last executing test programs: 1.271706799s ago: executing program 0 (id=2479): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x14, '\x00', 0x0, @cgroup_sock_addr=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="300000003e000701fcfffffffddbdf25047c0000100036800c00020007009300000000000c0001"], 0x30}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000) 1.216824183s ago: executing program 0 (id=2480): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000340), 0xb00, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0xe) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x94) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0) ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246) write$binfmt_aout(r1, &(0x7f0000000280)=ANY=[], 0xfce1) 1.216686873s ago: executing program 0 (id=2481): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KDSKBENT(0xffffffffffffffff, 0x4b47, &(0x7f0000000080)={0x5, 0x40, 0x4}) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x7, @loopback, 0x8}, 0x1c) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0x20, &(0x7f0000000000)={@in6={{0xa, 0x4e22, 0x9, @local, 0x7}}, 0x0, 0x0, 0x3a, 0x0, "a30b3b28af4d2f246a016542daa845f387713f4048ff2ece1e75f1fc0100f41e4de6256109383664417165bba0dd5ace522fa788000000000033035551502f07b4001a00"}, 0xd8) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e62, 0x1ff, @loopback, 0x23}, 0x1c) 826.001644ms ago: executing program 4 (id=2489): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x18) r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0) ioctl$SG_SET_RESERVED_SIZE(r2, 0x2275, &(0x7f0000000000)) 797.299677ms ago: executing program 4 (id=2491): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x1159e4047a6348de, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff) r2 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f0000000200)='asymmetric\x00', &(0x7f00000002c0)=@chain={'key_or_keyring:', r1}) keyctl$KEYCTL_MOVE(0x1e, r1, 0xffffffffffffffff, r2, 0x0) 753.11544ms ago: executing program 2 (id=2492): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x18) r2 = socket(0x2000000000000021, 0x2, 0x10000000000002) connect$rxrpc(r2, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24) sendmmsg(r2, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=[{0x18, 0x110, 0x1, '\n'}], 0x18, 0xe000}, 0x5}], 0x1, 0x0) 748.30688ms ago: executing program 4 (id=2493): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f0800034000000004640000000e0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000380003803400008028000180230001"], 0xf0}, 0x1, 0x0, 0x0, 0x80}, 0x0) 725.997202ms ago: executing program 4 (id=2494): r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r2}, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_PAUSE_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f00000007c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0100030010651fbe347b2c2b00000c00018008000100", @ANYRES16=r0], 0x20}}, 0x0) 716.927693ms ago: executing program 2 (id=2495): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0) r2 = openat$cgroup_procs(r0, &(0x7f0000000080)='tasks\x00', 0x2, 0x0) write$cgroup_pid(r1, &(0x7f00000000c0), 0x12) preadv(r2, &(0x7f0000000600)=[{&(0x7f00000001c0)=""/183, 0xb7}], 0x1, 0x1, 0x0) 698.315645ms ago: executing program 4 (id=2496): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='setgroups\x00') close_range(r2, 0xffffffffffffffff, 0x0) 676.312516ms ago: executing program 4 (id=2497): syz_mount_image$msdos(&(0x7f0000000080), &(0x7f0000001200)='./file0\x00', 0x1000000, &(0x7f00000001c0)={[{@nodots}, {@fat=@discard}, {@nodots}, {@fat=@flush}, {@nodots}, {@fat=@discard}, {@nodots}, {@nodots}, {}]}, 0x1, 0x11f1, &(0x7f0000001240)="$eJzs3U1rY1UYB/CnmYzNpNPO+DY6s/GgG91cHBeu3BRpQSagzEyEGVd3aKohMQm9WSQiWHDnyg/i0p0gfgE/SXGjm66MtElfsS/S2Dd+v00f+r/PveeewIUbziEbH/34dWu1yFbzfpRmZqLci0ibKVKU4kaMrcd73y//9cOTZ88fLdZqS49TWl58+vDDlNLCW79+8e1Pb//Wn/v854VfZqM06bj3+/2Nv59+1SxSs0idbj/l6UW3289ftBtppVm0spQ+aze2zt/sFI21A/lqu9vrDVPeWZmv9tYaRZHyzjC1GsPU76bvIiL/Mm92UpZlab4aVM7QW9/5iEc346UYjUajW1GNubgd87EQd+JuvByvxKvxWrwe9+KNeDPubx+1e4L1Mw8fAAAAAAAAAAAAAAAAAAAAiM3t3fyjE/f/z/37/n8AAAAAAAAAAAAAAAAAAABgCk67//+I3/8HAAAAAAAAAAAAAAAAAAAApsD+fwAAAAAAAAAAAAAAAAAAALh4T549f7RYqy09TqkS8cf6oD6oj/+O8+VPakvvp23lva4/B4P6jd384ThP46w8yWejOsk/OJDv9Ffi3XfG+Vb28ae1Q/mDWDmfKQAAAIBrL0u77u79d+/9PsuOysfVvu8HDr2/l+NBOSJuH7xe+f+9Hf6jYvhNK2+3G2vHFVHad/DspPPErukVdyaXPI9rTa+YOfVE3YyIyzHmK1pUJlN9WcZzHYrzfhJxEfY95AEAAAAAAAAAALhCjl0GOJosvD3jcsKIWxd9mwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/7ADxwIAAAAAwvyt0+jYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGCpAAAA///tjHSh") r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12) write(r1, &(0x7f0000000740)="cc", 0x1) sendfile(r1, r0, 0x0, 0x3ffff) sendfile(r1, r0, 0x0, 0x7ffff000) 466.408433ms ago: executing program 2 (id=2499): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000180)=r1, 0x4) sendmsg$inet(r3, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x20000000) 455.925204ms ago: executing program 3 (id=2501): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18) r2 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0) ioctl$SG_SET_RESERVED_SIZE(r2, 0x2275, &(0x7f0000000040)) 438.677575ms ago: executing program 3 (id=2502): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000047b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='hrtimer_start\x00', r1}, 0x3d) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) 420.738257ms ago: executing program 2 (id=2504): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendmsg$inet(r2, &(0x7f0000000d40)={0x0, 0x7000000, &(0x7f00000023c0)=[{&(0x7f0000000b40)='?', 0x1}, {0x0, 0x1}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9}, 0x20001) 390.840929ms ago: executing program 0 (id=2505): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)=@getqdisc={0x24, 0x26, 0x705, 0x70bd27, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x1, 0xfff1}, {0x10, 0x8}, {0x4, 0x7}}}, 0x24}, 0x1, 0x0, 0x0, 0x4c88b}, 0x0) 390.539769ms ago: executing program 2 (id=2506): r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000080000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f28bd421850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x122}, 0x1, 0x0, 0x0, 0x24040000}, 0x8010) 386.03831ms ago: executing program 3 (id=2507): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000004000001d8500000007000000440000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10) r1 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc) write$binfmt_script(r1, &(0x7f0000000400)={'#! ', './file0'}, 0xb) close(r1) execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 383.12882ms ago: executing program 1 (id=2508): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x80000, 0x0, 0x0, 0x41100}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x2a0471a, &(0x7f00000000c0)={[{@quota}, {@bsdgroups}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@oldalloc}, {@stripe={'stripe', 0x3d, 0x5}}]}, 0x2, 0x46b, &(0x7f0000000580)="$eJzs3M1vFOUfAPDvzLbw+/HWivgColaJsfGlpQWVgxeNJh4wmugB9VTbQgiFGloTIUSqMXgxMSR6Vo8m/gXevBj1ZGLiSe+GhCgX0FPNzM5Ad9ltt3TZrd3PJxl4nn2e7TzfPvPMPDPPbgPoWUPZP0nEtoj4LSIGqtnaCkPV/65dOTf595Vzk0ksLr72Z5LXu3rl3GRZtXzf1iIznEakHyXFTmrNnTl7YmJmZvp0kR+dP/nO6NyZs08ePzlxbPrY9KnxQ4cOHhh75unxp9oSZxbX1T3vz+7d/dIbF1+ePHLx7R+/ydq7rShfGsct2XTzS0NZ4H8t5urLHon/r2l36832Jemkr4sNYVUqEZF1V38+/geiEjc6byBe/LCrjQNuq+zatLl58cIisIEl0e0WAN1RXuiz+99y69DUY124/Fz1BiiL+1qxVUv6Ii3q9Nfd37bTUEQcWfjni2yLdjyHAABYwSeTnx+OJxrN/9K4e0m9HcUaymBE3BEROyPizojYFRF3ReR174mIe1e5//qloZvnP+mlWwqsRdn879libat2/lfO/mKwUuS25/H3J0ePz0zvL34nw9G/OcuPLbOP71745dNmZUvnf9mW7b+cCxbtuNRX94BuamJ+Ip+UtsHlDyL29DWKP7m+EpBExO6I2LO6H72jTBx/7Ou9zSqtHP8y2rDOtPhVxKPV/l+IuvhLyfLrk6P/i5np/aPlUXGzn36+8Gqz/a8p/jbI+n9L7fFflHx5pkgMvrV0vXYuVr1yeeH3j5ve09zq8b8peT0/H5XLru9NzM+fHovYlBzO8zWvj994b5kv62fxD+9rPP53Fu/J+v++iMgO4vsj4oGIeLBo+0MR8XBE7Fsm/h+eb162Hvp/quH57/rxP5jU9P/qE5UT33/bbP+t9f/BPDVcvJKf/1bQagPX8rsDAACA/4o0/wx8ko5cT6fpyEj1M/y7Yks6Mzs3//jR2XdPTVU/Kz8Y/Wn5pGtgyfPQsWSh+InV/HjxrLgsP1A8N/6sEnl+ZHJ2ZqrLsUOv29pk/Gf+qHS7dcBt12gdbbzBF9qAjad+/Ke12fOvdLIxQEf5vjb0rhXGf9qpdgCd5/oPvavR+D9fl7cWABuT6z/0LuMfepfxD72rbvxX4tdutQTooLV8r1+ilxORrotmtJRo/e9B3O7Em+ujGS0kun1mAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAaI9/AwAA//9sbvBf") 358.266602ms ago: executing program 2 (id=2509): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000280)={@in6={{0xa, 0x4e23, 0xc54, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x29}}, 0x59d5}}, 0x0, 0x0, 0x2a, 0x0, "b25dd300350731437df94f0a338977934d6951cdd6c61e31687172d956b141e3f4e87e6ab615ea379a12c5a6f5c6e7b3ab38f5f3570909f89f3e47ec97b12cc30a1c48cd0300fd5dfad4624800"}, 0xd8) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @remote}, 0x6}, 0x1c) connect$inet6(r0, &(0x7f0000000400)={0xa, 0x4e23, 0xa, @dev={0xfe, 0x80, '\x00', 0x1d}, 0x3}, 0x1c) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0x106}, 0x1c) 338.296023ms ago: executing program 3 (id=2510): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x40, 0x4, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) symlinkat(0x0, 0xffffffffffffffff, 0x0) getgroups(0x0, 0x0) 337.797243ms ago: executing program 1 (id=2511): syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@max_batch_time={'max_batch_time', 0x3d, 0x1}}, {@debug}, {@noload}, {@jqfmt_vfsv1}, {@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x2}}, {@usrjquota}]}, 0xfe, 0x46c, &(0x7f0000000940)="$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") creat(&(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x10) mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1) creat(&(0x7f0000001680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x20) creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xec) 337.398983ms ago: executing program 0 (id=2521): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = socket(0x10, 0x80003, 0x0) write(r1, &(0x7f0000000000)="240000001a005f0214f9f407000904000a000000fe0000000000000008000f00fd000000", 0x85) close_range(r1, 0xffffffffffffffff, 0x0) 278.034218ms ago: executing program 1 (id=2512): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x8401) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x7ff, 0x5, 0xc, 0xfffffffffffffffd, 0x59c, 0xffffffffffffffff}) ioctl$SG_BLKTRACETEARDOWN(r1, 0x1276, 0x0) 277.510198ms ago: executing program 0 (id=2523): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000140)=ANY=[], 0x8) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) recvmmsg(r0, &(0x7f0000002280)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000010f40)=""/17, 0x11}, 0x8}], 0x1, 0x2, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) 253.92117ms ago: executing program 1 (id=2513): r0 = socket(0x40000000015, 0x5, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xe, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0), 0x4) bind$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e20, 0x2000000, @ipv4={'\x00', '\xff\xff', @loopback}, 0xb851}, 0x1c) 110.190721ms ago: executing program 3 (id=2514): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000808500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000012008500000084000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) syz_read_part_table(0x105b, &(0x7f0000000000)="$eJzsz7GtwjAABND78k9CREHDAOkooGUREEswBSuwBg0MwRYswQagBLICSvFec7J9OslhEs6fWN2y7UpVNXklTZLyfd/dk6yHUz1clFlfyXwc+E/bx1/S5tolOT6T7JePauiXepPk1CaLcSF1DpcffxMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJukdAAD//x8RCp8=") 109.763562ms ago: executing program 1 (id=2526): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18010000bc0000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r0, 0x0, 0x3}, 0x18) r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) r2 = openat$selinux_policy(0xffffff9c, &(0x7f0000001040), 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000a, 0x12, r2, 0x0) write$selinux_load(r1, &(0x7f0000000000)=ANY=[], 0x606c) 36.629527ms ago: executing program 1 (id=2515): socket$nl_route(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='block_bio_remap\x00', r0}, 0x10) quotactl$Q_SYNC(0xffffffff80000102, 0x0, 0x0, 0x0) 0s ago: executing program 3 (id=2516): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'pim6reg1\x00', 0x2}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x306) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @link_local}) close(0x3) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.37' (ED25519) to the list of known hosts. [ 22.492765][ T29] audit: type=1400 audit(1753978773.338:62): avc: denied { mounton } for pid=3285 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 22.493657][ T3285] cgroup: Unknown subsys name 'net' [ 22.515583][ T29] audit: type=1400 audit(1753978773.338:63): avc: denied { mount } for pid=3285 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 22.542937][ T29] audit: type=1400 audit(1753978773.378:64): avc: denied { unmount } for pid=3285 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 22.673896][ T3285] cgroup: Unknown subsys name 'cpuset' [ 22.680008][ T3285] cgroup: Unknown subsys name 'rlimit' [ 22.849867][ T29] audit: type=1400 audit(1753978773.698:65): avc: denied { setattr } for pid=3285 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 22.873095][ T29] audit: type=1400 audit(1753978773.698:66): avc: denied { create } for pid=3285 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 22.893756][ T29] audit: type=1400 audit(1753978773.698:67): avc: denied { write } for pid=3285 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 22.900832][ T3292] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 22.914139][ T29] audit: type=1400 audit(1753978773.698:68): avc: denied { read } for pid=3285 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 22.942982][ T29] audit: type=1400 audit(1753978773.708:69): avc: denied { mounton } for pid=3285 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 22.968135][ T29] audit: type=1400 audit(1753978773.708:70): avc: denied { mount } for pid=3285 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 Setting up swapspace version 1, size = 127995904 bytes [ 22.991501][ T29] audit: type=1400 audit(1753978773.778:71): avc: denied { relabelto } for pid=3292 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 23.025150][ T3285] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 24.068657][ T3302] chnl_net:caif_netlink_parms(): no params data found [ 24.096336][ T3298] chnl_net:caif_netlink_parms(): no params data found [ 24.174226][ T3304] chnl_net:caif_netlink_parms(): no params data found [ 24.183020][ T3298] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.190282][ T3298] bridge0: port 1(bridge_slave_0) entered disabled state [ 24.197543][ T3298] bridge_slave_0: entered allmulticast mode [ 24.203989][ T3298] bridge_slave_0: entered promiscuous mode [ 24.222929][ T3298] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.230452][ T3298] bridge0: port 2(bridge_slave_1) entered disabled state [ 24.237689][ T3298] bridge_slave_1: entered allmulticast mode [ 24.244030][ T3298] bridge_slave_1: entered promiscuous mode [ 24.255116][ T3300] chnl_net:caif_netlink_parms(): no params data found [ 24.282408][ T3302] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.289579][ T3302] bridge0: port 1(bridge_slave_0) entered disabled state [ 24.296775][ T3302] bridge_slave_0: entered allmulticast mode [ 24.303109][ T3302] bridge_slave_0: entered promiscuous mode [ 24.311427][ T3302] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.318532][ T3302] bridge0: port 2(bridge_slave_1) entered disabled state [ 24.325775][ T3302] bridge_slave_1: entered allmulticast mode [ 24.332260][ T3302] bridge_slave_1: entered promiscuous mode [ 24.365868][ T3298] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 24.375111][ T3309] chnl_net:caif_netlink_parms(): no params data found [ 24.389826][ T3302] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 24.399835][ T3302] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 24.412099][ T3298] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 24.462856][ T3298] team0: Port device team_slave_0 added [ 24.474331][ T3302] team0: Port device team_slave_0 added [ 24.480002][ T3304] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.487079][ T3304] bridge0: port 1(bridge_slave_0) entered disabled state [ 24.494333][ T3304] bridge_slave_0: entered allmulticast mode [ 24.500626][ T3304] bridge_slave_0: entered promiscuous mode [ 24.507212][ T3304] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.514315][ T3304] bridge0: port 2(bridge_slave_1) entered disabled state [ 24.521454][ T3304] bridge_slave_1: entered allmulticast mode [ 24.528049][ T3304] bridge_slave_1: entered promiscuous mode [ 24.537025][ T3298] team0: Port device team_slave_1 added [ 24.548215][ T3300] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.555300][ T3300] bridge0: port 1(bridge_slave_0) entered disabled state [ 24.562479][ T3300] bridge_slave_0: entered allmulticast mode [ 24.568946][ T3300] bridge_slave_0: entered promiscuous mode [ 24.576067][ T3302] team0: Port device team_slave_1 added [ 24.598732][ T3300] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.605881][ T3300] bridge0: port 2(bridge_slave_1) entered disabled state [ 24.613091][ T3300] bridge_slave_1: entered allmulticast mode [ 24.619641][ T3300] bridge_slave_1: entered promiscuous mode [ 24.648555][ T3302] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 24.655551][ T3302] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 24.681619][ T3302] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 24.693447][ T3304] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 24.702631][ T3309] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.709940][ T3309] bridge0: port 1(bridge_slave_0) entered disabled state [ 24.717102][ T3309] bridge_slave_0: entered allmulticast mode [ 24.723510][ T3309] bridge_slave_0: entered promiscuous mode [ 24.730064][ T3298] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 24.737060][ T3298] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 24.763051][ T3298] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 24.774197][ T3298] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 24.781139][ T3298] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 24.807184][ T3298] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 24.822648][ T3302] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 24.829632][ T3302] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 24.855541][ T3302] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 24.867129][ T3304] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 24.878606][ T3309] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.885717][ T3309] bridge0: port 2(bridge_slave_1) entered disabled state [ 24.892834][ T3309] bridge_slave_1: entered allmulticast mode [ 24.899272][ T3309] bridge_slave_1: entered promiscuous mode [ 24.912939][ T3300] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 24.938430][ T3300] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 24.952914][ T3309] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 24.963808][ T3309] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 24.973474][ T3304] team0: Port device team_slave_0 added [ 24.997341][ T3304] team0: Port device team_slave_1 added [ 25.012046][ T3309] team0: Port device team_slave_0 added [ 25.018553][ T3309] team0: Port device team_slave_1 added [ 25.025197][ T3300] team0: Port device team_slave_0 added [ 25.037921][ T3302] hsr_slave_0: entered promiscuous mode [ 25.044143][ T3302] hsr_slave_1: entered promiscuous mode [ 25.060544][ T3300] team0: Port device team_slave_1 added [ 25.076353][ T3304] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 25.083388][ T3304] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 25.109289][ T3304] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 25.121698][ T3298] hsr_slave_0: entered promiscuous mode [ 25.127883][ T3298] hsr_slave_1: entered promiscuous mode [ 25.133675][ T3298] debugfs: 'hsr0' already exists in 'hsr' [ 25.139486][ T3298] Cannot create hsr debugfs directory [ 25.168250][ T3304] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 25.175371][ T3304] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 25.201428][ T3304] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 25.215158][ T3309] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 25.222091][ T3309] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 25.248090][ T3309] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 25.259084][ T3300] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 25.266119][ T3300] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 25.292046][ T3300] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 25.322408][ T3309] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 25.329501][ T3309] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 25.355423][ T3309] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 25.366287][ T3300] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 25.373321][ T3300] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 25.399502][ T3300] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 25.437747][ T3304] hsr_slave_0: entered promiscuous mode [ 25.443773][ T3304] hsr_slave_1: entered promiscuous mode [ 25.449512][ T3304] debugfs: 'hsr0' already exists in 'hsr' [ 25.455271][ T3304] Cannot create hsr debugfs directory [ 25.494519][ T3300] hsr_slave_0: entered promiscuous mode [ 25.500701][ T3300] hsr_slave_1: entered promiscuous mode [ 25.506716][ T3300] debugfs: 'hsr0' already exists in 'hsr' [ 25.512434][ T3300] Cannot create hsr debugfs directory [ 25.526792][ T3309] hsr_slave_0: entered promiscuous mode [ 25.532682][ T3309] hsr_slave_1: entered promiscuous mode [ 25.538465][ T3309] debugfs: 'hsr0' already exists in 'hsr' [ 25.544251][ T3309] Cannot create hsr debugfs directory [ 25.685263][ T3302] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 25.696202][ T3302] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 25.706796][ T3302] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 25.717465][ T3302] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 25.737973][ T3298] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 25.747000][ T3298] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 25.756141][ T3298] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 25.764736][ T3298] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 25.803094][ T3304] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 25.811821][ T3304] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 25.820585][ T3304] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 25.829932][ T3304] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 25.884107][ T3300] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 25.898982][ T3300] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 25.911463][ T3300] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 25.922099][ T3300] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 25.932572][ T3302] 8021q: adding VLAN 0 to HW filter on device bond0 [ 25.955489][ T3309] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 25.973511][ T3309] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 25.984133][ T3304] 8021q: adding VLAN 0 to HW filter on device bond0 [ 25.992485][ T3302] 8021q: adding VLAN 0 to HW filter on device team0 [ 26.000786][ T3309] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 26.009129][ T3309] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 26.019117][ T3298] 8021q: adding VLAN 0 to HW filter on device bond0 [ 26.035433][ T1448] bridge0: port 1(bridge_slave_0) entered blocking state [ 26.042493][ T1448] bridge0: port 1(bridge_slave_0) entered forwarding state [ 26.056061][ T51] bridge0: port 2(bridge_slave_1) entered blocking state [ 26.063127][ T51] bridge0: port 2(bridge_slave_1) entered forwarding state [ 26.076068][ T3304] 8021q: adding VLAN 0 to HW filter on device team0 [ 26.094916][ T3298] 8021q: adding VLAN 0 to HW filter on device team0 [ 26.120764][ T51] bridge0: port 1(bridge_slave_0) entered blocking state [ 26.128069][ T51] bridge0: port 1(bridge_slave_0) entered forwarding state [ 26.136560][ T51] bridge0: port 2(bridge_slave_1) entered blocking state [ 26.143683][ T51] bridge0: port 2(bridge_slave_1) entered forwarding state [ 26.156090][ T51] bridge0: port 1(bridge_slave_0) entered blocking state [ 26.163118][ T51] bridge0: port 1(bridge_slave_0) entered forwarding state [ 26.171613][ T51] bridge0: port 2(bridge_slave_1) entered blocking state [ 26.178877][ T51] bridge0: port 2(bridge_slave_1) entered forwarding state [ 26.222912][ T3309] 8021q: adding VLAN 0 to HW filter on device bond0 [ 26.233587][ T3300] 8021q: adding VLAN 0 to HW filter on device bond0 [ 26.245988][ T3309] 8021q: adding VLAN 0 to HW filter on device team0 [ 26.266602][ T51] bridge0: port 1(bridge_slave_0) entered blocking state [ 26.273688][ T51] bridge0: port 1(bridge_slave_0) entered forwarding state [ 26.282966][ T51] bridge0: port 2(bridge_slave_1) entered blocking state [ 26.290053][ T51] bridge0: port 2(bridge_slave_1) entered forwarding state [ 26.304448][ T3300] 8021q: adding VLAN 0 to HW filter on device team0 [ 26.326618][ T3309] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 26.337054][ T3309] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 26.357022][ T146] bridge0: port 1(bridge_slave_0) entered blocking state [ 26.364142][ T146] bridge0: port 1(bridge_slave_0) entered forwarding state [ 26.408265][ T3304] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 26.419430][ T146] bridge0: port 2(bridge_slave_1) entered blocking state [ 26.426514][ T146] bridge0: port 2(bridge_slave_1) entered forwarding state [ 26.445671][ T3298] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 26.482141][ T3309] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 26.491352][ T3302] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 26.559255][ T3298] veth0_vlan: entered promiscuous mode [ 26.585709][ T3298] veth1_vlan: entered promiscuous mode [ 26.601521][ T3300] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 26.620438][ T3298] veth0_macvtap: entered promiscuous mode [ 26.638154][ T3298] veth1_macvtap: entered promiscuous mode [ 26.650072][ T3304] veth0_vlan: entered promiscuous mode [ 26.660148][ T3298] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 26.677097][ T3298] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 26.701885][ T3304] veth1_vlan: entered promiscuous mode [ 26.718109][ T3302] veth0_vlan: entered promiscuous mode [ 26.729878][ T3304] veth0_macvtap: entered promiscuous mode [ 26.738406][ T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 26.750891][ T3304] veth1_macvtap: entered promiscuous mode [ 26.761581][ T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 26.771042][ T3302] veth1_vlan: entered promiscuous mode [ 26.782028][ T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 26.798909][ T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 26.813925][ T3309] veth0_vlan: entered promiscuous mode [ 26.823901][ T3300] veth0_vlan: entered promiscuous mode [ 26.841085][ T3309] veth1_vlan: entered promiscuous mode [ 26.849415][ T3300] veth1_vlan: entered promiscuous mode [ 26.868469][ T3304] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 26.877927][ T3298] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 26.880691][ T3309] veth0_macvtap: entered promiscuous mode [ 26.905280][ T3302] veth0_macvtap: entered promiscuous mode [ 26.917144][ T3304] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 26.925324][ T3309] veth1_macvtap: entered promiscuous mode [ 26.939320][ T3302] veth1_macvtap: entered promiscuous mode [ 26.964815][ T3437] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 26.975607][ T3309] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 26.983881][ T3300] veth0_macvtap: entered promiscuous mode [ 26.992110][ T3302] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 27.006319][ T3437] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.016145][ T3300] veth1_macvtap: entered promiscuous mode [ 27.026558][ T3302] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 27.035229][ T3309] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 27.045523][ T3437] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.072185][ T3300] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 27.086232][ T3437] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.104901][ T3300] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 27.121970][ T58] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.165061][ T58] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.204922][ T58] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.262163][ T58] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.275704][ T3489] syz.4.5 (3489) used greatest stack depth: 10552 bytes left [ 27.287191][ T58] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.307591][ T58] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.338751][ T3498] loop0: detected capacity change from 0 to 512 [ 27.348761][ T58] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.369284][ T58] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.384173][ T3446] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.414775][ T3446] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.425257][ T3446] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.434619][ T3446] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.440047][ T3498] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 27.473217][ T3510] loop4: detected capacity change from 0 to 512 [ 27.480657][ T3510] EXT4-fs: Ignoring removed nobh option [ 27.489042][ T3498] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 27.504643][ T3498] veth2: entered allmulticast mode [ 27.510363][ T3510] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 27.535825][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 27.554142][ T3510] EXT4-fs error (device loop4): ext4_do_update_inode:5563: inode #3: comm syz.4.16: corrupted inode contents [ 27.574467][ T3510] EXT4-fs error (device loop4): ext4_dirty_inode:6454: inode #3: comm syz.4.16: mark_inode_dirty error [ 27.586525][ T3510] EXT4-fs error (device loop4): ext4_do_update_inode:5563: inode #3: comm syz.4.16: corrupted inode contents [ 27.599777][ T3510] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #3: comm syz.4.16: mark_inode_dirty error [ 27.620321][ T3510] __quota_error: 41 callbacks suppressed [ 27.620333][ T3510] Quota error (device loop4): write_blk: dquota write failed [ 27.635537][ T3510] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 27.649740][ T3510] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.16: Failed to acquire dquot type 0 [ 27.663124][ T3510] EXT4-fs error (device loop4): ext4_do_update_inode:5563: inode #16: comm syz.4.16: corrupted inode contents [ 27.676791][ T3510] EXT4-fs error (device loop4): ext4_dirty_inode:6454: inode #16: comm syz.4.16: mark_inode_dirty error [ 27.689001][ T3510] EXT4-fs error (device loop4): ext4_do_update_inode:5563: inode #16: comm syz.4.16: corrupted inode contents [ 27.702495][ T3510] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #16: comm syz.4.16: mark_inode_dirty error [ 27.715147][ T3510] EXT4-fs error (device loop4): ext4_do_update_inode:5563: inode #16: comm syz.4.16: corrupted inode contents [ 27.732536][ T3510] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem [ 27.754933][ T3510] EXT4-fs error (device loop4): ext4_do_update_inode:5563: inode #16: comm syz.4.16: corrupted inode contents [ 27.771421][ T3510] EXT4-fs error (device loop4): ext4_truncate:4592: inode #16: comm syz.4.16: mark_inode_dirty error [ 27.819193][ T3510] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem [ 27.833050][ T3510] EXT4-fs (loop4): 1 truncate cleaned up [ 27.843467][ T29] audit: type=1400 audit(1753978778.648:113): avc: denied { read write } for pid=3529 comm="syz.3.23" name="rdma_cm" dev="devtmpfs" ino=250 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1 [ 27.847069][ T3510] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 27.867406][ T29] audit: type=1400 audit(1753978778.648:114): avc: denied { open } for pid=3529 comm="syz.3.23" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=250 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1 [ 27.911220][ T3510] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 28.004965][ T3510] syz.4.16 (3510) used greatest stack depth: 9752 bytes left [ 28.014930][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 28.044541][ T3536] syz.3.27 uses obsolete (PF_INET,SOCK_PACKET) [ 28.052214][ T3536] syzkaller1: entered promiscuous mode [ 28.057861][ T3536] syzkaller1: entered allmulticast mode [ 28.066737][ T29] audit: type=1400 audit(1753978778.898:115): avc: denied { create } for pid=3535 comm="syz.3.27" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 28.086317][ T29] audit: type=1400 audit(1753978778.898:116): avc: denied { ioctl } for pid=3535 comm="syz.3.27" path="socket:[4743]" dev="sockfs" ino=4743 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 28.128515][ T29] audit: type=1400 audit(1753978778.978:117): avc: denied { create } for pid=3537 comm="syz.4.26" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 28.173692][ T29] audit: type=1400 audit(1753978779.028:118): avc: denied { module_load } for pid=3539 comm="syz.4.28" path="/sys/power/wakeup_count" dev="sysfs" ino=217 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1 [ 28.210294][ T29] audit: type=1400 audit(1753978779.058:119): avc: denied { create } for pid=3541 comm="syz.0.29" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 28.245009][ T29] audit: type=1400 audit(1753978779.098:120): avc: denied { mounton } for pid=3543 comm="syz.4.30" path="/5/file0" dev="tmpfs" ino=45 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 28.254392][ T3546] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 28.276669][ T3544] 9pnet: Could not find request transport: 0xffffffffffffffff [ 28.307945][ T3549] loop0: detected capacity change from 0 to 512 [ 28.338277][ T3553] sch_fq: defrate 4294967295 ignored. [ 28.379245][ T3549] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 28.393842][ T3549] ext4 filesystem being mounted at /7/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 28.415874][ T3559] team0 (unregistering): Port device team_slave_0 removed [ 28.427271][ T3549] EXT4-fs error (device loop0): ext4_do_update_inode:5563: inode #18: comm syz.0.32: corrupted inode contents [ 28.439643][ T3549] EXT4-fs error (device loop0): ext4_dirty_inode:6454: inode #18: comm syz.0.32: mark_inode_dirty error [ 28.441070][ T3559] team0 (unregistering): Port device team_slave_1 removed [ 28.453001][ T3565] loop1: detected capacity change from 0 to 2048 [ 28.464698][ T3549] EXT4-fs error (device loop0): ext4_do_update_inode:5563: inode #18: comm syz.0.32: corrupted inode contents [ 28.477954][ T3549] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2991: inode #18: comm syz.0.32: mark_inode_dirty error [ 28.490172][ T3549] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2994: inode #18: comm syz.0.32: mark inode dirty (error -117) [ 28.502821][ T3549] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -117) [ 28.502857][ T3565] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 28.545405][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 28.566019][ T3565] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.39: bg 0: block 408: padding at end of block bitmap is not set [ 28.581947][ T3565] EXT4-fs (loop1): Remounting filesystem read-only [ 28.648500][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 28.722262][ T3587] netlink: 4 bytes leftover after parsing attributes in process `syz.2.48'. [ 29.018847][ T3623] binfmt_misc: register: failed to install interpreter file ./file0 [ 29.249878][ T3641] loop0: detected capacity change from 0 to 8192 [ 29.327498][ T3651] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2051 sclass=netlink_route_socket pid=3651 comm=syz.2.79 [ 29.369923][ T3655] sock: sock_set_timeout: `syz.2.81' (pid 3655) tries to set negative timeout [ 29.618180][ T3687] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 29.628904][ T3687] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 29.872648][ T3701] program syz.1.102 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 29.888409][ T3701] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 29.915613][ T3705] loop1: detected capacity change from 0 to 512 [ 29.922439][ T3705] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 29.945584][ T3705] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 29.959708][ T3705] EXT4-fs (loop1): 1 truncate cleaned up [ 29.966129][ T3705] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 29.990462][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 30.011168][ T3711] syz.3.106 (3711) used greatest stack depth: 9456 bytes left [ 30.039934][ T3724] SELinux: Context system_u:object_r:netutils_exec_t:s0 is not valid (left unmapped). [ 30.138505][ T3739] vhci_hcd: invalid port number 96 [ 30.143682][ T3739] vhci_hcd: default hub control req: 0300 vfffa i0060 l0 [ 30.237917][ T3764] loop3: detected capacity change from 0 to 128 [ 30.258766][ T3766] random: crng reseeded on system resumption [ 30.400203][ T3790] netlink: 36 bytes leftover after parsing attributes in process `syz.0.143'. [ 30.454484][ T3793] loop0: detected capacity change from 0 to 1024 [ 30.461319][ T3793] ======================================================= [ 30.461319][ T3793] WARNING: The mand mount option has been deprecated and [ 30.461319][ T3793] and is ignored by this kernel. Remove the mand [ 30.461319][ T3793] option from the mount to silence this warning. [ 30.461319][ T3793] ======================================================= [ 30.515748][ T3793] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 30.557928][ T3808] sctp: [Deprecated]: syz.3.150 (pid 3808) Use of int in maxseg socket option. [ 30.557928][ T3808] Use struct sctp_assoc_value instead [ 30.581293][ T3812] SELinux: Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped). [ 30.610079][ T3793] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4113: comm syz.0.144: Allocating blocks 449-513 which overlap fs metadata [ 30.639499][ T3792] EXT4-fs (loop0): pa ffff888106a5d0e0: logic 48, phys. 177, len 21 [ 30.647753][ T3792] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4 [ 30.735937][ T3826] loop3: detected capacity change from 0 to 512 [ 30.781844][ T3826] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 30.796349][ T3826] ext4 filesystem being mounted at /35/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 30.808583][ T3826] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.159: bg 0: block 328: padding at end of block bitmap is not set [ 30.809677][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 30.851869][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 30.987962][ T3849] loop3: detected capacity change from 0 to 512 [ 30.994606][ T3849] EXT4-fs: Ignoring removed oldalloc option [ 31.027656][ T3858] usb usb1: usbfs: process 3858 (syz.1.168) did not claim interface 0 before use [ 31.057522][ T3860] netlink: 24 bytes leftover after parsing attributes in process `syz.4.169'. [ 31.112937][ T3849] EXT4-fs (loop3): 1 truncate cleaned up [ 31.119172][ T3849] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 31.155541][ T3873] loop0: detected capacity change from 0 to 1024 [ 31.160690][ T3849] EXT4-fs error (device loop3): htree_dirblock_to_tree:1080: inode #2: block 13: comm syz.3.161: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=0, rec_len=0, size=1024 fake=0 [ 31.170845][ T3873] ext4: Unknown parameter 'euid>00000000000000000000' [ 31.197151][ T3877] loop1: detected capacity change from 0 to 512 [ 31.213095][ T3849] EXT4-fs (loop3): Remounting filesystem read-only [ 31.234451][ T3877] EXT4-fs (loop1): too many log groups per flexible block group [ 31.242218][ T3877] EXT4-fs (loop1): failed to initialize mballoc (-12) [ 31.250177][ T3877] EXT4-fs (loop1): mount failed [ 31.303128][ T3897] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 31.315617][ T3897] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 31.339483][ T3904] loop2: detected capacity change from 0 to 1024 [ 31.346688][ T3904] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 31.357732][ T3904] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 31.383576][ T3904] JBD2: no valid journal superblock found [ 31.389354][ T3904] EXT4-fs (loop2): Could not load journal inode [ 31.414051][ T3904] SELinux: security_context_str_to_sid (-Xܘ7.H\ %u@) failed with errno=-22 [ 31.533239][ T3948] program +}[@ is using a deprecated SCSI ioctl, please convert it to SG_IO [ 31.577940][ T3960] Zero length message leads to an empty skb [ 31.632086][ T3970] loop0: detected capacity change from 0 to 512 [ 31.639961][ T3970] ext4: Unknown parameter 'measure' [ 31.699805][ T3982] netlink: 96 bytes leftover after parsing attributes in process `syz.1.224'. [ 31.728338][ T3984] loop1: detected capacity change from 0 to 2048 [ 31.735909][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 31.783759][ T3984] loop1: p1 < > p4 [ 31.789204][ T3984] loop1: p4 size 8388608 extends beyond EOD, truncated [ 31.849510][ T3996] loop1: detected capacity change from 0 to 512 [ 31.866464][ T3996] EXT4-fs (loop1): 1 orphan inode deleted [ 31.872646][ T3996] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 31.886002][ T3996] ext4 filesystem being mounted at /51/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 31.898040][ T146] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 1 [ 31.924703][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 31.941749][ T4004] netlink: 12 bytes leftover after parsing attributes in process `syz.1.234'. [ 32.052200][ T4016] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=4016 comm=syz.3.240 [ 32.064657][ T4016] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=4016 comm=syz.3.240 [ 32.096624][ T4022] netlink: 4 bytes leftover after parsing attributes in process `syz.3.243'. [ 32.105606][ T4022] netlink: 4 bytes leftover after parsing attributes in process `syz.3.243'. [ 32.119478][ T4025] netlink: 8 bytes leftover after parsing attributes in process `syz.4.245'. [ 32.145754][ T4028] netlink: 'syz.4.246': attribute type 1 has an invalid length. [ 32.457886][ T4061] random: crng reseeded on system resumption [ 32.485377][ T4064] capability: warning: `syz.2.262' uses deprecated v2 capabilities in a way that may be insecure [ 32.523477][ T4066] process 'syz.0.263' launched '/dev/fd/5' with NULL argv: empty string added [ 32.586016][ T4071] loop0: detected capacity change from 0 to 512 [ 32.611967][ T4071] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 32.655528][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 32.711557][ T4083] loop0: detected capacity change from 0 to 128 [ 32.722268][ T29] kauditd_printk_skb: 211 callbacks suppressed [ 32.722316][ T29] audit: type=1400 audit(1753978783.568:331): avc: denied { mount } for pid=4082 comm="syz.0.270" name="/" dev="loop0" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 32.725436][ T4083] FAT-fs (loop0): error, clusters badly computed (2 != 0) [ 32.732149][ T29] audit: type=1400 audit(1753978783.568:332): avc: denied { remount } for pid=4082 comm="syz.0.270" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 32.750396][ T4083] FAT-fs (loop0): Filesystem has been set read-only [ 32.751268][ T4083] FAT-fs (loop0): error, clusters badly computed (3 != 1) [ 32.791620][ T4088] capability: warning: `syz.1.272' uses 32-bit capabilities (legacy support in use) [ 32.797037][ T4086] netlink: 4 bytes leftover after parsing attributes in process `syz.2.271'. [ 32.802327][ T4083] FAT-fs (loop0): error, clusters badly computed (4 != 2) [ 32.818054][ T29] audit: type=1401 audit(1753978783.668:333): op=setxattr invalid_context="" [ 32.852563][ T29] audit: type=1400 audit(1753978783.698:334): avc: denied { unmount } for pid=3302 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 32.882952][ T29] audit: type=1400 audit(1753978783.728:335): avc: denied { module_request } for pid=4096 comm="syz.2.276" kmod="crypto-hmac(md5)" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 32.932163][ T29] audit: type=1400 audit(1753978783.728:336): avc: denied { create } for pid=4099 comm="syz.0.277" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 32.951492][ T29] audit: type=1400 audit(1753978783.728:337): avc: denied { setopt } for pid=4099 comm="syz.0.277" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 32.970742][ T29] audit: type=1400 audit(1753978783.728:338): avc: denied { ioctl } for pid=4099 comm="syz.0.277" path="socket:[6664]" dev="sockfs" ino=6664 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 32.995162][ T29] audit: type=1400 audit(1753978783.728:339): avc: denied { write } for pid=4099 comm="syz.0.277" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 33.001335][ T4105] netlink: 100 bytes leftover after parsing attributes in process `syz.1.279'. [ 33.014453][ T29] audit: type=1400 audit(1753978783.728:340): avc: denied { read } for pid=4099 comm="syz.0.277" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 33.074801][ T4112] loop0: detected capacity change from 0 to 1024 [ 33.090332][ T4112] EXT4-fs: Ignoring removed orlov option [ 33.090402][ T4112] EXT4-fs: Ignoring removed mblk_io_submit option [ 33.092758][ T4112] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 33.131375][ T4112] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 33.156061][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 33.212938][ T4130] netlink: 'syz.2.287': attribute type 21 has an invalid length. [ 33.286461][ T4155] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 33.614891][ T4205] SELinux: policydb version 1675088414 does not match my version range 15-35 [ 33.628234][ T4205] SELinux: failed to load policy [ 33.634215][ T4207] SELinux: failed to load policy [ 33.637829][ T4212] SELinux: Context is not valid (left unmapped). [ 33.716684][ T4225] SELinux: failed to load policy [ 33.734210][ T4221] loop1: detected capacity change from 0 to 1024 [ 33.779745][ T4221] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 33.792995][ T4235] __nla_validate_parse: 4 callbacks suppressed [ 33.793045][ T4235] netlink: 8 bytes leftover after parsing attributes in process `syz.4.337'. [ 33.808184][ T4235] netlink: 4 bytes leftover after parsing attributes in process `syz.4.337'. [ 33.844793][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 33.972812][ T4258] netlink: 'syz.3.343': attribute type 1 has an invalid length. [ 33.980742][ T4258] netlink: 32 bytes leftover after parsing attributes in process `syz.3.343'. [ 33.989671][ T4258] bridge0: port 2(bridge_slave_1) entered disabled state [ 33.997722][ T4258] bridge0: port 2(bridge_slave_1) entered blocking state [ 34.004819][ T4258] bridge0: port 2(bridge_slave_1) entered forwarding state [ 34.042639][ T4271] netlink: 'syz.0.354': attribute type 10 has an invalid length. [ 34.054422][ T4271] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 34.081631][ T4275] loop4: detected capacity change from 0 to 512 [ 34.106631][ T4275] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -13 [ 34.121076][ T4275] EXT4-fs error (device loop4): ext4_orphan_get:1393: inode #13: comm syz.4.356: iget: bad i_size value: 12154757448730 [ 34.135371][ T4275] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.356: couldn't read orphan inode 13 (err -117) [ 34.162010][ T4275] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 34.178999][ T3380] hid-generic 0000:0004:0000.0001: unknown main item tag 0x0 [ 34.186601][ T3380] hid-generic 0000:0004:0000.0001: unknown main item tag 0x0 [ 34.191212][ T4275] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 34.194028][ T3380] hid-generic 0000:0004:0000.0001: unknown main item tag 0x0 [ 34.200460][ T4293] loop0: detected capacity change from 0 to 512 [ 34.223029][ T4293] EXT4-fs: Ignoring removed oldalloc option [ 34.229022][ T4293] EXT4-fs: inline encryption not supported [ 34.235015][ T4293] EXT4-fs: Ignoring removed mblk_io_submit option [ 34.241536][ T4293] EXT4-fs: Ignoring removed i_version option [ 34.247719][ T3380] hid-generic 0000:0004:0000.0001: hidraw0: HID v0.00 Device [syz0] on syz0 [ 34.248309][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 34.266453][ T4293] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 34.287242][ T4293] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.364: bg 0: block 64: padding at end of block bitmap is not set [ 34.303047][ T4293] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.364: Failed to acquire dquot type 0 [ 34.314820][ T4293] EXT4-fs (loop0): 1 truncate cleaned up [ 34.321090][ T4293] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 34.324981][ T4299] loop3: detected capacity change from 0 to 256 [ 34.353120][ T4293] syz.0.364 (4293) used greatest stack depth: 9272 bytes left [ 34.366310][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 34.421932][ T4314] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6) [ 34.428541][ T4314] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 34.436095][ T4314] vhci_hcd vhci_hcd.0: Device attached [ 34.443848][ T4315] vhci_hcd: connection closed [ 34.444093][ T3446] vhci_hcd: stop threads [ 34.453400][ T3446] vhci_hcd: release socket [ 34.457877][ T3446] vhci_hcd: disconnect device [ 34.458875][ T4320] loop4: detected capacity change from 0 to 128 [ 34.479923][ T4320] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 34.494760][ T4323] loop0: detected capacity change from 0 to 164 [ 34.503742][ T4320] ext4 filesystem being mounted at /64/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 34.519957][ T4325] netlink: 7 bytes leftover after parsing attributes in process `syz.2.376'. [ 34.537177][ T4325] netlink: 7 bytes leftover after parsing attributes in process `syz.2.376'. [ 34.547149][ T3309] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 34.560642][ T3408] IPVS: starting estimator thread 0... [ 34.653557][ T4330] IPVS: using max 2736 ests per chain, 136800 per kthread [ 34.722666][ T4363] netlink: 'syz.2.396': attribute type 1 has an invalid length. [ 34.722721][ T4366] netlink: 20 bytes leftover after parsing attributes in process `syz.4.397'. [ 34.739578][ T4366] netlink: 8 bytes leftover after parsing attributes in process `syz.4.397'. [ 34.782117][ T4372] loop0: detected capacity change from 0 to 512 [ 34.790346][ T4372] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 34.798760][ T4372] EXT4-fs (loop0): orphan cleanup on readonly fs [ 34.805556][ T4372] EXT4-fs error (device loop0): ext4_quota_enable:7124: inode #15: comm syz.0.400: iget: bad i_size value: 360287970189639690 [ 34.820202][ T4372] EXT4-fs error (device loop0): ext4_quota_enable:7127: comm syz.0.400: Bad quota inode: 15, type: 2 [ 34.831526][ T4372] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix. [ 34.848637][ T4372] EXT4-fs (loop0): Cannot turn on quotas: error -117 [ 34.870741][ T4372] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 34.896073][ T4380] netlink: 197276 bytes leftover after parsing attributes in process `syz.1.403'. [ 34.909919][ T4372] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended [ 34.920542][ T4372] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 34.935117][ T4372] EXT4-fs error (device loop0): ext4_quota_enable:7124: inode #15: comm syz.0.400: iget: bad i_size value: 360287970189639690 [ 34.993630][ T4372] EXT4-fs error (device loop0): ext4_quota_enable:7127: comm syz.0.400: Bad quota inode: 15, type: 2 [ 35.017493][ T4372] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix. [ 35.035558][ T4389] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended [ 35.051943][ T4389] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 35.064296][ T4389] EXT4-fs error (device loop0): ext4_quota_enable:7124: inode #15: comm syz.0.400: iget: bad i_size value: 360287970189639690 [ 35.078384][ T4389] EXT4-fs error (device loop0): ext4_quota_enable:7127: comm syz.0.400: Bad quota inode: 15, type: 2 [ 35.091532][ T4389] EXT4-fs warning (device loop0): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix. [ 35.111083][ T4416] loop4: detected capacity change from 0 to 512 [ 35.133563][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 35.163862][ T4416] EXT4-fs error (device loop4): ext4_do_update_inode:5563: inode #16: comm syz.4.416: corrupted inode contents [ 35.187128][ T4416] EXT4-fs error (device loop4): ext4_dirty_inode:6454: inode #16: comm syz.4.416: mark_inode_dirty error [ 35.204776][ T4416] EXT4-fs error (device loop4): ext4_do_update_inode:5563: inode #16: comm syz.4.416: corrupted inode contents [ 35.241688][ T4416] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #16: comm syz.4.416: mark_inode_dirty error [ 35.254532][ T3408] IPVS: starting estimator thread 0... [ 35.280341][ T4416] EXT4-fs error (device loop4): ext4_do_update_inode:5563: inode #16: comm syz.4.416: corrupted inode contents [ 35.294287][ T4436] loop2: detected capacity change from 0 to 2364 [ 35.301656][ T4416] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem [ 35.310436][ T4416] EXT4-fs error (device loop4): ext4_do_update_inode:5563: inode #16: comm syz.4.416: corrupted inode contents [ 35.322789][ T4416] EXT4-fs error (device loop4): ext4_truncate:4592: inode #16: comm syz.4.416: mark_inode_dirty error [ 35.344291][ T4442] syzkaller1: entered promiscuous mode [ 35.349783][ T4442] syzkaller1: entered allmulticast mode [ 35.355845][ T4416] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem [ 35.373351][ T4432] IPVS: using max 2736 ests per chain, 136800 per kthread [ 35.381569][ T4416] EXT4-fs (loop4): 1 truncate cleaned up [ 35.389421][ T4416] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 35.403766][ T12] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:0: Failed to release dquot type 1 [ 35.415483][ T4416] ext4 filesystem being mounted at /72/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 35.487785][ T4462] loop0: detected capacity change from 0 to 512 [ 35.504982][ T4462] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 35.517717][ T4462] ext4 filesystem being mounted at /107/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 35.531587][ T4462] EXT4-fs (loop0): shut down requested (0) [ 35.547018][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 35.605097][ T4476] loop0: detected capacity change from 0 to 1024 [ 35.615518][ T4476] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 35.627704][ T4476] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 35.640585][ T4476] EXT4-fs error (device loop0): ext4_map_blocks:816: inode #15: comm syz.0.441: lblock 0 mapped to illegal pblock 0 (length 1) [ 35.654748][ T4476] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 35.667150][ T4476] EXT4-fs (loop0): This should not happen!! Data will be lost [ 35.667150][ T4476] [ 35.685134][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 35.722938][ T4484] netlink: 'syz.0.444': attribute type 4 has an invalid length. [ 35.762082][ T4494] loop0: detected capacity change from 0 to 512 [ 35.769768][ T4494] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 35.779023][ T4494] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002] [ 35.787326][ T4494] EXT4-fs error (device loop0): ext4_iget_extra_inode:5030: inode #15: comm syz.0.448: corrupted in-inode xattr: e_value size too large [ 35.801599][ T4494] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.448: couldn't read orphan inode 15 (err -117) [ 35.814208][ T4494] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 35.837984][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 35.958205][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 35.980008][ C1] hrtimer: interrupt took 24854 ns [ 36.116235][ T4533] loop1: detected capacity change from 0 to 1024 [ 36.155170][ T4533] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 36.173389][ T4533] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 36.272893][ T4560] program syz.0.478 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 36.299864][ T4564] netlink: 'syz.1.480': attribute type 3 has an invalid length. [ 36.387283][ T4587] netlink: 104 bytes leftover after parsing attributes in process `syz.0.488'. [ 36.660699][ T4625] netlink: 16 bytes leftover after parsing attributes in process `syz.0.505'. [ 36.753609][ T4636] loop0: detected capacity change from 0 to 1024 [ 36.760414][ T4636] EXT4-fs: Ignoring removed nobh option [ 36.768974][ T4636] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 36.784159][ T4636] EXT4-fs error (device loop0): ext4_ext_check_inode:523: inode #11: comm syz.0.509: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 36.807415][ T4636] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.509: couldn't read orphan inode 11 (err -117) [ 36.820255][ T4636] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 36.836399][ T4636] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.509: Invalid block bitmap block 0 in block_group 0 [ 36.850096][ T4636] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.509: Failed to acquire dquot type 0 [ 36.863310][ T4636] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.509: Invalid inode bitmap blk 137438953472 in block_group 0 [ 36.890940][ T41] EXT4-fs error (device loop0): __ext4_get_inode_loc:4787: comm kworker/u8:2: Invalid inode table block 8589934593 in block_group 0 [ 36.914441][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 37.044601][ T4666] loop1: detected capacity change from 0 to 8192 [ 37.114397][ T4678] netlink: 'syz.0.526': attribute type 1 has an invalid length. [ 37.199617][ T4679] FAT-fs (loop1): error, corrupted directory (invalid entries) [ 37.207399][ T4679] FAT-fs (loop1): Filesystem has been set read-only [ 37.222565][ T4666] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 37.320814][ T4703] syz.0.538 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 37.512244][ T4740] loop4: detected capacity change from 0 to 512 [ 37.518823][ T4740] EXT4-fs: Ignoring removed i_version option [ 37.525326][ T4740] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 37.536676][ T4740] EXT4-fs (loop4): 1 truncate cleaned up [ 37.542832][ T4740] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 37.609097][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 37.832762][ T4769] loop4: detected capacity change from 0 to 128 [ 37.846799][ T4769] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 37.869858][ T29] kauditd_printk_skb: 344 callbacks suppressed [ 37.869872][ T29] audit: type=1326 audit(1753978788.708:680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4770 comm="syz.1.570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcae343eb69 code=0x7ffc0000 [ 37.899406][ T29] audit: type=1326 audit(1753978788.708:681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4770 comm="syz.1.570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=150 compat=0 ip=0x7fcae343eb69 code=0x7ffc0000 [ 37.922779][ T29] audit: type=1326 audit(1753978788.708:682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4770 comm="syz.1.570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcae343eb69 code=0x7ffc0000 [ 37.943851][ T4769] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 37.956499][ T29] audit: type=1400 audit(1753978788.818:683): avc: denied { read write } for pid=4772 comm="syz.1.571" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 37.957038][ T4773] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 37.991527][ T4773] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 38.007470][ T29] audit: type=1400 audit(1753978788.818:684): avc: denied { open } for pid=4772 comm="syz.1.571" path="/dev/raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 38.031207][ T29] audit: type=1400 audit(1753978788.818:685): avc: denied { ioctl } for pid=4772 comm="syz.1.571" path="/dev/raw-gadget" dev="devtmpfs" ino=142 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 38.056642][ T146] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 38.074283][ T4776] Driver unsupported XDP return value 0 on prog (id 338) dev N/A, expect packet loss! [ 38.123456][ T4778] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 38.251713][ T29] audit: type=1400 audit(1753978789.098:686): avc: denied { associate } for pid=4791 comm="syz.3.579" name="0" dev="devpts" ino=3 scontext=system_u:object_r:mouse_device_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1 [ 38.377328][ T29] audit: type=1326 audit(1753978789.228:687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4800 comm="syz.4.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bb887eb69 code=0x7ffc0000 [ 38.400624][ T29] audit: type=1326 audit(1753978789.228:688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4800 comm="syz.4.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4bb887eb69 code=0x7ffc0000 [ 38.423940][ T29] audit: type=1326 audit(1753978789.228:689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4800 comm="syz.4.583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4bb887eb69 code=0x7ffc0000 [ 38.599353][ T4823] program syz.1.592 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 38.661240][ T4827] loop3: detected capacity change from 0 to 1024 [ 38.671099][ T4827] EXT4-fs: inline encryption not supported [ 38.677183][ T4827] EXT4-fs: Ignoring removed i_version option [ 38.706724][ T4827] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 38.735566][ T4837] loop1: detected capacity change from 0 to 256 [ 38.773002][ T4827] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt. [ 38.809830][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 38.844355][ T4850] netlink: 'syz.3.602': attribute type 298 has an invalid length. [ 38.876667][ T4857] loop3: detected capacity change from 0 to 512 [ 38.877008][ T4856] __nla_validate_parse: 6 callbacks suppressed [ 38.877021][ T4856] netlink: 92 bytes leftover after parsing attributes in process `syz.2.607'. [ 38.885513][ T4857] EXT4-fs error (device loop3): ext4_orphan_get:1393: inode #15: comm syz.3.608: casefold flag without casefold feature [ 38.913668][ T4857] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.608: couldn't read orphan inode 15 (err -117) [ 38.933931][ T4857] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 39.072545][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 39.127826][ T4885] SELinux: failed to load policy [ 39.171917][ T4892] macvtap0: refused to change device tx_queue_len [ 39.319256][ T4911] loop1: detected capacity change from 0 to 1024 [ 39.331657][ T4915] program syz.3.635 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 39.336771][ T4911] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 39.372270][ T4923] loop3: detected capacity change from 0 to 512 [ 39.379231][ T4923] EXT4-fs: Ignoring removed oldalloc option [ 39.387193][ T4923] EXT4-fs (loop3): 1 truncate cleaned up [ 39.393359][ T4923] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 39.409511][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 39.429872][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 39.485297][ T4939] netlink: 'syz.3.644': attribute type 10 has an invalid length. [ 39.515214][ T4939] team0: Device hsr_slave_0 failed to register rx_handler [ 39.664616][ T4950] loop3: detected capacity change from 0 to 512 [ 39.681426][ T4950] journal_path: Lookup failure for './file0/../file0' [ 39.688326][ T4950] EXT4-fs: error: could not find journal device path [ 39.725392][ T4954] rdma_op ffff88811ccfa580 conn xmit_rdma 0000000000000000 [ 39.904015][ T4985] netlink: 'syz.1.666': attribute type 64 has an invalid length. [ 39.944963][ T4989] netlink: 'syz.1.668': attribute type 1 has an invalid length. [ 39.997096][ T5001] loop0: detected capacity change from 0 to 512 [ 40.015143][ T5001] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 40.028584][ T5001] ext4 filesystem being mounted at /168/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 40.045842][ T5001] EXT4-fs: Ignoring removed orlov option [ 40.051738][ T5001] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 40.060869][ T5001] EXT4-fs (loop0): can't enable nombcache during remount [ 40.080048][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 40.159865][ T5016] netlink: 32 bytes leftover after parsing attributes in process `syz.4.680'. [ 40.186268][ T5016] netlink: 32 bytes leftover after parsing attributes in process `syz.4.680'. [ 40.207073][ T5020] netlink: 'syz.0.681': attribute type 12 has an invalid length. [ 40.215017][ T5020] netlink: 'syz.0.681': attribute type 29 has an invalid length. [ 40.222917][ T5020] netlink: 148 bytes leftover after parsing attributes in process `syz.0.681'. [ 40.232213][ T5020] netlink: 59 bytes leftover after parsing attributes in process `syz.0.681'. [ 40.371485][ T5034] loop3: detected capacity change from 0 to 8192 [ 40.391176][ T5034] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 40.410446][ T5048] loop0: detected capacity change from 0 to 1024 [ 40.426880][ T5048] EXT4-fs: Ignoring removed nomblk_io_submit option [ 40.463705][ T5048] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 40.486610][ T5060] program syz.2.710 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 40.552056][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 40.629306][ T5071] loop0: detected capacity change from 0 to 1024 [ 40.674084][ T5071] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 40.685033][ T5071] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 40.713950][ T5071] JBD2: no valid journal superblock found [ 40.719982][ T5071] EXT4-fs (loop0): Could not load journal inode [ 40.734348][ T5071] SELinux: security_context_str_to_sid (-Xܘ7.H\ %u@) failed with errno=-22 [ 40.852333][ T5094] loop3: detected capacity change from 0 to 512 [ 40.860528][ T5094] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 40.875219][ T5094] EXT4-fs (loop3): orphan cleanup on readonly fs [ 40.875388][ T5094] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:517: comm syz.3.715: Block bitmap for bg 0 marked uninitialized [ 40.875523][ T5094] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6548: Corrupt filesystem [ 40.875681][ T5094] EXT4-fs (loop3): 1 orphan inode deleted [ 40.876155][ T5094] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 40.881773][ T5094] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 40.943576][ T5094] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 40.966186][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 40.968245][ T5103] loop0: detected capacity change from 0 to 1024 [ 40.997823][ T5103] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 41.014390][ T5103] ext4 filesystem being mounted at /179/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 41.032520][ T5103] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.720: bg 0: block 393: padding at end of block bitmap is not set [ 41.053329][ T5103] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 52 with error 117 [ 41.065909][ T5103] EXT4-fs (loop0): This should not happen!! Data will be lost [ 41.065909][ T5103] [ 41.090430][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 41.118432][ T5120] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2051 sclass=netlink_route_socket pid=5120 comm=syz.0.726 [ 41.131758][ T5117] loop1: detected capacity change from 0 to 8192 [ 41.139643][ T5117] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 41.165032][ T5124] sock: sock_set_timeout: `syz.3.729' (pid 5124) tries to set negative timeout [ 41.207700][ T5128] program syz.0.732 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 41.258166][ T5142] loop3: detected capacity change from 0 to 1024 [ 41.265255][ T5142] EXT4-fs: Ignoring removed nomblk_io_submit option [ 41.278521][ T5142] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 41.316951][ T5147] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2051 sclass=netlink_route_socket pid=5147 comm=syz.1.738 [ 41.343537][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 41.431813][ T5154] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2051 sclass=netlink_route_socket pid=5154 comm=syz.3.753 [ 41.455494][ T5158] sock: sock_set_timeout: `syz.4.742' (pid 5158) tries to set negative timeout [ 41.525946][ T5162] loop4: detected capacity change from 0 to 8192 [ 41.537263][ T5162] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 42.298585][ T5196] loop3: detected capacity change from 0 to 8192 [ 42.518457][ T5225] loop4: detected capacity change from 0 to 2048 [ 42.535016][ T5225] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 42.613814][ T5225] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.786: bg 0: block 408: padding at end of block bitmap is not set [ 42.636300][ T5225] EXT4-fs (loop4): Remounting filesystem read-only [ 42.692605][ T5245] program syz.3.783 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 42.722193][ T5245] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 42.825430][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 42.870163][ T5253] team0 (unregistering): Port device team_slave_0 removed [ 42.890138][ T5253] team0 (unregistering): Port device team_slave_1 removed [ 42.925865][ T29] kauditd_printk_skb: 222 callbacks suppressed [ 42.925879][ T29] audit: type=1326 audit(1753978793.768:912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5257 comm="syz.3.800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf8e1beb69 code=0x7ffc0000 [ 42.955374][ T29] audit: type=1326 audit(1753978793.768:913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5257 comm="syz.3.800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf8e1beb69 code=0x7ffc0000 [ 42.978697][ T29] audit: type=1326 audit(1753978793.778:914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5257 comm="syz.3.800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faf8e1beb69 code=0x7ffc0000 [ 43.002091][ T29] audit: type=1326 audit(1753978793.778:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5257 comm="syz.3.800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf8e1beb69 code=0x7ffc0000 [ 43.025531][ T29] audit: type=1326 audit(1753978793.778:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5257 comm="syz.3.800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf8e1beb69 code=0x7ffc0000 [ 43.060589][ T29] audit: type=1326 audit(1753978793.778:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5257 comm="syz.3.800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=4 compat=0 ip=0x7faf8e1beb69 code=0x7ffc0000 [ 43.083803][ T29] audit: type=1326 audit(1753978793.778:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5257 comm="syz.3.800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf8e1beb69 code=0x7ffc0000 [ 43.156075][ T5261] loop3: detected capacity change from 0 to 512 [ 43.158487][ T29] audit: type=1400 audit(1753978794.008:919): avc: denied { mounton } for pid=5262 comm="syz.0.793" path="/192/file0" dev="tmpfs" ino=1011 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 43.203510][ T5261] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 43.225183][ T5269] loop4: detected capacity change from 0 to 512 [ 43.258888][ T5261] EXT4-fs (loop3): 1 truncate cleaned up [ 43.268387][ T5261] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 43.288738][ T5269] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 43.305334][ T29] audit: type=1400 audit(1753978794.048:920): avc: denied { audit_write } for pid=5264 comm="syz.2.791" capability=29 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 43.326488][ T29] audit: type=1107 audit(1753978794.048:921): pid=5264 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='' [ 43.365359][ T5269] ext4 filesystem being mounted at /134/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 43.378241][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 43.451854][ T5269] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.795: bg 0: block 328: padding at end of block bitmap is not set [ 43.566434][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 43.925386][ T5345] program +}[@ is using a deprecated SCSI ioctl, please convert it to SG_IO [ 44.005975][ T5358] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 44.020255][ T5358] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 44.044871][ T5367] netlink: 12 bytes leftover after parsing attributes in process `syz.2.837'. [ 44.045031][ T5368] netlink: 4 bytes leftover after parsing attributes in process `syz.1.847'. [ 44.062654][ T5368] netlink: 4 bytes leftover after parsing attributes in process `syz.1.847'. [ 44.149903][ T5378] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=5378 comm=syz.4.842 [ 44.162356][ T5378] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=5378 comm=syz.4.842 [ 44.254469][ T5389] netlink: 8 bytes leftover after parsing attributes in process `syz.2.845'. [ 44.277131][ T5391] netlink: 'syz.1.848': attribute type 1 has an invalid length. [ 44.412370][ T5415] random: crng reseeded on system resumption [ 44.711498][ T5437] netlink: 4 bytes leftover after parsing attributes in process `syz.3.869'. [ 44.730418][ T5438] netlink: 100 bytes leftover after parsing attributes in process `syz.2.880'. [ 45.229454][ T5475] loop3: detected capacity change from 0 to 1024 [ 45.236358][ T5475] EXT4-fs: Ignoring removed orlov option [ 45.241986][ T5475] EXT4-fs: Ignoring removed mblk_io_submit option [ 45.249687][ T5475] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 45.269008][ T5475] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 45.305289][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.319593][ T5486] netlink: 104 bytes leftover after parsing attributes in process `syz.1.891'. [ 45.348648][ T5490] netlink: 'syz.4.895': attribute type 21 has an invalid length. [ 45.394968][ T5499] SELinux: policydb version 1675088414 does not match my version range 15-35 [ 45.404357][ T5499] SELinux: failed to load policy [ 45.558232][ T5518] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 45.606082][ T5524] netlink: 8 bytes leftover after parsing attributes in process `syz.4.909'. [ 45.614978][ T5524] netlink: 4 bytes leftover after parsing attributes in process `syz.4.909'. [ 45.693875][ T5533] netlink: 7 bytes leftover after parsing attributes in process `syz.4.914'. [ 45.906981][ T5556] loop0: detected capacity change from 0 to 512 [ 45.967286][ T5556] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 45.994264][ T5553] loop1: detected capacity change from 0 to 8192 [ 46.009093][ T5556] EXT4-fs (loop0): 1 truncate cleaned up [ 46.015102][ T5556] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 46.044121][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.081595][ T5562] loop0: detected capacity change from 0 to 2048 [ 46.099452][ T5564] loop1: detected capacity change from 0 to 512 [ 46.123874][ T5564] ext4: Unknown parameter 'measure' [ 46.165723][ T5562] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 46.305000][ T5562] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.925: bg 0: block 408: padding at end of block bitmap is not set [ 46.320577][ T5562] EXT4-fs (loop0): Remounting filesystem read-only [ 46.477128][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.515297][ T5581] program syz.0.932 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 46.525860][ T5581] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 46.751929][ T5593] loop4: detected capacity change from 0 to 512 [ 46.752165][ T5590] loop0: detected capacity change from 0 to 512 [ 46.760011][ T5593] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 46.773583][ T5590] EXT4-fs: Ignoring removed oldalloc option [ 46.791555][ T5593] EXT4-fs (loop4): 1 truncate cleaned up [ 46.799444][ T5593] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 46.816016][ T5590] EXT4-fs (loop0): 1 truncate cleaned up [ 46.822116][ T5590] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 46.851302][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.865081][ T5590] EXT4-fs error (device loop0): htree_dirblock_to_tree:1080: inode #2: block 13: comm syz.0.950: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=0, rec_len=0, size=1024 fake=0 [ 46.899321][ T5601] loop4: detected capacity change from 0 to 8192 [ 46.910577][ T5590] EXT4-fs (loop0): Remounting filesystem read-only [ 47.007896][ T5609] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 47.031911][ T5609] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 47.123167][ T5627] random: crng reseeded on system resumption [ 47.326484][ T5659] program syz.2.970 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 47.438490][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.634265][ T5703] random: crng reseeded on system resumption [ 47.664807][ T5711] loop0: detected capacity change from 0 to 512 [ 47.676257][ T5711] EXT4-fs error (device loop0): ext4_do_update_inode:5563: inode #16: comm syz.0.992: corrupted inode contents [ 47.688683][ T5711] EXT4-fs error (device loop0): ext4_dirty_inode:6454: inode #16: comm syz.0.992: mark_inode_dirty error [ 47.700629][ T5711] EXT4-fs error (device loop0): ext4_do_update_inode:5563: inode #16: comm syz.0.992: corrupted inode contents [ 47.712578][ T5711] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.992: mark_inode_dirty error [ 47.724090][ T5711] EXT4-fs error (device loop0): ext4_do_update_inode:5563: inode #16: comm syz.0.992: corrupted inode contents [ 47.736149][ T5711] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem [ 47.744969][ T5711] EXT4-fs error (device loop0): ext4_do_update_inode:5563: inode #16: comm syz.0.992: corrupted inode contents [ 47.757173][ T5711] EXT4-fs error (device loop0): ext4_truncate:4592: inode #16: comm syz.0.992: mark_inode_dirty error [ 47.771844][ T5711] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem [ 47.781278][ T5711] EXT4-fs (loop0): 1 truncate cleaned up [ 47.789048][ T5711] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 47.801787][ T5711] ext4 filesystem being mounted at /220/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 47.815922][ T146] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 1 [ 47.891406][ T5729] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 47.902648][ T5729] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 48.270304][ T29] kauditd_printk_skb: 196 callbacks suppressed [ 48.270316][ T29] audit: type=1400 audit(1753978799.118:1117): avc: denied { watch watch_reads } for pid=5740 comm="syz.3.1001" path="/180" dev="tmpfs" ino=942 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 48.301035][ T29] audit: type=1326 audit(1753978799.148:1118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5740 comm="syz.3.1001" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7faf8e1beb69 code=0x0 [ 48.309311][ T5743] syzkaller1: entered promiscuous mode [ 48.324144][ T29] audit: type=1400 audit(1753978799.158:1119): avc: denied { ioctl } for pid=5741 comm="syz.1.1003" path="socket:[12427]" dev="sockfs" ino=12427 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 48.329423][ T5743] syzkaller1: entered allmulticast mode [ 48.444724][ T29] audit: type=1400 audit(1753978799.298:1120): avc: denied { create } for pid=5750 comm="syz.2.1007" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 48.464331][ T29] audit: type=1400 audit(1753978799.298:1121): avc: denied { write } for pid=5750 comm="syz.2.1007" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 48.483850][ T29] audit: type=1400 audit(1753978799.318:1122): avc: denied { tracepoint } for pid=5753 comm="syz.1.1008" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 48.514360][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.550257][ T29] audit: type=1400 audit(1753978799.398:1123): avc: denied { mount } for pid=5759 comm="syz.4.1010" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 48.617140][ T29] audit: type=1400 audit(1753978799.468:1124): avc: denied { unmount } for pid=3309 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 48.640306][ T29] audit: type=1400 audit(1753978799.468:1125): avc: denied { mounton } for pid=5769 comm="syz.2.1015" path="/186/file0" dev="tmpfs" ino=970 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 48.670712][ T5773] loop4: detected capacity change from 0 to 1024 [ 48.698813][ T5773] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 48.724388][ T29] audit: type=1400 audit(1753978799.568:1126): avc: denied { read write } for pid=5771 comm="syz.4.1014" name="file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 48.750495][ T5773] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4113: comm syz.4.1014: Allocating blocks 449-513 which overlap fs metadata [ 48.752797][ T5785] loop1: detected capacity change from 0 to 512 [ 48.773054][ T5771] EXT4-fs (loop4): pa ffff8881069fa1c0: logic 48, phys. 177, len 21 [ 48.781276][ T5771] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 4 [ 48.782674][ T5785] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 48.804798][ T5785] ext4 filesystem being mounted at /238/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 48.830694][ T5785] veth2: entered allmulticast mode [ 48.849709][ T3309] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.865383][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.888505][ T5791] netlink: 'syz.4.1022': attribute type 1 has an invalid length. [ 48.942709][ T5801] loop1: detected capacity change from 0 to 128 [ 48.950699][ T5801] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 48.963629][ T5801] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 48.985791][ T41] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 49.008412][ T5805] loop1: detected capacity change from 0 to 512 [ 49.014957][ T5805] EXT4-fs: Ignoring removed i_version option [ 49.021171][ T5805] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 49.032399][ T5805] EXT4-fs (loop1): 1 truncate cleaned up [ 49.038552][ T5805] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 49.104030][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.126454][ T5810] loop3: detected capacity change from 0 to 512 [ 49.132964][ T5810] EXT4-fs: Ignoring removed nobh option [ 49.148288][ T5810] EXT4-fs error (device loop3): ext4_do_update_inode:5563: inode #3: comm syz.3.1033: corrupted inode contents [ 49.170794][ T5810] EXT4-fs error (device loop3): ext4_dirty_inode:6454: inode #3: comm syz.3.1033: mark_inode_dirty error [ 49.184948][ T5810] EXT4-fs error (device loop3): ext4_do_update_inode:5563: inode #3: comm syz.3.1033: corrupted inode contents [ 49.196877][ T5814] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 49.197073][ T5810] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #3: comm syz.3.1033: mark_inode_dirty error [ 49.231383][ T5810] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.1033: Failed to acquire dquot type 0 [ 49.252922][ T5810] EXT4-fs error (device loop3): ext4_do_update_inode:5563: inode #16: comm syz.3.1033: corrupted inode contents [ 49.266704][ T5810] EXT4-fs error (device loop3): ext4_dirty_inode:6454: inode #16: comm syz.3.1033: mark_inode_dirty error [ 49.280483][ T5810] EXT4-fs error (device loop3): ext4_do_update_inode:5563: inode #16: comm syz.3.1033: corrupted inode contents [ 49.296569][ T5810] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.1033: mark_inode_dirty error [ 49.312102][ T5810] EXT4-fs error (device loop3): ext4_do_update_inode:5563: inode #16: comm syz.3.1033: corrupted inode contents [ 49.324533][ T5810] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem [ 49.334518][ T5810] EXT4-fs error (device loop3): ext4_do_update_inode:5563: inode #16: comm syz.3.1033: corrupted inode contents [ 49.346762][ T5810] EXT4-fs error (device loop3): ext4_truncate:4592: inode #16: comm syz.3.1033: mark_inode_dirty error [ 49.359745][ T5810] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem [ 49.371273][ T5810] EXT4-fs (loop3): 1 truncate cleaned up [ 49.378208][ T5810] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 49.390942][ T5810] ext4 filesystem being mounted at /181/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 49.433016][ T5836] loop4: detected capacity change from 0 to 128 [ 49.440104][ T5836] FAT-fs (loop4): Directory bread(block 162) failed [ 49.460291][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.462028][ T5840] loop0: detected capacity change from 0 to 256 [ 49.476159][ T5836] FAT-fs (loop4): Directory bread(block 163) failed [ 49.484523][ T5836] FAT-fs (loop4): Directory bread(block 164) failed [ 49.491428][ T5836] FAT-fs (loop4): Directory bread(block 165) failed [ 49.499206][ T5836] FAT-fs (loop4): Directory bread(block 166) failed [ 49.522138][ T5836] FAT-fs (loop4): Directory bread(block 167) failed [ 49.523182][ T5847] netlink: 'syz.0.1050': attribute type 298 has an invalid length. [ 49.536380][ T5836] FAT-fs (loop4): Directory bread(block 168) failed [ 49.556397][ T5836] FAT-fs (loop4): Directory bread(block 169) failed [ 49.594496][ T5836] FAT-fs (loop4): Directory bread(block 162) failed [ 49.601140][ T5836] FAT-fs (loop4): Directory bread(block 163) failed [ 49.612412][ T5836] syz.4.1045: attempt to access beyond end of device [ 49.612412][ T5836] loop4: rw=3, sector=226, nr_sectors = 6 limit=128 [ 49.626531][ T5836] syz.4.1045: attempt to access beyond end of device [ 49.626531][ T5836] loop4: rw=2051, sector=232, nr_sectors = 2 limit=128 [ 49.652186][ T5861] __nla_validate_parse: 8 callbacks suppressed [ 49.652208][ T5861] netlink: 92 bytes leftover after parsing attributes in process `syz.0.1056'. [ 49.710402][ T5869] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1060'. [ 49.728633][ T5872] loop1: detected capacity change from 0 to 1024 [ 49.736961][ T5872] EXT4-fs: inline encryption not supported [ 49.742817][ T5872] EXT4-fs: Ignoring removed i_version option [ 49.799652][ T5872] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 49.829562][ T5872] EXT4-fs error (device loop1): mb_free_blocks:1948: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt. [ 49.891460][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.190335][ T5921] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1082'. [ 50.243725][ T5925] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1085'. [ 50.372389][ T5945] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1096'. [ 50.372408][ T5945] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1096'. [ 50.550466][ T5971] netlink: 'syz.2.1106': attribute type 1 has an invalid length. [ 50.696592][ T6000] binfmt_misc: register: failed to install interpreter file ./file0 [ 50.848353][ T6021] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1129'. [ 50.859197][ T6021] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1129'. [ 50.967962][ T6044] netlink: 'syz.4.1141': attribute type 12 has an invalid length. [ 50.976006][ T6044] netlink: 'syz.4.1141': attribute type 29 has an invalid length. [ 50.983886][ T6044] netlink: 148 bytes leftover after parsing attributes in process `syz.4.1141'. [ 50.993056][ T6044] netlink: 59 bytes leftover after parsing attributes in process `syz.4.1141'. [ 51.285179][ T6085] loop0: detected capacity change from 0 to 1024 [ 51.305449][ T6085] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 51.311840][ T6089] dummy0: entered promiscuous mode [ 51.324609][ T6089] dummy0: left promiscuous mode [ 51.342543][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.660908][ T6131] netlink: 'syz.3.1179': attribute type 6 has an invalid length. [ 52.015287][ T6176] loop3: detected capacity change from 0 to 764 [ 52.025657][ T6176] rock: directory entry would overflow storage [ 52.031862][ T6176] rock: sig=0x4654, size=5, remaining=4 [ 52.034772][ T6179] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=6179 comm=syz.2.1201 [ 52.055786][ T6176] random: crng reseeded on system resumption [ 52.072373][ T6176] Restarting kernel threads ... [ 52.077494][ T6176] Done restarting kernel threads. [ 52.209418][ T6202] loop4: detected capacity change from 0 to 128 [ 52.217815][ T6202] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 52.231105][ T6202] ext4 filesystem being mounted at /219/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 52.266160][ T3309] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 52.752810][ T6278] loop3: detected capacity change from 0 to 164 [ 52.762333][ T6278] rock: directory entry would overflow storage [ 52.768851][ T6278] rock: sig=0x4f50, size=4, remaining=3 [ 52.774452][ T6278] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 52.778564][ T6280] loop1: detected capacity change from 0 to 2048 [ 53.008914][ T6296] 9pnet: p9_errstr2errno: server reported unknown error @0x0000000000000003 [ 53.050568][ T6300] program syz.3.1255 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 53.062268][ T6300] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 53.099010][ T58] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 53.116339][ T58] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28 [ 53.128886][ T58] EXT4-fs (loop1): This should not happen!! Data will be lost [ 53.128886][ T58] [ 53.138674][ T58] EXT4-fs (loop1): Total free blocks count 0 [ 53.144772][ T58] EXT4-fs (loop1): Free/Dirty block details [ 53.150710][ T58] EXT4-fs (loop1): free_blocks=2415919104 [ 53.156863][ T58] EXT4-fs (loop1): dirty_blocks=8208 [ 53.162387][ T58] EXT4-fs (loop1): Block reservation details [ 53.168393][ T58] EXT4-fs (loop1): i_reserved_data_blocks=513 [ 53.188436][ T6312] loop4: detected capacity change from 0 to 512 [ 53.192747][ T146] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28 [ 53.207535][ T146] EXT4-fs (loop1): This should not happen!! Data will be lost [ 53.207535][ T146] [ 53.209125][ T6312] ext4 filesystem being mounted at /221/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 53.451490][ T29] kauditd_printk_skb: 303 callbacks suppressed [ 53.451505][ T29] audit: type=1326 audit(1753978804.307:1428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6350 comm="syz.3.1276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf8e1beb69 code=0x7ffc0000 [ 53.486139][ T29] audit: type=1326 audit(1753978804.307:1429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6350 comm="syz.3.1276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=244 compat=0 ip=0x7faf8e1beb69 code=0x7ffc0000 [ 53.509734][ T29] audit: type=1326 audit(1753978804.307:1430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6350 comm="syz.3.1276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf8e1beb69 code=0x7ffc0000 [ 53.533199][ T29] audit: type=1326 audit(1753978804.317:1431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6350 comm="syz.3.1276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf8e1beb69 code=0x7ffc0000 [ 53.570485][ T6357] netlink: 'syz.0.1279': attribute type 21 has an invalid length. [ 53.579163][ T6357] netlink: 'syz.0.1279': attribute type 1 has an invalid length. [ 53.600979][ T6356] loop3: detected capacity change from 0 to 512 [ 53.611003][ T29] audit: type=1326 audit(1753978804.467:1432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6362 comm="syz.1.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcae343eb69 code=0x7ffc0000 [ 53.650138][ T6356] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 53.658295][ T29] audit: type=1326 audit(1753978804.467:1433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6362 comm="syz.1.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7fcae343eb69 code=0x7ffc0000 [ 53.668301][ T6356] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.1278: invalid indirect mapped block 2683928664 (level 1) [ 53.681982][ T29] audit: type=1326 audit(1753978804.467:1434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6362 comm="syz.1.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcae343eb69 code=0x7ffc0000 [ 53.719164][ T29] audit: type=1326 audit(1753978804.497:1435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6362 comm="syz.1.1282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcae343eb69 code=0x7ffc0000 [ 53.742721][ T29] audit: type=1400 audit(1753978804.517:1436): avc: denied { relabelfrom } for pid=6365 comm="syz.4.1283" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1 [ 53.746350][ T6356] EXT4-fs (loop3): 1 truncate cleaned up [ 53.762619][ T29] audit: type=1400 audit(1753978804.517:1437): avc: denied { relabelto } for pid=6365 comm="syz.4.1283" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1 [ 53.795308][ T6356] EXT4-fs error (device loop3): htree_dirblock_to_tree:1080: inode #2: block 13: comm syz.3.1278: bad entry in directory: rec_len % 4 != 0 - offset=108, inode=4294901777, rec_len=65535, size=1024 fake=0 [ 53.877659][ T6382] syzkaller1: entered promiscuous mode [ 53.883184][ T6382] syzkaller1: entered allmulticast mode [ 53.921215][ T6391] loop4: detected capacity change from 0 to 512 [ 53.944924][ T6391] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c01c, mo2=0002] [ 53.955302][ T6391] System zones: 0-2, 18-18, 34-35 [ 53.962202][ T6391] ext4 filesystem being mounted at /230/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 54.058051][ T6408] loop4: detected capacity change from 0 to 7 [ 54.064562][ C0] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 54.073745][ C0] Buffer I/O error on dev loop4, logical block 0, async page read [ 54.091447][ C1] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 54.100628][ C1] Buffer I/O error on dev loop4, logical block 0, async page read [ 54.108542][ T6408] loop4: unable to read partition table [ 54.114451][ T6408] loop_reread_partitions: partition scan of loop4 (Cj̖P=ý?}X %`ր{֐ȵ4FLQk݊) failed (rc=-5) [ 54.337293][ T6439] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 54.609819][ T6477] can0: slcan on ttyS3. [ 54.634300][ T6477] can0 (unregistered): slcan off ttyS3. [ 54.694857][ T6487] __nla_validate_parse: 9 callbacks suppressed [ 54.694869][ T6487] netlink: 14560 bytes leftover after parsing attributes in process `syz.1.1339'. [ 54.735650][ T6493] netlink: 'syz.4.1342': attribute type 1 has an invalid length. [ 54.768541][ T6497] loop4: detected capacity change from 0 to 512 [ 54.776765][ T6497] EXT4-fs (loop4): orphan cleanup on readonly fs [ 54.784949][ T6497] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1344: bg 0: block 248: padding at end of block bitmap is not set [ 54.800094][ T6497] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.1344: Failed to acquire dquot type 1 [ 54.812483][ T6497] EXT4-fs (loop4): 1 truncate cleaned up [ 54.966529][ T6531] netlink: 'syz.4.1359': attribute type 4 has an invalid length. [ 55.006094][ T6539] netlink: 'syz.3.1363': attribute type 3 has an invalid length. [ 55.032734][ T6545] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1366'. [ 55.127324][ T6562] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6562 comm=syz.4.1375 [ 55.240160][ T6584] af_packet: tpacket_rcv: packet too big, clamped from 36 to 4294967272. macoff=96 [ 55.292028][ T6596] ALSA: seq fatal error: cannot create timer (-22) [ 55.310866][ T6599] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1392'. [ 55.398200][ T6610] loop1: detected capacity change from 0 to 8192 [ 55.490673][ T6632] usb usb1: usbfs: process 6632 (syz.2.1406) did not claim interface 0 before use [ 55.579593][ T6638] sctp: [Deprecated]: syz.2.1408 (pid 6638) Use of int in maxseg socket option. [ 55.579593][ T6638] Use struct sctp_assoc_value instead [ 55.626336][ T6640] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 55.634939][ T6640] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 55.794684][ T6658] program syz.3.1415 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 56.161944][ T6665] loop4: detected capacity change from 0 to 1024 [ 56.168638][ T6665] EXT4-fs: Ignoring removed nomblk_io_submit option [ 56.379993][ T6674] loop1: detected capacity change from 0 to 128 [ 56.389091][ T6674] FAT-fs (loop1): Directory bread(block 162) failed [ 56.396049][ T6674] FAT-fs (loop1): Directory bread(block 163) failed [ 56.403010][ T6675] netlink: 'syz.4.1431': attribute type 10 has an invalid length. [ 56.413456][ T6674] FAT-fs (loop1): Directory bread(block 164) failed [ 56.420243][ T6674] FAT-fs (loop1): Directory bread(block 165) failed [ 56.439629][ T6674] FAT-fs (loop1): Directory bread(block 166) failed [ 56.447209][ T6674] FAT-fs (loop1): Directory bread(block 167) failed [ 56.454071][ T6674] FAT-fs (loop1): Directory bread(block 168) failed [ 56.460754][ T6674] FAT-fs (loop1): Directory bread(block 169) failed [ 56.490273][ T6674] FAT-fs (loop1): Directory bread(block 162) failed [ 56.502230][ T6674] FAT-fs (loop1): Directory bread(block 163) failed [ 56.510368][ T6674] syz.1.1430: attempt to access beyond end of device [ 56.510368][ T6674] loop1: rw=3, sector=226, nr_sectors = 6 limit=128 [ 56.524639][ T6674] syz.1.1430: attempt to access beyond end of device [ 56.524639][ T6674] loop1: rw=2051, sector=232, nr_sectors = 2 limit=128 [ 56.618084][ T6697] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 56.626820][ T6697] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 56.664194][ T6699] program +}[@ is using a deprecated SCSI ioctl, please convert it to SG_IO [ 56.741616][ T6718] loop3: detected capacity change from 0 to 1024 [ 56.902079][ T6741] loop4: detected capacity change from 0 to 8192 [ 57.047130][ T6741] FAT-fs (loop4): error, corrupted directory (invalid entries) [ 57.054758][ T6741] FAT-fs (loop4): Filesystem has been set read-only [ 57.082439][ T6744] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 57.179584][ T6755] loop1: detected capacity change from 0 to 1024 [ 57.230712][ T6755] ext4 filesystem being mounted at /320/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 57.310278][ T6755] EXT4-fs error (device loop1): ext4_map_blocks:816: inode #15: comm syz.1.1470: lblock 0 mapped to illegal pblock 0 (length 1) [ 57.368677][ T6755] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 57.381237][ T6755] EXT4-fs (loop1): This should not happen!! Data will be lost [ 57.381237][ T6755] [ 57.402943][ T6774] netlink: 'syz.4.1468': attribute type 4 has an invalid length. [ 57.459538][ T6785] loop1: detected capacity change from 0 to 256 [ 57.709564][ T6817] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1482'. [ 57.726911][ T6817] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1482'. [ 57.752089][ T6822] netlink: 'syz.4.1489': attribute type 1 has an invalid length. [ 57.759911][ T6822] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1489'. [ 57.768945][ T6822] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.786379][ T6829] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1492'. [ 57.795439][ T6829] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1492'. [ 57.805940][ T6822] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.812998][ T6822] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.833022][ T6830] SELinux: failed to load policy [ 57.925773][ T6852] binfmt_misc: register: failed to install interpreter file ./file0 [ 57.943636][ T6856] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=6856 comm=syz.1.1516 [ 57.956167][ T6856] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=6856 comm=syz.1.1516 [ 57.989012][ T6863] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1510'. [ 58.032995][ T6873] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1515'. [ 58.147686][ T6894] loop1: detected capacity change from 0 to 512 [ 58.157627][ T6894] EXT4-fs: Ignoring removed oldalloc option [ 58.188183][ T6894] EXT4-fs (loop1): 1 truncate cleaned up [ 58.215795][ T6894] EXT4-fs error (device loop1): htree_dirblock_to_tree:1080: inode #2: block 13: comm syz.1.1524: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=0, rec_len=0, size=1024 fake=0 [ 58.257542][ T6894] EXT4-fs (loop1): Remounting filesystem read-only [ 58.268741][ T6913] loop3: detected capacity change from 0 to 1024 [ 58.276035][ T6913] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 58.287660][ T6913] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 58.299765][ T6913] JBD2: no valid journal superblock found [ 58.305528][ T6913] EXT4-fs (loop3): Could not load journal inode [ 58.323979][ T6913] SELinux: security_context_str_to_sid (-Xܘ7.H\ %u@) failed with errno=-22 [ 58.408893][ T6932] loop4: detected capacity change from 0 to 256 [ 58.437420][ T6936] loop4: detected capacity change from 0 to 512 [ 58.468249][ T6936] ext4 filesystem being mounted at /305/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 58.490275][ T29] kauditd_printk_skb: 231 callbacks suppressed [ 58.490303][ T29] audit: type=1400 audit(1753978809.347:1667): avc: denied { setattr } for pid=6935 comm="syz.4.1546" path="/305/file1/file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 58.524284][ T6936] EXT4-fs error (device loop4): ext4_do_update_inode:5563: inode #18: comm syz.4.1546: corrupted inode contents [ 58.529635][ T29] audit: type=1400 audit(1753978809.377:1668): avc: denied { ioctl } for pid=6935 comm="syz.4.1546" path="/305/file1/file1" dev="loop4" ino=15 ioctlcmd=0x6609 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 58.556740][ T6936] EXT4-fs error (device loop4): ext4_dirty_inode:6454: inode #18: comm syz.4.1546: mark_inode_dirty error [ 58.574584][ T6936] EXT4-fs error (device loop4): ext4_do_update_inode:5563: inode #18: comm syz.4.1546: corrupted inode contents [ 58.600561][ T6936] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2991: inode #18: comm syz.4.1546: mark_inode_dirty error [ 58.616701][ T6936] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2994: inode #18: comm syz.4.1546: mark inode dirty (error -117) [ 58.629655][ T6936] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -117) [ 58.696381][ T6957] loop4: detected capacity change from 0 to 512 [ 58.706957][ T6957] journal_path: Lookup failure for './file0/../file0' [ 58.713874][ T6957] EXT4-fs: error: could not find journal device path [ 58.754978][ T29] audit: type=1400 audit(1753978809.607:1669): avc: denied { bpf } for pid=6964 comm="syz.3.1556" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 58.775696][ T29] audit: type=1400 audit(1753978809.607:1670): avc: denied { prog_run } for pid=6964 comm="syz.3.1556" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 58.806077][ T29] audit: type=1400 audit(1753978809.627:1671): avc: denied { read write } for pid=3309 comm="syz-executor" name="loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 58.830446][ T29] audit: type=1400 audit(1753978809.627:1672): avc: denied { open } for pid=3309 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 58.854734][ T29] audit: type=1400 audit(1753978809.627:1673): avc: denied { ioctl } for pid=3309 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=104 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 58.880477][ T29] audit: type=1400 audit(1753978809.637:1674): avc: denied { read } for pid=6966 comm="syz.4.1558" dev="nsfs" ino=4026532815 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 58.901730][ T29] audit: type=1400 audit(1753978809.637:1675): avc: denied { open } for pid=6966 comm="syz.4.1558" path="net:[4026532815]" dev="nsfs" ino=4026532815 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 58.925257][ T29] audit: type=1400 audit(1753978809.637:1676): avc: denied { create } for pid=6966 comm="syz.4.1558" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 58.973338][ T6975] loop3: detected capacity change from 0 to 512 [ 58.994046][ T6975] ext4 filesystem being mounted at /317/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 59.021303][ T6986] loop4: detected capacity change from 0 to 128 [ 59.032174][ T6986] ext4 filesystem being mounted at /312/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 59.102126][ T6998] loop3: detected capacity change from 0 to 512 [ 59.116125][ T6998] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22 [ 59.129528][ T1040] kernel write not supported for file bpf-prog (pid: 1040 comm: kworker/1:2) [ 59.158320][ T7008] netlink: 'syz.1.1575': attribute type 13 has an invalid length. [ 59.170710][ T7008] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1 [ 59.182628][ T7008] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue [ 59.190938][ T7008] gretap1: entered promiscuous mode [ 59.196214][ T7008] gretap1: entered allmulticast mode [ 59.263672][ T7018] Invalid ELF header magic: != ELF [ 59.325750][ T7038] loop3: detected capacity change from 0 to 2048 [ 59.364660][ T7038] Alternate GPT is invalid, using primary GPT. [ 59.371053][ T7038] loop3: p1 p2 p3 [ 59.396936][ T3387] Process accounting resumed [ 59.416788][ T7051] Process accounting resumed [ 59.534455][ T7075] 9pnet: Could not find request transport: 0xffffffffffffffff [ 59.557755][ T7080] loop4: detected capacity change from 0 to 128 [ 59.566447][ T7080] EXT4-fs (loop4): VFS: Found ext4 filesystem with invalid superblock checksum. Run e2fsck? [ 59.608764][ T7088] loop1: detected capacity change from 0 to 1024 [ 59.744596][ T7120] loop0: detected capacity change from 0 to 256 [ 59.752678][ T7120] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 59.849895][ T7135] loop4: detected capacity change from 0 to 764 [ 59.859241][ T7135] Symlink component flag not implemented [ 59.866567][ T7135] Symlink component flag not implemented (7) [ 60.039093][ T7173] __nla_validate_parse: 11 callbacks suppressed [ 60.039111][ T7173] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1650'. [ 60.110621][ T7185] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1655'. [ 60.121893][ T7185] chnl_net:caif_netlink_parms(): no params data found [ 60.152212][ T7191] loop1: detected capacity change from 0 to 164 [ 60.159686][ T7191] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 60.169311][ T7191] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 60.178019][ T7191] rock: directory entry would overflow storage [ 60.184587][ T7191] rock: sig=0x4f50, size=4, remaining=3 [ 60.190181][ T7191] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 60.272100][ T7208] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1663'. [ 60.941189][ T7362] netlink: 'syz.0.1737': attribute type 13 has an invalid length. [ 60.952491][ T7362] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1 [ 60.963390][ T7362] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue [ 60.972576][ T7362] gretap1: entered promiscuous mode [ 60.977887][ T7362] gretap1: entered allmulticast mode [ 61.024220][ T7376] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1744'. [ 61.305253][ T7444] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1778'. [ 61.800784][ T7553] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=7553 comm=syz.3.1830 [ 61.918048][ T7574] netlink: 87 bytes leftover after parsing attributes in process `syz.1.1841'. [ 62.013634][ T7590] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2 [ 62.237254][ T7627] netlink: 'syz.4.1865': attribute type 21 has an invalid length. [ 62.250994][ T7627] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1865'. [ 62.260201][ T7627] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1865'. [ 62.643927][ T7722] can0: slcan on ttyS3. [ 62.673658][ T7722] can0 (unregistered): slcan off ttyS3. [ 63.206093][ T7793] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1944'. [ 63.215154][ T7793] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1944'. [ 63.224898][ T7793] netlink: 'syz.2.1944': attribute type 6 has an invalid length. [ 63.494297][ T29] kauditd_printk_skb: 1244 callbacks suppressed [ 63.494320][ T29] audit: type=1400 audit(1753978814.353:2921): avc: denied { read write } for pid=3298 comm="syz-executor" name="loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 63.495240][ T29] audit: type=1400 audit(1753978814.353:2922): avc: denied { name_bind } for pid=7854 comm="syz.4.1975" src=20002 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=0 [ 63.526018][ T29] audit: type=1400 audit(1753978814.353:2923): avc: denied { read write } for pid=3309 comm="syz-executor" name="loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 63.526050][ T29] audit: type=1400 audit(1753978814.353:2924): avc: denied { map_create } for pid=7853 comm="syz.2.1974" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0 [ 63.526119][ T29] audit: type=1400 audit(1753978814.353:2925): avc: denied { prog_load } for pid=7853 comm="syz.2.1974" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0 [ 63.526140][ T29] audit: type=1400 audit(1753978814.353:2926): avc: denied { prog_load } for pid=7857 comm="syz.1.1976" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0 [ 63.526163][ T29] audit: type=1400 audit(1753978814.353:2927): avc: denied { prog_load } for pid=7857 comm="syz.1.1976" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0 [ 63.527566][ T29] audit: type=1400 audit(1753978814.383:2928): avc: denied { read write } for pid=3304 comm="syz-executor" name="loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 63.570000][ T29] audit: type=1400 audit(1753978814.413:2929): avc: denied { read write } for pid=3298 comm="syz-executor" name="loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 63.704928][ T29] audit: type=1400 audit(1753978814.413:2930): avc: denied { prog_load } for pid=7861 comm="syz.4.1977" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0 [ 64.336623][ T7911] netlink: 'syz.4.1998': attribute type 1 has an invalid length. [ 65.004514][ T8024] netlink: 'syz.4.2053': attribute type 10 has an invalid length. [ 65.026342][ T8024] syz_tun: entered promiscuous mode [ 65.044500][ T8024] bond0: (slave syz_tun): Enslaving as an active interface with an up link [ 65.068078][ T8024] netlink: 'syz.4.2053': attribute type 10 has an invalid length. [ 65.603862][ T8140] bond1: entered promiscuous mode [ 65.608967][ T8140] bond1: entered allmulticast mode [ 65.644605][ T8140] 8021q: adding VLAN 0 to HW filter on device bond1 [ 65.686430][ T8140] bond1 (unregistering): Released all slaves [ 65.931975][ T8196] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 66.276865][ T8285] mmap: syz.3.2180 (8285) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 66.780653][ T8368] netlink: 'syz.0.2221': attribute type 10 has an invalid length. [ 66.793675][ T8368] syz_tun: entered promiscuous mode [ 66.807116][ T8368] bond0: (slave syz_tun): Enslaving as an active interface with an up link [ 66.822548][ T8368] netlink: 'syz.0.2221': attribute type 10 has an invalid length. [ 66.843001][ T8368] 8021q: adding VLAN 0 to HW filter on device bond0 [ 66.858660][ T8368] team0: Port device bond0 added [ 66.922884][ T8388] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 66.959203][ T8394] __nla_validate_parse: 4 callbacks suppressed [ 66.959219][ T8394] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2233'. [ 68.030862][ T8524] syzkaller0: entered promiscuous mode [ 68.036425][ T8524] syzkaller0: entered allmulticast mode [ 68.504787][ T29] kauditd_printk_skb: 1403 callbacks suppressed [ 68.504801][ T29] audit: type=1400 audit(1753978819.363:4334): avc: denied { read write } for pid=3304 comm="syz-executor" name="loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 68.537890][ T29] audit: type=1400 audit(1753978819.393:4335): avc: denied { read write } for pid=3309 comm="syz-executor" name="loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 68.538748][ T8605] netlink: 'syz.2.2332': attribute type 10 has an invalid length. [ 68.562319][ T29] audit: type=1400 audit(1753978819.393:4336): avc: denied { map_create } for pid=8604 comm="syz.2.2332" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0 [ 68.582569][ T29] audit: type=1400 audit(1753978819.393:4337): avc: denied { prog_load } for pid=8604 comm="syz.2.2332" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0 [ 68.607900][ T8605] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 68.609005][ T29] audit: type=1400 audit(1753978819.423:4338): avc: denied { read write } for pid=3298 comm="syz-executor" name="loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 68.641735][ T29] audit: type=1400 audit(1753978819.423:4339): avc: denied { map_create } for pid=8606 comm="syz.1.2333" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0 [ 68.660892][ T29] audit: type=1400 audit(1753978819.423:4340): avc: denied { prog_load } for pid=8606 comm="syz.1.2333" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0 [ 68.680041][ T29] audit: type=1400 audit(1753978819.423:4341): avc: denied { prog_load } for pid=8606 comm="syz.1.2333" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=0 [ 68.699352][ T29] audit: type=1400 audit(1753978819.433:4342): avc: denied { read write } for pid=3298 comm="syz-executor" name="loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=0 [ 68.732546][ T29] audit: type=1400 audit(1753978819.503:4343): avc: denied { create } for pid=8608 comm="syz.1.2334" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=0 [ 68.853464][ T8633] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2345'. [ 68.997230][ T8644] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2349'. [ 69.663377][ T8766] netlink: 'syz.2.2409': attribute type 21 has an invalid length. [ 69.671732][ T8766] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2409'. [ 69.763686][ T8791] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2421'. [ 69.777153][ T8791] bridge0: entered promiscuous mode [ 69.783690][ T8791] bridge0: port 3(macvlan2) entered blocking state [ 69.790431][ T8791] bridge0: port 3(macvlan2) entered disabled state [ 69.797315][ T8791] macvlan2: entered allmulticast mode [ 69.802717][ T8791] bridge0: entered allmulticast mode [ 69.809358][ T8791] macvlan2: left allmulticast mode [ 69.814543][ T8791] bridge0: left allmulticast mode [ 69.820219][ T8791] bridge0: left promiscuous mode [ 70.267128][ T8864] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2457'. [ 70.276246][ T8864] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2457'. [ 70.285244][ T8864] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2457'. [ 70.294556][ T8864] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2457'. [ 70.303562][ T8864] netlink: 'syz.3.2457': attribute type 6 has an invalid length. [ 70.879774][ T8929] netlink: 80 bytes leftover after parsing attributes in process `syz.4.2488'. [ 71.784131][ T8948] ================================================================== [ 71.792371][ T8948] BUG: KCSAN: data-race in shmem_file_splice_read / shmem_file_splice_read [ 71.800968][ T8948] [ 71.803286][ T8948] write to 0xffff88811b4382e8 of 8 bytes by task 8947 on cpu 0: [ 71.810991][ T8948] shmem_file_splice_read+0x470/0x600 [ 71.816368][ T8948] splice_direct_to_actor+0x26c/0x680 [ 71.821750][ T8948] do_splice_direct+0xda/0x150 [ 71.826525][ T8948] do_sendfile+0x380/0x650 [ 71.830939][ T8948] __x64_sys_sendfile64+0x105/0x150 [ 71.836142][ T8948] x64_sys_call+0x2bb0/0x2ff0 [ 71.840810][ T8948] do_syscall_64+0xd2/0x200 [ 71.845323][ T8948] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 71.851222][ T8948] [ 71.853536][ T8948] write to 0xffff88811b4382e8 of 8 bytes by task 8948 on cpu 1: [ 71.861198][ T8948] shmem_file_splice_read+0x470/0x600 [ 71.866566][ T8948] splice_direct_to_actor+0x26c/0x680 [ 71.872028][ T8948] do_splice_direct+0xda/0x150 [ 71.876800][ T8948] do_sendfile+0x380/0x650 [ 71.881232][ T8948] __x64_sys_sendfile64+0x105/0x150 [ 71.886422][ T8948] x64_sys_call+0x2bb0/0x2ff0 [ 71.891095][ T8948] do_syscall_64+0xd2/0x200 [ 71.895600][ T8948] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 71.901580][ T8948] [ 71.903975][ T8948] value changed: 0x0000000000007eef -> 0x0000000000007ef0 [ 71.911496][ T8948] [ 71.913818][ T8948] Reported by Kernel Concurrency Sanitizer on: [ 71.919964][ T8948] CPU: 1 UID: 0 PID: 8948 Comm: syz.4.2497 Not tainted 6.16.0-syzkaller-08685-g260f6f4fda93 #0 PREEMPT(voluntary) [ 71.932034][ T8948] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 71.942097][ T8948] ==================================================================