] __wake_up+0x65/0xb0 [ 97.419342][ C0] bpf_ringbuf_notify+0x22/0x30 [ 97.427255][ C0] irq_work_run+0xdf/0x2c0 [ 97.434501][ C0] __sysvec_irq_work+0x23/0x1a0 [ 97.441893][ C0] sysvec_irq_work+0x2f/0x80 [ 97.450915][ C0] asm_sysvec_irq_work+0x1a/0x20 [ 97.458092][ C0] default_send_IPI_self+0x38/0x80 [ 97.464517][ C0] arch_irq_work_raise+0x48/0x50 [ 97.472185][ C0] __irq_work_queue_local+0x82/0x1d0 [ 97.480376][ C0] irq_work_queue+0x85/0x120 [ 97.486252][ C0] bpf_ringbuf_discard+0xcd/0xf0 [ 97.493056][ C0] bpf_prog_fe0ed97373b08409+0x46/0x4a [ 97.500537][ C0] bpf_trace_run3+0x10c/0x1d0 [ 97.506683][ C0] kmem_cache_free+0x238/0x2d0 [ 97.511998][ C0] radix_tree_node_rcu_free+0x56/0x60 [ 97.518720][ C0] rcu_core+0x57b/0xbc0 [ 97.523427][ C0] rcu_core_si+0xd/0x20 [ 97.528964][ C0] handle_softirqs+0xbf/0x280 [ 97.535059][ C0] irq_exit_rcu+0x3e/0x90 [ 97.543459][ C0] sysvec_apic_timer_interrupt+0x73/0x80 [ 97.550041][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 97.557055][ C0] _raw_spin_unlock_irq+0x2f/0x50 [ 97.564295][ C0] filemap_remove_folio+0x73/0x1f0 [ 97.569833][ C0] truncate_inode_folio+0x42/0x50 [ 97.575875][ C0] shmem_undo_range+0x25e/0xa50 [ 97.583300][ C0] shmem_evict_inode+0x14d/0x530 [ 97.591915][ C0] evict+0x2f0/0x580 [ 97.596641][ C0] iput+0x42a/0x5b0 [ 97.601946][ C0] dentry_unlink_inode+0x24f/0x260 [ 97.608396][ C0] __dentry_kill+0x18b/0x4c0 [ 97.614662][ C0] dput+0x5c/0xd0 [ 97.619498][ C0] __fput+0x3fb/0x6d0 [ 97.623723][ C0] ____fput+0x1c/0x30 [ 97.629480][ C0] task_work_run+0x13a/0x1a0 [ 97.634207][ C0] do_exit+0x5dd/0x1720 [ 97.640083][ C0] do_group_exit+0x102/0x150 [ 97.645081][ C0] get_signal+0xfc8/0x1100 [ 97.650270][ C0] arch_do_signal_or_restart+0x95/0x4b0 [ 97.657645][ C0] irqentry_exit_to_user_mode+0x9a/0x130 [ 97.664353][ C0] irqentry_exit+0x12/0x50 [ 97.668894][ C0] asm_exc_page_fault+0x26/0x30 [ 97.674306][ C0] [ 97.678471][ C0] value changed: 0x00000001 -> 0x00000000 [ 97.686305][ C0] [ 97.689344][ C0] Reported by Kernel Concurrency Sanitizer on: [ 97.696517][ C0] CPU: 0 UID: 0 PID: 9280 Comm: syz.4.2656 Not tainted 6.11.0-syzkaller-07262-g839c4f596f89 #0 [ 97.710916][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 97.725054][ C0] ================================================================== [ 97.739234][ T9390] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 97.755524][ T9390] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 102.228613][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog