last executing test programs: 881.214088ms ago: executing program 0 (id=940): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_int(r0, 0x0, 0x3, &(0x7f0000000140)=0xfffff801, 0x4) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f00000001c0)=0x81b, 0x4) sendto$inet(r0, &(0x7f0000000040)='\f\x00', 0xffeb, 0x0, &(0x7f0000000340), 0x10) 827.901732ms ago: executing program 3 (id=942): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000100)={'batadv0\x00', 0x0}) sendmsg$BATADV_CMD_GET_HARDIF(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="11072abd7000ffdbdf250500000008000300", @ANYRES32=r2], 0x1c}, 0x1, 0x0, 0x0, 0x28008000}, 0x40000) 787.999356ms ago: executing program 0 (id=943): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'macvlan0\x00', 0x0}) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r1}, [@IFLA_LINKINFO={0x1c, 0x37, 0x0, 0x1, @ipvlan={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPVLAN_MODE={0x6, 0x1, 0x1}]}}}]}, 0x3c}}, 0x0) 787.702086ms ago: executing program 3 (id=944): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) brk(0x101) 742.713699ms ago: executing program 0 (id=945): sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x28, 0x0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x4}, @ETHTOOL_A_LINKMODES_DUPLEX={0x5, 0x6, 0x1}, @ETHTOOL_A_LINKMODES_AUTONEG={0x5, 0x2, 0xe4}]}, 0x28}}, 0x0) r0 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x40000) setreuid(0x0, 0xee00) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000000c0)=ANY=[@ANYRES64=r0]) 693.871004ms ago: executing program 0 (id=948): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x11, &(0x7f0000001a80)={[{@orlov}, {@norecovery}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40000}}, {@resuid}]}, 0x8, 0x617, &(0x7f0000001100)="$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") r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901) r1 = fspick(r0, &(0x7f0000000000)='.\x00', 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0) 441.451684ms ago: executing program 1 (id=963): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r0}, 0x18) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB="600000000206010200000000000000000000000005000400000000000900020073797a310000000014000780080013400000000008000640000000000500050002000000050001000600000014000300686173683a69702c706f72742c6970"], 0x60}}, 0x814) 411.269806ms ago: executing program 3 (id=965): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x6, 0x8, 0x2}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r1}, &(0x7f0000000180), &(0x7f0000000100)=r0}, 0x20) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000080)={r1, &(0x7f0000000380)="465fce", 0x0}, 0x20) 403.918907ms ago: executing program 0 (id=966): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x5, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0xd, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000000}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18) munmap(&(0x7f0000001000/0x4000)=nil, 0x4000) msgsnd(0x0, &(0x7f0000000d00)=ANY=[@ANYRES8], 0x401, 0x0) 402.227547ms ago: executing program 4 (id=967): bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000100)={0x3ff8, 0x0, 0x0, 0x4}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94) r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) getsockopt$inet6_tcp_buf(r0, 0x6, 0xd, 0x0, 0x0) getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x2, &(0x7f0000000100)=""/222, &(0x7f0000000000)=0x3ff8) 390.608178ms ago: executing program 1 (id=968): bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r0}, 0x10) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)) 369.55786ms ago: executing program 3 (id=969): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00') syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$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") 366.80077ms ago: executing program 1 (id=971): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000400)={'batadv_slave_0\x00'}) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a300000000064000000030a017f7f00000000000000050000000900010073797a30000000000900030073797a300000000008000a400000000328000480080002400000001208000140000000000d0003"], 0xac}}, 0x0) 366.65793ms ago: executing program 4 (id=972): r0 = socket$igmp(0x2, 0x3, 0x2) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', 0x0}) setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000000)={0x0, 0x8, 0x2, 0x7f, @vifc_lcl_ifindex=r2, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10) 288.557166ms ago: executing program 4 (id=976): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$poke(0x21, r0, 0x0, 0x0) waitid(0x0, r0, 0x0, 0x2, &(0x7f0000000340)) 269.244868ms ago: executing program 0 (id=977): rseq(&(0x7f0000000300), 0x20, 0x0, 0x0) ppoll(0x0, 0x0, &(0x7f00000003c0)={0x0, 0x3938700}, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x11) 268.834738ms ago: executing program 1 (id=978): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x5, 0x0, 0x1}, 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 253.553569ms ago: executing program 4 (id=980): r0 = socket$nl_route(0x10, 0x3, 0x0) socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff}) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14) sendmsg$nl_route_sched(r0, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000280)=@newtaction={0x68, 0x30, 0x1, 0x4000000, 0x0, {0x0, 0x0, 0x6a00}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x20000001, 0x0, 0x4}, 0x3, r2}}]}, {0x4, 0xa}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x68}}, 0x0) 238.86456ms ago: executing program 4 (id=981): r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) tkill(r0, 0x2e) ptrace$peeksig(0x4209, r0, &(0x7f0000000340)={0x0, 0x0, 0x2e}, 0x0) 235.715001ms ago: executing program 3 (id=982): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x8, 0x2}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f00000008c0)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@orlov}, {@abort}, {@noload}, {@stripe={'stripe', 0x3d, 0x10}}]}, 0x65, 0x50a, &(0x7f0000000940)="$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") 204.202883ms ago: executing program 2 (id=983): mount(0x0, &(0x7f00000000c0)='./cgroup\x00', 0x0, 0x208002, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, 0x0, &(0x7f00000000c0)) 187.298974ms ago: executing program 1 (id=984): r0 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000001a80)={'vxcan0\x00', 0x0}) bind$can_j1939(r0, &(0x7f0000000040)={0x1d, r1, 0x1, {0x0, 0x1, 0x2}}, 0x18) sendmmsg$inet6(r0, &(0x7f0000003a40)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000001c0)="a8", 0x1}, {0x0}], 0x2}}], 0x1, 0x20048040) 179.826085ms ago: executing program 2 (id=985): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000080), 0x10) sendmsg$can_bcm(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)={0x5, 0x0, 0x0, {}, {}, {}, 0x1, @can={{}, 0xfd}}, 0x48}, 0x1, 0x0, 0x0, 0x48850}, 0x0) sendmsg$can_bcm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x5, 0x201, 0x2, {0x0, 0xea60}, {}, {}, 0x1, @can={{}, 0x3, 0x4, 0x0, 0x0, "140400"}}, 0x48}}, 0x0) 162.177026ms ago: executing program 4 (id=986): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x90) syz_emit_ethernet(0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="0180c2000001a21428c6c08586dd61bcc1d700006c060100000000000000000000000000000100000000000000000000000000000001"], 0x0) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000080)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 154.705267ms ago: executing program 2 (id=987): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) open(&(0x7f0000000740)='./bus\x00', 0x143c62, 0x0) mount(&(0x7f0000000180)=@md0, &(0x7f0000000040)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x8000, &(0x7f0000000300)='trans=rdma,') 128.140809ms ago: executing program 1 (id=988): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071000000850000000800000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4e, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10) r1 = timerfd_create(0x8, 0x80000) timerfd_settime(r1, 0x0, &(0x7f0000007000)={{0x0, 0x4}, {0x0, 0x989680}}, 0x0) 125.20732ms ago: executing program 2 (id=989): r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101301) bpf$MAP_CREATE(0x0, 0x0, 0x48) munmap(&(0x7f0000002000/0x1000)=nil, 0x1000) ioctl$USBDEVFS_CONNECTINFO(r0, 0x8004550f, 0x0) 83.159783ms ago: executing program 2 (id=990): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000180), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f00000001c0)={'batadv0\x00', 0x0}) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x1c, r1, 0xb01, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}]}, 0x1c}}, 0x0) 31.862827ms ago: executing program 3 (id=991): r0 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x0, 0x0}, &(0x7f0000000140)=0x10) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000140)={0x0, 0x5}, 0x8) 0s ago: executing program 2 (id=992): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001080)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000c5000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000140000fbb703000000e31f008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000c00)='sys_enter\x00', r1}, 0x10) arch_prctl$ARCH_GET_XCOMP_PERM(0x1022, &(0x7f0000000200)) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.93' (ED25519) to the list of known hosts. [ 40.103723][ T29] audit: type=1400 audit(1754144607.580:62): avc: denied { mounton } for pid=3300 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 40.126749][ T29] audit: type=1400 audit(1754144607.600:63): avc: denied { mount } for pid=3300 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 40.127519][ T3300] cgroup: Unknown subsys name 'net' [ 40.154426][ T29] audit: type=1400 audit(1754144607.630:64): avc: denied { unmount } for pid=3300 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 40.321661][ T3300] cgroup: Unknown subsys name 'cpuset' [ 40.327808][ T3300] cgroup: Unknown subsys name 'rlimit' [ 40.476617][ T29] audit: type=1400 audit(1754144607.950:65): avc: denied { setattr } for pid=3300 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 40.501531][ T29] audit: type=1400 audit(1754144607.950:66): avc: denied { create } for pid=3300 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 40.522112][ T29] audit: type=1400 audit(1754144607.950:67): avc: denied { write } for pid=3300 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 40.531593][ T3303] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 40.542444][ T29] audit: type=1400 audit(1754144607.950:68): avc: denied { read } for pid=3300 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 Setting up swapspace version 1, size = 127995904 bytes [ 40.571207][ T29] audit: type=1400 audit(1754144607.960:69): avc: denied { mounton } for pid=3300 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 40.573555][ T3300] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 40.596338][ T29] audit: type=1400 audit(1754144607.960:70): avc: denied { mount } for pid=3300 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 40.628410][ T29] audit: type=1400 audit(1754144608.030:71): avc: denied { relabelto } for pid=3303 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 42.494192][ T3315] chnl_net:caif_netlink_parms(): no params data found [ 42.508244][ T3310] chnl_net:caif_netlink_parms(): no params data found [ 42.583841][ T3315] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.590999][ T3315] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.598419][ T3315] bridge_slave_0: entered allmulticast mode [ 42.604666][ T3315] bridge_slave_0: entered promiscuous mode [ 42.617899][ T3314] chnl_net:caif_netlink_parms(): no params data found [ 42.626486][ T3315] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.633606][ T3315] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.640720][ T3315] bridge_slave_1: entered allmulticast mode [ 42.647113][ T3315] bridge_slave_1: entered promiscuous mode [ 42.690022][ T3310] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.697134][ T3310] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.704316][ T3310] bridge_slave_0: entered allmulticast mode [ 42.710593][ T3310] bridge_slave_0: entered promiscuous mode [ 42.723182][ T3311] chnl_net:caif_netlink_parms(): no params data found [ 42.738696][ T3310] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.745917][ T3310] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.753075][ T3310] bridge_slave_1: entered allmulticast mode [ 42.759573][ T3310] bridge_slave_1: entered promiscuous mode [ 42.768517][ T3315] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 42.777672][ T3317] chnl_net:caif_netlink_parms(): no params data found [ 42.797705][ T3315] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 42.821233][ T3310] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 42.845905][ T3315] team0: Port device team_slave_0 added [ 42.854659][ T3310] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 42.863756][ T3314] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.870795][ T3314] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.878009][ T3314] bridge_slave_0: entered allmulticast mode [ 42.884381][ T3314] bridge_slave_0: entered promiscuous mode [ 42.898310][ T3315] team0: Port device team_slave_1 added [ 42.910288][ T3314] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.917434][ T3314] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.925005][ T3314] bridge_slave_1: entered allmulticast mode [ 42.931263][ T3314] bridge_slave_1: entered promiscuous mode [ 42.972063][ T3310] team0: Port device team_slave_0 added [ 42.982706][ T3314] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 42.991991][ T3315] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 42.998920][ T3315] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 43.024862][ T3315] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 43.035538][ T3311] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.042655][ T3311] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.050006][ T3311] bridge_slave_0: entered allmulticast mode [ 43.056403][ T3311] bridge_slave_0: entered promiscuous mode [ 43.063218][ T3310] team0: Port device team_slave_1 added [ 43.074018][ T3314] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 43.083180][ T3317] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.090284][ T3317] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.097455][ T3317] bridge_slave_0: entered allmulticast mode [ 43.103718][ T3317] bridge_slave_0: entered promiscuous mode [ 43.110618][ T3315] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 43.117614][ T3315] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 43.143660][ T3315] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 43.156815][ T3311] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.163899][ T3311] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.171097][ T3311] bridge_slave_1: entered allmulticast mode [ 43.177447][ T3311] bridge_slave_1: entered promiscuous mode [ 43.191775][ T3317] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.198836][ T3317] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.205987][ T3317] bridge_slave_1: entered allmulticast mode [ 43.212321][ T3317] bridge_slave_1: entered promiscuous mode [ 43.250306][ T3310] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 43.257293][ T3310] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 43.283314][ T3310] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 43.294681][ T3314] team0: Port device team_slave_0 added [ 43.300591][ T3310] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 43.307589][ T3310] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 43.333626][ T3310] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 43.345589][ T3317] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 43.360538][ T3311] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 43.370448][ T3314] team0: Port device team_slave_1 added [ 43.380582][ T3317] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 43.392655][ T3315] hsr_slave_0: entered promiscuous mode [ 43.398611][ T3315] hsr_slave_1: entered promiscuous mode [ 43.405378][ T3311] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 43.438317][ T3314] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 43.445400][ T3314] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 43.471344][ T3314] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 43.482462][ T3314] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 43.489414][ T3314] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 43.515445][ T3314] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 43.552852][ T3317] team0: Port device team_slave_0 added [ 43.560370][ T3310] hsr_slave_0: entered promiscuous mode [ 43.566482][ T3310] hsr_slave_1: entered promiscuous mode [ 43.572342][ T3310] debugfs: 'hsr0' already exists in 'hsr' [ 43.578052][ T3310] Cannot create hsr debugfs directory [ 43.584018][ T3311] team0: Port device team_slave_0 added [ 43.601494][ T3317] team0: Port device team_slave_1 added [ 43.613348][ T3311] team0: Port device team_slave_1 added [ 43.634140][ T3314] hsr_slave_0: entered promiscuous mode [ 43.640237][ T3314] hsr_slave_1: entered promiscuous mode [ 43.646164][ T3314] debugfs: 'hsr0' already exists in 'hsr' [ 43.651927][ T3314] Cannot create hsr debugfs directory [ 43.682388][ T3311] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 43.689436][ T3311] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 43.715435][ T3311] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 43.726459][ T3317] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 43.733414][ T3317] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 43.759318][ T3317] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 43.770322][ T3317] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 43.777290][ T3317] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 43.803268][ T3317] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 43.820559][ T3311] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 43.827623][ T3311] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 43.853509][ T3311] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 43.942849][ T3311] hsr_slave_0: entered promiscuous mode [ 43.948628][ T3311] hsr_slave_1: entered promiscuous mode [ 43.954550][ T3311] debugfs: 'hsr0' already exists in 'hsr' [ 43.960261][ T3311] Cannot create hsr debugfs directory [ 43.970294][ T3317] hsr_slave_0: entered promiscuous mode [ 43.976286][ T3317] hsr_slave_1: entered promiscuous mode [ 43.982301][ T3317] debugfs: 'hsr0' already exists in 'hsr' [ 43.988014][ T3317] Cannot create hsr debugfs directory [ 44.066731][ T3310] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 44.086364][ T3310] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 44.102014][ T3310] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 44.119500][ T3310] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 44.143317][ T3315] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 44.152043][ T3315] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 44.162058][ T3315] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 44.170464][ T3315] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 44.205443][ T3314] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 44.221603][ T3314] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 44.236341][ T3310] 8021q: adding VLAN 0 to HW filter on device bond0 [ 44.246974][ T3314] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 44.257930][ T3314] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 44.288991][ T3317] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 44.297601][ T3317] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 44.308781][ T3310] 8021q: adding VLAN 0 to HW filter on device team0 [ 44.320770][ T3317] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 44.335665][ T60] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.342729][ T60] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.352175][ T3317] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 44.363065][ T3315] 8021q: adding VLAN 0 to HW filter on device bond0 [ 44.374315][ T60] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.381389][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.412709][ T3311] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 44.423654][ T3315] 8021q: adding VLAN 0 to HW filter on device team0 [ 44.432851][ T3311] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 44.442007][ T3311] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 44.450899][ T3311] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 44.465223][ T31] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.472275][ T31] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.489612][ T31] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.496675][ T31] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.526867][ T3314] 8021q: adding VLAN 0 to HW filter on device bond0 [ 44.556414][ T3314] 8021q: adding VLAN 0 to HW filter on device team0 [ 44.575528][ T3317] 8021q: adding VLAN 0 to HW filter on device bond0 [ 44.590689][ T2877] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.597782][ T2877] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.610790][ T3317] 8021q: adding VLAN 0 to HW filter on device team0 [ 44.624317][ T60] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.631462][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.649485][ T3310] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 44.666953][ T60] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.674041][ T60] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.697162][ T3314] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 44.707583][ T3314] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 44.720960][ T60] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.728323][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.748658][ T3317] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 44.759035][ T3317] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 44.799478][ T3311] 8021q: adding VLAN 0 to HW filter on device bond0 [ 44.815546][ T3315] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 44.839416][ T3311] 8021q: adding VLAN 0 to HW filter on device team0 [ 44.860247][ T3314] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 44.875217][ T3317] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 44.883285][ T60] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.890358][ T60] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.903311][ T60] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.910402][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.973883][ T3315] veth0_vlan: entered promiscuous mode [ 45.008444][ T3315] veth1_vlan: entered promiscuous mode [ 45.023952][ T3310] veth0_vlan: entered promiscuous mode [ 45.032664][ T3310] veth1_vlan: entered promiscuous mode [ 45.051988][ T3315] veth0_macvtap: entered promiscuous mode [ 45.066297][ T3315] veth1_macvtap: entered promiscuous mode [ 45.080322][ T3314] veth0_vlan: entered promiscuous mode [ 45.096174][ T3317] veth0_vlan: entered promiscuous mode [ 45.104460][ T3311] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 45.113056][ T3315] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.124618][ T3314] veth1_vlan: entered promiscuous mode [ 45.132196][ T3317] veth1_vlan: entered promiscuous mode [ 45.138564][ T3315] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.150720][ T3310] veth0_macvtap: entered promiscuous mode [ 45.157979][ T3310] veth1_macvtap: entered promiscuous mode [ 45.177517][ T3310] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.188544][ T60] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.205201][ T3314] veth0_macvtap: entered promiscuous mode [ 45.212717][ T3310] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.223668][ T60] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.239991][ T3314] veth1_macvtap: entered promiscuous mode [ 45.249627][ T60] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.258659][ T60] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.271618][ T29] kauditd_printk_skb: 9 callbacks suppressed [ 45.271629][ T29] audit: type=1400 audit(1754144612.750:81): avc: denied { mounton } for pid=3315 comm="syz-executor" path="/root/syzkaller.iZNGQQ/syz-tmp" dev="sda1" ino=2041 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 45.283435][ T3314] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.304369][ T29] audit: type=1400 audit(1754144612.750:82): avc: denied { mount } for pid=3315 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 45.330991][ T29] audit: type=1400 audit(1754144612.750:83): avc: denied { mounton } for pid=3315 comm="syz-executor" path="/root/syzkaller.iZNGQQ/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 45.356203][ T29] audit: type=1400 audit(1754144612.750:84): avc: denied { mount } for pid=3315 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 45.378096][ T29] audit: type=1400 audit(1754144612.750:85): avc: denied { mounton } for pid=3315 comm="syz-executor" path="/root/syzkaller.iZNGQQ/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 45.404722][ T29] audit: type=1400 audit(1754144612.750:86): avc: denied { mounton } for pid=3315 comm="syz-executor" path="/root/syzkaller.iZNGQQ/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=4779 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 45.432026][ T29] audit: type=1400 audit(1754144612.750:87): avc: denied { unmount } for pid=3315 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 45.453191][ T29] audit: type=1400 audit(1754144612.790:88): avc: denied { mounton } for pid=3315 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=536 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 45.454095][ T3315] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 45.475923][ T29] audit: type=1400 audit(1754144612.790:89): avc: denied { mount } for pid=3315 comm="syz-executor" name="/" dev="gadgetfs" ino=4793 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 45.478607][ T60] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.524593][ T60] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.534422][ T3317] veth0_macvtap: entered promiscuous mode [ 45.541895][ T3317] veth1_macvtap: entered promiscuous mode [ 45.549773][ T3314] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.561190][ T60] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.570082][ T29] audit: type=1400 audit(1754144613.040:90): avc: denied { read write } for pid=3315 comm="syz-executor" name="loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 45.597903][ T3317] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.607914][ T60] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.626750][ T3311] veth0_vlan: entered promiscuous mode [ 45.644724][ T3317] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.655226][ T60] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.666249][ T60] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.681689][ T3311] veth1_vlan: entered promiscuous mode [ 45.705514][ T60] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.745901][ T60] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.766939][ T60] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.788336][ T3311] veth0_macvtap: entered promiscuous mode [ 45.796607][ T3311] veth1_macvtap: entered promiscuous mode [ 45.803474][ T3494] SELinux: Context system_u:object_r:dhcpd_exec_t:s0 is not valid (left unmapped). [ 45.813614][ T60] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.841221][ T3488] loop1: detected capacity change from 0 to 8192 [ 45.849166][ T3311] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 45.857796][ T60] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.880287][ T3311] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 45.896040][ T60] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.912235][ T3500] netlink: 168 bytes leftover after parsing attributes in process `syz.3.11'. [ 45.922877][ T3488] loop1: p1 < > p2 p4 [ 45.926951][ T3488] loop1: partition table partially beyond EOD, truncated [ 45.943889][ T3504] loop2: detected capacity change from 0 to 512 [ 45.958648][ T60] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.959015][ T3488] loop1: p1 start 408832 is beyond EOD, truncated [ 45.971696][ T60] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 45.973978][ T3488] loop1: p2 size 8388352 extends beyond EOD, truncated [ 45.984014][ T60] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.000790][ T3505] netlink: 132 bytes leftover after parsing attributes in process `syz.3.13'. [ 46.013512][ T60] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 46.058125][ T3504] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 46.092624][ T3504] ext4 filesystem being mounted at /1/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 46.148562][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.233426][ T3530] netlink: 'syz.0.22': attribute type 27 has an invalid length. [ 46.281504][ T3530] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.283552][ T3538] loop1: detected capacity change from 0 to 512 [ 46.288710][ T3530] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.363255][ T3538] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 46.369102][ T3530] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 46.386670][ T3530] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 46.419848][ T3538] ext4 filesystem being mounted at /5/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 46.444248][ T3550] binfmt_misc: register: failed to install interpreter file ./file2 [ 46.455472][ T3539] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.478145][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.492025][ T3552] tmpfs: Unknown parameter 'smackfstransmute' [ 46.496258][ T3539] 8021q: adding VLAN 0 to HW filter on device team0 [ 46.508237][ T3539] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 46.525348][ T51] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.544759][ T3554] loop3: detected capacity change from 0 to 256 [ 46.552132][ T51] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.588170][ T3562] bridge_slave_0: default FDB implementation only supports local addresses [ 46.596831][ T51] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.607194][ T3554] ======================================================= [ 46.607194][ T3554] WARNING: The mand mount option has been deprecated and [ 46.607194][ T3554] and is ignored by this kernel. Remove the mand [ 46.607194][ T3554] option from the mount to silence this warning. [ 46.607194][ T3554] ======================================================= [ 46.653461][ T51] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.686467][ T3554] FAT-fs (loop3): codepage cp864 not found [ 46.709619][ T3539] syz.0.22 (3539) used greatest stack depth: 10688 bytes left [ 46.720132][ T3567] netlink: 16 bytes leftover after parsing attributes in process `syz.2.36'. [ 46.775625][ T3567] netlink: 16 bytes leftover after parsing attributes in process `syz.2.36'. [ 46.880348][ T3586] SELinux: Context system_u:object_r:xconsole_device_t:s0 is not valid (left unmapped). [ 46.965681][ T3596] SELinux: syz.4.50 (3596) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 47.019408][ T3602] netlink: 52 bytes leftover after parsing attributes in process `syz.0.52'. [ 47.166619][ T3617] netlink: 32 bytes leftover after parsing attributes in process `syz.0.60'. [ 47.279060][ T3640] loop1: detected capacity change from 0 to 512 [ 47.298455][ T3638] netlink: 'syz.0.70': attribute type 3 has an invalid length. [ 47.313594][ T3640] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 47.327882][ T3640] ext4 filesystem being mounted at /14/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 47.357573][ T3640] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #18: comm syz.1.71: corrupted inode contents [ 47.370893][ T3640] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #18: comm syz.1.71: mark_inode_dirty error [ 47.393914][ T3640] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #18: comm syz.1.71: corrupted inode contents [ 47.406048][ T3663] SELinux: ebitmap: map size 149 does not match my size 64 (high bit was 0) [ 47.406614][ T3640] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2991: inode #18: comm syz.1.71: mark_inode_dirty error [ 47.418845][ T3663] SELinux: failed to load policy [ 47.428896][ T3640] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2994: inode #18: comm syz.1.71: mark inode dirty (error -117) [ 47.463461][ T3640] EXT4-fs warning (device loop1): ext4_evict_inode:274: xattr delete (err -117) [ 47.512988][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.575767][ T3687] loop1: detected capacity change from 0 to 1024 [ 47.589852][ T3689] loop2: detected capacity change from 0 to 512 [ 47.599484][ T3687] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 47.611962][ T3687] ext4 filesystem being mounted at /17/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 47.629570][ T3689] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 47.631901][ T3687] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: block 4: comm syz.1.88: lblock 4 mapped to illegal pblock 4 (length 1) [ 47.642553][ T3689] ext4 filesystem being mounted at /24/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 47.657049][ T3687] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 1 with error 117 [ 47.678581][ T3687] EXT4-fs (loop1): This should not happen!! Data will be lost [ 47.678581][ T3687] [ 47.690269][ T3696] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: block 3: comm syz.1.88: lblock 3 mapped to illegal pblock 3 (length 1) [ 47.707245][ T3696] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117 [ 47.719707][ T3696] EXT4-fs (loop1): This should not happen!! Data will be lost [ 47.719707][ T3696] [ 47.791661][ T60] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: block 8: comm kworker/u8:4: lblock 8 mapped to illegal pblock 8 (length 8) [ 47.809180][ T60] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117 [ 47.821610][ T60] EXT4-fs (loop1): This should not happen!! Data will be lost [ 47.821610][ T60] [ 47.833826][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 47.843037][ T3689] syz.2.89 (3689) used greatest stack depth: 10576 bytes left [ 47.855441][ T3704] erspan0: entered promiscuous mode [ 47.855582][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.901178][ T3712] netlink: 'syz.0.98': attribute type 5 has an invalid length. [ 47.921400][ T3710] loop1: detected capacity change from 0 to 512 [ 47.928039][ T3710] vfat: Unknown parameter 'shortnĈme' [ 47.956143][ T3722] netlink: 20 bytes leftover after parsing attributes in process `syz.0.102'. [ 47.984111][ T3728] netlink: 188 bytes leftover after parsing attributes in process `syz.1.106'. [ 48.020953][ C1] hrtimer: interrupt took 8064 ns [ 48.247353][ T3786] capability: warning: `syz.1.129' uses deprecated v2 capabilities in a way that may be insecure [ 48.269802][ T3788] loop1: detected capacity change from 0 to 128 [ 48.276509][ T3788] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 48.288632][ T3788] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 48.304139][ T3790] loop0: detected capacity change from 0 to 1024 [ 48.312424][ T3790] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 48.322327][ T60] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 48.344429][ T3790] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 48.364730][ T3790] EXT4-fs error (device loop0): ext4_xattr_inode_iget:437: inode #11: comm syz.0.131: missing EA_INODE flag [ 48.377578][ T3790] EXT4-fs (loop0): Remounting filesystem read-only [ 48.384157][ T3790] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 48.410537][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.440847][ T3804] netlink: 24 bytes leftover after parsing attributes in process `syz.1.137'. [ 48.480056][ T3812] loop1: detected capacity change from 0 to 512 [ 48.487484][ T3812] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 48.607607][ T1455] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 48.638562][ T3825] IPv6: Can't replace route, no match found [ 48.782474][ T3838] 9pnet: p9_errstr2errno: server reported unknown error [ 48.890570][ T3864] batman_adv: batadv0: Adding interface: gretap1 [ 48.896957][ T3864] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 48.922955][ T3864] batman_adv: batadv0: Interface activated: gretap1 [ 49.259426][ T3918] netlink: 8 bytes leftover after parsing attributes in process `syz.2.185'. [ 49.268273][ T3918] Zero length message leads to an empty skb [ 49.355326][ T3935] loop0: detected capacity change from 0 to 4096 [ 49.364300][ T3935] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 49.388788][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.597613][ T3966] loop0: detected capacity change from 0 to 1024 [ 49.609906][ T3969] loop2: detected capacity change from 0 to 512 [ 49.612882][ T3966] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 49.617594][ T3969] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 49.629226][ T3966] ext4 filesystem being mounted at /75/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 49.641734][ T3969] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 49.678787][ T3969] EXT4-fs (loop2): 1 orphan inode deleted [ 49.680522][ T3966] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 3: comm syz.0.205: lblock 3 mapped to illegal pblock 3 (length 3) [ 49.684577][ T3969] EXT4-fs (loop2): 1 truncate cleaned up [ 49.699817][ T3966] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117 [ 49.707228][ T3969] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 49.716521][ T3966] EXT4-fs (loop0): This should not happen!! Data will be lost [ 49.716521][ T3966] [ 49.755890][ T3969] EXT4-fs error (device loop2): ext4_search_dir:1474: inode #12: block 7: comm syz.2.207: bad entry in directory: directory entry overrun - offset=0, inode=13, rec_len=784, size=56 fake=0 [ 49.775643][ T3969] EXT4-fs (loop2): Remounting filesystem read-only [ 49.811908][ T1735] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: block 8: comm kworker/u8:6: lblock 8 mapped to illegal pblock 8 (length 8) [ 49.827045][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.836481][ T1735] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117 [ 49.848849][ T1735] EXT4-fs (loop0): This should not happen!! Data will be lost [ 49.848849][ T1735] [ 49.851679][ T2955] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0 [ 49.866030][ T2955] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0 [ 49.870516][ T3984] loop2: detected capacity change from 0 to 512 [ 49.873460][ T2955] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0 [ 49.873484][ T2955] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0 [ 49.873508][ T2955] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0 [ 49.873531][ T2955] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0 [ 49.873554][ T2955] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0 [ 49.873582][ T2955] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0 [ 49.873629][ T2955] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0 [ 49.873652][ T2955] hid-generic 0008:0006:0007.0001: unknown main item tag 0x0 [ 49.877510][ T2955] hid-generic 0008:0006:0007.0001: hidraw0: HID v0.0b Device [syz1] on syz1 [ 49.912218][ T3984] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 49.960597][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 49.963932][ T3984] EXT4-fs error (device loop2): ext4_iget_extra_inode:5104: inode #15: comm syz.2.213: corrupted in-inode xattr: bad e_name length [ 49.983909][ T3984] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.213: couldn't read orphan inode 15 (err -117) [ 50.004757][ T3984] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 50.056102][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.250326][ T4029] loop1: detected capacity change from 0 to 512 [ 50.267650][ T4029] journal_path: Non-blockdev passed as './file0' [ 50.274221][ T4029] EXT4-fs: error: could not find journal device path [ 50.319385][ T4042] netlink: 'syz.1.239': attribute type 10 has an invalid length. [ 50.330285][ T29] kauditd_printk_skb: 167 callbacks suppressed [ 50.330298][ T29] audit: type=1400 audit(1754144617.800:258): avc: denied { write } for pid=4043 comm="syz.3.242" lport=5 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 50.332893][ T4042] team0: Device hsr_slave_0 failed to register rx_handler [ 50.359385][ T4046] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 50.552698][ T4076] loop3: detected capacity change from 0 to 764 [ 50.561083][ T29] audit: type=1400 audit(1754144618.030:259): avc: denied { mount } for pid=4075 comm="syz.3.256" name="/" dev="loop3" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1 [ 50.623759][ T29] audit: type=1400 audit(1754144618.100:260): avc: denied { unmount } for pid=3314 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1 [ 50.744806][ T4105] 9pnet_fd: Insufficient options for proto=fd [ 50.780989][ T4109] IPv6: Can't replace route, no match found [ 50.803948][ T29] audit: type=1400 audit(1754144618.280:261): avc: denied { watch watch_reads } for pid=4112 comm="syz.3.273" path="/46" dev="tmpfs" ino=247 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 50.831053][ T29] audit: type=1400 audit(1754144618.300:262): avc: denied { mount } for pid=4116 comm="syz.0.274" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1 [ 50.885361][ T4123] loop3: detected capacity change from 0 to 512 [ 50.893259][ T4123] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c02c, mo2=0102] [ 50.903547][ T4123] System zones: 1-12 [ 50.908029][ T4123] EXT4-fs error (device loop3): ext4_xattr_inode_iget:442: comm syz.3.278: error while reading EA inode 32 err=-116 [ 50.920702][ T4123] EXT4-fs (loop3): Remounting filesystem read-only [ 50.927300][ T4123] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -30) [ 50.937513][ T4123] EXT4-fs (loop3): 1 orphan inode deleted [ 50.943590][ T4123] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 50.956052][ T4123] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.274341][ T29] audit: type=1400 audit(1754144618.750:263): avc: denied { create } for pid=4144 comm="syz.0.287" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 51.293875][ T29] audit: type=1400 audit(1754144618.750:264): avc: denied { write } for pid=4144 comm="syz.0.287" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 51.343366][ T4154] loop0: detected capacity change from 0 to 1764 [ 51.395351][ T4164] netlink: 'syz.3.295': attribute type 21 has an invalid length. [ 51.428336][ T4156] loop2: detected capacity change from 0 to 8192 [ 51.430993][ T29] audit: type=1400 audit(1754144618.900:265): avc: denied { mount } for pid=4167 comm="syz.0.296" name="/" dev="hugetlbfs" ino=5928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1 [ 51.466937][ T4172] loop1: detected capacity change from 0 to 1024 [ 51.469210][ T29] audit: type=1400 audit(1754144618.930:266): avc: denied { create } for pid=4167 comm="syz.0.296" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=blk_file permissive=1 [ 51.494064][ T29] audit: type=1400 audit(1754144618.940:267): avc: denied { unmount } for pid=3311 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1 [ 51.494432][ T4172] EXT4-fs: Ignoring removed nobh option [ 51.519843][ T4172] EXT4-fs: inline encryption not supported [ 51.532432][ T4172] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 51.583960][ T4172] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4183: comm syz.1.300: Allocating blocks 385-513 which overlap fs metadata [ 51.600097][ T4172] EXT4-fs (loop1): pa ffff888107120620: logic 16, phys. 129, len 24 [ 51.608170][ T4172] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8 [ 51.620180][ T4172] syz.1.300 (4172) used greatest stack depth: 9576 bytes left [ 51.637355][ T4192] openvswitch: netlink: Message has 6 unknown bytes. [ 51.637911][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.773131][ T4216] loop2: detected capacity change from 0 to 1024 [ 51.779892][ T4216] EXT4-fs: Ignoring removed orlov option [ 51.785589][ T4216] EXT4-fs: Ignoring removed mblk_io_submit option [ 51.792830][ T4216] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 51.812701][ T4216] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 51.836339][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 52.393099][ T4240] SELinux: policydb version 0 does not match my version range 15-35 [ 52.401391][ T4240] SELinux: failed to load policy [ 52.564740][ T4263] __nla_validate_parse: 8 callbacks suppressed [ 52.564754][ T4263] netlink: 16 bytes leftover after parsing attributes in process `syz.0.338'. [ 52.693044][ T4282] process 'syz.1.346' launched './file0' with NULL argv: empty string added [ 52.833934][ T4302] syz.2.356 (4302) used greatest stack depth: 9456 bytes left [ 52.845828][ T4310] bridge0: port 2(bridge_slave_1) entered disabled state [ 52.852993][ T4310] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.877154][ T4310] netlink: 'syz.1.360': attribute type 2 has an invalid length. [ 52.884837][ T4310] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check. [ 52.915808][ T4318] loop0: detected capacity change from 0 to 2048 [ 52.932030][ T4318] EXT4-fs: Ignoring removed mblk_io_submit option [ 52.973110][ T4318] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 52.999390][ T4317] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.364: bg 0: block 234: padding at end of block bitmap is not set [ 53.015167][ T4317] EXT4-fs (loop0): Remounting filesystem read-only [ 53.034213][ T4317] EXT4-fs (loop0): error restoring inline_data for inode -- potential data loss! (inode 15, error -30) [ 53.044116][ T4338] 9pnet: Could not find request transport: r [ 53.084607][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 53.131091][ T4352] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=65533 sclass=netlink_audit_socket pid=4352 comm=syz.4.379 [ 53.141767][ T4354] loop0: detected capacity change from 0 to 1024 [ 53.160321][ T4356] netlink: 48 bytes leftover after parsing attributes in process `syz.1.380'. [ 53.169351][ T4356] netlink: 48 bytes leftover after parsing attributes in process `syz.1.380'. [ 53.179536][ T4354] EXT4-fs: Ignoring removed orlov option [ 53.187918][ T4354] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 53.222067][ T4360] loop4: detected capacity change from 0 to 512 [ 53.228498][ T4360] EXT4-fs: Ignoring removed bh option [ 53.238810][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 53.238834][ T4360] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 53.261847][ T4360] EXT4-fs (loop4): 1 truncate cleaned up [ 53.267920][ T4360] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 53.337375][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 53.370605][ T4375] capability: warning: `syz.4.385' uses 32-bit capabilities (legacy support in use) [ 53.493716][ T4401] loop4: detected capacity change from 0 to 4096 [ 53.503238][ T4401] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 53.522461][ T4401] EXT4-fs error (device loop4): ext4_empty_dir:3100: inode #12: block 80: comm syz.4.399: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0 [ 53.545383][ T4401] EXT4-fs (loop4): Remounting filesystem read-only [ 53.551978][ T4401] EXT4-fs warning (device loop4): ext4_empty_dir:3103: inode #12: comm syz.4.399: directory missing '..' [ 53.574735][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 53.795282][ T4449] netlink: 40 bytes leftover after parsing attributes in process `syz.3.415'. [ 53.887297][ T4461] syz_tun: entered promiscuous mode [ 53.894497][ T4461] syz_tun: left promiscuous mode [ 54.066682][ T4475] netlink: 'syz.3.427': attribute type 16 has an invalid length. [ 54.074486][ T4475] netlink: 'syz.3.427': attribute type 3 has an invalid length. [ 54.082155][ T4475] netlink: 64066 bytes leftover after parsing attributes in process `syz.3.427'. [ 54.194501][ T4490] Illegal XDP return value 4294967274 on prog (id 162) dev N/A, expect packet loss! [ 54.232799][ T4496] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 54.281613][ T4496] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 54.388371][ T4521] netlink: 44 bytes leftover after parsing attributes in process `syz.3.443'. [ 54.406671][ T4512] netlink: 44 bytes leftover after parsing attributes in process `syz.3.443'. [ 54.427079][ T4521] netlink: 44 bytes leftover after parsing attributes in process `syz.3.443'. [ 54.431832][ T4527] netlink: 8 bytes leftover after parsing attributes in process `syz.1.451'. [ 54.444864][ T4527] netlink: 'syz.1.451': attribute type 20 has an invalid length. [ 54.452637][ T4527] netlink: 'syz.1.451': attribute type 21 has an invalid length. [ 54.542297][ T4547] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=14385 sclass=netlink_route_socket pid=4547 comm=syz.3.462 [ 54.563380][ T4552] sctp: [Deprecated]: syz.4.463 (pid 4552) Use of struct sctp_assoc_value in delayed_ack socket option. [ 54.563380][ T4552] Use struct sctp_sack_info instead [ 54.628493][ T4557] loop0: detected capacity change from 0 to 512 [ 54.655060][ T4557] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 54.708517][ T4557] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 54.721196][ T4557] ext4 filesystem being mounted at /148/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 54.737697][ T4557] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.465: corrupted xattr block 19: overlapping e_value [ 54.757181][ T4577] loop4: detected capacity change from 0 to 764 [ 54.796650][ T4557] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=15 [ 54.816714][ T4585] netlink: 8 bytes leftover after parsing attributes in process `syz.3.476'. [ 54.825673][ T4585] netlink: 'syz.3.476': attribute type 3 has an invalid length. [ 54.831135][ T4557] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.465: corrupted xattr block 19: overlapping e_value [ 54.885483][ T4557] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=15 [ 54.898154][ T4593] loop3: detected capacity change from 0 to 256 [ 54.904753][ T4557] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.465: corrupted xattr block 19: overlapping e_value [ 54.951721][ T4593] FAT-fs (loop3): Directory bread(block 64) failed [ 54.958297][ T4593] FAT-fs (loop3): Directory bread(block 65) failed [ 54.965550][ T4593] FAT-fs (loop3): Directory bread(block 66) failed [ 54.973155][ T4593] FAT-fs (loop3): Directory bread(block 67) failed [ 54.979993][ T4593] FAT-fs (loop3): Directory bread(block 68) failed [ 54.987476][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 54.996702][ T4593] FAT-fs (loop3): Directory bread(block 69) failed [ 55.004353][ T4593] FAT-fs (loop3): Directory bread(block 70) failed [ 55.015412][ T4593] FAT-fs (loop3): Directory bread(block 71) failed [ 55.031988][ T4593] FAT-fs (loop3): Directory bread(block 72) failed [ 55.038963][ T4593] FAT-fs (loop3): Directory bread(block 73) failed [ 55.066335][ T4614] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 55.098437][ T4614] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 55.122968][ T4622] loop0: detected capacity change from 0 to 1024 [ 55.146219][ T4622] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 55.167040][ T4622] EXT4-fs (loop0): shut down requested (1) [ 55.206372][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 55.388935][ T29] kauditd_printk_skb: 154 callbacks suppressed [ 55.388948][ T29] audit: type=1326 audit(1754144622.912:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4689 comm="syz.0.526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff34ac2eb69 code=0x7ffc0000 [ 55.435570][ T29] audit: type=1326 audit(1754144622.952:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4689 comm="syz.0.526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7ff34ac2eb69 code=0x7ffc0000 [ 55.458914][ T29] audit: type=1326 audit(1754144622.952:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4689 comm="syz.0.526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff34ac2eb69 code=0x7ffc0000 [ 55.496077][ T29] audit: type=1400 audit(1754144623.022:425): avc: denied { append } for pid=4699 comm="syz.1.531" name="sg0" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 55.520371][ T4700] program syz.1.531 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 55.562284][ T29] audit: type=1400 audit(1754144623.092:426): avc: denied { block_suspend } for pid=4703 comm="syz.1.533" capability=36 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 55.666424][ T4716] loop1: detected capacity change from 0 to 128 [ 55.700899][ T29] audit: type=1400 audit(1754144623.222:427): avc: denied { write } for pid=4720 comm="syz.2.541" name="vlan0" dev="proc" ino=4026533250 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1 [ 55.734946][ T29] audit: type=1400 audit(1754144623.262:428): avc: denied { create } for pid=4722 comm="syz.4.542" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 55.758873][ T4716] syz.1.538: attempt to access beyond end of device [ 55.758873][ T4716] loop1: rw=0, sector=121, nr_sectors = 120 limit=128 [ 55.784549][ T31] kworker/u8:1: attempt to access beyond end of device [ 55.784549][ T31] loop1: rw=1, sector=241, nr_sectors = 800 limit=128 [ 55.810675][ T29] audit: type=1400 audit(1754144623.262:429): avc: denied { write } for pid=4722 comm="syz.4.542" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 55.863843][ T29] audit: type=1400 audit(1754144623.362:430): avc: denied { read write } for pid=4725 comm="syz.0.544" name="rdma_cm" dev="devtmpfs" ino=251 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1 [ 55.887951][ T29] audit: type=1400 audit(1754144623.362:431): avc: denied { open } for pid=4725 comm="syz.0.544" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=251 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1 [ 55.945922][ T4740] loop1: detected capacity change from 0 to 2048 [ 55.955897][ T4743] netlink: 'syz.2.552': attribute type 3 has an invalid length. [ 55.965250][ T4740] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 56.070416][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 56.147628][ T4760] openvswitch: netlink: Message has 6 unknown bytes. [ 56.178406][ T4770] netlink: 'syz.0.564': attribute type 10 has an invalid length. [ 56.195029][ T4770] geneve1: entered promiscuous mode [ 56.215027][ T4776] SELinux: Context system_u:object_r:pam_exec_t:s0 is not valid (left unmapped). [ 56.225183][ T4770] bond0: (slave geneve1): Enslaving as an active interface with an up link [ 56.234290][ T1455] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.248566][ T4780] SELinux: policydb version 0 does not match my version range 15-35 [ 56.250017][ T1455] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.267485][ T4780] SELinux: failed to load policy [ 56.272758][ T1455] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.287200][ T1455] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.449888][ T4822] syz.2.589 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 56.525773][ T4833] program syz.0.594 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 56.826540][ T4887] netlink: 'syz.3.619': attribute type 1 has an invalid length. [ 57.153093][ T4921] loop3: detected capacity change from 0 to 1024 [ 57.159886][ T4921] EXT4-fs: Ignoring removed bh option [ 57.183285][ T4921] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 57.208154][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 57.225572][ T1034] hid_parser_main: 43 callbacks suppressed [ 57.225584][ T1034] hid-generic 0000:0000:0008.0002: unknown main item tag 0x0 [ 57.238891][ T1034] hid-generic 0000:0000:0008.0002: unknown main item tag 0x0 [ 57.246350][ T1034] hid-generic 0000:0000:0008.0002: unknown main item tag 0x0 [ 57.253751][ T1034] hid-generic 0000:0000:0008.0002: unknown main item tag 0x0 [ 57.261152][ T1034] hid-generic 0000:0000:0008.0002: unknown main item tag 0x0 [ 57.268580][ T1034] hid-generic 0000:0000:0008.0002: unknown main item tag 0x0 [ 57.275993][ T1034] hid-generic 0000:0000:0008.0002: unknown main item tag 0x0 [ 57.283472][ T1034] hid-generic 0000:0000:0008.0002: unknown main item tag 0x0 [ 57.290851][ T1034] hid-generic 0000:0000:0008.0002: unknown main item tag 0x0 [ 57.298247][ T1034] hid-generic 0000:0000:0008.0002: unknown main item tag 0x0 [ 57.307777][ T1034] hid-generic 0000:0000:0008.0002: hidraw0: HID vc.87 Device [syz0] on syz1 [ 57.336155][ T4927] loop4: detected capacity change from 0 to 512 [ 57.353642][ T4927] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 57.366418][ T4927] ext4 filesystem being mounted at /86/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 57.377452][ T4927] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 57.550099][ T4955] dvmrp1: tun_chr_ioctl cmd 1074025692 [ 57.616389][ T4960] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.927457][ T5025] netlink: 'syz.1.679': attribute type 1 has an invalid length. [ 57.935135][ T5025] __nla_validate_parse: 6 callbacks suppressed [ 57.935149][ T5025] netlink: 24 bytes leftover after parsing attributes in process `syz.1.679'. [ 58.030558][ T5036] syz.1.685 (5036) used greatest stack depth: 9224 bytes left [ 58.463331][ T5068] loop0: detected capacity change from 0 to 32768 [ 58.497617][ T5105] erspan0: entered promiscuous mode [ 58.505035][ T5068] loop0: p1 p2 p3 < p5 p6 p7 > [ 58.517080][ T5068] loop0: p2 size 16775168 extends beyond EOD, truncated [ 58.532771][ T5068] loop0: p5 start 4294970168 is beyond EOD, truncated [ 58.656319][ T5132] tmpfs: Unknown parameter 'smackfstransmute' [ 59.027542][ T5159] loop4: detected capacity change from 0 to 4096 [ 59.049878][ T5159] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 59.069861][ T5159] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 59.080242][ T5144] loop0: detected capacity change from 0 to 512 [ 59.134136][ T5144] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 59.159732][ T5179] program syz.2.749 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 59.164390][ T5144] ext4 filesystem being mounted at /191/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 59.215014][ T5189] SELinux: failed to load policy [ 59.282874][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 59.338623][ T5211] SELinux: Context system_u:object is not valid (left unmapped). [ 59.359574][ T5218] program syz.4.766 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 59.432185][ T5220] loop1: detected capacity change from 0 to 8192 [ 59.599990][ T5253] loop0: detected capacity change from 0 to 512 [ 59.617322][ T5255] loop4: detected capacity change from 0 to 512 [ 59.619517][ T5253] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 59.624337][ T5255] journal_path: Lookup failure for './file0/../file0' [ 59.631632][ T5253] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 59.638415][ T5255] EXT4-fs: error: could not find journal device path [ 59.674051][ T5253] EXT4-fs (loop0): orphan cleanup on readonly fs [ 59.683675][ T5253] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #13: comm syz.0.785: iget: bad i_size value: 12154761577498 [ 59.703747][ T5262] netlink: 20 bytes leftover after parsing attributes in process `syz.1.789'. [ 59.714636][ T5253] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.785: couldn't read orphan inode 13 (err -117) [ 59.737439][ T5253] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 59.775138][ T5253] EXT4-fs warning (device loop0): dx_probe:861: inode #2: comm syz.0.785: dx entry: limit 65535 != root limit 120 [ 59.787903][ T5253] EXT4-fs warning (device loop0): dx_probe:934: inode #2: comm syz.0.785: Corrupt directory, running e2fsck is recommended [ 59.815380][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 59.912283][ T1034] kernel write not supported for file /snd/seq (pid: 1034 comm: kworker/0:2) [ 59.925135][ T5289] random: crng reseeded on system resumption [ 60.021184][ T5309] loop1: detected capacity change from 0 to 128 [ 60.034086][ T5309] syz.1.812: attempt to access beyond end of device [ 60.034086][ T5309] loop1: rw=2049, sector=145, nr_sectors = 3 limit=128 [ 60.103522][ T5323] loop4: detected capacity change from 0 to 128 [ 60.133621][ T5327] netlink: 12 bytes leftover after parsing attributes in process `syz.3.821'. [ 60.156670][ T5331] loop1: detected capacity change from 0 to 512 [ 60.163400][ T5331] EXT4-fs: Ignoring removed oldalloc option [ 60.179725][ T5331] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.823: Parent and EA inode have the same ino 15 [ 60.198328][ T5331] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.823: Parent and EA inode have the same ino 15 [ 60.214164][ T5331] EXT4-fs (loop1): 1 orphan inode deleted [ 60.220439][ T5331] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 60.245049][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 60.254453][ T5342] loop2: detected capacity change from 0 to 128 [ 60.265742][ T5342] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 60.293586][ T5342] ext4 filesystem being mounted at /157/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 60.294116][ T5347] netlink: 36 bytes leftover after parsing attributes in process `syz.4.831'. [ 60.342146][ T5355] loop1: detected capacity change from 0 to 128 [ 60.407493][ T3317] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 60.461372][ T29] kauditd_printk_skb: 261 callbacks suppressed [ 60.461391][ T29] audit: type=1400 audit(1754147205.994:693): avc: denied { execmem } for pid=5373 comm="syz.3.843" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 60.544525][ T5387] netlink: 7 bytes leftover after parsing attributes in process `syz.0.848'. [ 60.560910][ T5387] netlink: 7 bytes leftover after parsing attributes in process `syz.0.848'. [ 60.628775][ T29] audit: type=1326 audit(1754147206.154:694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5401 comm="syz.3.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe34fd3eb69 code=0x7ffc0000 [ 60.675198][ T5410] loop3: detected capacity change from 0 to 1024 [ 60.683649][ T29] audit: type=1326 audit(1754147206.184:695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5401 comm="syz.3.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe34fd3eb69 code=0x7ffc0000 [ 60.707232][ T29] audit: type=1326 audit(1754147206.184:696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5401 comm="syz.3.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe34fd3eb69 code=0x7ffc0000 [ 60.730735][ T29] audit: type=1326 audit(1754147206.184:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5401 comm="syz.3.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe34fd3eb69 code=0x7ffc0000 [ 60.754229][ T29] audit: type=1326 audit(1754147206.184:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5401 comm="syz.3.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe34fd3eb69 code=0x7ffc0000 [ 60.778283][ T29] audit: type=1326 audit(1754147206.184:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5401 comm="syz.3.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe34fd3eb69 code=0x7ffc0000 [ 60.790021][ T5410] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040e01c, mo2=0002] [ 60.801538][ T29] audit: type=1326 audit(1754147206.184:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5401 comm="syz.3.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7fe34fd3eb69 code=0x7ffc0000 [ 60.825064][ T5410] System zones: [ 60.832846][ T29] audit: type=1326 audit(1754147206.184:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5401 comm="syz.3.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe34fd3eb69 code=0x7ffc0000 [ 60.832876][ T5410] 0-1 [ 60.847226][ T29] audit: type=1400 audit(1754147206.234:702): avc: denied { create } for pid=5414 comm="syz.0.863" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 60.859774][ T5410] , 3-36 [ 60.891136][ T5410] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 60.963682][ T5429] loop0: detected capacity change from 0 to 128 [ 60.991602][ T5410] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. [ 61.053720][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 61.106064][ T5440] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 61.167365][ T5452] syz.3.872 (5452) used greatest stack depth: 8864 bytes left [ 61.198193][ T5440] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 61.251417][ T5440] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 61.293685][ T5467] netlink: 8 bytes leftover after parsing attributes in process `syz.1.886'. [ 61.359229][ T5479] loop3: detected capacity change from 0 to 128 [ 61.367357][ T5481] netlink: 12 bytes leftover after parsing attributes in process `syz.4.893'. [ 61.385906][ T5440] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 61.448020][ T51] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.458911][ T5492] loop3: detected capacity change from 0 to 512 [ 61.467370][ T51] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.480733][ T5491] IPv6: Can't replace route, no match found [ 61.486396][ T5492] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 61.497030][ T31] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.516040][ T5492] EXT4-fs (loop3): mount failed [ 61.521017][ T60] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.540862][ T5497] loop1: detected capacity change from 0 to 512 [ 61.547512][ T5497] EXT4-fs: Ignoring removed i_version option [ 61.599852][ T5497] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 61.638095][ T5497] EXT4-fs (loop1): 1 truncate cleaned up [ 61.644334][ T5497] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 61.689011][ T5527] loop3: detected capacity change from 0 to 256 [ 61.701846][ T5530] dummy0: entered promiscuous mode [ 61.708044][ T5528] dummy0: left promiscuous mode [ 61.730463][ T5527] FAT-fs (loop3): codepage cp861 not found [ 61.748909][ T5533] netlink: 'syz.2.917': attribute type 2 has an invalid length. [ 61.756706][ T5533] netlink: 'syz.2.917': attribute type 1 has an invalid length. [ 61.764392][ T5533] netlink: 199820 bytes leftover after parsing attributes in process `syz.2.917'. [ 61.779281][ T5534] loop0: detected capacity change from 0 to 128 [ 61.788828][ T5534] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 61.801475][ T5536] netlink: 32 bytes leftover after parsing attributes in process `syz.3.919'. [ 61.813116][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 61.825306][ T5534] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 61.837083][ T36] IPVS: starting estimator thread 0... [ 61.837122][ T5541] netlink: 'syz.2.921': attribute type 1 has an invalid length. [ 61.891251][ T31] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 61.930488][ T5539] IPVS: using max 2928 ests per chain, 146400 per kthread [ 61.969813][ T5560] loop1: detected capacity change from 0 to 1024 [ 61.980546][ T5560] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 62.002641][ T5560] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.931: Invalid block bitmap block 0 in block_group 0 [ 62.027209][ T5560] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.931: Failed to acquire dquot type 0 [ 62.081916][ T5580] mmap: syz.4.938 (5580) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 62.111837][ T5560] EXT4-fs error (device loop1): ext4_free_blocks:6696: comm syz.1.931: Freeing blocks not in datazone - block = 0, count = 4096 [ 62.126580][ T5560] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.931: Invalid inode bitmap blk 0 in block_group 0 [ 62.159305][ T1455] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:5: Failed to release dquot type 0 [ 62.177134][ T5560] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem [ 62.195969][ T5560] EXT4-fs (loop1): 1 orphan inode deleted [ 62.217978][ T5593] netlink: 'syz.0.943': attribute type 1 has an invalid length. [ 62.225768][ T5593] netlink: 'syz.0.943': attribute type 2 has an invalid length. [ 62.233178][ T5560] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 62.274675][ T5595] program syz.0.945 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 62.307633][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 62.344195][ T5602] loop0: detected capacity change from 0 to 1024 [ 62.388542][ T5608] bridge0: port 2(bridge_slave_1) entered disabled state [ 62.390629][ T5602] EXT4-fs: Ignoring removed orlov option [ 62.430637][ T5602] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (52289!=20869) [ 62.450555][ T5602] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 62.469974][ T5602] EXT4-fs (loop0): invalid journal inode [ 62.475728][ T5602] EXT4-fs (loop0): can't get journal size [ 62.487679][ T5602] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 62.559964][ T5602] EXT4-fs (loop0): Can't support bigalloc feature without extents feature [ 62.559964][ T5602] [ 62.599031][ T3311] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 62.642609][ T5650] netdevsim netdevsim4 netdevsim0: entered allmulticast mode [ 62.656248][ T5652] loop3: detected capacity change from 0 to 1024 [ 62.663233][ T5652] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 62.674176][ T5652] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 62.689442][ T5652] JBD2: no valid journal superblock found [ 62.695240][ T5652] EXT4-fs (loop3): Could not load journal inode [ 62.772374][ T5676] loop3: detected capacity change from 0 to 512 [ 62.779083][ T5676] EXT4-fs: Ignoring removed orlov option [ 62.786036][ T5676] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 62.812623][ T5676] EXT4-fs (loop3): orphan cleanup on readonly fs [ 62.829564][ T5676] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.982: bg 0: block 248: padding at end of block bitmap is not set [ 62.847439][ T5676] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.982: Failed to acquire dquot type 1 [ 62.867556][ T5676] EXT4-fs (loop3): 1 truncate cleaned up [ 62.875498][ T5676] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 62.956589][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 63.013914][ T3314] ================================================================== [ 63.022011][ T3314] BUG: KCSAN: data-race in __lru_add_drain_all / folios_put_refs [ 63.029725][ T3314] [ 63.032040][ T3314] write to 0xffff888237d25ea8 of 1 bytes by task 5695 on cpu 1: [ 63.039668][ T3314] folios_put_refs+0x285/0x2d0 [ 63.044425][ T3314] folio_batch_move_lru+0x1fd/0x230 [ 63.049794][ T3314] folio_add_lru+0x14a/0x1f0 [ 63.054383][ T3314] folio_add_lru_vma+0x49/0x70 [ 63.059146][ T3314] do_wp_page+0x1458/0x24e0 [ 63.063641][ T3314] handle_mm_fault+0x77d/0x2c20 [ 63.068478][ T3314] do_user_addr_fault+0x636/0x1090 [ 63.073583][ T3314] exc_page_fault+0x62/0xa0 [ 63.078246][ T3314] asm_exc_page_fault+0x26/0x30 [ 63.083085][ T3314] [ 63.085397][ T3314] read to 0xffff888237d25ea8 of 1 bytes by task 3314 on cpu 0: [ 63.092920][ T3314] __lru_add_drain_all+0x12b/0x3f0 [ 63.098014][ T3314] lru_add_drain_all+0x10/0x20 [ 63.102760][ T3314] invalidate_bdev+0x47/0x70 [ 63.107336][ T3314] ext4_put_super+0x624/0x7d0 [ 63.111997][ T3314] generic_shutdown_super+0xe3/0x210 [ 63.117279][ T3314] kill_block_super+0x2a/0x70 [ 63.121949][ T3314] ext4_kill_sb+0x42/0x80 [ 63.126271][ T3314] deactivate_locked_super+0x72/0x1c0 [ 63.131649][ T3314] deactivate_super+0x97/0xa0 [ 63.136316][ T3314] cleanup_mnt+0x269/0x2e0 [ 63.140722][ T3314] __cleanup_mnt+0x19/0x20 [ 63.145134][ T3314] task_work_run+0x12e/0x1a0 [ 63.149883][ T3314] exit_to_user_mode_loop+0xe4/0x100 [ 63.155151][ T3314] do_syscall_64+0x1d6/0x200 [ 63.159726][ T3314] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 63.165604][ T3314] [ 63.167912][ T3314] value changed: 0x1f -> 0x00 [ 63.172562][ T3314] [ 63.174866][ T3314] Reported by Kernel Concurrency Sanitizer on: [ 63.181012][ T3314] CPU: 0 UID: 0 PID: 3314 Comm: syz-executor Not tainted 6.16.0-syzkaller-11105-ga6923c06a3b2 #0 PREEMPT(voluntary) [ 63.193232][ T3314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 63.203442][ T3314] ==================================================================