last executing test programs: 3m28.649075205s ago: executing program 32 (id=530): set_mempolicy(0x8006, 0x0, 0x5) r0 = syz_open_dev$tty1(0xc, 0x4, 0x4) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000001900)={0x2, {0xc, 0xa00, 0x2000, 0x80, 0x100}}) 3m18.790802914s ago: executing program 5 (id=1773): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x23, &(0x7f00000000c0)=0x1, 0x4) getsockopt$SO_TIMESTAMP(r0, 0x1, 0x23, 0x0, &(0x7f0000000040)) 3m18.770898816s ago: executing program 5 (id=1776): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x6, &(0x7f0000000000)=0x9, 0x8, 0x0) remap_file_pages(&(0x7f00005fd000/0x4000)=nil, 0x4000, 0x0, 0x5, 0x800) 3m18.367372778s ago: executing program 5 (id=1793): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@RTM_NEWMDB={0x38, 0x54, 0x1e5, 0x0, 0x0, {0x7, r1}, [@MDBA_SET_ENTRY={0x20, 0x1, {r1, 0x1, 0x1, 0x2, {@ip4=@private=0xa010101, 0x800}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40020c4}, 0x0) 3m18.345740049s ago: executing program 5 (id=1794): syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000280)='./file0\x00', 0x2000000, &(0x7f0000000880)={[{@fat=@dos1xfloppy}, {@fat=@umask}, {@fat=@check_normal}, {@nodots}, {@fat=@umask={'umask', 0x3d, 0x6}}, {@nodots}]}, 0x1, 0x25d, &(0x7f0000000300)="$eJzs3TFrE2EYB/CnTdrGLnYWhwMXp6BOrkEqiAEhcoNOBqpLK8J1OZ3uYzj4CfxIfoxO3U7MezSptHWwyaW53w/C+5B/As+F8L4Z3jf34eHn46Mvp5/qX99jMMiiH1HVdcRBbEcvkq1m3J7Vu7GoCgDgrplMpqO2e+B/9W5Mi2I03YmIvflTP9KQ/1xyYwAAAAAAAAAAACzJVfv/49z+fwDYZPb/b76iGE33m99vl9n/DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALTnvK7v1zc82u4PALh91n8A6B7rPwB0j/UfALrn7bv3r0fj8eEkywYRZ1WZl3kaU/7y1fjwSTZzMH/XWXkv713kT1OeLeZlvhP7Tf7synw3Hj9K+Z/sxZtxFnVjlu/F0co+BQAAAAAAAAAAAAAAAAAAAGjXMLtw6Xx/2ZzvHw6vy1O18P8Af53v78eD/souAwAAAAAAAAAAAAAAAAAAAO6006/fjqcnJx8LxcYU8Xwt2lh1EfHv12w1X/t16XmNi+tmjGp1kxMAAAAAAAAAAAAAAAAAAHTM/NBv250AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQHvm9/9fXhERVZ20fbkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADABvsdAAD//9+WoAE=") syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x28600, 0x0, 0xbe, 0x0, &(0x7f00000007c0)) rename(&(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='./bus\x00') 3m18.304480403s ago: executing program 5 (id=1798): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20) statx(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x2000, 0xffff4a9c0080ffff, &(0x7f0000000240)) 3m18.241967848s ago: executing program 5 (id=1802): r0 = socket(0x10, 0x3, 0x0) sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480d0000", 0x17}], 0x1}, 0x404c080) write(r0, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000000d0000000000000008000f0001000000", 0x24) 3m3.191907321s ago: executing program 33 (id=1802): r0 = socket(0x10, 0x3, 0x0) sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480d0000", 0x17}], 0x1}, 0x404c080) write(r0, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000000d0000000000000008000f0001000000", 0x24) 2m38.95056547s ago: executing program 0 (id=3816): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000300)=0x8) getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000140)=@assoc_value={r1, 0x1}, &(0x7f0000000180)=0x8) 2m38.929819912s ago: executing program 0 (id=3817): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x18) prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) 2m38.080234129s ago: executing program 0 (id=3866): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f00000001c0)='GPL\x00'}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r0}, 0x10) clock_nanosleep(0x9, 0x0, &(0x7f0000000080)={0x0, 0x3938700}, 0x0) 2m37.992595587s ago: executing program 0 (id=3878): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000040), 0x10) sendmsg$netlink(r0, &(0x7f0000005d80)={0x0, 0x0, &(0x7f0000005cc0)=[{&(0x7f0000000180)=ANY=[], 0x28}, {0x0, 0x10}], 0x2, 0x0, 0x0, 0x44011}, 0x40830) 2m37.903143494s ago: executing program 0 (id=3883): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0xa0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000280)=0x10) mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x800, 0x40) 2m37.902817144s ago: executing program 0 (id=3885): r0 = socket(0x2, 0x3, 0xff) setsockopt$sock_int(r0, 0x1, 0x5, &(0x7f0000000180)=0x5, 0x4) sendmmsg$inet(r0, &(0x7f0000002780)=[{{&(0x7f0000000040)={0x2, 0x4e24, @loopback}, 0x10, 0x0}}], 0x1, 0x48d0) 2m22.904227513s ago: executing program 34 (id=3885): r0 = socket(0x2, 0x3, 0xff) setsockopt$sock_int(r0, 0x1, 0x5, &(0x7f0000000180)=0x5, 0x4) sendmmsg$inet(r0, &(0x7f0000002780)=[{{&(0x7f0000000040)={0x2, 0x4e24, @loopback}, 0x10, 0x0}}], 0x1, 0x48d0) 2m3.284883062s ago: executing program 7 (id=5723): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4001, 0x0, @loopback}, 0x1c) ioctl$sock_TIOCOUTQ(r0, 0x5411, &(0x7f00000000c0)) 2m3.248970394s ago: executing program 7 (id=5727): r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000600)=@newqdisc={0x38, 0x24, 0x3fe3aa0262d8c583, 0x70bd2b, 0xe8030000, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0x9}}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x5}]}, 0x38}}, 0x0) 2m3.248655675s ago: executing program 7 (id=5728): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc680000000c0a010100000000000000000a0000070900020073797a31000000000900010073797a31000000003c0003803800008008000340000000022c0007800a0001006c696d69740000001c0002800c00024000000000000000050c000140000000000000000414000000110001"], 0xcc}, 0x1, 0x0, 0x0, 0x24000850}, 0x40) 2m3.233797366s ago: executing program 7 (id=5729): mmap(&(0x7f0000ff4000/0xc000)=nil, 0xc000, 0x1000003, 0x20031, 0xffffffffffffffff, 0xffffe000) mbind(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x4003, &(0x7f0000000000)=0x6, 0x9, 0x2) get_mempolicy(0x0, 0x0, 0x7fffffffffffffff, &(0x7f0000ffd000/0x2000)=nil, 0x2) 2m3.172749401s ago: executing program 7 (id=5732): r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10) syz_read_part_table(0x1047, &(0x7f0000001340)="$eJzsz8GpAjEYBOAJ7O57IkhK0FJy1qt92IGC1WiTivGwWoCg8H23ITOBP3yRW0qZ0//74/I1bKfDX3Jab3Jux14tj3qrfbWqWfTaruTSppQ6ZngOx/mPIfvrJ68BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgF9xDwAA//9kAQbR") 2m2.948987678s ago: executing program 7 (id=5743): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x19, &(0x7f0000000300)=0x100000001, 0x4) poll(&(0x7f00000000c0)=[{r0, 0x8100}], 0x1, 0x6) 1m55.717085727s ago: executing program 6 (id=6107): socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff010}, {0x30, 0x0, 0x0, 0x8000}, {0x6}]}, 0x10) sendmmsg$inet(r0, &(0x7f0000000780)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40004) 1m55.693564589s ago: executing program 6 (id=6108): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a54000000060a010400000000000000000a0000010900010073797a310000000028000480240001800b000100736f636b6574000014000280080002400000001508000140000000020900020073797a32"], 0x7c}, 0x1, 0x0, 0x0, 0x4000850}, 0x20000050) 1m55.658566152s ago: executing program 6 (id=6109): r0 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0xc, &(0x7f0000000040)=@assoc_value={0x0}, &(0x7f0000000000)=0x8) setsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f00000003c0)={r1, 0xcb}, 0x8) 1m55.639185603s ago: executing program 6 (id=6110): r0 = syz_open_procfs$pagemap(0x0, &(0x7f0000001080)) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f00000001c0)={0x60, 0x0, &(0x7f0000001000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0xfffffffffffffffd, 0x0, 0x0, 0x3ff, 0x0, 0x2, 0x0, 0xe4}) 1m55.617313835s ago: executing program 6 (id=6112): r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10) mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x21c0, 0x103) 1m55.583111848s ago: executing program 6 (id=6114): socketpair(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200}) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f2, &(0x7f0000000080)) 1m47.934994689s ago: executing program 35 (id=5743): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x19, &(0x7f0000000300)=0x100000001, 0x4) poll(&(0x7f00000000c0)=[{r0, 0x8100}], 0x1, 0x6) 1m40.564624598s ago: executing program 36 (id=6114): socketpair(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'ip6_vti0\x00', 0x200}) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x89f2, &(0x7f0000000080)) 1m33.374470394s ago: executing program 2 (id=7060): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000680)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x7, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x5, 0x0, 0xb, 0x9, 0x0, 0x2, 0x2}, {0x3, 0x2, 0x3, 0xa, 0x9, 0xfe04}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x0, 0x1}, {0x3, 0x0, 0x6, 0xa, 0x9, 0xfe04, 0xe1}, {0x7, 0x1, 0xb, 0x7, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x2, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x69, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 1m33.317509428s ago: executing program 2 (id=7064): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10) getrlimit(0x4, &(0x7f00000001c0)) 1m33.271635432s ago: executing program 2 (id=7067): r0 = memfd_secret(0x0) ftruncate(r0, 0x9) ftruncate(r0, 0x51a9497) 1m33.252500993s ago: executing program 2 (id=7069): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sys_enter\x00', r0}, 0x10) fchownat(0xffffffffffffff9c, 0x0, 0xee01, 0x0, 0x1000) 1m33.233465215s ago: executing program 2 (id=7072): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x10) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0) 1m33.213924786s ago: executing program 2 (id=7074): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000600), 0xffffffffffffffff) sendmsg$WG_CMD_GET_DEVICE(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x28, r1, 0x301, 0x70bd2c, 0x25dfdbfe, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg1\x00'}]}, 0x28}, 0x1, 0xffa6, 0x0, 0x80d0}, 0x20008000) 1m18.234963094s ago: executing program 37 (id=7074): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000600), 0xffffffffffffffff) sendmsg$WG_CMD_GET_DEVICE(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x28, r1, 0x301, 0x70bd2c, 0x25dfdbfe, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg1\x00'}]}, 0x28}, 0x1, 0xffa6, 0x0, 0x80d0}, 0x20008000) 806.003015ms ago: executing program 3 (id=12187): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x12, 0x8031, 0xffffffffffffffff, 0x6a855000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) getgid() 434.320255ms ago: executing program 1 (id=12206): perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x10000, 0x8, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)={0x14, r1, 0x705, 0x70bd2b, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x40008d0}, 0x0) 391.418458ms ago: executing program 8 (id=12209): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x6c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x18) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd020f4c0c8c56147d66527da307bf731fef97861750379585e5a076d839240d29c034055b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622003b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3665f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd7130856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014f51c3c975d5aec84222fff0d7216fdb0d3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff2c91018afc9ffc2cc788bee1b47683db01a469398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa447c2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae486aca54183fb01c73f979ca9857399537f5dc2acb72e7ead0509d380578673f8b6e74ce23877a6b24db0000000000000003629fbef2461c96a088a22e8b15c3e233db7ab22e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d7b90dfae158b94f50adab988dd8e12b1b56073d0d10f7067c881434af5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a331bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf77bfc95769a9294df517d90bdc01e73835efd98ad5a3e1a90800c66ee2b1ad76dff9f9000071414c99d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b31592479ecf2392548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987591ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4e62b445c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708194cd6f496e5dee734fe7da3770845cf442d488afdc0e17000000000000000000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbe1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5646ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db0c407081c6281e2d8429a863903ca75f4c7df3ea8fc2018d07af1491ef060cd4403a099f32468f65bd06b4082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b65f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4766e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec859c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f250057931d828ec78e116ae46c4897e2795b6ff92e9a1f63a6ed8fb4f8f3a6ec4e76f8621e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce40c14089c82759106f422582b42e3e8484ea5a6ad9aa52106eafe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403f02734137ff47257f164391c673b6071b6ad0f05eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb79f5589829b6b0679b5d65a81826fc9b38f791c8f1892b51ad65a89bc84646ebf78f5d5d4804d9abb071fd711b5e7cc163b42a6510b8f5ee6747df0b560eabe0499bf1fef7c18bb9f55effa018679845c6598fb78bf1b8d9d9f04a5f6062c2bbb91952755b3f7c948268cb647d0a0bb1286480615941154a01d23734bcafe3b164474e2f2efa77850686ee4541f3e79efa63545a7ae53d5f0c40cc86473f7eb093980bd0d97bb4750128d9c519984c5f731ea259e71b2f12d67ce12e52c283e74594dfc933e625737ed231d61263721d46daf093f770357cd78fe1431aef52b4a0a933f1a5334ad03f3876fc8a8e187f80318427b4c922075cf829e3cc49d71d52137b48e1fb6b05dd1c7b251a7059f0a4b4f3431f67fc65b75c202e43816e34ff41db85bacd77b25242830b788ae1e00"/2566], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000100)="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", 0x0, 0x8, 0x60000000}, 0x1e) 357.644791ms ago: executing program 8 (id=12210): mmap(&(0x7f000000c000/0x4000)=nil, 0x4000, 0xa, 0x31, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000048000/0x1000)=nil, 0x1000, 0xb, 0x31, 0xffffffffffffffff, 0x0) futex(&(0x7f000000cffc)=0x4, 0xb, 0x4, 0x0, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000), 0x0) 357.246041ms ago: executing program 3 (id=12211): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x40, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x14, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0xa}}}, 0x68}}, 0x40880) close(0x3) 354.635532ms ago: executing program 4 (id=12212): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000008c80)=ANY=[@ANYBLOB="2c00000026000506"], 0x2c}}, 0x800) 319.741684ms ago: executing program 1 (id=12213): r0 = io_uring_setup(0x37ae, &(0x7f00000003c0)={0x0, 0x800000, 0x0, 0x2, 0x22a}) io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000740)={&(0x7f0000002000)={[{0x0, 0x0, 0x3}, {0x0}, {0x0, 0x0, 0xfffe}, {0x0}]}, 0x4}, 0x1) io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000280)={&(0x7f0000003000)={[{0x0, 0x0, 0x1}]}, 0x1, 0x2}, 0x1) io_uring_register$IORING_UNREGISTER_PBUF_RING(r0, 0x17, &(0x7f0000000780)={0x0, 0x0, 0x2}, 0x1) 319.188444ms ago: executing program 4 (id=12224): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10) faccessat2(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x7, 0x0) 318.647474ms ago: executing program 9 (id=12225): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="c0020000100063d10000000000000000fe8000000000000000000000000000bbfe8000000000000000000000000000aa0000000000000000000000003a000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc01000000000000000000000000000000000000330000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000b000000000000000000000000000000ffffffffffffffff000000000000000003000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001600000000020000000000000000000000bf010100636d61632861657329"], 0x2c0}, 0x1, 0x0, 0x0, 0x40000}, 0x4004) 299.269446ms ago: executing program 3 (id=12214): syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000001c40)={[{@dioread_nolock}, {@norecovery}, {@resgid}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@errors_remount}, {@grpid}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@grpid}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}], [{@subj_user={'subj_user', 0x3d, '('}}, {@obj_user={'obj_user', 0x3d, 'uid>'}}, {@uid_gt}, {@appraise_type}]}, 0xfd, 0x588, &(0x7f0000000680)="$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") openat(0xffffffffffffff9c, 0x0, 0x103042, 0x2) lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=ANY=[], 0x361, 0x0) lsetxattr$system_posix_acl(&(0x7f0000000000)='./file1\x00', &(0x7f0000000080)='system.posix_acl_access\x00', &(0x7f0000000100)={{}, {0x1, 0x2}, [{0x2, 0x5}, {0x2, 0x2}], {}, [], {0x10, 0x5}}, 0x34, 0x2) 299.093546ms ago: executing program 9 (id=12216): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) sendto$inet6(r0, &(0x7f0000000b80)="be", 0x1, 0x0, &(0x7f0000000000)={0xa, 0x4e22, 0x1, @dev={0xfe, 0x80, '\x00', 0x23}, 0x7}, 0x1c) shutdown(r0, 0x1) getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000600)={0x0, 0x7, 0x8, 0x2, 0x7, 0x42c7, 0x9, 0x0, {0x0, @in={{0x2, 0x4e21, @multicast2}}, 0x60000000, 0xf, 0x4, 0x1}}, &(0x7f00000002c0)=0xb0) 290.379837ms ago: executing program 4 (id=12217): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 279.803827ms ago: executing program 1 (id=12218): r0 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(r0, &(0x7f00000005c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000580)=0x14) sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000440)=@newlink={0x64, 0x10, 0x437, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, r1, 0x40c89}, [@IFLA_LINKINFO={0x44, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0x34, 0x2, 0x0, 0x1, [@IFLA_GRE_LINK={0x8, 0x1, r1}, @IFLA_GRE_LOCAL={0x14, 0x6, @dev={0xfe, 0x80, '\x00', 0x13}}, @IFLA_GRE_REMOTE={0x14, 0x7, @private0}]}}}]}, 0x64}, 0x1, 0x0, 0x0, 0x8000}, 0x20000000) 279.225467ms ago: executing program 8 (id=12230): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x18) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x5e, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000700000e0000000000000000000a20000000000a03000000000000000000010000000900010073797a30000000003c000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a30000000000800054000000002600000000c0a01080000000000000000010000000900020073797a32000000003400038030000080080003400000000224000b80200001800e000100636f6e6e6c696d69740000000c00028008000140000000000900010073797a30"], 0xe4}}, 0x0) 242.66126ms ago: executing program 8 (id=12219): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a000020095"], &(0x7f0000000800)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021940000000c0a01030000000000000000070000000900020073797a31000000000900010073797a3000000000680003806400dec6080003400000000258000b80200001800a00010071756f7461000000100002800c0001400000000000000000340001800a000100"], 0x118}, 0x1, 0x0, 0x0, 0x8000}, 0x0) 239.82724ms ago: executing program 1 (id=12232): sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0xfffffffc}, 0x0) ioprio_set$pid(0x2, 0x0, 0x0) r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0) sendfile(r0, r0, 0x0, 0x800000009) 167.424836ms ago: executing program 8 (id=12220): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x20048a, &(0x7f00000001c0)={[{@grpjquota}, {@noinit_itable}, {@abort}, {@bsdgroups}]}, 0x12, 0x51a, &(0x7f0000001200)="$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") unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000700)={0x0, 0x2904c, 0x7, 0x10003, '\x00', [{0x0, 0x0, 0x700, 0x7}, {0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x40000000000000}], ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}) 167.244396ms ago: executing program 1 (id=12221): bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$getregset(0x4205, r0, 0x202, &(0x7f0000000240)={&(0x7f0000000180)=""/120, 0xffffffffffffff28}) 149.237408ms ago: executing program 3 (id=12222): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'macsec0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000a00)=ANY=[@ANYBLOB="54000000100003052bbd7000249d020000000000", @ANYRES32=0x0, @ANYBLOB="1544010001800000240012800b0001006d616373656300001400028005000c0001000000080005000400000008000500", @ANYRES32=r1], 0x54}, 0x1, 0x0, 0x0, 0x2040}, 0x800) 147.293218ms ago: executing program 9 (id=12223): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_freezer_state(r0, &(0x7f0000000140), 0x2, 0x0) write$cgroup_freezer_state(r1, &(0x7f00000001c0)='FREEZING\x00', 0x9) 147.147588ms ago: executing program 4 (id=12226): ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000100)={@dev={0xfe, 0x80, '\x00', 0x4}}) r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) sendto$inet6(r0, 0x0, 0x0, 0x20000046, 0x0, 0x0) getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x3, &(0x7f0000000100)=""/222, &(0x7f0000000000)=0x61637876) 144.216178ms ago: executing program 1 (id=12227): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2000006, 0x31, 0xffffffffffffffff, 0xd0fb8000) syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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") r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0) pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3) 120.95354ms ago: executing program 9 (id=12228): newfstatat(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) setresuid(r0, r0, r0) pipe(&(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x100004) 104.393701ms ago: executing program 3 (id=12229): r0 = syz_open_dev$sg(&(0x7f00000002c0), 0xe6, 0x4a602) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x380000f, 0x11, r0, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000240)={'tunl0\x00', &(0x7f0000000180)={'sit0\x00', 0x0, 0x80, 0x1, 0x4, 0x1, {{0x5, 0x4, 0x3, 0x2, 0x14, 0x68, 0x0, 0x0, 0x4, 0x0, @multicast1, @multicast1}}}}) move_pages(0x0, 0x20a0, &(0x7f0000000040), &(0x7f0000001180), &(0x7f0000000000), 0x0) 95.622232ms ago: executing program 4 (id=12231): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xcc, 0xc}, 0x50) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x15, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000080850000008200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_GET_PROG_INFO(0xa, &(0x7f00000021c0)={r2, 0x0, 0x0}, 0x10) 67.630104ms ago: executing program 9 (id=12233): openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.stat\x00', 0x275a, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) getsockopt$inet_buf(r0, 0x0, 0x30, 0x0, &(0x7f0000000100)) 67.171384ms ago: executing program 4 (id=12243): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000800000000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000010000000850000000f00000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x18) r1 = syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) tgkill(r1, r1, 0x21) 898.489µs ago: executing program 8 (id=12234): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) sendto$inet6(r0, &(0x7f0000000b80)="be", 0x1, 0x0, &(0x7f0000000000)={0xa, 0x4e22, 0x1, @dev={0xfe, 0x80, '\x00', 0x23}, 0x7}, 0x1c) shutdown(r0, 0x1) getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000600)={0x0, 0x7, 0x8, 0x2, 0x7, 0x42c7, 0x9, 0x0, {0x0, @in={{0x2, 0x4e21, @multicast2}}, 0x60000000, 0xf, 0x4, 0x1}}, &(0x7f00000002c0)=0xb0) 460.489µs ago: executing program 3 (id=12235): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 0s ago: executing program 9 (id=12236): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_EXPR={0x20, 0x11, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0xfffff274}]}}}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) syz_emit_ethernet(0xf5f, &(0x7f0000001380)={@broadcast, @empty, @void, {@ipv6={0x86dd, @generic={0xf, 0x6, "d3b6af", 0xf29, 0x11, 0x1, @private2, @local, {[@srh={0x87, 0x0, 0x4, 0x0, 0xf, 0x28, 0x8}], "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"}}}}}, 0x0) kernel console output (not intermixed with test programs): ] audit: type=1326 audit(437.744:2664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23925 comm="syz.9.9254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25952aebe9 code=0x7ffc0000 [ 208.646981][T23931] EXT4-fs: Ignoring removed nobh option [ 208.652943][T23931] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 208.664485][T23931] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 208.687070][T23931] JBD2: no valid journal superblock found [ 208.692985][T23939] loop3: detected capacity change from 0 to 2048 [ 208.700422][T23931] EXT4-fs (loop4): Could not load journal inode [ 208.811813][T23967] loop4: detected capacity change from 0 to 1764 [ 208.870974][ T3321] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters [ 208.894833][ T3321] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 208.907684][ T3321] EXT4-fs (loop3): This should not happen!! Data will be lost [ 208.907684][ T3321] [ 208.917992][ T3321] EXT4-fs (loop3): Total free blocks count 0 [ 208.924024][ T3321] EXT4-fs (loop3): Free/Dirty block details [ 208.930509][ T3321] EXT4-fs (loop3): free_blocks=4096 [ 208.935707][ T3321] EXT4-fs (loop3): dirty_blocks=992 [ 208.941545][ T3321] EXT4-fs (loop3): Block reservation details [ 208.947510][ T3321] EXT4-fs (loop3): i_reserved_data_blocks=62 [ 208.967717][ T3321] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 960 with error 28 [ 208.972403][T23983] loop1: detected capacity change from 0 to 1024 [ 208.980739][ T3321] EXT4-fs (loop3): This should not happen!! Data will be lost [ 208.980739][ T3321] [ 209.014383][T23983] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 209.025930][T23983] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 209.044189][T23983] JBD2: no valid journal superblock found [ 209.050656][T23983] EXT4-fs (loop1): Could not load journal inode [ 209.081429][T24001] netlink: 24 bytes leftover after parsing attributes in process `syz.3.9290'. [ 209.113095][T24001] vlan2: entered promiscuous mode [ 209.118140][T24001] bridge0: entered promiscuous mode [ 209.597213][T24103] loop1: detected capacity change from 0 to 512 [ 209.599956][T24105] loop4: detected capacity change from 0 to 512 [ 209.652065][T24103] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 209.856092][T24126] loop1: detected capacity change from 0 to 512 [ 209.867385][T24122] loop4: detected capacity change from 0 to 8192 [ 209.872481][T24126] EXT4-fs: Ignoring removed mblk_io_submit option [ 209.900985][T24126] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 209.954641][T24126] EXT4-fs (loop1): 1 truncate cleaned up [ 210.424534][T24179] loop3: detected capacity change from 0 to 512 [ 210.586737][T24204] sd 0:0:1:0: device reset [ 211.049001][T24252] loop9: detected capacity change from 0 to 1024 [ 211.098615][T24252] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 211.150899][T24252] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28 [ 211.163198][T24252] EXT4-fs (loop9): This should not happen!! Data will be lost [ 211.163198][T24252] [ 211.172846][T24252] EXT4-fs (loop9): Total free blocks count 0 [ 211.178812][T24252] EXT4-fs (loop9): Free/Dirty block details [ 211.185343][T24252] EXT4-fs (loop9): free_blocks=20480 [ 211.190705][T24252] EXT4-fs (loop9): dirty_blocks=16 [ 211.195798][T24252] EXT4-fs (loop9): Block reservation details [ 211.201769][T24252] EXT4-fs (loop9): i_reserved_data_blocks=1 [ 211.370970][T24296] loop1: detected capacity change from 0 to 1024 [ 211.404875][T24296] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 211.426720][T24296] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28 [ 211.439711][T24296] EXT4-fs (loop1): This should not happen!! Data will be lost [ 211.439711][T24296] [ 211.449435][T24296] EXT4-fs (loop1): Total free blocks count 0 [ 211.455435][T24296] EXT4-fs (loop1): Free/Dirty block details [ 211.461328][T24296] EXT4-fs (loop1): free_blocks=20480 [ 211.466602][T24296] EXT4-fs (loop1): dirty_blocks=16 [ 211.472378][T24296] EXT4-fs (loop1): Block reservation details [ 211.478358][T24296] EXT4-fs (loop1): i_reserved_data_blocks=1 [ 211.863169][T24328] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9407'. [ 211.990805][T24346] netlink: 8 bytes leftover after parsing attributes in process `syz.8.9417'. [ 212.014144][T24348] loop9: detected capacity change from 0 to 256 [ 212.038579][T24348] FAT-fs (loop9): Directory bread(block 1285) failed [ 212.050946][T24348] FAT-fs (loop9): Directory bread(block 1285) failed [ 212.074178][T24348] FAT-fs (loop9): Directory bread(block 1285) failed [ 212.091290][T24348] FAT-fs (loop9): Directory bread(block 1285) failed [ 212.141674][T24368] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9427'. [ 212.258129][T24394] loop9: detected capacity change from 0 to 512 [ 212.268938][T24396] loop8: detected capacity change from 0 to 1024 [ 212.285031][T24396] EXT4-fs error (device loop8): ext4_map_blocks:814: inode #15: comm syz.8.9440: lblock 0 mapped to illegal pblock 0 (length 1) [ 212.299661][T24394] EXT4-fs error (device loop9): ext4_xattr_block_get:593: inode #12: comm syz.9.9439: corrupted xattr block 6: invalid header [ 212.340790][T24396] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 212.353874][T24396] EXT4-fs (loop8): This should not happen!! Data will be lost [ 212.353874][T24396] [ 212.367685][T24394] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop9 ino=12 [ 212.376900][T24394] EXT4-fs error (device loop9): ext4_xattr_block_get:593: inode #12: comm syz.9.9439: corrupted xattr block 6: invalid header [ 212.391115][T24396] EXT4-fs error (device loop8): ext4_ext_remove_space:2955: inode #15: comm syz.8.9440: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0) [ 212.409833][T24394] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop9 ino=12 [ 212.421428][T24396] EXT4-fs error (device loop8) in ext4_setattr:6071: Corrupt filesystem [ 212.429846][T24394] EXT4-fs error (device loop9): ext4_xattr_block_find:1869: inode #12: comm syz.9.9439: corrupted xattr block 6: invalid header [ 212.542058][T24426] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9451'. [ 212.551011][T24426] netlink: 12 bytes leftover after parsing attributes in process `syz.1.9451'. [ 212.571173][T24430] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9453'. [ 212.697938][T24445] netlink: 'syz.8.9459': attribute type 21 has an invalid length. [ 212.844045][T24469] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9467'. [ 212.896202][T24477] program syz.3.9472 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 212.905719][T24477] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 213.215559][T24499] netlink: 8 bytes leftover after parsing attributes in process `syz.4.9482'. [ 213.344094][ T29] kauditd_printk_skb: 57 callbacks suppressed [ 213.344127][ T29] audit: type=1326 audit(442.514:2722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24503 comm="syz.3.9484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fcea8725ba7 code=0x7ffc0000 [ 213.414047][ T29] audit: type=1326 audit(442.554:2723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24503 comm="syz.3.9484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fcea86cadd9 code=0x7ffc0000 [ 213.437482][ T29] audit: type=1326 audit(442.554:2724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24503 comm="syz.3.9484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fcea8725ba7 code=0x7ffc0000 [ 213.460993][ T29] audit: type=1326 audit(442.554:2725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24503 comm="syz.3.9484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fcea86cadd9 code=0x7ffc0000 [ 213.483815][ T29] audit: type=1326 audit(442.554:2726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24503 comm="syz.3.9484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 213.506689][ T29] audit: type=1326 audit(442.554:2727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24503 comm="syz.3.9484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 213.530139][ T29] audit: type=1326 audit(442.554:2728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24503 comm="syz.3.9484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=318 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 213.553076][ T29] audit: type=1326 audit(442.554:2729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24503 comm="syz.3.9484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 213.575937][ T29] audit: type=1326 audit(442.554:2730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24503 comm="syz.3.9484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 213.603520][ T29] audit: type=1400 audit(442.774:2731): avc: denied { mount } for pid=24507 comm="syz.1.9486" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 213.751557][T24524] netdevsim netdevsim3: Firmware load for 'nel/address_bits0/../file0' refused, path contains '..' component [ 213.849233][T24535] loop1: detected capacity change from 0 to 512 [ 213.893599][T24535] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.9496: corrupted inode contents [ 213.938582][T24535] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #2: comm syz.1.9496: mark_inode_dirty error [ 213.960452][T24535] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #2: comm syz.1.9496: corrupted inode contents [ 214.017710][T24535] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #2: comm syz.1.9496: mark_inode_dirty error [ 214.370829][T24595] netlink: 228 bytes leftover after parsing attributes in process `syz.3.9535'. [ 214.403146][T24601] loop9: detected capacity change from 0 to 512 [ 214.418480][T24601] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 214.456068][T24601] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ee018, mo2=0002] [ 214.468921][T24601] System zones: 1-12 [ 214.473474][T24601] EXT4-fs (loop9): 1 truncate cleaned up [ 214.622422][T24633] loop9: detected capacity change from 0 to 1024 [ 214.627689][T24632] loop3: detected capacity change from 0 to 512 [ 214.649107][T24633] EXT4-fs error (device loop9): ext4_map_blocks:814: inode #15: comm syz.9.9541: lblock 0 mapped to illegal pblock 0 (length 1) [ 214.711730][ T23] kernel write not supported for file bpf-prog (pid: 23 comm: kworker/1:0) [ 214.738976][T24632] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #12: comm syz.3.9540: corrupted xattr block 6: invalid header [ 214.739019][T24633] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 214.739043][T24633] EXT4-fs (loop9): This should not happen!! Data will be lost [ 214.739043][T24633] [ 214.739282][T24649] EXT4-fs error (device loop9): ext4_ext_remove_space:2955: inode #15: comm syz.9.9541: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0) [ 214.801349][T24632] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=12 [ 214.817711][T24649] EXT4-fs error (device loop9) in ext4_setattr:6071: Corrupt filesystem [ 214.828796][T24632] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #12: comm syz.3.9540: corrupted xattr block 6: invalid header [ 214.848153][T24656] loop8: detected capacity change from 0 to 128 [ 214.859074][T24656] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002] [ 214.867282][T24632] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=12 [ 214.870206][T24654] netlink: 32 bytes leftover after parsing attributes in process `syz.4.9549'. [ 214.884585][T24632] EXT4-fs error (device loop3): ext4_xattr_block_find:1869: inode #12: comm syz.3.9540: corrupted xattr block 6: invalid header [ 214.889422][T24656] System zones: 1-3, 19-19, 35-36 [ 214.924526][T24656] EXT4-fs warning (device loop8): ext4_group_add:1736: No reserved GDT blocks, can't resize [ 215.404478][T24680] netdevsim netdevsim8: Firmware load for 'nel/address_bits0/../file0' refused, path contains '..' component [ 215.512384][T24689] loop8: detected capacity change from 0 to 512 [ 215.535273][T24689] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #2: comm syz.8.9575: corrupted inode contents [ 215.568161][T24689] EXT4-fs error (device loop8): ext4_dirty_inode:6538: inode #2: comm syz.8.9575: mark_inode_dirty error [ 215.598493][T24689] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #2: comm syz.8.9575: corrupted inode contents [ 215.615150][T24689] EXT4-fs error (device loop8): __ext4_ext_dirty:206: inode #2: comm syz.8.9575: mark_inode_dirty error [ 215.630279][T24707] netlink: 224 bytes leftover after parsing attributes in process `syz.9.9572'. [ 215.640250][T24704] netlink: 404 bytes leftover after parsing attributes in process `syz.3.9570'. [ 215.691062][T24709] loop1: detected capacity change from 0 to 1024 [ 215.737078][T24718] loop8: detected capacity change from 0 to 1024 [ 215.744591][T24709] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: comm syz.1.9573: lblock 0 mapped to illegal pblock 0 (length 1) [ 215.759273][T24718] EXT4-fs: Ignoring removed orlov option [ 215.760655][T24709] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 215.777559][T24709] EXT4-fs (loop1): This should not happen!! Data will be lost [ 215.777559][T24709] [ 215.817480][T24724] random: crng reseeded on system resumption [ 215.825651][T24725] netlink: 'syz.3.9579': attribute type 5 has an invalid length. [ 215.837842][T24727] loop8: detected capacity change from 0 to 512 [ 215.874135][T24709] EXT4-fs error (device loop1): ext4_ext_remove_space:2955: inode #15: comm syz.1.9573: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0) [ 215.901612][T24727] EXT4-fs error (device loop8): ext4_xattr_block_get:593: inode #12: comm syz.8.9578: corrupted xattr block 6: invalid header [ 215.955088][T24709] EXT4-fs error (device loop1) in ext4_setattr:6071: Corrupt filesystem [ 215.977671][T24727] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop8 ino=12 [ 215.996155][T24737] loop3: detected capacity change from 0 to 512 [ 216.006935][T24727] EXT4-fs error (device loop8): ext4_xattr_block_get:593: inode #12: comm syz.8.9578: corrupted xattr block 6: invalid header [ 216.013266][T24741] netlink: 228 bytes leftover after parsing attributes in process `syz.9.9586'. [ 216.043874][T24737] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #2: comm syz.3.9585: corrupted inode contents [ 216.057107][T24727] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop8 ino=12 [ 216.075002][T24727] EXT4-fs error (device loop8): ext4_xattr_block_find:1869: inode #12: comm syz.8.9578: corrupted xattr block 6: invalid header [ 216.094713][T24737] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #2: comm syz.3.9585: mark_inode_dirty error [ 216.126113][T24737] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #2: comm syz.3.9585: corrupted inode contents [ 216.152764][T24737] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.9585: mark_inode_dirty error [ 216.217769][T24757] netlink: 'syz.1.9592': attribute type 5 has an invalid length. [ 216.291375][T24768] loop1: detected capacity change from 0 to 128 [ 216.346384][T24768] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a84ec018, mo2=0002] [ 216.375627][T24768] System zones: 1-3, 19-19, 35-36 [ 216.413451][T24768] EXT4-fs warning (device loop1): ext4_group_add:1736: No reserved GDT blocks, can't resize [ 216.498558][T24791] IPVS: Error joining to the multicast group [ 216.517753][T24793] loop8: detected capacity change from 0 to 128 [ 216.560293][T24789] loop3: detected capacity change from 0 to 8192 [ 216.802318][T24820] loop8: detected capacity change from 0 to 512 [ 216.826605][T24829] loop4: detected capacity change from 0 to 512 [ 216.829606][T24820] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode [ 216.846916][T24830] netlink: 'syz.1.9625': attribute type 1 has an invalid length. [ 216.849130][T24829] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.9635: iget: bad extended attribute block 1 [ 216.871024][T24820] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ee018, mo2=0002] [ 216.879056][T24820] System zones: 1-12 [ 216.881440][T24834] netlink: 'syz.9.9636': attribute type 11 has an invalid length. [ 216.891764][T24829] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.9635: couldn't read orphan inode 15 (err -117) [ 216.903760][T24820] EXT4-fs (loop8): 1 truncate cleaned up [ 216.956227][T24840] loop9: detected capacity change from 0 to 1024 [ 216.963070][T24840] EXT4-fs: Ignoring removed orlov option [ 216.982336][T24845] loop4: detected capacity change from 0 to 512 [ 217.583627][T24897] loop9: detected capacity change from 0 to 512 [ 217.744148][T24911] __nla_validate_parse: 7 callbacks suppressed [ 217.744164][T24911] netlink: 28 bytes leftover after parsing attributes in process `syz.9.9659'. [ 217.876365][T24919] netlink: 'syz.9.9663': attribute type 1 has an invalid length. [ 218.128821][T24956] loop8: detected capacity change from 0 to 2048 [ 218.398348][T24963] loop3: detected capacity change from 0 to 32768 [ 218.429263][T24988] loop9: detected capacity change from 0 to 1024 [ 218.460857][T24988] EXT4-fs mount: 120 callbacks suppressed [ 218.460871][T24988] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 218.498842][T24988] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 218.539150][T24994] loop1: detected capacity change from 0 to 2048 [ 218.577890][T18178] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 218.591649][T24994] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 218.614481][T25009] loop9: detected capacity change from 0 to 512 [ 218.662593][T25009] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 218.665493][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 218.685337][T25009] EXT4-fs error (device loop9): ext4_do_update_inode:5653: inode #4: comm syz.9.9700: corrupted inode contents [ 218.706729][T25009] EXT4-fs error (device loop9): ext4_dirty_inode:6538: inode #4: comm syz.9.9700: mark_inode_dirty error [ 218.720188][T25009] EXT4-fs error (device loop9): ext4_do_update_inode:5653: inode #4: comm syz.9.9700: corrupted inode contents [ 218.741176][T25009] EXT4-fs error (device loop9): __ext4_ext_dirty:206: inode #4: comm syz.9.9700: mark_inode_dirty error [ 218.757192][T25031] netlink: 4 bytes leftover after parsing attributes in process `syz.8.9712'. [ 218.766636][T25031] netlink: 4 bytes leftover after parsing attributes in process `syz.8.9712'. [ 218.775939][T25009] __quota_error: 39 callbacks suppressed [ 218.776023][T25009] Quota error (device loop9): write_blk: dquota write failed [ 218.789112][T25009] Quota error (device loop9): qtree_write_dquot: Error -117 occurred while creating quota [ 218.799045][T25009] EXT4-fs error (device loop9): ext4_acquire_dquot:6933: comm syz.9.9700: Failed to acquire dquot type 1 [ 218.821102][T25032] EXT4-fs error (device loop9): ext4_do_update_inode:5653: inode #4: comm syz.9.9700: corrupted inode contents [ 218.833596][T25032] EXT4-fs error (device loop9): ext4_dirty_inode:6538: inode #4: comm syz.9.9700: mark_inode_dirty error [ 218.846612][T25032] EXT4-fs error (device loop9): ext4_do_update_inode:5653: inode #4: comm syz.9.9700: corrupted inode contents [ 218.859133][T25032] EXT4-fs error (device loop9): __ext4_ext_dirty:206: inode #4: comm syz.9.9700: mark_inode_dirty error [ 218.872291][T25032] Quota error (device loop9): write_blk: dquota write failed [ 218.879715][T25032] Quota error (device loop9): find_free_dqentry: Can't write quota data block 5 [ 218.889036][T25032] Quota error (device loop9): qtree_write_dquot: Error -117 occurred while creating quota [ 218.910399][T25032] EXT4-fs error (device loop9): ext4_acquire_dquot:6933: comm syz.9.9700: Failed to acquire dquot type 1 [ 218.990253][T25047] netdevsim netdevsim8 netdevsim0: entered allmulticast mode [ 219.009928][T18178] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 219.043754][T25049] loop8: detected capacity change from 0 to 512 [ 219.058671][T25049] journal_path: Non-blockdev passed as './bus' [ 219.064869][T25049] EXT4-fs: error: could not find journal device path [ 219.091634][T25055] loop4: detected capacity change from 0 to 512 [ 219.103135][T25055] ext3: Unknown parameter '"' [ 219.161037][ T29] audit: type=1326 audit(448.334:2771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25064 comm="syz.4.9728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc453fbebe9 code=0x7ffc0000 [ 219.189797][ T29] audit: type=1326 audit(448.334:2772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25064 comm="syz.4.9728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc453fbebe9 code=0x7ffc0000 [ 219.212775][ T29] audit: type=1326 audit(448.354:2773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25064 comm="syz.4.9728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=37 compat=0 ip=0x7fc453fbebe9 code=0x7ffc0000 [ 219.235555][ T29] audit: type=1326 audit(448.354:2774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25064 comm="syz.4.9728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc453fbebe9 code=0x7ffc0000 [ 219.258460][ T29] audit: type=1326 audit(448.354:2775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25064 comm="syz.4.9728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc453fbebe9 code=0x7ffc0000 [ 219.282162][T25070] netlink: 12 bytes leftover after parsing attributes in process `syz.8.9730'. [ 219.292284][T25075] IPv6: Can't replace route, no match found [ 219.345296][T25088] loop3: detected capacity change from 0 to 512 [ 219.351947][T25088] ext3: Unknown parameter '"' [ 219.518848][T25122] random: crng reseeded on system resumption [ 219.555025][ T3586] hid_parser_main: 73 callbacks suppressed [ 219.555042][ T3586] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 219.568279][ T3586] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 219.575750][ T3586] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 219.583155][ T3586] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 219.590700][ T3586] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 219.598276][ T3586] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 219.605678][ T3586] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 219.613391][ T3586] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 219.620953][ T3586] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 219.628320][ T3586] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 219.639385][ T3586] hid-generic 0000:0000:0000.0005: hidraw0: HID v0.00 Device [syz0] on syz1 [ 219.773510][T25148] netlink: 8 bytes leftover after parsing attributes in process `syz.8.9768'. [ 219.782590][T25148] netlink: 4 bytes leftover after parsing attributes in process `syz.8.9768'. [ 219.934492][T25160] netlink: 4 bytes leftover after parsing attributes in process `syz.4.9770'. [ 219.957987][T25164] vhci_hcd vhci_hcd.0: pdev(8) rhport(0) sockfd(5) [ 219.964505][T25164] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 219.972085][T25164] vhci_hcd vhci_hcd.0: Device attached [ 219.980196][T25165] vhci_hcd: connection closed [ 219.989355][T25160] netlink: 4 bytes leftover after parsing attributes in process `syz.4.9770'. [ 219.989383][T24051] vhci_hcd: stop threads [ 220.007200][T24051] vhci_hcd: release socket [ 220.012269][T24051] vhci_hcd: disconnect device [ 220.085152][T25182] IPv6: Can't replace route, no match found [ 220.169075][T25200] loop1: detected capacity change from 0 to 512 [ 220.192340][T25200] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 220.216553][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 220.255238][T25213] IPv6: Can't replace route, no match found [ 220.478335][T25234] netlink: 8 bytes leftover after parsing attributes in process `syz.9.9806'. [ 220.487295][T25234] netlink: 4 bytes leftover after parsing attributes in process `syz.9.9806'. [ 220.535076][T25241] IPv6: Can't replace route, no match found [ 220.694768][ T1043] hid-generic 0000:0000:0000.0006: hidraw0: HID v0.00 Device [syz0] on syz1 [ 220.790979][T25250] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 220.800336][T25250] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 220.811825][T25276] loop8: detected capacity change from 0 to 512 [ 220.818855][T25276] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 220.832245][T25276] EXT4-fs error (device loop8): ext4_get_branch:178: inode #11: block 4294967295: comm syz.8.9826: invalid block [ 220.844620][T25276] EXT4-fs error (device loop8): ext4_free_branches:1023: inode #11: comm syz.8.9826: invalid indirect mapped block 4294967295 (level 1) [ 220.860838][T25276] EXT4-fs error (device loop8): ext4_free_branches:1023: inode #11: comm syz.8.9826: invalid indirect mapped block 4294967295 (level 1) [ 220.875291][T25276] EXT4-fs (loop8): 2 truncates cleaned up [ 220.882357][T25276] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 220.905138][T17513] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 220.959825][T25293] loop8: detected capacity change from 0 to 128 [ 221.157999][T25324] netdevsim netdevsim3 netdevsim0: entered allmulticast mode [ 221.304715][T25355] loop4: detected capacity change from 0 to 512 [ 221.339038][T25355] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 221.388987][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 221.414261][T25378] loop9: detected capacity change from 0 to 512 [ 221.445345][T25378] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 221.495175][T18178] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 221.673256][T25420] sctp: [Deprecated]: syz.3.9890 (pid 25420) Use of struct sctp_assoc_value in delayed_ack socket option. [ 221.673256][T25420] Use struct sctp_sack_info instead [ 221.865547][T25443] loop9: detected capacity change from 0 to 512 [ 221.891002][T25443] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 221.924788][T25443] EXT4-fs error (device loop9): ext4_get_branch:178: inode #11: block 4294967295: comm syz.9.9900: invalid block [ 221.955273][T25443] EXT4-fs error (device loop9): ext4_free_branches:1023: inode #11: comm syz.9.9900: invalid indirect mapped block 4294967295 (level 1) [ 221.983789][T25443] EXT4-fs error (device loop9): ext4_free_branches:1023: inode #11: comm syz.9.9900: invalid indirect mapped block 4294967295 (level 1) [ 222.022184][T25443] EXT4-fs (loop9): 2 truncates cleaned up [ 222.028237][T25443] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 222.151336][T18178] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 222.238161][T25464] loop8: detected capacity change from 0 to 512 [ 222.262533][T25464] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 222.277919][T25464] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #4: comm syz.8.9910: corrupted inode contents [ 222.291582][T25464] EXT4-fs error (device loop8): ext4_dirty_inode:6538: inode #4: comm syz.8.9910: mark_inode_dirty error [ 222.303269][T25464] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #4: comm syz.8.9910: corrupted inode contents [ 222.316536][T25464] EXT4-fs error (device loop8): __ext4_ext_dirty:206: inode #4: comm syz.8.9910: mark_inode_dirty error [ 222.328052][T25464] EXT4-fs error (device loop8): ext4_acquire_dquot:6933: comm syz.8.9910: Failed to acquire dquot type 1 [ 222.349276][T25469] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #4: comm syz.8.9910: corrupted inode contents [ 222.374663][T25469] EXT4-fs error (device loop8): ext4_dirty_inode:6538: inode #4: comm syz.8.9910: mark_inode_dirty error [ 222.386378][T25469] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #4: comm syz.8.9910: corrupted inode contents [ 222.401385][T25469] EXT4-fs error (device loop8): __ext4_ext_dirty:206: inode #4: comm syz.8.9910: mark_inode_dirty error [ 222.419160][T25469] EXT4-fs error (device loop8): ext4_acquire_dquot:6933: comm syz.8.9910: Failed to acquire dquot type 1 [ 222.450771][T17513] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 222.572958][T25500] openvswitch: netlink: Message has 6 unknown bytes. [ 222.614033][T25504] loop4: detected capacity change from 0 to 512 [ 222.661016][T25504] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 222.699649][T25504] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #4: comm syz.4.9926: corrupted inode contents [ 222.747496][T25504] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #4: comm syz.4.9926: mark_inode_dirty error [ 222.804261][T25504] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #4: comm syz.4.9926: corrupted inode contents [ 222.849561][T25504] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #4: comm syz.4.9926: mark_inode_dirty error [ 222.879563][T25504] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.9926: Failed to acquire dquot type 1 [ 222.902667][T25535] loop1: detected capacity change from 0 to 512 [ 222.919281][T25525] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #4: comm syz.4.9926: corrupted inode contents [ 222.941241][T25535] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 222.949851][T25525] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #4: comm syz.4.9926: mark_inode_dirty error [ 222.975105][T25538] openvswitch: netlink: Message has 6 unknown bytes. [ 222.982477][T25525] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #4: comm syz.4.9926: corrupted inode contents [ 222.996813][T25535] EXT4-fs error (device loop1): ext4_get_branch:178: inode #11: block 4294967295: comm syz.1.9941: invalid block [ 223.020987][T25525] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #4: comm syz.4.9926: mark_inode_dirty error [ 223.042689][T25525] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.9926: Failed to acquire dquot type 1 [ 223.059383][T25535] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.9941: invalid indirect mapped block 4294967295 (level 1) [ 223.081873][T25535] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.9941: invalid indirect mapped block 4294967295 (level 1) [ 223.101756][T25542] __nla_validate_parse: 12 callbacks suppressed [ 223.101819][T25542] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9943'. [ 223.127864][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.137416][T25535] EXT4-fs (loop1): 2 truncates cleaned up [ 223.150037][T25542] netlink: 32 bytes leftover after parsing attributes in process `syz.3.9943'. [ 223.159840][T25535] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 223.203227][T25549] loop4: detected capacity change from 0 to 512 [ 223.213089][T25551] openvswitch: netlink: Message has 6 unknown bytes. [ 223.240529][T25549] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 223.263244][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.273618][T25558] loop9: detected capacity change from 0 to 2048 [ 223.280303][T25558] EXT4-fs: Ignoring removed mblk_io_submit option [ 223.286751][T25558] EXT4-fs: Ignoring removed bh option [ 223.300164][T25558] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 223.314491][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.342500][T18178] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.403425][T25572] netlink: 4 bytes leftover after parsing attributes in process `syz.9.9954'. [ 223.412913][T25572] netlink: 4 bytes leftover after parsing attributes in process `syz.9.9954'. [ 223.437311][T25572] netlink: 4 bytes leftover after parsing attributes in process `syz.9.9954'. [ 223.493853][T25582] loop8: detected capacity change from 0 to 1024 [ 223.506030][T25572] netlink: 4 bytes leftover after parsing attributes in process `syz.9.9954'. [ 223.515035][T25572] netlink: 4 bytes leftover after parsing attributes in process `syz.9.9954'. [ 223.525509][T25572] netlink: 4 bytes leftover after parsing attributes in process `syz.9.9954'. [ 223.582925][T25582] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 223.596967][T25572] netlink: 4 bytes leftover after parsing attributes in process `syz.9.9954'. [ 223.605864][T25572] netlink: 4 bytes leftover after parsing attributes in process `syz.9.9954'. [ 223.615966][T25582] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 223.645709][T25582] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 21 with max blocks 1 with error 28 [ 223.658174][T25582] EXT4-fs (loop8): This should not happen!! Data will be lost [ 223.658174][T25582] [ 223.668478][T25582] EXT4-fs (loop8): Total free blocks count 0 [ 223.674550][T25582] EXT4-fs (loop8): Free/Dirty block details [ 223.680459][T25582] EXT4-fs (loop8): free_blocks=4293918720 [ 223.686170][T25582] EXT4-fs (loop8): dirty_blocks=16 [ 223.691939][T25582] EXT4-fs (loop8): Block reservation details [ 223.697918][T25582] EXT4-fs (loop8): i_reserved_data_blocks=1 [ 223.710178][T25609] loop9: detected capacity change from 0 to 512 [ 223.731180][T17513] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.751273][T25609] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 223.786873][T25609] EXT4-fs error (device loop9): ext4_do_update_inode:5653: inode #2: comm syz.9.9970: corrupted inode contents [ 223.798916][T25609] EXT4-fs error (device loop9): ext4_dirty_inode:6538: inode #2: comm syz.9.9970: mark_inode_dirty error [ 223.811143][T25609] EXT4-fs error (device loop9): ext4_do_update_inode:5653: inode #2: comm syz.9.9970: corrupted inode contents [ 223.835239][T25609] EXT4-fs error (device loop9): __ext4_ext_dirty:206: inode #2: comm syz.9.9970: mark_inode_dirty error [ 223.847030][ T29] kauditd_printk_skb: 88 callbacks suppressed [ 223.847042][ T29] audit: type=1400 audit(453.024:2854): avc: denied { read } for pid=25630 comm="syz.8.9980" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 223.900484][T18178] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.937202][ T29] audit: type=1400 audit(453.104:2855): avc: denied { read } for pid=25643 comm="syz.9.9986" path="socket:[77950]" dev="sockfs" ino=77950 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 223.980986][T25646] vxcan1 speed is unknown, defaulting to 1000 [ 224.102503][T25657] loop8: detected capacity change from 0 to 2048 [ 224.111661][T25657] EXT4-fs: Ignoring removed mblk_io_submit option [ 224.118108][T25657] EXT4-fs: Ignoring removed bh option [ 224.142168][T25657] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 224.165965][T17513] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 224.200869][ T29] audit: type=1326 audit(453.374:2856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25668 comm="syz.9.9997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25952aebe9 code=0x7ffc0000 [ 224.223846][ T29] audit: type=1326 audit(453.374:2857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25668 comm="syz.9.9997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25952aebe9 code=0x7ffc0000 [ 224.264943][ T29] audit: type=1326 audit(453.374:2858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25668 comm="syz.9.9997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7f25952aebe9 code=0x7ffc0000 [ 224.287840][ T29] audit: type=1326 audit(453.374:2859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25668 comm="syz.9.9997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25952aebe9 code=0x7ffc0000 [ 224.310839][ T29] audit: type=1326 audit(453.394:2860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25668 comm="syz.9.9997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25952aebe9 code=0x7ffc0000 [ 224.335393][ T29] audit: type=1326 audit(453.434:2861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25672 comm="syz.8.10006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71884bebe9 code=0x7ffc0000 [ 224.358371][ T29] audit: type=1326 audit(453.434:2862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25672 comm="syz.8.10006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71884bebe9 code=0x7ffc0000 [ 224.381484][ T29] audit: type=1326 audit(453.434:2863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25672 comm="syz.8.10006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f71884bebe9 code=0x7ffc0000 [ 224.484714][T25679] vxcan1 speed is unknown, defaulting to 1000 [ 224.719817][T25734] loop8: detected capacity change from 0 to 128 [ 224.729128][T25729] pim6reg: tun_chr_ioctl cmd 35108 [ 224.747558][T25734] FAT-fs (loop8): error, invalid FAT chain (i_pos 548, last_block 8) [ 224.755700][T25734] FAT-fs (loop8): Filesystem has been set read-only [ 224.766260][T25734] FAT-fs (loop8): error, corrupted file size (i_pos 548, 522) [ 224.897434][T25766] loop1: detected capacity change from 0 to 1024 [ 224.929362][T25766] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 224.964922][T25784] loop8: detected capacity change from 0 to 512 [ 224.965453][T25766] EXT4-fs (loop1): shut down requested (1) [ 224.981451][T25784] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 225.011518][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 225.031173][T17513] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 225.207949][T25821] pim6reg: tun_chr_ioctl cmd 35108 [ 225.240126][T25829] netlink: 'syz.3.10072': attribute type 4 has an invalid length. [ 225.315979][T25841] sch_fq: defrate 0 ignored. [ 225.427972][T25855] pim6reg: tun_chr_ioctl cmd 35108 [ 226.080871][T25964] loop8: detected capacity change from 0 to 512 [ 226.087793][T25964] EXT4-fs: Ignoring removed mblk_io_submit option [ 226.095906][T25964] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode [ 226.108622][T25964] EXT4-fs (loop8): 1 truncate cleaned up [ 226.115881][T25964] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 226.227593][T17513] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 226.391654][T25992] loop4: detected capacity change from 0 to 8192 [ 227.116984][T26052] loop9: detected capacity change from 0 to 128 [ 227.149769][T26054] loop9: detected capacity change from 0 to 1024 [ 227.162227][T26054] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 227.186690][T18178] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 227.258403][T26059] hub 1-0:1.0: USB hub found [ 227.271139][T26059] hub 1-0:1.0: 8 ports detected [ 227.949925][T26144] loop1: detected capacity change from 0 to 512 [ 227.956678][T26144] EXT4-fs: Ignoring removed mblk_io_submit option [ 227.968866][T26148] loop9: detected capacity change from 0 to 128 [ 227.987479][T26144] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 228.010160][T26148] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 228.029116][T26144] EXT4-fs (loop1): 1 truncate cleaned up [ 228.049145][T26144] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 228.075993][T18178] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 228.091383][T26162] 0X: renamed from caif0 [ 228.098846][T26162] 0X: entered allmulticast mode [ 228.104659][T26162] A link change request failed with some changes committed already. Interface 60X may have been left with an inconsistent configuration, please check. [ 228.198662][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 228.218110][T26177] loop3: detected capacity change from 0 to 512 [ 228.225819][T26177] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 228.238918][T26177] EXT4-fs (loop3): 1 truncate cleaned up [ 228.245614][T26174] vxcan1 speed is unknown, defaulting to 1000 [ 228.248564][T26177] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 228.282416][T20810] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 228.764291][T26193] loop4: detected capacity change from 0 to 512 [ 228.772732][T26193] EXT4-fs: Ignoring removed orlov option [ 228.778461][T26193] EXT4-fs: Ignoring removed nomblk_io_submit option [ 228.785202][T26193] ext4: Unknown parameter 'fsname' [ 228.815369][T26197] loop3: detected capacity change from 0 to 2364 [ 228.825605][T26197] iso9660: Unknown parameter 'shwassoc' [ 228.849185][T26205] loop1: detected capacity change from 0 to 128 [ 228.858603][ T29] kauditd_printk_skb: 245 callbacks suppressed [ 228.858627][ T29] audit: type=1400 audit(916.033:3109): avc: denied { mount } for pid=26204 comm="syz.1.10237" name="/" dev="loop1" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 228.896249][ T29] audit: type=1400 audit(916.063:3110): avc: denied { unmount } for pid=3301 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 228.952466][T26216] __nla_validate_parse: 14 callbacks suppressed [ 228.952478][T26216] netlink: 3 bytes leftover after parsing attributes in process `syz.1.10243'. [ 228.986556][T26216] 0X: renamed from caif0 [ 229.003672][T26216] 0X: entered allmulticast mode [ 229.008925][T26216] A link change request failed with some changes committed already. Interface 60X may have been left with an inconsistent configuration, please check. [ 229.031545][ T29] audit: type=1400 audit(916.203:3111): avc: denied { create } for pid=26225 comm="syz.8.10247" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 229.050512][ T29] audit: type=1400 audit(916.203:3112): avc: denied { bind } for pid=26225 comm="syz.8.10247" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 229.069965][ T29] audit: type=1400 audit(916.203:3113): avc: denied { write } for pid=26225 comm="syz.8.10247" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 229.088823][ T29] audit: type=1400 audit(916.203:3114): avc: denied { allowed } for pid=26228 comm="syz.9.10248" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 229.108255][ T29] audit: type=1400 audit(916.203:3115): avc: denied { create } for pid=26228 comm="syz.9.10248" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 229.173218][ T29] audit: type=1400 audit(916.323:3116): avc: denied { watch watch_reads } for pid=26231 comm="syz.3.10260" path="/438/file0" dev="tmpfs" ino=2251 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 229.196961][ T29] audit: type=1400 audit(916.343:3117): avc: denied { write } for pid=26239 comm="syz.3.10253" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 229.216306][ T29] audit: type=1400 audit(916.343:3118): avc: denied { read } for pid=26239 comm="syz.3.10253" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 229.417635][T26263] netlink: 3 bytes leftover after parsing attributes in process `syz.8.10263'. [ 229.426728][T26263] 0X: renamed from caif0 [ 229.433156][T26263] 0X: entered allmulticast mode [ 229.438387][T26263] A link change request failed with some changes committed already. Interface 60X may have been left with an inconsistent configuration, please check. [ 229.470141][T26265] netlink: 'syz.8.10265': attribute type 10 has an invalid length. [ 229.480637][T26265] team0: Device hsr_slave_0 failed to register rx_handler [ 229.506600][T26267] loop8: detected capacity change from 0 to 512 [ 229.513556][T26267] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode [ 229.525442][T26267] EXT4-fs (loop8): 1 truncate cleaned up [ 229.531682][T26267] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 229.569476][T26271] netlink: 64 bytes leftover after parsing attributes in process `syz.4.10267'. [ 229.578555][T26271] netlink: 20 bytes leftover after parsing attributes in process `syz.4.10267'. [ 229.595306][T17513] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 229.673823][T26288] loop4: detected capacity change from 0 to 128 [ 229.681235][T26288] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 229.693764][T26288] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 229.714950][T24062] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 230.247510][T26336] loop4: detected capacity change from 0 to 512 [ 230.265861][T26336] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 230.301880][T26336] EXT4-fs (loop4): 1 truncate cleaned up [ 230.318989][T26336] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 230.372994][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 230.591464][T26373] SELinux: Context system_u:object_r:traceroute_exec_t:s0 is not valid (left unmapped). [ 230.626257][T26380] loop3: detected capacity change from 0 to 512 [ 230.644836][T26380] EXT4-fs: Ignoring removed mblk_io_submit option [ 230.659359][T26380] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 230.660496][T26387] loop8: detected capacity change from 0 to 128 [ 230.688887][T26380] EXT4-fs (loop3): 1 truncate cleaned up [ 230.696257][T26380] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 230.731862][T26392] netlink: 192 bytes leftover after parsing attributes in process `syz.8.10318'. [ 230.763112][T26397] pimreg: tun_chr_ioctl cmd 1074025673 [ 230.806768][T20810] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 230.828023][T26402] netlink: 'syz.3.10323': attribute type 10 has an invalid length. [ 230.848642][T26402] team0: Device hsr_slave_0 failed to register rx_handler [ 230.886421][T26410] netlink: 4 bytes leftover after parsing attributes in process `syz.9.10327'. [ 230.942424][T26422] loop9: detected capacity change from 0 to 128 [ 230.976311][T26429] loop3: detected capacity change from 0 to 128 [ 231.006116][T26424] loop1: detected capacity change from 0 to 8192 [ 231.015098][T26424] msdos: Unknown parameter 'nosots' [ 231.015696][T26431] loop8: detected capacity change from 0 to 1024 [ 231.029051][T26433] netlink: 8 bytes leftover after parsing attributes in process `syz.9.10335'. [ 231.051822][T26431] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 231.172132][T17513] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 231.260924][T26474] vxcan1 speed is unknown, defaulting to 1000 [ 231.281928][T26481] bridge0: port 2(bridge_slave_1) entered disabled state [ 231.292847][T26485] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=26485 comm=syz.4.10358 [ 231.472876][T26513] pimreg: tun_chr_ioctl cmd 1074025673 [ 231.497389][T26516] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6) [ 231.503924][T26516] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 231.512191][T26516] vhci_hcd vhci_hcd.0: Device attached [ 231.521488][T26518] vhci_hcd: connection closed [ 231.522059][T24062] vhci_hcd: stop threads [ 231.526850][T26523] loop9: detected capacity change from 0 to 128 [ 231.531037][T24062] vhci_hcd: release socket [ 231.531202][T24062] vhci_hcd: disconnect device [ 231.605246][T26537] netlink: 192 bytes leftover after parsing attributes in process `syz.4.10382'. [ 231.636590][T26541] bridge0: port 2(bridge_slave_1) entered disabled state [ 231.694453][T26557] netlink: 8 bytes leftover after parsing attributes in process `syz.8.10390'. [ 231.730749][T26563] tun0: tun_chr_ioctl cmd 1074025677 [ 231.737185][T26563] tun0: linktype set to 774 [ 231.747652][T26567] netlink: 'syz.9.10395': attribute type 21 has an invalid length. [ 231.756181][T26567] netlink: 132 bytes leftover after parsing attributes in process `syz.9.10395'. [ 231.765365][T26567] netlink: 'syz.9.10395': attribute type 1 has an invalid length. [ 231.797738][T26572] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 231.963361][T26606] bond3: entered promiscuous mode [ 231.968420][T26606] bond3: entered allmulticast mode [ 231.974082][T26606] 8021q: adding VLAN 0 to HW filter on device bond3 [ 231.991665][T26606] bond3 (unregistering): Released all slaves [ 232.001922][T26609] loop9: detected capacity change from 0 to 1024 [ 232.014164][T26609] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 232.102399][T18178] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 232.186641][ T10] hid_parser_main: 42 callbacks suppressed [ 232.186658][ T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 232.200651][ T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 232.208110][ T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 232.235095][ T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 232.242505][ T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 232.249930][ T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 232.257337][ T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 232.265347][ T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 232.272753][ T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 232.280214][ T10] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 232.308113][ T10] hid-generic 0000:0000:0000.0007: hidraw0: HID v8.00 Device [syz1] on syz0 [ 232.463852][T26678] hsr_slave_0 (unregistering): left promiscuous mode [ 232.613193][T26708] loop4: detected capacity change from 0 to 1024 [ 232.628972][T26708] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.10462: Failed to acquire dquot type 0 [ 232.667981][T26708] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 232.689378][T26708] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.10462: corrupted inode contents [ 232.705035][T26708] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #13: comm syz.4.10462: mark_inode_dirty error [ 232.716667][T26708] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.10462: corrupted inode contents [ 232.728856][T26708] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #13: comm syz.4.10462: mark_inode_dirty error [ 232.741142][T26708] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.10462: corrupted inode contents [ 232.753297][T26708] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem [ 232.762016][T26708] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.10462: corrupted inode contents [ 232.774838][T26708] EXT4-fs error (device loop4): ext4_truncate:4666: inode #13: comm syz.4.10462: mark_inode_dirty error [ 232.786181][T26708] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem [ 232.795584][T26708] EXT4-fs (loop4): 1 truncate cleaned up [ 232.803598][T26708] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 232.833743][T26708] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 232.842067][T26727] hsr_slave_0 (unregistering): left promiscuous mode [ 232.849528][T26708] EXT4-fs: Ignoring removed orlov option [ 232.855298][T26708] EXT4-fs: Remounting file system with no journal so ignoring journalled data option [ 232.865388][T26708] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 232.875311][T26708] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended [ 232.885190][T26708] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 232.931080][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 233.021899][T26748] tun0: tun_chr_ioctl cmd 1074025677 [ 233.027409][T26748] tun0: linktype set to 774 [ 233.229608][T26798] syzkaller1: tun_chr_ioctl cmd 1074812118 [ 233.320894][T26817] tun0: tun_chr_ioctl cmd 1074025677 [ 233.329545][T26817] tun0: linktype set to 774 [ 233.345177][T26825] batadv0: entered promiscuous mode [ 233.465586][T26850] IPv6: Can't replace route, no match found [ 233.799193][T26893] loop4: detected capacity change from 0 to 1024 [ 233.810797][T26895] netlink: 'syz.3.10550': attribute type 2 has an invalid length. [ 233.819040][T26893] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 233.884773][T26893] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 15: block 369:freeing already freed block (bit 23); block bitmap corrupt. [ 233.931228][ T29] kauditd_printk_skb: 192 callbacks suppressed [ 233.931243][ T29] audit: type=1326 audit(921.103:3309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26914 comm="syz.3.10570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 233.971005][ T29] audit: type=1326 audit(921.133:3310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26914 comm="syz.3.10570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 233.994671][ T29] audit: type=1326 audit(921.133:3311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26914 comm="syz.3.10570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 234.017694][ T29] audit: type=1326 audit(921.133:3312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26914 comm="syz.3.10570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 234.041326][ T29] audit: type=1326 audit(921.133:3313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26914 comm="syz.3.10570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 234.064377][ T29] audit: type=1326 audit(921.133:3314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26914 comm="syz.3.10570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 234.087324][ T29] audit: type=1326 audit(921.133:3315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26914 comm="syz.3.10570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 234.110965][ T29] audit: type=1326 audit(921.133:3316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26914 comm="syz.3.10570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 234.133933][ T29] audit: type=1326 audit(921.133:3317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26914 comm="syz.3.10570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 234.169635][ T29] audit: type=1326 audit(921.243:3318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26915 comm="syz.9.10560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25952aebe9 code=0x7ffc0000 [ 234.196281][T26925] IPv6: Can't replace route, no match found [ 234.236702][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.278203][T26936] __nla_validate_parse: 13 callbacks suppressed [ 234.278245][T26936] netlink: 16 bytes leftover after parsing attributes in process `syz.3.10572'. [ 234.459195][T26971] loop8: detected capacity change from 0 to 1024 [ 234.484481][T26971] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 234.516824][T26985] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10590'. [ 234.526514][T26985] netlink: 36 bytes leftover after parsing attributes in process `syz.3.10590'. [ 234.580243][T17513] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.632265][T26997] loop9: detected capacity change from 0 to 512 [ 234.649152][T26997] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 234.663202][T26997] EXT4-fs (loop9): 1 truncate cleaned up [ 234.669089][T26997] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 234.707084][T18178] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.860338][T27033] loop3: detected capacity change from 0 to 512 [ 234.930142][T27043] bond1: entered promiscuous mode [ 234.935204][T27043] bond1: entered allmulticast mode [ 234.955310][T27043] 8021q: adding VLAN 0 to HW filter on device bond1 [ 234.970056][T27043] bond1 (unregistering): Released all slaves [ 234.997233][T27051] loop9: detected capacity change from 0 to 1024 [ 235.006375][T27051] EXT4-fs error (device loop9): ext4_acquire_dquot:6933: comm syz.9.10617: Failed to acquire dquot type 0 [ 235.018685][T27051] EXT4-fs error (device loop9): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 235.034629][T27051] EXT4-fs error (device loop9): ext4_do_update_inode:5653: inode #13: comm syz.9.10617: corrupted inode contents [ 235.065536][T27051] EXT4-fs error (device loop9): ext4_dirty_inode:6538: inode #13: comm syz.9.10617: mark_inode_dirty error [ 235.077077][T27051] EXT4-fs error (device loop9): ext4_do_update_inode:5653: inode #13: comm syz.9.10617: corrupted inode contents [ 235.090527][T27051] EXT4-fs error (device loop9): __ext4_ext_dirty:206: inode #13: comm syz.9.10617: mark_inode_dirty error [ 235.102040][T27051] EXT4-fs error (device loop9): ext4_do_update_inode:5653: inode #13: comm syz.9.10617: corrupted inode contents [ 235.115043][T27051] EXT4-fs error (device loop9) in ext4_orphan_del:305: Corrupt filesystem [ 235.124597][T27051] EXT4-fs error (device loop9): ext4_do_update_inode:5653: inode #13: comm syz.9.10617: corrupted inode contents [ 235.136737][T27051] EXT4-fs error (device loop9): ext4_truncate:4666: inode #13: comm syz.9.10617: mark_inode_dirty error [ 235.148176][T27051] EXT4-fs error (device loop9) in ext4_process_orphan:347: Corrupt filesystem [ 235.158947][T27051] EXT4-fs (loop9): 1 truncate cleaned up [ 235.176211][T27051] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 235.199409][T27051] EXT4-fs: Ignoring removed orlov option [ 235.205177][T27051] EXT4-fs: Remounting file system with no journal so ignoring journalled data option [ 235.209849][T27058] netlink: 12 bytes leftover after parsing attributes in process `syz.8.10631'. [ 235.215225][T27051] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 235.249555][T27051] EXT4-fs (loop9): warning: mounting fs with errors, running e2fsck is recommended [ 235.263198][T27051] EXT4-fs (loop9): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 235.312457][T27065] netlink: 16 bytes leftover after parsing attributes in process `syz.4.10622'. [ 235.505878][T27087] loop1: detected capacity change from 0 to 1024 [ 235.533015][T27091] loop4: detected capacity change from 0 to 512 [ 235.559376][T27087] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.10636: Failed to acquire dquot type 0 [ 235.581037][T27087] EXT4-fs error (device loop1): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 235.602360][T27091] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 235.635230][T27087] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #13: comm syz.1.10636: corrupted inode contents [ 235.681878][T27087] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #13: comm syz.1.10636: mark_inode_dirty error [ 235.709063][T27103] netlink: 8 bytes leftover after parsing attributes in process `syz.4.10642'. [ 235.725192][T27087] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #13: comm syz.1.10636: corrupted inode contents [ 235.740547][T27103] netlink: 36 bytes leftover after parsing attributes in process `syz.4.10642'. [ 235.753239][T27105] loop9: detected capacity change from 0 to 1024 [ 235.754677][T27087] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #13: comm syz.1.10636: mark_inode_dirty error [ 235.800676][T27087] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #13: comm syz.1.10636: corrupted inode contents [ 235.816100][T27087] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem [ 235.825478][T27087] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #13: comm syz.1.10636: corrupted inode contents [ 235.827207][T27087] EXT4-fs error (device loop1): ext4_truncate:4666: inode #13: comm syz.1.10636: mark_inode_dirty error [ 235.827381][T27105] EXT4-fs (loop9): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 235.827893][T27087] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem [ 235.829797][T27087] EXT4-fs (loop1): 1 truncate cleaned up [ 235.974928][T27133] netlink: 4 bytes leftover after parsing attributes in process `syz.8.10654'. [ 235.976032][T27087] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 235.987524][T27133] netlink: 12 bytes leftover after parsing attributes in process `syz.8.10654'. [ 236.049731][T27087] EXT4-fs: Ignoring removed orlov option [ 236.055580][T27087] EXT4-fs: Remounting file system with no journal so ignoring journalled data option [ 236.065225][T27087] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 236.080089][T27087] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended [ 236.112951][T27087] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 236.115683][T27143] vxcan1 speed is unknown, defaulting to 1000 [ 236.133085][T27152] loop4: detected capacity change from 0 to 512 [ 236.164555][T27154] loop3: detected capacity change from 0 to 1024 [ 236.187245][T27152] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 236.211452][T27152] EXT4-fs (loop4): 1 truncate cleaned up [ 236.337808][T27173] loop8: detected capacity change from 0 to 512 [ 236.360010][T27176] netlink: 16 bytes leftover after parsing attributes in process `syz.1.10671'. [ 236.506659][T27194] vxcan1 speed is unknown, defaulting to 1000 [ 236.572973][T27199] loop3: detected capacity change from 0 to 512 [ 236.593966][T27199] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 236.687117][T27208] loop4: detected capacity change from 0 to 512 [ 237.356549][T27255] syzkaller1: tun_chr_ioctl cmd 1074025677 [ 237.372608][T27255] syzkaller1: linktype set to 778 [ 238.059064][T27301] loop8: detected capacity change from 0 to 1024 [ 238.103842][T27304] tipc: Enabling of bearer rejected, failed to enable media [ 238.132065][T27301] EXT4-fs (loop8): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 238.171699][T27312] macvtap1: entered allmulticast mode [ 238.177097][T27312] bridge0: entered allmulticast mode [ 238.201553][T27312] bridge0: port 3(macvtap1) entered blocking state [ 238.208096][T27312] bridge0: port 3(macvtap1) entered disabled state [ 238.290721][T27312] bridge0: left allmulticast mode [ 238.584633][T27339] vxcan1 speed is unknown, defaulting to 1000 [ 238.877821][T27370] tipc: Enabling of bearer rejected, already enabled [ 238.968852][T27378] loop8: detected capacity change from 0 to 4096 [ 239.026782][ T29] kauditd_printk_skb: 213 callbacks suppressed [ 239.026797][ T29] audit: type=1400 audit(926.193:3528): avc: denied { map } for pid=27392 comm="syz.3.10767" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=83228 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 239.056835][ T29] audit: type=1400 audit(926.193:3529): avc: denied { read write } for pid=27392 comm="syz.3.10767" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=83228 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 239.144244][ T29] audit: type=1400 audit(926.273:3530): avc: denied { read } for pid=27377 comm="syz.8.10760" name="file1" dev="loop8" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 239.185561][ T29] audit: type=1400 audit(926.353:3531): avc: denied { execmem } for pid=27403 comm="syz.9.10772" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 239.237637][ T29] audit: type=1400 audit(926.403:3532): avc: denied { create } for pid=27409 comm="syz.1.10774" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 239.267135][ T29] audit: type=1400 audit(926.433:3533): avc: denied { getopt } for pid=27409 comm="syz.1.10774" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 239.317189][ T29] audit: type=1400 audit(926.473:3534): avc: denied { write } for pid=27412 comm="syz.3.10777" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 239.349611][ T29] audit: type=1400 audit(926.513:3535): avc: denied { validate_trans } for pid=27418 comm="syz.4.10779" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 239.383775][T27423] netlink: 'syz.4.10781': attribute type 4 has an invalid length. [ 239.442391][ T29] audit: type=1400 audit(926.613:3536): avc: denied { bind } for pid=27432 comm="syz.1.10786" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 239.495171][ T29] audit: type=1400 audit(926.633:3537): avc: denied { write } for pid=27432 comm="syz.1.10786" path="socket:[83257]" dev="sockfs" ino=83257 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 239.586560][T27447] random: crng reseeded on system resumption [ 239.605384][T27450] __nla_validate_parse: 7 callbacks suppressed [ 239.605398][T27450] netlink: 16 bytes leftover after parsing attributes in process `syz.8.10793'. [ 239.676188][T27464] loop8: detected capacity change from 0 to 128 [ 239.684405][T27462] netlink: 20 bytes leftover after parsing attributes in process `syz.1.10800'. [ 239.715859][T27462] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0 [ 239.778833][T27471] loop1: detected capacity change from 0 to 4096 [ 239.787718][T27468] netlink: 'syz.4.10803': attribute type 4 has an invalid length. [ 239.811886][T27474] bond0: (slave bond_slave_0): Error -28 calling ndo_bpf [ 239.865818][T27474] bond0: (slave bond_slave_0): Error -28 calling ndo_bpf [ 239.885284][T27474] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 240.007335][T27491] loop3: detected capacity change from 0 to 128 [ 240.059183][T27500] bridge0: entered promiscuous mode [ 240.064910][T27500] macvtap1: entered allmulticast mode [ 240.070312][T27500] bridge0: entered allmulticast mode [ 240.076876][T27500] bridge0: port 3(macvtap1) entered blocking state [ 240.083814][T27500] bridge0: port 3(macvtap1) entered disabled state [ 240.091265][T27500] bridge0: left allmulticast mode [ 240.096275][T27500] bridge0: left promiscuous mode [ 240.156581][T27510] loop4: detected capacity change from 0 to 4096 [ 240.256820][T27516] netlink: 'syz.8.10825': attribute type 4 has an invalid length. [ 240.311678][T27526] netlink: 9286 bytes leftover after parsing attributes in process `syz.3.10829'. [ 240.355159][T27529] netlink: 16 bytes leftover after parsing attributes in process `syz.9.10831'. [ 240.567361][T27565] loop3: detected capacity change from 0 to 4096 [ 240.623945][T27574] random: crng reseeded on system resumption [ 240.780443][T27591] netlink: 'syz.8.10861': attribute type 4 has an invalid length. [ 240.822184][T27593] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 240.853961][T27601] netlink: 9286 bytes leftover after parsing attributes in process `syz.8.10865'. [ 241.006684][T27621] loop8: detected capacity change from 0 to 512 [ 241.018873][T27621] EXT4-fs error (device loop8): ext4_iget_extra_inode:5104: inode #15: comm syz.8.10874: corrupted in-inode xattr: invalid ea_ino [ 241.032930][T27621] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.10874: couldn't read orphan inode 15 (err -117) [ 241.145350][T27642] netlink: 8 bytes leftover after parsing attributes in process `syz.9.10885'. [ 241.194904][T27650] loop9: detected capacity change from 0 to 512 [ 241.221536][T27650] EXT4-fs warning (device loop9): verify_group_input:137: Cannot add at group 1969368878 (only 1 groups) [ 241.252686][T27662] loop9: detected capacity change from 0 to 128 [ 241.268798][T27662] FAT-fs (loop9): error, invalid access to FAT (entry 0x00000100) [ 241.276650][T27662] FAT-fs (loop9): Filesystem has been set read-only [ 241.287034][T27662] syz.9.10892: attempt to access beyond end of device [ 241.287034][T27662] loop9: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 241.301358][T27662] FAT-fs (loop9): error, invalid access to FAT (entry 0x00000100) [ 241.309178][T27662] FAT-fs (loop9): error, invalid access to FAT (entry 0x00000100) [ 241.317477][T27662] syz.9.10892: attempt to access beyond end of device [ 241.317477][T27662] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 241.331527][T27662] syz.9.10892: attempt to access beyond end of device [ 241.331527][T27662] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 241.345622][T27667] random: crng reseeded on system resumption [ 241.355150][T27662] syz.9.10892: attempt to access beyond end of device [ 241.355150][T27662] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 241.368568][T27662] syz.9.10892: attempt to access beyond end of device [ 241.368568][T27662] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 241.382238][T27662] syz.9.10892: attempt to access beyond end of device [ 241.382238][T27662] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 241.397095][T27662] syz.9.10892: attempt to access beyond end of device [ 241.397095][T27662] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 241.410651][T27662] syz.9.10892: attempt to access beyond end of device [ 241.410651][T27662] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 241.424085][T27662] syz.9.10892: attempt to access beyond end of device [ 241.424085][T27662] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 241.437543][T27662] syz.9.10892: attempt to access beyond end of device [ 241.437543][T27662] loop9: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 241.452142][T27672] Buffer I/O error on dev loop9, logical block 2065, async page read [ 241.467015][T27672] Buffer I/O error on dev loop9, logical block 2066, async page read [ 241.475413][T27672] Buffer I/O error on dev loop9, logical block 2067, async page read [ 241.483731][T27672] Buffer I/O error on dev loop9, logical block 2068, async page read [ 241.492295][T27672] Buffer I/O error on dev loop9, logical block 2069, async page read [ 241.500662][T27672] Buffer I/O error on dev loop9, logical block 2070, async page read [ 241.508863][T27672] Buffer I/O error on dev loop9, logical block 2071, async page read [ 241.517040][T27672] Buffer I/O error on dev loop9, logical block 2072, async page read [ 241.521418][T27680] loop1: detected capacity change from 0 to 1756 [ 241.525428][T27662] Buffer I/O error on dev loop9, logical block 2065, async page read [ 241.541662][T27662] Buffer I/O error on dev loop9, logical block 2066, async page read [ 241.603825][T27686] netlink: 4172 bytes leftover after parsing attributes in process `syz.4.10904'. [ 241.727753][T27703] random: crng reseeded on system resumption [ 241.747826][T27705] loop4: detected capacity change from 0 to 512 [ 241.785252][T27705] EXT4-fs warning (device loop4): verify_group_input:137: Cannot add at group 1969368878 (only 1 groups) [ 241.838603][T27713] loop4: detected capacity change from 0 to 2048 [ 241.883070][T27713] EXT4-fs (loop4): shut down requested (1) [ 241.893459][T27713] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop4 ino=15 [ 241.924396][T27713] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop4 ino=15 [ 241.945617][T27713] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop4 ino=15 [ 242.071931][T27722] netlink: 7 bytes leftover after parsing attributes in process `syz.4.10919'. [ 242.099706][T27722] netlink: 7 bytes leftover after parsing attributes in process `syz.4.10919'. [ 242.137398][T27730] netlink: 'syz.8.10923': attribute type 13 has an invalid length. [ 242.206565][T27730] A link change request failed with some changes committed already. Interface 60X may have been left with an inconsistent configuration, please check. [ 242.241138][T27744] loop4: detected capacity change from 0 to 1024 [ 242.254511][T27738] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 242.277399][T27746] netlink: 176 bytes leftover after parsing attributes in process `syz.8.10930'. [ 242.444938][T27782] loop1: detected capacity change from 0 to 1024 [ 242.499939][T27794] loop9: detected capacity change from 0 to 2048 [ 242.530923][T27794] EXT4-fs (loop9): shut down requested (1) [ 242.540996][T27794] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop9 ino=15 [ 242.556373][T27794] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop9 ino=15 [ 242.565735][T27794] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop9 ino=15 [ 242.695904][T27836] loop8: detected capacity change from 0 to 1024 [ 242.734566][T27842] loop8: detected capacity change from 0 to 2048 [ 242.793742][T27842] EXT4-fs (loop8): shut down requested (1) [ 242.800079][T27842] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop8 ino=15 [ 242.808978][T27842] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop8 ino=15 [ 242.849317][T27842] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop8 ino=15 [ 242.938656][T27848] loop8: detected capacity change from 0 to 512 [ 242.954988][T27848] EXT4-fs warning (device loop8): verify_group_input:137: Cannot add at group 1969368878 (only 1 groups) [ 243.442346][T27864] netlink: 'syz.1.10979': attribute type 13 has an invalid length. [ 243.492117][T27864] 8021q: adding VLAN 0 to HW filter on device team0 [ 243.513194][T27864] A link change request failed with some changes committed already. Interface 60X may have been left with an inconsistent configuration, please check. [ 243.592092][T27891] program syz.3.10991 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 243.707165][T27920] program syz.8.11004 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 243.812348][T27940] loop3: detected capacity change from 0 to 256 [ 243.822158][T27940] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 243.835446][T27940] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 243.880925][T27953] loop4: detected capacity change from 0 to 256 [ 243.887828][T27952] bond0: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 243.900230][T27952] bond0: (slave ipvlan2): The slave device specified does not support setting the MAC address [ 243.912147][T27952] bond0: (slave ipvlan2): Error -95 calling set_mac_address [ 244.079121][T27978] loop1: detected capacity change from 0 to 256 [ 244.090319][T27978] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 244.095732][T27984] tap0: tun_chr_ioctl cmd 2147767520 [ 244.102448][T27978] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 244.113056][ T29] kauditd_printk_skb: 97 callbacks suppressed [ 244.113068][ T29] audit: type=1400 audit(931.273:3635): avc: denied { load_policy } for pid=27975 comm="syz.3.11031" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 244.130879][T27977] SELinux: failed to load policy [ 244.255289][ T29] audit: type=1400 audit(931.423:3636): avc: denied { append } for pid=27995 comm="syz.3.11038" name="001" dev="devtmpfs" ino=147 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 244.816725][T28013] SELinux: failed to load policy [ 244.822478][ T29] audit: type=1400 audit(931.993:3637): avc: denied { append } for pid=28016 comm="syz.4.11048" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 244.839710][T28017] program syz.4.11048 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 244.876876][T28024] syzkaller1: tun_chr_ioctl cmd 1074025672 [ 244.883376][T28024] syzkaller1: ignored: set checksum enabled [ 244.899536][ T29] audit: type=1400 audit(932.073:3638): avc: denied { setopt } for pid=28025 comm="syz.8.11053" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 244.954496][ T29] audit: type=1326 audit(932.123:3639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28031 comm="syz.8.11056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71884bebe9 code=0x7ffc0000 [ 244.978274][ T29] audit: type=1326 audit(932.123:3640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28031 comm="syz.8.11056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71884bebe9 code=0x7ffc0000 [ 245.004459][ T29] audit: type=1326 audit(932.123:3641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28031 comm="syz.8.11056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f71884bebe9 code=0x7ffc0000 [ 245.027565][ T29] audit: type=1326 audit(932.123:3642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28031 comm="syz.8.11056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71884bebe9 code=0x7ffc0000 [ 245.051203][ T29] audit: type=1326 audit(932.123:3643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28031 comm="syz.8.11056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71884bebe9 code=0x7ffc0000 [ 245.074193][ T29] audit: type=1326 audit(932.153:3644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28031 comm="syz.8.11056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f71884bebe9 code=0x7ffc0000 [ 245.187928][T28052] netlink: 'syz.4.11065': attribute type 13 has an invalid length. [ 245.202659][T28054] __nla_validate_parse: 11 callbacks suppressed [ 245.202674][T28054] netlink: 2 bytes leftover after parsing attributes in process `syz.8.11066'. [ 245.228518][T28052] 8021q: adding VLAN 0 to HW filter on device team0 [ 245.238006][T28052] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 245.318468][ T10] usb usb8-port4: attempt power cycle [ 245.337649][T28066] SELinux: failed to load policy [ 245.402092][T28083] loop8: detected capacity change from 0 to 1024 [ 245.408698][T28083] EXT4-fs: inline encryption not supported [ 245.575299][T28090] netlink: 'syz.3.11083': attribute type 13 has an invalid length. [ 245.577337][T28093] netlink: 2 bytes leftover after parsing attributes in process `syz.4.11084'. [ 245.636882][T28090] A link change request failed with some changes committed already. Interface 60X may have been left with an inconsistent configuration, please check. [ 245.696509][T28106] loop4: detected capacity change from 0 to 512 [ 245.809843][T28132] SELinux: Context system_u:object_r:usbmon_device_t:s0 is not valid (left unmapped). [ 245.873082][T28145] syzkaller1: tun_chr_ioctl cmd 1074025672 [ 245.878952][T28145] syzkaller1: ignored: set checksum enabled [ 245.958534][T28163] loop1: detected capacity change from 0 to 512 [ 245.966305][T28163] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 246.106221][T28189] program syz.3.11130 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 246.214617][T28208] loop1: detected capacity change from 0 to 2048 [ 246.240761][T28204] loop4: detected capacity change from 0 to 8192 [ 246.282918][T28214] netlink: 20 bytes leftover after parsing attributes in process `syz.4.11141'. [ 246.442876][T28237] loop3: detected capacity change from 0 to 128 [ 246.442889][T28235] loop8: detected capacity change from 0 to 512 [ 246.449724][T28235] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 246.671970][T28284] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22 [ 246.746581][T28299] netlink: 9 bytes leftover after parsing attributes in process `syz.4.11182'. [ 246.757400][T28299] gretap0: entered promiscuous mode [ 246.834827][T28307] loop4: detected capacity change from 0 to 2048 [ 246.870175][T28318] syzkaller0: tun_chr_ioctl cmd 2147767521 [ 246.946392][T28333] netlink: 20 bytes leftover after parsing attributes in process `syz.3.11197'. [ 246.970120][T28337] batman_adv: batadv0: Adding interface: ipvlan0 [ 246.976465][T28337] batman_adv: batadv0: The MTU of interface ipvlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 246.976623][T28339] loop8: detected capacity change from 0 to 512 [ 247.001933][T28337] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 247.001951][T28337] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 247.002000][T28337] batman_adv: batadv0: Interface activated: ipvlan0 [ 247.139617][ T10] usb usb8-port4: unable to enumerate USB device [ 247.146203][T27894] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 247.153641][T27894] usb usb8: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 247.161028][T27894] vhci_hcd: invalid port number 14 [ 247.166122][T27894] vhci_hcd: default hub control req: 000e v000e i000e l0 [ 247.261217][ T1043] hid_parser_main: 18 callbacks suppressed [ 247.261235][ T1043] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x4 [ 247.275927][ T1043] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x2 [ 247.292739][ T1043] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x3 [ 247.302826][ T1043] hid-generic 0000:3000000:0000.0008: hidraw0: HID v0.00 Device [sy] on syz0 [ 247.579148][T28412] loop3: detected capacity change from 0 to 1024 [ 247.585778][T28412] EXT4-fs: inline encryption not supported [ 247.591842][T28412] EXT4-fs: Ignoring removed bh option [ 247.635930][T28422] netlink: 8 bytes leftover after parsing attributes in process `syz.3.11238'. [ 247.733144][T28439] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0 [ 248.002250][T28477] loop1: detected capacity change from 0 to 1024 [ 248.011291][T28477] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 248.021736][T28477] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 248.033910][T28477] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: inode #32: comm syz.1.11263: iget: special inode unallocated [ 248.046966][T28477] EXT4-fs (loop1): no journal found [ 248.052816][T28477] EXT4-fs (loop1): can't get journal size [ 248.070101][T28477] EXT4-fs error (device loop1): ext4_protect_reserved_inode:160: inode #32: comm syz.1.11263: iget: special inode unallocated [ 248.072574][T28483] netlink: 56 bytes leftover after parsing attributes in process `syz.4.11268'. [ 248.085575][T28477] EXT4-fs (loop1): failed to initialize system zone (-117) [ 248.099952][T28477] EXT4-fs (loop1): mount failed [ 248.179262][T28501] loop4: detected capacity change from 0 to 256 [ 248.290713][T28521] batman_adv: batadv0: Adding interface: ipvlan2 [ 248.297127][T28521] batman_adv: batadv0: The MTU of interface ipvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 248.322617][T28521] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 248.333136][T28521] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 248.346709][T28521] batman_adv: batadv0: Interface activated: ipvlan2 [ 248.354151][T28526] loop1: detected capacity change from 0 to 128 [ 248.364345][T28527] 9pnet: Could not find request transport: 0xffffffffffffffff [ 248.402502][T28534] netlink: 'syz.4.11291': attribute type 1 has an invalid length. [ 248.417283][T28537] netlink: 8 bytes leftover after parsing attributes in process `syz.9.11293'. [ 248.421386][T28538] netlink: 9 bytes leftover after parsing attributes in process `syz.1.11292'. [ 248.438938][T28538] gretap0: entered promiscuous mode [ 248.455860][T28540] bpf: Bad value for 'uid' [ 248.494230][T28548] loop4: detected capacity change from 0 to 512 [ 248.503202][T28548] EXT4-fs mount: 58 callbacks suppressed [ 248.503216][T28548] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 248.536373][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 248.934851][T28559] batman_adv: batadv0: Adding interface: ipvlan3 [ 248.941228][T28559] batman_adv: batadv0: The MTU of interface ipvlan3 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 248.966576][T28559] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 248.977456][T28559] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 248.990944][T28559] batman_adv: batadv0: Interface activated: ipvlan3 [ 248.998297][T28565] netlink: 28 bytes leftover after parsing attributes in process `syz.9.11304'. [ 249.015748][T28568] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0 [ 249.039918][ T10] usb usb8-port4: attempt power cycle [ 249.048895][T28574] loop3: detected capacity change from 0 to 128 [ 249.337840][T28580] usb usb7: usbfs: process 28580 (syz.9.11312) did not claim interface 0 before use [ 249.350874][T28581] loop3: detected capacity change from 0 to 1024 [ 249.357498][T28581] EXT4-fs: Ignoring removed orlov option [ 249.365353][T28581] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 249.388103][ T29] kauditd_printk_skb: 191 callbacks suppressed [ 249.388117][ T29] audit: type=1400 audit(936.553:3836): avc: denied { write } for pid=28576 comm="syz.3.11311" name="bus" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 249.431941][ T29] audit: type=1400 audit(936.603:3837): avc: denied { read write } for pid=28588 comm="syz.9.11317" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 249.438423][T20810] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 249.454873][ T29] audit: type=1400 audit(936.603:3838): avc: denied { open } for pid=28588 comm="syz.9.11317" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 249.486626][ T29] audit: type=1400 audit(936.603:3839): avc: denied { read } for pid=28588 comm="syz.9.11317" name="mISDNtimer" dev="devtmpfs" ino=249 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 249.509157][ T29] audit: type=1400 audit(936.603:3840): avc: denied { open } for pid=28588 comm="syz.9.11317" path="/dev/mISDNtimer" dev="devtmpfs" ino=249 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 249.537923][T28595] batadv_slave_1: Device is already in use. [ 249.554610][T28599] IPVS: stopping backup sync thread 28439 ... [ 249.596769][T28607] vxcan1 speed is unknown, defaulting to 1000 [ 249.648474][T28613] loop1: detected capacity change from 0 to 1024 [ 249.672314][T28613] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 249.685835][T28613] EXT4-fs (loop1): shut down requested (2) [ 249.692320][T28613] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop1 ino=12 [ 249.702499][T28613] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop1 ino=12 [ 249.711559][ T29] audit: type=1400 audit(936.883:3841): avc: denied { rename } for pid=28612 comm="syz.1.11325" name="file0" dev="loop1" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 249.750424][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 249.800432][ T29] audit: type=1400 audit(936.963:3842): avc: denied { connect } for pid=28628 comm="syz.1.11333" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 249.819675][ T29] audit: type=1400 audit(936.963:3843): avc: denied { write } for pid=28628 comm="syz.1.11333" laddr=172.20.20.10 lport=25 faddr=172.20.20.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 249.945434][T28639] loop3: detected capacity change from 0 to 1764 [ 249.981636][ T29] audit: type=1400 audit(937.153:3844): avc: denied { read } for pid=28642 comm="syz.1.11341" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 250.090406][T28660] loop3: detected capacity change from 0 to 512 [ 250.104006][T28660] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 250.111985][T28660] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 250.120739][T28660] System zones: 0-1, 15-15, 18-18, 34-34 [ 250.126545][T28660] EXT4-fs (loop3): orphan cleanup on readonly fs [ 250.132984][ T29] audit: type=1326 audit(937.303:3845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28667 comm="syz.1.11352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7542bcebe9 code=0x7ffc0000 [ 250.133144][T28660] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 250.170962][T28660] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 250.179697][T28660] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.11349: bad orphan inode 16 [ 250.190437][T28660] ext4_test_bit(bit=15, block=18) = 1 [ 250.195829][T28660] is_bad_inode(inode)=0 [ 250.200037][T28660] NEXT_ORPHAN(inode)=0 [ 250.204102][T28660] max_ino=32 [ 250.207374][T28660] i_nlink=2 [ 250.211146][T28660] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 250.229906][T28670] loop1: detected capacity change from 0 to 164 [ 250.237033][T28670] ISOFS: unable to read i-node block [ 250.242935][T28670] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 250.253158][T20810] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 250.338749][T28676] loop3: detected capacity change from 0 to 8192 [ 250.363845][T28690] tipc: Enabling of bearer rejected, failed to enable media [ 250.420082][T28701] __nla_validate_parse: 6 callbacks suppressed [ 250.420097][T28701] netlink: 12 bytes leftover after parsing attributes in process `syz.4.11368'. [ 250.451111][T28704] netlink: 14593 bytes leftover after parsing attributes in process `syz.1.11370'. [ 250.486424][T28709] netlink: 'syz.3.11371': attribute type 21 has an invalid length. [ 250.492945][T28711] loop1: detected capacity change from 0 to 512 [ 250.494350][T28709] netlink: 20 bytes leftover after parsing attributes in process `syz.3.11371'. [ 250.500837][T28709] bond0: option lacp_rate: mode dependency failed, not supported in mode balance-rr(0) [ 250.523826][T28711] EXT4-fs: Ignoring removed oldalloc option [ 250.556235][T28711] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 250.574845][T28727] loop4: detected capacity change from 0 to 128 [ 250.575113][T28711] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.11373: bg 0: block 217: padding at end of block bitmap is not set [ 250.612064][T28727] bio_check_eod: 54720 callbacks suppressed [ 250.612077][T28727] syz.4.11380: attempt to access beyond end of device [ 250.612077][T28727] loop4: rw=2049, sector=145, nr_sectors = 3 limit=128 [ 250.660361][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 250.808088][T28760] netlink: 20 bytes leftover after parsing attributes in process `syz.1.11396'. [ 250.857405][T28765] loop1: detected capacity change from 0 to 2048 [ 250.871181][T28765] EXT4-fs (loop1): failed to initialize system zone (-117) [ 250.878820][T28767] loop4: detected capacity change from 0 to 1024 [ 250.887398][T28767] EXT4-fs: Ignoring removed bh option [ 250.887889][T28765] EXT4-fs (loop1): mount failed [ 250.893115][ T10] usb usb8-port4: unable to enumerate USB device [ 250.922548][T28767] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 250.939766][T28767] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt. [ 250.959036][T28767] EXT4-fs (loop4): Remounting filesystem read-only [ 250.980724][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 250.995012][T28777] loop8: detected capacity change from 0 to 128 [ 251.108650][T28797] netlink: 16255 bytes leftover after parsing attributes in process `syz.4.11413'. [ 251.186873][T28807] loop4: detected capacity change from 0 to 1024 [ 251.222562][T28807] EXT4-fs: inline encryption not supported [ 251.240730][T28807] EXT4-fs: Ignoring removed bh option [ 251.250875][T28819] netlink: 8 bytes leftover after parsing attributes in process `syz.9.11423'. [ 251.259911][T28819] netlink: 4 bytes leftover after parsing attributes in process `syz.9.11423'. [ 251.282787][T28807] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 251.312442][T28807] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt. [ 251.332563][T28801] loop1: detected capacity change from 0 to 32768 [ 251.338980][T28807] EXT4-fs (loop4): Remounting filesystem read-only [ 251.393056][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 251.409455][T28832] 9pnet: Could not find request transport: r [ 251.481268][T28853] (unnamed net_device) (uninitialized): option packets_per_slave: mode dependency failed, not supported in mode balance-xor(2) [ 251.485566][T28849] loop1: detected capacity change from 0 to 2048 [ 251.500918][T28851] netlink: 16 bytes leftover after parsing attributes in process `syz.3.11436'. [ 251.533842][T28861] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 251.542687][T28862] netlink: 40 bytes leftover after parsing attributes in process `syz.9.11442'. [ 251.598442][T28872] netlink: 'syz.4.11448': attribute type 16 has an invalid length. [ 251.606395][T28872] netlink: 64138 bytes leftover after parsing attributes in process `syz.4.11448'. [ 251.707100][T28899] random: crng reseeded on system resumption [ 251.877539][T28939] loop9: detected capacity change from 0 to 512 [ 251.893442][T28939] EXT4-fs: Ignoring removed nomblk_io_submit option [ 251.914633][T28939] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 251.930427][T28948] loop4: detected capacity change from 0 to 1024 [ 251.940932][T28939] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 251.956665][T28939] EXT4-fs (loop9): 1 truncate cleaned up [ 251.964378][T28939] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 251.978783][T28948] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 251.994030][T28948] EXT4-fs (loop4): shut down requested (2) [ 252.003728][T18178] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 252.014967][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 252.231285][T28991] loop3: detected capacity change from 0 to 1024 [ 252.265802][T28991] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 252.286620][T28991] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: inode #11: comm syz.3.11499: missing EA_INODE flag [ 252.343847][T28991] EXT4-fs (loop3): Remounting filesystem read-only [ 252.353646][T29011] C: renamed from team_slave_0 (while UP) [ 252.371144][T29011] netlink: 'syz.1.11511': attribute type 3 has an invalid length. [ 252.380882][T29011] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 252.396396][T20810] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 252.486392][T29030] loop1: detected capacity change from 0 to 164 [ 252.661944][T29058] loop8: detected capacity change from 0 to 2048 [ 252.678805][T29064] loop9: detected capacity change from 0 to 512 [ 252.691019][T29064] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 252.722964][T29064] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 252.736318][T29058] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 252.781768][T29064] EXT4-fs error (device loop9): ext4_acquire_dquot:6933: comm syz.9.11537: Failed to acquire dquot type 0 [ 252.834943][T18178] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 252.960164][T17513] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 253.031309][T29118] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=4 sclass=netlink_audit_socket pid=29118 comm=syz.4.11559 [ 253.203791][T29154] loop9: detected capacity change from 0 to 1024 [ 253.215043][T29157] new mount options do not match the existing superblock, will be ignored [ 253.228178][T29158] loop8: detected capacity change from 0 to 764 [ 253.245295][T29160] loop4: detected capacity change from 0 to 1024 [ 253.254158][T29154] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 253.279398][T29160] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 253.291012][T29160] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 253.317181][T29160] JBD2: no valid journal superblock found [ 253.323034][T29160] EXT4-fs (loop4): Could not load journal inode [ 253.339638][T18178] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 253.358571][T29180] loop8: detected capacity change from 0 to 512 [ 253.375132][T24031] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 253.388400][T29180] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 253.413441][T17513] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 253.516668][T29205] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 253.534513][T29205] vhci_hcd: invalid port number 253 [ 253.717798][T29242] netlink: 'syz.3.11619': attribute type 20 has an invalid length. [ 253.726394][T29242] netlink: 'syz.3.11619': attribute type 21 has an invalid length. [ 253.824867][T29264] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=29264 comm=syz.3.11627 [ 254.165919][T29305] netlink: 'syz.3.11644': attribute type 12 has an invalid length. [ 254.190134][T29306] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 254.250494][T29317] netem: change failed [ 254.475252][ T29] kauditd_printk_skb: 193 callbacks suppressed [ 254.475267][ T29] audit: type=1400 audit(254.641:4036): avc: denied { ioctl } for pid=29363 comm="syz.4.11674" path="/dev/virtual_nci" dev="devtmpfs" ino=132 ioctlcmd=0x0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 254.516757][ T29] audit: type=1400 audit(254.641:4037): avc: denied { write } for pid=29363 comm="syz.4.11674" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 254.592305][ T29] audit: type=1400 audit(254.761:4038): avc: denied { map } for pid=29385 comm="syz.4.11682" path="/dev/sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 254.615791][ T29] audit: type=1400 audit(254.761:4039): avc: denied { execute } for pid=29385 comm="syz.4.11682" path="/dev/sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 254.646188][T29388] loop9: detected capacity change from 0 to 512 [ 254.661446][ T29] audit: type=1326 audit(254.831:4040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29389 comm="syz.1.11684" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7542bcebe9 code=0x0 [ 254.685758][T29388] Quota error (device loop9): v2_read_file_info: Free block number 1 out of range (1, 6). [ 254.697471][T29388] EXT4-fs warning (device loop9): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 254.712123][ T29] audit: type=1326 audit(254.871:4041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29267 comm="syz.8.11629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71884bebe9 code=0x7fc00000 [ 254.712154][ T29] audit: type=1326 audit(254.871:4042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29267 comm="syz.8.11629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f71884bebe9 code=0x7fc00000 [ 254.712292][ T29] audit: type=1326 audit(254.871:4043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29267 comm="syz.8.11629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71884bebe9 code=0x7fc00000 [ 254.712317][ T29] audit: type=1326 audit(254.871:4044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29267 comm="syz.8.11629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f71884bebe9 code=0x7fc00000 [ 254.806389][T29388] EXT4-fs (loop9): mount failed [ 254.970873][T29435] netlink: 'syz.4.11704': attribute type 1 has an invalid length. [ 255.457189][T29523] 9pnet: Could not find request transport: f [ 255.543758][T29538] loop1: detected capacity change from 0 to 512 [ 255.563435][T29538] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 255.588925][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 255.669341][T29556] __nla_validate_parse: 27 callbacks suppressed [ 255.669400][T29556] netlink: 12 bytes leftover after parsing attributes in process `syz.4.11761'. [ 255.703919][T29560] sctp: [Deprecated]: syz.4.11763 (pid 29560) Use of int in max_burst socket option. [ 255.703919][T29560] Use struct sctp_assoc_value instead [ 255.811132][T29578] netlink: 32 bytes leftover after parsing attributes in process `syz.3.11771'. [ 255.856658][T29585] netlink: 'syz.3.11775': attribute type 4 has an invalid length. [ 255.935875][T29606] netlink: 268 bytes leftover after parsing attributes in process `syz.4.11785'. [ 255.948439][T29610] loop3: detected capacity change from 0 to 128 [ 255.983069][T29610] FAT-fs (loop3): Directory bread(block 32) failed [ 255.997858][T29610] FAT-fs (loop3): Directory bread(block 33) failed [ 256.007929][T29610] FAT-fs (loop3): Directory bread(block 34) failed [ 256.014599][T29610] FAT-fs (loop3): Directory bread(block 35) failed [ 256.030134][T29623] loop9: detected capacity change from 0 to 128 [ 256.042021][T29610] FAT-fs (loop3): Directory bread(block 36) failed [ 256.048568][T29610] FAT-fs (loop3): Directory bread(block 37) failed [ 256.056091][T29630] netlink: 'syz.4.11797': attribute type 1 has an invalid length. [ 256.066877][T29610] FAT-fs (loop3): Directory bread(block 38) failed [ 256.085705][T29610] FAT-fs (loop3): Directory bread(block 39) failed [ 256.090201][T29629] vxcan1 speed is unknown, defaulting to 1000 [ 256.104504][T29610] FAT-fs (loop3): Directory bread(block 40) failed [ 256.137194][T29610] FAT-fs (loop3): Directory bread(block 41) failed [ 256.152260][T29642] netlink: 268 bytes leftover after parsing attributes in process `syz.4.11802'. [ 256.205508][T29610] syz.3.11787: attempt to access beyond end of device [ 256.205508][T29610] loop3: rw=0, sector=4108, nr_sectors = 4 limit=128 [ 256.219263][T29610] FAT-fs (loop3): Filesystem has been set read-only [ 256.225909][T29610] FAT-fs (loop3): error, fat_free_clusters: deleting FAT entry beyond EOF [ 256.617936][T29707] loop9: detected capacity change from 0 to 7 [ 256.629941][T29707] buffer_io_error: 54710 callbacks suppressed [ 256.629953][T29707] Buffer I/O error on dev loop9, logical block 0, async page read [ 256.645148][T29707] Buffer I/O error on dev loop9, logical block 0, async page read [ 256.653511][T29707] loop9: unable to read partition table [ 256.659442][T29707] loop_reread_partitions: partition scan of loop9 (被xڬdGݡ [ 256.659442][T29707] ) failed (rc=-5) [ 256.698612][T29711] loop3: detected capacity change from 0 to 1024 [ 256.707177][T29711] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22 [ 256.738526][T29711] SELinux: security_context_str_to_sid (-Xܘ7.H\ %u@) failed with errno=-22 [ 256.851235][T29735] loop9: detected capacity change from 0 to 1024 [ 256.870736][T29735] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 256.901579][T18178] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 256.914079][T29743] netlink: 'syz.8.11850': attribute type 1 has an invalid length. [ 256.943314][T29747] netlink: 28 bytes leftover after parsing attributes in process `syz.8.11851'. [ 256.952509][T29747] netlink: 108 bytes leftover after parsing attributes in process `syz.8.11851'. [ 256.961910][T29747] netlink: 28 bytes leftover after parsing attributes in process `syz.8.11851'. [ 256.971361][T29747] netlink: 108 bytes leftover after parsing attributes in process `syz.8.11851'. [ 256.980524][T29747] netlink: 84 bytes leftover after parsing attributes in process `syz.8.11851'. [ 257.074293][T29757] SELinux: policydb version 0 does not match my version range 15-35 [ 257.109350][T29757] SELinux: failed to load policy [ 257.209347][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 257.234300][T29775] loop9: detected capacity change from 0 to 1024 [ 257.266873][T29775] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 257.281050][T29775] EXT4-fs (loop9): shut down requested (2) [ 257.287234][T29775] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop9 ino=12 [ 257.298432][T29775] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop9 ino=12 [ 257.318910][T18178] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 257.567841][T29810] loop8: detected capacity change from 0 to 164 [ 257.583418][T29810] ISOFS: unable to read i-node block [ 257.588740][T29810] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 257.633024][T29817] netlink: 8 bytes leftover after parsing attributes in process `syz.9.11881'. [ 257.681970][T29828] tipc: Enabling of bearer rejected, failed to enable media [ 257.957775][T29879] tipc: Enabling of bearer rejected, failed to enable media [ 258.113895][T29899] loop9: detected capacity change from 0 to 128 [ 258.143868][T29899] syz.9.11921: attempt to access beyond end of device [ 258.143868][T29899] loop9: rw=2049, sector=145, nr_sectors = 3 limit=128 [ 258.222457][T29907] loop4: detected capacity change from 0 to 8192 [ 258.254508][T29919] tipc: Enabling of bearer rejected, failed to enable media [ 258.358156][T29936] loop1: detected capacity change from 0 to 1024 [ 258.365320][T29936] EXT4-fs: Ignoring removed bh option [ 258.381943][T29936] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 258.402420][T29936] EXT4-fs error (device loop1): mb_free_blocks:2017: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt. [ 258.419439][T29936] EXT4-fs (loop1): Remounting filesystem read-only [ 258.463409][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 258.557142][T29960] loop9: detected capacity change from 0 to 8192 [ 258.882270][T29979] loop9: detected capacity change from 0 to 2048 [ 258.977968][T29995] loop1: detected capacity change from 0 to 128 [ 259.002567][T29995] syz.1.11969: attempt to access beyond end of device [ 259.002567][T29995] loop1: rw=2049, sector=145, nr_sectors = 3 limit=128 [ 259.020975][T29994] loop4: detected capacity change from 0 to 2048 [ 259.061981][T29994] EXT4-fs (loop4): failed to initialize system zone (-117) [ 259.069253][T29994] EXT4-fs (loop4): mount failed [ 259.128847][T29978] loop3: detected capacity change from 0 to 32768 [ 259.237370][T30031] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 259.293005][T30044] loop8: detected capacity change from 0 to 128 [ 259.326258][T30044] syz.8.11987: attempt to access beyond end of device [ 259.326258][T30044] loop8: rw=2049, sector=145, nr_sectors = 3 limit=128 [ 259.327702][T30046] loop9: detected capacity change from 0 to 2048 [ 259.381799][T30046] EXT4-fs (loop9): failed to initialize system zone (-117) [ 259.392729][T30062] (unnamed net_device) (uninitialized): option packets_per_slave: mode dependency failed, not supported in mode balance-xor(2) [ 259.408791][T30046] EXT4-fs (loop9): mount failed [ 259.461345][T30066] loop8: detected capacity change from 0 to 2048 [ 259.538190][T30081] loop9: detected capacity change from 0 to 1024 [ 259.553163][ T29] kauditd_printk_skb: 285 callbacks suppressed [ 259.553215][ T29] audit: type=1326 audit(259.720:4330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30083 comm="syz.3.12007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 259.558117][T30081] EXT4-fs: inline encryption not supported [ 259.568765][ T29] audit: type=1326 audit(259.730:4331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30083 comm="syz.3.12007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 259.611771][T30081] EXT4-fs: Ignoring removed bh option [ 259.611764][ T29] audit: type=1326 audit(259.730:4332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30083 comm="syz.3.12007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 259.617481][T30059] loop4: detected capacity change from 0 to 32768 [ 259.643480][ T29] audit: type=1326 audit(259.810:4333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30083 comm="syz.3.12007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 259.670433][ T29] audit: type=1326 audit(259.810:4334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30083 comm="syz.3.12007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 259.694174][ T29] audit: type=1326 audit(259.870:4335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30083 comm="syz.3.12007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 259.717726][ T29] audit: type=1326 audit(259.870:4336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30083 comm="syz.3.12007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 259.741515][ T29] audit: type=1326 audit(259.870:4337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30083 comm="syz.3.12007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=232 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 259.764525][ T29] audit: type=1326 audit(259.870:4338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30083 comm="syz.3.12007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 259.776285][T30094] loop8: detected capacity change from 0 to 1024 [ 259.788079][ T29] audit: type=1326 audit(259.870:4339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30083 comm="syz.3.12007" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcea872ebe9 code=0x7ffc0000 [ 259.795794][T30081] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 259.840050][T30094] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 259.859661][T30094] EXT4-fs (loop8): shut down requested (2) [ 259.880916][T17513] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 259.940632][T30081] EXT4-fs error (device loop9): mb_free_blocks:2017: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt. [ 259.963018][T30081] EXT4-fs (loop9): Remounting filesystem read-only [ 260.006792][T18178] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 260.056373][T30125] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 260.322232][T30135] loop8: detected capacity change from 0 to 32768 [ 260.338001][T30152] random: crng reseeded on system resumption [ 260.372490][T30157] loop4: detected capacity change from 0 to 1024 [ 260.441292][T30157] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 260.494734][T30157] EXT4-fs error (device loop4): ext4_xattr_inode_iget:437: inode #11: comm syz.4.12041: missing EA_INODE flag [ 260.495596][T30172] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 260.561382][T30157] EXT4-fs (loop4): Remounting filesystem read-only [ 260.581620][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 260.755288][T30226] loop4: detected capacity change from 0 to 2048 [ 260.772657][T30226] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 260.791873][T30229] loop1: detected capacity change from 0 to 512 [ 260.824303][T30229] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 260.867554][T30229] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 260.919070][T30229] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.12074: Failed to acquire dquot type 0 [ 260.972014][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 260.987790][T30247] C: renamed from team_slave_0 (while UP) [ 261.009137][T30247] netlink: 'syz.9.12080': attribute type 3 has an invalid length. [ 261.017017][T30247] __nla_validate_parse: 7 callbacks suppressed [ 261.017050][T30247] netlink: 144 bytes leftover after parsing attributes in process `syz.9.12080'. [ 261.018253][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 261.018702][T30247] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 261.104122][T30263] netlink: 48 bytes leftover after parsing attributes in process `syz.8.12089'. [ 261.178648][T30276] loop9: detected capacity change from 0 to 1024 [ 261.194458][T30283] netlink: 268 bytes leftover after parsing attributes in process `syz.4.12098'. [ 261.223673][T30276] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 261.269647][T30276] EXT4-fs error (device loop9): ext4_xattr_inode_iget:437: inode #11: comm syz.9.12095: missing EA_INODE flag [ 261.296664][T30276] EXT4-fs (loop9): Remounting filesystem read-only [ 261.300805][T30302] loop8: detected capacity change from 0 to 164 [ 261.345557][T18178] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 261.361908][T30311] loop1: detected capacity change from 0 to 1024 [ 261.376393][T30311] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 261.387919][T30311] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 261.408685][T30311] JBD2: no valid journal superblock found [ 261.415002][T30311] EXT4-fs (loop1): Could not load journal inode [ 261.415507][T30319] netlink: 28 bytes leftover after parsing attributes in process `syz.9.12109'. [ 261.456091][T30317] loop3: detected capacity change from 0 to 764 [ 261.556034][T30342] netlink: 256 bytes leftover after parsing attributes in process `syz.1.12127'. [ 261.585073][T30348] loop4: detected capacity change from 0 to 1024 [ 261.616592][T30348] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 261.666095][T24031] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 261.676936][T30362] netlink: 16 bytes leftover after parsing attributes in process `syz.1.12141'. [ 261.697895][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 261.742103][T30366] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=4 sclass=netlink_audit_socket pid=30366 comm=syz.8.12145 [ 261.755194][T30368] netlink: 8 bytes leftover after parsing attributes in process `syz.1.12134'. [ 261.780087][T30370] netlink: 28 bytes leftover after parsing attributes in process `syz.4.12135'. [ 261.881686][T30387] loop3: detected capacity change from 0 to 512 [ 261.893718][T30387] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 261.933497][T30387] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 262.005743][T30408] netlink: 8 bytes leftover after parsing attributes in process `syz.4.12152'. [ 262.073600][T30387] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.12144: Failed to acquire dquot type 0 [ 262.113185][T30426] netlink: 8 bytes leftover after parsing attributes in process `syz.9.12169'. [ 262.165708][T20810] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 262.298208][T30456] loop3: detected capacity change from 0 to 2048 [ 262.320197][T30460] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 262.322416][T30456] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 262.472937][T30481] loop9: detected capacity change from 0 to 512 [ 262.488369][T20810] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 262.510072][T30481] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 262.546077][T30487] loop1: detected capacity change from 0 to 764 [ 262.558615][T18178] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 262.654803][T30495] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 262.677078][T30495] vhci_hcd: invalid port number 253 [ 262.698755][T30507] loop4: detected capacity change from 0 to 512 [ 262.733950][T30507] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 262.773747][T30507] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 262.829834][T30507] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.12195: Failed to acquire dquot type 0 [ 262.866584][ T3299] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 263.022961][T24106] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 263.038876][T30562] loop3: detected capacity change from 0 to 1024 [ 263.061697][T30562] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 263.097605][T20810] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 263.129066][T30578] loop8: detected capacity change from 0 to 512 [ 263.137192][T30578] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 263.160844][T30582] loop1: detected capacity change from 0 to 2048 [ 263.172019][T30578] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 263.210396][T30582] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 263.229039][T30578] EXT4-fs error (device loop8): ext4_acquire_dquot:6933: comm syz.8.12220: Failed to acquire dquot type 0 [ 263.287829][T17513] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 263.302136][T30582] ================================================================== [ 263.310225][T30582] BUG: KCSAN: data-race in __xa_clear_mark / xas_find_marked [ 263.317597][T30582] [ 263.319901][T30582] read-write to 0xffff8881073506c0 of 8 bytes by task 24051 on cpu 0: [ 263.328031][T30582] __xa_clear_mark+0xf5/0x1e0 [ 263.332700][T30582] __folio_end_writeback+0x177/0x470 [ 263.337974][T30582] folio_end_writeback+0x71/0x3d0 [ 263.342990][T30582] ext4_finish_bio+0x459/0x8c0 [ 263.347745][T30582] ext4_release_io_end+0x9f/0x1f0 [ 263.352761][T30582] ext4_end_io_end+0x18d/0x240 [ 263.357521][T30582] ext4_end_io_rsv_work+0x151/0x1e0 [ 263.362717][T30582] process_scheduled_works+0x4cb/0x9d0 [ 263.368181][T30582] worker_thread+0x582/0x770 [ 263.372771][T30582] kthread+0x489/0x510 [ 263.376824][T30582] ret_from_fork+0xda/0x150 [ 263.381310][T30582] ret_from_fork_asm+0x1a/0x30 [ 263.386063][T30582] [ 263.388371][T30582] read to 0xffff8881073506c0 of 8 bytes by task 30582 on cpu 1: [ 263.395982][T30582] xas_find_marked+0x218/0x620 [ 263.400737][T30582] find_get_entry+0x5d/0x380 [ 263.405332][T30582] filemap_get_folios_tag+0x13b/0x210 [ 263.410689][T30582] file_write_and_wait_range+0x1ea/0x2c0 [ 263.416317][T30582] generic_buffers_fsync_noflush+0x45/0x120 [ 263.422199][T30582] ext4_sync_file+0x1ab/0x690 [ 263.426877][T30582] vfs_fsync_range+0x10d/0x130 [ 263.431630][T30582] ext4_buffered_write_iter+0x34f/0x3c0 [ 263.437168][T30582] ext4_file_write_iter+0xdbf/0xf00 [ 263.442363][T30582] do_iter_readv_writev+0x49c/0x540 [ 263.447551][T30582] vfs_writev+0x2df/0x8b0 [ 263.451873][T30582] __se_sys_pwritev2+0xfc/0x1c0 [ 263.456715][T30582] __x64_sys_pwritev2+0x67/0x80 [ 263.461558][T30582] x64_sys_call+0x2c55/0x2ff0 [ 263.466220][T30582] do_syscall_64+0xd2/0x200 [ 263.470713][T30582] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 263.476592][T30582] [ 263.478898][T30582] value changed: 0xffe0000000000000 -> 0xfe00000000000000 [ 263.485982][T30582] [ 263.488286][T30582] Reported by Kernel Concurrency Sanitizer on: [ 263.494417][T30582] CPU: 1 UID: 0 PID: 30582 Comm: syz.1.12227 Not tainted 6.17.0-rc1-syzkaller-00004-g53e760d89498 #0 PREEMPT(voluntary) [ 263.506990][T30582] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 263.517143][T30582] ================================================================== [ 263.590447][ T3301] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 264.409466][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 265.929334][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 266.809376][ C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!