last executing test programs: 2.029902681s ago: executing program 0 (id=2598): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) semget$private(0x0, 0x3, 0x248) 1.687286707s ago: executing program 0 (id=2615): r0 = syz_io_uring_setup(0x497, &(0x7f0000000300)={0x0, 0x4661, 0x800, 0x5, 0x20e}, &(0x7f0000000540)=0x0, &(0x7f0000000680)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_LINKAT={0x27, 0xa, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000140)='./file0\x00', 0xffffffffffffffff, 0x400, 0x1}) io_uring_enter(r0, 0x5fdd, 0x217, 0xa5, 0x0, 0x0) 1.429615742s ago: executing program 2 (id=2618): mknodat$null(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x40, 0x103) setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0) lsetxattr$security_capability(&(0x7f0000000080)='./file0\x00', &(0x7f0000000440), &(0x7f0000000180)=@v2={0x2000000, [{0x4, 0xfffffff7}, {0xfffffffd, 0x2}]}, 0x14, 0x0) lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)=ANY=[], 0x0, 0x11) 1.429524882s ago: executing program 3 (id=2619): syz_emit_ethernet(0x2a, &(0x7f0000000100)={@multicast, @random="8a0a63cdec59", @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x1, @random="f64a0730281d", @dev={0xac, 0x14, 0x14, 0xd}, @dev, @rand_addr=0x64010100}}}}, 0x0) r0 = socket$packet(0x11, 0x3, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000080)={'batadv0\x00', 0x0}) sendto$packet(r0, &(0x7f0000000100)="f257a8ea7bc273dfaeab96850806", 0x2a, 0x0, &(0x7f0000000200)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @link_local}, 0x14) 1.429162922s ago: executing program 0 (id=2630): syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100), 0x1, 0x500, &(0x7f0000000500)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc2}}) chdir(&(0x7f0000000100)='./file0\x00') 1.378767913s ago: executing program 2 (id=2620): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x18) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000840)=@newtaction={0x88c, 0x30, 0xffff, 0x3, 0x0, {}, [{0x878, 0x1, [@m_police={0x874, 0x1, 0x0, 0x0, {{0xb}, {0x848, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x1, 0x4, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x8000002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x9, 0x0, 0xffffffff, 0x0, 0x0, 0x4, 0x0, 0xfffffffc, 0x0, 0xfffffffd, 0x0, 0x0, 0x2000000, 0xffffffff, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14880, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x4, 0x20000000, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0xfffffffc, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x7fff, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x7, 0x0, 0x0, 0xfffffffe, {0x3, 0x0, 0x0, 0x0, 0xb, 0x3}, {0x4, 0x2, 0x0, 0x0, 0x0, 0xff}, 0x0, 0x3, 0x2}}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0xfffffffe, 0x0, 0x0, 0x401, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x80000000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x504, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x4, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x1ffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x3, 0x0, 0x0, 0x6, 0x2, 0x24, 0xfffffffe, 0x0, 0x0, 0x1, 0x25d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0xfffffffe, 0x0, 0x0, 0x2, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x80004, 0x0, 0x0, 0x0, 0xf7, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffe, 0x0, 0x0, 0x76, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x7, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x1bde, 0x0, 0x1, 0x4, 0x0, 0x0, 0xffffff7d, 0x0, 0x0, 0xffffff7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x10, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xfffffffb, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x7, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5, 0x2, 0x8]}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa, {0x1}}}}]}]}, 0x88c}}, 0x40844) 1.378668723s ago: executing program 3 (id=2621): mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f00000000c0)='cgroup.kill\x00', 0x275a, 0x0) write$cgroup_int(r1, &(0x7f0000000080)=0x2000000000002, 0x12) 1.355147653s ago: executing program 3 (id=2623): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r0}, 0x18) mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0) mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil) 1.337887274s ago: executing program 2 (id=2624): syz_open_procfs(0xffffffffffffffff, &(0x7f0000001140)='net\x00') prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) close_range(r0, 0xffffffffffffffff, 0x0) 1.264849885s ago: executing program 0 (id=2629): r0 = socket$inet6(0xa, 0x5, 0x0) r1 = socket$inet6_mptcp(0xa, 0x1, 0x106) listen(r1, 0x0) mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1]) 833.161684ms ago: executing program 3 (id=2631): r0 = openat$selinux_policy(0xffffff9c, &(0x7f0000000300), 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r0, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) getsockopt$packet_int(r1, 0x107, 0x9, 0x0, &(0x7f0000000040)=0x1c) 782.667885ms ago: executing program 3 (id=2643): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000300)='rxrpc_client\x00', r0}, 0x18) r1 = socket$kcm(0x21, 0x2, 0xa) sendmsg$kcm(r1, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in6={0x21, 0xfffc, 0x2, 0x1c, {0xa, 0x0, 0x4, @dev}}, 0x80, 0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0xfc00) 749.730655ms ago: executing program 3 (id=2634): r0 = msgget(0x1, 0x64d) msgrcv(r0, 0x0, 0x0, 0x0, 0x0) msgrcv(r0, 0x0, 0x0, 0x1, 0x0) msgsnd(r0, &(0x7f00000002c0)={0x3}, 0x8, 0x800) 629.613978ms ago: executing program 4 (id=2636): perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x4, @perf_config_ext={0xf60, 0x40ffffffff}, 0x1100, 0x5, 0x3a65, 0x5, 0x0, 0x5, 0xfffb, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/5, 0x214000, 0x800}, 0x20) 517.09229ms ago: executing program 1 (id=2637): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000040)={[{@nobh}, {@abort}]}, 0xff, 0x258, &(0x7f0000000780)="$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") mkdir(&(0x7f0000000080)='./file1\x00', 0x0) lsetxattr$system_posix_acl(&(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='system.posix_acl_default\x00', &(0x7f0000000000)=ANY=[@ANYBLOB="02000000010000000000f400040000000000000020"], 0x1c, 0x0) creat(&(0x7f0000000100)='./file1/file0\x00', 0x0) 516.55438ms ago: executing program 4 (id=2648): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000080)='kfree\x00', r0}, 0x18) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)={{0x14, 0x10, 0x4}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x7, 0x0, 0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}]}, @NFT_MSG_NEWSETELEM={0x84, 0xc, 0xa, 0x301, 0x0, 0x0, {0x7, 0x0, 0x8}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x58, 0x3, 0x0, 0x1, [{0x54, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x48, 0xb, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_LIMIT_RATE={0xc, 0x1, 0x1, 0x0, 0x3}, @NFTA_LIMIT_UNIT={0xc, 0x2, 0x1, 0x0, 0x10}]}}}, {0x18, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0x4}}}]}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x108}}, 0x0) 413.728601ms ago: executing program 0 (id=2638): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x18) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000840)=@newtaction={0x88c, 0x30, 0xffff, 0x3, 0x0, {}, [{0x878, 0x1, [@m_police={0x874, 0x1, 0x0, 0x0, {{0xb}, {0x848, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x1, 0x4, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x8000002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x9, 0x0, 0xffffffff, 0x0, 0x0, 0x4, 0x0, 0xfffffffc, 0x0, 0xfffffffd, 0x0, 0x0, 0x2000000, 0xffffffff, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14880, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x4, 0x20000000, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c, 0x8, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0xfffffffc, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x7fff, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x7, 0x0, 0x0, 0xfffffffe, {0x3, 0x0, 0x0, 0x0, 0xb, 0x3}, {0x4, 0x2, 0x0, 0x0, 0x0, 0xff}, 0x0, 0x3, 0x2}}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0xfffffffe, 0x0, 0x0, 0x401, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x80000000, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x504, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x4, 0x4, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x1ffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x3, 0x0, 0x0, 0x6, 0x2, 0x24, 0xfffffffe, 0x0, 0x0, 0x1, 0x25d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0xfffffffe, 0x0, 0x0, 0x2, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x80004, 0x0, 0x0, 0x0, 0xf7, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffe, 0x0, 0x0, 0x76, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x7, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x1bde, 0x0, 0x1, 0x4, 0x0, 0x0, 0xffffff7d, 0x0, 0x0, 0xffffff7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x10, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xfffffffb, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x7, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1, 0x5, 0x2, 0x8]}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa, {0x1}}}}]}]}, 0x88c}}, 0x40844) 413.196291ms ago: executing program 1 (id=2650): r0 = perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x20100000, 0x0, 0x0, 0x0, 0x0, 0x0) read(r0, &(0x7f0000000740)=""/21, 0x15) 412.714952ms ago: executing program 2 (id=2651): r0 = syz_io_uring_setup(0xbc3, &(0x7f0000001480)={0x0, 0x1064, 0x80, 0x4, 0x224}, &(0x7f0000000040)=0x0, &(0x7f00000000c0)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_OPENAT2={0x1c, 0x40, 0x0, 0xffffffffffffffff, &(0x7f00000004c0)={0x200000, 0x158, 0x18}, 0x0, 0x18, 0x0, 0x23456}) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) io_uring_enter(r0, 0x47f8, 0x0, 0x0, 0x0, 0x0) 407.549202ms ago: executing program 4 (id=2652): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r0}, 0x18) prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00') pipe2$9p(0x0, 0x80) 357.278693ms ago: executing program 0 (id=2639): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00') mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2) lseek(r0, 0x289e0cb5, 0x0) 357.127403ms ago: executing program 1 (id=2640): syz_mount_image$ext4(&(0x7f0000000140)='ext2\x00', &(0x7f0000000080)='./file0\x00', 0x2000008, &(0x7f00000003c0)={[{@block_validity}, {@nobarrier}, {@jqfmt_vfsv0}]}, 0xfb, 0x477, &(0x7f0000000880)="$eJzs3M9vVEUcAPDv2/7gt62IP0CUKhobjS0tqBw8gNHEgyYmesBjbQsiCzW0GiFEVw94NCTejUcT/wJPejHqycSr3g0JMVxAvTzzdt9rd5fddSlbF9zPJ1k68+YtM9+dN7szb7oNYGBNZP8kEdsj4teIGKtlG0+YqP24fvXC/J9XL8wnkaav/5FUz7t29cJ8cWrxvG1FptJ4vN7yufOn5srlxbN5fnrl9LvTy+fOP33y9NyJxROLZ2YPHz50cOa5Z2ef6UmcWZuu7flwae/ul9+89Or8sUtv/fh1UsTfEMf73f+nmzuWTrQ4NlQkHu++ljvCjrp0MtzHhnBT3o6IrLtGquN/LIZirfPG4qVP+to4YEOlaZpual9cSYH/sST63QKgP/LP+SSiMp+tgevX84PgytHaAiiL+3r+qJUMRyk/Z6RpfdtL2WrrWOWvL7JHNN1PAQDYCN8erf0s5n5r849Sw138I/ne0HhE3B0ROyPinojYFRH3RsR9EXF/RDxQ95xW+z7NmjdJbpz/lC6vK7AuZfO/5/O9rcb5XzH7i/GhPLejGv9IcvxkefFARNwVEZMxsinLz3So47sXf/msXdlE3fwve2T1F3PBvB2Xh5tu0C3MrczdSsz1rnwcsWe4VfzJ6k5A1o+7I2LPvvXVcfLJr/a2K/v3+DvowT5T+mXEE7X+r0RT/IWk8/7k9OYoLx6YLq6KG/3088XX2tV/S/H3QNb/W1te/6vxjyf1+7XLN1/Hxd8+bbum6fL6H61/Tnb9jyZvVNNFwQdzKytnZyJGk1fy40fy4431Vc+bXTs/i39yf+vxvzPWXokHIyK7iB+KiIcjYl/e9kci4tGI2N8h/h9eeOyd9ce/sbL4F26q/9smir3tG4qGTn3/TbWk6KzxDvEn0aL/D1VTk/mRbt7/Orb07K1czQAAAHDnKUXE9khKU6vpUmlqqvb78rtia6m8tLzy1PGl984s1L4jMB4jpeJO19jq/dCozOTL+uL+6GxT/mB+3/jzoS3V/NT8Unmh38HDgNvWZvxnfh/qd+uADef7WjC41jv+0zT9qMdNAf5jPv9hcBn/MLhajP8tTfkOfyMAuJO1+vy3sIfBYP4Pg8v4h8Fl/MPgMv5hIOXfhB/u5gv+G5bI3n/6V3s3iWhoYZr2qRmjt8erUU1EqW+1xzqfPtmnV+zv/I9t3h4d12Wi3+9MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAvfFPAAAA//89VeJz") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0) truncate(&(0x7f00000000c0)='./file1\x00', 0x8fd) preadv2(r0, &(0x7f0000001040)=[{0x0}, {&(0x7f0000001900)=""/4096, 0x1000}], 0x2, 0xd, 0x4005, 0x8) 287.266244ms ago: executing program 4 (id=2641): bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x8, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70200000200000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = memfd_create(&(0x7f0000000400)='\xa3\x9fn\xb4dR\x04i5\x02\xac\xce\xe1\x88\x9d[@8\xd7\xce\x1f 9I\x7f\x15\x1d\x93=\xb5\xe7\\\'L\xe6\xd2\x8e\xbc)JtTDq\x81\xcf\x81\xba\xe51\xf5 \xc8\x10>\xc9\\\x85\x17L\xbf\xcf\x91\xdfM\xf3\x02^T*\x00\x02\xb9~B\x9f\xacl\x1d3\x06o\xf8\x16H\xaa*\x02\xf7\xfb\x06\xf1\x83\x92\xa8\xc2\xcb\xae\xb0\xb4\x93\xb8\x04\xf1\x99\xc2yY+\xd9y\x8a\xd5b\xe8\"q\x1b0)\xccm\xacz\xc1\xadd\x9b6a\xf3\xdds\xbb\x88\xff\b\x85\xb3s\x00\x0e\xbcfvi\x85\xfc.|\xd4h\xec\x82o\x8e\x93\x11\xc1\xd4\xae\x05\x17=\xd9R\xd0\xd4\x90\xcf\x9b\xdc\xaeV\x88\x94\x9f\xe3\xefqi\xed\xa8w\xbe\xd0\xd0-tBl\x9e+\xd3\xed\xce\x9f\x83\x86\xf9\x12\x16Ts\x80\x13]C\xfb`\xc2`\xf7\x1a\x00\x00\x00\x00\x00\x00\x00k\xae\xcb\x1a.\xc2\x8f\xd1x4]PZ\x9e\xd5Y\xf0L\xa4\xbc\x84\xf6\x04L\xff0\x8b\\*\xf9,\xb6\r\x97\xedy\xe0\x8a\xe2\x8ck\xc6S\xc3g\xb9\x1a\xf8\x8f \x9d\x00u7\xd8\'\xf1E\xa4(Q\x80Fy\xb5\xe4q\xc9\xff \xd8\x9d\xad\x11\xf8m\xd3\xbc\x9e\x10D\x7f!\xca\x0ev\x15h$\x01\xdd\xe5\xce\xf8*\xb3\x01\x85\a\xe4qv&\x9c\xac\x9aN~o\xe5\x89\xd5\a\x9f\f\x1f\xc2e/\x8d\x1e\n\xd0_\xbd!^\xa46\xb8j\xc0x\n\xdb\xe1\xa3\xd6\xae;\r\x92@\xa5I\x88Z1F\xf0\x1at\t\xd0\x8a\x04m\x06\xf3BL\xffS\x9eY\xf4\xb0U \xf8\xd00\x88y\xebX\x92\xd5\xbb\xa1h7\xf3\xe0\x0f\xbd\x02\xe4%\xf9\xb1\x87\x8aM\xfeG\xb2L\xbd\x92-\xcd\x1f\xf4\xe1,\xb7G|\xec\"\xa2\xab\xf6\x84\xe0\xcf1\x9a', 0x1) write$binfmt_elf32(r0, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c466000002ed8e4f97765ce27b90300060000000000000000b738000000000035f4c38422a3bc8220000500000004020300b300000000002a002400b3d7c52ebf31a8d5c8c3c6cb00000009e500d5ffffff05ffffff03"], 0xd8) execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) 278.608984ms ago: executing program 4 (id=2642): syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./bus\x00', 0x2000000, &(0x7f0000000500)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYRES64=0x0, @ANYRESHEX, @ANYRESHEX, @ANYRESDEC], 0x1, 0x2b8, &(0x7f0000000800)="$eJzs3NFLU38Yx/Hn5/y5OdEtiKCgeqibuhm6/oAaoRANCnNSXQTHPKux0ybnDGMRuZvotr9DuuwuqP4Bb6Kb7ruTIOjGi+gbnrPpmU6durml7xfIeXae74fzdZvybLCt3n/7rJj3UnmrIgMxlQGRmqyJJNeruv/qxwG/HpKwmlwd+fXt/L0HD29nstnJadWpzMy1tKqOXfz4/OW7S58rI7Pvxz5EZSX5aPVn+vvK0MrZ1T8zTwueFjwtlStq6Vy5XLHmHFvnC14xpXrXsS3P1kLJs92mft4pLyxU1SrNj8YXXNvz1CpVtWhXtVLWiltV64lVKGkqldLRuJxsg22syS1PT1uZHdsm0tEdoeuGW5103UytdTO3fAR7AgAAfWb3+T+Y9Xee/7OzwXE/8/+Zved/Eeb/Lqk13dpj/sex4LoZK17/+23G/A8AAAAAAAAAAAAAAAAAAAAAwL9gzZiEMSaxfqyf8m9HRSQmIqbe7/E20SXhx9+EfvZ4/K/3aLvosNAH92IizpvF3GIuOAb9TF4K4ogt45KQ3/7zoS6op25lJ8fVl5RPzlI9v7SYi0i0kW9ItspfODUR5LU5/7/Ew9dPS0JOt75+umV+SK5cDuVTkpAvj6Usjsz7z+vN/KsJ1Zt3slvyw/46AAAAAACOg5Ru2Pb63e/7C2KyvR/kQ+8PGGOWdnt/YMvr60E5185XVAIAAAAAgEPzqi+KluPY7gGKqIgcIt75whiR3m8jIv1xbzQXN0SkD7ZxVEVMRIIzepD4j414WynTxppBEen53bKPotf/mQAAAAB02ubQv4/Q19dd3BEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACdPu98H1li/rdVo7BIPXS5y5L8gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0Ef+BgAA//+4IRyf") mkdir(&(0x7f00000000c0)='./bus\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./bus/file0\x00', 0x1d8) mount$bind(&(0x7f0000000040)='./bus\x00', &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x1081004, 0x0) 135.658577ms ago: executing program 4 (id=2644): r0 = syz_open_procfs(0x0, &(0x7f0000000280)='mounts\x00') r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x62141) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x804810, &(0x7f0000000a40), 0x26, 0x771, &(0x7f0000001280)="$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") mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 135.188127ms ago: executing program 2 (id=2645): syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x2000001, 0x5d031, 0xffffffffffffffff, 0x0) r0 = getpid() process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) 99.145528ms ago: executing program 1 (id=2646): r0 = openat$selinux_policy(0xffffff9c, &(0x7f0000000300), 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r0, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) getsockopt$packet_int(r1, 0x107, 0x9, 0x0, &(0x7f0000000040)=0x1c) 32.777329ms ago: executing program 1 (id=2647): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2800000070000100000000000000000007000000", @ANYRES32=r2, @ANYBLOB="1000018006000480"], 0x28}}, 0x0) 509.08µs ago: executing program 1 (id=2649): mkdir(&(0x7f0000000000)='./file0\x00', 0x0) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) lsetxattr$trusted_overlay_redirect(0x0, 0x0, 0x0, 0x0, 0x2) mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',cache=f']) 0s ago: executing program 2 (id=2662): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r0 = socket(0x11, 0x2, 0x0) setsockopt(r0, 0x107, 0xd, &(0x7f00000000c0)="0000e20085c75c11a92614431ea3b121", 0x10) kernel console output (not intermixed with test programs): no NLM_F_CREATE or NLM_F_REPLACE [ 40.726898][ T3621] IPv6: NLM_F_CREATE should be set when creating new route [ 40.734169][ T3621] IPv6: NLM_F_CREATE should be set when creating new route [ 40.741455][ T3621] IPv6: NLM_F_CREATE should be set when creating new route [ 40.778940][ T3621] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 40.805361][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 40.821629][ T3629] netlink: 12 bytes leftover after parsing attributes in process `syz.3.72'. [ 41.015696][ T3657] loop3: detected capacity change from 0 to 128 [ 41.062533][ T3657] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100) [ 41.070472][ T3657] FAT-fs (loop3): Filesystem has been set read-only [ 41.075916][ T3665] loop0: detected capacity change from 0 to 1024 [ 41.089175][ T3657] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100) [ 41.097124][ T3657] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100) [ 41.101019][ T3666] process 'syz.2.85' launched '/dev/fd/3' with NULL argv: empty string added [ 41.114690][ T3665] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 41.125649][ T3665] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 41.138894][ T3665] JBD2: no valid journal superblock found [ 41.144760][ T3665] EXT4-fs (loop0): Could not load journal inode [ 41.501581][ T3703] vhci_hcd: invalid port number 61 [ 41.668902][ T3719] netlink: 16 bytes leftover after parsing attributes in process `syz.2.108'. [ 41.926849][ T3741] IPv6: NLM_F_CREATE should be specified when creating new route [ 42.325990][ T3764] loop3: detected capacity change from 0 to 512 [ 42.332544][ T3764] ======================================================= [ 42.332544][ T3764] WARNING: The mand mount option has been deprecated and [ 42.332544][ T3764] and is ignored by this kernel. Remove the mand [ 42.332544][ T3764] option from the mount to silence this warning. [ 42.332544][ T3764] ======================================================= [ 42.423105][ T3764] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 42.457249][ T3764] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 42.471011][ T3764] ext4 filesystem being mounted at /27/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 42.509514][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 42.782499][ T3799] loop3: detected capacity change from 0 to 164 [ 42.818050][ T3799] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 42.853639][ T3799] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 42.870650][ T3803] program syz.1.145 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 42.884190][ T3799] Symlink component flag not implemented [ 42.889882][ T3799] Symlink component flag not implemented [ 42.896370][ T3799] Symlink component flag not implemented (7) [ 42.902400][ T3799] Symlink component flag not implemented (116) [ 43.217464][ T3846] team0: Device lo is loopback device. Loopback devices can't be added as a team port [ 43.228685][ T3846] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 43.447444][ T3876] capability: warning: `syz.2.179' uses deprecated v2 capabilities in a way that may be insecure [ 43.521695][ T3876] program syz.2.179 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 43.748222][ T29] kauditd_printk_skb: 138 callbacks suppressed [ 43.748241][ T29] audit: type=1400 audit(1759193044.071:254): avc: denied { read } for pid=3916 comm="syz.0.196" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 43.795051][ T29] audit: type=1400 audit(1759193044.121:255): avc: denied { setcheckreqprot } for pid=3918 comm="syz.1.197" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 43.830666][ T3925] loop3: detected capacity change from 0 to 2048 [ 43.878086][ T29] audit: type=1400 audit(1759193044.201:256): avc: denied { setopt } for pid=3916 comm="syz.0.196" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 43.897997][ T3933] loop1: detected capacity change from 0 to 512 [ 43.918412][ T3925] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 43.935254][ T29] audit: type=1400 audit(1759193044.261:257): avc: denied { create } for pid=3923 comm="syz.3.200" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 43.946576][ T3933] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 43.992052][ T29] audit: type=1400 audit(1759193044.301:258): avc: denied { read } for pid=3923 comm="syz.3.200" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 44.064072][ T3933] ext4 filesystem being mounted at /26/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 44.089858][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.116438][ T29] audit: type=1400 audit(1759193044.441:259): avc: denied { ioctl } for pid=3932 comm="syz.1.204" path="/26/file1/file1" dev="loop1" ino=15 ioctlcmd=0x5829 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 44.191421][ T29] audit: type=1400 audit(1759193044.471:260): avc: denied { setcurrent } for pid=3945 comm="syz.3.205" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 44.210887][ T29] audit: type=1401 audit(1759193044.471:261): op=security_bounded_transition seresult=denied oldcontext=root:sysadm_r:sysadm_t newcontext=system_u:object_r:hugetlbfs_t [ 44.227972][ T29] audit: type=1400 audit(1759193044.481:262): avc: denied { execmem } for pid=3947 comm="syz.4.206" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 44.247509][ T29] audit: type=1400 audit(1759193044.491:263): avc: denied { name_bind } for pid=3949 comm="syz.3.207" src=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 44.274954][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.356453][ T3966] loop1: detected capacity change from 0 to 512 [ 44.390873][ T3972] Illegal XDP return value 4294967274 on prog (id 92) dev N/A, expect packet loss! [ 44.402012][ T3966] EXT4-fs: Ignoring removed oldalloc option [ 44.408061][ T3966] EXT4-fs: Ignoring removed nobh option [ 44.413631][ T3966] EXT4-fs: Ignoring removed oldalloc option [ 44.431383][ T3966] EXT4-fs (loop1): VFS: Can't find ext4 filesystem [ 44.549392][ T3988] loop4: detected capacity change from 0 to 256 [ 44.558118][ T3988] FAT-fs (loop4): bogus logical sector size 128 [ 44.564622][ T3988] FAT-fs (loop4): Can't find a valid FAT filesystem [ 44.731051][ T3998] SELinux: policydb version 0 does not match my version range 15-35 [ 44.735293][ T4004] __nla_validate_parse: 7 callbacks suppressed [ 44.735314][ T4004] netlink: 40 bytes leftover after parsing attributes in process `syz.0.231'. [ 44.751053][ T3998] SELinux: failed to load policy [ 44.776439][ T4007] netlink: 4228 bytes leftover after parsing attributes in process `syz.4.230'. [ 44.797820][ T4007] netlink: set zone limit has 8 unknown bytes [ 44.851326][ T4013] netlink: 8 bytes leftover after parsing attributes in process `syz.0.235'. [ 44.857213][ T4017] loop2: detected capacity change from 0 to 128 [ 44.906603][ T4017] EXT4-fs: Ignoring removed nobh option [ 44.932275][ T4025] program syz.1.242 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 44.944910][ T4017] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 44.964275][ T4028] random: crng reseeded on system resumption [ 44.978961][ T4017] ext4 filesystem being mounted at /59/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 45.048437][ T3303] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 45.078742][ T4039] loop4: detected capacity change from 0 to 512 [ 45.101909][ T4039] EXT4-fs: Ignoring removed mblk_io_submit option [ 45.145357][ T4039] EXT4-fs (loop4): 1 truncate cleaned up [ 45.165853][ T4039] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 45.205994][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.305238][ T4066] netlink: 16 bytes leftover after parsing attributes in process `syz.3.262'. [ 45.365132][ T4071] netlink: 'syz.0.264': attribute type 3 has an invalid length. [ 45.375901][ T4073] netlink: 28 bytes leftover after parsing attributes in process `syz.1.265'. [ 45.384910][ T4073] netlink: 28 bytes leftover after parsing attributes in process `syz.1.265'. [ 45.431357][ T4075] loop4: detected capacity change from 0 to 1024 [ 45.507616][ T4075] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 45.591209][ T4075] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 45.607527][ T4070] mmap: syz.2.263 (4070) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 45.688081][ T4103] loop2: detected capacity change from 0 to 128 [ 45.702934][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.800230][ T4101] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 45.839221][ T4105] loop0: detected capacity change from 0 to 8192 [ 45.894427][ T4120] netlink: 12 bytes leftover after parsing attributes in process `syz.4.287'. [ 46.017051][ T4129] loop2: detected capacity change from 0 to 2048 [ 46.058707][ T3496] loop2: p1 p2 p3 [ 46.092356][ T4129] loop2: p1 p2 p3 [ 46.193107][ T3686] udevd[3686]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 46.194685][ T3632] udevd[3632]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 46.293239][ T4171] loop4: detected capacity change from 0 to 1024 [ 46.308495][ T3496] udevd[3496]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 46.309049][ T3686] udevd[3686]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 46.324958][ T3632] udevd[3632]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 46.396199][ T4171] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 46.484727][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.587805][ T4210] loop1: detected capacity change from 0 to 512 [ 46.594923][ T4210] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 46.626252][ T4212] loop0: detected capacity change from 0 to 512 [ 46.706686][ T4212] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 46.731435][ T4225] netlink: 'syz.1.329': attribute type 1 has an invalid length. [ 46.739193][ T4225] netlink: 180900 bytes leftover after parsing attributes in process `syz.1.329'. [ 46.756362][ T4212] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 46.784548][ T4212] ext4 filesystem being mounted at /67/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 46.883058][ T4212] EXT4-fs error (device loop0): __ext4_new_inode:1279: comm syz.0.323: failed to insert inode 16: doubly allocated? [ 46.906983][ T4244] team_slave_0: entered promiscuous mode [ 46.912709][ T4244] team_slave_1: entered promiscuous mode [ 46.924787][ T4244] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 46.951614][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.968878][ T4251] loop3: detected capacity change from 0 to 512 [ 46.985518][ T4253] loop4: detected capacity change from 0 to 512 [ 46.993053][ T4253] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 47.006634][ T4258] netlink: 44 bytes leftover after parsing attributes in process `syz.0.343'. [ 47.015517][ T4251] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 47.027683][ T4258] netlink: 43 bytes leftover after parsing attributes in process `syz.0.343'. [ 47.036646][ T4258] netlink: 'syz.0.343': attribute type 5 has an invalid length. [ 47.064116][ T4253] EXT4-fs (loop4): orphan cleanup on readonly fs [ 47.089493][ T4264] loop1: detected capacity change from 0 to 128 [ 47.092560][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.096927][ T4253] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.344: iget: bad i_size value: 360287970189639680 [ 47.125119][ T4253] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.344: couldn't read orphan inode 15 (err -117) [ 47.162192][ T4253] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 47.226684][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.255208][ T4281] loop3: detected capacity change from 0 to 512 [ 47.268927][ T4281] EXT4-fs warning (device loop3): ext4_xattr_inode_get:542: inode #11: comm syz.3.355: ea_inode file size=0 entry size=6 [ 47.289882][ T4281] ------------[ cut here ]------------ [ 47.295671][ T4281] EA inode 11 i_nlink=2 [ 47.296048][ T4281] WARNING: CPU: 1 PID: 4281 at fs/ext4/xattr.c:1053 ext4_xattr_inode_update_ref+0x3d4/0x3f0 [ 47.310778][ T4281] Modules linked in: [ 47.314796][ T4281] CPU: 1 UID: 0 PID: 4281 Comm: syz.3.355 Not tainted syzkaller #0 PREEMPT(voluntary) [ 47.324483][ T4281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 47.334645][ T4281] RIP: 0010:ext4_xattr_inode_update_ref+0x3d4/0x3f0 [ 47.341323][ T4281] Code: 90 49 8d 7e 40 e8 cc dd b7 ff 4d 8b 6e 40 4c 89 e7 e8 e0 d8 b7 ff 41 8b 56 48 48 c7 c7 8d a6 54 86 4c 89 ee e8 dd be 67 ff 90 <0f> 0b 90 90 e9 58 fe ff ff e8 3e 7d ae 03 66 66 66 66 66 2e 0f 1f [ 47.361232][ T4281] RSP: 0018:ffffc900012a77c8 EFLAGS: 00010246 [ 47.367528][ T4281] RAX: 3ee8429dff115400 RBX: ffff888107297170 RCX: 0000000000080000 [ 47.375564][ T4281] RDX: ffffc90004bb4000 RSI: 000000000000435a RDI: 000000000000435b [ 47.383566][ T4281] RBP: 0000000000000002 R08: 0001c900012a763f R09: 0000000000000000 [ 47.391601][ T4281] R10: 00000000ffffffff R11: 0000000000000002 R12: ffff888107297120 [ 47.399836][ T4281] R13: 000000000000000b R14: ffff8881072970d8 R15: 0000000000000001 [ 47.407874][ T4281] FS: 00007f45c0a376c0(0000) GS:ffff8882aef40000(0000) knlGS:0000000000000000 [ 47.416880][ T4281] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 47.423605][ T4281] CR2: 00007fffa0f4b318 CR3: 000000011a514000 CR4: 00000000003506f0 [ 47.431801][ T4281] Call Trace: [ 47.435184][ T4281] [ 47.438248][ T4281] ext4_xattr_inode_dec_ref_all+0x579/0x830 [ 47.444285][ T4281] ? errseq_check+0x2c/0x50 [ 47.448837][ T4281] ext4_xattr_delete_inode+0x6b7/0x790 [ 47.454507][ T4281] ? ext4_truncate+0x92e/0xae0 [ 47.459526][ T4281] ext4_evict_inode+0xa6a/0xd90 [ 47.464594][ T4281] ? __pfx_ext4_evict_inode+0x10/0x10 [ 47.470062][ T4281] evict+0x2e3/0x550 [ 47.474087][ T4281] ? __dquot_initialize+0x146/0x7c0 [ 47.479345][ T4281] iput+0x4ed/0x650 [ 47.483192][ T4281] ext4_process_orphan+0x1a9/0x1c0 [ 47.488449][ T4281] ext4_orphan_cleanup+0x6a8/0xa00 [ 47.493771][ T4281] ext4_fill_super+0x3260/0x35d0 [ 47.498845][ T4281] ? set_blocksize+0x1a8/0x310 [ 47.503670][ T4281] ? sb_set_blocksize+0xe3/0x100 [ 47.508708][ T4281] ? setup_bdev_super+0x30e/0x370 [ 47.513840][ T4281] ? __pfx_ext4_fill_super+0x10/0x10 [ 47.519366][ T4281] get_tree_bdev_flags+0x28e/0x300 [ 47.524637][ T4281] ? __pfx_ext4_fill_super+0x10/0x10 [ 47.529973][ T4281] get_tree_bdev+0x1f/0x30 [ 47.534456][ T4281] ext4_get_tree+0x1c/0x30 [ 47.539024][ T4281] vfs_get_tree+0x57/0x1d0 [ 47.543535][ T4281] do_new_mount+0x207/0x600 [ 47.548240][ T4281] ? security_capable+0x83/0x90 [ 47.553388][ T4281] path_mount+0x4a4/0xb30 [ 47.557875][ T4281] ? user_path_at+0x109/0x130 [ 47.562601][ T4281] __se_sys_mount+0x28f/0x2e0 [ 47.567385][ T4281] __x64_sys_mount+0x67/0x80 [ 47.572031][ T4281] x64_sys_call+0x2b4d/0x2ff0 [ 47.576774][ T4281] do_syscall_64+0xd2/0x200 [ 47.581375][ T4281] ? arch_exit_to_user_mode_prepare+0x27/0x80 [ 47.587544][ T4281] ? irqentry_exit_to_user_mode+0x7e/0xa0 [ 47.593391][ T4281] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 47.599454][ T4281] RIP: 0033:0x7f45c1fd066a [ 47.603972][ T4281] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 47.623647][ T4281] RSP: 002b:00007f45c0a36e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 47.632269][ T4281] RAX: ffffffffffffffda RBX: 00007f45c0a36ef0 RCX: 00007f45c1fd066a [ 47.640481][ T4281] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f45c0a36eb0 [ 47.648541][ T4281] RBP: 0000200000000180 R08: 00007f45c0a36ef0 R09: 0000000000800700 [ 47.656691][ T4281] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 47.664766][ T4281] R13: 00007f45c0a36eb0 R14: 0000000000000473 R15: 0000200000000680 [ 47.672768][ T4281] [ 47.675888][ T4281] ---[ end trace 0000000000000000 ]--- [ 47.682872][ T4281] EXT4-fs (loop3): 1 orphan inode deleted [ 47.689029][ T4281] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 47.732878][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.779131][ T4311] bridge0: entered promiscuous mode [ 47.809963][ T4311] macvtap1: entered allmulticast mode [ 47.815541][ T4311] bridge0: entered allmulticast mode [ 47.824288][ T4311] bridge0: port 3(macvtap1) entered blocking state [ 47.830865][ T4311] bridge0: port 3(macvtap1) entered disabled state [ 47.839166][ T4311] bridge0: left allmulticast mode [ 47.844285][ T4311] bridge0: left promiscuous mode [ 47.846609][ T4319] loop1: detected capacity change from 0 to 512 [ 47.881213][ T4319] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 47.904622][ T4319] ext4 filesystem being mounted at /66/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 47.925846][ T4319] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.371: bg 0: block 289: padding at end of block bitmap is not set [ 47.987257][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.003713][ T4335] loop4: detected capacity change from 0 to 1024 [ 48.018173][ T4332] bridge0: port 2(bridge_slave_1) entered disabled state [ 48.029788][ T4335] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 48.089772][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.155170][ T4351] netlink: 'syz.0.384': attribute type 3 has an invalid length. [ 48.270542][ T4367] loop3: detected capacity change from 0 to 512 [ 48.292407][ T4367] EXT4-fs: Ignoring removed nomblk_io_submit option [ 48.310430][ T4367] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 48.318501][ T4367] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c000e128, mo2=0002] [ 48.331254][ T4367] EXT4-fs (loop3): orphan cleanup on readonly fs [ 48.339906][ T4367] EXT4-fs warning (device loop3): ext4_enable_quotas:7178: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 48.354551][ T4367] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 48.387006][ T4367] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.392: bg 0: block 40: padding at end of block bitmap is not set [ 48.422521][ T4367] EXT4-fs (loop3): Remounting filesystem read-only [ 48.429594][ T4367] EXT4-fs (loop3): 1 truncate cleaned up [ 48.436170][ T4367] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 48.450449][ T4367] EXT4-fs (loop3): shut down requested (2) [ 48.457893][ T4367] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=16 [ 48.466991][ T4367] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=16 [ 48.487800][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.617543][ T4408] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 48.634156][ T4408] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 48.691128][ T4417] netlink: 'syz.2.416': attribute type 1 has an invalid length. [ 48.755057][ T29] kauditd_printk_skb: 97 callbacks suppressed [ 48.755074][ T29] audit: type=1326 audit(1759193049.081:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4429 comm="syz.1.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36a6f0eec9 code=0x7ffc0000 [ 48.784527][ T29] audit: type=1326 audit(1759193049.081:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4429 comm="syz.1.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36a6f0eec9 code=0x7ffc0000 [ 48.807862][ T29] audit: type=1326 audit(1759193049.081:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4429 comm="syz.1.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f36a6f0eec9 code=0x7ffc0000 [ 48.831158][ T29] audit: type=1326 audit(1759193049.081:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4429 comm="syz.1.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36a6f0eec9 code=0x7ffc0000 [ 48.854541][ T29] audit: type=1326 audit(1759193049.081:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4429 comm="syz.1.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7f36a6f0eec9 code=0x7ffc0000 [ 48.877820][ T29] audit: type=1326 audit(1759193049.081:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4429 comm="syz.1.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36a6f0eec9 code=0x7ffc0000 [ 48.906635][ T4425] SELinux: Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 49.145710][ T29] audit: type=1400 audit(1759193049.471:366): avc: denied { write } for pid=4454 comm="syz.3.430" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1 [ 49.288174][ T4461] loop0: detected capacity change from 0 to 128 [ 49.665481][ T4485] syz.0.442 (4485) used greatest stack depth: 10184 bytes left [ 49.713926][ T4510] netem: change failed [ 49.757846][ T4512] loop3: detected capacity change from 0 to 164 [ 49.766499][ T4512] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 49.786330][ T4514] (unnamed net_device) (uninitialized): invalid ARP target 0.0.0.0 specified for addition [ 49.788409][ T29] audit: type=1400 audit(1759193050.101:367): avc: denied { mount } for pid=4511 comm="syz.3.455" name="/" dev="loop3" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1 [ 49.796448][ T4514] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (0) [ 49.842647][ T29] audit: type=1400 audit(1759193050.161:368): avc: denied { unmount } for pid=3311 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1 [ 49.949374][ T4521] loop4: detected capacity change from 0 to 8192 [ 50.034577][ T4539] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 50.052859][ T29] audit: type=1400 audit(1759193050.371:369): avc: denied { ioctl } for pid=4538 comm="syz.0.467" path="socket:[8542]" dev="sockfs" ino=8542 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 50.124201][ T4545] program syz.1.470 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 50.284429][ T4553] loop2: detected capacity change from 0 to 8192 [ 50.325983][ T4553] FAT-fs (loop2): error, invalid access to FAT (entry 0x0000ff00) [ 50.346646][ T4553] FAT-fs (loop2): error, invalid access to FAT (entry 0x0000ff00) [ 50.408805][ T4571] __nla_validate_parse: 12 callbacks suppressed [ 50.408823][ T4571] netlink: 277 bytes leftover after parsing attributes in process `syz.1.484'. [ 50.461365][ T4578] SELinux: Context system_u:object_r:crash_device_t:s0 is not valid (left unmapped). [ 50.520786][ T4589] SELinux: policydb version 0 does not match my version range 15-35 [ 50.529807][ T4589] SELinux: failed to load policy [ 50.596897][ T4602] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0) [ 50.805395][ T4628] SELinux: policydb table sizes (133,14) do not match mine (8,7) [ 50.813380][ T4628] SELinux: failed to load policy [ 50.858241][ T4634] loop2: detected capacity change from 0 to 256 [ 50.890619][ T4638] vlan2: entered allmulticast mode [ 50.895923][ T4638] hsr0: entered allmulticast mode [ 50.900991][ T4638] hsr_slave_0: entered allmulticast mode [ 50.906713][ T4638] hsr_slave_1: entered allmulticast mode [ 51.092041][ T4666] loop3: detected capacity change from 0 to 512 [ 51.113710][ T4666] EXT4-fs: Ignoring removed nobh option [ 51.127333][ T4666] EXT4-fs (loop3): orphan cleanup on readonly fs [ 51.133883][ T4666] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -13 [ 51.143240][ T4666] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 51.164190][ T4666] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #13: comm syz.3.528: attempt to clear invalid blocks 2 len 1 [ 51.200865][ T4666] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.528: invalid indirect mapped block 1819239214 (level 0) [ 51.219714][ T4666] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.528: invalid indirect mapped block 1819239214 (level 1) [ 51.244307][ T4666] EXT4-fs (loop3): 1 truncate cleaned up [ 51.250648][ T4666] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 51.278331][ T4666] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 51.295064][ T4666] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 51.322467][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.356704][ T4681] netlink: 48 bytes leftover after parsing attributes in process `syz.4.535'. [ 51.427586][ T4693] 9pnet_fd: Insufficient options for proto=fd [ 51.613317][ T4730] loop0: detected capacity change from 0 to 1024 [ 51.645881][ T4730] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 51.690229][ T4743] loop2: detected capacity change from 0 to 512 [ 51.708735][ T4743] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 51.717894][ T4743] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 51.728177][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.743933][ T4743] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended [ 51.762895][ T4743] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 51.772419][ T4743] System zones: 0-2, 18-18, 34-34 [ 51.782650][ T4743] EXT4-fs (loop2): 1 truncate cleaned up [ 51.793118][ T4743] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 51.830071][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.854631][ T4765] netlink: 148 bytes leftover after parsing attributes in process `syz.3.569'. [ 51.871686][ T4765] netlink: 40 bytes leftover after parsing attributes in process `syz.3.569'. [ 52.083627][ T4795] bpf: Bad value for 'uid' [ 52.157263][ T4803] loop2: detected capacity change from 0 to 4096 [ 52.178731][ T4803] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 52.261650][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 52.404448][ T4831] netlink: 4 bytes leftover after parsing attributes in process `syz.2.594'. [ 52.405429][ T4829] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=4829 comm=syz.1.599 [ 52.441801][ T4836] loop0: detected capacity change from 0 to 512 [ 52.474576][ T4836] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 52.489200][ T4836] EXT4-fs (loop0): orphan cleanup on readonly fs [ 52.500638][ T4836] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #16: comm syz.0.601: corrupted inode contents [ 52.563402][ T4849] C: renamed from team_slave_0 (while UP) [ 52.575788][ T4836] EXT4-fs (loop0): Remounting filesystem read-only [ 52.593008][ T4849] netlink: 'syz.4.607': attribute type 2 has an invalid length. [ 52.600847][ T4849] netlink: 136 bytes leftover after parsing attributes in process `syz.4.607'. [ 52.612404][ T4836] EXT4-fs (loop0): 1 truncate cleaned up [ 52.621712][ T4849] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 52.624433][ T1684] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 52.647530][ T1684] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 52.676887][ T1684] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started [ 52.687831][ T4836] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 52.736317][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 53.058529][ T4882] netlink: 'syz.0.622': attribute type 17 has an invalid length. [ 53.089762][ T4882] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 53.119216][ T4915] netlink: 36 bytes leftover after parsing attributes in process `syz.3.638'. [ 53.273503][ T4931] loop0: detected capacity change from 0 to 2048 [ 53.299659][ T4931] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 53.330050][ T4931] ext4 filesystem being mounted at /124/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 53.361115][ T4931] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.645: bg 0: block 345: padding at end of block bitmap is not set [ 53.407281][ T4931] EXT4-fs (loop0): Remounting filesystem read-only [ 53.479101][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 53.497372][ T4940] loop3: detected capacity change from 0 to 1024 [ 53.519750][ T4940] EXT4-fs: Ignoring removed nobh option [ 53.525446][ T4940] EXT4-fs: inline encryption not supported [ 53.578858][ T4940] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 53.596590][ T4948] netlink: 24 bytes leftover after parsing attributes in process `syz.0.652'. [ 53.605585][ T4948] netlink: 24 bytes leftover after parsing attributes in process `syz.0.652'. [ 53.626236][ T4940] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4183: comm syz.3.649: Allocating blocks 497-513 which overlap fs metadata [ 53.693998][ T4949] EXT4-fs (loop3): pa ffff88810446b690: logic 16, phys. 129, len 24 [ 53.697977][ T4948] netlink: 24 bytes leftover after parsing attributes in process `syz.0.652'. [ 53.702113][ T4949] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1 [ 53.753024][ T4951] loop4: detected capacity change from 0 to 512 [ 53.789228][ T4951] EXT4-fs (loop4): external journal device major/minor numbers have changed [ 53.824096][ T29] kauditd_printk_skb: 97 callbacks suppressed [ 53.824113][ T29] audit: type=1400 audit(1759193054.111:461): avc: denied { allowed } for pid=4952 comm="syz.0.654" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 53.849436][ T29] audit: type=1400 audit(1759193054.121:462): avc: denied { create } for pid=4952 comm="syz.0.654" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 53.870641][ T29] audit: type=1400 audit(1759193054.121:463): avc: denied { map } for pid=4952 comm="syz.0.654" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=9340 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 53.894745][ T29] audit: type=1400 audit(1759193054.121:464): avc: denied { read write } for pid=4952 comm="syz.0.654" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=9340 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 53.936702][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 53.946484][ T29] audit: type=1400 audit(1759193054.211:465): avc: denied { module_request } for pid=4950 comm="syz.4.653" kmod="block-major-0-4" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 53.968528][ T29] audit: type=1400 audit(1759193054.261:466): avc: denied { tracepoint } for pid=4955 comm="syz.0.656" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 53.974078][ T4951] EXT4-fs (loop4): failed to open journal device unknown-block(0,4) -6 [ 53.988140][ T29] audit: type=1400 audit(1759193054.261:467): avc: denied { read } for pid=4955 comm="syz.0.656" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 54.019438][ T29] audit: type=1400 audit(1759193054.261:468): avc: denied { open } for pid=4955 comm="syz.0.656" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 54.042858][ T29] audit: type=1400 audit(1759193054.261:469): avc: denied { ioctl } for pid=4955 comm="syz.0.656" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x937e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 54.158369][ T29] audit: type=1400 audit(1759193054.481:470): avc: denied { create } for pid=4964 comm="syz.3.659" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 54.242136][ T4981] netlink: 'syz.2.666': attribute type 2 has an invalid length. [ 54.269722][ T4987] loop0: detected capacity change from 0 to 512 [ 54.282010][ T4987] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 54.447054][ T5021] netlink: 'syz.3.685': attribute type 14 has an invalid length. [ 54.455477][ T5023] loop2: detected capacity change from 0 to 512 [ 54.467289][ T5023] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 54.498557][ T5023] ext4 filesystem being mounted at /139/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 54.536594][ T5033] loop0: detected capacity change from 0 to 1024 [ 54.549924][ T5023] EXT4-fs error (device loop2): ext4_get_first_dir_block:3529: inode #12: comm syz.2.686: Directory hole found for htree leaf block 0 [ 54.565652][ T5033] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 54.590266][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 54.619223][ T5033] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 54.684065][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 54.708249][ T5053] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 54.720349][ T5053] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 54.766295][ T5064] loop0: detected capacity change from 0 to 128 [ 54.807140][ T5064] bio_check_eod: 13139 callbacks suppressed [ 54.807156][ T5064] syz.0.700: attempt to access beyond end of device [ 54.807156][ T5064] loop0: rw=2049, sector=145, nr_sectors = 88 limit=128 [ 54.863164][ T1684] kworker/u8:7: attempt to access beyond end of device [ 54.863164][ T1684] loop0: rw=1, sector=233, nr_sectors = 808 limit=128 [ 54.897328][ T5077] loop3: detected capacity change from 0 to 512 [ 54.940615][ T5077] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 54.955965][ T5086] netlink: 'syz.2.714': attribute type 1 has an invalid length. [ 54.983545][ T5077] ext4 filesystem being mounted at /168/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 55.065184][ T5077] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.712: corrupted xattr block 32: bad e_name length [ 55.103694][ T5077] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 55.117036][ T5100] loop2: detected capacity change from 0 to 1024 [ 55.123993][ T5077] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.712: corrupted xattr block 32: bad e_name length [ 55.134179][ T5100] EXT4-fs: Ignoring removed oldalloc option [ 55.143311][ T5100] EXT4-fs: Ignoring removed bh option [ 55.150386][ T5077] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 55.155721][ T5099] loop0: detected capacity change from 0 to 4096 [ 55.162426][ T5102] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 55.179039][ T5077] EXT4-fs error (device loop3): ext4_xattr_block_list:762: inode #15: comm syz.3.712: corrupted xattr block 32: bad e_name length [ 55.180227][ T5099] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 55.203213][ T5099] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 55.217208][ T5100] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 55.233964][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 55.254805][ T5107] netlink: 'syz.1.723': attribute type 25 has an invalid length. [ 55.263224][ T5107] netlink: 'syz.1.723': attribute type 25 has an invalid length. [ 55.270678][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 55.285599][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 55.447372][ T5138] __nla_validate_parse: 7 callbacks suppressed [ 55.447453][ T5138] netlink: 10 bytes leftover after parsing attributes in process `syz.0.739'. [ 55.668250][ T3376] hid-generic 0000:0000:0000.0001: unknown main item tag 0x6 [ 55.675786][ T3376] hid-generic 0000:0000:0000.0001: unknown main item tag 0x6 [ 55.683214][ T3376] hid-generic 0000:0000:0000.0001: unknown main item tag 0x6 [ 55.690669][ T3376] hid-generic 0000:0000:0000.0001: unknown main item tag 0x6 [ 55.698218][ T3376] hid-generic 0000:0000:0000.0001: unknown main item tag 0x6 [ 55.705694][ T3376] hid-generic 0000:0000:0000.0001: unknown main item tag 0x6 [ 55.713109][ T3376] hid-generic 0000:0000:0000.0001: unknown main item tag 0x6 [ 55.720562][ T3376] hid-generic 0000:0000:0000.0001: unknown main item tag 0x6 [ 55.727987][ T3376] hid-generic 0000:0000:0000.0001: unknown main item tag 0x6 [ 55.735459][ T3376] hid-generic 0000:0000:0000.0001: unknown main item tag 0x6 [ 55.743126][ T3376] hid-generic 0000:0000:0000.0001: item fetching failed at offset 82/83 [ 55.752611][ T3376] hid-generic 0000:0000:0000.0001: probe with driver hid-generic failed with error -22 [ 55.793215][ T5174] SELinux: Context system_u:object_r:hwdata_t:s0 is not valid (left unmapped). [ 55.876601][ T5193] netlink: 8 bytes leftover after parsing attributes in process `syz.2.765'. [ 55.896508][ T5193] netlink: 312 bytes leftover after parsing attributes in process `syz.2.765'. [ 55.905702][ T5193] netlink: 8 bytes leftover after parsing attributes in process `syz.2.765'. [ 55.923741][ T5199] loop4: detected capacity change from 0 to 512 [ 55.931867][ T5199] journal_path: Non-blockdev passed as './bus' [ 55.938096][ T5199] EXT4-fs: error: could not find journal device path [ 55.999172][ T5211] loop2: detected capacity change from 0 to 128 [ 56.082200][ T5221] loop4: detected capacity change from 0 to 128 [ 56.147156][ T5233] netlink: 8 bytes leftover after parsing attributes in process `syz.2.786'. [ 56.338628][ T5261] netlink: 8 bytes leftover after parsing attributes in process `syz.0.798'. [ 56.700463][ T5283] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 56.892236][ T5312] netlink: 16 bytes leftover after parsing attributes in process `syz.0.822'. [ 56.967024][ T5320] loop5: detected capacity change from 0 to 7 [ 57.016789][ T5324] loop0: detected capacity change from 0 to 512 [ 57.026775][ T5326] netlink: 1 bytes leftover after parsing attributes in process `syz.3.827'. [ 57.035648][ T5326] netlink: 4 bytes leftover after parsing attributes in process `syz.3.827'. [ 57.036194][ T5324] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 57.056335][ T5326] netlink: 1 bytes leftover after parsing attributes in process `syz.3.827'. [ 57.076596][ T5324] EXT4-fs (loop0): 1 truncate cleaned up [ 57.083042][ T5324] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 57.126950][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 57.206099][ T5349] loop3: detected capacity change from 0 to 512 [ 57.222708][ T5349] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 57.243190][ T5349] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.835: invalid block [ 57.273065][ T5349] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.835: invalid indirect mapped block 4294967295 (level 1) [ 57.297126][ T5349] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.835: invalid indirect mapped block 4294967295 (level 1) [ 57.317625][ T5349] EXT4-fs (loop3): 2 truncates cleaned up [ 57.329921][ T5349] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 57.384468][ T5365] loop2: detected capacity change from 0 to 512 [ 57.423443][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 57.464930][ T5365] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 57.519704][ T5365] ext4 filesystem being mounted at /172/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 57.551368][ T5365] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.842: corrupted inode contents [ 57.577766][ T5365] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #2: comm syz.2.842: mark_inode_dirty error [ 57.590610][ T5365] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #2: comm syz.2.842: corrupted inode contents [ 57.603581][ T5365] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #2: comm syz.2.842: mark_inode_dirty error [ 57.656636][ T5390] loop3: detected capacity change from 0 to 512 [ 57.663619][ T5390] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22 [ 57.709579][ T5391] EXT4-fs warning (device loop2): ext4_empty_dir:3089: inode #18: comm syz.2.842: directory missing '.' [ 57.751689][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 57.908839][ T5426] loop0: detected capacity change from 0 to 512 [ 57.929528][ T5426] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 57.942407][ T5426] ext4 filesystem being mounted at /172/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 58.003286][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 58.069286][ T5440] 9pnet: Could not find request transport: r [ 58.123725][ T5456] syz.4.881 (5456) used greatest stack depth: 9424 bytes left [ 58.340632][ T5499] loop2: detected capacity change from 0 to 512 [ 58.370542][ T5499] ext4 filesystem being mounted at /184/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 58.391560][ T5499] EXT4-fs error (device loop2): ext4_acquire_dquot:6943: comm syz.2.905: Failed to acquire dquot type 0 [ 58.404717][ T5499] EXT4-fs (loop2): Remounting filesystem read-only [ 58.411463][ T5509] loop3: detected capacity change from 0 to 1024 [ 58.434364][ T5509] EXT4-fs: Ignoring removed orlov option [ 58.458576][ T5509] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.907: bg 0: block 232: padding at end of block bitmap is not set [ 58.485739][ T5509] EXT4-fs (loop3): Remounting filesystem read-only [ 58.492343][ T5509] EXT4-fs (loop3): error restoring inline_data for inode -- potential data loss! (inode 12, error -30) [ 58.518920][ T5526] vhci_hcd: default hub control req: 010b v0000 i0000 l0 [ 58.817491][ T5581] loop1: detected capacity change from 0 to 512 [ 58.824775][ T5581] EXT4-fs: Ignoring removed orlov option [ 58.842523][ T5581] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 58.860953][ T5581] EXT4-fs error (device loop1): ext4_iget_extra_inode:5104: inode #15: comm syz.1.941: corrupted in-inode xattr: e_value size too large [ 58.877926][ T5581] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.941: couldn't read orphan inode 15 (err -117) [ 58.895155][ T29] kauditd_printk_skb: 302 callbacks suppressed [ 58.895172][ T29] audit: type=1326 audit(1759193059.221:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5587 comm="syz.2.954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c170eec9 code=0x7ffc0000 [ 58.971172][ T29] audit: type=1326 audit(1759193059.251:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5587 comm="syz.2.954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c170eec9 code=0x7ffc0000 [ 58.994790][ T29] audit: type=1326 audit(1759193059.251:773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5587 comm="syz.2.954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7f53c170eec9 code=0x7ffc0000 [ 58.998629][ T5597] bridge_slave_0: left allmulticast mode [ 59.018109][ T29] audit: type=1326 audit(1759193059.251:774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5587 comm="syz.2.954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c170eec9 code=0x7ffc0000 [ 59.018150][ T29] audit: type=1400 audit(1759193059.271:775): avc: denied { bind } for pid=5594 comm="syz.3.946" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 59.023797][ T5597] bridge_slave_0: left promiscuous mode [ 59.047055][ T29] audit: type=1400 audit(1759193059.271:776): avc: denied { name_bind } for pid=5594 comm="syz.3.946" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1 [ 59.066335][ T5597] bridge0: port 1(bridge_slave_0) entered disabled state [ 59.071829][ T29] audit: type=1400 audit(1759193059.271:777): avc: denied { node_bind } for pid=5594 comm="syz.3.946" saddr=::1 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1 [ 59.123074][ T5600] netlink: 'syz.2.948': attribute type 10 has an invalid length. [ 59.132110][ T5597] bridge_slave_1: left allmulticast mode [ 59.137919][ T5597] bridge_slave_1: left promiscuous mode [ 59.143634][ T5597] bridge0: port 2(bridge_slave_1) entered disabled state [ 59.153988][ T5597] bond0: (slave bond_slave_0): Releasing backup interface [ 59.165033][ T5597] bond0: (slave bond_slave_1): Releasing backup interface [ 59.187284][ T5597] team0: Port device team_slave_0 removed [ 59.205559][ T5597] team0: Port device team_slave_1 removed [ 59.206847][ T5609] loop0: detected capacity change from 0 to 512 [ 59.213895][ T5597] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 59.225080][ T5597] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 59.234548][ T5597] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 59.241961][ T5597] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 59.250325][ T5609] ext4 filesystem being mounted at /189/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 59.267490][ T5600] batman_adv: batadv0: Adding interface: veth1_vlan [ 59.274220][ T5600] batman_adv: batadv0: The MTU of interface veth1_vlan is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 59.301648][ T29] audit: type=1400 audit(1759193059.601:778): avc: denied { read } for pid=5608 comm="syz.0.951" path="/189/file0/cpu.stat" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 59.324552][ T29] audit: type=1400 audit(1759193059.601:779): avc: denied { ioctl } for pid=5608 comm="syz.0.951" path="/189/file0/cpu.stat" dev="loop0" ino=18 ioctlcmd=0x583b scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 59.351040][ T5600] batman_adv: batadv0: Interface activated: veth1_vlan [ 59.430637][ T29] audit: type=1326 audit(1759193059.751:780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5623 comm="syz.2.957" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c170eec9 code=0x7ffc0000 [ 59.544282][ T5640] netlink: 'syz.0.967': attribute type 7 has an invalid length. [ 59.556099][ T5641] loop2: detected capacity change from 0 to 512 [ 59.575864][ T5641] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 59.579215][ T5643] SELinux: security_context_str_to_sid (L) failed with errno=-22 [ 59.612818][ T5641] EXT4-fs error (device loop2): ext4_acquire_dquot:6943: comm syz.2.966: Failed to acquire dquot type 1 [ 59.651609][ T5641] EXT4-fs (loop2): 1 truncate cleaned up [ 59.831072][ T5695] loop4: detected capacity change from 0 to 128 [ 59.903009][ T5703] delete_channel: no stack [ 60.269953][ T5754] lo speed is unknown, defaulting to 1000 [ 60.298578][ T5754] lo speed is unknown, defaulting to 1000 [ 60.316487][ T5754] lo speed is unknown, defaulting to 1000 [ 60.322691][ T5754] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 60.335596][ T5754] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 60.356495][ T5754] lo speed is unknown, defaulting to 1000 [ 60.365339][ T5754] lo speed is unknown, defaulting to 1000 [ 60.372281][ T5754] lo speed is unknown, defaulting to 1000 [ 60.380954][ T5754] lo speed is unknown, defaulting to 1000 [ 60.390085][ T5754] lo speed is unknown, defaulting to 1000 [ 60.423859][ T5766] loop0: detected capacity change from 0 to 512 [ 60.431653][ T5766] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 60.455731][ T5766] ext4 filesystem being mounted at /212/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 60.470857][ T5766] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.1023: corrupted xattr block 19: overlapping e_value [ 60.484876][ T5766] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=15 [ 60.494973][ T5766] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.1023: corrupted xattr block 19: overlapping e_value [ 60.509258][ T5766] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=15 [ 60.525502][ T5766] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.1023: corrupted xattr block 19: overlapping e_value [ 60.646687][ T5788] __nla_validate_parse: 5 callbacks suppressed [ 60.646706][ T5788] netlink: 6 bytes leftover after parsing attributes in process `syz.0.1034'. [ 60.662175][ T5788] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 60.693028][ T5795] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1036'. [ 60.702199][ T5795] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1036'. [ 60.711233][ T5795] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1036'. [ 61.112644][ T5856] SELinux: policydb version 0 does not match my version range 15-35 [ 61.122112][ T5856] SELinux: failed to load policy [ 61.139564][ T5861] netlink: 'syz.1.1067': attribute type 1 has an invalid length. [ 61.195503][ T5864] syz.2.1072 (5864) used greatest stack depth: 9320 bytes left [ 61.196149][ T5869] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 61.210520][ T5869] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 61.222165][ T5869] vhci_hcd: default hub control req: 230f v0004 i0000 l3 [ 61.476718][ T5900] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=14385 sclass=netlink_route_socket pid=5900 comm=syz.3.1085 [ 61.505663][ T5902] netlink: 'syz.1.1086': attribute type 21 has an invalid length. [ 61.521584][ T5902] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1086'. [ 61.530711][ T5902] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1086'. [ 61.566490][ T5907] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1089'. [ 61.607278][ T5912] unsupported nla_type 52263 [ 61.779974][ T5938] IPv6: Can't replace route, no match found [ 61.862814][ T5948] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1119'. [ 61.885992][ T5948] bridge0: entered promiscuous mode [ 61.893472][ T5948] bridge0: port 3(macvlan3) entered blocking state [ 61.900259][ T5948] bridge0: port 3(macvlan3) entered disabled state [ 61.909059][ T5948] macvlan3: entered allmulticast mode [ 61.914530][ T5948] bridge0: entered allmulticast mode [ 61.922595][ T5948] macvlan3: left allmulticast mode [ 61.927822][ T5948] bridge0: left allmulticast mode [ 61.933664][ T5948] bridge0: left promiscuous mode [ 61.967951][ T5956] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1123'. [ 62.189190][ T5998] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 62.199960][ T6000] SELinux: Context @ is not valid (left unmapped). [ 62.259122][ T6005] loop3: detected capacity change from 0 to 1024 [ 62.325186][ T6016] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1143'. [ 62.334235][ T6016] netlink: 'syz.4.1143': attribute type 21 has an invalid length. [ 62.385723][ T6019] lo speed is unknown, defaulting to 1000 [ 62.419953][ T6026] IPv6: NLM_F_CREATE should be specified when creating new route [ 62.516097][ T6035] IPv6: sit1: Disabled Multicast RS [ 62.532940][ T6035] sit1: entered allmulticast mode [ 62.555396][ T6037] usb usb8: usbfs: process 6037 (syz.2.1152) did not claim interface 0 before use [ 62.570036][ T2955] kernel write not supported for file /null (pid: 2955 comm: kworker/1:2) [ 62.856667][ T6081] loop0: detected capacity change from 0 to 128 [ 62.990812][ T6104] netlink: 'syz.0.1184': attribute type 1 has an invalid length. [ 63.001997][ T6106] loop4: detected capacity change from 0 to 128 [ 63.107775][ T6124] loop2: detected capacity change from 0 to 512 [ 63.118922][ T6124] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 63.134665][ T6124] EXT4-fs (loop2): 1 truncate cleaned up [ 63.149275][ T6129] SELinux: failed to load policy [ 63.153996][ T6124] EXT4-fs error (device loop2): ext4_read_inline_dir:1476: inode #12: block 7: comm syz.2.1203: path /248/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=40, inode=2085390, rec_len=0, size=80 fake=0 [ 63.272185][ T6148] program syz.3.1202 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 63.367791][ T6166] C: renamed from team_slave_0 [ 63.387476][ T6166] netlink: 'syz.2.1213': attribute type 3 has an invalid length. [ 63.395333][ T6166] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 63.441571][ T6178] loop0: detected capacity change from 0 to 2048 [ 63.485592][ T6178] loop0: p2 < > p4 [ 63.490224][ T6178] loop0: p4 size 262144 extends beyond EOD, truncated [ 63.524898][ T6191] lo speed is unknown, defaulting to 1000 [ 63.531745][ T6191] lo speed is unknown, defaulting to 1000 [ 63.537750][ T6191] lo speed is unknown, defaulting to 1000 [ 63.609679][ T6191] infiniband sz1: set active [ 63.614683][ T6191] infiniband sz1: added lo [ 63.619672][ T3410] lo speed is unknown, defaulting to 1000 [ 63.633763][ T6191] RDS/IB: sz1: added [ 63.637960][ T6191] smc: adding ib device sz1 with port count 1 [ 63.644369][ T6191] smc: ib device sz1 port 1 has pnetid [ 63.650314][ T3410] lo speed is unknown, defaulting to 1000 [ 63.664214][ T6191] lo speed is unknown, defaulting to 1000 [ 63.722281][ T6191] lo speed is unknown, defaulting to 1000 [ 63.758496][ T6191] lo speed is unknown, defaulting to 1000 [ 63.795870][ T6191] lo speed is unknown, defaulting to 1000 [ 63.849042][ T6191] lo speed is unknown, defaulting to 1000 [ 63.924107][ T6223] lo speed is unknown, defaulting to 1000 [ 63.931171][ T6191] lo speed is unknown, defaulting to 1000 [ 63.961821][ T29] kauditd_printk_skb: 149 callbacks suppressed [ 63.961900][ T29] audit: type=1326 audit(1759193064.281:928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6229 comm="syz.1.1240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36a6f0eec9 code=0x7ffc0000 [ 63.995836][ T29] audit: type=1326 audit(1759193064.321:929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6229 comm="syz.1.1240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7f36a6f0eec9 code=0x7ffc0000 [ 64.019151][ T29] audit: type=1326 audit(1759193064.321:930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6229 comm="syz.1.1240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36a6f0eec9 code=0x7ffc0000 [ 64.043236][ T29] audit: type=1326 audit(1759193064.321:931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6229 comm="syz.1.1240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36a6f0eec9 code=0x7ffc0000 [ 64.149762][ T6241] loop2: detected capacity change from 0 to 512 [ 64.210478][ T6241] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 64.246329][ T6241] EXT4-fs (loop2): orphan cleanup on readonly fs [ 64.287160][ T6241] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.1256: corrupted inode contents [ 64.311628][ T6241] EXT4-fs (loop2): Remounting filesystem read-only [ 64.328044][ T6241] EXT4-fs (loop2): 1 truncate cleaned up [ 64.345660][ T309] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 64.356384][ T309] Quota error (device loop2): write_blk: dquota write failed [ 64.364662][ T309] Quota error (device loop2): remove_free_dqentry: Can't write block (5) with free entries [ 64.374819][ T309] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 64.385461][ T309] Quota error (device loop2): write_blk: dquota write failed [ 64.392878][ T309] Quota error (device loop2): free_dqentry: Can't move quota data block (5) to free list [ 64.433687][ T29] audit: type=1326 audit(1759193064.741:932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6260 comm="syz.3.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45c1fceec9 code=0x7ffc0000 [ 64.458108][ T29] audit: type=1326 audit(1759193064.741:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6260 comm="syz.3.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f45c1fceec9 code=0x7ffc0000 [ 64.464935][ T6259] loop4: detected capacity change from 0 to 1024 [ 64.532107][ T309] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started [ 64.623157][ T6289] loop0: detected capacity change from 0 to 256 [ 64.634627][ T6291] random: crng reseeded on system resumption [ 64.748456][ T6308] random: crng reseeded on system resumption [ 64.905671][ T6332] loop1: detected capacity change from 0 to 128 [ 65.055292][ T6347] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 65.087927][ T6351] netlink: set zone limit has 8 unknown bytes [ 65.284266][ T6375] loop2: detected capacity change from 0 to 256 [ 65.292960][ T6375] FAT-fs (loop2): bogus logical sector size 128 [ 65.300101][ T6375] FAT-fs (loop2): Can't find a valid FAT filesystem [ 65.500161][ T6407] loop3: detected capacity change from 0 to 512 [ 65.576624][ T6413] loop2: detected capacity change from 0 to 2048 [ 65.590065][ T6407] ext4 filesystem being mounted at /286/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 65.795099][ T6457] program syz.0.1342 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 65.911418][ T6476] __nla_validate_parse: 10 callbacks suppressed [ 65.911435][ T6476] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1350'. [ 66.037580][ T6494] netlink: 176 bytes leftover after parsing attributes in process `syz.3.1356'. [ 66.069352][ T6496] team0: Device lo is loopback device. Loopback devices can't be added as a team port [ 66.080217][ T6496] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 66.095575][ T1045] lo speed is unknown, defaulting to 1000 [ 66.200146][ T6513] loop2: detected capacity change from 0 to 164 [ 66.229421][ T6513] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 66.262324][ T6513] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 66.272407][ T6513] Symlink component flag not implemented [ 66.278117][ T6513] Symlink component flag not implemented [ 66.284568][ T6522] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1372'. [ 66.293581][ T6522] netlink: 196 bytes leftover after parsing attributes in process `syz.1.1372'. [ 66.303829][ T6513] Symlink component flag not implemented (7) [ 66.309879][ T6513] Symlink component flag not implemented (116) [ 66.316423][ T6522] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1372'. [ 66.325745][ T6522] netlink: 196 bytes leftover after parsing attributes in process `syz.1.1372'. [ 66.396505][ T6539] program syz.2.1378 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 66.823651][ T6564] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1390'. [ 66.866377][ T6566] loop2: detected capacity change from 0 to 512 [ 66.884422][ T6566] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 66.916223][ T6566] ext4 filesystem being mounted at /296/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 67.587159][ T6611] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1411'. [ 67.601160][ T6620] vhci_hcd: invalid port number 61 [ 67.753148][ T6647] loop4: detected capacity change from 0 to 1024 [ 67.765487][ T6647] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 67.776491][ T6647] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 67.827077][ T6647] JBD2: no valid journal superblock found [ 67.832966][ T6647] EXT4-fs (loop4): Could not load journal inode [ 67.920944][ T6677] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1440'. [ 68.002645][ T6689] loop0: detected capacity change from 0 to 512 [ 68.015008][ T6689] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 68.025827][ T6687] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 68.033084][ T6687] IPv6: NLM_F_CREATE should be set when creating new route [ 68.040325][ T6687] IPv6: NLM_F_CREATE should be set when creating new route [ 68.047627][ T6687] IPv6: NLM_F_CREATE should be set when creating new route [ 68.058596][ T6687] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 68.067142][ T6689] EXT4-fs (loop0): 1 truncate cleaned up [ 68.229941][ T6717] loop0: detected capacity change from 0 to 2048 [ 68.366799][ T6726] lo speed is unknown, defaulting to 1000 [ 68.373084][ T6726] lo speed is unknown, defaulting to 1000 [ 68.482028][ T6733] netlink: 'syz.1.1466': attribute type 13 has an invalid length. [ 68.489935][ T6733] netlink: 24859 bytes leftover after parsing attributes in process `syz.1.1466'. [ 68.633446][ T6743] loop1: detected capacity change from 0 to 512 [ 68.640721][ T6743] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 68.654626][ T6743] EXT4-fs (loop1): 1 truncate cleaned up [ 68.662955][ T6743] EXT4-fs (loop1): shut down requested (1) [ 68.669339][ T6743] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop1 ino=15 [ 68.678460][ T6743] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop1 ino=15 [ 68.805548][ T6758] netlink: 'syz.1.1478': attribute type 10 has an invalid length. [ 68.820355][ T6758] team0: Device hsr_slave_0 failed to register rx_handler [ 69.027010][ T29] kauditd_printk_skb: 73 callbacks suppressed [ 69.027030][ T29] audit: type=1400 audit(1759193069.351:1005): avc: denied { getopt } for pid=6767 comm="syz.1.1481" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 69.125846][ T6779] smc: net device bond0 applied user defined pnetid SYZ0 [ 69.136362][ T6779] smc: net device bond0 erased user defined pnetid SYZ0 [ 69.215791][ T6791] loop4: detected capacity change from 0 to 1024 [ 69.222907][ T6791] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (58532!=20869) [ 69.237656][ T6796] loop3: detected capacity change from 0 to 512 [ 69.240835][ T6798] netlink: 'syz.1.1497': attribute type 11 has an invalid length. [ 69.257247][ T6791] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a040e11d, mo2=0002] [ 69.271111][ T6791] EXT4-fs (loop4): failed to initialize system zone (-117) [ 69.286195][ T6791] EXT4-fs (loop4): mount failed [ 69.325421][ T6796] ext4 filesystem being mounted at /336/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 69.338416][ T6796] EXT4-fs (loop3): shut down requested (1) [ 69.346574][ T6796] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=12 [ 69.410595][ T6809] lo speed is unknown, defaulting to 1000 [ 69.443845][ T29] audit: type=1400 audit(1759193069.761:1006): avc: denied { getopt } for pid=6814 comm="syz.4.1503" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 69.475230][ T6809] lo speed is unknown, defaulting to 1000 [ 69.547622][ T6822] loop4: detected capacity change from 0 to 512 [ 69.566940][ T6822] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 69.601899][ T6822] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.1507: bg 0: block 104: invalid block bitmap [ 69.637494][ T6822] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 69.659775][ T6822] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.1507: invalid indirect mapped block 1 (level 1) [ 69.715111][ T6822] EXT4-fs (loop4): 1 truncate cleaned up [ 69.721129][ T6822] EXT4-fs mount: 32 callbacks suppressed [ 69.721144][ T6822] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 69.819106][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.916851][ T6837] loop3: detected capacity change from 0 to 128 [ 69.939088][ T6837] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 69.958620][ T6835] loop2: detected capacity change from 0 to 2048 [ 69.977182][ T6837] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 70.001681][ T29] audit: type=1400 audit(1759193070.321:1007): avc: denied { mounton } for pid=6836 comm="syz.3.1513" path="/341/bus/file0/file0" dev="loop3" ino=159 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=dir permissive=1 [ 70.036291][ T6841] loop0: detected capacity change from 0 to 128 [ 70.074810][ T3311] FAT-fs (loop3): error, invalid access to FAT (entry 0xffff0000) [ 70.077134][ T6835] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 70.082677][ T3311] FAT-fs (loop3): Filesystem has been set read-only [ 70.102358][ T6835] ext4 filesystem being mounted at /301/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 70.104344][ T29] audit: type=1400 audit(1759193070.431:1008): avc: denied { write } for pid=6838 comm="syz.4.1514" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1 [ 70.153176][ T3311] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 70.196311][ T29] audit: type=1400 audit(1759193070.521:1009): avc: denied { mounton } for pid=6834 comm="syz.2.1512" path="/301/file0" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 70.196439][ T3410] kernel write not supported for file /snd/seq (pid: 3410 comm: kworker/0:5) [ 70.318665][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.737814][ T6908] loop2: detected capacity change from 0 to 8192 [ 70.746060][ T6908] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 70.886036][ T29] audit: type=1326 audit(1759193071.211:1010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6918 comm="syz.2.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c170eec9 code=0x7ffc0000 [ 70.961591][ T29] audit: type=1326 audit(1759193071.211:1011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6918 comm="syz.2.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c170eec9 code=0x7ffc0000 [ 70.986030][ T29] audit: type=1326 audit(1759193071.241:1012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6918 comm="syz.2.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f53c170eec9 code=0x7ffc0000 [ 71.009796][ T29] audit: type=1326 audit(1759193071.241:1013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6918 comm="syz.2.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c170eec9 code=0x7ffc0000 [ 71.034163][ T29] audit: type=1326 audit(1759193071.241:1014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6918 comm="syz.2.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c170eec9 code=0x7ffc0000 [ 71.107847][ T6942] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3) [ 71.114485][ T6942] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 71.122237][ T6942] vhci_hcd vhci_hcd.0: Device attached [ 71.145290][ T6942] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 71.158577][ T6942] vhci_hcd vhci_hcd.0: pdev(1) rhport(2) sockfd(7) [ 71.165142][ T6942] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 71.172652][ T6942] vhci_hcd vhci_hcd.0: Device attached [ 71.193858][ T6942] vhci_hcd vhci_hcd.0: pdev(1) rhport(3) sockfd(9) [ 71.200566][ T6942] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 71.208264][ T6942] vhci_hcd vhci_hcd.0: Device attached [ 71.222993][ T6950] vhci_hcd: connection closed [ 71.223121][ T6946] vhci_hcd: connection closed [ 71.229048][ T37] vhci_hcd: stop threads [ 71.238131][ T37] vhci_hcd: release socket [ 71.242597][ T37] vhci_hcd: disconnect device [ 71.249818][ T6944] vhci_hcd: connection closed [ 71.259915][ T37] vhci_hcd: stop threads [ 71.269028][ T37] vhci_hcd: release socket [ 71.273462][ T37] vhci_hcd: disconnect device [ 71.279648][ T37] vhci_hcd: stop threads [ 71.284135][ T37] vhci_hcd: release socket [ 71.288687][ T37] vhci_hcd: disconnect device [ 71.387594][ T6964] __nla_validate_parse: 8 callbacks suppressed [ 71.387611][ T6964] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1567'. [ 71.444881][ T6974] loop4: detected capacity change from 0 to 512 [ 71.471977][ T6974] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 71.486098][ T6975] syz.3.1572 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 71.555427][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.632746][ T6992] loop2: detected capacity change from 0 to 512 [ 71.770706][ T7003] tap1: tun_chr_ioctl cmd 2148553947 [ 71.804042][ T7007] loop4: detected capacity change from 0 to 1024 [ 71.814971][ T7007] EXT4-fs: Ignoring removed orlov option [ 71.832449][ T7007] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 71.873083][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.129383][ T7038] loop2: detected capacity change from 0 to 512 [ 72.176009][ T7038] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 72.204003][ T7038] ext4 filesystem being mounted at /328/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 72.229310][ T7038] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 72.246669][ T7038] EXT4-fs error (device loop2): ext4_xattr_block_get:593: inode #15: comm syz.2.1599: corrupted xattr block 33: e_value out of bounds [ 72.267535][ T7038] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop2 ino=15 [ 72.293420][ T7036] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.331983][ T7045] loop2: detected capacity change from 0 to 1024 [ 72.347907][ T7045] EXT4-fs: Ignoring removed nobh option [ 72.388001][ T7045] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 72.416177][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.255214][ T7091] SELinux: failed to load policy [ 73.342684][ T7101] netlink: 'syz.0.1625': attribute type 10 has an invalid length. [ 73.350780][ T7101] syz_tun: entered promiscuous mode [ 73.359840][ T7101] bond0: (slave syz_tun): Enslaving as an active interface with an up link [ 73.521541][ T7118] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1633'. [ 73.654246][ T7127] loop0: detected capacity change from 0 to 512 [ 73.661396][ T7127] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 73.675885][ T7127] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002] [ 73.684123][ T7127] System zones: 0-2, 18-18, 34-34 [ 73.690337][ T7127] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 73.703467][ T7127] ext4 filesystem being mounted at /339/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 73.728610][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.766962][ T7138] tipc: Started in network mode [ 73.771906][ T7138] tipc: Node identity ac14140f, cluster identity 4711 [ 73.779964][ T7138] tipc: New replicast peer: 255.255.255.255 [ 73.786248][ T7138] tipc: Enabled bearer , priority 10 [ 73.793387][ T7138] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1641'. [ 73.802469][ T7138] tipc: Disabling bearer [ 73.833083][ T7144] loop4: detected capacity change from 0 to 256 [ 73.881643][ T7150] $Hÿ: renamed from bond0 (while UP) [ 73.893785][ T7150] $Hÿ: entered promiscuous mode [ 73.899721][ T7150] bond_slave_0: entered promiscuous mode [ 73.905512][ T7150] bond_slave_1: entered promiscuous mode [ 74.031477][ T7167] loop4: detected capacity change from 0 to 1024 [ 74.038613][ T7167] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 74.049796][ T7167] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.068644][ T29] kauditd_printk_skb: 53 callbacks suppressed [ 74.068664][ T29] audit: type=1400 audit(1759193074.391:1068): avc: denied { rename } for pid=7166 comm="syz.4.1654" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 74.121987][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.140488][ T7171] loop0: detected capacity change from 0 to 128 [ 74.149402][ T7171] EXT4-fs: Ignoring removed nobh option [ 74.169650][ T7171] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 74.194325][ T7171] ext4 filesystem being mounted at /346/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 74.195972][ T7176] netlink: 136 bytes leftover after parsing attributes in process `syz.2.1657'. [ 74.256976][ T3306] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 74.405653][ T7200] loop2: detected capacity change from 0 to 256 [ 74.432387][ T7202] loop3: detected capacity change from 0 to 512 [ 74.447237][ T7202] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.475298][ T29] audit: type=1400 audit(1759193074.791:1069): avc: denied { remount } for pid=7198 comm="syz.2.1669" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 74.503974][ T7202] ext4 filesystem being mounted at /357/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 74.532217][ T29] audit: type=1400 audit(1759193074.851:1070): avc: denied { setattr } for pid=7201 comm="syz.3.1671" name="file0" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 [ 74.533286][ T7202] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 74.592701][ T7202] EXT4-fs (loop3): Remounting filesystem read-only [ 74.658955][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.669881][ T362] Quota error (device loop3): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync! [ 74.690629][ T362] Quota error (device loop3): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync! [ 74.767081][ T7196] loop0: detected capacity change from 0 to 8192 [ 74.778391][ T7227] netlink: 836 bytes leftover after parsing attributes in process `syz.1.1677'. [ 74.856939][ T7238] random: crng reseeded on system resumption [ 74.857017][ T29] audit: type=1400 audit(1759193075.181:1071): avc: denied { write } for pid=7237 comm="syz.1.1683" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 74.866830][ T7236] loop4: detected capacity change from 0 to 2048 [ 74.896833][ T7232] lo speed is unknown, defaulting to 1000 [ 74.914934][ T7232] lo speed is unknown, defaulting to 1000 [ 74.939151][ T7236] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 75.012881][ T29] audit: type=1326 audit(1759193075.331:1072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7245 comm="syz.1.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36a6f0eec9 code=0x7ffc0000 [ 75.036409][ T29] audit: type=1326 audit(1759193075.331:1073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7245 comm="syz.1.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36a6f0eec9 code=0x7ffc0000 [ 75.059958][ T29] audit: type=1326 audit(1759193075.331:1074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7245 comm="syz.1.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f36a6f0eec9 code=0x7ffc0000 [ 75.083398][ T29] audit: type=1326 audit(1759193075.331:1075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7245 comm="syz.1.1687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36a6f0eec9 code=0x7ffc0000 [ 75.123762][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.416522][ T7279] SELinux: policydb table sizes (0,0) do not match mine (5,6) [ 75.445906][ T7279] SELinux: failed to load policy [ 75.489578][ T7291] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 75.828207][ T7340] netlink: 'syz.3.1731': attribute type 2 has an invalid length. [ 76.284455][ T7385] lo speed is unknown, defaulting to 1000 [ 76.299445][ T7385] lo speed is unknown, defaulting to 1000 [ 76.681071][ T7432] loop2: detected capacity change from 0 to 256 [ 76.787512][ T7443] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1773'. [ 76.851856][ T7450] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1776'. [ 76.861085][ T7451] netlink: 84 bytes leftover after parsing attributes in process `syz.0.1777'. [ 76.958223][ T7467] program syz.0.1785 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 77.110538][ T7487] ip6gretap0: entered promiscuous mode [ 77.117794][ T7490] sctp: [Deprecated]: syz.1.1797 (pid 7490) Use of int in maxseg socket option. [ 77.117794][ T7490] Use struct sctp_assoc_value instead [ 77.148246][ T7487] ip6gretap0: left promiscuous mode [ 77.231888][ T7504] SELinux: policydb version -2103515528 does not match my version range 15-35 [ 77.247056][ T7504] SELinux: failed to load policy [ 77.273405][ T7508] SELinux: policydb version 0 does not match my version range 15-35 [ 77.289937][ T7512] loop2: detected capacity change from 0 to 1024 [ 77.296919][ T7508] SELinux: failed to load policy [ 77.302717][ T7512] EXT4-fs: Ignoring removed orlov option [ 77.336840][ T7512] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 77.358287][ T7521] loop0: detected capacity change from 0 to 128 [ 77.364996][ T7512] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1806: bg 0: block 232: padding at end of block bitmap is not set [ 77.382155][ T7512] EXT4-fs (loop2): Remounting filesystem read-only [ 77.390086][ T7512] EXT4-fs (loop2): error restoring inline_data for inode -- potential data loss! (inode 12, error -30) [ 77.414517][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.454467][ T7531] netlink: 9286 bytes leftover after parsing attributes in process `syz.1.1815'. [ 77.542161][ T7548] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1822'. [ 77.615814][ T7561] loop2: detected capacity change from 0 to 128 [ 77.646264][ T7566] SELinux: Context Ü is not valid (left unmapped). [ 77.664707][ T7570] capability: warning: `syz.2.1833' uses 32-bit capabilities (legacy support in use) [ 77.724417][ T7576] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1835'. [ 77.797199][ T7585] SELinux: Context system_u:object_r:tun_tap_device_t:s0 is not valid (left unmapped). [ 77.932617][ T7603] loop4: detected capacity change from 0 to 512 [ 77.940363][ T7605] netlink: 268 bytes leftover after parsing attributes in process `syz.0.1850'. [ 77.969408][ T7610] netlink: 'syz.0.1851': attribute type 21 has an invalid length. [ 77.970932][ T7603] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 77.978380][ T7610] netlink: 'syz.0.1851': attribute type 1 has an invalid length. [ 77.990207][ T7603] ext4 filesystem being mounted at /332/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 77.997767][ T7610] netlink: 144 bytes leftover after parsing attributes in process `syz.0.1851'. [ 78.030595][ T7603] EXT4-fs error (device loop4): ext4_get_first_dir_block:3529: inode #12: comm syz.4.1849: Attempting to read directory block (0) that is past i_size (3) [ 78.055576][ T7603] EXT4-fs (loop4): Remounting filesystem read-only [ 78.083678][ T7614] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1853'. [ 78.097209][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.109234][ T309] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 78.149083][ T7620] netlink: 'syz.4.1854': attribute type 1 has an invalid length. [ 78.356959][ T7648] SELinux: policydb version 0 does not match my version range 15-35 [ 78.374122][ T7648] SELinux: failed to load policy [ 78.409769][ T7661] loop0: detected capacity change from 0 to 1024 [ 78.432556][ T7661] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 78.455956][ T7665] loop4: detected capacity change from 0 to 512 [ 78.479000][ T7665] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 78.492912][ T7665] ext4 filesystem being mounted at /340/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 78.517429][ T7661] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4183: comm syz.0.1875: Allocating blocks 449-513 which overlap fs metadata [ 78.533393][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.577002][ T7673] loop2: detected capacity change from 0 to 2048 [ 78.584814][ T7657] EXT4-fs (loop0): pa ffff88810446b770: logic 48, phys. 177, len 21 [ 78.592848][ T7657] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 4 [ 78.642789][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.753361][ T7694] netlink: 92 bytes leftover after parsing attributes in process `syz.2.1890'. [ 78.808734][ T7703] pim6reg: tun_chr_ioctl cmd 1074025680 [ 79.164585][ T29] kauditd_printk_skb: 179 callbacks suppressed [ 79.164640][ T29] audit: type=1326 audit(1759193079.491:1253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7745 comm="syz.0.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59dd16eec9 code=0x7ffc0000 [ 79.195015][ T29] audit: type=1326 audit(1759193079.491:1254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7745 comm="syz.0.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59dd16eec9 code=0x7ffc0000 [ 79.228787][ T29] audit: type=1326 audit(1759193079.541:1255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7745 comm="syz.0.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f59dd16eec9 code=0x7ffc0000 [ 79.252407][ T29] audit: type=1326 audit(1759193079.541:1256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7745 comm="syz.0.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59dd16eec9 code=0x7ffc0000 [ 79.276821][ T29] audit: type=1326 audit(1759193079.541:1257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7745 comm="syz.0.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59dd16eec9 code=0x7ffc0000 [ 79.300265][ T29] audit: type=1326 audit(1759193079.541:1258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7745 comm="syz.0.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f59dd16eec9 code=0x7ffc0000 [ 79.324463][ T29] audit: type=1326 audit(1759193079.541:1259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7745 comm="syz.0.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59dd16eec9 code=0x7ffc0000 [ 79.348011][ T29] audit: type=1326 audit(1759193079.541:1260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7745 comm="syz.0.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7f59dd16eec9 code=0x7ffc0000 [ 79.372202][ T29] audit: type=1326 audit(1759193079.541:1261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7745 comm="syz.0.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59dd16eec9 code=0x7ffc0000 [ 79.397154][ T29] audit: type=1326 audit(1759193079.601:1262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7748 comm="syz.4.1913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fc7a7eec9 code=0x7ffc0000 [ 79.484638][ T7760] loop0: detected capacity change from 0 to 256 [ 79.638609][ T7776] loop3: detected capacity change from 0 to 512 [ 79.648362][ T7777] loop4: detected capacity change from 0 to 512 [ 79.675384][ T7777] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 79.678079][ T7776] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 79.717535][ T7776] ext4 filesystem being mounted at /396/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 79.942874][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 79.952619][ T7777] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 79.966462][ T7777] ext4 filesystem being mounted at /352/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 80.040526][ T7805] loop2: detected capacity change from 0 to 512 [ 80.048806][ T7805] EXT4-fs: Ignoring removed mblk_io_submit option [ 80.059479][ T7805] EXT4-fs (loop2): 1 truncate cleaned up [ 80.068054][ T7805] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 80.094935][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.197148][ T7816] netlink: 'syz.2.1943': attribute type 3 has an invalid length. [ 80.278594][ T7828] loop3: detected capacity change from 0 to 128 [ 80.300053][ T7828] EXT4-fs: Ignoring removed nobh option [ 80.329270][ T7832] program syz.2.1951 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 80.345613][ T7828] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 80.357991][ T7830] loop1: detected capacity change from 0 to 1024 [ 80.359512][ T7828] ext4 filesystem being mounted at /400/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 80.366114][ T7777] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 80.386828][ T7830] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 80.401336][ T7777] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 2048 with error 28 [ 80.414731][ T7777] EXT4-fs (loop4): This should not happen!! Data will be lost [ 80.414731][ T7777] [ 80.424586][ T7777] EXT4-fs (loop4): Total free blocks count 0 [ 80.430604][ T7777] EXT4-fs (loop4): Free/Dirty block details [ 80.436624][ T7777] EXT4-fs (loop4): free_blocks=39626 [ 80.441938][ T7777] EXT4-fs (loop4): dirty_blocks=4096 [ 80.448005][ T7777] EXT4-fs (loop4): Block reservation details [ 80.454085][ T7777] EXT4-fs (loop4): i_reserved_data_blocks=4096 [ 80.464034][ T3311] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 80.479007][ T7830] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 80.531825][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.558772][ T1684] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 2046 with error 28 [ 80.584482][ T7847] SELinux: policydb version 0 does not match my version range 15-35 [ 80.598457][ T7847] SELinux: failed to load policy [ 80.713536][ T7863] loop0: detected capacity change from 0 to 2048 [ 80.765120][ T7863] loop0: p1 p2 p3 [ 80.863502][ T7888] loop1: detected capacity change from 0 to 1024 [ 80.884983][ T7888] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 80.964947][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.011901][ T7913] netlink: 'syz.2.1986': attribute type 1 has an invalid length. [ 81.066696][ T7920] loop4: detected capacity change from 0 to 512 [ 81.073600][ T7920] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 81.100656][ T7925] team_slave_0: entered promiscuous mode [ 81.106420][ T7925] team_slave_1: entered promiscuous mode [ 81.116577][ T7920] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 81.120638][ T7928] netlink: 'syz.1.1994': attribute type 5 has an invalid length. [ 81.130190][ T7925] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 81.149102][ T7931] loop2: detected capacity change from 0 to 512 [ 81.153641][ T7920] ext4 filesystem being mounted at /360/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 81.167753][ T7931] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 81.170713][ T7920] EXT4-fs error (device loop4): __ext4_new_inode:1279: comm syz.4.1991: failed to insert inode 16: doubly allocated? [ 81.214289][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.234269][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.276071][ T7944] loop2: detected capacity change from 0 to 512 [ 81.290393][ T7944] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 81.300060][ T7944] EXT4-fs (loop2): orphan cleanup on readonly fs [ 81.310588][ T7944] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.1998: iget: bad i_size value: 360287970189639680 [ 81.325744][ T7944] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.1998: couldn't read orphan inode 15 (err -117) [ 81.338350][ T7944] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 81.381049][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.415874][ T7964] bridge0: entered promiscuous mode [ 81.421251][ T7964] macvtap1: entered allmulticast mode [ 81.426800][ T7964] bridge0: entered allmulticast mode [ 81.435966][ T7964] bridge0: port 3(macvtap1) entered blocking state [ 81.442653][ T7964] bridge0: port 3(macvtap1) entered disabled state [ 81.451666][ T7964] bridge0: left allmulticast mode [ 81.456802][ T7964] bridge0: left promiscuous mode [ 81.458676][ T7967] loop4: detected capacity change from 0 to 512 [ 81.492296][ T7967] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 81.508803][ T7971] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.529942][ T7967] ext4 filesystem being mounted at /365/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 81.552330][ T7967] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2011: bg 0: block 289: padding at end of block bitmap is not set [ 81.598273][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.608288][ T7983] netlink: 'syz.2.2017': attribute type 3 has an invalid length. [ 81.675356][ T7996] loop2: detected capacity change from 0 to 512 [ 81.682271][ T7996] EXT4-fs: Ignoring removed nomblk_io_submit option [ 81.692169][ T7996] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 81.700137][ T7996] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c000e128, mo2=0002] [ 81.710737][ T7996] EXT4-fs (loop2): orphan cleanup on readonly fs [ 81.718146][ T7996] EXT4-fs warning (device loop2): ext4_enable_quotas:7178: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 81.732787][ T7996] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 81.767760][ T7996] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2023: bg 0: block 40: padding at end of block bitmap is not set [ 81.782458][ T7996] EXT4-fs (loop2): Remounting filesystem read-only [ 81.789154][ T7996] EXT4-fs (loop2): 1 truncate cleaned up [ 81.795458][ T7996] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 81.821016][ T7996] EXT4-fs (loop2): shut down requested (2) [ 81.833783][ T7996] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop2 ino=16 [ 81.843088][ T7996] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop2 ino=16 [ 81.861951][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.942021][ T8030] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 81.950695][ T8030] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 81.983675][ T8035] loop4: detected capacity change from 0 to 128 [ 82.115425][ T8046] __nla_validate_parse: 6 callbacks suppressed [ 82.115441][ T8046] netlink: 7 bytes leftover after parsing attributes in process `syz.4.2042'. [ 82.139004][ T8046] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2042'. [ 82.148068][ T8046] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2042'. [ 82.166739][ T8046] netlink: 7 bytes leftover after parsing attributes in process `syz.4.2042'. [ 82.177115][ T8046] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2042'. [ 82.186192][ T8046] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2042'. [ 82.217515][ T8046] netlink: 7 bytes leftover after parsing attributes in process `syz.4.2042'. [ 82.226651][ T8046] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2042'. [ 82.235685][ T8046] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2042'. [ 82.273711][ T8063] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2049'. [ 82.274255][ T8061] loop0: detected capacity change from 0 to 164 [ 82.284273][ T8063] netem: change failed [ 82.301175][ T8061] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 82.444216][ T8086] SELinux: policydb version 0 does not match my version range 15-35 [ 82.462281][ T8086] SELinux: failed to load policy [ 82.480982][ T8084] loop1: detected capacity change from 0 to 8192 [ 82.578780][ T8106] SELinux: policydb table sizes (133,14) do not match mine (8,7) [ 82.615324][ T8110] loop4: detected capacity change from 0 to 256 [ 82.631471][ T8106] SELinux: failed to load policy [ 82.704768][ T8121] vlan3: entered allmulticast mode [ 82.709983][ T8121] hsr0: entered allmulticast mode [ 82.715251][ T8121] hsr_slave_0: entered allmulticast mode [ 82.720932][ T8121] hsr_slave_1: entered allmulticast mode [ 82.863472][ T8142] loop1: detected capacity change from 0 to 512 [ 82.866290][ T8142] EXT4-fs: Ignoring removed nobh option [ 82.881017][ T8142] EXT4-fs (loop1): orphan cleanup on readonly fs [ 82.887591][ T8142] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -13 [ 82.887882][ T8142] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 82.888356][ T8142] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #13: comm syz.1.2087: attempt to clear invalid blocks 2 len 1 [ 82.888536][ T8142] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.2087: invalid indirect mapped block 1819239214 (level 0) [ 82.888759][ T8142] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.2087: invalid indirect mapped block 1819239214 (level 1) [ 82.953502][ T8142] EXT4-fs (loop1): 1 truncate cleaned up [ 82.959765][ T8142] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 82.986120][ T8142] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended [ 82.999309][ T8148] loop3: detected capacity change from 0 to 1024 [ 83.006089][ T8142] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 83.016023][ T8148] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 83.031548][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.058034][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.233091][ T8185] loop4: detected capacity change from 0 to 512 [ 83.263501][ T8185] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 83.272725][ T8185] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 83.289783][ T8185] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended [ 83.299621][ T8185] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 83.308696][ T8185] System zones: 0-2, 18-18, 34-34 [ 83.318243][ T8185] EXT4-fs (loop4): 1 truncate cleaned up [ 83.331273][ T8185] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 83.400202][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.449353][ T8213] bpf: Bad value for 'uid' [ 83.581818][ T8224] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=8224 comm=syz.4.2123 [ 83.665646][ T8238] C: renamed from team_slave_0 (while UP) [ 83.675418][ T8238] netlink: 'syz.1.2129': attribute type 2 has an invalid length. [ 83.684197][ T8238] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 83.942522][ T8289] loop2: detected capacity change from 0 to 512 [ 83.949776][ T8289] EXT4-fs (loop2): external journal device major/minor numbers have changed [ 83.978121][ T8289] EXT4-fs (loop2): failed to open journal device unknown-block(0,4) -6 [ 84.510673][ T8307] netlink: 'syz.3.2162': attribute type 2 has an invalid length. [ 84.783834][ T29] kauditd_printk_skb: 114 callbacks suppressed [ 84.783850][ T29] audit: type=1400 audit(1759193085.101:1376): avc: denied { read } for pid=8313 comm="syz.0.2164" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 84.897784][ T8319] loop4: detected capacity change from 0 to 512 [ 84.911857][ T29] audit: type=1326 audit(1759193085.231:1377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8324 comm="syz.2.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c170eec9 code=0x7ffc0000 [ 84.935393][ T29] audit: type=1326 audit(1759193085.231:1378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8324 comm="syz.2.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c170eec9 code=0x7ffc0000 [ 84.967882][ T8319] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 84.984992][ T29] audit: type=1326 audit(1759193085.261:1379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8324 comm="syz.2.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f53c170eec9 code=0x7ffc0000 [ 85.008607][ T29] audit: type=1326 audit(1759193085.261:1380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8324 comm="syz.2.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c170eec9 code=0x7ffc0000 [ 85.032061][ T29] audit: type=1326 audit(1759193085.261:1381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8324 comm="syz.2.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f53c170eec9 code=0x7ffc0000 [ 85.055983][ T29] audit: type=1326 audit(1759193085.381:1382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8324 comm="syz.2.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c170eec9 code=0x7ffc0000 [ 85.079514][ T29] audit: type=1326 audit(1759193085.381:1383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8324 comm="syz.2.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c170eec9 code=0x7ffc0000 [ 85.103020][ T29] audit: type=1326 audit(1759193085.381:1384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8324 comm="syz.2.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7f53c170eec9 code=0x7ffc0000 [ 85.126460][ T29] audit: type=1326 audit(1759193085.381:1385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8324 comm="syz.2.2169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c170eec9 code=0x7ffc0000 [ 85.187480][ T8333] loop1: detected capacity change from 0 to 512 [ 85.244104][ T8333] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 85.267248][ T8333] ext4 filesystem being mounted at /384/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 85.315001][ T8333] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.2175: corrupted xattr block 32: bad e_name length [ 85.352122][ T8333] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop1 ino=15 [ 85.362577][ T8333] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.2175: corrupted xattr block 32: bad e_name length [ 85.377163][ T8333] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop1 ino=15 [ 85.389773][ T8353] loop3: detected capacity change from 0 to 512 [ 85.396521][ T8353] journal_path: Non-blockdev passed as './bus' [ 85.402813][ T8353] EXT4-fs: error: could not find journal device path [ 85.402981][ T8333] EXT4-fs error (device loop1): ext4_xattr_block_list:762: inode #15: comm syz.1.2175: corrupted xattr block 32: bad e_name length [ 85.482927][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.583392][ T8380] loop4: detected capacity change from 0 to 128 [ 85.756311][ T8401] vhci_hcd: default hub control req: 010b v0000 i0000 l0 [ 85.870483][ T8415] loop2: detected capacity change from 0 to 2048 [ 85.896879][ T8415] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 85.939713][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 86.105207][ T8452] loop3: detected capacity change from 0 to 128 [ 86.346564][ T8495] loop2: detected capacity change from 0 to 128 [ 86.549491][ T8530] loop4: detected capacity change from 0 to 128 [ 86.720787][ T8557] loop0: detected capacity change from 0 to 512 [ 86.731898][ T8557] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 86.745528][ T8558] netlink: 'syz.4.2287': attribute type 5 has an invalid length. [ 86.862398][ T3306] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 86.882677][ T8571] loop2: detected capacity change from 0 to 1024 [ 86.986299][ T8585] loop0: detected capacity change from 0 to 512 [ 87.004121][ T8585] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 87.015760][ T8588] netlink: 'syz.4.2292': attribute type 1 has an invalid length. [ 87.045744][ T8585] EXT4-fs (loop0): orphan cleanup on readonly fs [ 87.054894][ T8585] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.2289: iget: bad i_size value: 360287970189639680 [ 87.073856][ T8585] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.2289: couldn't read orphan inode 15 (err -117) [ 87.074154][ T8594] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 87.148516][ T8599] loop1: detected capacity change from 0 to 512 [ 87.162832][ T8599] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 87.200726][ T8599] ext4 filesystem being mounted at /407/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 87.227235][ T8612] loop0: detected capacity change from 0 to 512 [ 87.246388][ T8599] EXT4-fs error (device loop1): __ext4_new_inode:1279: comm syz.1.2297: failed to insert inode 16: doubly allocated? [ 87.276393][ T8612] ext4 filesystem being mounted at /529/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 87.304207][ T8612] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2302: bg 0: block 289: padding at end of block bitmap is not set [ 87.312266][ T8621] bridge0: port 2(bridge_slave_1) entered disabled state [ 87.336691][ T8623] loop3: detected capacity change from 0 to 1024 [ 87.398260][ T8633] C: entered promiscuous mode [ 87.403047][ T8633] team_slave_1: entered promiscuous mode [ 87.429572][ T8633] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 87.706384][ T8677] __nla_validate_parse: 12 callbacks suppressed [ 87.706404][ T8677] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2327'. [ 87.812116][ T8689] loop4: detected capacity change from 0 to 2048 [ 87.831314][ T8685] syz_tun: left promiscuous mode [ 87.858658][ T8685] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 87.905530][ T8689] loop4: p1 p2 p3 [ 87.960251][ T8703] loop4: detected capacity change from 0 to 128 [ 88.118884][ T8730] netlink: 'syz.3.2353': attribute type 3 has an invalid length. [ 88.131428][ T8727] loop0: detected capacity change from 0 to 1024 [ 88.170191][ T8727] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 88.170555][ T8734] $Hÿ: left promiscuous mode [ 88.184448][ T8734] bond_slave_0: left promiscuous mode [ 88.189975][ T8734] bond_slave_1: left promiscuous mode [ 88.196914][ T8734] 8021q: adding VLAN 0 to HW filter on device $Hÿ [ 88.211330][ T8734] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 88.995692][ T8762] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2362'. [ 89.033549][ T8769] bridge0: entered promiscuous mode [ 89.046014][ T8769] macvtap1: entered allmulticast mode [ 89.051471][ T8769] bridge0: entered allmulticast mode [ 89.084947][ T8769] bridge0: port 3(macvtap1) entered blocking state [ 89.091608][ T8769] bridge0: port 3(macvtap1) entered disabled state [ 89.093559][ T8779] loop0: detected capacity change from 0 to 256 [ 89.106582][ T8779] FAT-fs (loop0): bogus logical sector size 128 [ 89.112869][ T8779] FAT-fs (loop0): Can't find a valid FAT filesystem [ 89.130084][ T8769] bridge0: left allmulticast mode [ 89.136191][ T8769] bridge0: left promiscuous mode [ 89.160288][ T8770] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2367'. [ 89.169342][ T8770] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2367'. [ 89.319049][ T8813] loop4: detected capacity change from 0 to 512 [ 89.339664][ T8813] ext4 filesystem being mounted at /457/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 89.397400][ T8826] loop3: detected capacity change from 0 to 256 [ 89.405806][ T8826] FAT-fs (loop3): bogus logical sector size 128 [ 89.412135][ T8826] FAT-fs (loop3): Can't find a valid FAT filesystem [ 89.499033][ T8843] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2402'. [ 89.515700][ T8841] SELinux: policydb version 0 does not match my version range 15-35 [ 89.538982][ T8846] netlink: 4228 bytes leftover after parsing attributes in process `syz.3.2405'. [ 89.548459][ T8841] SELinux: failed to load policy [ 89.562344][ T8846] netlink: set zone limit has 8 unknown bytes [ 89.591243][ T8850] loop0: detected capacity change from 0 to 2048 [ 89.770203][ T8888] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2421'. [ 89.817461][ T8893] netlink: 4228 bytes leftover after parsing attributes in process `syz.0.2424'. [ 89.826825][ T8893] netlink: set zone limit has 8 unknown bytes [ 89.883393][ T29] kauditd_printk_skb: 105 callbacks suppressed [ 89.883423][ T29] audit: type=1326 audit(1759193090.201:1491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8898 comm="syz.1.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36a6f0eec9 code=0x7ffc0000 [ 89.960686][ T8903] program syz.1.2427 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 89.968887][ T29] audit: type=1400 audit(1759193090.211:1492): avc: denied { setopt } for pid=8889 comm="syz.2.2433" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 89.990166][ T29] audit: type=1326 audit(1759193090.241:1493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8898 comm="syz.1.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36a6f0eec9 code=0x7ffc0000 [ 90.013625][ T29] audit: type=1326 audit(1759193090.241:1494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8898 comm="syz.1.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7f36a6f0eec9 code=0x7ffc0000 [ 90.037821][ T29] audit: type=1326 audit(1759193090.241:1495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8898 comm="syz.1.2425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36a6f0eec9 code=0x7ffc0000 [ 90.061300][ T29] audit: type=1400 audit(1759193090.281:1496): avc: denied { append } for pid=8902 comm="syz.1.2427" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 90.235611][ T29] audit: type=1400 audit(1759193090.561:1497): avc: denied { setopt } for pid=8919 comm="syz.3.2448" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 90.259197][ T29] audit: type=1400 audit(1759193090.581:1498): avc: denied { listen } for pid=8921 comm="syz.1.2435" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 90.291491][ T8928] program syz.3.2451 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 90.345119][ T29] audit: type=1326 audit(1759193090.661:1499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8935 comm="syz.1.2441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36a6f0eec9 code=0x7ffc0000 [ 90.369441][ T29] audit: type=1326 audit(1759193090.661:1500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8935 comm="syz.1.2441" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7f36a6f0eec9 code=0x7ffc0000 [ 90.428761][ T8944] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2447'. [ 90.438530][ T8944] netlink: 196 bytes leftover after parsing attributes in process `syz.3.2447'. [ 90.615925][ T8972] loop0: detected capacity change from 0 to 164 [ 90.625203][ T8972] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 90.639247][ T8972] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 90.650399][ T8975] team0: Device lo is loopback device. Loopback devices can't be added as a team port [ 90.661588][ T8972] Symlink component flag not implemented [ 90.667437][ T8972] Symlink component flag not implemented [ 90.675539][ T8975] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 90.690902][ T8972] Symlink component flag not implemented (7) [ 90.697105][ T8972] Symlink component flag not implemented (116) [ 91.237610][ T9052] loop0: detected capacity change from 0 to 512 [ 91.264937][ T9052] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 91.313112][ T9052] ext4 filesystem being mounted at /575/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 91.390029][ T9065] program syz.0.2497 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 91.436924][ T9067] loop4: detected capacity change from 0 to 128 [ 91.458702][ T9067] EXT4-fs: Ignoring removed nobh option [ 91.472046][ T9067] ext4 filesystem being mounted at /479/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 91.487306][ T9070] random: crng reseeded on system resumption [ 92.241623][ T9126] vhci_hcd: invalid port number 61 [ 92.373241][ T9149] IPv6: NLM_F_CREATE should be specified when creating new route [ 92.522952][ T9175] loop1: detected capacity change from 0 to 1024 [ 92.530230][ T9175] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 92.541340][ T9175] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 92.572411][ T9175] JBD2: no valid journal superblock found [ 92.578227][ T9175] EXT4-fs (loop1): Could not load journal inode [ 92.722582][ T9207] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 92.729939][ T9207] IPv6: NLM_F_CREATE should be set when creating new route [ 92.737205][ T9207] IPv6: NLM_F_CREATE should be set when creating new route [ 92.744441][ T9207] IPv6: NLM_F_CREATE should be set when creating new route [ 92.767148][ T9207] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 92.885489][ T9230] loop1: detected capacity change from 0 to 512 [ 92.905289][ T9230] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 92.927202][ T9230] EXT4-fs (loop1): 1 truncate cleaned up [ 92.996581][ T9249] netlink: 'syz.0.2594': attribute type 13 has an invalid length. [ 93.004645][ T9249] __nla_validate_parse: 8 callbacks suppressed [ 93.004664][ T9249] netlink: 24859 bytes leftover after parsing attributes in process `syz.0.2594'. [ 93.022285][ T9253] loop3: detected capacity change from 0 to 2048 [ 93.319603][ T9278] lo speed is unknown, defaulting to 1000 [ 93.328748][ T9278] lo speed is unknown, defaulting to 1000 [ 93.390622][ T9295] loop3: detected capacity change from 0 to 512 [ 93.420670][ T9295] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 93.503762][ T9295] EXT4-fs (loop3): 1 truncate cleaned up [ 93.523762][ T9295] EXT4-fs (loop3): shut down requested (1) [ 93.543931][ T9295] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=15 [ 93.554133][ T9295] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=15 [ 93.665910][ T9315] loop2: detected capacity change from 0 to 512 [ 93.693999][ T9315] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 93.730744][ T9317] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2627'. [ 93.739753][ T9317] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2627'. [ 93.758264][ T9315] EXT4-fs (loop2): 1 truncate cleaned up [ 93.799942][ T9322] loop1: detected capacity change from 0 to 512 [ 93.809888][ T9315] EXT4-fs (loop2): shut down requested (1) [ 93.821513][ T9315] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop2 ino=15 [ 93.839825][ T9315] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop2 ino=15 [ 93.855401][ T9322] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 93.895977][ T9322] ext4 filesystem being mounted at /467/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 93.951928][ T9328] loop0: detected capacity change from 0 to 512 [ 93.986777][ T9328] ext4 filesystem being mounted at /603/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 94.014963][ T9328] EXT4-fs (loop0): shut down requested (1) [ 94.031583][ T9328] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop0 ino=12 [ 94.515270][ T9354] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2632'. [ 94.525006][ T9354] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2632'. [ 94.565122][ T9359] loop4: detected capacity change from 0 to 512 [ 94.573837][ T9359] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 94.585050][ T9359] EXT4-fs (loop4): 1 truncate cleaned up [ 94.593653][ T9359] EXT4-fs (loop4): shut down requested (1) [ 94.600080][ T9359] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop4 ino=15 [ 94.609502][ T9359] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop4 ino=15 [ 94.827421][ T9375] loop1: detected capacity change from 0 to 128 [ 94.836578][ T9375] EXT4-fs: Ignoring removed nobh option [ 94.845559][ T9375] ext4 filesystem being mounted at /469/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 94.951976][ T29] kauditd_printk_skb: 39 callbacks suppressed [ 94.952037][ T29] audit: type=1400 audit(1759193095.271:1540): avc: denied { read } for pid=9380 comm="syz.1.2650" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 95.001446][ T9389] loop1: detected capacity change from 0 to 512 [ 95.015661][ T9389] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 95.045984][ T9389] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.2640: bg 0: block 104: invalid block bitmap [ 95.063919][ T9395] loop4: detected capacity change from 0 to 128 [ 95.070873][ T9389] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 95.084103][ T9389] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.2640: invalid indirect mapped block 1 (level 1) [ 95.087066][ T9395] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 95.113416][ T9395] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 95.122671][ T9389] EXT4-fs (loop1): 1 truncate cleaned up [ 95.140420][ T29] audit: type=1400 audit(1759193095.461:1541): avc: denied { mounton } for pid=9394 comm="syz.4.2642" path="/519/bus/file0/file0" dev="loop4" ino=207 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=dir permissive=1 [ 95.169073][ T29] audit: type=1400 audit(1759193095.491:1542): avc: denied { read } for pid=9387 comm="syz.1.2640" path="/471/file0/file1" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 95.205490][ T3308] FAT-fs (loop4): error, invalid access to FAT (entry 0xffff0000) [ 95.213379][ T3308] FAT-fs (loop4): Filesystem has been set read-only [ 95.225467][ T3308] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 95.319567][ T9403] loop4: detected capacity change from 0 to 2048 [ 95.355193][ T9409] 9p: Unknown Cache mode or invalid value f [ 95.366166][ T2] ================================================================== [ 95.374302][ T2] BUG: KCSAN: data-race in copy_process / free_pid [ 95.380819][ T2] [ 95.383145][ T2] read-write to 0xffffffff8685faa8 of 4 bytes by task 3303 on cpu 0: [ 95.391210][ T2] free_pid+0x77/0x180 [ 95.395287][ T2] free_pids+0x54/0xb0 [ 95.399363][ T2] release_task+0x9a9/0xb60 [ 95.403880][ T2] wait_consider_task+0x114a/0x1660 [ 95.409101][ T2] __do_wait+0xfa/0x510 [ 95.413281][ T2] do_wait+0xb7/0x260 [ 95.417285][ T2] kernel_wait4+0x16b/0x1e0 [ 95.421809][ T2] __x64_sys_wait4+0x91/0x120 [ 95.426514][ T2] x64_sys_call+0x2a66/0x2ff0 [ 95.431203][ T2] do_syscall_64+0xd2/0x200 [ 95.435716][ T2] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 95.441625][ T2] [ 95.443949][ T2] read to 0xffffffff8685faa8 of 4 bytes by task 2 on cpu 1: [ 95.451235][ T2] copy_process+0x17fc/0x2000 [ 95.455924][ T2] kernel_clone+0x16c/0x5c0 [ 95.460443][ T2] kernel_thread+0xac/0xe0 [ 95.464877][ T2] kthreadd+0x28d/0x360 [ 95.469036][ T2] ret_from_fork+0x11f/0x1b0 [ 95.473636][ T2] ret_from_fork_asm+0x1a/0x30 [ 95.478410][ T2] [ 95.480734][ T2] value changed: 0x800000f0 -> 0x800000ef [ 95.486450][ T2] [ 95.488774][ T2] Reported by Kernel Concurrency Sanitizer on: [ 95.494930][ T2] CPU: 1 UID: 0 PID: 2 Comm: kthreadd Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 95.505788][ T2] Tainted: [W]=WARN [ 95.509597][ T2] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 95.519670][ T2] ================================================================== [ 95.534787][ T9403] ext4 filesystem being mounted at /520/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 95.548376][ T29] audit: type=1400 audit(1759193095.871:1543): avc: denied { mounton } for pid=9402 comm="syz.4.2644" path="/520/file0" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 95.548539][ T10] kernel write not supported for file /snd/seq (pid: 10 comm: kworker/0:1)