last executing test programs: 4m9.046750022s ago: executing program 32 (id=147): pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$nl_route(0x10, 0x3, 0x0) write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc) splice(r0, 0x0, r2, 0x0, 0x4, 0x4) 3m39.151092863s ago: executing program 33 (id=824): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000003200)='./file1\x00', 0x2204206, &(0x7f0000003240)=ANY=[], 0x1, 0x334, &(0x7f0000000880)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='io.stat\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b) fadvise64(r0, 0x1, 0x80000001, 0x4) 3m16.488527053s ago: executing program 34 (id=967): r0 = socket$inet6(0xa, 0x80001, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0xffff, 0x0, @mcast1}}}, 0x88) setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000080)=ANY=[@ANYBLOB="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"], 0x310) setsockopt$inet6_group_source_req(r0, 0x29, 0x2b, &(0x7f00000005c0)={0x1, {{0xa, 0x0, 0xfffffffc, @mcast1, 0x3}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108) 3m4.338263656s ago: executing program 35 (id=1277): syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000001c0)={[{@noload}, {@stripe={'stripe', 0x3d, 0xdc}}, {@data_err_abort}, {@noload}, {@data_err_ignore}, {@auto_da_alloc}]}, 0xff, 0x451, &(0x7f0000000940)="$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") fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, 0x0, 0xffffffffffffff9c, 0x0, 0x274) 2m43.096414449s ago: executing program 3 (id=2125): perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0x5c, 0x0, 0x0, 0x0, 0x0, 0xa, 0x40008, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x3, @perf_config_ext={0x9, 0xc64}, 0x10096, 0x0, 0x800000, 0x1, 0x4, 0x2, 0x6, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, 0x0, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1) 2m42.961132972s ago: executing program 3 (id=2130): perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2b, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x9}, 0x106200, 0x1000, 0x20da, 0x0, 0xa, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'geneve1\x00', 0x0}) sendto$packet(r0, 0x0, 0x0, 0x200000c0, &(0x7f0000000080)={0x11, 0x88a8, r2, 0x1, 0xc, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x67}}, 0x14) 2m42.85457643s ago: executing program 3 (id=2133): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x200}, 0x50) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000006c0)={r0, &(0x7f0000000540), &(0x7f0000000640)=@udp, 0x3}, 0x20) 2m42.343318535s ago: executing program 3 (id=2138): r0 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x21) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x20) creat(&(0x7f0000000880)='./file0\x00', 0xa5) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000280)='./bus\x00', 0x2901401, 0x0, 0x0, 0x0, &(0x7f000009de00)) rename(&(0x7f0000000180)='./file0\x00', &(0x7f0000000a00)='./bus/file0\x00') 2m42.282031476s ago: executing program 3 (id=2140): r0 = socket$inet_sctp(0x2, 0x1, 0x84) close(0x3) r1 = socket$inet_smc(0x2b, 0x1, 0x0) connect$inet(r1, &(0x7f0000000400)={0x2, 0x4a22, @private=0x8010102}, 0x5a) sendmmsg$inet(r0, &(0x7f0000000e00)=[{{&(0x7f0000000180)={0x2, 0x4e23, @local}, 0x10, 0x0}}], 0x1, 0x2004c044) 2m42.033468157s ago: executing program 3 (id=2146): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000ec0)={'wpan0\x00', 0x0}) r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000000), r1) sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002ebd7000fddbdf252000000008000300", @ANYRES32=r2, @ANYBLOB="3c002d800800030009000000040002"], 0x58}, 0x1, 0x0, 0x0, 0x4000004}, 0x20004000) 2m42.01195055s ago: executing program 36 (id=2146): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000ec0)={'wpan0\x00', 0x0}) r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000000), r1) sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002ebd7000fddbdf252000000008000300", @ANYRES32=r2, @ANYBLOB="3c002d800800030009000000040002"], 0x58}, 0x1, 0x0, 0x0, 0x4000004}, 0x20004000) 2m10.33020936s ago: executing program 8 (id=3047): r0 = creat(&(0x7f0000000200)='./file0\x00', 0x1) io_setup(0x5, &(0x7f00000000c0)=0x0) r2 = eventfd2(0x7, 0x800) r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0) io_submit(r1, 0x2, &(0x7f0000000240)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0xfff, r3, 0x0, 0x0, 0x3, 0x0, 0x0, r2}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x5, 0x5, r0, 0x0, 0x0, 0x0, 0x0, 0x1, r2}]) 2m10.244006524s ago: executing program 8 (id=3048): r0 = socket$nl_generic(0x10, 0x3, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000600)={0x5, 0xb, &(0x7f0000000540)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRESOCT, @ANYRES16, @ANYRES32=0x0, @ANYRES8=r0], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$devlink(&(0x7f00000004c0), r0) sendmsg$DEVLINK_CMD_TRAP_GET(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000540)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000fbfbdf25270000000e0001006e655f64657673696d0000000f0002006e657464657673696d3000001c0053"], 0x50}, 0x1, 0x0, 0x0, 0x24040011}, 0x0) 2m10.188512004s ago: executing program 8 (id=3049): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000100000000000000ac1e000100000000000000000000000000000000000000000a0060"], 0xb8}}, 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc0000000000000000"], 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x0) sendmsg$nl_xfrm(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x0, {{@in6=@private0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x40, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0xaa3, 0xfffffffffffffff8}, {0x0, 0x8}}}, 0xb8}}, 0x0) 2m10.175200926s ago: executing program 8 (id=3051): mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0xe) mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0) chroot(&(0x7f0000000100)='./file0\x00') mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0) pivot_root(&(0x7f0000000340)='./file0/../file0\x00', &(0x7f0000000000)='./file0\x00') 2m10.110573307s ago: executing program 8 (id=3053): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0x32600) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r0, 0x0) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r1, 0x29, 0x13, &(0x7f0000000080)=0x7, 0x4) 2m10.044639037s ago: executing program 8 (id=3056): ioperm(0x7, 0x81, 0xfffffffffffffffe) r0 = gettid() timer_create(0x0, &(0x7f0000001640)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0) 2m9.974522069s ago: executing program 37 (id=3056): ioperm(0x7, 0x81, 0xfffffffffffffffe) r0 = gettid() timer_create(0x0, &(0x7f0000001640)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0) 1m56.449006332s ago: executing program 6 (id=3407): perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x9}, 0x106200, 0x10004, 0x20da, 0x5, 0xa, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1) rename(&(0x7f0000000600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) linkat(r0, &(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', r0, &(0x7f0000000200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1000) 1m56.371928405s ago: executing program 6 (id=3413): socketpair$unix(0x1, 0x5, 0x0, 0x0) io_setup(0x4, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, 0x0) close(0x3) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x6, &(0x7f00000001c0)=@framed={{0x18, 0x3}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @exit, @alu={0x7, 0x0, 0x9, 0x3, 0x0, 0x0, 0x10}]}, &(0x7f0000000040)='syzkaller\x00'}, 0x94) 1m56.34140959s ago: executing program 6 (id=3414): sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f903", 0x11}], 0x1}, 0x0) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb79100a6c52d922ba2a05dd4242"], 0xfdef) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000540)='syzkaller\x00', 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xc}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 1m56.146335262s ago: executing program 6 (id=3421): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x140) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) chroot(&(0x7f0000001140)='./file0\x00') mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0) pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f0000000100)='./file0/../file0\x00') 1m56.082157313s ago: executing program 6 (id=3424): r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000180)=0x4) ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000080)=0x6100204) pwritev(r0, &(0x7f0000000100)=[{&(0x7f0000000540)="00214797ac340d0000000000000000000000000086", 0x15}], 0x1, 0xf39, 0xc) preadv(r0, &(0x7f0000000900)=[{&(0x7f0000000200)=""/20, 0x14}], 0x1, 0x6, 0x1) 1m55.890714155s ago: executing program 6 (id=3430): r0 = timerfd_create(0x0, 0x0) r1 = timerfd_create(0x0, 0x0) timerfd_settime(r1, 0x3, &(0x7f0000000380)={{0x0, 0x989680}}, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000440)={{0x0, 0x3938700}}, 0x0) clock_adjtime(0x0, &(0x7f0000000480)={0x3ff, 0x10f6d, 0x0, 0xd, 0x7fffffff, 0x0, 0x4, 0x200000000000000, 0x22, 0x100, 0x0, 0x5cbc, 0x9, 0x3, 0x0, 0xfffffffffffffff9, 0x6, 0x0, 0x1000, 0x2000000000008, 0x9, 0x3, 0x8000000000005a, 0xfff}) 1m55.881889287s ago: executing program 38 (id=3430): r0 = timerfd_create(0x0, 0x0) r1 = timerfd_create(0x0, 0x0) timerfd_settime(r1, 0x3, &(0x7f0000000380)={{0x0, 0x989680}}, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000440)={{0x0, 0x3938700}}, 0x0) clock_adjtime(0x0, &(0x7f0000000480)={0x3ff, 0x10f6d, 0x0, 0xd, 0x7fffffff, 0x0, 0x4, 0x200000000000000, 0x22, 0x100, 0x0, 0x5cbc, 0x9, 0x3, 0x0, 0xfffffffffffffff9, 0x6, 0x0, 0x1000, 0x2000000000008, 0x9, 0x3, 0x8000000000005a, 0xfff}) 33.997461673s ago: executing program 1 (id=5359): syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000180)='./file1\x00', 0x804800, &(0x7f0000000000)=ANY=[@ANYRES8=0x0, @ANYRESDEC=0x0], 0xf9, 0x1213, &(0x7f0000000600)="$eJzs3E9rXFUYB+A3Y2rS1PxRa7Vd6AtuxMWlycKVIEFSkAwotRFaQbg1Ex0yzpTcITAiVldu/Ryu3Ql+g2z8DO6y6bIL8UrvNG1SU4vQZMQ+z2Luyz3nxzkHhoEz3HP33/3xq+2tqtgqh9GamorWrYi8m5HRigOvr4+v12+sr7bba1czr6xeW34nMxfe+PXTb2Yi4twnPy/8MhN7S5/t31n5fe/C3sX9P6992a2yW2V/MMwybw4Gw/JmbyE3u9V2kflRr1NWnez2q87OofZObr0dEaMs+5vzc7d2OlWVZX+U251RDgc53Bll+UXZ7WdRFDk/FzzWmSd32fjpbl3XEXV9Jp6Puq7rszEX5+KFmI+F+C4iXoyX4uU4H6/EhXg1XouLTa/TmD4AAAAAAAAAAAAAAAAAAAA8O/7p/P9iLDn/DwAAAAAAAAAAAAAAAAAAAKfg4+s31lfb7bWrmbMRvR92N3Y3xtdx+9K9j1504nIsxh/RnP4fG9dXPmivXc7GUnzfu30/f3t347kmv3qQX25eJ3A/P920HeSXx/k8mp+JuXv5reg2+ZVYjPPHj79ybH423nrzUL6Ixfjt8xhELzabsR/mv13OfP/D9iP5S00/AAAA+D8o8oFj9+9F8bj2cf7B/vrJ/w88sr+ejkvTk107EdXo6+2y1evsNEXvoJj9252TK+IUx3q6RcSduilmjja1TmjQVkx8yYeKqf/GNBRPpzgbR+9M+peJ0/DwazDpmQAAAAAAAAAAAPBvnPBzhdNxzJNl701mqQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPzFDhwLAAAAAAjzt06jYwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGCoAAP//qH3FUA==") r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000140)=""/45, 0x2d) mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x200000c, 0x3032, 0xffffffffffffffff, 0x0) ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, &(0x7f0000000f80)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) 33.791060008s ago: executing program 1 (id=5364): perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x9}, 0x106200, 0x10004, 0x20da, 0x2, 0xa, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001bc0)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}], {0x14}}, 0x64}}, 0x0) sendmsg$NFT_MSG_GETOBJ(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000002240)={&(0x7f0000002200)={0x14, 0x15, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x20}}, 0x14}, 0x1, 0x0, 0x0, 0x20040011}, 0x24040808) 33.66068634s ago: executing program 1 (id=5371): r0 = fsopen(&(0x7f0000000080)='hugetlbfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x82) fchdir(r1) mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1000, 0x103) 33.592386481s ago: executing program 1 (id=5376): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000340)={[{@noload}, {@stripe={'stripe', 0x3d, 0x30c}}, {@jqfmt_vfsv1}, {@nojournal_checksum}, {@jqfmt_vfsv1}, {@usrjquota}]}, 0xff, 0x44d, &(0x7f0000000900)="$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") creat(&(0x7f0000000040)='./bus\x00', 0x0) mount(&(0x7f0000000480)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x801400, 0x0) r0 = open(&(0x7f0000000080)='./bus\x00', 0xce240, 0xe898d2275f586838) preadv2(r0, &(0x7f0000000980)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x1, 0x8002, 0x9, 0x1b) 33.320874176s ago: executing program 1 (id=5382): r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000280)="390000001300090468fe0700000000001000ff3f04000000480100100000000004002b000a00010014a4ee1ee438d2fd000000000000007208", 0x39}], 0x1) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="340000001400010004000000fedbdf250a00000004000000080008800402478014000280bf"], 0x34}, 0x1, 0x0, 0x0, 0x20000804}, 0x4800) writev(r0, &(0x7f0000000040)=[{&(0x7f0000000380)="3900000013000318680907070000000f0000ff3f04000000170a001700000000040037000f00030001332564aaee7b1d58b9a64411f6bbf44d", 0x39}], 0x1) 32.902909006s ago: executing program 1 (id=5397): r0 = socket$kcm(0x10, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r1, &(0x7f00000000c0), &(0x7f0000000000)=""/3, 0x2}, 0x20) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000500)="2e00000011008108090f9becdb4cb92e264831371900000069bd6efb25026a747e0114370595e4bb0b0489b1dc73229c52bbea23870200000079d3c7a519afc7d2dff1cc9fe1b9bd41c5d0b4f2d04979d68cc3471637e69740313dd0f31448193bd26131968d5f790e1429b24ba0", 0x6e}], 0x1}, 0x20048020) 32.877863151s ago: executing program 39 (id=5397): r0 = socket$kcm(0x10, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r1, &(0x7f00000000c0), &(0x7f0000000000)=""/3, 0x2}, 0x20) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000500)="2e00000011008108090f9becdb4cb92e264831371900000069bd6efb25026a747e0114370595e4bb0b0489b1dc73229c52bbea23870200000079d3c7a519afc7d2dff1cc9fe1b9bd41c5d0b4f2d04979d68cc3471637e69740313dd0f31448193bd26131968d5f790e1429b24ba0", 0x6e}], 0x1}, 0x20048020) 30.991542396s ago: executing program 9 (id=5435): r0 = epoll_create(0x3) r1 = socket(0x10, 0x3, 0x0) write(r1, &(0x7f0000000180)="2000000012005f0214f9f4070000fbe40a0000000000", 0x41d) recvmmsg(r1, &(0x7f0000001500)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000000)=@xdp, 0x80, &(0x7f00000011c0)=[{&(0x7f00000001c0)=""/4096, 0x1000}, {&(0x7f0000000080)=""/236, 0xec}], 0x2, &(0x7f0000001200)=""/97, 0x61}}, {{&(0x7f00000015c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f0000001480)=[{&(0x7f0000001300)=""/68, 0x44}, {&(0x7f0000001380)=""/197, 0xc5}], 0x2e3, &(0x7f00000014c0)=""/45, 0x38}}], 0x3, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000001280)={0x30000010}) 30.90951606s ago: executing program 9 (id=5437): perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xfffffffd, 0x1, @perf_config_ext={0x3fffffffc, 0xffffffffffffffff}, 0x102802, 0x0, 0x0, 0x3, 0xfff, 0x8001, 0x7fff}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000280)={0x0, 0x80000000, 0xfffffffc, 0x5b50, 0xffffffff, 0xfffc}) r0 = socket(0x10, 0x3, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r1, 0x0, 0x0) 30.855008649s ago: executing program 9 (id=5438): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@nogrpid}, {@quota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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") quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f00000003c0)=@loop={'/dev/loop', 0x0}, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) mknod(&(0x7f0000000340)='./bus\x00', 0xc000, 0x2000008) openat(0xffffffffffffff9c, &(0x7f0000001740)='.\x00', 0x511001, 0x488) 30.569004157s ago: executing program 9 (id=5442): mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b) mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0) mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0) mount$bpf(0x200000000000, &(0x7f0000000000)='.\x00', 0x0, 0x8b7848, 0x0) mount$bpf(0x200000000000, &(0x7f0000000100)='./file0/../file0\x00', 0x0, 0x8a7848, 0x0) 30.402928385s ago: executing program 9 (id=5444): syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f00000014c0)=ANY=[@ANYRES32=0x0, @ANYRESDEC, @ANYRES16=0x0, @ANYBLOB="b022fd84099290ab8ebe39cfc17f80bc2926131e9437a1dea9ca1756900531c14b67f7a9edd0d80c7c73649053153a8d8db6d3c0d3b3fa951f57d14071b61a27d968a0ae7bd580d2d9fd9034451c3ecffae80b234e72fb11e3a60c1208bd5262c5009e3e45582ed4203850292ed682fc5e26f5c2af47718ee5b4f2ed68f0b21b813ec22c4c61d3f22f5a01ebea6c484d8ef4ca90180b4587e0bee2f782fef574aa1e0ebc5d9e42452910d03c12feff7848f72ac5430476b9dc2457a09efdc6f181c408abe7b30cccd2c8fb85389e1cacd4f4b29a3d4a55941bf1bb416203732d6712d5a89470876ae6daec66f3fe1b39982c2781b115e20af7ce0a0c7c77db1073adc6e11597bd9f540f90f60b92dc84a5c764379c0b9426ff4f547182502633aa754dcfc63e46c7cef8e3a0c29bf5184ac150e90d884c59cba3dae7c531fb114534292629d8532c0f67ee37f2c349ea8f28199aff2aa335df5db411287a73adfbfff212cf7b6d277a361c55af160d98b5c3db84da37d80e07269c33f60f111ec3c09d8843e1f5499e71de9b48882b9415d45b20393888ec49f307d535580947b5a5b40b465382aa4a579f317d91792f8ed70e9401863bc0a21d7e15f828ae8f13c673a30cba6f10f89c8a018cc8bbe7072ffe1c5d4ef11f0f82cf967faef8608f8b289245f87607917b0c2578dbbe5186ac78b8cd9a5aff567aebe8a73dd547fdc503885a2df4953f3497688b7b1ede6a2e529b25ecc246a7bcb00077059d7e0100aa20cb4d1dbac6eec0a9f803601c799eddb9b271f0530842291167abffb982fe47a496e884ee3c17850f970cb3ac3342b832b8b984e2eb4836afb7727f7310a347add2a1094cfff7b44516593bbf15f3a9e0e2a788e99bdec6706ae9a39b4f8983ae38d4cdf866d9670de91036ea86646f195ec4b4ce462ea624b8875825262a301f9235496b935506109287bbcf4754e3fa637428a2e39a80cd07ffafd756839abddc721421754fcae705ab432fcdd6f3c004dfad9e6bfa87746dd41649dcd2bf1728a3d6d2ddf27a52957422a27f9e478530873d9f1861b71f2378540648b171bcbd44533723ae1a89e56e2f570c0571eb3c66fac65e3abad003a828f2d21cc990e57b80dd3762fe1204eb320591d6a93f9052b80494b2f52ad89d6374cf33040e2484c3384946450bb65835d65bebb4a91c0f82e598e5aa7ff9ba79f27bbd46240287721d2759fa24cec97658d8f17b3f424293f7253b74dae4b966c8089c546936953d8ce63463c26f1e296f56e17e7f890b6001ed5d9f739036842e989b40c02d3fe5227b1fb08a98f1b1f0c336346698e70171e74e40c5304a356b29c947672f8a0535b7ce3a66b276d09ca3d9fff030e41598649a310875f5b5801c471182c1f617c907f06b5f36a1f9294b0f4a95d0fc98682b1e38f2f94fb08f20c5e5c7afaa9fbbd84734a98dd9b33188f6b79334b09ca8e2de56457242f904b114a2c313b193fe421d7fa97da5ab77f363e83b4698bf903022d13826ded79a905f07f97dc0fc4cc290b969ee37075a4a80a0d86d0696eeea2048ebd1a97f8319b3342e515ae5c9e25ee933d926ae0f31af55aeb07da6508756ac9549ba8bbc0095a17cb647df12f926e595a531d7208ef75cfd6239f65a0584121c75e00f7c77990b90e6350b1a84eba4430979bb726ab02050573af29156bed8e243527593dc0c6de41d0b6775818a96ee97d153826a217e8d7e88c6c44baa781a495afeba3882a06f5b1a87b1e8ee1edf404ac3ade6f5af1f6cd22c01506b5f84befb55c86f79b56e4d5754be8f564f57852f991c2275cbf55937666e022c2b2f0d020156152377859b345f74fe66791421e5571a7900df89c9bef5c3cb19113fae5d524ae2edea5ca91baf096c02e1e860c9b5a97882da598ef1e39fcb61d83f997675a772ac37c0fbe65a9d379b9204a915fdb6a7c7cdbd14c0893cd5e8cfd56f4021756d6c6a25b258a69922a41f3c7bc43b69f46293b381a27ae5a3cfcf2526f8eadcb540ec87d6009d6a2939882140f9a447c5be4328a0681aa3002f6a9dfd836b362fb1d423d7c9571aeb50e2a6acb9ab4e85574baf27b1028db0f6647aa7fe995c1fbf8ab422bb15acf9ae6de73972c9549cb601297bbb1c740e8761af16c4785c4827b5dc5e52f4a82000f6f87670ec19fea4e04e564fc83c0ccf1b7fa2bb9ac3e56addfa7f5f6d1d3d3c92dea5de9fa42f1414a769b0cdc40e306fee0ad66573628b83a07fe087fcb3377848e1a7869e592c83bb594284da28a4f5db381059d56e5d4989042dadbbe6000b66184ca8fe9d293f6c70988f3d7b8ee00546a21aaeca498ae06fa7becc5a55914c7a1ab714d955a8b0bd72e8d6bbf4dd451b525fcbc9fb5c10747dee3c755d39be5c2d52345c56185a8d6cee878b72255acabf7dbefafaed94838532fd01ea6244c4ac929de6846084a07d19de7098e62b613775abe326d402f707c4fbb3968b0aac7f1f27537cbdecee19151b310bcbe2c848ef41eea747e85f87d5a160b2cb6b28d137e30c69770c1651e44a66f8e3394bec03c8256b89fd59bec449c6a2bdb351f53d05e463f75b834624b8c7b557dc38a398d726d0846fc2f062b5b32d10af38ce844c6811aaef73ace1d86813bc37433670f6180f9bd112ae00133077fc7a0bd12d7b4b3a53a3c16a9cb0e8112f18691aa3bd2215afdaa1d00c8ea4f4a302ea9ebc94afaad2549f646a8ae66b953fa9cd649a02c4b152cc6c7b55d99ddc3d0fd1fcd84da355eb02581dba9e4d9dd235d2d4c4e094161440e70926221d76ce70c8762485c8b801550cc208e5d1bfd184e622ff0950a912dd47163c838fd562f09ca1690e76da55a471ec67cb83bbb103975bd4683f0393ec8b843f55ba2c0bdc6c90b50031cfe751792bd5d0cb50c8ee93086794e18c4ed66d6bd09b499f8ff2f63a8920701ab0af5b4b75402b1d65b1eb515dc46e181a1699f21e67349c904f02f8358e28faff2ade65703d14dc2774b02acc731eee0941675502d95e0c32a7304f6e9af85ef220daea0de24cf79e35a59412e62835d3032f88d9ed7befd4f708bfd2d236bd188b6f951bbe13e3add84f111e20324a523426611ec15fb376e7306cbec6867f0b945047a4facf78154e68a66a36972d5a18af1403baa9b4b51fddd072ee1f0087add02485b40323bd708b76406e10a927a913d91c5d771d3aeb3cfafb54b1016785c61ed13060d5f1b550676a656b874fd392ae61c5044218df55cbb72b819990ffdb130fb17a14f7cb5a2a8aafedc6526d83762dbf320f15758030eeecf5652dccf04cdc68827400c768a21daff47212b87357ff0bcb36cae4d113a5d9815b07332cb42329321664d93e43e6dcd6115987007fc623088004f8ac943736eb2a045a25b1bbfbbc97571eabf875d924f6b7b0e524b1afa0ff499473aa7976de83b91928e84f8e445728778fe0e5a356a57f09ed254848cec31b7c5c9c7a2fca21befe15ffc9317e96f7ad582684ce625791b99563781bf64983e77be4f1a5893beec4b560fc15e9c21dd0c29bf2879dfaa257ba5ec97957050d5b2c1f25eb4064488c139dbf88f3b7c70850d6fdbf0603cdd4011bf76e0d9ee5c2b128b50dba5689a8f04d4caf62d777eab31aab4b4195da780901352d284885bf417eb05367ee1b5f2f8c5cfe7f0394fb977f3a3f96084375e22ccf6c3ee4659d68d2b1948a4a1783a4db2282c67d39613fa67be4dd144793b76c09dd563ef3d169f34318acbd62d3b2d64f9173d16e9801132918c3390172c6f64d049b4c894d593419e5f4d5a513fc5a64ddcd05b034e6d16fe88ff89a520c464f842ad5a62a6fc46f0e9d56d05d6f5e625d25f537cca62910981dd463255318d8273db13d27fdc6c17c2c54776ba3a246c413957f297b8ecb1adb5c3f1d4d8e4d7705bdb9268f956d2845b68511edd51cdc5d05de5d6d4b3f573592986fed325f1f3c6a9ef7740f9d843e11981d1ca515c7e722ec4d691c5e4d3a146e39bcf407f66418f754bb2508cb4cc843aa9d8eb63850e5b9103682ecc1fc8f972f394be9d31cb9efd0f693d4ec41fe8d0993b45d2f422f9ab604d3371c1bda1daa3206a027c4de5c8f2cf6d1fc7e6d1423a6c71e84f24e0a4dfbf4a331deff2ae649df9681a08846efc9f0001e7ef106f1bfa25ee2799b13f1f076e30e58078d186afb65301497e982478babf143972cc7072f70829b8faee46e56a1451ff7ddd0dd35816bfa29eee361de60fbc3222e89d70f1495be94d0e82072a0e572e3055c905552e6c45d2af3d4f505a99d947667059c1c92ce2d3549077539c4cec4c07337361eeb9f78813bf9e77b0a79f391ae6eb663deb53317f61ef8ddffdbd0ca2d8095c10c106b0968325bc1e88829d92399b809f1b881e9b9f0aeada5c5ee20fd0866070e3d5d41e62f5b6d2d25441babcdf9d3dc8ae3c140a6f352daf00ed38e248b236acd27f24bdebae0f272a5820ef77fb603fe3cc910a9d842129259e61d25dcf546cd770e4cccab470b20fa5f5972a6dd15853483de6e032f9726c166e81e8e0f9db4df397cc4a10b6e58708a31f48d7d2bae4ef92828c37088068b2ae433110dc7c08e6017d8b26e4e0382ca8fa62dc6f53c4cc2f0f78af72335c494f57f2414afe247e2291c395895bb18f701b6f4331feb759110c543dd94a238e782ad552047677558a50e7683d71a9e222fd19a9343e1d64528640a8099dedd19e4c747dda18ff25b15bddf750a54533b6ecfc75ad4a2909485f7fd759d45c74727b2e7300eae71a8784f5dd7f25b4b000ed3254264131cbbae316fb3a3bfbeb309dd2d18104629db354f447791eb882bf0333a520b8dba745b673d071b07e1de3e02fe751a1cf5908435b1a38edbd60483abdb15452c868844ceb96c449ab72999a55c79f9ce7405797142ef7095b4caf99d7bbe51cd4e963e4ffbbd2648761abd3894b5420a0add261ff9c0eff61aafd1ac5195ff15cadb5b0c7ce34d4d2d68146f3dae677e833b8be0f8a876153bb65398def38e4bf539d3a00047b19c483062fc1c2547b7d4f7d99b7035212ccfffeeb21ed7bbd6165ac7fbafbca3cef86fff655305706dd0baa607c50543bb0d66f0f4dbdd9c365fdb7b875dc5e7ee59afccc321ad1e31cc84687afda71231bb2e4dc3ce79ff3ce4bbafed8821a5b71bbf3844f110e2dd9557b596ac792d97506d22c0410bce435e20fa2e2d435361b5b6ac85f44763769723a7b629258f45e10578f70bef2e9c05af8032e357697dfcd30de9b3e953a36d6cb7a03ce69288b663f692793904dd8fb4ab6dc31ddf7f6942ef84c1e68c78bf9974f830ee2fccca84113cee98b47ed41a87fe610c5348dc38d4ada19862772317a70754870347ad87dbbb4c52349b0261aa8e108fcf387b24d4e2a77ba76e8472fd74ab6fa021277a24ef7a48d395b0fd1f9c0cf83bac56b433ffbfe5984a362e337969febf259988162c2b4842bd2fc0b230fee93a085003e615088abfe41889f7b5e0f380ffe55b66c1f7419993c3dd4aac5891494a183ddca2e415e1749489c925715f3c44d94b90d2d735f2b923bdbbbf1646580ab135356a9ee29bc19e73ded9a33798a69d248574e0c9e9f40a1c1ba52bc66a578d08b75f271a9e9f447efede09d6b3b57e0aa6322c18fd6f5e1c9d2753e0a6513cc04124ab89802eb9c504f0e5550868ab597629d7cc7447ed1b01b2ff4cf511aa098710b208b5aa0f595039a2f0e7294c5fe3b0c3e6c40000000000000000000000000000000002588beb10115f4b22f4ac997c86c49201ee9dceb2142ae61555bbbc4ef8cdd468a8ffbe6cbfc8877dd87292c70e10669bc99d8d5710f7719cc2cffc86cd529b6da2511d07aef4a1d9533ab58a76f80ad7fe91a17397d3c83481", @ANYBLOB="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", @ANYRES64], 0x8, 0x2eb, &(0x7f00000004c0)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x400, 0x0) ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000080)={0xffa1, 0xd000000}) 29.684893585s ago: executing program 9 (id=5452): r0 = socket$inet_sctp(0x2, 0x1, 0x84) poll(&(0x7f0000000100)=[{r0, 0x84}], 0x1, 0x3ff) sendto$inet(r0, &(0x7f0000000140)='^', 0x34000, 0x0, &(0x7f0000004ff0)={0x2, 0x0, @rand_addr=0xfffffffffffffffe}, 0x10) listen(r0, 0xda90) accept4(r0, 0x0, 0x0, 0x0) 29.65596167s ago: executing program 40 (id=5452): r0 = socket$inet_sctp(0x2, 0x1, 0x84) poll(&(0x7f0000000100)=[{r0, 0x84}], 0x1, 0x3ff) sendto$inet(r0, &(0x7f0000000140)='^', 0x34000, 0x0, &(0x7f0000004ff0)={0x2, 0x0, @rand_addr=0xfffffffffffffffe}, 0x10) listen(r0, 0xda90) accept4(r0, 0x0, 0x0, 0x0) 1.938179176s ago: executing program 7 (id=6109): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000080)={0x0, 0x10, &(0x7f0000000200)=[@in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f0000000000)={r1, 0xe34}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000000c0)={r1, @in={{0x2, 0x0, @empty}}, 0x4, 0x1, 0x0, 0x0, 0xce03b2}, 0x9c) 1.922818488s ago: executing program 5 (id=6110): sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)='M', 0x1}], 0x1}, 0x1) r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$setregs(0xd, r0, 0x20000000002, &(0x7f0000000040)) ptrace$cont(0x21, r0, 0x80000001, 0x4) 1.888131074s ago: executing program 7 (id=6111): r0 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0) syz_read_part_table(0x5d9, &(0x7f0000000000)="$eJzs0r9rW1cUB/DzXqsoHYJECKTQpRCTSU2KlhQqUYpRhRcnhLRk6D+QDIUEOngwUpXMaTJ1s/GPgvFiOrSToUONZTAuyJORV4+lg+miobwi67nFNW0H125tPp9B993vu0fnXu4LzrU0fs6yLImIrHiYfZG/iXjy7t9Xf7zc+Gji7Xsf3n8QkcTjiJh85/F3wzdJvuLwX7/J53fz+USx2pvbHN9fLm/d2O6OLaQRhWF+KSLaw/r2Yul4vyTeP/mRuUBW6uulZ8+fNl9M1R/tNKf3Cnn+6s58rfXT9drDdPRNraa/l/zxFBs//Nv9L+f5zJVbhW5vUN3I55XkSFly0r78P6z8mg29mQ3v/4PpvdlrnX5nMHlzqXC7crW/1np5cNPf/1V54Uw3CwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXGgr9fXSs+dP04jIXhtFjbe+bHz26s58rfXJ9drDdBSupqfav/liqv5opzm9N9Z77+sfs8sxc+VWoXtpUN3I11WSI2Wt09kNZ+3P9z97rdPvDCZvLn1+u3K1v9Z6mXz1ZLju9f96owAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAudH4ZTci7j+ISOLTiBhPy4vDPCtGlHePr79bHI0TxWpvbnN8f7m8dWO7O7ZwL89X04h2vHHw/O3B79RhaWk0FEZDOyLS0z0b/+y3AAAA///EuoFM") fsetxattr$system_posix_acl(r0, &(0x7f0000000440)='system.posix_acl_access\x00', &(0x7f0000000840)={{}, {}, [], {0x4, 0x1}, [{0x8, 0x3}], {0x10, 0x3}, {0x20, 0x6}}, 0x2c, 0x1) setreuid(0xffffffffffffffff, 0xee01) mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1) 1.73246602s ago: executing program 7 (id=6114): r0 = open(&(0x7f0000000000)='./file0\x00', 0x1607c0, 0x78e22799f4a46ffe) fcntl$setlease(r0, 0x400, 0x0) r1 = syz_create_resource$binfmt(&(0x7f0000001400)='./file0\x00') openat$binfmt(0xffffffffffffff9c, r1, 0x42, 0x1ff) fcntl$getflags(r0, 0x401) 1.654711363s ago: executing program 5 (id=6116): r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private1, 0x9}]}, 0x0) getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f00000004c0)=0x8) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000100)={r2, 0x7f}, &(0x7f0000000140)=0x8) 1.454621127s ago: executing program 5 (id=6119): syz_read_part_table(0x604, &(0x7f0000000000)="$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") r0 = syz_usb_connect$uac1(0x0, 0xac, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000000000106b1d010140000102030109029a00030100000009040000000101"], 0x0) syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x407}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$uac1(r0, &(0x7f0000001840)={0x14, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0003070000000703"]}, 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000180)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 1.085484738s ago: executing program 2 (id=6124): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0x1, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800000010000d0428bd7000fcdbff2500008000", @ANYBLOB="1000000000000000280012800b0001"], 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0) set_mempolicy(0x2002, 0x0, 0x9) 1.01864884s ago: executing program 2 (id=6126): timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)=0x0) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r0, 0x1, &(0x7f0000000040), 0x0) timer_delete(r0) 992.007634ms ago: executing program 2 (id=6128): sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb45, 0x100000000009, 0xa, 0x0, 0x3}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r1, 0x0, r2, 0x0, 0xf3a, 0x2) write(r0, 0x0, 0x0) 896.67274ms ago: executing program 5 (id=6131): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x1123102, 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RGETLOCK(r2, &(0x7f00000000c0)=ANY=[], 0xffffff6a) splice(r1, 0x0, r0, 0x0, 0x40010003, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x1b) 879.012353ms ago: executing program 2 (id=6132): syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f00000000c0)={[{@noload}, {@stripe={'stripe', 0x3d, 0xdc}}, {@bsdgroups}, {@noload}, {@abort}, {@auto_da_alloc}]}, 0xff, 0x459, &(0x7f00000004c0)="$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") r0 = open(&(0x7f0000000180)='./file1\x00', 0x64042, 0x0) pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x2000, 0x0, 0x3) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) pwrite64(r1, &(0x7f00000002c0)='2f', 0x2, 0x8000c61) 853.999207ms ago: executing program 7 (id=6133): r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x2b, 0x1, 0x0, 0x0, 0x0, 0x10009, 0xf40b9, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_config_ext={0x8, 0x100}, 0x1014a4, 0x0, 0x43a1bd78, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x200b}, 0x0, 0x4000000000, 0xffffffffffffffff, 0xa) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001800000000000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) iopl(0x3) 778.44841ms ago: executing program 4 (id=6136): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x10, &(0x7f0000000100)={[{@dioread_lock}]}, 0x5, 0x7e5, &(0x7f00000018c0)="$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") r0 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10) r1 = socket$inet6(0xa, 0x805, 0x0) getsockopt$bt_hci(r1, 0x84, 0x1, &(0x7f0000000080)=""/4076, &(0x7f00000010c0)=0xfec) 530.601321ms ago: executing program 4 (id=6138): unshare(0x40400) r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000002fc0), 0x242002, 0x0) fcntl$setstatus(r0, 0x403, 0x800) io_cancel(0x0, 0x0, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x5345) 507.761435ms ago: executing program 7 (id=6139): bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = perf_event_open(&(0x7f0000000680)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5a1c, 0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x400000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000b80)={{0xeb9f, 0x1, 0x0, 0xfc5f, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0xfc5f, 0x0, 0x0, 0x500}, 0x20) 434.849137ms ago: executing program 2 (id=6141): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f0000002f40)={[{@nodelalloc}, {@dioread_lock}, {@barrier_val}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x5}}, {@bh}, {@init_itable}]}, 0xfc, 0x56f, &(0x7f0000003780)="$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") perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2003, 0x2, @perf_config_ext={0xe82, 0x722}, 0x106200, 0x10003, 0x20da, 0x9, 0x7, 0x20209, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, 0x0, 0x8000) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000e00)='./file0\x00', 0x9001) renameat2(r0, &(0x7f0000000140)='./file0\x00', r0, &(0x7f0000000040)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4) 394.686994ms ago: executing program 4 (id=6142): r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180200002343ffff0000000000000000850000004100000095"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x60}, 0x94) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r1, r2, 0x25, 0x0, @void}, 0x10) syz_emit_ethernet(0xe80, &(0x7f0000001b00)=ANY=[], 0x0) 393.962354ms ago: executing program 0 (id=6143): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10) sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0x0, 0x0, 'lblc\x00', 0x28, 0xc, 0x5c}, 0x2c) 377.520847ms ago: executing program 7 (id=6144): prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045) r0 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0x20973, 0x1c080, 0x0, 0x37}) syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000097ff8208109bc100000008000012b70885b32b0009048f0000bf57"], 0x0) io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0) 220.785783ms ago: executing program 4 (id=6145): r0 = socket$inet6(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000000000)=@newtaction={0x6c, 0x30, 0x53b, 0xfffffffd, 0x25dfdbff, {}, [{0x58, 0x1, [@m_simple={0x54, 0x1, 0x0, 0x0, {{0xb}, {0x28, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0xb, 0x3, 'simple\x00'}, @TCA_DEF_PARMS={0x18, 0x2, {0x5}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4060040}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0) sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b) 220.249693ms ago: executing program 0 (id=6146): syz_emit_ethernet(0x3e, &(0x7f0000000000)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x0, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @broadcast=0xac14140a, @initdev={0xac, 0x1e, 0x0, 0x0}}}}}}}, 0x0) r0 = socket$inet6_icmp(0xa, 0x2, 0x3a) ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, &(0x7f0000000000)=0xa) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x1, @rand_addr=' \x01\x00', 0x404004}, 0x1c) 161.882083ms ago: executing program 0 (id=6147): r0 = creat(&(0x7f0000000200)='./file1\x00', 0x12e) close(r0) r1 = socket$rxrpc(0x21, 0x2, 0x2) setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000000)=0x691c, 0x4) mount$9p_fd(0x0, &(0x7f00000001c0)='./file1\x00', &(0x7f0000000040), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 98.821363ms ago: executing program 4 (id=6148): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x0, 0x0) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7ffffffd}]}) r2 = dup2(r0, r1) close_range(r2, 0xffffffffffffffff, 0x0) 97.968823ms ago: executing program 0 (id=6149): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r0, &(0x7f0000000280)="f9", 0x1, 0x20000040, &(0x7f0000000040)={0xa, 0x0, 0x2, @private2}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)="ed", 0x1, 0x808d1, &(0x7f00000001c0)={0xa, 0x4e22, 0x1, @private0, 0x6}, 0x1c) shutdown(r0, 0x1) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x74, &(0x7f0000000080)={0x0, 0x0, 0x10, 0xaf9}, &(0x7f00000010c0)=0x18) 56.14672ms ago: executing program 2 (id=6150): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) sendmmsg$inet6(r0, &(0x7f00000008c0)=[{{&(0x7f0000000000)={0xa, 0x4e1f, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x1}, 0x1c, &(0x7f0000000640)=[{&(0x7f0000000080)="a4", 0x1}], 0x1}}], 0x1, 0x20040000) shutdown(r0, 0x1) ioctl$SIOCX25SFACILITIES(0xffffffffffffffff, 0x89e3, &(0x7f0000000100)={0x7a, 0x1, 0x9, 0x9, 0x80, 0x81}) getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x83, &(0x7f0000000100)=@assoc_value, &(0x7f00000000c0)=0x8) 55.694171ms ago: executing program 0 (id=6151): sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)={0x18, 0x1, 0x2, 0x3, 0x0, 0x0, {0x3, 0x0, 0x1}, [@CTA_EXPECT_MASTER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x24004080}, 0x2000010) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000580)="d8000000140081054e81f782db44b904021d080225000000040000a118000200fcffffff00000e1208000f0100810401a80016ea1f", 0x35}], 0x1, 0x0, 0x0, 0x7400}, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000580)="d8000000140081054e81f782db44b9040a", 0x11}], 0x1, 0x0, 0x0, 0x7400}, 0x0) r0 = socket(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[], 0x184}, 0x1, 0x0, 0x0, 0x5}, 0x4c810) 46.543472ms ago: executing program 4 (id=6152): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast}) write$tun(r0, &(0x7f00000000c0)={@val={0x3, 0x800}, @val={0x1, 0x0, 0x0, 0x0, 0x14}, @ipv4=@icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x1400, 0x0, 0x0, 0x1, 0x0, @private=0xa010100, @local}, @dest_unreach={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, 0x11, 0x0, @local, @loopback}}}}, 0x3e) 42.173143ms ago: executing program 5 (id=6153): r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd824498949714ffaac8a6f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb5447000001000000008f2b9000f22425e4097ed62cbc891061017cfa6fa26fa7088c60897d4a6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe6b1b8d9dbe87dcff414ed000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94) fsetxattr$trusted_overlay_opaque(r0, &(0x7f0000000ac0), &(0x7f0000000b00), 0x2, 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff) r1 = socket$inet6(0xa, 0x3, 0x3c) setsockopt$inet6_IPV6_RTHDR(r1, 0x29, 0x39, &(0x7f0000000340)=ANY=[@ANYBLOB="000202"], 0x18) 15.234077ms ago: executing program 0 (id=6154): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x94173000) mremap(&(0x7f0000a01000/0x4000)=nil, 0x4000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) mremap(&(0x7f00009a1000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000fef000/0x4000)=nil) mremap(&(0x7f0000678000/0x3000)=nil, 0x3000, 0x3000, 0x3, &(0x7f000084c000/0x3000)=nil) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0) 0s ago: executing program 5 (id=6155): bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = syz_io_uring_setup(0x4173, &(0x7f0000000180)={0x0, 0xbf55, 0x10000, 0x2, 0x2d0}, &(0x7f0000001040), &(0x7f0000001080), &(0x7f0000000000)) io_uring_enter(r0, 0x7b20, 0xe93c, 0x0, 0x0, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00') read$eventfd(r1, &(0x7f0000000080), 0x51) kernel console output (not intermixed with test programs): op7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 231.911916][T16059] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4671'. [ 232.001221][T16065] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4674'. [ 232.018424][T16065] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4674'. [ 232.231375][T16087] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4685'. [ 232.286237][T16087] dummy0: entered promiscuous mode [ 232.301240][T16093] loop2: detected capacity change from 0 to 512 [ 232.312020][T16087] macsec2: entered promiscuous mode [ 232.317345][T16087] macsec2: entered allmulticast mode [ 232.319074][T16093] EXT4-fs: Ignoring removed nobh option [ 232.338636][T16093] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 232.355939][T16093] EXT4-fs (loop2): 1 truncate cleaned up [ 232.365391][T16093] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 232.381668][T16087] dummy0: entered allmulticast mode [ 232.440021][T16087] dummy0: left allmulticast mode [ 232.465739][T16087] dummy0: left promiscuous mode [ 232.473270][T11624] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 232.493597][ T28] audit: type=1326 audit(1776170223.427:1620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16099 comm="syz.1.4690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7fa3ec819 code=0x7ffc0000 [ 232.541321][ T28] audit: type=1326 audit(1776170223.427:1621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16099 comm="syz.1.4690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7fa3ec819 code=0x7ffc0000 [ 232.565933][ T28] audit: type=1326 audit(1776170223.427:1622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16099 comm="syz.1.4690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7fa3ec819 code=0x7ffc0000 [ 232.626868][ T28] audit: type=1326 audit(1776170223.427:1623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16099 comm="syz.1.4690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7fa3ec819 code=0x7ffc0000 [ 232.651519][ T28] audit: type=1326 audit(1776170223.427:1624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16099 comm="syz.1.4690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7fa7fa3ec819 code=0x7ffc0000 [ 232.679387][ T28] audit: type=1326 audit(1776170223.427:1625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16099 comm="syz.1.4690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7fa3ec819 code=0x7ffc0000 [ 232.743844][ T28] audit: type=1326 audit(1776170223.427:1626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16099 comm="syz.1.4690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7fa3ec819 code=0x7ffc0000 [ 232.774032][T16109] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.869383][T16109] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.901937][T16120] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.958180][T16120] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0 [ 233.005254][T16109] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 233.049489][T16120] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 233.076477][T16120] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0 [ 233.120632][T16109] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 233.148959][T16120] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 233.178387][T16120] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0 [ 233.204836][T16135] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 233.256102][ T69] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.276029][ T12] Bluetooth: hci0: Frame reassembly failed (-84) [ 233.288870][T16120] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 233.310856][T16120] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 256 - 0 [ 233.335717][ T69] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.386005][ T69] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.398309][ T69] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 233.434336][ T69] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 256 - 0 [ 233.445673][ T69] netdevsim netdevsim5 eth0: set [1, 1] type 2 family 0 port 6081 - 0 [ 233.487222][ T69] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 256 - 0 [ 233.501362][ T69] netdevsim netdevsim5 eth1: set [1, 1] type 2 family 0 port 6081 - 0 [ 233.510606][ T69] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 256 - 0 [ 233.519262][ T69] netdevsim netdevsim5 eth2: set [1, 1] type 2 family 0 port 6081 - 0 [ 233.527861][ T69] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 256 - 0 [ 233.537362][ T69] netdevsim netdevsim5 eth3: set [1, 1] type 2 family 0 port 6081 - 0 [ 234.094795][T16182] loop1: detected capacity change from 0 to 256 [ 234.151507][T16182] FAT-fs (loop1): codepage cp861 not found [ 234.259329][T16191] loop7: detected capacity change from 0 to 1024 [ 234.301827][T16191] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 234.329988][ T7022] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.373644][T16201] loop2: detected capacity change from 0 to 512 [ 234.401024][T16201] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 234.413993][T16201] ext4 filesystem being mounted at /298/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 234.453976][T11624] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.510327][T16213] loop2: detected capacity change from 0 to 512 [ 234.554166][T16213] EXT4-fs error (device loop2): ext4_iget_extra_inode:5042: inode #15: comm syz.2.4734: corrupted in-inode xattr: invalid ea_ino [ 234.598306][T16213] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 234.598673][T16213] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.4734: couldn't read orphan inode 15 (err -117) [ 234.608275][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 234.608315][ C0] EXT4-fs (loop2): initial error at time 1776170225: ext4_iget_extra_inode:5042: inode 15 [ 234.608362][ C0] EXT4-fs (loop2): last error at time 1776170225: ext4_iget_extra_inode:5042: inode 15 [ 234.647045][T16213] loop2: lost filesystem error report for type 5 error -117 [ 234.647688][T16213] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 234.670838][T16213] EXT4-fs (loop2): shut down requested (2) [ 234.690673][T11624] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.912407][T16225] loop2: detected capacity change from 0 to 512 [ 234.944377][T16225] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 234.959235][T16225] ext4 filesystem being mounted at /302/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 234.990479][T11624] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 235.288027][ T3842] Bluetooth: hci0: command 0x1003 tx timeout [ 235.288516][ T6634] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 235.335084][T16233] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4740'. [ 235.344936][T16231] loop9: detected capacity change from 0 to 1024 [ 235.371464][T16231] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 235.404324][T16233] dummy0: entered promiscuous mode [ 235.409757][T16233] macsec1: entered promiscuous mode [ 235.415952][T16233] macsec1: entered allmulticast mode [ 235.421910][T16233] dummy0: entered allmulticast mode [ 235.429700][T16233] dummy0: left allmulticast mode [ 235.434943][T16233] dummy0: left promiscuous mode [ 235.449670][ T9322] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 235.499109][ T28] kauditd_printk_skb: 3 callbacks suppressed [ 235.499126][ T28] audit: type=1326 audit(1776170226.437:1630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16246 comm="syz.9.4743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc55fcc819 code=0x7ffc0000 [ 235.530106][ T28] audit: type=1326 audit(1776170226.437:1631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16246 comm="syz.9.4743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc55fcc819 code=0x7ffc0000 [ 235.554839][ T28] audit: type=1326 audit(1776170226.437:1632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16246 comm="syz.9.4743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc55fcc819 code=0x7ffc0000 [ 235.596597][ T28] audit: type=1326 audit(1776170226.437:1633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16246 comm="syz.9.4743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7efc55fcc819 code=0x7ffc0000 [ 235.652559][ T28] audit: type=1326 audit(1776170226.437:1634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16246 comm="syz.9.4743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc55fcc819 code=0x7ffc0000 [ 235.704274][ T28] audit: type=1326 audit(1776170226.437:1635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16246 comm="syz.9.4743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc55fcc819 code=0x7ffc0000 [ 235.728595][ T28] audit: type=1326 audit(1776170226.437:1636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16246 comm="syz.9.4743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc55fcc819 code=0x7ffc0000 [ 235.754364][ T28] audit: type=1326 audit(1776170226.437:1637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16246 comm="syz.9.4743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7efc55fcc819 code=0x7ffc0000 [ 235.828858][ T28] audit: type=1326 audit(1776170226.517:1638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16246 comm="syz.9.4743" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7efc55fcc819 code=0x7ffc0000 [ 236.779993][T16293] loop1: detected capacity change from 0 to 128 [ 236.814041][T16293] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4775'. [ 236.859434][T16299] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4767'. [ 236.880806][T16299] dummy0: entered promiscuous mode [ 236.897095][T16299] macsec0: entered promiscuous mode [ 236.903136][T16299] macsec0: entered allmulticast mode [ 236.908832][T16299] dummy0: entered allmulticast mode [ 236.919101][T16299] dummy0: left allmulticast mode [ 236.942024][T16299] dummy0: left promiscuous mode [ 237.145979][T16314] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4772'. [ 237.177125][T16316] loop7: detected capacity change from 0 to 128 [ 237.295563][T16320] loop7: detected capacity change from 0 to 2048 [ 237.598524][T16320] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 237.658113][T16320] ext4 filesystem being mounted at /668/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 237.865176][T16338] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.4777: bg 0: block 345: padding at end of block bitmap is not set [ 237.880333][T16340] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4784'. [ 237.892761][T16340] macsec1: entered promiscuous mode [ 237.898478][T16340] dummy0: entered promiscuous mode [ 237.903897][T16338] EXT4-fs (loop7): Remounting filesystem read-only [ 237.904109][T16340] macsec1: entered allmulticast mode [ 237.928323][ T1681] EXT4-fs warning (device loop7): ext4_convert_unwritten_extents:5066: inode #15: block 1: len 15: ext4_ext_map_blocks returned -30 [ 237.948065][T16340] dummy0: entered allmulticast mode [ 237.985339][ T28] audit: type=1326 audit(1776170228.917:1639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16343 comm="syz.1.4795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7fa3ec819 code=0x7ffc0000 [ 238.009340][T16340] dummy0: left allmulticast mode [ 238.017214][T16340] dummy0: left promiscuous mode [ 238.131027][T16348] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4786'. [ 238.141940][T16348] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4786'. [ 238.154933][T16350] loop9: detected capacity change from 0 to 512 [ 238.232073][ T7022] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 238.294568][T16350] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 238.311154][T16350] ext4 filesystem being mounted at /445/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 238.361681][ T9322] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 238.438722][T16372] loop1: detected capacity change from 0 to 1024 [ 238.450739][T16372] EXT4-fs: Ignoring removed bh option [ 238.540090][T16372] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 238.651155][T12760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 238.815651][T16388] xt_connbytes: Forcing CT accounting to be enabled [ 238.839866][T16392] netlink: 'syz.5.4805': attribute type 6 has an invalid length. [ 238.884497][T16395] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4807'. [ 238.958962][T16401] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4809'. [ 238.969817][T16401] netlink: 'syz.5.4809': attribute type 30 has an invalid length. [ 238.985082][ T49] netdevsim netdevsim5 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 239.018532][ T49] netdevsim netdevsim5 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 239.027289][ T49] netdevsim netdevsim5 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 239.068921][ T49] netdevsim netdevsim5 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 239.314922][T16420] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 239.474902][T16435] netlink: 'syz.5.4825': attribute type 13 has an invalid length. [ 239.489179][T16435] netlink: 24859 bytes leftover after parsing attributes in process `syz.5.4825'. [ 239.509835][T16437] loop2: detected capacity change from 0 to 512 [ 239.560437][T16437] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 239.573314][T16437] ext4 filesystem being mounted at /319/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 239.622734][T11624] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 239.704985][T16461] pim6reg: entered allmulticast mode [ 239.715542][T16461] pim6reg: left allmulticast mode [ 240.587553][ T6634] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 240.651943][T16570] loop7: detected capacity change from 0 to 256 [ 240.724549][T16573] loop1: detected capacity change from 0 to 1024 [ 240.735944][T16570] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 240.782008][T16573] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback. [ 240.804110][T16576] FAT-fs (loop7): error, corrupted file size (i_pos 196, 16779008) [ 240.815189][T16576] FAT-fs (loop7): Filesystem has been set read-only [ 240.821897][T16576] FAT-fs (loop7): error, corrupted file size (i_pos 196, 16779008) [ 240.832189][T16573] ext4 filesystem being mounted at /297/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 240.846153][T16573] EXT4-fs error (device loop1): ext4_map_blocks:833: inode #15: comm syz.1.4840: lblock 0 mapped to illegal pblock 0 (length 5) [ 240.862985][T16573] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 5 with error 117 [ 240.881911][T16573] EXT4-fs (loop1): This should not happen!! Data will be lost [ 240.881911][T16573] [ 240.912142][T16582] loop2: detected capacity change from 0 to 512 [ 240.942879][T16582] EXT4-fs: Ignoring removed mblk_io_submit option [ 240.961759][T12760] EXT4-fs warning (device loop1): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost [ 240.999645][T16582] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #16: comm syz.2.4842: invalid indirect mapped block 4294967295 (level 0) [ 241.017289][T12760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 241.026517][T16582] loop2: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 241.027970][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 241.043721][ C0] EXT4-fs (loop2): initial error at time 1776702711: ext4_free_branches:1023: inode 16 [ 241.046992][T16586] netlink: 'syz.7.4844': attribute type 2 has an invalid length. [ 241.053464][ C0] EXT4-fs (loop2): last error at time 1776702711: ext4_free_branches:1023: inode 16 [ 241.054101][T16582] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #16: comm syz.2.4842: invalid indirect mapped block 4294967295 (level 1) [ 241.080372][T16586] __nla_validate_parse: 3 callbacks suppressed [ 241.080420][T16586] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4844'. [ 241.101053][T16582] loop2: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 241.106972][T16582] EXT4-fs (loop2): 1 orphan inode deleted [ 241.138180][T16582] EXT4-fs (loop2): 1 truncate cleaned up [ 241.147780][T16582] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 241.231995][T11624] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 241.381004][T16606] loop1: detected capacity change from 0 to 512 [ 241.399329][T16600] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 241.658231][T16622] EXT4-fs error (device loop7): ext4_orphan_get:1397: inode #15: comm syz.7.4859: inode has both inline data and extents flags [ 241.677255][T16622] loop7: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 241.686474][T16622] EXT4-fs error (device loop7): ext4_orphan_get:1402: comm syz.7.4859: couldn't read orphan inode 15 (err -117) [ 241.695852][ C1] EXT4-fs (loop7): error count since last fsck: 1 [ 241.695885][ C1] EXT4-fs (loop7): initial error at time 1776702712: ext4_orphan_get:1397: inode 15 [ 241.695921][ C1] EXT4-fs (loop7): last error at time 1776702712: ext4_orphan_get:1397: inode 15 [ 241.733079][T16622] loop7: lost filesystem error report for type 5 error -117 [ 241.753628][T16622] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 241.846825][ T7022] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 242.003366][T16559] Bluetooth: hci0: Frame reassembly failed (-84) [ 242.066939][ T28] kauditd_printk_skb: 28 callbacks suppressed [ 242.067032][ T28] audit: type=1400 audit(1776702712.938:1668): avc: denied { mount } for pid=16644 comm="syz.5.4867" name="/" dev="selinuxfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=filesystem permissive=1 [ 242.550688][T16661] set_capacity_and_notify: 2 callbacks suppressed [ 242.550706][T16661] loop9: detected capacity change from 0 to 128 [ 243.485037][T16701] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 243.526432][T16705] team0 (unregistering): Port device team_slave_0 removed [ 243.537385][T16705] team0 (unregistering): Port device team_slave_1 removed [ 243.604550][T16711] loop1: detected capacity change from 0 to 512 [ 243.611798][T16711] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 243.622798][T16711] EXT4-fs (loop1): 1 truncate cleaned up [ 243.629484][T16711] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 243.657294][T12760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 243.699965][T16716] netlink: 830 bytes leftover after parsing attributes in process `syz.1.4895'. [ 243.764501][T16722] loop1: detected capacity change from 0 to 256 [ 243.964093][T16732] loop1: detected capacity change from 0 to 512 [ 243.982824][T16732] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 244.089242][T16738] loop7: detected capacity change from 0 to 128 [ 244.100224][T12760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 244.102241][T16738] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002] [ 244.118530][T16738] System zones: 1-3, 19-19, 35-36 [ 244.123763][ T6634] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 244.132312][T16738] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 244.149461][T16738] ext4 filesystem being mounted at /684/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 244.208936][T16744] loop1: detected capacity change from 0 to 128 [ 244.220618][T16743] loop2: detected capacity change from 0 to 1024 [ 244.228107][T16738] EXT4-fs warning (device loop7): ext4_group_add:1735: No reserved GDT blocks, can't resize [ 244.239258][T16743] EXT4-fs: Ignoring removed bh option [ 244.278301][T16743] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 244.308876][ T7022] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 244.354469][T11624] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 244.417889][T16750] loop7: detected capacity change from 0 to 512 [ 244.711180][T16781] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=58 sclass=netlink_audit_socket pid=16781 comm=syz.7.4925 [ 245.793143][T16776] geneve2: left promiscuous mode [ 245.952406][T13480] netdevsim netdevsim5 eth0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 245.961750][T13480] netdevsim netdevsim5 eth0: unset [1, 0] type 2 family 0 port 256 - 0 [ 245.987601][T13480] netdevsim netdevsim5 eth0: unset [1, 1] type 2 family 0 port 6081 - 0 [ 246.012083][T16814] pim6reg: entered allmulticast mode [ 246.035924][T16815] syzkaller1: entered allmulticast mode [ 246.042295][T13480] netdevsim netdevsim5 eth1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 246.051191][T13480] netdevsim netdevsim5 eth1: unset [1, 0] type 2 family 0 port 256 - 0 [ 246.061001][T13480] netdevsim netdevsim5 eth1: unset [1, 1] type 2 family 0 port 6081 - 0 [ 246.073341][T13480] netdevsim netdevsim5 eth2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 246.093568][T13480] netdevsim netdevsim5 eth2: unset [1, 0] type 2 family 0 port 256 - 0 [ 246.102927][T13480] netdevsim netdevsim5 eth2: unset [1, 1] type 2 family 0 port 6081 - 0 [ 246.120575][T13480] netdevsim netdevsim5 eth3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 246.141608][T13480] netdevsim netdevsim5 eth3: unset [1, 0] type 2 family 0 port 256 - 0 [ 246.150569][T13480] netdevsim netdevsim5 eth3: unset [1, 1] type 2 family 0 port 6081 - 0 [ 246.188139][T16839] netlink: 256 bytes leftover after parsing attributes in process `syz.1.4939'. [ 246.212497][ T28] audit: type=1400 audit(1776702716.965:1669): avc: denied { listen } for pid=16835 comm="syz.7.4938" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 246.257322][T16839] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4939'. [ 246.264229][T16843] vhci_hcd vhci_hcd.0: pdev(9) rhport(0) sockfd(4) [ 246.273136][T16843] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 246.292922][T16843] vhci_hcd vhci_hcd.0: Device attached [ 246.298863][T16839] netlink: 256 bytes leftover after parsing attributes in process `syz.1.4939'. [ 246.308380][T16839] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4939'. [ 246.317760][ T28] audit: type=1400 audit(1776702717.082:1670): avc: denied { create } for pid=16846 comm="syz.7.4944" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 246.376706][ T28] audit: type=1400 audit(1776702717.111:1671): avc: denied { connect } for pid=16846 comm="syz.7.4944" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 246.452711][T16861] netlink: 28 bytes leftover after parsing attributes in process `syz.7.4950'. [ 246.468182][ T3406] vhci_hcd vhci_hcd.9: vhci_device speed not set [ 246.497245][T16867] netlink: 16 bytes leftover after parsing attributes in process `syz.7.4953'. [ 246.529472][ T3406] usb 19-1: new full-speed USB device number 2 using vhci_hcd [ 246.562447][T16875] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 246.596789][ T28] audit: type=1400 audit(1776702717.356:1672): avc: denied { setopt } for pid=16876 comm="syz.2.4958" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 246.713994][T16887] syzkaller1: entered promiscuous mode [ 246.728826][T16887] syzkaller1: entered allmulticast mode [ 246.885817][T16844] vhci_hcd: connection reset by peer [ 246.893389][T16550] vhci_hcd vhci_hcd.9: stop threads [ 246.903637][T16894] netlink: 7 bytes leftover after parsing attributes in process `syz.7.4965'. [ 246.907752][T16550] vhci_hcd vhci_hcd.9: release socket [ 246.927750][T16550] vhci_hcd vhci_hcd.9: disconnect device [ 247.010587][T16906] loop2: detected capacity change from 0 to 128 [ 247.030162][T16906] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x61417272 (sector = 1) [ 247.035189][T16900] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 247.222059][T16921] loop9: detected capacity change from 0 to 4096 [ 247.250629][T16921] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 247.293734][T16929] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 247.311767][T16929] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 247.342024][T16929] FAT-fs (loop2): Filesystem has been set read-only [ 247.349448][T16929] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 247.358838][T16929] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 247.367878][T16929] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 247.377001][T16929] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 247.386556][T16929] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 247.396657][ T9322] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 247.422899][T16929] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 247.443655][T16929] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 247.474549][T16929] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 247.525784][T16929] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 1046) [ 247.693586][T16954] set_capacity_and_notify: 2 callbacks suppressed [ 247.693607][T16954] loop1: detected capacity change from 0 to 2048 [ 247.725749][T16954] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 247.816232][T12760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 247.919703][T16965] loop1: detected capacity change from 0 to 2048 [ 248.048571][ T28] audit: type=1400 audit(1776702718.776:1673): avc: denied { kexec_image_load } for pid=16966 comm="syz.5.4997" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1 [ 248.048631][T16965] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 248.354188][T16975] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4999'. [ 248.427007][T16985] netlink: 116 bytes leftover after parsing attributes in process `syz.5.5004'. [ 248.490987][T12760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 248.572843][T16997] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5007'. [ 248.657859][T17012] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5016'. [ 248.671730][T17014] loop7: detected capacity change from 0 to 512 [ 248.688972][T17014] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode [ 248.709238][T17014] EXT4-fs (loop7): 1 truncate cleaned up [ 248.717396][T17014] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 248.753523][T17014] EXT4-fs (loop7): shut down requested (2) [ 248.788820][ T7022] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 249.051975][T17048] 0ªî{X¹¦: renamed from gretap0 [ 249.073959][T17048] 0ªî{X¹¦: entered allmulticast mode [ 249.083095][T17048] A link change request failed with some changes committed already. Interface 30ªî{X¹¦ may have been left with an inconsistent configuration, please check. [ 249.274863][T17083] netlink: 'syz.5.5049': attribute type 5 has an invalid length. [ 249.805207][T17144] loop9: detected capacity change from 0 to 512 [ 249.821602][T17144] EXT4-fs error (device loop9): ext4_validate_block_bitmap:432: comm syz.9.5074: bg 0: block 5: invalid block bitmap [ 249.834187][T17144] loop9: lost filesystem error report for type 5 error -117 [ 249.834356][T17144] EXT4-fs error (device loop9) in ext4_mb_clear_bb:6685: Corrupt filesystem [ 249.850743][ C0] EXT4-fs (loop9): error count since last fsck: 1 [ 249.850771][ C0] EXT4-fs (loop9): initial error at time 1776702720: ext4_validate_block_bitmap:432 [ 249.850803][ C0] EXT4-fs (loop9): last error at time 1776702720: ext4_validate_block_bitmap:432 [ 249.879469][T17144] loop9: lost filesystem error report for type 5 error -117 [ 249.879635][T17144] EXT4-fs error (device loop9): ext4_free_branches:1023: inode #11: comm syz.9.5074: invalid indirect mapped block 3 (level 2) [ 249.902173][T17144] loop9: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 249.902447][T17144] EXT4-fs (loop9): 1 orphan inode deleted [ 249.921087][T17144] EXT4-fs (loop9): 1 truncate cleaned up [ 249.927590][T17144] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 250.014755][T17159] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 250.075743][T17159] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 250.089627][ T9322] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 250.143296][T17167] bond0: ARP target 8.4.0.0 is already present [ 250.157150][T17167] bond0: option arp_ip_target: invalid value (1032) [ 250.202209][T17159] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 250.247333][ T28] audit: type=1400 audit(1776702720.936:1674): avc: denied { lock } for pid=17173 comm="syz.9.5089" path="socket:[46132]" dev="sockfs" ino=46132 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1 [ 250.286536][T17159] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 250.383702][T16559] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 250.407764][T16559] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 250.410070][ T28] audit: type=1400 audit(1776702721.094:1675): avc: denied { mounton } for pid=17179 comm="syz.9.5091" path="/proc/1118/task" dev="proc" ino=46150 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1 [ 250.448677][T16559] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 250.481449][T16559] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 250.550151][T17195] loop9: detected capacity change from 0 to 128 [ 250.584730][T17197] loop7: detected capacity change from 0 to 128 [ 250.677241][T17203] bio_check_eod: 8837 callbacks suppressed [ 250.677264][T17203] syz.7.5099: attempt to access beyond end of device [ 250.677264][T17203] loop7: rw=3, sector=145, nr_sectors = 7 limit=128 [ 250.701980][T17203] syz.7.5099: attempt to access beyond end of device [ 250.701980][T17203] loop7: rw=2051, sector=152, nr_sectors = 1 limit=128 [ 250.990772][T16548] kworker/u8:11: attempt to access beyond end of device [ 250.990772][T16548] loop7: rw=1, sector=153, nr_sectors = 8 limit=128 [ 251.021412][T16548] kworker/u8:11: attempt to access beyond end of device [ 251.021412][T16548] loop7: rw=1, sector=169, nr_sectors = 8 limit=128 [ 251.046689][T16548] kworker/u8:11: attempt to access beyond end of device [ 251.046689][T16548] loop7: rw=1, sector=185, nr_sectors = 8 limit=128 [ 251.060769][T16548] kworker/u8:11: attempt to access beyond end of device [ 251.060769][T16548] loop7: rw=1, sector=201, nr_sectors = 8 limit=128 [ 251.074710][T16548] kworker/u8:11: attempt to access beyond end of device [ 251.074710][T16548] loop7: rw=1, sector=217, nr_sectors = 8 limit=128 [ 251.088445][T16548] kworker/u8:11: attempt to access beyond end of device [ 251.088445][T16548] loop7: rw=1, sector=233, nr_sectors = 8 limit=128 [ 251.112261][T16548] kworker/u8:11: attempt to access beyond end of device [ 251.112261][T16548] loop7: rw=1, sector=249, nr_sectors = 8 limit=128 [ 251.132425][T16548] kworker/u8:11: attempt to access beyond end of device [ 251.132425][T16548] loop7: rw=1, sector=265, nr_sectors = 8 limit=128 [ 251.298315][T17237] debugfs: 'ttyS3' already exists in 'caif_serial' [ 251.628658][ T28] audit: type=1326 audit(1776702722.294:1676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17278 comm="syz.2.5130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e8f2c819 code=0x7ffc0000 [ 251.668102][ T28] audit: type=1326 audit(1776702722.294:1677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17278 comm="syz.2.5130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e8f2c819 code=0x7ffc0000 [ 251.726279][ T3406] usb 19-1: enqueue for inactive port 0 [ 251.731912][ T3406] usb 19-1: enqueue for inactive port 0 [ 251.751139][ T28] audit: type=1326 audit(1776702722.304:1678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17278 comm="syz.2.5130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e8f2c819 code=0x7ffc0000 [ 251.836244][ T3406] vhci_hcd vhci_hcd.9: vhci_device speed not set [ 251.839929][T17301] loop1: detected capacity change from 0 to 128 [ 251.861762][ T28] audit: type=1326 audit(1776702722.304:1679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17278 comm="syz.2.5130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e8f2c819 code=0x7ffc0000 [ 251.913958][T17301] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002] [ 251.913991][T17301] System zones: 1-3, 19-19, 35-36 [ 251.922618][T17301] ext4 filesystem being mounted at /346/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 252.016161][ T28] audit: type=1326 audit(1776702722.333:1680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17278 comm="syz.2.5130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f14e8f2c819 code=0x7ffc0000 [ 252.039806][ T28] audit: type=1326 audit(1776702722.333:1681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17278 comm="syz.2.5130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e8f2c819 code=0x7ffc0000 [ 252.063692][ T28] audit: type=1326 audit(1776702722.333:1682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17278 comm="syz.2.5130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e8f2c819 code=0x7ffc0000 [ 252.131343][T17301] EXT4-fs warning (device loop1): verify_group_input:137: Cannot add at group 912879653 (only 1 groups) [ 252.292936][T17329] loop2: detected capacity change from 0 to 1024 [ 252.352239][T17329] ext4 filesystem being mounted at /372/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 252.377612][T16559] EXT4-fs error (device loop2): ext4_map_blocks:833: inode #15: comm kworker/u8:14: lblock 0 mapped to illegal pblock 0 (length 1) [ 252.429891][T16559] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 252.494835][T16559] EXT4-fs (loop2): This should not happen!! Data will be lost [ 252.494835][T16559] [ 252.545654][T11624] EXT4-fs warning (device loop2): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost [ 252.864161][T17371] loop2: detected capacity change from 0 to 512 [ 252.979289][T17379] loop7: detected capacity change from 0 to 4096 [ 253.112040][T17392] tipc: Started in network mode [ 253.124253][T17392] tipc: Node identity ac14140f, cluster identity 4711 [ 253.141371][T17392] tipc: Enabled bearer , priority 10 [ 253.209248][T17403] loop7: detected capacity change from 0 to 512 [ 253.323672][T17414] loop7: detected capacity change from 0 to 1024 [ 253.356686][T17412] loop1: detected capacity change from 0 to 4096 [ 253.360912][T17414] ext4 filesystem being mounted at /740/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 253.412565][T16550] EXT4-fs error (device loop7): ext4_map_blocks:833: inode #15: block 4: comm kworker/u8:12: lblock 4 mapped to illegal pblock 4 (length 2) [ 253.428179][T16550] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 2 with error 117 [ 253.440793][T16550] EXT4-fs (loop7): This should not happen!! Data will be lost [ 253.440793][T16550] [ 253.452917][T16550] EXT4-fs error (device loop7): ext4_map_blocks:833: inode #15: block 8: comm kworker/u8:12: lblock 8 mapped to illegal pblock 8 (length 4) [ 253.475714][T16550] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 4 with error 117 [ 253.498941][T16550] EXT4-fs (loop7): This should not happen!! Data will be lost [ 253.498941][T16550] [ 253.521354][ T7022] EXT4-fs warning (device loop7): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost [ 253.654115][T17438] loop1: detected capacity change from 0 to 128 [ 253.671626][T17438] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 253.681138][T17436] loop9: detected capacity change from 0 to 2048 [ 253.708329][T17438] ext2 filesystem being mounted at /352/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 253.834734][T17436] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.5188: bg 0: block 234: padding at end of block bitmap is not set [ 253.849466][ T28] kauditd_printk_skb: 19 callbacks suppressed [ 253.849483][ T28] audit: type=1400 audit(1776702724.472:1702): avc: denied { map } for pid=17435 comm="syz.9.5188" path="/520/file0/hugetlb.2MB.usage_in_bytes" dev="loop9" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 253.913544][T17436] EXT4-fs (loop9): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 542 with error 28 [ 253.948608][T17436] EXT4-fs (loop9): This should not happen!! Data will be lost [ 253.948608][T17436] [ 253.971334][T17436] EXT4-fs (loop9): Total free blocks count 0 [ 253.987597][T17436] EXT4-fs (loop9): Free/Dirty block details [ 254.015192][T17436] EXT4-fs (loop9): free_blocks=0 [ 254.025383][T17436] EXT4-fs (loop9): dirty_blocks=544 [ 254.043066][T17436] EXT4-fs (loop9): Block reservation details [ 254.068193][T17436] EXT4-fs (loop9): i_reserved_data_blocks=34 [ 254.122546][ T9322] EXT4-fs warning (device loop9): ext4_evict_inode:195: inode #18: comm syz-executor: data will be lost [ 254.270930][ T3406] tipc: Node number set to 2886997007 [ 254.293081][T17456] loop9: detected capacity change from 0 to 8192 [ 254.327825][T17466] hugetlbfs: syz.2.5199 (17466): Using mlock ulimits for SHM_HUGETLB is obsolete [ 254.339116][T17456] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 254.518107][T17482] loop1: detected capacity change from 0 to 1024 [ 254.548613][T17487] loop2: detected capacity change from 0 to 256 [ 254.559677][T17482] EXT4-fs mount: 14 callbacks suppressed [ 254.559693][T17482] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 254.584995][T17487] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 254.636934][T12760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 254.656168][T17495] FAT-fs (loop2): error, corrupted file size (i_pos 196, 16779264) [ 254.665011][T17495] FAT-fs (loop2): Filesystem has been set read-only [ 254.672261][T17495] FAT-fs (loop2): error, corrupted file size (i_pos 196, 16779008) [ 254.680913][T17495] FAT-fs (loop2): error, corrupted file size (i_pos 196, 16779008) [ 254.690217][T17495] FAT-fs (loop2): error, corrupted file size (i_pos 196, 16779008) [ 254.698353][T17495] FAT-fs (loop2): error, corrupted file size (i_pos 196, 16779008) [ 254.754372][T17500] __nla_validate_parse: 6 callbacks suppressed [ 254.754388][T17500] netlink: 332 bytes leftover after parsing attributes in process `syz.7.5212'. [ 254.779580][T17500] netlink: 'syz.7.5212': attribute type 9 has an invalid length. [ 254.787704][T17500] netlink: 108 bytes leftover after parsing attributes in process `syz.7.5212'. [ 254.797117][T17500] netlink: 32 bytes leftover after parsing attributes in process `syz.7.5212'. [ 254.951177][T17514] EXT4-fs: Ignoring removed bh option [ 254.961108][T17514] EXT4-fs (loop7): stripe (14) is not aligned with cluster size (16), stripe is disabled [ 254.997219][T17514] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 255.092544][T17522] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 255.176134][T11624] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 255.198992][ T7022] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 255.456083][ T28] audit: type=1400 audit(1776702726.061:1703): avc: denied { audit_write } for pid=17549 comm="syz.2.5234" capability=29 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 255.489265][ T28] audit: type=1107 audit(1776702726.061:1704): pid=17549 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='' [ 255.605890][T17564] netlink: 36 bytes leftover after parsing attributes in process `syz.9.5241'. [ 255.769244][T17575] EXT4-fs error (device loop9): ext4_orphan_get:1397: inode #15: comm syz.9.5246: inode has both inline data and extents flags [ 255.781289][T17572] dummy0: entered promiscuous mode [ 255.791402][T17575] loop9: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 255.791611][T17575] EXT4-fs error (device loop9): ext4_orphan_get:1402: comm syz.9.5246: couldn't read orphan inode 15 (err -117) [ 255.800954][ C1] EXT4-fs (loop9): error count since last fsck: 1 [ 255.800997][ C1] EXT4-fs (loop9): initial error at time 1776702726: ext4_orphan_get:1397: inode 15 [ 255.801027][ C1] EXT4-fs (loop9): last error at time 1776702726: ext4_orphan_get:1397: inode 15 [ 255.865214][T17575] loop9: lost filesystem error report for type 5 error -117 [ 255.869141][T17575] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 255.891127][T17572] dummy0: left promiscuous mode [ 256.003259][ T9322] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 256.183345][T17609] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 256.225374][T17611] netlink: 'syz.1.5261': attribute type 1 has an invalid length. [ 256.265310][T17609] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 256.293486][T17609] ext4 filesystem being mounted at /530/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 256.337496][T17619] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5263'. [ 256.432196][ T9322] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 256.538012][ T28] audit: type=1400 audit(1776702727.138:1705): avc: denied { create } for pid=17632 comm="syz.1.5270" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1 [ 256.560955][T17631] EXT4-fs: Ignoring removed bh option [ 256.582630][T17631] EXT4-fs: Ignoring removed mblk_io_submit option [ 256.604893][ T28] audit: type=1400 audit(1776702727.168:1706): avc: denied { ioctl } for pid=17632 comm="syz.1.5270" path="socket:[46805]" dev="sockfs" ino=46805 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=mctp_socket permissive=1 [ 256.642597][T17631] EXT4-fs error (device loop7): ext4_iget_extra_inode:5042: inode #15: comm syz.7.5268: corrupted in-inode xattr: e_value size too large [ 256.660338][T17631] loop7: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 256.660505][T17631] EXT4-fs error (device loop7): ext4_orphan_get:1402: comm syz.7.5268: couldn't read orphan inode 15 (err -117) [ 256.681847][ C0] EXT4-fs (loop7): error count since last fsck: 1 [ 256.681870][ C0] EXT4-fs (loop7): initial error at time 1776702727: ext4_iget_extra_inode:5042: inode 15 [ 256.681920][ C0] EXT4-fs (loop7): last error at time 1776702727: ext4_iget_extra_inode:5042: inode 15 [ 256.740137][T17631] loop7: lost filesystem error report for type 5 error -117 [ 256.741057][T17631] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 256.778615][T17631] EXT4-fs (loop7): shut down requested (1) [ 256.824188][ T7022] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 256.922807][T17657] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5289'. [ 257.606044][T17686] all (unregistering): Released all slaves [ 257.727745][T17698] EXT4-fs error (device loop2): ext4_iget_extra_inode:5042: inode #15: comm syz.2.5297: corrupted in-inode xattr: invalid ea_ino [ 257.741615][T17698] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 257.741795][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 257.752040][T17692] erspan0: entered promiscuous mode [ 257.757656][ C0] EXT4-fs (loop2): initial error at time 1776702728: ext4_iget_extra_inode:5042: inode 15 [ 257.767462][T17698] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.5297: couldn't read orphan inode 15 (err -117) [ 257.773154][ C0] EXT4-fs (loop2): last error at time 1776702728: ext4_iget_extra_inode:5042: inode 15 [ 257.796880][T17698] loop2: lost filesystem error report for type 5 error -117 [ 257.797402][T17698] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 257.804919][T17692] netlink: 8 bytes leftover after parsing attributes in process `syz.9.5295'. [ 257.881307][T11624] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 257.916018][T17705] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 257.948133][T17705] ext4 filesystem being mounted at /544/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 257.980379][T17705] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.5300: bg 0: block 345: padding at end of block bitmap is not set [ 257.998304][T17705] EXT4-fs (loop9): Remounting filesystem read-only [ 258.005201][T16559] EXT4-fs warning (device loop9): ext4_convert_unwritten_extents:5066: inode #15: block 1: len 15: ext4_ext_map_blocks returned -30 [ 258.045114][T17715] set_capacity_and_notify: 10 callbacks suppressed [ 258.045134][T17715] loop1: detected capacity change from 0 to 512 [ 258.065206][ T9322] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 258.101810][T17715] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 258.141814][ T28] audit: type=1400 audit(1776702728.731:1707): avc: denied { listen } for pid=17717 comm="syz.2.5305" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 258.176618][T17726] loop9: detected capacity change from 0 to 512 [ 258.191913][T17715] EXT4-fs (loop1): resizing filesystem from 64 to 27 blocks [ 258.230585][T17715] EXT4-fs warning (device loop1): ext4_resize_fs:2041: can't shrink FS - resize aborted [ 258.315400][T12760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 258.376610][T16550] Bluetooth: hci0: Frame reassembly failed (-84) [ 258.632584][ T3406] IPVS: starting estimator thread 0... [ 258.639549][T17761] tipc: Enabling of bearer rejected, already enabled [ 258.723292][T17773] netlink: 538 bytes leftover after parsing attributes in process `syz.1.5328'. [ 258.732774][T17762] IPVS: using max 2352 ests per chain, 117600 per kthread [ 258.740138][T17773] netlink: 'syz.1.5328': attribute type 1 has an invalid length. [ 259.134238][T17784] syzkaller0: entered promiscuous mode [ 259.181162][T17784] syzkaller0: entered allmulticast mode [ 259.406740][T17795] loop7: detected capacity change from 0 to 2048 [ 259.413304][ C0] IPVS: ovf: UDP 224.0.0.1:0 - no destination available [ 259.449199][T17795] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 259.477320][T17801] loop1: detected capacity change from 0 to 2048 [ 259.478762][T17795] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters [ 259.559171][T17801] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 259.582089][ T7022] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 259.609814][T17801] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters [ 259.635264][T17801] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 34 with error 28 [ 259.637462][ T28] audit: type=1400 audit(1776702730.206:1708): avc: denied { bind } for pid=17808 comm="syz.2.5344" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 259.672310][T17801] EXT4-fs (loop1): This should not happen!! Data will be lost [ 259.672310][T17801] [ 259.682288][T17801] EXT4-fs (loop1): Total free blocks count 0 [ 259.688357][T17801] EXT4-fs (loop1): Free/Dirty block details [ 259.694389][T17801] EXT4-fs (loop1): free_blocks=66060288 [ 259.700006][T17801] EXT4-fs (loop1): dirty_blocks=48 [ 259.705686][T17801] EXT4-fs (loop1): Block reservation details [ 259.711926][T17801] EXT4-fs (loop1): i_reserved_data_blocks=3 [ 259.766342][T12760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 259.802525][T17822] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5349'. [ 259.816225][T17822] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5349'. [ 260.249727][T17850] loop1: detected capacity change from 0 to 8192 [ 260.270122][T17850] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 260.411543][T17860] loop7: detected capacity change from 0 to 736 [ 260.421385][T17862] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5364'. [ 260.458243][ C0] IPVS: ovf: UDP 224.0.0.1:0 - no destination available [ 260.468188][ T6634] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 260.468324][ T3842] Bluetooth: hci0: command 0x1003 tx timeout [ 260.549388][T17872] netlink: 'syz.7.5372': attribute type 5 has an invalid length. [ 260.609059][T17884] loop1: detected capacity change from 0 to 512 [ 260.621138][T17883] loop9: detected capacity change from 0 to 512 [ 260.647289][T17883] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 260.660169][T17888] loop7: detected capacity change from 0 to 512 [ 260.673581][T17883] ext4 filesystem being mounted at /549/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 260.685549][T17884] EXT4-fs (loop1): 1 truncate cleaned up [ 260.693697][T17888] EXT4-fs error (device loop7): ext4_orphan_get:1397: inode #15: comm syz.7.5378: inode has both inline data and extents flags [ 260.693918][T17884] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 260.723820][T17888] loop7: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 260.730536][ C1] EXT4-fs (loop7): error count since last fsck: 1 [ 260.746237][ C1] EXT4-fs (loop7): initial error at time 1776702731: ext4_orphan_get:1397: inode 15 [ 260.755693][ C1] EXT4-fs (loop7): last error at time 1776702731: ext4_orphan_get:1397: inode 15 [ 260.765785][T17888] EXT4-fs error (device loop7): ext4_orphan_get:1402: comm syz.7.5378: couldn't read orphan inode 15 (err -117) [ 260.788580][T17888] loop7: lost filesystem error report for type 5 error -117 [ 260.795956][T17888] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 260.824224][ T9322] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 260.846516][T12760] EXT4-fs error (device loop1): ext4_lookup:1785: inode #14: comm syz-executor: invalid fast symlink length 39 [ 260.860274][T12760] EXT4-fs error (device loop1): ext4_lookup:1785: inode #14: comm syz-executor: invalid fast symlink length 39 [ 260.862963][ T7022] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 260.922225][T17900] bridge_slave_0: entered promiscuous mode [ 260.938044][T17900] bridge_slave_0: left promiscuous mode [ 260.990766][T15176] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 261.052234][T17918] loop7: detected capacity change from 0 to 512 [ 261.089142][T17918] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 261.114643][T17918] ext4 filesystem being mounted at /779/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 261.172572][T17918] syz.7.5400 (17918) used greatest stack depth: 8744 bytes left [ 261.276979][ T7022] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 261.508404][ C0] IPVS: ovf: UDP 224.0.0.1:0 - no destination available [ 261.644539][T16550] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 261.676230][T17969] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5414'. [ 261.697017][T16550] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 261.711548][T17969] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5414'. [ 261.732869][T16550] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 261.781946][T16550] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 261.843748][ T28] audit: type=1326 audit(1776702732.397:1709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17984 comm="syz.5.5420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f8c83c819 code=0x7ffc0000 [ 261.882439][T17948] chnl_net:caif_netlink_parms(): no params data found [ 261.902903][ T28] audit: type=1326 audit(1776702732.427:1710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17984 comm="syz.5.5420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f8c83c819 code=0x7ffc0000 [ 261.928562][ T28] audit: type=1326 audit(1776702732.427:1711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17984 comm="syz.5.5420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f8c83c819 code=0x7ffc0000 [ 261.980841][ T28] audit: type=1326 audit(1776702732.427:1712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17984 comm="syz.5.5420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f8c83c819 code=0x7ffc0000 [ 262.031284][ T28] audit: type=1326 audit(1776702732.427:1713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17984 comm="syz.5.5420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=103 compat=0 ip=0x7f8f8c83c819 code=0x7ffc0000 [ 262.056060][ T28] audit: type=1326 audit(1776702732.427:1714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17984 comm="syz.5.5420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f8c83c819 code=0x7ffc0000 [ 262.084488][ T28] audit: type=1326 audit(1776702732.476:1715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17984 comm="syz.5.5420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f8f8c7fd04e code=0x7ffc0000 [ 262.111934][ T28] audit: type=1326 audit(1776702732.476:1716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17984 comm="syz.5.5420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f8f8c7fd04e code=0x7ffc0000 [ 262.136044][ T28] audit: type=1326 audit(1776702732.476:1717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17984 comm="syz.5.5420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f8f8c7fd04e code=0x7ffc0000 [ 262.156975][T17989] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 262.247585][T17948] bridge0: port 1(bridge_slave_0) entered blocking state [ 262.263510][T17948] bridge0: port 1(bridge_slave_0) entered disabled state [ 262.280291][T17989] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.5422: bg 0: block 234: padding at end of block bitmap is not set [ 262.295319][T17948] bridge_slave_0: entered allmulticast mode [ 262.302357][T17948] bridge_slave_0: entered promiscuous mode [ 262.309615][T16550] bridge_slave_1: left allmulticast mode [ 262.316019][T16550] bridge_slave_1: left promiscuous mode [ 262.322110][T16550] bridge0: port 2(bridge_slave_1) entered disabled state [ 262.335295][T17989] EXT4-fs (loop7): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 412 with error 28 [ 262.363890][T17989] EXT4-fs (loop7): This should not happen!! Data will be lost [ 262.363890][T17989] [ 262.376764][T17989] EXT4-fs (loop7): Total free blocks count 0 [ 262.383350][T16550] bridge_slave_0: left allmulticast mode [ 262.385246][T17989] EXT4-fs (loop7): Free/Dirty block details [ 262.390543][T16550] bridge_slave_0: left promiscuous mode [ 262.401034][T17989] EXT4-fs (loop7): free_blocks=0 [ 262.410722][T16550] bridge0: port 1(bridge_slave_0) entered disabled state [ 262.415163][T17989] EXT4-fs (loop7): dirty_blocks=416 [ 262.426650][T17989] EXT4-fs (loop7): Block reservation details [ 262.446268][T17989] EXT4-fs (loop7): i_reserved_data_blocks=26 [ 262.555592][ C0] IPVS: ovf: UDP 224.0.0.1:0 - no destination available [ 262.586835][T16550] erspan0 (unregistering): left promiscuous mode [ 262.619982][ T7022] EXT4-fs warning (device loop7): ext4_evict_inode:195: inode #18: comm syz-executor: data will be lost [ 262.632126][T16550] gretap0 (unregistering): left promiscuous mode [ 262.645104][ T7022] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 262.718957][T16550] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 262.747706][T16550] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 262.765485][T16550] bond0 (unregistering): Released all slaves [ 262.784540][T16550] bond1 (unregistering): Released all slaves [ 262.816153][T17948] bridge0: port 2(bridge_slave_1) entered blocking state [ 262.832267][T17948] bridge0: port 2(bridge_slave_1) entered disabled state [ 262.848482][T17948] bridge_slave_1: entered allmulticast mode [ 262.869862][T17948] bridge_slave_1: entered promiscuous mode [ 262.893304][T16550] tipc: Disabling bearer [ 262.903081][T16550] tipc: Left network mode [ 262.941476][T17948] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 262.968509][T16550] hsr_slave_0: left promiscuous mode [ 262.989030][T16550] hsr_slave_1: left promiscuous mode [ 262.995254][T16550] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 263.009699][T16550] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 263.031289][T16550] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 263.056603][T16550] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 263.065525][T18036] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 263.078205][T18036] ext4 filesystem being mounted at /424/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 263.083267][T18018] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 263.098926][T16550] veth1_macvtap: left allmulticast mode [ 263.104757][T16550] veth1_macvtap: left promiscuous mode [ 263.110831][T16550] veth0_macvtap: left promiscuous mode [ 263.116894][T16550] veth1_vlan: left promiscuous mode [ 263.122900][T16550] veth0_vlan: left promiscuous mode [ 263.125610][T18018] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 263.136798][T11624] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 263.341837][T18052] set_capacity_and_notify: 2 callbacks suppressed [ 263.341855][T18052] loop9: detected capacity change from 0 to 512 [ 263.358593][T17948] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 263.408887][T18052] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 263.412803][T17948] team0: Port device team_slave_0 added [ 263.428301][T17948] team0: Port device team_slave_1 added [ 263.440411][T18056] xt_hashlimit: size too large, truncated to 1048576 [ 263.456001][T18052] ext4 filesystem being mounted at /565/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 263.467839][T17948] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 263.475679][T17948] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 263.512067][T17948] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 263.528981][T17948] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 263.537698][T17948] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 263.572426][T17948] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 263.601972][ T9322] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 263.626245][T17948] hsr_slave_0: entered promiscuous mode [ 263.632448][T17948] hsr_slave_1: entered promiscuous mode [ 263.656259][T17948] debugfs: 'hsr0' already exists in 'hsr' [ 263.662221][T17948] Cannot create hsr debugfs directory [ 263.706046][T16550] IPVS: stop unused estimator thread 0... [ 264.179560][T17948] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 264.209477][T17948] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 264.363232][T17948] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 264.375691][T17948] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 264.583923][T17948] 8021q: adding VLAN 0 to HW filter on device bond0 [ 264.631012][T17948] 8021q: adding VLAN 0 to HW filter on device team0 [ 264.659797][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 264.666994][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 264.712976][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 264.720169][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 264.851781][T17948] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 265.019475][T18135] chnl_net:caif_netlink_parms(): no params data found [ 265.081166][T18199] loop2: detected capacity change from 0 to 256 [ 265.131833][T17948] veth0_vlan: entered promiscuous mode [ 265.167874][T17948] veth1_vlan: entered promiscuous mode [ 265.225716][T18135] bridge0: port 1(bridge_slave_0) entered blocking state [ 265.232957][T18135] bridge0: port 1(bridge_slave_0) entered disabled state [ 265.269386][T18135] bridge_slave_0: entered allmulticast mode [ 265.290229][T18135] bridge_slave_0: entered promiscuous mode [ 265.316668][T18135] bridge0: port 2(bridge_slave_1) entered blocking state [ 265.323808][T18135] bridge0: port 2(bridge_slave_1) entered disabled state [ 265.348420][T18135] bridge_slave_1: entered allmulticast mode [ 265.355287][T18135] bridge_slave_1: entered promiscuous mode [ 265.378087][T18219] syzkaller1: entered promiscuous mode [ 265.385809][T18219] syzkaller1: entered allmulticast mode [ 265.419544][T17948] veth0_macvtap: entered promiscuous mode [ 265.431501][T17948] veth1_macvtap: entered promiscuous mode [ 265.471831][T18135] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 265.494587][T17948] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 265.510077][T18135] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 265.552447][T18235] loop2: detected capacity change from 0 to 2048 [ 265.558535][T17948] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 265.599882][T18135] team0: Port device team_slave_0 added [ 265.606583][T18135] team0: Port device team_slave_1 added [ 265.641692][T13480] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.658615][T18235] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 265.660461][T13480] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.680780][ T1681] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.716232][T18135] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 265.729501][T18135] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 265.756052][T18135] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 265.775341][ T1681] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.798870][T18235] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.5468: bg 0: block 234: padding at end of block bitmap is not set [ 265.814261][T18235] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 218 with error 28 [ 265.827722][T18135] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 265.835297][T18135] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 265.862895][T18235] EXT4-fs (loop2): This should not happen!! Data will be lost [ 265.862895][T18235] [ 265.873514][T18235] EXT4-fs (loop2): Total free blocks count 0 [ 265.884434][T18235] EXT4-fs (loop2): Free/Dirty block details [ 265.898051][T18135] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 265.911999][T18235] EXT4-fs (loop2): free_blocks=0 [ 265.917117][T18235] EXT4-fs (loop2): dirty_blocks=224 [ 265.928692][T18235] EXT4-fs (loop2): Block reservation details [ 265.955372][T18235] EXT4-fs (loop2): i_reserved_data_blocks=14 [ 265.999325][T18135] hsr_slave_0: entered promiscuous mode [ 266.010421][T18267] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5474'. [ 266.023688][T18261] loop0: detected capacity change from 0 to 8192 [ 266.040916][T18135] hsr_slave_1: entered promiscuous mode [ 266.046962][T18135] debugfs: 'hsr0' already exists in 'hsr' [ 266.072234][T18269] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5474'. [ 266.091223][T18135] Cannot create hsr debugfs directory [ 266.107223][T11624] EXT4-fs warning (device loop2): ext4_evict_inode:195: inode #18: comm syz-executor: data will be lost [ 266.141341][T11624] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 266.210598][T18278] netlink: 132 bytes leftover after parsing attributes in process `syz.2.5475'. [ 266.380899][ T28] kauditd_printk_skb: 96 callbacks suppressed [ 266.380918][ T28] audit: type=1400 audit(1776702736.895:1814): avc: denied { listen } for pid=18294 comm="syz.7.5480" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 266.597987][T18321] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5488'. [ 266.612571][T18135] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 266.637921][ T28] audit: type=1400 audit(1776702737.153:1815): avc: denied { mounton } for pid=18325 comm="syz.5.5489" path="/" dev="nullfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 266.643521][T18135] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 266.717000][T18330] netlink: 40 bytes leftover after parsing attributes in process `syz.0.5490'. [ 266.734514][T18330] netlink: 40 bytes leftover after parsing attributes in process `syz.0.5490'. [ 266.756171][T18135] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 266.769093][T18135] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 266.900069][T18349] tipc: Started in network mode [ 266.905452][T18349] tipc: Node identity ac14140f, cluster identity 4711 [ 266.912522][T18349] tipc: Enabled bearer , priority 10 [ 266.932404][T18135] 8021q: adding VLAN 0 to HW filter on device bond0 [ 266.956403][T18135] 8021q: adding VLAN 0 to HW filter on device team0 [ 266.982370][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 266.989882][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 267.018738][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 267.025943][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 267.219780][T18135] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 267.272434][T18391] netlink: 44 bytes leftover after parsing attributes in process `syz.7.5501'. [ 267.347035][ T28] audit: type=1400 audit(1776702737.859:1816): avc: denied { ioctl } for pid=18398 comm="syz.2.5502" path="socket:[51274]" dev="sockfs" ino=51274 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 267.372641][T18391] netlink: 44 bytes leftover after parsing attributes in process `syz.7.5501'. [ 267.570543][ T28] audit: type=1326 audit(1776702738.088:1817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18425 comm="syz.7.5514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f9ac7c819 code=0x7ffc0000 [ 267.609363][ T28] audit: type=1326 audit(1776702738.088:1818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18425 comm="syz.7.5514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f9ac7c819 code=0x7ffc0000 [ 267.644007][T18135] veth0_vlan: entered promiscuous mode [ 267.677351][ T28] audit: type=1326 audit(1776702738.088:1819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18425 comm="syz.7.5514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f9ac7c819 code=0x7ffc0000 [ 267.729065][T18135] veth1_vlan: entered promiscuous mode [ 267.739286][ T28] audit: type=1326 audit(1776702738.088:1820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18425 comm="syz.7.5514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f9ac7c819 code=0x7ffc0000 [ 267.774379][ T28] audit: type=1326 audit(1776702738.088:1821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18425 comm="syz.7.5514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=107 compat=0 ip=0x7f2f9ac7c819 code=0x7ffc0000 [ 267.802695][T18135] veth0_macvtap: entered promiscuous mode [ 267.810351][T18135] veth1_macvtap: entered promiscuous mode [ 267.824371][T18135] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 267.841029][T18135] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 267.848409][ T28] audit: type=1326 audit(1776702738.088:1822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18425 comm="syz.7.5514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f9ac7c819 code=0x7ffc0000 [ 267.887400][ T28] audit: type=1326 audit(1776702738.088:1823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18425 comm="syz.7.5514" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f9ac7c819 code=0x7ffc0000 [ 267.914287][ T3399] tipc: Node number set to 2886997007 [ 267.922079][ T36] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 267.932402][ T36] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 267.950036][T18443] loop2: detected capacity change from 0 to 128 [ 267.981344][ T36] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 268.013379][T18443] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 268.029537][ T36] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 268.040985][T18448] loop7: detected capacity change from 0 to 1024 [ 268.047801][T18443] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 268.047942][T18443] ext2 filesystem being mounted at /444/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 268.066687][T18448] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 268.135847][T11624] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 268.186903][ T7022] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 268.198864][T18463] netlink: 104 bytes leftover after parsing attributes in process `syz.2.5511'. [ 268.213680][T18463] netlink: 104 bytes leftover after parsing attributes in process `syz.2.5511'. [ 268.352823][T18478] loop0: detected capacity change from 0 to 512 [ 268.421792][T18478] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 268.482197][T18478] EXT4-fs (loop0): 1 truncate cleaned up [ 268.491968][T18478] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 268.628726][T17948] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 268.685686][T18506] loop4: detected capacity change from 0 to 4096 [ 268.750002][T18506] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 268.966957][T18135] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 269.027119][T18530] loop4: detected capacity change from 0 to 256 [ 269.315416][T18569] loop2: detected capacity change from 0 to 512 [ 269.353350][T18569] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 269.387840][T18569] EXT4-fs (loop2): 1 truncate cleaned up [ 269.402499][T18569] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 269.582557][T18595] loop0: detected capacity change from 0 to 512 [ 269.593730][T18595] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 269.608607][T18595] EXT4-fs (loop0): orphan cleanup on readonly fs [ 269.615767][T18595] EXT4-fs error (device loop0): ext4_quota_enable:7215: comm syz.0.5543: Bad quota inum: 393216, type: 0 [ 269.628323][T18595] loop0: lost filesystem error report for type 5 error -117 [ 269.628531][T18595] EXT4-fs warning (device loop0): ext4_enable_quotas:7263: Failed to enable quota tracking (type=0, err=-117, ino=393216). Please run e2fsck to fix. [ 269.636254][ C0] EXT4-fs (loop0): error count since last fsck: 1 [ 269.636293][ C0] EXT4-fs (loop0): initial error at time 1776702740: ext4_quota_enable:7215 [ 269.636314][ C0] EXT4-fs (loop0): last error at time 1776702740: ext4_quota_enable:7215 [ 269.676961][T18595] EXT4-fs (loop0): Cannot turn on quotas: error -117 [ 269.684537][T18595] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 269.699127][T18595] EXT4-fs error (device loop0): ext4_xattr_block_get:597: inode #16: comm syz.0.5543: corrupted xattr block 31: invalid header [ 269.715452][T18595] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=16 [ 269.725454][T18595] EXT4-fs error (device loop0): ext4_xattr_block_get:597: inode #16: comm syz.0.5543: corrupted xattr block 31: invalid header [ 269.733827][T11624] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 269.748481][T18595] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=16 [ 269.758069][T18595] EXT4-fs error (device loop0): ext4_get_link:106: inode #16: comm syz.0.5543: bad symlink. [ 269.768605][T18603] EXT4-fs error (device loop0): ext4_xattr_block_get:597: inode #16: comm syz.0.5543: corrupted xattr block 31: invalid header [ 269.801871][T18603] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=16 [ 269.814610][T18603] EXT4-fs error (device loop0): ext4_get_link:106: inode #16: comm syz.0.5543: bad symlink. [ 269.863571][T17948] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 269.895808][T18615] syzkaller1: entered promiscuous mode [ 269.938324][T18619] loop0: detected capacity change from 0 to 2048 [ 269.982842][T18619] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 270.016929][T18622] tipc: Started in network mode [ 270.036013][T18622] tipc: Node identity ac14140f, cluster identity 4711 [ 270.062243][T18622] tipc: Enabled bearer , priority 10 [ 270.192172][T18619] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5545: bg 0: block 234: padding at end of block bitmap is not set [ 270.219670][T18619] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1264 with error 28 [ 270.253821][T18619] EXT4-fs (loop0): This should not happen!! Data will be lost [ 270.253821][T18619] [ 270.303023][T18619] EXT4-fs (loop0): Total free blocks count 0 [ 270.319336][T18619] EXT4-fs (loop0): Free/Dirty block details [ 270.343100][T18619] EXT4-fs (loop0): free_blocks=0 [ 270.348114][T18619] EXT4-fs (loop0): dirty_blocks=1264 [ 270.363481][T18619] EXT4-fs (loop0): Block reservation details [ 270.369655][T18619] EXT4-fs (loop0): i_reserved_data_blocks=79 [ 270.650278][T17948] EXT4-fs warning (device loop0): ext4_evict_inode:195: inode #18: comm syz-executor: data will be lost [ 270.682280][T17948] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 270.875918][T18697] hsr0: entered promiscuous mode [ 270.886575][T18697] macsec1: entered promiscuous mode [ 271.108175][T16798] tipc: Node number set to 2886997007 [ 271.715211][T18753] loop7: detected capacity change from 0 to 2048 [ 271.857117][T18753] loop7: p2 p3 p7 [ 271.919031][ T3001] loop7: p2 p3 p7 [ 272.184573][ T3301] udevd[3301]: inotify_add_watch(7, /dev/loop7p7, 10) failed: No such file or directory [ 272.248988][T18768] __nla_validate_parse: 2 callbacks suppressed [ 272.249008][T18768] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5586'. [ 272.404400][ T4349] udevd[4349]: inotify_add_watch(7, /dev/loop7p7, 10) failed: No such file or directory [ 272.410401][ T5782] udevd[5782]: inotify_add_watch(7, /dev/loop7p2, 10) failed: No such file or directory [ 272.448360][ T3540] udevd[3540]: inotify_add_watch(7, /dev/loop7p7, 10) failed: No such file or directory [ 272.464044][ T5782] udevd[5782]: inotify_add_watch(7, /dev/loop7p2, 10) failed: No such file or directory [ 273.070880][T18834] program syz.7.5600 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 273.247003][T18848] program syz.7.5603 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 273.280293][T18848] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 274.176546][T18917] pim6reg: entered allmulticast mode [ 274.187249][T18917] pim6reg: left allmulticast mode [ 274.426284][T18942] loop2: detected capacity change from 0 to 2048 [ 274.451690][T18942] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 274.468747][T18942] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters [ 274.483881][T18942] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 34 with error 28 [ 274.496507][T18942] EXT4-fs (loop2): This should not happen!! Data will be lost [ 274.496507][T18942] [ 274.507369][T18942] EXT4-fs (loop2): Total free blocks count 0 [ 274.513684][T18942] EXT4-fs (loop2): Free/Dirty block details [ 274.519882][T18942] EXT4-fs (loop2): free_blocks=66060288 [ 274.525926][T18942] EXT4-fs (loop2): dirty_blocks=48 [ 274.531190][T18942] EXT4-fs (loop2): Block reservation details [ 274.537290][T18942] EXT4-fs (loop2): i_reserved_data_blocks=3 [ 274.561534][T18954] netlink: 538 bytes leftover after parsing attributes in process `syz.4.5638'. [ 274.571877][T18954] netlink: 'syz.4.5638': attribute type 1 has an invalid length. [ 274.581651][T11624] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 274.681332][T18965] netlink: 24 bytes leftover after parsing attributes in process `syz.7.5642'. [ 274.695420][T18968] loop2: detected capacity change from 0 to 512 [ 274.703441][T18968] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 274.729123][T18968] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #15: comm syz.2.5644: iget: bad i_size value: 38620345925642 [ 274.742502][T18968] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 274.742667][T18968] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.5644: couldn't read orphan inode 15 (err -117) [ 274.751907][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 274.751930][ C0] EXT4-fs (loop2): initial error at time 1776702745: ext4_orphan_get:1397: inode 15 [ 274.751991][ C0] EXT4-fs (loop2): last error at time 1776702745: ext4_orphan_get:1397: inode 15 [ 274.789916][T18968] loop2: lost filesystem error report for type 5 error -117 [ 274.791797][T18968] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 274.845362][T18973] loop7: detected capacity change from 0 to 1024 [ 274.856043][T18973] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 274.867403][T11624] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 274.881173][T18973] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (58866!=28264) [ 274.893316][T18973] EXT4-fs error (device loop7): __ext4_fill_super:5590: inode #2: comm syz.7.5646: iget: checksum invalid [ 274.905640][T18973] loop7: lost file I/O error report for ino 2 type 5 pos 0x0 len 0x0 error -74 [ 274.910765][T18973] EXT4-fs (loop7): get root inode failed [ 274.920046][ C0] EXT4-fs (loop7): error count since last fsck: 1 [ 274.920066][ C0] EXT4-fs (loop7): initial error at time 1776702745: __ext4_fill_super:5590: inode 2 [ 274.920095][ C0] EXT4-fs (loop7): last error at time 1776702745: __ext4_fill_super:5590: inode 2 [ 274.958109][T18973] EXT4-fs (loop7): mount failed [ 274.984721][ T28] kauditd_printk_skb: 12 callbacks suppressed [ 274.984739][ T28] audit: type=1326 audit(1776702745.455:1836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18979 comm="syz.2.5648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e8f2c819 code=0x7ffc0000 [ 275.030725][ T28] audit: type=1326 audit(1776702745.455:1837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18979 comm="syz.2.5648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e8f2c819 code=0x7ffc0000 [ 275.063310][ T28] audit: type=1326 audit(1776702745.455:1838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18979 comm="syz.2.5648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e8f2c819 code=0x7ffc0000 [ 275.110626][ T28] audit: type=1326 audit(1776702745.455:1839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18979 comm="syz.2.5648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e8f2c819 code=0x7ffc0000 [ 275.135026][ T28] audit: type=1326 audit(1776702745.455:1840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18979 comm="syz.2.5648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7f14e8f2c819 code=0x7ffc0000 [ 275.162285][ T28] audit: type=1326 audit(1776702745.455:1841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18979 comm="syz.2.5648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e8f2c819 code=0x7ffc0000 [ 275.189767][ T28] audit: type=1326 audit(1776702745.455:1842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18979 comm="syz.2.5648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e8f2c819 code=0x7ffc0000 [ 275.216041][ T28] audit: type=1326 audit(1776702745.465:1843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18979 comm="syz.2.5648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e8f2c819 code=0x7ffc0000 [ 275.240194][ T28] audit: type=1326 audit(1776702745.465:1844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18979 comm="syz.2.5648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f14e8f2c819 code=0x7ffc0000 [ 275.265699][ T28] audit: type=1326 audit(1776702745.465:1845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18979 comm="syz.2.5648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f14e8f2c819 code=0x7ffc0000 [ 275.311893][T18994] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5656'. [ 275.330348][T18994] netlink: 'syz.0.5656': attribute type 30 has an invalid length. [ 275.349951][T18998] loop7: detected capacity change from 0 to 256 [ 275.361797][T18994] netlink: 'syz.0.5656': attribute type 29 has an invalid length. [ 275.369950][T18994] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5656'. [ 276.765069][T19086] loop7: detected capacity change from 0 to 512 [ 276.780701][T19086] EXT4-fs error (device loop7): ext4_orphan_get:1397: inode #15: comm syz.7.5697: inode has both inline data and extents flags [ 276.795750][T19086] loop7: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 276.795894][T19086] EXT4-fs error (device loop7): ext4_orphan_get:1402: comm syz.7.5697: couldn't read orphan inode 15 (err -117) [ 276.805332][ C0] EXT4-fs (loop7): error count since last fsck: 1 [ 276.805356][ C0] EXT4-fs (loop7): initial error at time 1776702747: ext4_orphan_get:1397: inode 15 [ 276.805401][ C0] EXT4-fs (loop7): last error at time 1776702747: ext4_orphan_get:1397: inode 15 [ 276.858174][T19086] loop7: lost filesystem error report for type 5 error -117 [ 276.858765][T19086] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 276.900898][T19089] loop2: detected capacity change from 0 to 1024 [ 276.935180][T19089] EXT4-fs: Ignoring removed bh option [ 276.946542][ T7022] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 276.968743][T19089] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback. [ 276.990280][T19089] ext4 filesystem being mounted at /483/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 277.028688][ T3842] Bluetooth: hci0: command 0x1003 tx timeout [ 277.034867][ T6634] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 277.082308][T19095] EXT4-fs error (device loop2): ext4_free_blocks:6724: comm syz.2.5698: Freeing blocks not in datazone - block = 0, count = 16 [ 277.134530][T19095] EXT4-fs (loop2): Remounting filesystem read-only [ 277.325604][T11624] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 277.396392][T19110] loop0: detected capacity change from 0 to 512 [ 277.420354][T19111] netlink: 'syz.7.5707': attribute type 10 has an invalid length. [ 277.458199][T19110] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 277.476380][T19111] team0: Port device dummy0 added [ 277.491834][T19111] netlink: 'syz.7.5707': attribute type 10 has an invalid length. [ 277.514706][T19110] EXT4-fs (loop0): 1 truncate cleaned up [ 277.529135][T19123] loop4: detected capacity change from 0 to 1024 [ 277.540885][T19110] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 277.556695][T19111] team0: Port device dummy0 removed [ 277.617168][T19123] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 277.666132][T19123] ext4 filesystem being mounted at /40/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 277.686657][T17948] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 277.733349][T19117] EXT4-fs error (device loop4): ext4_map_blocks:833: inode #15: block 3: comm syz.4.5710: lblock 3 mapped to illegal pblock 3 (length 1) [ 277.829245][T19117] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117 [ 277.841871][T19117] EXT4-fs (loop4): This should not happen!! Data will be lost [ 277.841871][T19117] [ 277.852684][T19117] EXT4-fs error (device loop4): ext4_free_blocks:6724: comm syz.4.5710: Freeing blocks not in datazone - block = 3, count = 1 [ 277.877542][T19145] loop2: detected capacity change from 0 to 4096 [ 277.907358][T19145] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 277.956405][T18135] EXT4-fs warning (device loop4): ext4_evict_inode:195: inode #15: comm syz-executor: data will be lost [ 277.957202][T19157] batman_adv: batadv0: Adding interface: gretap1 [ 277.986094][T19157] batman_adv: batadv0: The MTU of interface gretap1 is too small (1382) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 278.012637][T19157] batman_adv: batadv0: Interface activated: gretap1 [ 278.101999][T19169] loop4: detected capacity change from 0 to 128 [ 278.276402][T19187] ext4 filesystem being mounted at /43/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 278.407774][T19200] netlink: 'syz.2.5730': attribute type 5 has an invalid length. [ 278.420782][T19198] xt_hashlimit: size too large, truncated to 1048576 [ 278.597774][T19213] syzkaller1: entered promiscuous mode [ 278.604231][T19213] syzkaller1: entered allmulticast mode [ 278.730677][T19225] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 278.845103][T19238] FAT-fs (loop4): error, corrupted file size (i_pos 196, 16779264) [ 278.874569][T19238] FAT-fs (loop4): Filesystem has been set read-only [ 278.881523][T19238] FAT-fs (loop4): error, corrupted file size (i_pos 196, 16779008) [ 278.892138][T19238] FAT-fs (loop4): error, corrupted file size (i_pos 196, 16779008) [ 278.906073][T19238] FAT-fs (loop4): error, corrupted file size (i_pos 196, 16779008) [ 278.928767][T19238] FAT-fs (loop4): error, corrupted file size (i_pos 196, 16779008) [ 279.160835][T19266] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5755'. [ 279.178846][T19266] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5755'. [ 279.500843][T19313] set_capacity_and_notify: 3 callbacks suppressed [ 279.500863][T19313] loop4: detected capacity change from 0 to 512 [ 279.925134][T19343] loop0: detected capacity change from 0 to 256 [ 280.107323][T19356] loop2: detected capacity change from 0 to 1024 [ 280.139868][T19356] ext4 filesystem being mounted at /506/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 280.182113][T19366] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5793'. [ 280.194252][T19356] EXT4-fs (loop2): shut down requested (0) [ 280.200591][T19366] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5793'. [ 280.223998][ T1681] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 280.240541][ T1681] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 280.250425][ T1681] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 280.287836][ T1681] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 280.309706][T19372] netlink: 538 bytes leftover after parsing attributes in process `syz.5.5797'. [ 280.324102][T19372] netlink: 232 bytes leftover after parsing attributes in process `syz.5.5797'. [ 280.485578][T19397] netlink: 'syz.0.5807': attribute type 10 has an invalid length. [ 280.522253][T19397] team0: Port device dummy0 added [ 280.531960][T19397] netlink: 'syz.0.5807': attribute type 10 has an invalid length. [ 280.550910][T19397] team0: Port device dummy0 removed [ 280.576189][ T28] kauditd_printk_skb: 10 callbacks suppressed [ 280.576209][ T28] audit: type=1326 audit(1776702751.038:1856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19404 comm="syz.4.5811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23f556c819 code=0x7ffc0000 [ 280.603807][T19397] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 280.627980][ T28] audit: type=1326 audit(1776702751.088:1857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19404 comm="syz.4.5811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=96 compat=0 ip=0x7f23f556c819 code=0x7ffc0000 [ 280.657079][ T28] audit: type=1326 audit(1776702751.088:1858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19404 comm="syz.4.5811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23f556c819 code=0x7ffc0000 [ 280.681184][ T28] audit: type=1326 audit(1776702751.088:1859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19404 comm="syz.4.5811" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23f556c819 code=0x7ffc0000 [ 280.804901][T19421] xt_hashlimit: size too large, truncated to 1048576 [ 280.849616][T19423] loop7: detected capacity change from 0 to 1024 [ 280.872186][T19423] EXT4-fs: Ignoring removed bh option [ 280.911077][T19433] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5823'. [ 280.921092][T19434] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 280.934638][T19434] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 280.944317][T19423] ext4 filesystem being mounted at /867/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 281.089588][T19439] EXT4-fs error (device loop7): ext4_free_blocks:6724: comm syz.7.5818: Freeing blocks not in datazone - block = 0, count = 16 [ 281.109760][T19439] EXT4-fs (loop7): Remounting filesystem read-only [ 281.222513][T19449] IPVS: sh: UDP 224.0.0.2:0 - no destination available [ 281.231239][T19450] netlink: 'syz.2.5829': attribute type 1 has an invalid length. [ 281.239207][T19450] netlink: 'syz.2.5829': attribute type 2 has an invalid length. [ 281.289518][ T28] audit: type=1400 audit(1776702751.747:1860): avc: denied { setopt } for pid=19455 comm="syz.2.5832" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 281.352267][T19460] loop2: detected capacity change from 0 to 2048 [ 281.382491][T19460] loop2: p1 p2 p3 [ 281.863623][T19485] loop4: detected capacity change from 0 to 512 [ 281.871221][T19485] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 281.887843][T19485] EXT4-fs (loop4): 1 truncate cleaned up [ 281.933504][T19489] netlink: 'syz.4.5844': attribute type 2 has an invalid length. [ 282.240299][T19516] syzkaller1: entered promiscuous mode [ 282.246695][T19516] syzkaller1: entered allmulticast mode [ 282.277106][T19519] xt_l2tp: unknown flags: 10 [ 282.324798][ T28] audit: type=1326 audit(1776702752.784:1861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19524 comm="syz.4.5862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23f556c819 code=0x7ffc0000 [ 282.353327][ T28] audit: type=1326 audit(1776702752.814:1862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19524 comm="syz.4.5862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23f556c819 code=0x7ffc0000 [ 282.386267][ T28] audit: type=1326 audit(1776702752.814:1863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19524 comm="syz.4.5862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23f556c819 code=0x7ffc0000 [ 282.423155][ T28] audit: type=1326 audit(1776702752.814:1864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19524 comm="syz.4.5862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f23f556c819 code=0x7ffc0000 [ 282.452401][ T28] audit: type=1326 audit(1776702752.814:1865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19524 comm="syz.4.5862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23f556c819 code=0x7ffc0000 [ 282.505574][T19535] loop2: detected capacity change from 0 to 256 [ 282.578401][T19537] loop7: detected capacity change from 0 to 4096 [ 282.587389][T19537] EXT4-fs (loop7): #clusters per group too big: 32768 [ 282.685513][T19552] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5875'. [ 283.101390][T19560] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5878'. [ 283.124454][T19560] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5878'. [ 283.138692][T19566] loop7: detected capacity change from 0 to 1024 [ 283.154879][T19566] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 283.175398][T19566] EXT4-fs (loop7): revision level too high, forcing read-only mode [ 283.183650][T19566] EXT4-fs (loop7): orphan cleanup on readonly fs [ 283.207114][T19566] EXT4-fs error (device loop7): __ext4_get_inode_loc:4799: comm syz.7.5880: Invalid inode table block 0 in block_group 0 [ 283.240686][T19566] loop7: lost filesystem error report for type 5 error -117 [ 283.240838][T19566] EXT4-fs (loop7): Remounting filesystem read-only [ 283.248350][ C0] EXT4-fs (loop7): error count since last fsck: 1 [ 283.248376][ C0] EXT4-fs (loop7): initial error at time 1776702753: __ext4_get_inode_loc:4799 [ 283.248405][ C0] EXT4-fs (loop7): last error at time 1776702753: __ext4_get_inode_loc:4799 [ 283.302370][T19566] EXT4-fs (loop7): 1 truncate cleaned up [ 283.324620][T19566] EXT4-fs (loop7): shut down requested (0) [ 283.420337][T19579] netlink: 'syz.4.5885': attribute type 21 has an invalid length. [ 283.558772][T19587] netlink: 'syz.4.5890': attribute type 3 has an invalid length. [ 283.568221][T19591] loop7: detected capacity change from 0 to 256 [ 283.799939][T19604] program syz.2.5897 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 283.877595][T19610] FAT-fs (loop4): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1) [ 283.965928][T19614] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 284.006918][T19614] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 284.025598][T19614] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended [ 284.035282][T19614] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 284.043618][T19614] System zones: 0-2, 18-18, 34-35 [ 284.050808][ T10] kernel write not supported for file /sg0 (pid: 10 comm: kworker/0:1) [ 284.091914][T16548] FAT-fs (loop4): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1) [ 284.253789][T19641] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c198, mo2=0002] [ 284.279966][T19641] System zones: 1-12 [ 284.289976][T19641] EXT4-fs error (device loop4): ext4_iget_extra_inode:5042: inode #15: comm syz.4.5909: corrupted in-inode xattr: e_value size too large [ 284.305040][T19641] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 284.305275][T19641] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.5909: couldn't read orphan inode 15 (err -117) [ 284.314520][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 284.314551][ C0] EXT4-fs (loop4): initial error at time 1776702754: ext4_iget_extra_inode:5042: inode 15 [ 284.314578][ C0] EXT4-fs (loop4): last error at time 1776702754: ext4_iget_extra_inode:5042: inode 15 [ 284.353642][T19641] loop4: lost filesystem error report for type 5 error -117 [ 284.409755][T19646] EXT4-fs: Ignoring removed nobh option [ 284.504531][T19646] EXT4-fs error (device loop0): ext4_do_update_inode:5604: inode #3: comm syz.0.5910: corrupted inode contents [ 284.546664][T19646] loop0: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 284.546879][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 284.559617][T19646] EXT4-fs error (device loop0): ext4_dirty_inode:6497: inode #3: comm syz.0.5910: mark_inode_dirty error [ 284.563005][ C1] EXT4-fs (loop0): initial error at time 1776702755: ext4_do_update_inode:5604: inode 3 [ 284.584215][ C1] EXT4-fs (loop0): last error at time 1776702755: ext4_do_update_inode:5604: inode 3 [ 284.605864][T19646] loop0: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 284.611087][T19646] EXT4-fs error (device loop0): ext4_do_update_inode:5604: inode #3: comm syz.0.5910: corrupted inode contents [ 284.646957][T19646] loop0: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 284.648227][T19646] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #3: comm syz.0.5910: mark_inode_dirty error [ 284.669053][T19646] loop0: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 284.669290][T19646] EXT4-fs error (device loop0): ext4_acquire_dquot:7028: comm syz.0.5910: Failed to acquire dquot type 0 [ 284.690828][T19646] loop0: lost filesystem error report for type 5 error -117 [ 284.691446][T19646] EXT4-fs error (device loop0): ext4_do_update_inode:5604: inode #16: comm syz.0.5910: corrupted inode contents [ 284.722445][T19646] loop0: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 284.724432][T19646] EXT4-fs error (device loop0): ext4_dirty_inode:6497: inode #16: comm syz.0.5910: mark_inode_dirty error [ 284.753774][T19660] bridge0: port 2(bridge_slave_1) entered disabled state [ 284.761077][T19660] bridge0: port 1(bridge_slave_0) entered disabled state [ 284.789092][T19646] loop0: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 284.789368][T19646] EXT4-fs error (device loop0): ext4_do_update_inode:5604: inode #16: comm syz.0.5910: corrupted inode contents [ 284.813201][T19646] loop0: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 284.813450][T19646] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #16: comm syz.0.5910: mark_inode_dirty error [ 284.865004][T19646] loop0: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 284.865226][T19646] EXT4-fs error (device loop0): ext4_do_update_inode:5604: inode #16: comm syz.0.5910: corrupted inode contents [ 284.898048][T19646] loop0: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 284.898270][T19646] EXT4-fs error (device loop0) in ext4_orphan_del:303: Corrupt filesystem [ 284.922785][T19660] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 284.923700][T19646] loop0: lost filesystem error report for type 5 error -117 [ 284.933276][T19660] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 284.942227][T19646] EXT4-fs error (device loop0): ext4_do_update_inode:5604: inode #16: comm syz.0.5910: corrupted inode contents [ 284.975033][T19646] EXT4-fs error (device loop0): ext4_truncate:4604: inode #16: comm syz.0.5910: mark_inode_dirty error [ 285.016451][T19646] EXT4-fs error (device loop0) in ext4_process_orphan:345: Corrupt filesystem [ 285.038752][T19646] loop0: lost filesystem error report for type 5 error -117 [ 285.039410][T19646] EXT4-fs (loop0): 1 truncate cleaned up [ 285.065051][T19646] EXT4-fs mount: 16 callbacks suppressed [ 285.065129][T19646] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 285.085843][T19646] ext4 filesystem being mounted at /73/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 285.121052][T16559] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 285.158103][T16559] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 285.172542][T16559] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 285.184203][T16559] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 285.282657][T17948] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 285.309738][T19707] hub 8-0:1.0: USB hub found [ 285.323613][T19707] hub 8-0:1.0: 8 ports detected [ 285.482500][T19729] set_capacity_and_notify: 4 callbacks suppressed [ 285.482519][T19729] loop4: detected capacity change from 0 to 128 [ 285.512556][T19729] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 285.525234][T19729] ext4 filesystem being mounted at /86/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 285.610478][T18135] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 285.667775][T19743] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=19743 comm=syz.4.5943 [ 286.122028][ T28] kauditd_printk_skb: 33 callbacks suppressed [ 286.122053][ T28] audit: type=1400 audit(1776702756.577:1895): avc: denied { node_bind } for pid=19762 comm="syz.5.5952" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1 [ 286.205602][T19768] loop2: detected capacity change from 0 to 256 [ 287.159894][ T28] audit: type=1400 audit(1776702757.605:1896): avc: denied { map } for pid=19824 comm="syz.4.5977" path="socket:[54302]" dev="sockfs" ino=54302 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1 [ 287.319865][ T28] audit: type=1400 audit(1776702757.765:1897): avc: denied { read } for pid=19839 comm="syz.0.5982" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 287.383979][T19838] loop4: detected capacity change from 0 to 4096 [ 287.391802][T19838] EXT4-fs: Ignoring removed nomblk_io_submit option [ 287.430942][T19838] EXT4-fs (loop4): stripe (97) is not aligned with cluster size (16), stripe is disabled [ 287.451096][T19846] netlink: 'syz.5.5987': attribute type 3 has an invalid length. [ 287.459181][T19846] netlink: 'syz.5.5987': attribute type 1 has an invalid length. [ 287.461730][T19838] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 287.471969][T19846] __nla_validate_parse: 3 callbacks suppressed [ 287.472015][T19846] netlink: 60387 bytes leftover after parsing attributes in process `syz.5.5987'. [ 287.564271][T18135] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 287.576001][T19851] loop2: detected capacity change from 0 to 128 [ 287.625961][ T28] audit: type=1400 audit(1776702758.074:1898): avc: denied { connect } for pid=19850 comm="syz.2.5989" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 287.743405][T19863] loop4: detected capacity change from 0 to 2048 [ 287.799946][T19863] loop4: p1 p2 p3 [ 287.896685][T19876] loop2: detected capacity change from 0 to 512 [ 287.918236][T19876] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.5999: bg 0: block 5: invalid block bitmap [ 287.930936][T19876] loop2: lost filesystem error report for type 5 error -117 [ 287.931829][T19876] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6685: Corrupt filesystem [ 287.939330][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 287.939357][ C0] EXT4-fs (loop2): initial error at time 1776702758: ext4_validate_block_bitmap:432 [ 287.939387][ C0] EXT4-fs (loop2): last error at time 1776702758: ext4_validate_block_bitmap:432 [ 287.973720][T19876] loop2: lost filesystem error report for type 5 error -117 [ 287.983546][T19876] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.5999: invalid indirect mapped block 3 (level 2) [ 288.005225][T19876] EXT4-fs (loop2): 1 orphan inode deleted [ 288.011246][T19876] EXT4-fs (loop2): 1 truncate cleaned up [ 288.017763][T19876] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 288.054346][T11624] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 288.116850][T19885] loop2: detected capacity change from 0 to 512 [ 288.141730][T19885] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 288.155380][T19885] ext4 filesystem being mounted at /555/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 288.258958][T19900] netlink: 'syz.7.6008': attribute type 1 has an invalid length. [ 288.266907][T19900] netlink: 'syz.7.6008': attribute type 2 has an invalid length. [ 288.274826][T19900] netlink: 4 bytes leftover after parsing attributes in process `syz.7.6008'. [ 288.368442][T19905] loop0: detected capacity change from 0 to 512 [ 288.379498][T19905] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 288.388780][T19905] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 288.398681][T19905] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended [ 288.408762][T19905] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 288.417105][T19905] System zones: 0-2, 18-18, 34-35 [ 288.423053][T19905] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 288.438867][T16796] kernel write not supported for file /sg0 (pid: 16796 comm: kworker/1:11) [ 288.453910][T19909] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 288.462718][T19909] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 288.475728][T17948] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 288.495274][T19912] mmap: syz.0.6012 (19912): VmData 29208576 exceed data ulimit 8. Update limits or use boot option ignore_rlimit_data. [ 288.723835][T19920] ip6erspan0: entered allmulticast mode [ 288.959160][T11624] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 289.023385][T19934] loop2: detected capacity change from 0 to 512 [ 289.045390][T19937] loop7: detected capacity change from 0 to 128 [ 289.053538][T19934] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 289.073077][T19934] EXT4-fs (loop2): 1 truncate cleaned up [ 289.079560][T19934] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 289.130894][T11624] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 289.156571][T19944] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 289.174010][T19944] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 289.236425][T19948] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 289.249473][T19948] ext4 filesystem being mounted at /912/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 289.266349][T19948] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.6025: bg 0: block 345: padding at end of block bitmap is not set [ 289.281435][T19948] EXT4-fs (loop7): Remounting filesystem read-only [ 289.298224][T16559] EXT4-fs warning (device loop7): ext4_convert_unwritten_extents:5066: inode #15: block 1: len 15: ext4_ext_map_blocks returned -30 [ 289.353207][ T7022] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 289.397910][ T28] audit: type=1400 audit(1776702759.852:1899): avc: denied { ioctl } for pid=19954 comm="syz.0.6028" path="socket:[54497]" dev="sockfs" ino=54497 ioctlcmd=0xb100 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 289.659042][T19978] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #15: comm syz.2.6048: inode has both inline data and extents flags [ 289.724672][T19978] fserror_report: 3 callbacks suppressed [ 289.724733][T19978] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 289.730748][T19978] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.6048: couldn't read orphan inode 15 (err -117) [ 289.739946][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 289.739972][ C0] EXT4-fs (loop2): initial error at time 1776702760: ext4_orphan_get:1397: inode 15 [ 289.740014][ C0] EXT4-fs (loop2): last error at time 1776702760: ext4_orphan_get:1397: inode 15 [ 289.777942][T19978] loop2: lost filesystem error report for type 5 error -117 [ 289.778551][T19978] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 289.877877][T11624] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 289.918515][ T28] audit: type=1400 audit(1776702760.371:1900): avc: denied { getopt } for pid=19987 comm="syz.2.6040" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 289.936060][T19990] batman_adv: batadv0: Interface deactivated: gretap1 [ 290.168617][T19999] batman_adv: batadv0: Adding interface: gretap1 [ 290.179922][T19999] batman_adv: batadv0: The MTU of interface gretap1 is too small (1382) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 290.255884][T19999] batman_adv: batadv0: Interface activated: gretap1 [ 290.628280][T20037] set_capacity_and_notify: 3 callbacks suppressed [ 290.628299][T20037] loop2: detected capacity change from 0 to 512 [ 290.673465][T20037] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #15: comm syz.2.6065: inode has both inline data and extents flags [ 290.699090][T20037] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 290.699870][T20037] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.6065: couldn't read orphan inode 15 (err -117) [ 290.709173][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 290.709195][ C1] EXT4-fs (loop2): initial error at time 1776702761: ext4_orphan_get:1397: inode 15 [ 290.709225][ C1] EXT4-fs (loop2): last error at time 1776702761: ext4_orphan_get:1397: inode 15 [ 290.766867][T20037] loop2: lost filesystem error report for type 5 error -117 [ 290.768192][T20037] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 290.810434][T20037] EXT4-fs error (device loop2): ext4_check_dx_root:2201: inode #2: comm syz.2.6065: Corrupt dir, invalid name_len for '.', running e2fsck is recommended [ 290.941047][T11624] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 290.959442][T20059] sctp: [Deprecated]: syz.5.6074 (pid 20059) Use of struct sctp_assoc_value in delayed_ack socket option. [ 290.959442][T20059] Use struct sctp_sack_info instead [ 291.227224][ T3399] IPVS: starting estimator thread 0... [ 291.243602][T20080] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 291.351005][T20081] IPVS: using max 1824 ests per chain, 91200 per kthread [ 291.489982][T20091] syzkaller1: entered promiscuous mode [ 291.495575][T20091] syzkaller1: entered allmulticast mode [ 291.616827][T20099] loop4: detected capacity change from 0 to 256 [ 291.690398][T20107] loop7: detected capacity change from 0 to 1024 [ 291.738417][T20107] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 291.862304][ T7022] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 291.911098][ T28] audit: type=1400 audit(1776702762.349:1901): avc: denied { search } for pid=20118 comm="syz.2.6101" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1 [ 291.956747][T20121] loop0: detected capacity change from 0 to 1024 [ 291.980295][ T28] audit: type=1400 audit(1776702762.349:1902): avc: denied { search } for pid=20118 comm="syz.2.6101" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1 [ 292.061392][ T28] audit: type=1400 audit(1776702762.349:1903): avc: denied { search } for pid=20118 comm="syz.2.6101" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1 [ 292.089260][T20121] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback. [ 292.105475][ T28] audit: type=1400 audit(1776702762.349:1904): avc: denied { search } for pid=20118 comm="syz.2.6101" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1 [ 292.158304][T20121] ext4 filesystem being mounted at /110/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 292.192822][T20134] netlink: 538 bytes leftover after parsing attributes in process `syz.4.6106'. [ 292.215211][T20121] EXT4-fs (loop0): shut down requested (0) [ 292.249121][T20134] netlink: 232 bytes leftover after parsing attributes in process `syz.4.6106'. [ 292.304875][T17948] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 292.340827][T20145] loop7: detected capacity change from 0 to 2048 [ 292.592858][T20161] loop0: detected capacity change from 0 to 512 [ 292.634400][T20161] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2 [ 292.642649][T20161] EXT4-fs error (device loop0): ext4_iget_extra_inode:5042: inode #15: comm syz.0.6118: corrupted in-inode xattr: e_value size too large [ 292.678872][T20161] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 292.679629][T20161] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.6118: couldn't read orphan inode 15 (err -117) [ 292.689123][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 292.689149][ C1] EXT4-fs (loop0): initial error at time 1776702763: ext4_iget_extra_inode:5042: inode 15 [ 292.689196][ C1] EXT4-fs (loop0): last error at time 1776702763: ext4_iget_extra_inode:5042: inode 15 [ 292.756024][T20161] loop0: lost filesystem error report for type 5 error -117 [ 292.756574][T20161] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 292.803106][T20161] EXT4-fs error (device loop0): ext4_check_dx_root:2201: inode #2: comm syz.0.6118: Corrupt dir, invalid name_len for '..', running e2fsck is recommended [ 293.016352][T17948] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 293.097684][T20176] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6124'. [ 293.235838][T20188] netlink: 'syz.4.6129': attribute type 6 has an invalid length. [ 293.243966][T20188] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.6129'. [ 293.318918][T20193] loop2: detected capacity change from 0 to 512 [ 293.342376][ T28] audit: type=1326 audit(1776702763.787:1905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20194 comm="syz.7.6133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f9ac7c819 code=0x7ffc0000 [ 293.394371][ T28] audit: type=1326 audit(1776702763.787:1906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20194 comm="syz.7.6133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f9ac7c819 code=0x7ffc0000 [ 293.429550][T20193] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 293.438268][ T28] audit: type=1326 audit(1776702763.807:1907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20194 comm="syz.7.6133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=172 compat=0 ip=0x7f2f9ac7c819 code=0x7ffc0000 [ 293.469538][ T28] audit: type=1326 audit(1776702763.807:1908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20194 comm="syz.7.6133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f9ac7c819 code=0x7ffc0000 [ 293.493770][ T28] audit: type=1326 audit(1776702763.807:1909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20194 comm="syz.7.6133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f9ac7c819 code=0x7ffc0000 [ 293.518871][T20193] EXT4-fs (loop2): 1 truncate cleaned up [ 293.525871][T20193] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 293.548335][T20202] loop4: detected capacity change from 0 to 2048 [ 293.605386][T20202] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 293.643872][T18135] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 293.737556][T11624] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 293.813306][T20220] loop2: detected capacity change from 0 to 1024 [ 293.828847][T20222] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 293.839090][T20222] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 293.851140][T20218] IPVS: lblc: UDP 224.0.0.2:0 - no destination available [ 293.851474][ T10] IPVS: starting estimator thread 0... [ 293.890689][T20220] EXT4-fs: Ignoring removed bh option [ 293.922065][T20220] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 293.960625][T20220] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 293.981732][T20229] netlink: 7 bytes leftover after parsing attributes in process `syz.4.6145'. [ 293.990849][T20224] IPVS: using max 1872 ests per chain, 93600 per kthread [ 294.002778][T20229] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6145'. [ 294.014721][T20220] EXT4-fs error (device loop2): ext4_check_all_de:659: inode #12: block 7: comm syz.2.6141: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0 [ 294.036259][T20229] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6145'. [ 294.046814][T20220] EXT4-fs (loop2): Remounting filesystem read-only [ 294.095145][T11624] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 294.173054][T20245] syzkaller1: entered promiscuous mode [ 294.178815][T20245] syzkaller1: entered allmulticast mode [ 294.187050][ T5782] ================================================================== [ 294.195274][ T5782] BUG: KCSAN: data-race in fill_mg_cmtime / shmem_symlink [ 294.202513][ T5782] [ 294.204952][ T5782] write to 0xffff8881051b3e1c of 4 bytes by task 3301 on cpu 0: [ 294.212707][ T5782] shmem_symlink+0x387/0x3b0 [ 294.217351][ T5782] vfs_symlink+0x106/0x220 [ 294.221874][ T5782] filename_symlinkat+0xe8/0x2b0 [ 294.227039][ T5782] __se_sys_symlink+0x42/0x1b0 [ 294.231852][ T5782] __x64_sys_symlink+0x31/0x40 [ 294.236677][ T5782] x64_sys_call+0x2465/0x3020 [ 294.241494][ T5782] do_syscall_64+0x12c/0x3b0 [ 294.246222][ T5782] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 294.252233][ T5782] [ 294.254773][ T5782] read to 0xffff8881051b3e1c of 4 bytes by task 5782 on cpu 1: [ 294.262467][ T5782] fill_mg_cmtime+0x5b/0x270 [ 294.267275][ T5782] generic_fillattr+0x24a/0x340 [ 294.272347][ T5782] shmem_getattr+0x181/0x200 [ 294.277019][ T5782] vfs_getattr_nosec+0x146/0x1e0 [ 294.282147][ T5782] vfs_getattr+0x48/0x60 [ 294.286431][ T5782] vfs_statx_path+0x28/0x140 [ 294.291089][ T5782] vfs_statx+0xc4/0x170 [ 294.295302][ T5782] vfs_fstatat+0x118/0x170 [ 294.299755][ T5782] __se_sys_newfstatat+0x55/0x3e0 [ 294.304821][ T5782] __x64_sys_newfstatat+0x55/0x70 [ 294.309972][ T5782] x64_sys_call+0x2c64/0x3020 [ 294.314781][ T5782] do_syscall_64+0x12c/0x3b0 [ 294.319431][ T5782] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 294.325379][ T5782] [ 294.327735][ T5782] value changed: 0x255a6f0e -> 0x261fb303 [ 294.333579][ T5782] [ 294.335940][ T5782] Reported by Kernel Concurrency Sanitizer on: [ 294.342144][ T5782] CPU: 1 UID: 0 PID: 5782 Comm: udevd Not tainted syzkaller #0 PREEMPT(full) [ 294.351066][ T5782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 294.361669][ T5782] ==================================================================