last executing test programs: 51.048986707s ago: executing program 3 (id=52): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x3, 0x2, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8, 0x7}, 0x0, 0x10000, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = syz_open_dev$usbfs(&(0x7f0000000180), 0x204, 0x2581) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x80, 0xf, 0x0, 0x0, 0x7995}, 0x10007, 0x0, 0x0, 0x48000000, 0x0, 0x40000000, 0x0}) 50.903860147s ago: executing program 3 (id=60): syz_read_part_table(0x59d, &(0x7f0000000000)="$eJzs0r1Ls1cYB+CTwEsoVCIiONhBMLg0KsRBh2SwEtMsRsSKFGfBQQfBwUFSorMf/4DiF4iL2NlRjCAKcZKM4lxQXDKltD6FtnZpiyl9ua4lnHPf59w5/J7A/1o8/NRsNmMhhGbi75/+7jQ/XuyZHJ2aDiEW5kII+a++/LUSizp+u/U8WpeidTGRqe3fjL2ctt/23ldTh/GofhEP4YcQwuLjUfLfvo3P31nuKrm+sVzYXM0tPBTWnobm+/PdW/mlneGDbHmmKzsbfVgX8dbMT9VGju+apefdtoFP1Vojcx31pWMfM5//1p/z3+us1CuNib6TlcF0R/2yvB3l/ip/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgg53lrpLrG8uFzdXcwkNh7Wlovj/fvZVf2hk+yJZnurKz8be+i3hr5qdqI8d3zdLzbtvAp2qtkbmO+tKxd0e/+fFj/hIt9HX4Y/57nZV6pTHRd7IymO6oX5a3o9xf3+cPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPCX8uPFnsnRqekQYmEuhPDt/fe9v+w3E2/1WNR3Hv2Wov1iIlPbvxl7OW2/7b2vpg4nEyEkfnfv4uNR8otWPoR/5OcAAAD//2wlhu4=") r0 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00') r1 = openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff) close(r1) 50.742113947s ago: executing program 3 (id=65): r0 = getpid() r1 = perf_event_open(&(0x7f0000001100)={0x5, 0x80, 0x9, 0x8, 0xb, 0xfb, 0x0, 0x3c, 0xc002, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x18842, 0x0, 0x7fffffff, 0x2, 0x3cd, 0x3, 0x7, 0x0, 0x0, 0x0, 0x7}, r0, 0x0, 0xffffffffffffffff, 0x2) syz_clone(0x41064400, 0x0, 0x0, 0x0, 0x0, 0x0) close(r1) 50.453670546s ago: executing program 3 (id=71): syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000001240)='./file0\x00', 0x2004000, &(0x7f0000000040)=ANY=[@ANYRES64=0x0], 0xfe, 0x1227, &(0x7f00000024c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) syz_clone(0xc0400, 0x0, 0xfffffffffffffca8, 0x0, 0x0, 0x0) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0xc0185879, &(0x7f0000001740)={@desc={0x1, 0x0, @desc2}}) 50.380279121s ago: executing program 3 (id=72): syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f00000001c0)='./file0\x00', 0x4c0, &(0x7f00000029c0)=ANY=[@ANYBLOB='session=0x0000000000000043,dmode=0x0000000000000006,map=acorn,mode=0x0000000000000007,sbsector=0x0000000004008001,check=strict,check=relaxed,overriderockperm,sbsector=0x0000000000000000,utf8,sbsector=0x0000000000000000,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c7362736563746f723d3078303030303030303030303030303030332c686964652c6769643d6fcfd9bbb83ea2da0b3bdde67d4afb69235336bd2e00000000000000100e0d7f75a3e03ce54119c4992224af29f853bce4aca191f148f30708d72b47b71648508f7bc62d8797e2498c686370511071e7aa762d4a01bd68d3ba1c195a732d93d5eaa25eabfa180f82f5435a100b5c0fe5dd289873127578f6314c9a2d3013d2cc64affbccde695695aecddd024a02c1eb54483c000000000000000000c5be8f1c72e09630555342a1067eeb8b662684ac7d0a05c92eb256afba056e5e0cfb38ac780d633e67ec1845f23b5e63ce9a80c80e7a5532f2b64c58dbb4884b3086c29f0cd4ff0952f8a145e4e3b66a515bb6b794b84487d64bbe5c3f62cd740fea3161b8291104dd33c09f1e467d24a69d30a4b61cf3257d1bf3fd104ab25639b9fdb5eb08eb4a907b08702a1ea0a197ed2b292a18cffb8c9bfa25de90e8bff4", @ANYRESHEX, @ANYRES64], 0x2, 0x976, &(0x7f0000000980)="$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") r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='mountinfo\x00') r1 = socket$inet6_udp(0xa, 0x2, 0x0) sendfile(r1, r0, 0x0, 0x80000000) 49.94508982s ago: executing program 3 (id=85): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10) mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1) mount(&(0x7f00000001c0)=@filename='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000001200)='vfat\x00', 0x0, 0x0) 49.94495811s ago: executing program 32 (id=85): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10) mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1) mount(&(0x7f00000001c0)=@filename='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000001200)='vfat\x00', 0x0, 0x0) 1.270124287s ago: executing program 1 (id=1925): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x21c91c, &(0x7f0000000900)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2000000}}, {@noblock_validity}, {@mblk_io_submit}, {@jqfmt_vfsold}, {@nodelalloc}, {@nomblk_io_submit}, {@usrjquota}, {@minixdf}, {@resgid, 0x32}]}, 0x1e, 0x4ea, &(0x7f00000009c0)="$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") 958.536377ms ago: executing program 1 (id=1945): mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000380)='devtmpfs\x00', 0x4000, 0x0) open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0) umount2(&(0x7f0000000040)='./file0\x00', 0x8) 736.632302ms ago: executing program 1 (id=1942): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10) semget$private(0x0, 0x6, 0x0) 669.461646ms ago: executing program 1 (id=1944): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff9}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000050000000000000000000024000a20000000000a1f000000000000000000010000000900010073797a300000000058000000030a0104000000000000000001000000090003803d2175fbe782c2002c00048008000240172af2e40800014000000003080002401c791e7108000240423930ce08000140000000030900010073797a300000000088000000060a010400000000000000000100000008000b400000000014000480100001800b0001006e756d67656e00000900010073797a30000000004c00048048000180080001"], 0x122}}, 0x4008090) 509.942957ms ago: executing program 4 (id=1950): mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net\x00') getdents64(r0, &(0x7f0000003080)=""/4096, 0x1000) getdents(r0, 0x0, 0x0) 486.223798ms ago: executing program 0 (id=1951): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x2}, 0x18) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000400000004"], 0x48) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000006c0)={{r1}, &(0x7f0000000580), &(0x7f00000005c0)='%ps \x00'}, 0x20) 433.933011ms ago: executing program 1 (id=1954): r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x2002) ioctl$EVIOCGRAB(r0, 0x40044590, &(0x7f0000000140)=0x5) readv(r0, &(0x7f00000000c0)=[{&(0x7f0000001000)=""/4096, 0x1000}], 0x1) write$evdev(r0, &(0x7f0000000040)=[{{}, 0x0, 0x2}], 0x37) 433.534561ms ago: executing program 0 (id=1955): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18) r1 = socket$unix(0x1, 0x1, 0x0) connect$unix(r1, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) 424.543123ms ago: executing program 4 (id=1956): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1, 0x0, 0xff}, 0x18) pidfd_send_signal(0xffffffffffffffff, 0x36, 0x0, 0x0) 400.727444ms ago: executing program 0 (id=1959): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0, 0x0, 0x15}, 0x18) mlock2(&(0x7f0000495000/0x2000)=nil, 0x2000, 0x0) 386.708675ms ago: executing program 4 (id=1960): r0 = socket$key(0xf, 0x3, 0x2) recvmmsg(r0, &(0x7f0000000440), 0x6f5, 0x2000000022, &(0x7f0000000480)={0x77359400}) setsockopt$sock_int(r0, 0x1, 0x4b, &(0x7f0000000040)=0xfd87, 0x4) sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0216000002"], 0x10}}, 0x0) 371.195836ms ago: executing program 1 (id=1961): r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x3214, 0x0) syz_usb_disconnect(r0) syz_usb_connect(0x4, 0x24, &(0x7f0000000400)=ANY=[], 0x0) ioctl$EVIOCRMFF(r0, 0x40085507, &(0x7f0000000080)=0x7fffd) 351.959867ms ago: executing program 0 (id=1962): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) mmap(&(0x7f0000002000/0x4000)=nil, 0x4000, 0xedc623580215bdcd, 0x12, r1, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000010000b7080000000000007b8af8ff00000000b7080000000000107b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r0, @ANYBLOB="0000000002000000b705000008000000850000005d00000095"], &(0x7f00000001c0)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94) 331.304579ms ago: executing program 5 (id=1963): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)=ANY=[@ANYBLOB="140100002800010004000000f8dbdf2503"], 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x300) 321.664259ms ago: executing program 0 (id=1964): bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file1\x00', 0x200000, &(0x7f0000000040)={[{@grpquota}]}, 0x1, 0xbaf, &(0x7f0000002f00)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x42, 0x0) pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000) 261.238263ms ago: executing program 4 (id=1966): r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4) sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2c00000012003b77"], 0x4c}}, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c0000005200010001000000fcdbdf250a00000008000100", @ANYRES32=r0], 0x1c}, 0x1, 0x0, 0x0, 0x20044050}, 0x20000000) 261.002873ms ago: executing program 2 (id=1967): setuid(0xee01) r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = syz_pidfd_open(r0, 0x0) setns(r1, 0x16000000) 260.867633ms ago: executing program 4 (id=1968): prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='gtp\x00') r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d000000180100002020732600000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x2}, 0x18) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x18, 0x7, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000e50003000000000085100000fcffffff250000001000000006000000faffffff95"], &(0x7f0000000140)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000}, 0x94) 224.192706ms ago: executing program 4 (id=1969): r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c) recvmmsg(r0, &(0x7f0000000440)=[{{0x0, 0x0, 0x0}, 0x2}], 0x1, 0x1, 0x0) sendmmsg(r0, &(0x7f00000092c0), 0x4ff, 0x0) 223.808185ms ago: executing program 5 (id=1979): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1d, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x4, 0x40, 0x7fff0000}]}) bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYRESDEC=r0, @ANYRES32=0x1], 0x50) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) ioctl$SECCOMP_IOCTL_NOTIF_SEND(r0, 0xc0182101, &(0x7f0000000100)={0x0, 0x7fffffffffffffff, 0x3}) 215.933936ms ago: executing program 2 (id=1970): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1, 0x0, 0xff}, 0x18) pidfd_send_signal(0xffffffffffffffff, 0x36, 0x0, 0x0) 203.287587ms ago: executing program 5 (id=1971): r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x1, 0x2002) ioctl$EVIOCGRAB(r0, 0x40044590, &(0x7f0000000140)=0x5) readv(r0, &(0x7f00000000c0)=[{&(0x7f0000001000)=""/4096, 0x1000}], 0x1) write$evdev(r0, &(0x7f0000000040)=[{{}, 0x0, 0x2}], 0x37) 186.719668ms ago: executing program 2 (id=1972): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000b00), 0x1, 0x55f, &(0x7f0000000580)="$eJzs3d9rU+cbAPDnpK2/v18riGxjjIIXczhT2+6Hg124y7HJhO3ehfZYpKmRJhXbCdOLebObIYMxJozdb/e7lP0D+yuETZAhZbvYTcZJT2q0SRNrtNF8PnDkfXNO+p4n73le35M3IQEMrYnsn0LEyxHxTRJxMCKSfN9o5Dsn1o9bu391NtuSqNc//StpHJfVm3+r+bz9eeWliPjtq4jjhc3tVldWF0rlcrqU1ydri5cmqyurJy4slubT+fTi9MzMqbdnpt97952+xfrG2X++/+T2h6e+Prr23S93D91M4nQcyPe1xvEErrVWJmIif03G4vQjB071obFBkuz0CbAtI3mej0U2BhyMkTzrgRfflxFRB4ZUIv9hSDXnAc17+z7dBz837n2wfgO0Of7R9fdGYk/j3mjfWvLQnVF2vzveh/azNn7989bNbIv+vQ8B0NW16xFxcnR08/iX5OPf9p3s4ZhH2zD+wbNzO5v/vNlu/lPYmP9Em/nP/ja5ux3d879wtw/NdJTN/95vO//dWLQaH8lr/2vM+caS8xfKaTa2/T8ijsXY7qy+1XrOqbU79U77Wud/2Za135wL5udxd3T3w8+ZK9VKTxJzq3vXI15pO/9NNvo/adP/2etxtsc2jqS3Xuu0r3v8T1f9p4jX2/b/gxWtZOv1ycnG9TDZvCo2+/vGkd87tb/T8Wf9v2/r+MeT1vXa6uO38eOef9NO+x6KP3q//nclnzXKu/LHrpRqtaWpiF3Jx5sfn37w3Ga9eXwW/7GjW49/7a7/vRHxeY/x3zj886s9xd+t/5/CImsW/9xj9f/jF+589MUP248/6/+3GqVj+SO9jH+9nuCTvHYAAAAAAAAwaAoRcSCSQnGjXCgUi+uf7zgc+wrlSrV2/Hxl+eJcNL4rOx5jheZK98GWz0NM5Z+HbdanH6nPRMShiPh2ZG+jXpytlOd2OngAAAAAAAAAAAAAAAAAAAAYEPs7fP8/88fITp8d8NT5yW8YXl3zvx+/9AQMJP//w/CS/zC85D8ML/kPw0v+w/CS/zC85D8ML/kPAAAAAAAAAAAAAAAAAAAAAAAAAAAAfXX2zJlsq6/dvzqb1ecurywvVC6fmEurC8XF5dnibGXpUnG+Upkvp8XZymK3v1euVC5NTcfylclaWq1NVldWzy1Wli/Wzl1YLM2n59KxZxIVAAAAAAAAAAAAAAAAAAAAPF+qK6sLpXI5XVJQ2FZhdDBOY3UhYiBO40Up7PTIBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP/BcAAP//8NI25Q==") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x2b103, 0x0) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x8004587d, &(0x7f0000000fc0)={@id={0x2, 0x0, @auto="f8ff13be93a237a05ecc5624c29bb9c0"}}) unlink(&(0x7f0000000180)='./file1\x00') 119.206572ms ago: executing program 5 (id=1973): r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x48283, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000100)={'\x00', 0x52d35ce30131f272}) ioctl$TUNSETOFFLOAD(r0, 0x400454c9, 0xb) ioctl$TUNSETTXFILTER(r0, 0x400454d1, 0x0) 115.936493ms ago: executing program 2 (id=1974): syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[], 0x1, 0x23d, &(0x7f0000000a40)="$eJzs3cFq1EAcBvB/220be7Fn8RDw4qmobxBkBTEgrOSgJwPVSytCeome9jF8Bh/Jx+ipt4hN6NZUPUjadJvfD5Z87MfAzGVnDzO77x9+Ojr8fPKx+fEtkiSNWcQyziL2YzO2orXRPTfP805ctgwAYN0sFmU29hwY0MbVt6oqK7cjYvdKU3y/mUkBAAAAAAAAAAAwNOf/AWB6nP+/+6oqK/e672+/c/4fAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGM9Z09xv/vEae34AwPDs/wAwPfZ/AJge+z8ATM+bt+9eZXk+X6RpEnG6rIu6aJ9t/+JlPn+SnttfjTqt62K7y/n8adun/X6vG//sj/1OPH7U9r+656/zXr8bh9e9eAAAAAAAAAAAAAAAAAAAALglDtILvfv9W21/8Le+TZd+H6B3f38WD2Y3tgwAAAAAAAAAAAAAAAAAAABYaydfvh6Vx8cfKkG4CPfiP0YlcTsmLwwSxv5kAgAAAAAAAAAAAAAAAACA6Vld+h17JgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwntX//19fGHuNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwDT8DAAA//8GmZGk") sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4000041}, 0x20000000) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1) 66.152206ms ago: executing program 2 (id=1975): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000200)=@framed={{}, [@printk={@llx}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000010bc0)='kfree\x00', r0}, 0x18) r1 = syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341) ioctl$USBDEVFS_FREE_STREAMS(r1, 0x8008551d, &(0x7f0000000180)=ANY=[@ANYBLOB="a08c000001"]) 21.878199ms ago: executing program 5 (id=1976): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000001000000e27f000001"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xd, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}, @call={0x85, 0x0, 0x0, 0x7}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r1, 0x0, 0x1}, 0x18) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x12, 0x3, &(0x7f0000001980)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa8790000}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x35, '\x00', 0x0, 0x9}, 0x94) 21.453449ms ago: executing program 5 (id=1977): syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000000240)={0x24, 0x0, 0x0, 0x0, 0x0}, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000001540), 0x0, 0x0) ioctl$EVIOCGLED(r0, 0x5452, &(0x7f0000000240)=""/77) fcntl$setstatus(r0, 0x4, 0x40c00) 11.32775ms ago: executing program 2 (id=1978): r0 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) fchdir(r0) exit(0x9) mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) 0s ago: executing program 0 (id=1980): r0 = syz_open_procfs(0x0, &(0x7f0000000000)='pagemap\x00') r1 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2) mmap(&(0x7f00000f7000/0x3000)=nil, 0x3000, 0x1000006, 0x11012, r1, 0x106000) pread64(r0, &(0x7f0000001240)=""/102400, 0x19000, 0x1000000000) kernel console output (not intermixed with test programs): t+0x2e0/0x550 [ 47.395685][ T4165] ? __dquot_initialize+0x146/0x7c0 [ 47.401042][ T4165] iput+0x4ed/0x650 [ 47.404899][ T4165] ext4_process_orphan+0x1a9/0x1c0 [ 47.410098][ T4165] ext4_orphan_cleanup+0x6a8/0xa00 [ 47.415291][ T4165] ext4_fill_super+0x3483/0x3810 [ 47.420267][ T4165] ? snprintf+0x86/0xb0 [ 47.424575][ T4165] ? set_blocksize+0x1a8/0x310 [ 47.429381][ T4165] ? sb_set_blocksize+0xe3/0x100 [ 47.434398][ T4165] ? setup_bdev_super+0x30e/0x370 [ 47.439579][ T4165] ? __pfx_ext4_fill_super+0x10/0x10 [ 47.444942][ T4165] get_tree_bdev_flags+0x28e/0x300 [ 47.450159][ T4165] ? __pfx_ext4_fill_super+0x10/0x10 [ 47.455519][ T4165] get_tree_bdev+0x1f/0x30 [ 47.460067][ T4165] ext4_get_tree+0x1c/0x30 [ 47.464773][ T4165] vfs_get_tree+0x57/0x1d0 [ 47.469276][ T4165] do_new_mount+0x24d/0x660 [ 47.473901][ T4165] path_mount+0x4a5/0xb70 [ 47.478300][ T4165] ? user_path_at+0x109/0x130 [ 47.483107][ T4165] __se_sys_mount+0x28c/0x2e0 [ 47.487830][ T4165] __x64_sys_mount+0x67/0x80 [ 47.492547][ T4165] x64_sys_call+0x2b51/0x3000 [ 47.497254][ T4165] do_syscall_64+0xd2/0x200 [ 47.501856][ T4165] ? arch_exit_to_user_mode_prepare+0x27/0x80 [ 47.508051][ T4165] ? irqentry_exit_to_user_mode+0x7b/0xa0 [ 47.513849][ T4165] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 47.519777][ T4165] RIP: 0033:0x7efd7c49066a [ 47.524254][ T4165] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 47.544088][ T4165] RSP: 002b:00007efd7aeeee68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 47.552627][ T4165] RAX: ffffffffffffffda RBX: 00007efd7aeeeef0 RCX: 00007efd7c49066a [ 47.560625][ T4165] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007efd7aeeeeb0 [ 47.568714][ T4165] RBP: 0000200000000180 R08: 00007efd7aeeeef0 R09: 0000000000800700 [ 47.576760][ T4165] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 47.584798][ T4165] R13: 00007efd7aeeeeb0 R14: 0000000000000473 R15: 0000200000000680 [ 47.592903][ T4165] [ 47.595954][ T4165] ---[ end trace 0000000000000000 ]--- [ 47.604414][ T4165] EXT4-fs (loop1): 1 orphan inode deleted [ 47.610656][ T4165] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 47.616406][ T3699] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.676911][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.714232][ T4198] netlink: 16 bytes leftover after parsing attributes in process `syz.2.264'. [ 47.753704][ T4198] bond1: option lacp_rate: mode dependency failed, not supported in mode balance-rr(0) [ 47.767027][ T4195] netlink: 4 bytes leftover after parsing attributes in process `syz.0.263'. [ 47.775915][ T4195] netlink: 4 bytes leftover after parsing attributes in process `syz.0.263'. [ 47.802631][ T4198] bond1 (unregistering): Released all slaves [ 47.822044][ T4205] IPv6: Can't replace route, no match found [ 47.905620][ T4212] loop5: detected capacity change from 0 to 1024 [ 47.939563][ T4212] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (58532!=20869) [ 47.968645][ T4212] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a040e11d, mo2=0002] [ 47.997411][ T4229] netlink: 'syz.4.277': attribute type 1 has an invalid length. [ 47.997785][ T4212] EXT4-fs (loop5): failed to initialize system zone (-117) [ 48.020952][ T4212] EXT4-fs (loop5): mount failed [ 48.050998][ T4233] netlink: 4 bytes leftover after parsing attributes in process `syz.1.276'. [ 48.060329][ T4237] netlink: 'syz.0.279': attribute type 21 has an invalid length. [ 48.070172][ T4237] netlink: 132 bytes leftover after parsing attributes in process `syz.0.279'. [ 48.213544][ T4253] loop5: detected capacity change from 0 to 128 [ 48.289813][ T4261] bridge0: port 3(vlan2) entered blocking state [ 48.296284][ T4261] bridge0: port 3(vlan2) entered disabled state [ 48.314837][ T4261] vlan2: entered allmulticast mode [ 48.320013][ T4261] bridge0: entered allmulticast mode [ 48.342267][ T4261] vlan2: left allmulticast mode [ 48.347209][ T4261] bridge0: left allmulticast mode [ 48.424437][ T4275] loop0: detected capacity change from 0 to 512 [ 48.431693][ T4275] EXT4-fs: Ignoring removed oldalloc option [ 48.441785][ T4275] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 48.451686][ T4275] EXT4-fs (loop0): inodes count not valid: 24 vs 32 [ 48.506615][ T4282] loop4: detected capacity change from 0 to 2048 [ 48.531725][ T4287] loop2: detected capacity change from 0 to 1024 [ 48.540343][ T4282] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 48.557305][ T4287] EXT4-fs: inline encryption not supported [ 48.617615][ T4287] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 48.647293][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.684024][ T4287] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4193: comm syz.2.304: Allocating blocks 497-513 which overlap fs metadata [ 48.719625][ T4286] EXT4-fs (loop2): pa ffff888106bdf690: logic 16, phys. 145, len 23 [ 48.727791][ T4286] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 1 [ 48.770803][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.773622][ T4312] loop0: detected capacity change from 0 to 512 [ 48.796650][ T4315] SELinux: Context system_u:object_r:iptables_unit_file_t:s0 is not valid (left unmapped). [ 48.815342][ T4312] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 48.847066][ T4312] EXT4-fs (loop0): 1 truncate cleaned up [ 48.853434][ T4312] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 48.923077][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.957050][ T4327] loop5: detected capacity change from 0 to 1024 [ 49.004450][ T4327] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 49.059113][ T4342] loop2: detected capacity change from 0 to 512 [ 49.124183][ T4342] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 49.141440][ T4342] EXT4-fs (loop2): 1 truncate cleaned up [ 49.152254][ T4342] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 49.166656][ T4355] loop1: detected capacity change from 0 to 164 [ 49.200415][ T3699] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.278244][ T4373] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 49.290725][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.293764][ T4373] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 49.328330][ T4377] program syz.1.342 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 49.475419][ T29] kauditd_printk_skb: 76 callbacks suppressed [ 49.475483][ T29] audit: type=1326 audit(1759923872.197:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4401 comm="syz.5.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f588f6deec9 code=0x7ffc0000 [ 49.515018][ T4402] loop5: detected capacity change from 0 to 512 [ 49.527906][ T29] audit: type=1326 audit(1759923872.237:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4401 comm="syz.5.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f588f6deec9 code=0x7ffc0000 [ 49.551288][ T29] audit: type=1326 audit(1759923872.237:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4401 comm="syz.5.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f588f6deec9 code=0x7ffc0000 [ 49.574562][ T29] audit: type=1326 audit(1759923872.237:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4401 comm="syz.5.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f588f6deec9 code=0x7ffc0000 [ 49.597884][ T29] audit: type=1326 audit(1759923872.237:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4401 comm="syz.5.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f588f6deec9 code=0x7ffc0000 [ 49.621215][ T29] audit: type=1326 audit(1759923872.237:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4401 comm="syz.5.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f588f6def03 code=0x7ffc0000 [ 49.631984][ T4402] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 49.644410][ T29] audit: type=1326 audit(1759923872.237:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4401 comm="syz.5.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f588f6dd97f code=0x7ffc0000 [ 49.644449][ T29] audit: type=1326 audit(1759923872.237:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4401 comm="syz.5.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f588f6def57 code=0x7ffc0000 [ 49.644487][ T29] audit: type=1326 audit(1759923872.237:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4401 comm="syz.5.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f588f6dd710 code=0x7ffc0000 [ 49.644531][ T29] audit: type=1326 audit(1759923872.237:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4401 comm="syz.5.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f588f6deacb code=0x7ffc0000 [ 49.754347][ T4402] EXT4-fs (loop5): 1 truncate cleaned up [ 49.760520][ T4402] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 49.806466][ T3699] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.823490][ T4410] 9pnet_fd: Insufficient options for proto=fd [ 49.984353][ T4431] loop5: detected capacity change from 0 to 128 [ 50.016464][ T4431] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 50.031155][ T4431] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 50.060804][ T4439] loop0: detected capacity change from 0 to 1024 [ 50.077957][ T31] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 50.086477][ T4439] EXT4-fs: Ignoring removed oldalloc option [ 50.093037][ T4439] EXT4-fs: Ignoring removed bh option [ 50.127627][ T4439] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 50.206240][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.235470][ T4437] loop2: detected capacity change from 0 to 32768 [ 50.257791][ T4455] loop0: detected capacity change from 0 to 1024 [ 50.264770][ T4455] EXT4-fs: Ignoring removed orlov option [ 50.283531][ T4455] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 50.345060][ T4464] loop5: detected capacity change from 0 to 512 [ 50.352142][ T4464] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 50.411199][ T4464] EXT4-fs (loop5): 1 truncate cleaned up [ 50.426441][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.440528][ T4471] capability: warning: `syz.2.381' uses deprecated v2 capabilities in a way that may be insecure [ 50.452116][ T4464] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 50.471157][ T4464] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.379: bg 0: block 256: padding at end of block bitmap is not set [ 50.501092][ T4464] EXT4-fs (loop5): Remounting filesystem read-only [ 50.531869][ T3699] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.545626][ T4481] loop4: detected capacity change from 0 to 512 [ 50.566138][ T4481] EXT4-fs: Ignoring removed nobh option [ 50.578637][ T4481] EXT4-fs: Ignoring removed orlov option [ 50.584704][ T4481] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 50.596077][ T4481] EXT4-fs (loop4): 1 truncate cleaned up [ 50.602521][ T4481] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 50.651825][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.672426][ T4496] loop0: detected capacity change from 0 to 1024 [ 50.697335][ T4496] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 50.721702][ T4496] ext4 filesystem being mounted at /102/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 50.736724][ T4495] EXT4-fs error (device loop0): ext4_free_blocks:6706: comm syz.0.394: Freeing blocks not in datazone - block = 0, count = 16 [ 50.750210][ T4495] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 50.780619][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.878630][ T4530] loop4: detected capacity change from 0 to 164 [ 50.942127][ T4540] loop2: detected capacity change from 0 to 512 [ 50.962945][ T4540] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 51.023350][ T4540] ext4 filesystem being mounted at /91/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 51.044280][ T4540] EXT4-fs (loop2): shut down requested (0) [ 51.067610][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.079492][ T4562] program syz.0.421 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 51.098573][ T4564] loop1: detected capacity change from 0 to 512 [ 51.105658][ T4564] EXT4-fs: Ignoring removed nobh option [ 51.113160][ T4564] EXT4-fs: Ignoring removed orlov option [ 51.121728][ T4564] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 51.136788][ T4564] EXT4-fs (loop1): 1 truncate cleaned up [ 51.143293][ T4564] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 51.149712][ T4569] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 51.173670][ T4569] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 51.185777][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.202967][ T4569] netlink: 'syz.0.435': attribute type 1 has an invalid length. [ 51.210679][ T4569] __nla_validate_parse: 8 callbacks suppressed [ 51.210696][ T4569] netlink: 216 bytes leftover after parsing attributes in process `syz.0.435'. [ 51.225968][ T4569] NCSI netlink: No device for ifindex 0 [ 51.429311][ T4593] loop1: detected capacity change from 0 to 512 [ 51.448041][ T4593] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 51.460963][ T4593] ext4 filesystem being mounted at /82/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 51.468403][ T4599] loop5: detected capacity change from 0 to 1024 [ 51.478282][ T4599] EXT4-fs: inline encryption not supported [ 51.479202][ T4593] EXT4-fs (loop1): shut down requested (0) [ 51.502933][ T4599] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 51.506853][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.521119][ T4599] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4193: comm syz.5.438: Allocating blocks 497-513 which overlap fs metadata [ 51.541248][ T4598] EXT4-fs (loop5): pa ffff888106bdf620: logic 16, phys. 145, len 23 [ 51.549324][ T4598] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 1 [ 51.569440][ T3699] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.593019][ T4605] netlink: 'syz.5.439': attribute type 16 has an invalid length. [ 51.601007][ T4605] netlink: 156 bytes leftover after parsing attributes in process `syz.5.439'. [ 51.619562][ T4607] netlink: 8 bytes leftover after parsing attributes in process `syz.1.440'. [ 51.873302][ T4634] netlink: 8 bytes leftover after parsing attributes in process `syz.4.454'. [ 52.077263][ T4661] loop5: detected capacity change from 0 to 512 [ 52.090722][ T4663] loop4: detected capacity change from 0 to 128 [ 52.098197][ T4661] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 52.106339][ T4661] EXT4-fs (loop5): orphan cleanup on readonly fs [ 52.115451][ T4661] EXT4-fs error (device loop5): ext4_do_update_inode:5624: inode #16: comm syz.5.466: corrupted inode contents [ 52.127612][ T4661] EXT4-fs (loop5): Remounting filesystem read-only [ 52.134438][ T4661] EXT4-fs (loop5): 1 truncate cleaned up [ 52.140226][ T1010] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 52.150904][ T1010] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 52.161731][ T1010] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started [ 52.727318][ T4697] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.736565][ T4697] bridge0: port 2(bridge_slave_1) entered disabled state [ 52.748625][ T4700] loop5: detected capacity change from 0 to 512 [ 52.784674][ T4700] ext4 filesystem being mounted at /73/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 52.935714][ T4730] loop0: detected capacity change from 0 to 512 [ 52.967263][ T4730] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 52.975448][ T4730] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2 [ 52.986853][ T4730] EXT4-fs (loop0): 1 truncate cleaned up [ 52.993954][ T4730] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #2: block 4: comm syz.0.486: lblock 0 mapped to illegal pblock 4 (length 1) [ 53.040902][ T4730] EXT4-fs (loop0): Remounting filesystem read-only [ 53.041903][ T4742] netlink: 20 bytes leftover after parsing attributes in process `syz.1.503'. [ 53.144783][ T4757] SELinux: failed to load policy [ 53.187181][ T4763] loop4: detected capacity change from 0 to 128 [ 53.209735][ T4763] ext4 filesystem being mounted at /78/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 53.294362][ T4782] loop2: detected capacity change from 0 to 512 [ 53.331975][ T4782] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 53.340154][ T4782] EXT4-fs (loop2): orphan cleanup on readonly fs [ 53.348184][ T4782] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #16: comm syz.2.513: corrupted inode contents [ 53.369270][ T4782] EXT4-fs (loop2): Remounting filesystem read-only [ 53.381062][ T4782] EXT4-fs (loop2): 1 truncate cleaned up [ 53.388948][ T1010] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 53.399579][ T1010] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 53.410782][ T1010] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started [ 53.450293][ T4794] loop4: detected capacity change from 0 to 512 [ 53.457130][ T4793] loop5: detected capacity change from 0 to 2048 [ 53.465248][ T4796] loop2: detected capacity change from 0 to 128 [ 53.486443][ T4794] EXT4-fs (loop4): too many log groups per flexible block group [ 53.502807][ T4784] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 53.511384][ T4784] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 53.515261][ T4794] EXT4-fs (loop4): failed to initialize mballoc (-12) [ 53.537195][ T4794] EXT4-fs (loop4): mount failed [ 53.621727][ T4810] loop5: detected capacity change from 0 to 512 [ 53.635267][ T4810] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 53.648535][ T4810] EXT4-fs (loop5): orphan cleanup on readonly fs [ 53.656410][ T4810] EXT4-fs error (device loop5): ext4_do_update_inode:5624: inode #16: comm syz.5.521: corrupted inode contents [ 53.668924][ T4810] EXT4-fs (loop5): Remounting filesystem read-only [ 53.675889][ T4810] EXT4-fs (loop5): 1 truncate cleaned up [ 53.687653][ T52] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 53.698437][ T52] EXT4-fs (loop5): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 53.712463][ T52] EXT4-fs (loop5): Quota write (off=8, len=24) cancelled because transaction is not started [ 53.733327][ T4820] netlink: 132 bytes leftover after parsing attributes in process `syz.1.537'. [ 53.816980][ T4832] loop2: detected capacity change from 0 to 128 [ 53.861463][ T4826] No such timeout policy "syz1" [ 53.967731][ T4852] loop2: detected capacity change from 0 to 128 [ 53.999582][ T4852] ext4 filesystem being mounted at /120/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 54.503732][ T4914] loop2: detected capacity change from 0 to 512 [ 54.523586][ T4914] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 54.532039][ T4914] EXT4-fs (loop2): orphan cleanup on readonly fs [ 54.539960][ T4914] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #16: comm syz.2.572: corrupted inode contents [ 54.552360][ T4914] EXT4-fs (loop2): Remounting filesystem read-only [ 54.558980][ T4914] EXT4-fs (loop2): 1 truncate cleaned up [ 54.565509][ T147] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 54.576112][ T147] __quota_error: 129 callbacks suppressed [ 54.576173][ T147] Quota error (device loop2): write_blk: dquota write failed [ 54.589399][ T147] Quota error (device loop2): remove_free_dqentry: Can't write block (5) with free entries [ 54.599443][ T147] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 54.610192][ T147] Quota error (device loop2): write_blk: dquota write failed [ 54.617717][ T147] Quota error (device loop2): free_dqentry: Can't move quota data block (5) to free list [ 54.627642][ T147] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started [ 54.637793][ T147] Quota error (device loop2): v2_write_file_info: Can't write info structure [ 54.646934][ T147] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 54.737412][ T4933] loop2: detected capacity change from 0 to 2048 [ 54.744112][ T4933] EXT4-fs: Ignoring removed bh option [ 54.761242][ T4933] EXT4-fs (loop2): Online defrag not supported with bigalloc [ 54.802063][ T29] audit: type=1326 audit(1759923877.527:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4939 comm="syz.0.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4a7a6eec9 code=0x7ffc0000 [ 54.835960][ T29] audit: type=1326 audit(1759923877.557:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4939 comm="syz.0.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7fa4a7a6eec9 code=0x7ffc0000 [ 54.859274][ T29] audit: type=1326 audit(1759923877.557:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4939 comm="syz.0.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4a7a6eec9 code=0x7ffc0000 [ 54.869424][ T4947] loop5: detected capacity change from 0 to 764 [ 54.882750][ T29] audit: type=1326 audit(1759923877.557:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4939 comm="syz.0.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4a7a6eec9 code=0x7ffc0000 [ 54.924465][ T4947] loop5: detected capacity change from 0 to 512 [ 54.931296][ T4947] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 54.949257][ T4953] SELinux: Context is not valid (left unmapped). [ 55.130689][ T4973] bond1: option lacp_active: mode dependency failed, not supported in mode balance-rr(0) [ 55.143915][ T4973] bond1 (unregistering): Released all slaves [ 55.206826][ T4980] SELinux: failed to load policy [ 55.330511][ T5007] bond0: entered promiscuous mode [ 55.335665][ T5007] bond_slave_0: entered promiscuous mode [ 55.341515][ T5007] bond_slave_1: entered promiscuous mode [ 55.349463][ T5007] dummy0: entered promiscuous mode [ 55.355222][ T5007] hsr1: entered promiscuous mode [ 55.360325][ T5007] hsr1: entered allmulticast mode [ 55.365426][ T5007] bond0: entered allmulticast mode [ 55.370589][ T5007] bond_slave_0: entered allmulticast mode [ 55.376519][ T5007] bond_slave_1: entered allmulticast mode [ 55.382937][ T5007] dummy0: entered allmulticast mode [ 55.415948][ T5005] loop1: detected capacity change from 0 to 2048 [ 55.425536][ T5005] EXT4-fs: Ignoring removed bh option [ 55.447993][ T5011] bond1: option lacp_active: mode dependency failed, not supported in mode balance-rr(0) [ 55.481458][ T5005] EXT4-fs (loop1): Online defrag not supported with bigalloc [ 55.489775][ T5021] IPv6: Can't replace route, no match found [ 55.492260][ T5011] bond1 (unregistering): Released all slaves [ 55.609129][ T5042] loop4: detected capacity change from 0 to 512 [ 55.623523][ T5042] ext4 filesystem being mounted at /107/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 55.648212][ T5046] bond1: option lacp_active: mode dependency failed, not supported in mode balance-rr(0) [ 55.671522][ T5046] bond1 (unregistering): Released all slaves [ 55.821454][ T5057] loop4: detected capacity change from 0 to 512 [ 55.834357][ T5057] ext4 filesystem being mounted at /108/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 55.873455][ T5065] loop2: detected capacity change from 0 to 512 [ 55.880131][ T5065] EXT4-fs: Ignoring removed bh option [ 55.886422][ T5065] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 55.895683][ T5065] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 55.909802][ T5065] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended [ 55.921412][ T5063] loop4: detected capacity change from 0 to 8192 [ 55.928241][ T5063] msdos: Unknown parameter 'dont_appraise' [ 55.934361][ T5065] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006] [ 55.986193][ T5072] loop0: detected capacity change from 0 to 2048 [ 56.013770][ T5080] netlink: 36 bytes leftover after parsing attributes in process `syz.2.641'. [ 56.097954][ T5090] bond0: entered promiscuous mode [ 56.103089][ T5090] bond_slave_0: entered promiscuous mode [ 56.108922][ T5090] bond_slave_1: entered promiscuous mode [ 56.147287][ T5090] dummy0: entered promiscuous mode [ 56.152945][ T5090] debugfs: 'hsr1' already exists in 'hsr' [ 56.158710][ T5090] Cannot create hsr debugfs directory [ 56.164734][ T5090] hsr1: entered promiscuous mode [ 56.169726][ T5090] hsr1: entered allmulticast mode [ 56.174860][ T5090] bond0: entered allmulticast mode [ 56.179996][ T5090] bond_slave_0: entered allmulticast mode [ 56.185774][ T5090] bond_slave_1: entered allmulticast mode [ 56.191706][ T5090] dummy0: entered allmulticast mode [ 56.223348][ T3400] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 56.230870][ T3400] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 56.238457][ T3400] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 56.246050][ T3400] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 56.253577][ T3400] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 56.261199][ T3400] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 56.264464][ T5106] netlink: 'syz.2.650': attribute type 9 has an invalid length. [ 56.268604][ T3400] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 56.284259][ T3400] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 56.291841][ T3400] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 56.299517][ T3400] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 56.309605][ T5100] loop5: detected capacity change from 0 to 256 [ 56.316923][ T3400] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.43 Device [syz1] on syz1 [ 56.327695][ T5110] bond1: option lacp_active: mode dependency failed, not supported in mode balance-rr(0) [ 56.341944][ T5110] bond1 (unregistering): Released all slaves [ 56.348152][ T5100] FAT-fs (loop5): codepage cp864 not found [ 56.397705][ T5119] loop0: detected capacity change from 0 to 764 [ 56.421430][ T5119] loop0: detected capacity change from 0 to 512 [ 56.428087][ T5119] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 56.513069][ T5131] loop2: detected capacity change from 0 to 512 [ 56.549958][ T5131] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.659: iget: bad i_size value: 38620345925642 [ 56.562780][ T5133] bond0: entered promiscuous mode [ 56.567876][ T5133] bond_slave_0: entered promiscuous mode [ 56.573751][ T5133] bond_slave_1: entered promiscuous mode [ 56.590694][ T5131] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.659: couldn't read orphan inode 15 (err -117) [ 56.632560][ T5133] dummy0: entered promiscuous mode [ 56.648255][ T5133] debugfs: 'hsr1' already exists in 'hsr' [ 56.654097][ T5133] Cannot create hsr debugfs directory [ 56.672972][ T5133] hsr1: entered promiscuous mode [ 56.677974][ T5133] hsr1: entered allmulticast mode [ 56.683076][ T5133] bond0: entered allmulticast mode [ 56.688209][ T5133] bond_slave_0: entered allmulticast mode [ 56.694160][ T5133] bond_slave_1: entered allmulticast mode [ 56.700619][ T5133] dummy0: entered allmulticast mode [ 56.830366][ T5154] loop4: detected capacity change from 0 to 764 [ 56.844841][ T5154] loop4: detected capacity change from 0 to 512 [ 56.859227][ T5154] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 56.945312][ T5172] loop0: detected capacity change from 0 to 512 [ 56.959462][ T5168] loop5: detected capacity change from 0 to 8192 [ 56.966374][ T5168] msdos: Unknown parameter 'dont_appraise' [ 56.973650][ T1046] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.43 Device [syz1] on syz1 [ 56.984126][ T5143] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 56.984239][ T5174] loop4: detected capacity change from 0 to 256 [ 56.992919][ T5143] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 57.016218][ T5174] FAT-fs (loop4): codepage cp864 not found [ 57.024554][ T5172] ext4 filesystem being mounted at /153/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 57.063069][ T5181] loop4: detected capacity change from 0 to 512 [ 57.069943][ T5181] EXT4-fs: Ignoring removed bh option [ 57.081299][ T5181] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 57.090469][ T5181] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 57.099323][ T5181] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended [ 57.109522][ T5181] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006] [ 57.202853][ T5196] SELinux: policydb version 0 does not match my version range 15-35 [ 57.211370][ T5196] SELinux: failed to load policy [ 57.235674][ T5200] netlink: 104 bytes leftover after parsing attributes in process `syz.4.688'. [ 57.309044][ T5210] netlink: 'syz.5.693': attribute type 9 has an invalid length. [ 57.358210][ T5213] loop4: detected capacity change from 0 to 128 [ 57.446946][ T5222] loop4: detected capacity change from 0 to 128 [ 57.532513][ T5226] loop5: detected capacity change from 0 to 128 [ 57.548623][ T5226] ext4 filesystem being mounted at /114/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 57.590957][ T5231] random: crng reseeded on system resumption [ 57.657095][ T5241] loop4: detected capacity change from 0 to 1024 [ 57.686439][ T5241] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.708: bg 0: block 88: padding at end of block bitmap is not set [ 57.701439][ T5247] bond0: entered promiscuous mode [ 57.706534][ T5247] bond_slave_0: entered promiscuous mode [ 57.712466][ T5247] bond_slave_1: entered promiscuous mode [ 57.724733][ T5247] bond0: left promiscuous mode [ 57.729742][ T5247] bond_slave_0: left promiscuous mode [ 57.735375][ T5247] bond_slave_1: left promiscuous mode [ 57.891845][ T5262] SELinux: security_context_str_to_sid (s) failed with errno=-22 [ 57.970098][ T5268] loop1: detected capacity change from 0 to 128 [ 58.002216][ T5268] ext4 filesystem being mounted at /128/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 58.277871][ T5283] loop0: detected capacity change from 0 to 164 [ 58.415832][ T5294] loop2: detected capacity change from 0 to 8192 [ 58.527158][ T5302] loop0: detected capacity change from 0 to 128 [ 58.552776][ T5302] ext4 filesystem being mounted at /164/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 58.618929][ T5307] loop2: detected capacity change from 0 to 2048 [ 58.657518][ T5310] loop0: detected capacity change from 0 to 128 [ 58.674045][ T5310] ext4 filesystem being mounted at /165/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 58.734570][ T5314] loop4: detected capacity change from 0 to 2048 [ 58.804553][ T5321] loop0: detected capacity change from 0 to 1024 [ 58.822704][ T5325] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.737: bg 0: block 234: padding at end of block bitmap is not set [ 58.847503][ T5326] netlink: 276 bytes leftover after parsing attributes in process `syz.5.742'. [ 58.873742][ T5325] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 730 with error 117 [ 58.886662][ T5325] EXT4-fs (loop4): This should not happen!! Data will be lost [ 58.886662][ T5325] [ 58.933111][ T5321] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.740: bg 0: block 88: padding at end of block bitmap is not set [ 58.977314][ T147] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 730 with max blocks 4 with error 28 [ 58.990188][ T147] EXT4-fs (loop4): This should not happen!! Data will be lost [ 58.990188][ T147] [ 59.000184][ T147] EXT4-fs (loop4): Total free blocks count 0 [ 59.006454][ T147] EXT4-fs (loop4): Free/Dirty block details [ 59.012570][ T147] EXT4-fs (loop4): free_blocks=0 [ 59.017819][ T147] EXT4-fs (loop4): dirty_blocks=16 [ 59.023325][ T147] EXT4-fs (loop4): Block reservation details [ 59.029743][ T147] EXT4-fs (loop4): i_reserved_data_blocks=1 [ 59.042837][ T5336] loop1: detected capacity change from 0 to 512 [ 59.115913][ T5342] loop2: detected capacity change from 0 to 164 [ 59.153214][ T5348] loop5: detected capacity change from 0 to 512 [ 59.170764][ T5348] EXT4-fs: Ignoring removed orlov option [ 59.174032][ T5350] netlink: 8 bytes leftover after parsing attributes in process `syz.0.751'. [ 59.188896][ T5348] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 59.210066][ T5348] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 59.218682][ T5348] EXT4-fs error (device loop5): ext4_iget_extra_inode:5075: inode #15: comm syz.5.750: corrupted in-inode xattr: e_value size too large [ 59.220261][ T5354] loop1: detected capacity change from 0 to 1024 [ 59.233337][ T5348] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.750: couldn't read orphan inode 15 (err -117) [ 59.263239][ T5353] 9pnet_fd: Insufficient options for proto=fd [ 59.283346][ T5354] ext4 filesystem being mounted at /137/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 59.361228][ T5370] sctp: [Deprecated]: syz.4.760 (pid 5370) Use of struct sctp_assoc_value in delayed_ack socket option. [ 59.361228][ T5370] Use struct sctp_sack_info instead [ 59.392285][ T5374] loop5: detected capacity change from 0 to 128 [ 59.407065][ T5374] ext4 filesystem being mounted at /126/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 59.426659][ T5383] loop2: detected capacity change from 0 to 128 [ 59.447277][ T5383] ext4 filesystem being mounted at /171/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 59.504421][ T5388] loop4: detected capacity change from 0 to 512 [ 59.514420][ T5388] EXT4-fs: Ignoring removed orlov option [ 59.523487][ T5390] netlink: 276 bytes leftover after parsing attributes in process `syz.1.768'. [ 59.529450][ T5388] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 59.564121][ T5388] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 59.572423][ T5392] loop5: detected capacity change from 0 to 1024 [ 59.589556][ T5388] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #15: comm syz.4.767: corrupted in-inode xattr: e_value size too large [ 59.604875][ T5388] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.767: couldn't read orphan inode 15 (err -117) [ 59.623027][ T5392] ext4 filesystem being mounted at /127/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 59.638386][ T5392] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 59.704036][ T5406] loop5: detected capacity change from 0 to 1024 [ 59.744006][ T5406] ext4 filesystem being mounted at /128/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 59.817412][ T5425] netlink: 276 bytes leftover after parsing attributes in process `syz.4.783'. [ 59.829799][ T5427] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 59.841982][ T5427] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 59.854318][ T5429] netlink: 59 bytes leftover after parsing attributes in process `syz.2.784'. [ 59.884521][ T29] kauditd_printk_skb: 53 callbacks suppressed [ 59.884539][ T29] audit: type=1326 audit(1759923882.607:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5431 comm="syz.2.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60778feec9 code=0x7ffc0000 [ 59.926527][ T5434] loop4: detected capacity change from 0 to 1024 [ 59.932471][ T29] audit: type=1326 audit(1759923882.617:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5435 comm="syz.0.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4a7a6eec9 code=0x7ffc0000 [ 59.957055][ T29] audit: type=1326 audit(1759923882.617:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5435 comm="syz.0.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4a7a6eec9 code=0x7ffc0000 [ 59.981321][ T29] audit: type=1326 audit(1759923882.617:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5435 comm="syz.0.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa4a7a6eec9 code=0x7ffc0000 [ 60.005611][ T29] audit: type=1326 audit(1759923882.647:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5431 comm="syz.2.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60778feec9 code=0x7ffc0000 [ 60.010271][ T5434] ext4 filesystem being mounted at /141/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 60.029739][ T29] audit: type=1326 audit(1759923882.647:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5435 comm="syz.0.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4a7a6eec9 code=0x7ffc0000 [ 60.057644][ T5434] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 60.064458][ T29] audit: type=1326 audit(1759923882.647:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5435 comm="syz.0.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7fa4a7a6eec9 code=0x7ffc0000 [ 60.103131][ T29] audit: type=1326 audit(1759923882.647:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5435 comm="syz.0.788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4a7a6eec9 code=0x7ffc0000 [ 60.127404][ T29] audit: type=1326 audit(1759923882.647:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5431 comm="syz.2.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f60778feec9 code=0x7ffc0000 [ 60.151382][ T29] audit: type=1326 audit(1759923882.647:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5431 comm="syz.2.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60778feec9 code=0x7ffc0000 [ 60.195812][ T5446] loop4: detected capacity change from 0 to 1024 [ 60.203015][ T5446] EXT4-fs: Ignoring removed orlov option [ 60.208963][ T5446] EXT4-fs: Ignoring removed nomblk_io_submit option [ 60.362483][ T5452] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 60.384252][ T5452] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 60.419775][ T5458] loop4: detected capacity change from 0 to 128 [ 60.462846][ T5460] loop5: detected capacity change from 0 to 2048 [ 60.529902][ T5465] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.807: bg 0: block 234: padding at end of block bitmap is not set [ 60.545189][ T5465] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1416 with error 117 [ 60.558426][ T5465] EXT4-fs (loop5): This should not happen!! Data will be lost [ 60.558426][ T5465] [ 60.577445][ T12] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 1416 with max blocks 2 with error 28 [ 60.590395][ T12] EXT4-fs (loop5): This should not happen!! Data will be lost [ 60.590395][ T12] [ 60.600416][ T12] EXT4-fs (loop5): Total free blocks count 0 [ 60.606749][ T12] EXT4-fs (loop5): Free/Dirty block details [ 60.612953][ T12] EXT4-fs (loop5): free_blocks=0 [ 60.618117][ T12] EXT4-fs (loop5): dirty_blocks=16 [ 60.623509][ T12] EXT4-fs (loop5): Block reservation details [ 60.629874][ T12] EXT4-fs (loop5): i_reserved_data_blocks=1 [ 60.914682][ T5469] netlink: 276 bytes leftover after parsing attributes in process `syz.0.798'. [ 60.978942][ T5478] loop4: detected capacity change from 0 to 1024 [ 60.986962][ T5478] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 61.026818][ T5478] EXT4-fs error (device loop4): ext4_xattr_inode_iget:441: inode #11: comm syz.4.803: missing EA_INODE flag [ 61.047835][ T5478] EXT4-fs (loop4): Remounting filesystem read-only [ 61.245959][ T5516] loop5: detected capacity change from 0 to 512 [ 61.260576][ T5516] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm syz.5.822: bg 0: block 5: invalid block bitmap [ 61.274954][ T5516] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 61.284482][ T5516] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.822: invalid indirect mapped block 3 (level 2) [ 61.298416][ T5516] EXT4-fs (loop5): 2 truncates cleaned up [ 61.308953][ T5516] EXT4-fs error (device loop5): empty_inline_dir:1760: inode #12: block 7: comm syz.5.822: bad entry in directory: rec_len % 4 != 0 - offset=4, inode=4278190093, rec_len=255, size=60 fake=0 [ 61.335021][ T5516] EXT4-fs warning (device loop5): empty_inline_dir:1767: bad inline directory (dir #12) - inode 4278190093, rec_len 255, name_len 0inline size 60 [ 61.359195][ T5520] loop0: detected capacity change from 0 to 1024 [ 61.368065][ T5520] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 61.423784][ T5520] EXT4-fs error (device loop0): ext4_xattr_inode_iget:441: inode #11: comm syz.0.824: missing EA_INODE flag [ 61.449309][ T5520] EXT4-fs (loop0): Remounting filesystem read-only [ 61.604402][ T5539] IPv6: NLM_F_CREATE should be specified when creating new route [ 61.626880][ T5542] SELinux: policydb version 0 does not match my version range 15-35 [ 61.653283][ T5542] SELinux: failed to load policy [ 61.729902][ T5558] netlink: 12 bytes leftover after parsing attributes in process `syz.4.842'. [ 61.739322][ T5555] loop5: detected capacity change from 0 to 1024 [ 61.747575][ T5555] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 61.788664][ T5564] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 61.802168][ T5555] EXT4-fs error (device loop5): ext4_xattr_inode_iget:441: inode #11: comm syz.5.840: missing EA_INODE flag [ 61.804149][ T5564] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 61.816929][ T5555] EXT4-fs (loop5): Remounting filesystem read-only [ 61.849195][ T5567] netlink: 48 bytes leftover after parsing attributes in process `syz.0.844'. [ 61.858602][ T5567] netlink: 48 bytes leftover after parsing attributes in process `syz.0.844'. [ 61.931808][ T5579] IPv6: NLM_F_CREATE should be specified when creating new route [ 61.949899][ T5578] SELinux: policydb version 0 does not match my version range 15-35 [ 61.958839][ T5578] SELinux: failed to load policy [ 62.048173][ T5591] loop1: detected capacity change from 0 to 1024 [ 62.055422][ T5591] EXT4-fs: Ignoring removed orlov option [ 62.061515][ T5591] EXT4-fs: Ignoring removed nomblk_io_submit option [ 62.079185][ T5595] loop4: detected capacity change from 0 to 1024 [ 62.086869][ T5595] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 62.098259][ T5595] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 62.109149][ T5595] JBD2: no valid journal superblock found [ 62.115272][ T5595] EXT4-fs (loop4): Could not load journal inode [ 62.277882][ T5603] loop1: detected capacity change from 0 to 1024 [ 62.287333][ T5603] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 62.317680][ T5603] EXT4-fs error (device loop1): ext4_xattr_inode_iget:441: inode #11: comm syz.1.860: missing EA_INODE flag [ 62.329871][ T5603] EXT4-fs (loop1): Remounting filesystem read-only [ 62.400430][ T5616] IPv6: NLM_F_CREATE should be specified when creating new route [ 62.439433][ T5619] loop4: detected capacity change from 0 to 128 [ 62.439787][ T5614] syzkaller0: entered promiscuous mode [ 62.449853][ T5619] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 62.451747][ T5614] syzkaller0: entered allmulticast mode [ 62.480706][ T5622] loop1: detected capacity change from 0 to 2048 [ 62.617707][ T5634] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.868: bg 0: block 234: padding at end of block bitmap is not set [ 62.638129][ T5634] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 874 with error 117 [ 62.651160][ T5634] EXT4-fs (loop1): This should not happen!! Data will be lost [ 62.651160][ T5634] [ 62.723483][ T12] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 874 with max blocks 2 with error 28 [ 62.736438][ T12] EXT4-fs (loop1): This should not happen!! Data will be lost [ 62.736438][ T12] [ 62.746937][ T12] EXT4-fs (loop1): Total free blocks count 0 [ 62.753330][ T12] EXT4-fs (loop1): Free/Dirty block details [ 62.759523][ T12] EXT4-fs (loop1): free_blocks=0 [ 62.764822][ T12] EXT4-fs (loop1): dirty_blocks=16 [ 62.770189][ T12] EXT4-fs (loop1): Block reservation details [ 62.776539][ T12] EXT4-fs (loop1): i_reserved_data_blocks=1 [ 62.876804][ T5653] loop2: detected capacity change from 0 to 128 [ 62.909618][ T5653] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 62.941857][ T5661] __nla_validate_parse: 1 callbacks suppressed [ 62.941885][ T5661] netlink: 48 bytes leftover after parsing attributes in process `syz.4.888'. [ 62.957671][ T5661] netlink: 48 bytes leftover after parsing attributes in process `syz.4.888'. [ 62.967736][ T5661] netlink: 48 bytes leftover after parsing attributes in process `syz.4.888'. [ 63.000577][ T5657] syz.5.886 (5657) used greatest stack depth: 9360 bytes left [ 63.016751][ T5666] loop1: detected capacity change from 0 to 764 [ 63.038745][ T5666] Symlink component flag not implemented [ 63.044751][ T5666] Symlink component flag not implemented [ 63.053757][ T5666] Symlink component flag not implemented (128) [ 63.060448][ T5666] Symlink component flag not implemented (122) [ 63.289886][ T5696] syzkaller0: entered promiscuous mode [ 63.295771][ T5696] syzkaller0: entered allmulticast mode [ 63.624262][ T5737] 9pnet_fd: Insufficient options for proto=fd [ 63.695279][ T5741] loop2: detected capacity change from 0 to 2048 [ 63.695737][ C0] hrtimer: interrupt took 15363 ns [ 63.819406][ T5762] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.925: bg 0: block 234: padding at end of block bitmap is not set [ 63.866963][ T5762] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1442 with error 117 [ 63.880180][ T5762] EXT4-fs (loop2): This should not happen!! Data will be lost [ 63.880180][ T5762] [ 63.930691][ T12] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 1442 with max blocks 2 with error 28 [ 63.943663][ T12] EXT4-fs (loop2): This should not happen!! Data will be lost [ 63.943663][ T12] [ 63.953780][ T12] EXT4-fs (loop2): Total free blocks count 0 [ 63.959457][ T5777] Invalid ELF header magic: != ELF [ 63.960188][ T12] EXT4-fs (loop2): Free/Dirty block details [ 63.971528][ T12] EXT4-fs (loop2): free_blocks=0 [ 63.976665][ T12] EXT4-fs (loop2): dirty_blocks=16 [ 63.982280][ T12] EXT4-fs (loop2): Block reservation details [ 63.988496][ T12] EXT4-fs (loop2): i_reserved_data_blocks=1 [ 64.001876][ T9] hid_parser_main: 156 callbacks suppressed [ 64.001897][ T9] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 64.031545][ T9] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz1] on syz0 [ 64.304592][ T5797] program syz.2.948 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 64.966064][ T29] kauditd_printk_skb: 64 callbacks suppressed [ 64.966094][ T29] audit: type=1400 audit(1759923887.687:601): avc: denied { nlmsg_tty_audit } for pid=5878 comm="syz.2.989" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1 [ 64.994312][ T29] audit: type=1400 audit(1759923887.687:602): avc: denied { nlmsg_write } for pid=5878 comm="syz.2.989" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1 [ 65.110014][ T5885] usb usb1: check_ctrlrecip: process 5885 (syz.0.992) requesting ep 01 but needs 81 [ 65.132050][ T29] audit: type=1400 audit(1759923887.857:603): avc: denied { kexec_image_load } for pid=5880 comm="syz.2.990" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1 [ 65.154622][ T5885] vhci_hcd: default hub control req: 020f v0004 i0001 l0 [ 65.231838][ T5892] loop0: detected capacity change from 0 to 2048 [ 65.299147][ T29] audit: type=1400 audit(1759923888.017:604): avc: denied { append } for pid=5903 comm="syz.2.999" name="virtual_nci" dev="devtmpfs" ino=132 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 65.392295][ T5910] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.993: bg 0: block 234: padding at end of block bitmap is not set [ 65.427284][ T29] audit: type=1326 audit(1759923888.147:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5915 comm="syz.2.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60778feec9 code=0x7ffc0000 [ 65.451478][ T29] audit: type=1326 audit(1759923888.147:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5915 comm="syz.2.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60778feec9 code=0x7ffc0000 [ 65.475787][ T29] audit: type=1326 audit(1759923888.147:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5915 comm="syz.2.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f60778feec9 code=0x7ffc0000 [ 65.500014][ T29] audit: type=1326 audit(1759923888.147:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5915 comm="syz.2.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60778feec9 code=0x7ffc0000 [ 65.524083][ T29] audit: type=1326 audit(1759923888.147:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5915 comm="syz.2.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60778feec9 code=0x7ffc0000 [ 65.548211][ T29] audit: type=1326 audit(1759923888.147:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5915 comm="syz.2.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f60778feec9 code=0x7ffc0000 [ 65.585092][ T5910] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1452 with error 117 [ 65.598259][ T5910] EXT4-fs (loop0): This should not happen!! Data will be lost [ 65.598259][ T5910] [ 65.633834][ T12] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 1452 with max blocks 2 with error 28 [ 65.646819][ T12] EXT4-fs (loop0): This should not happen!! Data will be lost [ 65.646819][ T12] [ 65.657079][ T12] EXT4-fs (loop0): Total free blocks count 0 [ 65.663350][ T12] EXT4-fs (loop0): Free/Dirty block details [ 65.669467][ T12] EXT4-fs (loop0): free_blocks=0 [ 65.674621][ T12] EXT4-fs (loop0): dirty_blocks=16 [ 65.679999][ T12] EXT4-fs (loop0): Block reservation details [ 65.686296][ T12] EXT4-fs (loop0): i_reserved_data_blocks=1 [ 65.714088][ T5926] loop2: detected capacity change from 0 to 512 [ 65.734934][ T5926] EXT4-fs warning (device loop2): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 65.764775][ T5926] EXT4-fs (loop2): mount failed [ 65.906006][ T5950] loop2: detected capacity change from 0 to 2048 [ 65.970386][ T5959] SELinux: Context system_u:object_r:useradd_exec_t:s0 is not valid (left unmapped). [ 66.001386][ T5962] loop1: detected capacity change from 0 to 2048 [ 66.075785][ T3400] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 66.084048][ T3400] hid-generic 0000:0000:0000.0004: hidraw0: HID v0.00 Device [syz1] on syz0 [ 66.096685][ T5974] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1028'. [ 66.106302][ T5974] netlink: 212 bytes leftover after parsing attributes in process `syz.2.1028'. [ 66.117779][ T5976] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1023: bg 0: block 234: padding at end of block bitmap is not set [ 66.133189][ T5976] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 836 with error 117 [ 66.146243][ T5976] EXT4-fs (loop1): This should not happen!! Data will be lost [ 66.146243][ T5976] [ 66.265444][ T147] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 836 with max blocks 2 with error 28 [ 66.278427][ T147] EXT4-fs (loop1): This should not happen!! Data will be lost [ 66.278427][ T147] [ 66.288577][ T147] EXT4-fs (loop1): Total free blocks count 0 [ 66.294857][ T147] EXT4-fs (loop1): Free/Dirty block details [ 66.301092][ T147] EXT4-fs (loop1): free_blocks=0 [ 66.306241][ T147] EXT4-fs (loop1): dirty_blocks=16 [ 66.311644][ T147] EXT4-fs (loop1): Block reservation details [ 66.318513][ T147] EXT4-fs (loop1): i_reserved_data_blocks=1 [ 66.490787][ T5996] lo speed is unknown, defaulting to 1000 [ 66.498215][ T5998] loop2: detected capacity change from 0 to 512 [ 66.514253][ T5996] lo speed is unknown, defaulting to 1000 [ 66.521632][ T5996] lo speed is unknown, defaulting to 1000 [ 66.528556][ T5996] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 66.528629][ T5998] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 66.539190][ T5996] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 66.552022][ T5998] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.1036: invalid indirect mapped block 8 (level 2) [ 66.566759][ T5998] EXT4-fs (loop2): Remounting filesystem read-only [ 66.567288][ T5996] lo speed is unknown, defaulting to 1000 [ 66.573764][ T5998] EXT4-fs (loop2): 1 truncate cleaned up [ 66.587626][ T5996] lo speed is unknown, defaulting to 1000 [ 66.594378][ T5996] lo speed is unknown, defaulting to 1000 [ 66.601266][ T5996] lo speed is unknown, defaulting to 1000 [ 66.607876][ T5996] lo speed is unknown, defaulting to 1000 [ 66.766397][ T6023] netlink: 'syz.2.1048': attribute type 5 has an invalid length. [ 66.774460][ T6023] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.1048'. [ 66.835675][ T1046] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 66.845631][ T1046] hid-generic 0000:0000:0000.0005: hidraw0: HID v0.00 Device [syz1] on syz0 [ 66.876759][ T6031] loop4: detected capacity change from 0 to 512 [ 66.898621][ T6031] EXT4-fs (loop4): failed to initialize system zone (-117) [ 66.910958][ T6031] EXT4-fs (loop4): mount failed [ 66.956396][ T6038] lo speed is unknown, defaulting to 1000 [ 66.969240][ T6040] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1055'. [ 66.978653][ T6040] netlink: 212 bytes leftover after parsing attributes in process `syz.4.1055'. [ 67.077069][ T6043] loop4: detected capacity change from 0 to 512 [ 67.097862][ T6043] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 67.120229][ T6043] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.1056: invalid indirect mapped block 8 (level 2) [ 67.187566][ T6043] EXT4-fs (loop4): Remounting filesystem read-only [ 67.194594][ T6043] EXT4-fs (loop4): 1 truncate cleaned up [ 67.303046][ T6062] loop5: detected capacity change from 0 to 512 [ 67.333196][ T6062] EXT4-fs warning (device loop5): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 67.359925][ T6062] EXT4-fs (loop5): mount failed [ 67.366305][ T6070] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1067'. [ 67.375845][ T6070] netlink: 212 bytes leftover after parsing attributes in process `syz.0.1067'. [ 67.470321][ T6080] loop5: detected capacity change from 0 to 512 [ 67.481206][ T6080] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2 [ 67.490095][ T6080] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.1072: invalid indirect mapped block 8 (level 2) [ 67.512058][ T6080] EXT4-fs (loop5): Remounting filesystem read-only [ 67.519084][ T6080] EXT4-fs (loop5): 1 truncate cleaned up [ 67.580319][ T6089] lo speed is unknown, defaulting to 1000 [ 67.609392][ T6095] netlink: 'syz.1.1079': attribute type 5 has an invalid length. [ 67.667784][ T9] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 67.676735][ T9] hid-generic 0000:0000:0000.0006: hidraw0: HID v0.00 Device [syz1] on syz0 [ 67.873101][ T6113] loop0: detected capacity change from 0 to 2048 [ 67.961427][ T6126] __nla_validate_parse: 3 callbacks suppressed [ 67.961445][ T6126] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1093'. [ 67.990870][ T6129] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1086: bg 0: block 234: padding at end of block bitmap is not set [ 68.011197][ T6129] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 332 with error 117 [ 68.024342][ T6129] EXT4-fs (loop0): This should not happen!! Data will be lost [ 68.024342][ T6129] [ 68.062242][ T6131] loop2: detected capacity change from 0 to 128 [ 68.069476][ T6131] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 68.104618][ T6137] loop5: detected capacity change from 0 to 512 [ 68.112183][ T6131] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 68.112246][ T6133] loop4: detected capacity change from 0 to 128 [ 68.134466][ T6135] loop1: detected capacity change from 0 to 512 [ 68.144750][ T6135] EXT4-fs (loop1): orphan cleanup on readonly fs [ 68.144735][ T1010] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 332 with max blocks 4 with error 28 [ 68.152687][ T6137] EXT4-fs (loop5): failed to initialize system zone (-117) [ 68.164346][ T1010] EXT4-fs (loop0): This should not happen!! Data will be lost [ 68.164346][ T1010] [ 68.179354][ T6133] syz.4.1095: attempt to access beyond end of device [ 68.179354][ T6133] loop4: rw=2049, sector=154, nr_sectors = 6 limit=128 [ 68.181808][ T1010] EXT4-fs (loop0): Total free blocks count 0 [ 68.196909][ T6135] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1096: bg 0: block 248: padding at end of block bitmap is not set [ 68.201621][ T1010] EXT4-fs (loop0): Free/Dirty block details [ 68.216490][ T6137] EXT4-fs (loop5): mount failed [ 68.222518][ T1010] EXT4-fs (loop0): free_blocks=0 [ 68.228936][ T6133] syz.4.1095: attempt to access beyond end of device [ 68.228936][ T6133] loop4: rw=2049, sector=158, nr_sectors = 2 limit=128 [ 68.232745][ T1010] EXT4-fs (loop0): dirty_blocks=16 [ 68.246535][ T6133] Buffer I/O error on dev loop4, logical block 79, lost async page write [ 68.251929][ T1010] EXT4-fs (loop0): Block reservation details [ 68.261272][ T6135] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.1096: Failed to acquire dquot type 1 [ 68.266878][ T1010] EXT4-fs (loop0): i_reserved_data_blocks=1 [ 68.279804][ T6133] syz.4.1095: attempt to access beyond end of device [ 68.279804][ T6133] loop4: rw=2049, sector=160, nr_sectors = 2 limit=128 [ 68.287222][ T6135] EXT4-fs (loop1): 1 truncate cleaned up [ 68.298408][ T6133] Buffer I/O error on dev loop4, logical block 80, lost async page write [ 68.314691][ T6133] syz.4.1095: attempt to access beyond end of device [ 68.314691][ T6133] loop4: rw=2049, sector=162, nr_sectors = 6 limit=128 [ 68.331467][ T6133] syz.4.1095: attempt to access beyond end of device [ 68.331467][ T6133] loop4: rw=2049, sector=166, nr_sectors = 2 limit=128 [ 68.345533][ T6133] Buffer I/O error on dev loop4, logical block 83, lost async page write [ 68.355458][ T6133] syz.4.1095: attempt to access beyond end of device [ 68.355458][ T6133] loop4: rw=2049, sector=168, nr_sectors = 2 limit=128 [ 68.369585][ T6133] Buffer I/O error on dev loop4, logical block 84, lost async page write [ 68.382355][ T6133] syz.4.1095: attempt to access beyond end of device [ 68.382355][ T6133] loop4: rw=2049, sector=202, nr_sectors = 6 limit=128 [ 68.399141][ T6133] syz.4.1095: attempt to access beyond end of device [ 68.399141][ T6133] loop4: rw=2049, sector=206, nr_sectors = 2 limit=128 [ 68.413267][ T6133] Buffer I/O error on dev loop4, logical block 103, lost async page write [ 68.422495][ T6133] syz.4.1095: attempt to access beyond end of device [ 68.422495][ T6133] loop4: rw=2049, sector=208, nr_sectors = 2 limit=128 [ 68.436529][ T6133] Buffer I/O error on dev loop4, logical block 104, lost async page write [ 68.447226][ T6133] syz.4.1095: attempt to access beyond end of device [ 68.447226][ T6133] loop4: rw=2049, sector=210, nr_sectors = 6 limit=128 [ 68.477188][ T6133] Buffer I/O error on dev loop4, logical block 107, lost async page write [ 68.489333][ T6135] syz.1.1096 (6135) used greatest stack depth: 9200 bytes left [ 68.497766][ T6133] Buffer I/O error on dev loop4, logical block 108, lost async page write [ 68.507994][ T6133] Buffer I/O error on dev loop4, logical block 119, lost async page write [ 68.556807][ T6133] Buffer I/O error on dev loop4, logical block 120, lost async page write [ 68.696327][ T6172] loop0: detected capacity change from 0 to 512 [ 68.723404][ T6172] EXT4-fs warning (device loop0): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 68.748243][ T6172] EXT4-fs (loop0): mount failed [ 69.508993][ T1046] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 69.527545][ T1046] hid-generic 0000:0000:0000.0007: hidraw0: HID v0.00 Device [syz1] on syz0 [ 69.730715][ T6206] loop0: detected capacity change from 0 to 2048 [ 69.754228][ T6211] netlink: 180 bytes leftover after parsing attributes in process `syz.1.1130'. [ 69.792572][ T6206] Alternate GPT is invalid, using primary GPT. [ 69.799138][ T6206] loop0: p1 p2 p3 [ 69.913297][ T6224] loop5: detected capacity change from 0 to 512 [ 69.924587][ T6224] msdos: Unknown parameter 'dots$allow_utime' [ 70.090894][ T6245] program syz.0.1146 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 70.204706][ T29] kauditd_printk_skb: 25 callbacks suppressed [ 70.204725][ T29] audit: type=1400 audit(1759923892.927:631): avc: denied { remount } for pid=6257 comm="syz.5.1153" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 70.237053][ T6259] option changes via remount are deprecated (pid=6257 comm=syz.5.1153) [ 70.272927][ T29] audit: type=1400 audit(1759923892.997:632): avc: denied { unmount } for pid=3699 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 70.338766][ T29] audit: type=1326 audit(1759923893.057:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6266 comm="syz.5.1157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f588f6deec9 code=0x7ffc0000 [ 70.397998][ T6273] program syz.2.1160 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 70.418486][ T29] audit: type=1326 audit(1759923893.087:634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6266 comm="syz.5.1157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f588f6deec9 code=0x7ffc0000 [ 70.443166][ T29] audit: type=1326 audit(1759923893.097:635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6266 comm="syz.5.1157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f588f6deec9 code=0x7ffc0000 [ 70.467940][ T29] audit: type=1326 audit(1759923893.097:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6266 comm="syz.5.1157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f588f6deec9 code=0x7ffc0000 [ 70.492189][ T29] audit: type=1326 audit(1759923893.097:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6266 comm="syz.5.1157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f588f6deec9 code=0x7ffc0000 [ 70.516441][ T29] audit: type=1326 audit(1759923893.097:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6266 comm="syz.5.1157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f588f6deec9 code=0x7ffc0000 [ 70.540745][ T29] audit: type=1326 audit(1759923893.097:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6266 comm="syz.5.1157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f588f6deec9 code=0x7ffc0000 [ 70.564903][ T29] audit: type=1326 audit(1759923893.097:640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6266 comm="syz.5.1157" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f588f6d5d67 code=0x7ffc0000 [ 70.642356][ T6285] SELinux: policydb version 0 does not match my version range 15-35 [ 70.683167][ T6285] SELinux: failed to load policy [ 70.722963][ T6288] loop2: detected capacity change from 0 to 2048 [ 70.738167][ T6292] loop0: detected capacity change from 0 to 128 [ 70.773409][ T6288] EXT4-fs mount: 104 callbacks suppressed [ 70.773444][ T6288] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 70.893979][ T6308] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1166: bg 0: block 234: padding at end of block bitmap is not set [ 70.928819][ T6308] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 734 with error 117 [ 70.931370][ T6310] loop5: detected capacity change from 0 to 1024 [ 70.941772][ T6308] EXT4-fs (loop2): This should not happen!! Data will be lost [ 70.941772][ T6308] [ 71.003094][ T6310] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 71.058384][ T6320] loop0: detected capacity change from 0 to 256 [ 71.080638][ T52] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 734 with max blocks 2 with error 28 [ 71.093807][ T52] EXT4-fs (loop2): This should not happen!! Data will be lost [ 71.093807][ T52] [ 71.104030][ T52] EXT4-fs (loop2): Total free blocks count 0 [ 71.110293][ T52] EXT4-fs (loop2): Free/Dirty block details [ 71.116508][ T52] EXT4-fs (loop2): free_blocks=0 [ 71.122143][ T52] EXT4-fs (loop2): dirty_blocks=16 [ 71.127489][ T52] EXT4-fs (loop2): Block reservation details [ 71.135613][ T3699] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.257648][ T6339] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1187'. [ 71.267007][ T6339] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1187'. [ 71.302129][ T6345] loop0: detected capacity change from 0 to 2048 [ 71.316230][ T6350] loop4: detected capacity change from 0 to 512 [ 71.333114][ T6345] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 71.338771][ T6339] bond1: entered promiscuous mode [ 71.351396][ T6339] bond1: entered allmulticast mode [ 71.357261][ T6339] 8021q: adding VLAN 0 to HW filter on device bond1 [ 71.367485][ T6350] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 71.391602][ T6350] ext4 filesystem being mounted at /218/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 71.449936][ T6350] EXT4-fs error (device loop4): ext4_xattr_block_get:597: inode #15: comm syz.4.1193: corrupted xattr block 19: overlapping e_value [ 71.464502][ T6359] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1191: bg 0: block 234: padding at end of block bitmap is not set [ 71.478892][ T6350] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 71.479003][ T6350] EXT4-fs error (device loop4): ext4_xattr_block_get:597: inode #15: comm syz.4.1193: corrupted xattr block 19: overlapping e_value [ 71.479143][ T6350] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 71.479330][ T6350] EXT4-fs error (device loop4): ext4_xattr_block_list:766: inode #15: comm syz.4.1193: corrupted xattr block 19: overlapping e_value [ 71.531494][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.545618][ T6359] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 550 with error 117 [ 71.558766][ T6359] EXT4-fs (loop0): This should not happen!! Data will be lost [ 71.558766][ T6359] [ 71.594695][ T31] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 550 with max blocks 2 with error 28 [ 71.607647][ T31] EXT4-fs (loop0): This should not happen!! Data will be lost [ 71.607647][ T31] [ 71.617828][ T31] EXT4-fs (loop0): Total free blocks count 0 [ 71.624090][ T31] EXT4-fs (loop0): Free/Dirty block details [ 71.630217][ T31] EXT4-fs (loop0): free_blocks=0 [ 71.635381][ T31] EXT4-fs (loop0): dirty_blocks=16 [ 71.640698][ T31] EXT4-fs (loop0): Block reservation details [ 71.701000][ T6369] loop2: detected capacity change from 0 to 256 [ 71.864616][ T6385] syz.0.1206 uses obsolete (PF_INET,SOCK_PACKET) [ 71.886237][ T6388] loop1: detected capacity change from 0 to 512 [ 71.895284][ T6388] EXT4-fs: Ignoring removed orlov option [ 71.895829][ T6388] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 71.896952][ T6388] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=804fc119, mo2=0002] [ 71.897272][ T6388] EXT4-fs error (device loop1): ext4_iget_extra_inode:5075: inode #15: comm syz.1.1207: corrupted in-inode xattr: e_value size too large [ 71.897531][ T6388] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.1207: couldn't read orphan inode 15 (err -117) [ 71.898164][ T6388] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 71.924108][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.273855][ T6419] loop5: detected capacity change from 0 to 512 [ 72.280911][ T6419] EXT4-fs: Ignoring removed orlov option [ 72.288239][ T6419] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 72.298478][ T6419] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=804fc119, mo2=0002] [ 72.312871][ T6419] EXT4-fs error (device loop5): ext4_iget_extra_inode:5075: inode #15: comm syz.5.1222: corrupted in-inode xattr: e_value size too large [ 72.330008][ T6426] loop4: detected capacity change from 0 to 1764 [ 72.337009][ T6419] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.1222: couldn't read orphan inode 15 (err -117) [ 72.350263][ T6419] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 72.390076][ T3699] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.573571][ T6454] loop1: detected capacity change from 0 to 512 [ 72.582293][ T6454] EXT4-fs: Ignoring removed orlov option [ 72.589071][ T6454] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 72.599853][ T6454] EXT4-fs (loop1): orphan cleanup on readonly fs [ 72.607811][ T6454] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1238: bg 0: block 248: padding at end of block bitmap is not set [ 72.625761][ T6454] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.1238: Failed to acquire dquot type 1 [ 72.638347][ T6454] EXT4-fs (loop1): 1 truncate cleaned up [ 72.668931][ T6454] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 72.701793][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.832776][ T6482] loop0: detected capacity change from 0 to 1024 [ 72.847476][ T6482] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 72.858940][ T6482] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 72.905587][ T6482] JBD2: no valid journal superblock found [ 72.911623][ T6482] EXT4-fs (loop0): Could not load journal inode [ 72.928118][ T6488] loop1: detected capacity change from 0 to 2048 [ 72.972433][ T6488] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 73.003967][ T6494] lo speed is unknown, defaulting to 1000 [ 73.069236][ T6504] loop4: detected capacity change from 0 to 128 [ 73.077082][ T6506] loop0: detected capacity change from 0 to 512 [ 73.121496][ T6506] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 73.151073][ T6506] ext4 filesystem being mounted at /279/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 73.204546][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.244498][ T6520] loop5: detected capacity change from 0 to 1024 [ 73.253718][ T6520] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 73.265154][ T6520] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 73.276808][ T6520] JBD2: no valid journal superblock found [ 73.282948][ T6520] EXT4-fs (loop5): Could not load journal inode [ 73.339590][ T6525] SELinux: failed to load policy [ 73.478753][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.551957][ T6551] loop5: detected capacity change from 0 to 512 [ 73.559200][ T6551] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 73.577029][ T6551] EXT4-fs (loop5): 1 truncate cleaned up [ 73.586170][ T6551] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 73.607170][ T6558] 9pnet_fd: p9_fd_create_unix (6558): problem connecting socket: ./file0: -2 [ 73.682984][ T3699] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.745508][ T6573] loop5: detected capacity change from 0 to 512 [ 73.755784][ T6573] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 73.886759][ T6586] SELinux: failed to load policy [ 73.916445][ T6592] netlink: 1084 bytes leftover after parsing attributes in process `syz.1.1300'. [ 74.029080][ T6604] loop2: detected capacity change from 0 to 512 [ 74.037077][ T6604] EXT4-fs: Ignoring removed orlov option [ 74.043826][ T6604] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 74.055138][ T6604] EXT4-fs (loop2): orphan cleanup on readonly fs [ 74.063024][ T6604] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1307: bg 0: block 248: padding at end of block bitmap is not set [ 74.068735][ T6609] loop0: detected capacity change from 0 to 128 [ 74.089298][ T6604] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.1307: Failed to acquire dquot type 1 [ 74.106393][ T6604] EXT4-fs (loop2): 1 truncate cleaned up [ 74.114621][ T6604] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 74.153254][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.165743][ T6615] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 74.206006][ T6621] loop5: detected capacity change from 0 to 1024 [ 74.213874][ T6621] EXT4-fs (loop5): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 74.233050][ T6621] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 74.259124][ T3699] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.282389][ T6630] netlink: 1084 bytes leftover after parsing attributes in process `syz.5.1317'. [ 74.410704][ T6647] loop4: detected capacity change from 0 to 512 [ 74.422898][ T6647] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.436232][ T6647] ext4 filesystem being mounted at /242/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 74.472678][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.477454][ T6653] lo speed is unknown, defaulting to 1000 [ 74.527870][ T6655] lo speed is unknown, defaulting to 1000 [ 74.604385][ T6658] loop5: detected capacity change from 0 to 2048 [ 74.633039][ T6658] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 74.698223][ T6669] serio: Serial port ptm0 [ 74.708055][ T1046] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 74.711390][ T6673] UHID_CREATE from different security context by process 518 (syz.4.1334), this is not allowed. [ 74.715851][ T1046] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 74.734135][ T1046] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 74.741939][ T1046] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 74.744809][ T6674] sctp: [Deprecated]: syz.0.1336 (pid 6674) Use of struct sctp_assoc_value in delayed_ack socket option. [ 74.744809][ T6674] Use struct sctp_sack_info instead [ 74.749858][ T1046] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 74.774502][ T1046] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 74.782329][ T1046] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 74.790239][ T1046] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 74.798057][ T1046] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 74.805860][ T1046] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 74.820935][ T1046] hid-generic 0000:0000:0000.0008: hidraw0: HID v0.03 Device [syz1] on syz1 [ 75.086574][ T6700] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1348'. [ 75.096947][ T6700] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1348'. [ 75.179786][ T3699] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.244891][ T29] kauditd_printk_skb: 60 callbacks suppressed [ 75.244953][ T29] audit: type=1400 audit(1759923897.967:697): avc: denied { create } for pid=6716 comm="syz.5.1354" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 75.250394][ T6715] loop2: detected capacity change from 0 to 1024 [ 75.258943][ T29] audit: type=1400 audit(1759923897.977:698): avc: denied { module_load } for pid=6718 comm="syz.4.1357" path=2F2173656C696E7578776B311FD06DC37F39C99E2A0D5493FDE291EFAA16236A978FBCDE590FCCC56D56CB15766D2870C92D515A23D27B84BF06 dev="mqueue" ino=14268 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=system permissive=1 [ 75.330913][ T6719] kernel read not supported for file /!selinuxwk1m9ɞ*T#jYmVvm(p-QZ#{ (pid: 6719 comm: syz.4.1357) [ 75.346670][ T6715] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 75.354089][ T6713] loop0: detected capacity change from 0 to 8192 [ 75.358865][ T29] audit: type=1400 audit(1759923898.007:699): avc: denied { connect } for pid=6716 comm="syz.5.1354" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 75.391845][ T6715] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 75.421476][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.466219][ T10] hid-generic 0000:0000:0000.0009: hidraw0: HID v0.03 Device [syz1] on syz1 [ 75.575391][ T6744] loop2: detected capacity change from 0 to 736 [ 75.595726][ T6748] veth0: entered promiscuous mode [ 75.611701][ T6747] veth0: left promiscuous mode [ 75.817113][ T6782] veth0: entered promiscuous mode [ 75.826398][ T6780] veth0: left promiscuous mode [ 75.939380][ T6792] lo speed is unknown, defaulting to 1000 [ 76.120528][ T6804] netlink: 44 bytes leftover after parsing attributes in process `syz.5.1395'. [ 76.257749][ T29] audit: type=1400 audit(1759923898.977:700): avc: denied { write } for pid=6816 comm="syz.5.1404" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 76.304815][ T29] audit: type=1400 audit(1759923899.027:701): avc: denied { read } for pid=6820 comm="syz.1.1405" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 76.328760][ T29] audit: type=1400 audit(1759923899.027:702): avc: denied { open } for pid=6820 comm="syz.1.1405" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 76.367154][ T29] audit: type=1400 audit(1759923899.027:703): avc: denied { ioctl } for pid=6820 comm="syz.1.1405" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x9374 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 76.423484][ T6826] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1409'. [ 76.491740][ T29] audit: type=1326 audit(1759923899.217:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6834 comm="syz.4.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19fc7deec9 code=0x7ffc0000 [ 76.563367][ T29] audit: type=1326 audit(1759923899.247:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6834 comm="syz.4.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19fc7deec9 code=0x7ffc0000 [ 76.587795][ T29] audit: type=1326 audit(1759923899.247:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6834 comm="syz.4.1413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19fc7deec9 code=0x7ffc0000 [ 76.615547][ T6847] loop0: detected capacity change from 0 to 512 [ 76.652473][ T6847] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 76.707409][ T6847] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.1419: bg 0: block 104: invalid block bitmap [ 76.731205][ T6847] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 76.741603][ T6847] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.1419: invalid indirect mapped block 1 (level 1) [ 76.791224][ T6847] EXT4-fs (loop0): 1 truncate cleaned up [ 76.798165][ T6847] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 76.821672][ T6861] sctp: [Deprecated]: syz.2.1425 (pid 6861) Use of struct sctp_assoc_value in delayed_ack socket option. [ 76.821672][ T6861] Use struct sctp_sack_info instead [ 76.861604][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.993684][ T6884] loop4: detected capacity change from 0 to 512 [ 77.008519][ T6884] EXT4-fs error (device loop4): ext4_xattr_inode_iget:437: comm syz.4.1434: Parent and EA inode have the same ino 15 [ 77.038579][ T6884] EXT4-fs error (device loop4): ext4_xattr_inode_iget:437: comm syz.4.1434: Parent and EA inode have the same ino 15 [ 77.074886][ T6892] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1439'. [ 77.104232][ T6884] EXT4-fs (loop4): 1 orphan inode deleted [ 77.111456][ T6884] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 77.204348][ T6929] program syz.2.1443 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 77.225649][ T6944] netlink: 256 bytes leftover after parsing attributes in process `syz.5.1445'. [ 77.235607][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.553717][ T6984] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1453'. [ 77.592947][ T6977] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 77.716176][ T6995] loop5: detected capacity change from 0 to 1024 [ 77.739855][ T6995] EXT4-fs: Ignoring removed nobh option [ 77.746073][ T6995] EXT4-fs: inline encryption not supported [ 77.764696][ T6995] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 77.778735][ T7001] loop4: detected capacity change from 0 to 512 [ 77.798892][ T6995] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1459: bg 0: block 312: padding at end of block bitmap is not set [ 77.859474][ T7001] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 77.884547][ T3699] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.901134][ T7001] ext4 filesystem being mounted at /275/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 78.007773][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.043416][ T7030] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1471'. [ 78.147890][ T7045] loop2: detected capacity change from 0 to 512 [ 78.163082][ T7045] EXT4-fs error (device loop2): ext4_iget_extra_inode:5075: inode #15: comm syz.2.1479: corrupted in-inode xattr: invalid ea_ino [ 78.181029][ T7045] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.1479: couldn't read orphan inode 15 (err -117) [ 78.196535][ T7047] loop4: detected capacity change from 0 to 128 [ 78.203867][ T7045] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 78.274827][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.347901][ T7060] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 78.364470][ T1046] lo speed is unknown, defaulting to 1000 [ 78.527100][ T7076] loop5: detected capacity change from 0 to 2048 [ 78.534872][ T7079] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 78.562707][ T7076] Alternate GPT is invalid, using primary GPT. [ 78.569471][ T7076] loop5: p1 p2 p3 [ 78.573486][ T7076] loop5: partition table partially beyond EOD, truncated [ 78.587506][ T7083] loop1: detected capacity change from 0 to 512 [ 78.608134][ T7083] EXT4-fs error (device loop1): ext4_iget_extra_inode:5075: inode #15: comm syz.1.1497: corrupted in-inode xattr: invalid ea_ino [ 78.623111][ T7083] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.1497: couldn't read orphan inode 15 (err -117) [ 78.636993][ T7083] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 78.681957][ T7094] loop5: detected capacity change from 0 to 512 [ 78.694042][ T7094] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 78.723606][ T7094] ext4 filesystem being mounted at /287/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 78.755163][ T3312] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.768256][ T7100] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 78.827746][ T3699] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.989127][ T7125] netlink: 'syz.1.1516': attribute type 13 has an invalid length. [ 79.127839][ T7125] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.206277][ T7125] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 79.218761][ T7125] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 79.315264][ T3407] lo speed is unknown, defaulting to 1000 [ 79.321352][ T3407] syz0: Port: 1 Link DOWN [ 79.327550][ T6913] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 79.345912][ T6913] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 79.380731][ T6913] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 79.392195][ T6913] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 79.543429][ T7170] syzkaller0: tun_chr_ioctl cmd 35111 [ 79.795799][ T7206] loop4: detected capacity change from 0 to 512 [ 79.818620][ T7206] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 79.872468][ T7206] ext4 filesystem being mounted at /299/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 79.916309][ T7206] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #2: block 18: comm syz.4.1556: lblock 23 mapped to illegal pblock 18 (length 1) [ 80.010137][ T7206] EXT4-fs (loop4): Remounting filesystem read-only [ 80.040550][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.212625][ T7244] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 80.226841][ T7242] loop5: detected capacity change from 0 to 512 [ 80.234677][ T7244] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 80.244330][ T7242] EXT4-fs error (device loop5): ext4_iget_extra_inode:5075: inode #15: comm syz.5.1567: corrupted in-inode xattr: invalid ea_ino [ 80.258387][ T7242] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.1567: couldn't read orphan inode 15 (err -117) [ 80.271253][ T7242] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 80.313799][ T3699] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.401461][ T7253] syzkaller0: tun_chr_ioctl cmd 35111 [ 80.418883][ T29] kauditd_printk_skb: 171 callbacks suppressed [ 80.418902][ T29] audit: type=1400 audit(1759923903.137:878): avc: denied { write } for pid=7256 comm="syz.0.1576" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 80.486258][ T29] audit: type=1400 audit(1759923903.207:879): avc: denied { write } for pid=7260 comm="syz.5.1578" name="rtc0" dev="devtmpfs" ino=244 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 80.539867][ T29] audit: type=1400 audit(1759923903.237:880): avc: denied { read } for pid=7262 comm="syz.0.1579" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 80.563424][ T29] audit: type=1400 audit(1759923903.237:881): avc: denied { open } for pid=7262 comm="syz.0.1579" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 80.587394][ T29] audit: type=1400 audit(1759923903.237:882): avc: denied { ioctl } for pid=7262 comm="syz.0.1579" path="/dev/ppp" dev="devtmpfs" ino=140 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 80.642136][ T29] audit: type=1326 audit(1759923903.367:883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7267 comm="syz.0.1583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4a7a6eec9 code=0x7ffc0000 [ 80.666375][ T29] audit: type=1326 audit(1759923903.367:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7267 comm="syz.0.1583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=200 compat=0 ip=0x7fa4a7a6eec9 code=0x7ffc0000 [ 80.690563][ T29] audit: type=1326 audit(1759923903.367:885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7267 comm="syz.0.1583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4a7a6eec9 code=0x7ffc0000 [ 80.718447][ T29] audit: type=1326 audit(1759923903.367:886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7267 comm="syz.0.1583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7fa4a7a6eec9 code=0x7ffc0000 [ 80.742643][ T29] audit: type=1326 audit(1759923903.367:887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7267 comm="syz.0.1583" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa4a7a6eec9 code=0x7ffc0000 [ 80.855757][ T7277] SELinux: ebitmap: truncated map [ 80.861678][ T7277] SELinux: failed to load policy [ 80.866966][ T7278] SELinux: failed to load policy [ 80.928505][ T7290] loop1: detected capacity change from 0 to 128 [ 80.945438][ T7290] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 80.974396][ T7290] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 81.175077][ T7315] loop2: detected capacity change from 0 to 256 [ 81.347316][ T7321] syzkaller0: tun_chr_ioctl cmd 35111 [ 81.459014][ T7325] sock: sock_set_timeout: `syz.0.1610' (pid 7325) tries to set negative timeout [ 81.970255][ T7350] __nla_validate_parse: 1 callbacks suppressed [ 81.970280][ T7350] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1622'. [ 82.206674][ T7368] loop0: detected capacity change from 0 to 512 [ 82.219016][ T7372] loop4: detected capacity change from 0 to 512 [ 82.231752][ T7368] EXT4-fs: Ignoring removed mblk_io_submit option [ 82.237970][ T7372] EXT4-fs: Ignoring removed nomblk_io_submit option [ 82.251049][ T7372] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 82.261575][ T7368] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 82.263895][ T7372] EXT4-fs (loop4): 1 truncate cleaned up [ 82.277737][ T7372] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 82.309466][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.318777][ T7368] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 82.327729][ T7368] EXT4-fs (loop0): orphan cleanup on readonly fs [ 82.382006][ T7368] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.1628: Invalid block bitmap block 0 in block_group 0 [ 82.414929][ T7368] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.1628: Invalid block bitmap block 0 in block_group 0 [ 82.465640][ T7384] loop2: detected capacity change from 0 to 512 [ 82.482930][ T7368] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.1628: Invalid block bitmap block 0 in block_group 0 [ 82.511087][ T7368] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.1628: Failed to acquire dquot type 1 [ 82.524176][ T7384] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 82.552665][ T7368] EXT4-fs (loop0): 1 orphan inode deleted [ 82.558644][ T7384] ext4 filesystem being mounted at /340/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 82.610162][ T7384] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #2: block 18: comm syz.2.1634: lblock 23 mapped to illegal pblock 18 (length 1) [ 82.646315][ T7384] EXT4-fs (loop2): Remounting filesystem read-only [ 82.666716][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.806519][ T7393] netlink: 'syz.4.1639': attribute type 13 has an invalid length. [ 82.831143][ T6900] EXT4-fs error (device loop0): ext4_release_dquot:6981: comm kworker/u8:12: Failed to release dquot type 1 [ 82.844267][ T7368] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 82.881573][ T7395] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 82.890799][ T7368] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 82.906424][ T7395] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 82.930492][ T7393] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.937794][ T7393] bridge0: port 1(bridge_slave_0) entered disabled state [ 82.948492][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.091247][ T7393] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 83.107474][ T7393] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 83.193582][ T6949] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.221031][ T6949] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.230047][ T6949] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.259360][ T6949] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.299263][ T7415] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1648'. [ 83.308652][ T7415] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1648'. [ 83.323503][ T7415] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1648'. [ 83.332907][ T7415] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1648'. [ 83.357556][ T7418] syzkaller1: tun_chr_ioctl cmd 2147767506 [ 83.545019][ T7427] 9pnet: Could not find request transport:  [ 83.729192][ T7445] loop2: detected capacity change from 0 to 2048 [ 83.755343][ T7445] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none. [ 83.756423][ T7452] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1663'. [ 83.805498][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000900. [ 83.974386][ T7468] netlink: 830 bytes leftover after parsing attributes in process `syz.0.1671'. [ 83.992725][ T10] kernel write not supported for file /736/clear_refs (pid: 10 comm: kworker/0:1) [ 84.062335][ T7473] loop2: detected capacity change from 0 to 512 [ 84.072013][ T7473] EXT4-fs: Ignoring removed nobh option [ 84.078437][ T7473] EXT4-fs: Ignoring removed orlov option [ 84.113338][ T7473] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 84.134580][ T7479] loop4: detected capacity change from 0 to 2048 [ 84.141572][ T7473] ext4 filesystem being mounted at /350/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 84.170689][ T7479] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none. [ 84.230519][ T3315] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 84.270972][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000900. [ 84.284391][ T7489] loop0: detected capacity change from 0 to 512 [ 84.312205][ T7489] EXT4-fs: Ignoring removed nomblk_io_submit option [ 84.324121][ T7489] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 84.364510][ T7489] EXT4-fs (loop0): 1 truncate cleaned up [ 84.375499][ T7489] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 84.405612][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 84.420101][ T7496] loop2: detected capacity change from 0 to 512 [ 84.429882][ T10] kernel write not supported for file /684/clear_refs (pid: 10 comm: kworker/0:1) [ 84.450482][ T7496] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 84.465757][ T7496] EXT4-fs (loop2): orphan cleanup on readonly fs [ 84.487381][ T7496] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.1682: Failed to acquire dquot type 1 [ 84.507703][ T7496] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1682: bg 0: block 40: padding at end of block bitmap is not set [ 84.531934][ T7496] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 84.541595][ T7513] loop5: detected capacity change from 0 to 512 [ 84.542261][ T7496] EXT4-fs (loop2): 1 truncate cleaned up [ 84.548675][ T7513] EXT4-fs: Ignoring removed nobh option [ 84.559723][ T7513] EXT4-fs: Ignoring removed orlov option [ 84.566759][ T7496] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 84.580978][ T7511] loop1: detected capacity change from 0 to 4096 [ 84.592185][ T7511] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 84.607422][ T7513] ext4 filesystem being mounted at /327/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 84.659876][ T7524] loop0: detected capacity change from 0 to 512 [ 84.682587][ T7524] ext4 filesystem being mounted at /372/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 84.700223][ T7524] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #2: comm syz.0.1694: corrupted inode contents [ 84.734839][ T7524] EXT4-fs error (device loop0): ext4_dirty_inode:6509: inode #2: comm syz.0.1694: mark_inode_dirty error [ 84.748304][ T7524] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #2: comm syz.0.1694: corrupted inode contents [ 84.771145][ T7524] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #2: comm syz.0.1694: mark_inode_dirty error [ 84.786941][ T7524] EXT4-fs warning (device loop0): ext4_empty_dir:3089: inode #18: comm syz.0.1694: directory missing '.' [ 84.856739][ T1046] kernel write not supported for file /786/clear_refs (pid: 1046 comm: kworker/1:2) [ 84.866227][ T7535] rtc_cmos 00:00: Alarms can be up to one day in the future [ 84.910177][ T7541] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1710'. [ 85.004763][ T7554] loop0: detected capacity change from 0 to 512 [ 85.014796][ T7554] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 85.023571][ T7554] EXT4-fs (loop0): orphan cleanup on readonly fs [ 85.033408][ T7554] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.1704: Failed to acquire dquot type 1 [ 85.045220][ T7554] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1704: bg 0: block 40: padding at end of block bitmap is not set [ 85.060204][ T7554] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 85.069535][ T7554] EXT4-fs (loop0): 1 truncate cleaned up [ 85.106926][ T7561] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1711'. [ 85.157661][ T7571] tap0: tun_chr_ioctl cmd 1074025677 [ 85.163351][ T7571] tap0: linktype set to 768 [ 85.277557][ T7579] loop2: detected capacity change from 0 to 164 [ 85.318311][ T7579] ISOFS: unable to read i-node block [ 85.323975][ T7579] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 85.426719][ T29] kauditd_printk_skb: 115 callbacks suppressed [ 85.426759][ T29] audit: type=1326 audit(1759923908.147:996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7589 comm="syz.4.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f19fc7d5d67 code=0x7ffc0000 [ 85.619473][ T7605] loop4: detected capacity change from 0 to 256 [ 85.626956][ T7605] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 85.667489][ T29] audit: type=1326 audit(1759923908.147:997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7589 comm="syz.4.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f19fc77af79 code=0x7ffc0000 [ 85.690868][ T29] audit: type=1326 audit(1759923908.147:998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7589 comm="syz.4.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f19fc7d5d67 code=0x7ffc0000 [ 85.707809][ T7607] rtc_cmos 00:00: Alarms can be up to one day in the future [ 85.714164][ T29] audit: type=1326 audit(1759923908.147:999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7589 comm="syz.4.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f19fc77af79 code=0x7ffc0000 [ 85.714203][ T29] audit: type=1326 audit(1759923908.147:1000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7589 comm="syz.4.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19fc7deec9 code=0x7ffc0000 [ 85.714235][ T29] audit: type=1326 audit(1759923908.147:1001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7589 comm="syz.4.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19fc7deec9 code=0x7ffc0000 [ 85.714267][ T29] audit: type=1326 audit(1759923908.147:1002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7589 comm="syz.4.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f19fc7deec9 code=0x7ffc0000 [ 85.714301][ T29] audit: type=1326 audit(1759923908.147:1003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7589 comm="syz.4.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f19fc7d5d67 code=0x7ffc0000 [ 85.714335][ T29] audit: type=1326 audit(1759923908.147:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7589 comm="syz.4.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f19fc77af79 code=0x7ffc0000 [ 85.714389][ T29] audit: type=1326 audit(1759923908.147:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7589 comm="syz.4.1723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f19fc7d5d67 code=0x7ffc0000 [ 85.929023][ T7609] netlink: 'syz.2.1732': attribute type 13 has an invalid length. [ 85.938984][ T7613] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=7613 comm=syz.5.1734 [ 86.110932][ T7609] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.118216][ T7609] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.236139][ T7609] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 86.255146][ T7609] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 86.355549][ T6906] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 86.371047][ T6906] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 86.395514][ T6906] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 86.425754][ T6906] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 86.436559][ T7640] loop0: detected capacity change from 0 to 164 [ 86.473712][ T7640] ISOFS: unable to read i-node block [ 86.484207][ T7640] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 86.538749][ T7654] random: crng reseeded on system resumption [ 86.621893][ T7668] netlink: 'syz.0.1762': attribute type 13 has an invalid length. [ 86.633941][ T7667] loop5: detected capacity change from 0 to 1024 [ 86.640773][ T7667] EXT4-fs: inline encryption not supported [ 86.736285][ T7685] loop5: detected capacity change from 0 to 164 [ 86.750422][ T7668] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.757669][ T7668] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.772798][ T7687] Cannot find add_set index 4 as target [ 86.782363][ T7685] ISOFS: unable to read i-node block [ 86.788122][ T7685] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 86.838549][ T7668] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 86.856146][ T7668] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 86.934827][ T6919] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 86.945205][ T7701] loop2: detected capacity change from 0 to 4096 [ 86.951424][ T6919] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 86.956595][ T7701] EXT4-fs: Ignoring removed nomblk_io_submit option [ 86.967666][ T7701] EXT4-fs: Ignoring removed i_version option [ 86.968072][ T6919] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 86.989524][ T6919] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 87.006123][ T7701] EXT4-fs error (device loop2): ext4_ext_check_inode:523: inode #4: comm syz.2.1777: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 256(256) [ 87.072690][ T7701] EXT4-fs error (device loop2): ext4_quota_enable:7139: comm syz.2.1777: Bad quota inode: 4, type: 1 [ 87.112914][ T7701] EXT4-fs warning (device loop2): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 87.155537][ T7701] EXT4-fs (loop2): mount failed [ 87.271431][ T7737] loop0: detected capacity change from 0 to 512 [ 87.304874][ T7737] ext4 filesystem being mounted at /396/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 87.340258][ T7737] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 87.392319][ T7737] EXT4-fs (loop0): Remounting filesystem read-only [ 87.433985][ T7757] netlink: 5452 bytes leftover after parsing attributes in process `syz.5.1801'. [ 87.457747][ T7759] loop0: detected capacity change from 0 to 1024 [ 87.466802][ T7759] EXT4-fs: inline encryption not supported [ 87.662192][ T7770] loop0: detected capacity change from 0 to 1024 [ 87.673922][ T7775] loop1: detected capacity change from 0 to 164 [ 87.685765][ T7775] ISOFS: unable to read i-node block [ 87.692841][ T7770] ext4 filesystem being mounted at /398/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 87.693167][ T7775] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 87.800261][ T7790] loop0: detected capacity change from 0 to 4096 [ 87.807839][ T7790] EXT4-fs: Ignoring removed nomblk_io_submit option [ 87.814700][ T7790] EXT4-fs: Ignoring removed i_version option [ 87.829598][ T7790] EXT4-fs error (device loop0): ext4_ext_check_inode:523: inode #4: comm syz.0.1820: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 256(256) [ 87.868620][ T7801] loop4: detected capacity change from 0 to 256 [ 87.879192][ T7790] EXT4-fs error (device loop0): ext4_quota_enable:7139: comm syz.0.1820: Bad quota inode: 4, type: 1 [ 87.890742][ T7790] EXT4-fs warning (device loop0): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 87.911952][ T7801] FAT-fs (loop4): Directory bread(block 64) failed [ 87.918685][ T7801] FAT-fs (loop4): Directory bread(block 65) failed [ 87.925757][ T7790] EXT4-fs (loop0): mount failed [ 87.930952][ T7801] FAT-fs (loop4): Directory bread(block 66) failed [ 87.949375][ T7809] loop1: detected capacity change from 0 to 512 [ 87.956905][ T7801] FAT-fs (loop4): Directory bread(block 67) failed [ 87.964371][ T7801] FAT-fs (loop4): Directory bread(block 68) failed [ 87.971437][ T7801] FAT-fs (loop4): Directory bread(block 69) failed [ 87.974485][ T7809] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 87.978541][ T7801] FAT-fs (loop4): Directory bread(block 70) failed [ 87.992672][ T7809] EXT4-fs (loop1): orphan cleanup on readonly fs [ 87.994150][ T7809] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #16: comm syz.1.1822: corrupted inode contents [ 87.999646][ T7801] FAT-fs (loop4): Directory bread(block 71) failed [ 88.015497][ T7809] EXT4-fs (loop1): Remounting filesystem read-only [ 88.017832][ T7801] FAT-fs (loop4): Directory bread(block 72) failed [ 88.030703][ T7801] FAT-fs (loop4): Directory bread(block 73) failed [ 88.034582][ T7809] EXT4-fs (loop1): 1 truncate cleaned up [ 88.043310][ T1010] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 88.053963][ T1010] EXT4-fs (loop1): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 88.064803][ T1010] EXT4-fs (loop1): Quota write (off=8, len=24) cancelled because transaction is not started [ 88.106194][ T7817] loop4: detected capacity change from 0 to 1024 [ 88.113418][ T7819] loop1: detected capacity change from 0 to 1024 [ 88.120237][ T7819] EXT4-fs: inline encryption not supported [ 88.135523][ T7817] ext4 filesystem being mounted at /340/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 88.514501][ T7833] netlink: 'syz.5.1829': attribute type 13 has an invalid length. [ 88.534339][ T7837] SELinux: security_context_str_to_sid (root) failed with errno=-22 [ 88.605193][ T7833] bridge0: port 2(bridge_slave_1) entered disabled state [ 88.612541][ T7833] bridge0: port 1(bridge_slave_0) entered disabled state [ 88.677026][ T7854] loop0: detected capacity change from 0 to 512 [ 88.693222][ T7854] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.1841: couldn't read orphan inode 26 (err -116) [ 88.706573][ T7854] ext4 filesystem being mounted at /407/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 88.710660][ T7833] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 88.745910][ T7833] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 88.838305][ T6919] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 88.848026][ T6919] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 88.873346][ T6919] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 88.884067][ T6919] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 88.953482][ T7880] netlink: 'syz.0.1861': attribute type 13 has an invalid length. [ 88.982617][ T7883] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 88.990116][ T7883] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 88.997812][ T7883] vhci_hcd: default hub control req: 230f v0004 i0000 l3 [ 89.110052][ T7903] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1860'. [ 89.470762][ T7918] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 89.478392][ T7918] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 89.486175][ T7918] vhci_hcd: default hub control req: 230f v0004 i0000 l3 [ 89.616988][ T7927] loop1: detected capacity change from 0 to 256 [ 89.971453][ T7951] loop1: detected capacity change from 0 to 1024 [ 90.002997][ T7953] netlink: 'syz.4.1884': attribute type 1 has an invalid length. [ 90.021794][ T7951] ext4 filesystem being mounted at /334/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 90.044792][ T7951] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: comm syz.1.1883: lblock 0 mapped to illegal pblock 0 (length 6) [ 90.064220][ T7951] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117 [ 90.076763][ T7951] EXT4-fs (loop1): This should not happen!! Data will be lost [ 90.076763][ T7951] [ 90.101978][ T7961] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 90.117554][ T7961] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 60 with max blocks 4 with error 28 [ 90.129970][ T7961] EXT4-fs (loop1): This should not happen!! Data will be lost [ 90.129970][ T7961] [ 90.139886][ T7961] EXT4-fs (loop1): Total free blocks count 0 [ 90.146062][ T7961] EXT4-fs (loop1): Free/Dirty block details [ 90.152030][ T7961] EXT4-fs (loop1): free_blocks=4293918720 [ 90.152771][ T7965] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1889'. [ 90.157846][ T7961] EXT4-fs (loop1): dirty_blocks=48 [ 90.157867][ T7961] EXT4-fs (loop1): Block reservation details [ 90.178156][ T7961] EXT4-fs (loop1): i_reserved_data_blocks=3 [ 90.203951][ T6930] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: block 8: comm kworker/u8:37: lblock 8 mapped to illegal pblock 8 (length 8) [ 90.254877][ T7971] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1892'. [ 90.274220][ T7970] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1893'. [ 90.350038][ T7978] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 90.350038][ T7978] program syz.0.1896 not setting count and/or reply_len properly [ 90.474874][ T29] kauditd_printk_skb: 85 callbacks suppressed [ 90.474893][ T29] audit: type=1400 audit(1759923913.197:1083): avc: denied { write } for pid=7999 comm="syz.2.1907" name="001" dev="devtmpfs" ino=171 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 90.556171][ T29] audit: type=1400 audit(1759923913.277:1084): avc: denied { mount } for pid=8008 comm="syz.0.1921" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1 [ 90.724215][ T8036] loop1: detected capacity change from 0 to 512 [ 90.750230][ T29] audit: type=1400 audit(1759923913.467:1085): avc: denied { create } for pid=8037 comm="syz.4.1924" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 90.751327][ T8036] EXT4-fs: Ignoring removed mblk_io_submit option [ 90.787573][ T8036] EXT4-fs: Ignoring removed nomblk_io_submit option [ 90.794710][ T8036] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 90.803197][ T8036] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 90.822526][ T8053] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1929'. [ 90.831531][ T8053] netem: change failed [ 90.839943][ T8036] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4193: comm syz.1.1925: Allocating blocks 41-42 which overlap fs metadata [ 90.861195][ T8036] Quota error (device loop1): write_blk: dquota write failed [ 90.868720][ T8036] Quota error (device loop1): find_free_dqentry: Can't write quota data block 5 [ 90.889685][ T8036] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 90.908694][ T8036] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.1925: Failed to acquire dquot type 1 [ 90.921065][ T8036] EXT4-fs error (device loop1): mb_free_blocks:2017: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt. [ 90.921131][ T8036] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #12: comm syz.1.1925: corrupted inode contents [ 90.921401][ T8036] EXT4-fs error (device loop1): ext4_dirty_inode:6509: inode #12: comm syz.1.1925: mark_inode_dirty error [ 90.921544][ T8036] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #12: comm syz.1.1925: corrupted inode contents [ 90.921645][ T8036] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #12: comm syz.1.1925: mark_inode_dirty error [ 90.921766][ T8036] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #12: comm syz.1.1925: corrupted inode contents [ 90.921942][ T8036] EXT4-fs error (device loop1) in ext4_orphan_del:301: Corrupt filesystem [ 90.922093][ T8036] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #12: comm syz.1.1925: corrupted inode contents [ 90.922267][ T8036] EXT4-fs error (device loop1): ext4_truncate:4637: inode #12: comm syz.1.1925: mark_inode_dirty error [ 90.922397][ T8036] EXT4-fs error (device loop1) in ext4_process_orphan:343: Corrupt filesystem [ 90.922664][ T8036] EXT4-fs (loop1): 1 truncate cleaned up [ 91.042768][ T29] audit: type=1326 audit(1759923913.767:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8073 comm="syz.5.1937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f588f6deec9 code=0x7ffc0000 [ 91.065925][ T8071] loop2: detected capacity change from 0 to 4096 [ 91.074656][ T29] audit: type=1326 audit(1759923913.767:1087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8073 comm="syz.5.1937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f588f6deec9 code=0x7ffc0000 [ 91.137438][ T29] audit: type=1326 audit(1759923913.837:1088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8073 comm="syz.5.1937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f588f6deec9 code=0x7ffc0000 [ 91.161053][ T29] audit: type=1326 audit(1759923913.837:1089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8073 comm="syz.5.1937" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f588f6deec9 code=0x7ffc0000 [ 91.213572][ T8081] loop4: detected capacity change from 0 to 512 [ 91.321498][ T8091] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1944'. [ 91.330613][ T8091] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1944'. [ 91.414384][ T8099] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 91.414384][ T8099] program syz.4.1949 not setting count and/or reply_len properly [ 91.431408][ T8091] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1944'. [ 91.440428][ T8091] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1944'. [ 91.563956][ T8115] loop5: detected capacity change from 0 to 512 [ 91.699033][ T8142] loop0: detected capacity change from 0 to 4096 [ 91.796723][ T8164] loop2: detected capacity change from 0 to 1024 [ 91.815844][ T8164] EXT4-fs (loop2): shut down requested (2) [ 91.822444][ T8164] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop2 ino=15 [ 91.831368][ T8164] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop2 ino=15 [ 91.865968][ T8170] tap0: tun_chr_ioctl cmd 1074025681 [ 91.884006][ T8172] loop2: detected capacity change from 0 to 512 [ 91.979168][ T3318] ================================================================== [ 91.987336][ T3318] BUG: KCSAN: data-race in __xa_clear_mark / xas_find_marked [ 91.994724][ T3318] [ 91.997057][ T3318] read-write to 0xffff88810a592d98 of 8 bytes by task 6930 on cpu 1: [ 92.005131][ T3318] __xa_clear_mark+0xf5/0x1e0 [ 92.009828][ T3318] __folio_end_writeback+0xf7/0x3b0 [ 92.015055][ T3318] folio_end_writeback_no_dropbehind+0x6d/0x1b0 [ 92.021318][ T3318] folio_end_writeback+0x1c/0x70 [ 92.026294][ T3318] ext4_finish_bio+0x459/0x8c0 [ 92.031072][ T3318] ext4_release_io_end+0x9f/0x1f0 [ 92.036128][ T3318] ext4_end_io_end+0x18d/0x240 [ 92.040916][ T3318] ext4_end_io_rsv_work+0x151/0x1e0 [ 92.046221][ T3318] process_scheduled_works+0x4cb/0x9d0 [ 92.051724][ T3318] worker_thread+0x582/0x770 [ 92.056315][ T3318] kthread+0x486/0x510 [ 92.060410][ T3318] ret_from_fork+0x122/0x1b0 [ 92.065003][ T3318] ret_from_fork_asm+0x1a/0x30 [ 92.069776][ T3318] [ 92.072102][ T3318] read to 0xffff88810a592d98 of 8 bytes by task 3318 on cpu 0: [ 92.079643][ T3318] xas_find_marked+0x218/0x620 [ 92.084413][ T3318] find_get_entry+0x5d/0x380 [ 92.089040][ T3318] filemap_get_folios_tag+0x13b/0x210 [ 92.094434][ T3318] filemap_fdatawait_keep_errors+0x6c/0x180 [ 92.100341][ T3318] sync_inodes_sb+0x39c/0x440 [ 92.105030][ T3318] sync_filesystem+0x102/0x190 [ 92.109828][ T3318] generic_shutdown_super+0x44/0x210 [ 92.115133][ T3318] kill_block_super+0x2a/0x70 [ 92.119834][ T3318] ext4_kill_sb+0x42/0x80 [ 92.124183][ T3318] deactivate_locked_super+0x72/0x1c0 [ 92.129590][ T3318] deactivate_super+0x97/0xa0 [ 92.134299][ T3318] cleanup_mnt+0x269/0x2e0 [ 92.138723][ T3318] __cleanup_mnt+0x19/0x20 [ 92.143149][ T3318] task_work_run+0x12e/0x1a0 [ 92.147757][ T3318] exit_to_user_mode_loop+0xed/0x110 [ 92.153050][ T3318] do_syscall_64+0x1d6/0x200 [ 92.157645][ T3318] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.163547][ T3318] [ 92.165867][ T3318] value changed: 0xffffffffffe00000 -> 0xfffffffffe000000 [ 92.172975][ T3318] [ 92.175381][ T3318] Reported by Kernel Concurrency Sanitizer on: [ 92.181529][ T3318] CPU: 0 UID: 0 PID: 3318 Comm: syz-executor Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 92.192993][ T3318] Tainted: [W]=WARN [ 92.196793][ T3318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 92.206847][ T3318] ==================================================================