last executing test programs: 47.249849574s ago: executing program 1 (id=5843): r0 = io_uring_setup(0x7801, &(0x7f0000000140)={0x0, 0xb2b0, 0x800, 0x0, 0x21c}) io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000280)={&(0x7f0000001000)={[{0x0, 0x0, 0x1}]}, 0x1, 0x1}, 0x1) io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000ac0)={&(0x7f0000007000)={[{0x0}]}, 0x1, 0x1}, 0x1) 47.220856864s ago: executing program 1 (id=5847): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) capset(&(0x7f0000000240)={0x20071026}, &(0x7f0000000080)={0x200000, 0x200000, 0x0, 0x0, 0x0, 0xffffffff}) ioctl$sock_bt_hci(r0, 0x400448cc, 0x0) 47.161493784s ago: executing program 1 (id=5852): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000240)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWRULE={0x78, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x4c, 0x4, 0x0, 0x1, [{0x48, 0x1, 0x0, 0x1, @inner={{0xa}, @val={0x38, 0x2, 0x0, 0x1, [@NFTA_INNER_TYPE={0x8, 0x2, 0x1, 0x0, 0x84}, @NFTA_INNER_FLAGS={0x8, 0x3, 0x1, 0x0, 0x7}, @NFTA_INNER_HDRSIZE={0x8, 0x4, 0x1, 0x0, 0xf}, @NFTA_INNER_NUM={0x8}, @NFTA_INNER_EXPR={0x14, 0x5, 0x0, 0x1, @payload={{0xc}, @val={0x4}}}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0xa0}}, 0x4000000) 47.122042194s ago: executing program 1 (id=5854): r0 = socket$inet6(0xa, 0x3, 0x1) setsockopt$inet6_IPV6_RTHDRDSTOPTS(r0, 0x29, 0x37, &(0x7f0000000000)=ANY=[], 0x130) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x6, 0x0, 0x0) 47.084545535s ago: executing program 1 (id=5859): r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000000c0)=0x10) mknodat(r0, &(0x7f0000000040)='./file0\x00', 0x8000, 0x10000) 47.063011455s ago: executing program 1 (id=5862): bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000400)=ANY=[], 0x0, 0x3e, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x20) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newlink={0x8c, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @batadv={{0xb}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_BATADV_ALGO_NAME={0x21, 0x1, 'BATMAN_IV'}, @IFLA_BATADV_ALGO_NAME={0xc, 0x1, 'BATMAN_V'}, @IFLA_BATADV_ALGO_NAME={0xd, 0x1, 'BATMAN_IV'}, @IFLA_BATADV_ALGO_NAME={0xd, 0x1, 'BATMAN_IV'}, @IFLA_BATADV_ALGO_NAME={0xd, 0x1, 'BATMAN_IV'}, @IFLA_BATADV_ALGO_NAME={0xc, 0x1, 'BATMAN_V'}]}}}]}, 0x8c}}, 0x0) 32.011112177s ago: executing program 32 (id=5862): bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000400)=ANY=[], 0x0, 0x3e, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x20) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newlink={0x8c, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x6c, 0x12, 0x0, 0x1, @batadv={{0xb}, {0x5c, 0x2, 0x0, 0x1, [@IFLA_BATADV_ALGO_NAME={0x21, 0x1, 'BATMAN_IV'}, @IFLA_BATADV_ALGO_NAME={0xc, 0x1, 'BATMAN_V'}, @IFLA_BATADV_ALGO_NAME={0xd, 0x1, 'BATMAN_IV'}, @IFLA_BATADV_ALGO_NAME={0xd, 0x1, 'BATMAN_IV'}, @IFLA_BATADV_ALGO_NAME={0xd, 0x1, 'BATMAN_IV'}, @IFLA_BATADV_ALGO_NAME={0xc, 0x1, 'BATMAN_V'}]}}}]}, 0x8c}}, 0x0) 17.608062904s ago: executing program 4 (id=6980): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) add_key(&(0x7f0000000040)='asymmetric\x00', 0x0, &(0x7f0000000300)='0', 0x1, 0xfffffffffffffffc) 17.517558995s ago: executing program 4 (id=6983): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@ipv4_newrule={0x24, 0x20, 0x301, 0x70bd2a, 0x0, {}, [@FRA_GENERIC_POLICY=@FRA_FWMARK={0x8, 0xa, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="2800000021000100"], 0x28}}, 0x0) 17.498960496s ago: executing program 4 (id=6985): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000000500000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x5f, 0xffffffffffffffff, {0x29}}, './file0\x00'}) 17.429086746s ago: executing program 4 (id=6987): syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000200)={[{@overriderock}, {@overriderock, 0x0}, {@unhide}, {@overriderock}, {@map_normal}, {@check_strict, 0x41}, {@cruft}], [{@fsmagic={'fsmagic', 0x3d, 0x1}}, {@mask={'mask', 0x3d, 'MAY_READ'}}]}, 0x0, 0x62c, &(0x7f00000050c0)="$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") mount$bind(&(0x7f00000001c0)='.\x00', &(0x7f0000000100)='./file0/../file0\x00', 0x0, 0x905891, 0x0) mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x212f4d1, 0x0) mount$9p_xen(0x0, &(0x7f0000000200)='./file0/file0\x00', 0x0, 0x24000, 0x0) 17.347981776s ago: executing program 4 (id=6995): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000600)='kfree\x00', r0}, 0x10) r1 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) add_key(&(0x7f00000003c0)='ceph\x00', 0x0, &(0x7f0000000400)="010000000037a788a11d1f000000000000006923c63a4541062101a59ea9cba39a989ca8c70b3692930208", 0x2b, r1) 15.578392886s ago: executing program 3 (id=7061): r0 = socket$netlink(0x10, 0x3, 0x5) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) bpf$OBJ_GET_MAP(0x7, &(0x7f00000009c0)=@o_path={&(0x7f0000000980)='./file0\x00', 0x0, 0x4008, r0}, 0x18) 15.534151226s ago: executing program 3 (id=7065): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000680)) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x14, 0x4, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000000)={r0, &(0x7f0000000140), &(0x7f0000000200)=""/221}, 0x20) 15.499830756s ago: executing program 3 (id=7067): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) fadvise64(r0, 0x1, 0x976, 0x3) 15.439561236s ago: executing program 3 (id=7075): syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000200)={[{@overriderock}, {@overriderock, 0x0}, {@unhide}, {@overriderock}, {@map_normal}, {@check_strict, 0x41}, {@cruft}], [{@fsmagic={'fsmagic', 0x3d, 0x1}}, {@mask={'mask', 0x3d, 'MAY_READ'}}]}, 0x0, 0x62c, &(0x7f00000050c0)="$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") mount$bind(&(0x7f00000001c0)='.\x00', &(0x7f0000000100)='./file0/../file0\x00', 0x0, 0x905891, 0x0) mount$bind(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x212f4d1, 0x0) mount$9p_xen(0x0, &(0x7f0000000200)='./file0/file0\x00', 0x0, 0x24000, 0x0) 15.405959747s ago: executing program 3 (id=7079): syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./bus\x00', 0x101c08a, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x6, 0x2c0, &(0x7f00000005c0)="$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") setrlimit(0x1, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) r0 = open(&(0x7f0000000080)='./bus\x00', 0x143142, 0x0) pwrite64(r0, &(0x7f0000000300)='_', 0x1, 0x10000000005) 15.236065967s ago: executing program 4 (id=7085): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000850000005000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10) perf_event_open(&(0x7f0000002180)={0x2, 0x80, 0x4f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe51}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x1100, 0x0, 0x0, 0x0, 0x0, 0x0) 15.235998367s ago: executing program 33 (id=7085): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000850000005000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10) perf_event_open(&(0x7f0000002180)={0x2, 0x80, 0x4f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe51}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_clone(0x1100, 0x0, 0x0, 0x0, 0x0, 0x0) 15.208041548s ago: executing program 3 (id=7086): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x6, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) syz_emit_ethernet(0xfdef, &(0x7f00000002c0)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0086dd6002000800fe2c00fe8000000000000000000000000000bbff02000000000000000000000000000132"], 0x0) 15.145071888s ago: executing program 34 (id=7086): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x6, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) syz_emit_ethernet(0xfdef, &(0x7f00000002c0)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0086dd6002000800fe2c00fe8000000000000000000000000000bbff02000000000000000000000000000132"], 0x0) 1.379174513s ago: executing program 7 (id=7665): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f00000001c0)=[@in={0x2, 0x4e20, @empty}], 0x10) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0xfffd}, 0x90) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e20, @local}]}, &(0x7f0000000100)=0x10) 780.833846ms ago: executing program 2 (id=7701): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fcffffff18110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x120c480, &(0x7f0000000c80), 0x3, 0x4ea, &(0x7f0000000680)="$eJzs3d9rXFkdAPDvnSRt0qYmVR9qwbZoJS3amaSxbfChjSD6VLDW9xiTSQiZZEJm0jahSIp/gCD+Qp988kXwDxCkf4KIBX0XEaW4bRd2F3Z3lpncSbPpTH5sk5k28/nAyT3n/pjvOTOZM3PuucwNoGNdiIjxiOiKiMsRMZCuz6Qp1jdSdb/nzx5OVVMSlcrd/yeRpOvqj5Wky5PpYb0R8YPvRfw4eTVuaXVtfrJQyC+n5Vx5YSlXWl27MrcwOZufzS+Oj45cH7sxdm1suFG1P6h8hrbe/M5/fvWzP3z35l++cf9fE/+79JNqtfrTbVvbsRfre9xvo+k9teei7r1KxPJ+gr3Bqv833bUWAgDwNqh+x/98RHwlIl78tt21AQAAAA5D5VZ/fJhEVAAAAIAjK1O7BjbJZNNrAfojk8lmN67h/WKcyBSKpfLXZ4ori9Mb18oORk9mZq6QH06vFR6MnqRaHqnlX5avbiuPRsTpiPjFQF+tnJ0qFqbbffIDAAAAOsTJbeP/dwc2xv8AAADAETPY7goAAAAAh874HwAAAI6+puP/pLu1FQEAAAAOw/dv366mSv3+19P3Vlfmi/euTOdL89mFlansVHF5KTtbLM7WfrNvYbfHKxSLS9+MxZUHuXK+VM6VVtcmFoori+WJ2n29J/LuEw0AAACtd/r8438mEbH+rb5aqjqWbtt9rN51yLUDDlNmf7snh1UPoPV8gkPn2nqB7/mmex1rSV2A1jIfD+wysP9l7e+tzfI+TxsAAABvgqEvvc78v/lAeJsZyEPnMv8PnWtj/r+v3dUA2sD8P3S447vv0ttsw1+bH5M4PQgAAG+U/lpKMtl0LrA/MplsNuJU7bYAPcnMXCE/HBGfi4h/DPQcr5ZH2l1pAAAAAAAAAAAAAAAAAAAAAAAAAHjLVCpJjFcAAACAoywi898kvZH/0MDF/u3nB44l7w/UlhFx/3d3f/1gslxeHqmuf2dzffk36fqrm4clEeutPZEBAAAAnajJDbvr4/T6OB4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADtLzZw+n6qmVcZ9+OyIGG8Xvjt7asjd6IuLEiyS6txyXRETXAcRffxQRZxrFT6rVisG0FtvjZyKir83xTx5AfOhkj6v9z3ij918mLtSWjd9/3Wl6XU8vNOv/Mpv9X1f8/ZXjqv3fqT3GOPvkT7mm8R9FnO1u3P/U4yev2f/+6Idra822VX4fMdTw8yf5VKxceWEpV1pduzK3MDmbn80vjo6OXB+7MXZtbDg3M1fIp38bxvj5l//88U7tP7E9fk9s9r87tf/iHtv/0ZMHz76wQ/xLX238+p+pBWocv/rcfy39HKhuH6rn1zfyW53749/O7dT+6SbP/26v/6U9tv/ynZ/+e4+7AgAtUFpdm58sFPLLMjIyRy9zJ32j7/vwNndMAADAgXv5pb/h5iRpeY0AAAAAAAAAAAAAAAAAAACg87TiR8i2xuttX1MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHb0SQAAAP//rVjWWw==") 743.846196ms ago: executing program 0 (id=7703): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000008c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=0x0, @ANYBLOB="0524060000000000300012800b0001006272696467650000200002800c002e00fffff6ffffffffff050007001f000000010027000000000008000a00a8"], 0x6c}}, 0x0) 668.006057ms ago: executing program 2 (id=7704): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000001640)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xec) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x2a082, 0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x84000, 0x0) 667.599387ms ago: executing program 6 (id=7705): r0 = socket$unix(0x1, 0x1, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xb, &(0x7f00000009c0)=@framed={{}, [@printk={@llx, {0x3, 0x0, 0x3, 0xa, 0x0}, {0x5}, {0x6, 0x0, 0x2}, {}, {}, {0x85, 0x0, 0x0, 0x8}}]}, &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 667.534017ms ago: executing program 5 (id=7714): r0 = socket$kcm(0x29, 0x2, 0x0) write$cgroup_pressure(r0, &(0x7f0000000140)={'full'}, 0xfffffdef) ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x5452, &(0x7f0000000000)) sendmsg$kcm(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x20000050) 603.624437ms ago: executing program 2 (id=7706): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000140)={[{@noload}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@lazytime}, {@quota}, {@quota}]}, 0x3, 0x443, &(0x7f0000000940)="$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") mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) bind$llc(r0, &(0x7f0000000040)={0x1a, 0x0, 0x0, 0x54}, 0x10) 602.950947ms ago: executing program 6 (id=7717): perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x0, 0x30100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x23, 0x4, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x28f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = mq_open(&(0x7f0000000380)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|\x00\x17\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbb\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8\xbf\xe6\xb2M\b/\rp\xa5\x00\x00\x00\x00', 0x40, 0x0, 0x0) fcntl$setlease(r0, 0x400, 0x0) 551.420378ms ago: executing program 0 (id=7707): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) setitimer(0x2, 0x0, 0x0) 550.964847ms ago: executing program 5 (id=7719): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) sendto$inet6(r0, &(0x7f0000000040)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev, 0x4}, 0x1c) shutdown(r0, 0x1) setsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f0000000180)=@int=0x5cc577f3, 0x4) 532.476747ms ago: executing program 6 (id=7708): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x4, 0x13e6, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xe, 0x4008031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) msync(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x4) 511.445217ms ago: executing program 0 (id=7709): socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={0xffffffffffffffff}) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000240)={'team0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=@getchain={0x3c, 0x11, 0x1, 0x0, 0x25dfdbff, {0x0, 0x0, 0x0, r2, {0xc}, {0x1}}, [{0x8, 0xb, 0x4}, {0x8, 0xb, 0x5}, {0xffffffffffffff3e, 0xb, 0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20028041}, 0x4000004) 511.373288ms ago: executing program 7 (id=7710): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000ac0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000380)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010025bd7000fcdbdf252100000008000300", @ANYRES32=r2, @ANYBLOB="24002d80050001000200000005000400010000000800020003"], 0x40}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000) 482.789548ms ago: executing program 5 (id=7711): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020641700000000002020007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) getresuid(&(0x7f0000000000), &(0x7f0000000240), &(0x7f0000000280)) 462.396228ms ago: executing program 2 (id=7712): perf_event_open(&(0x7f0000002180)={0x2, 0x80, 0x4f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000280)='kmem_cache_free\x00', r0}, 0x18) syz_clone(0x1100, 0x0, 0x0, 0x0, 0x0, 0x0) 439.030418ms ago: executing program 7 (id=7713): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) lsm_set_self_attr(0x67, 0x0, 0x0, 0x0) 426.950878ms ago: executing program 5 (id=7715): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0xd9, &(0x7f00000000c0)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) clock_gettime(0x0, 0x0) 379.947358ms ago: executing program 7 (id=7716): syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) r0 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}}) syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0xc000, &(0x7f00000006c0), 0x1, 0x246, &(0x7f00000007c0)="$eJzs3T9oM2UcB/DvXRJf+75BXnURxD8gIloor5vg8rooFKQUEUGFioiL0gq1xa1xcnHQWaWTSxE3q6N0KS6K4FS1Q10ELQ4WBx0iybVS24ja1Jz0Ph+43l3vee73HLnvkyyXBGisq0muJ2klmU7SSVIcb3B3tVw93F2f2l5I+v0nfiqG7ar9ylG/K0l6SR5KslUWeamdrG4+s/fLzmP3vbnSuff9zaenJnqRh/b3dh8/eG/ujY9mH1z94qsf5opcT/dP13X+ihH/axfJLf9Fsf+Jol33CPgn5l/78OtB7m9Ncs8w/52UqV68t5Zv2OrkgXf/qu/bP355+yTHCpy/fr8zeA/s9YHGKZN0U5QzSartspyZqT7Df9O6XL68tPzq9ItLK4sv1D1TAeelm+w++smlj6+cyP/3rSr/wMU1yP+T8xvfDrYPWnWPBpiIO6rVIP/Tz63dH/mHxpF/aC75h+aSf2gu+Yfmkn9oLvmHC6xztNEbeVj+obnkH5pL/qG5jucfAGiW/qW6n0AG6lL3/AMAAAAAAAAAAAAAAAAAAJy2PrW9cLRMquZn7yT7jyRpj6rfGv4ecXLj8O/ln4tBsz8UVbexPHvXmCcY0wc1P31903f11v/8znrrry0mvdeTXGu3T99/xeH9d3Y3/83xzvNjFviXihP7Dz812fon/bZRb/3ZneTTwfxzbdT8U+a24Xr0/NM9/hXLZ/TKr2OeAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIn5PQAA//8PK23M") 251.273509ms ago: executing program 2 (id=7718): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=@newlink={0x40, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, r1, 0x0, 0x110d1}, [@IFLA_VFINFO_LIST={0x18, 0x16, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@IFLA_VF_VLAN={0x10, 0x2, {0xffff775e, 0x85f, 0x8}}]}]}, @IFLA_GSO_MAX_SIZE={0x8, 0x29, 0x8b36}]}, 0x40}, 0x1, 0x0, 0x0, 0x80}, 0x40000880) 249.465449ms ago: executing program 0 (id=7729): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0) writev(r1, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}, {0x0, 0x900}], 0x2) 169.800139ms ago: executing program 7 (id=7720): r0 = socket$kcm(0x29, 0x2, 0x0) write$cgroup_pressure(r0, &(0x7f0000000140)={'full'}, 0xfffffdef) ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x5452, &(0x7f0000000000)) sendmsg$kcm(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x20000050) 137.63898ms ago: executing program 6 (id=7721): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000001640)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xec) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x2a082, 0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x84000, 0x0) 122.87789ms ago: executing program 2 (id=7722): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f00000001c0)=[@in={0x2, 0x4e20, @empty}], 0x10) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0xfffd}, 0x90) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e20, @local}]}, &(0x7f0000000100)=0x10) 70.20132ms ago: executing program 5 (id=7723): sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @mcast2}, 0x80, 0x0}, 0x40080) r0 = socket$kcm(0x11, 0x3, 0x0) setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000), 0x4) sendmsg$kcm(r0, &(0x7f0000000040)={&(0x7f0000000100)=@hci={0x1f, 0x60, 0x4}, 0xd0, &(0x7f0000000080), 0x1}, 0x0) 70.0866ms ago: executing program 6 (id=7724): perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x35, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r0, 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00008, 0x0, 0x50032, 0xffffffffffffffff, 0x0) 44.18821ms ago: executing program 5 (id=7725): syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000080)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0, &(0x7f0000000000)=ANY=[], 0x1, 0x357, &(0x7f0000000180)="$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") r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0) 43.56351ms ago: executing program 0 (id=7726): r0 = socket$tipc(0x1e, 0x5, 0x0) ioctl$FITHAW(r0, 0xc0045878) pipe2(0x0, 0x0) ioperm(0xd6, 0x4, 0x6) 19.67176ms ago: executing program 6 (id=7727): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0) read$char_usb(r0, &(0x7f0000001840)=""/4090, 0xffa) preadv(r0, &(0x7f0000000040)=[{&(0x7f0000000180)=""/128, 0x80}], 0x1, 0x0, 0x0) read$char_usb(r0, &(0x7f0000000240)=""/34, 0x43) 5.87611ms ago: executing program 0 (id=7728): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05400000000000000000010000000900010073797a300000000040000000030a01010000000000000000010000000900030073797a300000000014000480080002400000000008000140000000000900010073797a30000000004c000000060a01040000000000000000010000002400048020000180080001006f736600140002800500020000000000080001400000001408000b40000000000900010073797a300000000014000000110001"], 0xd4}}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000002500)={{0x14}, [@NFT_MSG_NEWTABLE={0x28, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0x8}, [@NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x50}, 0x1, 0x0, 0x0, 0x20000800}, 0x4000000) 0s ago: executing program 7 (id=7730): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000200), 0x10) sendmsg$can_bcm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000600)=ANY=[@ANYBLOB="05"], 0x48}}, 0x0) sendmsg$can_bcm(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)={0x5, 0x32f, 0x0, {0x0, 0x2710}, {}, {}, 0x1, @can={{0x3}, 0x7, 0x3, 0x0, 0x0, "e2ca54989c6a2358"}}, 0x48}}, 0x0) kernel console output (not intermixed with test programs): 05.120:1599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16937 comm="syz.4.6250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6453c1e719 code=0x7ffc0000 [ 127.557382][ T29] audit: type=1326 audit(1731795705.140:1600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16937 comm="syz.4.6250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f6453c1e719 code=0x7ffc0000 [ 127.580908][ T29] audit: type=1326 audit(1731795705.140:1601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16937 comm="syz.4.6250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6453c1e719 code=0x7ffc0000 [ 127.604837][ T29] audit: type=1326 audit(1731795705.140:1602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16937 comm="syz.4.6250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6453c1e719 code=0x7ffc0000 [ 127.628426][T16935] hsr0: left allmulticast mode [ 127.633247][T16935] hsr_slave_0: left allmulticast mode [ 127.638728][T16935] hsr_slave_1: left allmulticast mode [ 127.682392][ T29] audit: type=1400 audit(1731795705.320:1603): avc: denied { override_creds } for pid=16943 comm="syz.2.6253" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 127.755026][T16954] netlink: 'syz.4.6257': attribute type 5 has an invalid length. [ 127.823291][T16958] loop0: detected capacity change from 0 to 128 [ 127.832813][T16958] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 127.876629][ T29] audit: type=1400 audit(1731795705.510:1604): avc: denied { write } for pid=16962 comm="syz.4.6271" name="ptp0" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 127.906513][T16961] can0: slcan on ttyS3. [ 127.923552][ T11] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 127.946522][T16961] can0 (unregistered): slcan off ttyS3. [ 127.972568][T16967] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 127.981385][ T29] audit: type=1326 audit(1731795705.620:1605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16970 comm="syz.3.6264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f006897e719 code=0x7ffc0000 [ 127.987828][T16967] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0' [ 128.017820][ T29] audit: type=1326 audit(1731795705.650:1606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16970 comm="syz.3.6264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f006897e719 code=0x7ffc0000 [ 128.041612][ T29] audit: type=1326 audit(1731795705.650:1607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16970 comm="syz.3.6264" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f006897e719 code=0x7ffc0000 [ 128.146675][T16985] loop2: detected capacity change from 0 to 512 [ 128.177589][T16985] ext4 filesystem being mounted at /1266/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 128.238339][T16998] loop2: detected capacity change from 0 to 2048 [ 128.275429][T16998] loop2: p2 < > p4 [ 128.279774][T16998] loop2: p4 size 8192 extends beyond EOD, truncated [ 130.045096][ T3391] usb usb2-port2: attempt power cycle [ 131.895080][ T3391] usb usb2-port2: unable to enumerate USB device [ 132.551625][T17000] lo speed is unknown, defaulting to 1000 [ 132.632594][T17000] chnl_net:caif_netlink_parms(): no params data found [ 132.665827][T17000] bridge0: port 1(bridge_slave_0) entered blocking state [ 132.672979][T17000] bridge0: port 1(bridge_slave_0) entered disabled state [ 132.680493][T17000] bridge_slave_0: entered allmulticast mode [ 132.687159][T17000] bridge_slave_0: entered promiscuous mode [ 132.694357][T17000] bridge0: port 2(bridge_slave_1) entered blocking state [ 132.701613][T17000] bridge0: port 2(bridge_slave_1) entered disabled state [ 132.708978][T17000] bridge_slave_1: entered allmulticast mode [ 132.715855][T17000] bridge_slave_1: entered promiscuous mode [ 132.723086][ T330] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 132.743471][T17000] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 132.754106][T17000] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 132.772529][T17000] team0: Port device team_slave_0 added [ 132.779253][T17000] team0: Port device team_slave_1 added [ 132.786319][ T330] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 132.805776][T17000] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 132.812932][T17000] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 132.838875][T17000] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 132.850226][T17000] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 132.857194][T17000] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 132.883105][T17000] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 132.895039][ T330] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 132.919372][T17000] hsr_slave_0: entered promiscuous mode [ 132.925494][T17000] hsr_slave_1: entered promiscuous mode [ 132.931347][T17000] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 132.939203][T17000] Cannot create hsr debugfs directory [ 132.951405][ T330] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 133.019718][T17000] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 133.028396][ T330] bridge_slave_1: left allmulticast mode [ 133.034112][ T330] bridge_slave_1: left promiscuous mode [ 133.039819][ T330] bridge0: port 2(bridge_slave_1) entered disabled state [ 133.047649][ T330] bridge_slave_0: left allmulticast mode [ 133.053283][ T330] bridge_slave_0: left promiscuous mode [ 133.058951][ T330] bridge0: port 1(bridge_slave_0) entered disabled state [ 133.206951][ T330] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 133.217314][ T330] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 133.227423][ T330] bond0 (unregistering): Released all slaves [ 133.235970][ T330] team0: Port device bond1 removed [ 133.242209][ T330] bond1 (unregistering): Released all slaves [ 133.250774][ T330] bond2 (unregistering): Released all slaves [ 133.259442][ T330] bond3 (unregistering): Released all slaves [ 133.267504][T17000] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 133.280640][T17000] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 133.288962][T17000] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 133.308326][ T330] tipc: Disabling bearer [ 133.313932][ T330] tipc: Left network mode [ 133.329745][T17000] 8021q: adding VLAN 0 to HW filter on device bond0 [ 133.340942][T17000] 8021q: adding VLAN 0 to HW filter on device team0 [ 133.353067][ T354] bridge0: port 1(bridge_slave_0) entered blocking state [ 133.360181][ T354] bridge0: port 1(bridge_slave_0) entered forwarding state [ 133.371024][ T330] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 133.378527][ T330] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 133.386287][ T330] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 133.393714][ T330] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 133.402475][ T330] veth1_macvtap: left promiscuous mode [ 133.407993][ T330] veth0_macvtap: left promiscuous mode [ 133.472544][ T330] team0 (unregistering): Port device team_slave_1 removed [ 133.483192][ T330] team0 (unregistering): Port device team_slave_0 removed [ 133.522303][ T334] bridge0: port 2(bridge_slave_1) entered blocking state [ 133.529515][ T334] bridge0: port 2(bridge_slave_1) entered forwarding state [ 133.589549][T17000] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 133.690992][T17000] veth0_vlan: entered promiscuous mode [ 133.700208][T17000] veth1_vlan: entered promiscuous mode [ 133.716544][T17000] veth0_macvtap: entered promiscuous mode [ 133.723870][T17000] veth1_macvtap: entered promiscuous mode [ 133.734183][T17000] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 133.744769][T17000] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 133.754602][T17000] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 133.765229][T17000] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 133.775202][T17000] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 133.785746][T17000] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 133.795615][T17000] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 133.806073][T17000] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 133.817498][T17000] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 133.825720][T17000] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 133.836269][T17000] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 133.846210][T17000] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 133.856641][T17000] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 133.866474][T17000] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 133.877011][T17000] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 133.886831][T17000] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 133.897376][T17000] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 133.907850][T17000] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 133.919603][T17000] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 133.928411][T17000] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 133.937200][T17000] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 133.946005][T17000] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 133.966556][ T29] kauditd_printk_skb: 77 callbacks suppressed [ 133.966571][ T29] audit: type=1400 audit(1731795711.610:1685): avc: denied { mounton } for pid=17000 comm="syz-executor" path="/root/syzkaller.QI8ZUb/syz-tmp" dev="sda1" ino=1950 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 133.997614][ T29] audit: type=1400 audit(1731795711.610:1686): avc: denied { mounton } for pid=17000 comm="syz-executor" path="/root/syzkaller.QI8ZUb/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 134.024699][ T29] audit: type=1400 audit(1731795711.610:1687): avc: denied { mounton } for pid=17000 comm="syz-executor" path="/root/syzkaller.QI8ZUb/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=48469 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 134.052416][ T29] audit: type=1400 audit(1731795711.640:1688): avc: denied { mounton } for pid=17000 comm="syz-executor" path="/dev/binderfs" dev="devtmpfs" ino=502 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 134.098305][T17039] loop3: detected capacity change from 0 to 512 [ 134.109051][T17041] can0: slcan on ttyS3. [ 134.126754][T17039] EXT4-fs mount: 59 callbacks suppressed [ 134.126765][T17039] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 134.145161][T17039] ext4 filesystem being mounted at /1210/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 134.156013][T17041] can0 (unregistered): slcan off ttyS3. [ 134.163021][T17039] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 134.183518][T17039] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 3 with error 28 [ 134.195872][T17039] EXT4-fs (loop3): This should not happen!! Data will be lost [ 134.195872][T17039] [ 134.201848][ T29] audit: type=1326 audit(1731795711.820:1689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17048 comm="syz.4.6280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6453c1e719 code=0x7ffc0000 [ 134.205512][T17039] EXT4-fs (loop3): Total free blocks count 0 [ 134.205529][T17039] EXT4-fs (loop3): Free/Dirty block details [ 134.229044][ T29] audit: type=1326 audit(1731795711.820:1690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17048 comm="syz.4.6280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6453c1e719 code=0x7ffc0000 [ 134.234978][T17039] EXT4-fs (loop3): free_blocks=65280 [ 134.240851][ T29] audit: type=1326 audit(1731795711.820:1691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17048 comm="syz.4.6280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=267 compat=0 ip=0x7f6453c1e719 code=0x7ffc0000 [ 134.264313][T17039] EXT4-fs (loop3): dirty_blocks=4 [ 134.269599][ T29] audit: type=1326 audit(1731795711.820:1692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17048 comm="syz.4.6280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6453c1e719 code=0x7ffc0000 [ 134.293024][T17039] EXT4-fs (loop3): Block reservation details [ 134.298040][ T29] audit: type=1326 audit(1731795711.820:1693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17048 comm="syz.4.6280" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6453c1e719 code=0x7ffc0000 [ 134.321467][T17039] EXT4-fs (loop3): i_reserved_data_blocks=4 [ 134.397556][ T3324] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 134.436007][T17065] netlink: 'syz.3.6283': attribute type 6 has an invalid length. [ 134.439342][T17067] loop4: detected capacity change from 0 to 128 [ 134.444090][T17065] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6283'. [ 134.488861][T17071] netlink: 16222 bytes leftover after parsing attributes in process `syz.5.6294'. [ 134.519801][T17077] loop0: detected capacity change from 0 to 2048 [ 134.562545][T17077] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 134.575225][T17077] ext4 filesystem being mounted at /1304/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 134.587862][T17094] loop2: detected capacity change from 0 to 256 [ 134.615097][T17098] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6307'. [ 134.615444][T17094] FAT-fs (loop2): Directory bread(block 64) failed [ 134.630740][T17094] FAT-fs (loop2): Directory bread(block 65) failed [ 134.637589][T17094] FAT-fs (loop2): Directory bread(block 66) failed [ 134.644661][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 134.645838][T17094] FAT-fs (loop2): Directory bread(block 67) failed [ 134.656878][T17101] loop3: detected capacity change from 0 to 128 [ 134.660810][T17094] FAT-fs (loop2): Directory bread(block 68) failed [ 134.673236][T17094] FAT-fs (loop2): Directory bread(block 69) failed [ 134.681022][T17094] FAT-fs (loop2): Directory bread(block 70) failed [ 134.687781][T17094] FAT-fs (loop2): Directory bread(block 71) failed [ 134.694628][T17094] FAT-fs (loop2): Directory bread(block 72) failed [ 134.701939][T17094] FAT-fs (loop2): Directory bread(block 73) failed [ 134.719765][T17104] hugetlbfs: syz.4.6310 (17104): Using mlock ulimits for SHM_HUGETLB is obsolete [ 134.751350][T17094] syz.2.6303: attempt to access beyond end of device [ 134.751350][T17094] loop2: rw=524288, sector=1736, nr_sectors = 32 limit=256 [ 134.772793][ T29] audit: type=1400 audit(1731795712.410:1694): avc: denied { watch } for pid=17109 comm="syz.4.6313" path="/1376/file0" dev="tmpfs" ino=7045 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 134.802886][T17094] syz.2.6303: attempt to access beyond end of device [ 134.802886][T17094] loop2: rw=0, sector=1736, nr_sectors = 8 limit=256 [ 134.837705][T17119] sctp: [Deprecated]: syz.4.6316 (pid 17119) Use of struct sctp_assoc_value in delayed_ack socket option. [ 134.837705][T17119] Use struct sctp_sack_info instead [ 134.904156][T17131] veth0_vlan: mtu greater than device maximum [ 134.914337][T17135] netlink: 51 bytes leftover after parsing attributes in process `syz.5.6323'. [ 135.073329][T17164] loop0: detected capacity change from 0 to 2048 [ 135.096503][T17164] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 135.111915][T17168] binfmt_misc: register: failed to install interpreter file ./file0/../file0 [ 135.138645][T17164] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 135.188205][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 135.229215][T17196] syz.4.6352[17196] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 135.229280][T17196] syz.4.6352[17196] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 135.241514][T17196] syz.4.6352[17196] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 135.307912][T17206] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6357'. [ 135.396640][T17224] loop0: detected capacity change from 0 to 512 [ 135.404432][T17224] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.6365: corrupted in-inode xattr: invalid ea_ino [ 135.419453][T17224] EXT4-fs error (device loop0): ext4_orphan_get:1393: comm syz.0.6365: couldn't read orphan inode 15 (err -117) [ 135.434425][T17229] No such timeout policy "syz0" [ 135.446209][T17224] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 135.493462][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 135.549911][T17245] loop4: detected capacity change from 0 to 128 [ 135.558627][T17245] EXT4-fs: Ignoring removed mblk_io_submit option [ 135.586944][T17245] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 135.607229][T17255] loop2: detected capacity change from 0 to 512 [ 135.607519][T17257] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6380'. [ 135.622986][T17245] ext4 filesystem being mounted at /1395/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 135.626306][T17257] netlink: 'syz.0.6380': attribute type 1 has an invalid length. [ 135.641203][T17257] netlink: 11 bytes leftover after parsing attributes in process `syz.0.6380'. [ 135.653083][T17245] EXT4-fs warning (device loop4): ext4_dirblock_csum_verify:406: inode #2: comm syz.4.6375: No space for directory leaf checksum. Please run e2fsck -D. [ 135.654049][T17255] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.6379: bg 0: block 248: padding at end of block bitmap is not set [ 135.668460][T17245] EXT4-fs error (device loop4): __ext4_find_entry:1652: inode #2: comm syz.4.6375: checksumming directory block 0 [ 135.697395][T17260] loop5: detected capacity change from 0 to 4096 [ 135.704605][T17255] EXT4-fs error (device loop2): ext4_acquire_dquot:6879: comm syz.2.6379: Failed to acquire dquot type 1 [ 135.716552][ T3314] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 135.723695][T17255] EXT4-fs (loop2): 1 truncate cleaned up [ 135.736860][T17255] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 135.749751][T17255] ext4 filesystem being mounted at /1287/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 135.749754][T17260] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 135.817483][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 135.824735][T17000] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 136.135792][T17332] loop3: detected capacity change from 0 to 512 [ 136.166959][T17332] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 136.175248][T17332] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 136.183668][T17332] EXT4-fs (loop3): 1 truncate cleaned up [ 136.189882][T17332] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 136.212370][T17341] loop0: detected capacity change from 0 to 136 [ 136.232504][T17332] EXT4-fs error (device loop3): ext4_append:79: inode #2: comm syz.3.6415: Logical block already allocated [ 136.241447][T17345] loop2: detected capacity change from 0 to 128 [ 136.254433][T17345] EXT4-fs: Ignoring removed mblk_io_submit option [ 136.287397][T17352] syz.5.6424[17352] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 136.287471][T17352] syz.5.6424[17352] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 136.297757][ T3324] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 136.299008][T17352] syz.5.6424[17352] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 136.317528][T17345] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 136.351869][T17345] ext4 filesystem being mounted at /1294/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 136.358748][T17358] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check. [ 136.368057][T17345] EXT4-fs warning (device loop2): ext4_dirblock_csum_verify:406: inode #2: comm syz.2.6419: No space for directory leaf checksum. Please run e2fsck -D. [ 136.393284][T17345] EXT4-fs error (device loop2): __ext4_find_entry:1652: inode #2: comm syz.2.6419: checksumming directory block 0 [ 136.393984][T17360] lo speed is unknown, defaulting to 1000 [ 136.441256][ T3317] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 136.493509][T17372] loop2: detected capacity change from 0 to 164 [ 136.510545][T17372] Unable to read rock-ridge attributes [ 136.529109][T17372] Unable to read rock-ridge attributes [ 136.552319][T17381] nfs4: Bad value for 'source' [ 136.560501][T17383] loop4: detected capacity change from 0 to 512 [ 136.579270][T17383] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 136.609287][T17383] EXT4-fs (loop4): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 136.636012][T17383] EXT4-fs error (device loop4): ext4_quota_enable:7053: inode #3: comm syz.4.6437: iget: special inode unallocated [ 136.650272][T17383] EXT4-fs error (device loop4): ext4_quota_enable:7056: comm syz.4.6437: Bad quota inode: 3, type: 0 [ 136.667328][T17383] EXT4-fs warning (device loop4): ext4_enable_quotas:7097: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix. [ 136.696613][T17394] EXT4-fs error (device loop4): ext4_lookup:1813: inode #12: comm syz.4.6437: iget: bad i_size value: -9223372036854771712 [ 136.733859][ T3314] EXT4-fs (loop4): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 136.748083][T17396] loop2: detected capacity change from 0 to 128 [ 136.758467][T17396] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 136.771203][T17396] ext4 filesystem being mounted at /1298/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 136.803982][T17385] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 136.812396][T17385] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 136.878162][ T3317] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 136.976703][T17416] loop2: detected capacity change from 0 to 164 [ 136.989614][T17422] syz.4.6454[17422] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 136.989673][T17422] syz.4.6454[17422] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 137.001304][T17416] rock: corrupted directory entry. extent=41, offset=65536, size=8 [ 137.009863][T17422] syz.4.6454[17422] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 137.021348][T17416] rock: corrupted directory entry. extent=41, offset=65536, size=8 [ 137.081926][T17429] loop4: detected capacity change from 0 to 512 [ 137.106513][T17429] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.6457: bg 0: block 248: padding at end of block bitmap is not set [ 137.128254][T17429] EXT4-fs error (device loop4): ext4_acquire_dquot:6879: comm syz.4.6457: Failed to acquire dquot type 1 [ 137.144596][T17446] loop3: detected capacity change from 0 to 136 [ 137.151978][T17429] EXT4-fs (loop4): 1 truncate cleaned up [ 137.151993][T17446] 199 [ 137.152461][T17429] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 137.157724][T17446] 1 [ 137.160989][T17429] ext4 filesystem being mounted at /1414/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 137.172751][T17446] A [ 137.198448][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.215319][T17450] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=17450 comm=syz.3.6467 [ 137.266545][T17459] sch_tbf: burst 1 is lower than device lo mtu (65550) ! [ 137.337001][T17473] loop0: detected capacity change from 0 to 512 [ 137.343578][T17473] EXT4-fs: Ignoring removed mblk_io_submit option [ 137.356147][T17473] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 137.368039][T17473] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002] [ 137.376013][T17473] System zones: 1-12 [ 137.380271][T17473] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.6477: corrupted in-inode xattr: e_value size too large [ 137.396127][T17473] EXT4-fs error (device loop0): ext4_orphan_get:1393: comm syz.0.6477: couldn't read orphan inode 15 (err -117) [ 137.409698][T17473] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 137.509615][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.540748][T17498] loop2: detected capacity change from 0 to 2048 [ 137.558104][T17498] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 137.573762][T17498] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 137.589291][T17498] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 22 with error 28 [ 137.601873][T17498] EXT4-fs (loop2): This should not happen!! Data will be lost [ 137.601873][T17498] [ 137.611564][T17498] EXT4-fs (loop2): Total free blocks count 0 [ 137.617711][T17498] EXT4-fs (loop2): Free/Dirty block details [ 137.621920][T17506] netlink: 'syz.5.6490': attribute type 1 has an invalid length. [ 137.623614][T17498] EXT4-fs (loop2): free_blocks=2415919104 [ 137.623632][T17498] EXT4-fs (loop2): dirty_blocks=32 [ 137.642339][T17498] EXT4-fs (loop2): Block reservation details [ 137.648371][T17498] EXT4-fs (loop2): i_reserved_data_blocks=2 [ 137.657063][T17509] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none. [ 137.724952][T17520] netlink: 'syz.2.6495': attribute type 1 has an invalid length. [ 137.738225][T17520] bond1: entered promiscuous mode [ 137.960083][T17527] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 137.968677][T17527] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 137.977073][T17540] IPv6: NLM_F_CREATE should be specified when creating new route [ 138.087414][T17546] lo speed is unknown, defaulting to 1000 [ 138.160265][T17555] pimreg: entered allmulticast mode [ 138.167434][T17555] pimreg: left allmulticast mode [ 138.227786][T17565] loop5: detected capacity change from 0 to 512 [ 138.236667][T17565] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 138.249436][T17565] ext4 filesystem being mounted at /57/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 138.271393][T17000] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.340200][T17578] loop5: detected capacity change from 0 to 512 [ 138.347385][T17578] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 138.367336][T17578] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 138.380292][T17578] ext4 filesystem being mounted at /61/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 138.423038][T17000] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.501300][T17589] loop0: detected capacity change from 0 to 512 [ 138.519172][T17589] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.6526: bg 0: block 248: padding at end of block bitmap is not set [ 138.553928][T17589] EXT4-fs error (device loop0): ext4_acquire_dquot:6879: comm syz.0.6526: Failed to acquire dquot type 1 [ 138.605758][T17589] EXT4-fs (loop0): 1 truncate cleaned up [ 138.617837][T17611] netlink: 'syz.5.6535': attribute type 10 has an invalid length. [ 138.631527][T17589] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 138.658102][T17589] ext4 filesystem being mounted at /1338/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 138.666939][T17611] team0: Device hsr_slave_0 failed to register rx_handler [ 138.733604][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.857561][T17632] block device autoloading is deprecated and will be removed. [ 138.865341][T17632] syz.2.6546: attempt to access beyond end of device [ 138.865341][T17632] md34: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 138.880532][T17639] loop3: detected capacity change from 0 to 512 [ 138.895137][T17639] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 138.947108][T17639] EXT4-fs (loop3): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 138.961006][T17647] netlink: 'syz.2.6552': attribute type 32 has an invalid length. [ 138.976423][T17639] EXT4-fs error (device loop3): ext4_quota_enable:7053: inode #3: comm syz.3.6548: iget: special inode unallocated [ 138.988787][T17639] EXT4-fs error (device loop3): ext4_quota_enable:7056: comm syz.3.6548: Bad quota inode: 3, type: 0 [ 139.001654][T17639] EXT4-fs warning (device loop3): ext4_enable_quotas:7097: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix. [ 139.025305][T17654] EXT4-fs error (device loop3): ext4_lookup:1813: inode #12: comm syz.3.6548: iget: bad i_size value: -9223372036854771712 [ 139.052662][ T29] kauditd_printk_skb: 191 callbacks suppressed [ 139.052678][ T29] audit: type=1400 audit(2000000002.830:1880): avc: denied { watch_reads } for pid=17660 comm="syz.2.6557" path="/1327/file0" dev="tmpfs" ino=6791 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 139.101245][ T29] audit: type=1326 audit(2000000002.880:1881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17663 comm="syz.4.6560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6453c1e719 code=0x7ffc0000 [ 139.128694][ T3324] EXT4-fs (loop3): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 139.140836][ T29] audit: type=1326 audit(2000000002.880:1882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17663 comm="syz.4.6560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6453c1e719 code=0x7ffc0000 [ 139.164388][ T29] audit: type=1326 audit(2000000002.880:1883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17663 comm="syz.4.6560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6453c1e719 code=0x7ffc0000 [ 139.187948][ T29] audit: type=1326 audit(2000000002.880:1884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17663 comm="syz.4.6560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6453c1e719 code=0x7ffc0000 [ 139.211656][ T29] audit: type=1326 audit(2000000002.910:1885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17663 comm="syz.4.6560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6453c1e719 code=0x7ffc0000 [ 139.235310][ T29] audit: type=1326 audit(2000000002.910:1886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17663 comm="syz.4.6560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6453c1e719 code=0x7ffc0000 [ 139.258875][ T29] audit: type=1326 audit(2000000002.910:1887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17663 comm="syz.4.6560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=439 compat=0 ip=0x7f6453c1e719 code=0x7ffc0000 [ 139.282461][ T29] audit: type=1326 audit(2000000002.910:1888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17663 comm="syz.4.6560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6453c1e719 code=0x7ffc0000 [ 139.306177][ T29] audit: type=1326 audit(2000000002.910:1889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17663 comm="syz.4.6560" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6453c1e719 code=0x7ffc0000 [ 139.387436][T17680] loop0: detected capacity change from 0 to 512 [ 139.427984][T17680] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 139.445627][T17680] ext4 filesystem being mounted at /1343/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 139.458524][T17694] loop5: detected capacity change from 0 to 512 [ 139.467435][T17694] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 139.481016][T17700] loop3: detected capacity change from 0 to 1024 [ 139.487653][T17700] EXT4-fs: Ignoring removed orlov option [ 139.493311][T17700] EXT4-fs: Ignoring removed nomblk_io_submit option [ 139.494372][T17694] EXT4-fs (loop5): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 139.505774][T17700] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 139.523369][T17700] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869) [ 139.533534][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.550626][T17700] EXT4-fs (loop3): invalid journal inode [ 139.556484][T17700] EXT4-fs (loop3): can't get journal size [ 139.564324][T17700] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 139.577307][T17694] EXT4-fs error (device loop5): ext4_quota_enable:7053: inode #3: comm syz.5.6572: iget: special inode unallocated [ 139.590031][T17694] EXT4-fs error (device loop5): ext4_quota_enable:7056: comm syz.5.6572: Bad quota inode: 3, type: 0 [ 139.603777][T17694] EXT4-fs warning (device loop5): ext4_enable_quotas:7097: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix. [ 139.625037][T17713] EXT4-fs error (device loop5): ext4_lookup:1813: inode #12: comm syz.5.6572: iget: bad i_size value: -9223372036854771712 [ 139.639580][ T3324] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.654356][T17000] EXT4-fs (loop5): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 139.736935][T17735] syz.3.6590[17735] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 139.757978][T17739] loop5: detected capacity change from 0 to 1024 [ 139.776162][T17739] EXT4-fs: Ignoring removed orlov option [ 139.781837][T17739] EXT4-fs: Ignoring removed nomblk_io_submit option [ 139.789324][T17739] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 139.797377][T17737] SELinux: failed to load policy [ 139.800255][T17739] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869) [ 139.815881][T17739] EXT4-fs (loop5): invalid journal inode [ 139.821641][T17739] EXT4-fs (loop5): can't get journal size [ 139.832533][T17739] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 139.843063][T17744] loop0: detected capacity change from 0 to 512 [ 139.861112][T17744] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 139.870028][T17000] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.873031][T17744] EXT4-fs (loop0): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 139.917313][T17744] EXT4-fs error (device loop0): ext4_quota_enable:7053: inode #3: comm syz.0.6593: iget: special inode unallocated [ 139.946604][T17744] EXT4-fs error (device loop0): ext4_quota_enable:7056: comm syz.0.6593: Bad quota inode: 3, type: 0 [ 139.958792][T17758] EXT4-fs error (device loop0): ext4_lookup:1813: inode #12: comm syz.0.6593: iget: bad i_size value: -9223372036854771712 [ 139.974446][T17744] EXT4-fs warning (device loop0): ext4_enable_quotas:7097: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix. [ 139.983807][T17761] loop5: detected capacity change from 0 to 2048 [ 140.009403][ T3313] EXT4-fs (loop0): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 140.010695][T17761] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 140.036701][T17761] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters [ 140.051932][T17761] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 3 with error 28 [ 140.064280][T17761] EXT4-fs (loop5): This should not happen!! Data will be lost [ 140.064280][T17761] [ 140.073962][T17761] EXT4-fs (loop5): Total free blocks count 0 [ 140.080112][T17761] EXT4-fs (loop5): Free/Dirty block details [ 140.086108][T17761] EXT4-fs (loop5): free_blocks=66060288 [ 140.091692][T17769] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 140.100201][T17761] EXT4-fs (loop5): dirty_blocks=16 [ 140.105376][T17761] EXT4-fs (loop5): Block reservation details [ 140.111538][T17761] EXT4-fs (loop5): i_reserved_data_blocks=1 [ 140.129698][T17000] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 140.196194][T17784] netlink: 16 bytes leftover after parsing attributes in process `syz.5.6611'. [ 140.225775][T17788] IPv6: NLM_F_CREATE should be specified when creating new route [ 140.261483][T17794] SELinux: policydb version 0 does not match my version range 15-33 [ 140.269389][T17790] lo speed is unknown, defaulting to 1000 [ 140.271055][T17794] SELinux: failed to load policy [ 140.290678][T17793] netlink: 277 bytes leftover after parsing attributes in process `syz.4.6616'. [ 140.514776][T17824] bpf_get_probe_write_proto: 2 callbacks suppressed [ 140.521468][T17824] syz.2.6629[17824] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 140.540872][T17824] syz.2.6629[17824] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 140.567451][T17831] netlink: 268 bytes leftover after parsing attributes in process `syz.2.6629'. [ 140.588113][T17831] unsupported nla_type 65024 [ 140.593876][T17824] syz.2.6629[17824] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 140.748475][T17866] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6647'. [ 140.769196][T17866] netlink: 72 bytes leftover after parsing attributes in process `syz.3.6647'. [ 140.779023][T17866] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6647'. [ 140.788031][T17866] netlink: 72 bytes leftover after parsing attributes in process `syz.3.6647'. [ 140.814916][T17874] program syz.3.6651 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 141.015734][T17916] loop0: detected capacity change from 0 to 512 [ 141.022872][T17916] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 141.039828][T17916] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 141.050593][T17923] netlink: 52 bytes leftover after parsing attributes in process `syz.5.6673'. [ 141.066009][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 141.164781][T17939] loop3: detected capacity change from 0 to 1764 [ 141.171283][T17943] syz.5.6683[17943] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 141.171914][T17943] syz.5.6683[17943] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 141.183666][T17943] syz.5.6683[17943] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 141.252149][T17953] netlink: 132 bytes leftover after parsing attributes in process `syz.3.6688'. [ 141.318176][T17960] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6691'. [ 141.508689][T17996] loop3: detected capacity change from 0 to 1024 [ 141.515512][T17996] EXT4-fs: Ignoring removed bh option [ 141.534957][T17996] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a040c028, mo2=0002] [ 141.540176][ T3390] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0 [ 141.551467][T17996] System zones: 0-1, 3-12 [ 141.556316][ T3390] hid-generic 0000:0000:0000.0006: hidraw0: HID v0.00 Device [syz1] on syz0 [ 141.560467][T17996] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 141.593598][T17996] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #14: comm syz.3.6708: attempt to clear invalid blocks 1886221359 len 1 [ 141.614706][T17996] EXT4-fs (loop3): Remounting filesystem read-only [ 141.630855][ T3324] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 141.758751][T18026] loop5: detected capacity change from 0 to 8192 [ 141.782162][T18026] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 141.853637][T18045] loop2: detected capacity change from 0 to 256 [ 141.876143][T18050] loop5: detected capacity change from 0 to 512 [ 141.910379][T18052] xt_CT: You must specify a L4 protocol and not use inversions on it [ 141.926065][T18050] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 141.940197][T18050] ext4 filesystem being mounted at /120/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 141.967799][T18063] loop2: detected capacity change from 0 to 2048 [ 142.004670][T17000] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 142.020201][T18075] loop4: detected capacity change from 0 to 512 [ 142.035080][T18063] Alternate GPT is invalid, using primary GPT. [ 142.039053][T18077] loop0: detected capacity change from 0 to 4096 [ 142.041475][T18063] loop2: p2 p3 p7 [ 142.049865][T18075] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 142.053266][T18077] EXT4-fs: Ignoring removed nomblk_io_submit option [ 142.087227][T18075] EXT4-fs (loop4): 1 truncate cleaned up [ 142.093264][T18075] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 142.115777][T18077] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 142.143947][T18077] EXT4-fs (loop0): shut down requested (1) [ 142.149598][T18086] loop5: detected capacity change from 0 to 512 [ 142.156785][T18086] EXT4-fs: Ignoring removed nomblk_io_submit option [ 142.163394][T18086] EXT4-fs: Ignoring removed orlov option [ 142.176635][T18086] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 142.185460][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 142.197374][T18086] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c198, mo2=0002] [ 142.208903][T18086] System zones: 1-12 [ 142.218613][T18086] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.6748: corrupted in-inode xattr: e_value size too large [ 142.247454][T18086] EXT4-fs error (device loop5): ext4_orphan_get:1393: comm syz.5.6748: couldn't read orphan inode 15 (err -117) [ 142.269006][T18086] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 142.279064][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 142.293254][T17000] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 142.349789][T18117] program syz.2.6763 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 142.377851][T18115] loop4: detected capacity change from 0 to 2048 [ 142.408256][T18115] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 142.424529][T18115] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters [ 142.440397][T18115] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 3 with error 28 [ 142.452676][T18115] EXT4-fs (loop4): This should not happen!! Data will be lost [ 142.452676][T18115] [ 142.462399][T18115] EXT4-fs (loop4): Total free blocks count 0 [ 142.469522][T18115] EXT4-fs (loop4): Free/Dirty block details [ 142.475497][T18115] EXT4-fs (loop4): free_blocks=66060288 [ 142.481067][T18115] EXT4-fs (loop4): dirty_blocks=16 [ 142.486284][T18115] EXT4-fs (loop4): Block reservation details [ 142.492276][T18115] EXT4-fs (loop4): i_reserved_data_blocks=1 [ 142.515769][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 142.595481][ T3375] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 142.609687][ T3375] hid-generic 0000:0000:0000.0007: hidraw0: HID v0.00 Device [syz1] on syz0 [ 142.676587][T18161] netdevsim netdevsim4 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 142.686429][T18161] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 142.693004][T18165] loop0: detected capacity change from 0 to 2048 [ 142.728163][T18161] netdevsim netdevsim4 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 142.737235][T18165] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 142.738043][T18161] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 142.756998][T18165] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters [ 142.774653][T18165] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 3 with error 28 [ 142.786965][T18165] EXT4-fs (loop0): This should not happen!! Data will be lost [ 142.786965][T18165] [ 142.796671][T18165] EXT4-fs (loop0): Total free blocks count 0 [ 142.802799][T18165] EXT4-fs (loop0): Free/Dirty block details [ 142.808776][T18165] EXT4-fs (loop0): free_blocks=66060288 [ 142.814439][T18165] EXT4-fs (loop0): dirty_blocks=16 [ 142.819702][T18165] EXT4-fs (loop0): Block reservation details [ 142.825720][T18165] EXT4-fs (loop0): i_reserved_data_blocks=1 [ 142.852228][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 142.874226][T18179] loop0: detected capacity change from 0 to 512 [ 142.882664][T18179] ext4 filesystem being mounted at /1384/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 142.907671][T18161] netdevsim netdevsim4 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 142.917546][T18161] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 142.923303][ T3375] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0 [ 142.935255][ T3375] hid-generic 0000:0000:0000.0008: hidraw0: HID v0.00 Device [syz1] on syz0 [ 142.977239][T18191] dummy0: entered promiscuous mode [ 142.998367][T18161] netdevsim netdevsim4 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 143.008220][T18161] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.086889][T18206] SELinux: Context system_u:object_r:mnt_t:s0 is not valid (left unmapped). [ 143.099430][T18161] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 143.108966][T18161] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 143.133211][T18161] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 143.142832][T18161] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 143.159921][T18210] xt_CT: You must specify a L4 protocol and not use inversions on it [ 143.167693][T18161] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 143.177724][T18161] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 143.193980][T18161] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 143.202341][T18161] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 143.422672][T18238] syz.2.6815[18238] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 143.422773][T18238] syz.2.6815[18238] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 143.448098][T18238] syz.2.6815[18238] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 143.544197][T18253] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 143.551907][T18248] loop2: detected capacity change from 0 to 2048 [ 143.555828][T18253] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.653012][T18248] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters [ 143.670739][T18253] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 143.682115][T18253] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.682579][T18248] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 3 with error 28 [ 143.706170][T18248] EXT4-fs (loop2): This should not happen!! Data will be lost [ 143.706170][T18248] [ 143.717206][T18248] EXT4-fs (loop2): Total free blocks count 0 [ 143.723242][T18248] EXT4-fs (loop2): Free/Dirty block details [ 143.729185][T18248] EXT4-fs (loop2): free_blocks=66060288 [ 143.734758][T18248] EXT4-fs (loop2): dirty_blocks=16 [ 143.739903][T18248] EXT4-fs (loop2): Block reservation details [ 143.747180][T18248] EXT4-fs (loop2): i_reserved_data_blocks=1 [ 143.801978][T18274] loop4: detected capacity change from 0 to 2048 [ 143.841340][T18253] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 143.850461][T18274] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 143.853103][T18253] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.904104][T18282] loop5: detected capacity change from 0 to 2048 [ 143.934405][T18253] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 143.946244][T18253] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.970342][T18282] Alternate GPT is invalid, using primary GPT. [ 143.978080][T18282] loop5: p2 p3 p7 [ 144.054156][T18253] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 144.063558][T18253] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.078505][T18253] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 144.086975][T18253] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.122397][T18253] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 144.130840][T18253] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.147482][T18253] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 144.156773][T18253] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.217603][T18304] loop5: detected capacity change from 0 to 512 [ 144.227346][T18304] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 144.243557][T18310] loop3: detected capacity change from 0 to 512 [ 144.251173][T18310] EXT4-fs: Ignoring removed nomblk_io_submit option [ 144.258934][T18310] EXT4-fs: Ignoring removed orlov option [ 144.266270][T18310] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 144.281098][T18310] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c198, mo2=0002] [ 144.290375][ T29] kauditd_printk_skb: 242 callbacks suppressed [ 144.290389][ T29] audit: type=1400 audit(2000000008.060:2131): avc: denied { create } for pid=18311 comm="syz.2.6851" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 144.307916][T18310] System zones: 1-12 [ 144.318255][ T29] audit: type=1400 audit(2000000008.060:2132): avc: denied { setopt } for pid=18311 comm="syz.2.6851" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 144.323566][T18310] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.6850: corrupted in-inode xattr: e_value size too large [ 144.341811][ T29] audit: type=1400 audit(2000000008.070:2133): avc: denied { read } for pid=18313 comm="syz.0.6852" name="ptp0" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 144.341896][ T29] audit: type=1400 audit(2000000008.070:2134): avc: denied { open } for pid=18313 comm="syz.0.6852" path="/dev/ptp0" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 144.359654][T18304] ext4 filesystem being mounted at /152/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 144.383079][T18310] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.6850: couldn't read orphan inode 15 (err -117) [ 144.445393][ T29] audit: type=1326 audit(2000000008.220:2135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18319 comm="syz.2.6854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 144.460374][T17000] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, [ 144.468950][ T29] audit: type=1326 audit(2000000008.220:2136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18319 comm="syz.2.6854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 144.469031][ T29] audit: type=1326 audit(2000000008.220:2137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18319 comm="syz.2.6854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 144.469060][ T29] audit: type=1326 audit(2000000008.220:2138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18319 comm="syz.2.6854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 144.469091][ T29] audit: type=1326 audit(2000000008.220:2139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18319 comm="syz.2.6854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 144.469165][ T29] audit: type=1326 audit(2000000008.220:2140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18319 comm="syz.2.6854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 144.599513][T17000] block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 144.627535][T18339] loop0: detected capacity change from 0 to 128 [ 144.720923][T18351] loop0: detected capacity change from 0 to 512 [ 144.721035][T18353] loop3: detected capacity change from 0 to 512 [ 144.741183][T18353] EXT4-fs error (device loop3): ext4_orphan_get:1388: inode #15: comm syz.3.6869: casefold flag without casefold feature [ 144.756660][T18353] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.6869: couldn't read orphan inode 15 (err -117) [ 144.770087][T18351] ext4 filesystem being mounted at /1398/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 144.791951][T18364] loop5: detected capacity change from 0 to 512 [ 144.799875][T18364] EXT4-fs: Ignoring removed oldalloc option [ 144.808599][T18364] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 144.834601][T18364] EXT4-fs (loop5): 1 truncate cleaned up [ 144.883300][T18379] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=18379 comm=syz.5.6880 [ 144.917184][T18386] loop0: detected capacity change from 0 to 128 [ 144.928498][T18386] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 144.956016][T18386] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 144.996021][T18396] tipc: Enabling of bearer rejected, failed to enable media [ 145.017991][T18402] loop0: detected capacity change from 0 to 164 [ 145.067407][T18412] loop5: detected capacity change from 0 to 512 [ 145.078435][T18412] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 145.099835][T18412] EXT4-fs (loop5): 1 truncate cleaned up [ 145.122535][T18412] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback. [ 145.176449][T18431] xt_hashlimit: max too large, truncated to 1048576 [ 145.194279][T18425] loop0: detected capacity change from 0 to 8192 [ 145.329748][T18452] Cannot find del_set index 0 as target [ 145.341730][T18456] __nla_validate_parse: 12 callbacks suppressed [ 145.341743][T18456] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6915'. [ 145.449875][T18472] syz.0.6923[18472] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 145.472833][T18475] loop4: detected capacity change from 0 to 1024 [ 145.497921][T18475] EXT4-fs: Ignoring removed nomblk_io_submit option [ 145.501989][T18481] loop3: detected capacity change from 0 to 512 [ 145.508188][T18475] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 145.514129][T18480] loop0: detected capacity change from 0 to 512 [ 145.523019][T18481] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 145.527612][T18480] EXT4-fs: Ignoring removed orlov option [ 145.527912][T18480] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 145.552614][T18481] ext4 filesystem being mounted at /1342/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 145.567487][T18481] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6926'. [ 145.579430][T18480] ext4 filesystem being mounted at /1415/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 145.596098][T18480] EXT4-fs error (device loop0): ext4_xattr_block_get:596: inode #15: comm syz.0.6927: corrupted xattr block 32: invalid header [ 145.619640][T18480] EXT4-fs (loop0): Remounting filesystem read-only [ 145.626874][T18480] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=15 [ 145.659261][T18496] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=18496 comm=syz.4.6932 [ 145.709952][T18500] loop4: detected capacity change from 0 to 128 [ 145.720503][T18500] ext4 filesystem being mounted at /1477/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 145.757394][T18504] netlink: 'syz.0.6934': attribute type 10 has an invalid length. [ 145.862477][T18512] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 145.915276][T18519] netlink: 20 bytes leftover after parsing attributes in process `syz.4.6941'. [ 145.960054][T18523] loop4: detected capacity change from 0 to 1024 [ 145.967892][T18523] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 145.990117][T18523] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.4.6943: corrupted in-inode xattr: bad magic number in in-inode xattr [ 146.034026][T18529] sctp: [Deprecated]: syz.4.6945 (pid 18529) Use of int in maxseg socket option. [ 146.034026][T18529] Use struct sctp_assoc_value instead [ 146.089482][T18537] bpf_get_probe_write_proto: 2 callbacks suppressed [ 146.089501][T18537] syz.2.6949[18537] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 146.098766][T18537] syz.2.6949[18537] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 146.110706][T18537] syz.2.6949[18537] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 146.392271][T18556] loop5: detected capacity change from 0 to 1764 [ 146.514093][T18558] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 146.638285][T18572] syz.4.6965[18572] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 146.638438][T18572] syz.4.6965[18572] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 146.650155][T18572] syz.4.6965[18572] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 146.693269][T18578] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 146.713503][T18576] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6968'. [ 146.802632][T18588] loop0: detected capacity change from 0 to 2048 [ 146.816794][T18595] ip6gretap1: entered promiscuous mode [ 146.822644][T18595] ip6gretap1: entered allmulticast mode [ 146.847826][T18588] loop0: p3 < > p4 < > [ 146.852161][T18588] loop0: partition table partially beyond EOD, truncated [ 146.860478][T18588] loop0: p3 start 4284289 is beyond EOD, truncated [ 146.863073][T18599] loop5: detected capacity change from 0 to 512 [ 146.903726][T18607] loop3: detected capacity change from 0 to 512 [ 146.917550][T18599] ext4 filesystem being mounted at /174/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 146.919276][T18612] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6983'. [ 146.949330][T18607] ext4 filesystem being mounted at /1349/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 146.963993][T18615] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22 [ 147.019374][T18625] loop4: detected capacity change from 0 to 164 [ 147.036898][T18625] rock: corrupted directory entry. extent=41, offset=65536, size=8 [ 147.045388][T18629] loop2: detected capacity change from 0 to 256 [ 147.071848][T18633] loop3: detected capacity change from 0 to 128 [ 147.089755][T18633] FAT-fs (loop3): error, corrupted directory (invalid i_start) [ 147.098117][T18633] FAT-fs (loop3): Filesystem has been set read-only [ 147.143647][T18639] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6997'. [ 147.253585][T18651] loop2: detected capacity change from 0 to 512 [ 147.274770][T18651] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 147.368625][T18651] EXT4-fs (loop2): 1 truncate cleaned up [ 147.388860][T18651] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback. [ 147.509849][T18665] netlink: 256 bytes leftover after parsing attributes in process `syz.5.7008'. [ 147.538327][T18669] xt_hashlimit: max too large, truncated to 1048576 [ 147.562949][T18673] loop3: detected capacity change from 0 to 512 [ 147.587852][T18673] ext4 filesystem being mounted at /1358/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 147.592659][T18681] netlink: 28 bytes leftover after parsing attributes in process `syz.2.7014'. [ 147.617944][T18683] netlink: 16 bytes leftover after parsing attributes in process `syz.5.7016'. [ 147.630394][T18685] loop0: detected capacity change from 0 to 512 [ 147.650102][T18685] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 147.661769][T18687] netlink: 'syz.2.7019': attribute type 4 has an invalid length. [ 147.694247][T18685] EXT4-fs (loop0): 1 truncate cleaned up [ 147.730237][T18685] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback. [ 147.775114][T18708] loop3: detected capacity change from 0 to 1024 [ 147.909553][T18733] loop3: detected capacity change from 0 to 512 [ 147.921246][T18736] loop5: detected capacity change from 0 to 512 [ 147.928961][T18733] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 147.947918][T18733] EXT4-fs (loop3): 1 truncate cleaned up [ 147.949683][T18736] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 147.963628][T18733] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback. [ 147.983143][T18743] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7041'. [ 148.191748][T18766] loop5: detected capacity change from 0 to 1764 [ 148.201940][T18766] cgroup: Unknown subsys name 'cpuset' [ 148.228375][T18771] loop5: detected capacity change from 0 to 256 [ 148.228443][T18772] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 149.007327][T18811] loop3: detected capacity change from 0 to 164 [ 149.014556][T18811] rock: corrupted directory entry. extent=41, offset=65536, size=8 [ 149.126020][T18823] loop2: detected capacity change from 0 to 512 [ 149.133870][T18823] EXT4-fs: Ignoring removed i_version option [ 149.143893][T18823] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 149.158640][T18823] EXT4-fs (loop2): 1 truncate cleaned up [ 149.267940][ T28] netdevsim netdevsim3 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 149.277870][ T28] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 149.313761][T18837] loop2: detected capacity change from 0 to 128 [ 149.367792][ T28] netdevsim netdevsim3 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 149.373937][T18837] FAT-fs (loop2): error, corrupted directory (invalid i_start) [ 149.377756][ T28] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 149.397993][T18837] FAT-fs (loop2): Filesystem has been set read-only [ 149.438020][ T28] netdevsim netdevsim3 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 149.448483][ T28] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 149.506984][T18831] lo speed is unknown, defaulting to 1000 [ 149.518969][ T28] netdevsim netdevsim3 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 149.519068][ T28] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 149.581771][ T28] bridge_slave_1: left allmulticast mode [ 149.581789][ T28] bridge_slave_1: left promiscuous mode [ 149.581935][ T28] bridge0: port 2(bridge_slave_1) entered disabled state [ 149.582740][ T28] bridge_slave_0: left allmulticast mode [ 149.582757][ T28] bridge_slave_0: left promiscuous mode [ 149.582885][ T28] bridge0: port 1(bridge_slave_0) entered disabled state [ 149.658118][T18857] syz.2.7090: attempt to access beyond end of device [ 149.658118][T18857] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 149.727510][T18859] loop2: detected capacity change from 0 to 512 [ 149.738531][T18859] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #2: comm syz.2.7092: corrupted xattr block 255: invalid header [ 149.751976][T18859] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117 [ 149.776469][T18859] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #2: comm syz.2.7092: corrupted xattr block 255: invalid header [ 149.791648][T18859] SELinux: (dev loop2, type ext4) getxattr errno 117 [ 149.840199][ T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 149.850437][ T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 149.863353][ T28] bond0 (unregistering): Released all slaves [ 149.871786][T18840] lo speed is unknown, defaulting to 1000 [ 149.901685][ T28] tipc: Disabling bearer [ 149.907814][ T28] tipc: Disabling bearer [ 149.917131][ T29] kauditd_printk_skb: 233 callbacks suppressed [ 149.917143][ T29] audit: type=1326 audit(2000000269.702:2374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18867 comm="syz.5.7096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eeeade719 code=0x7ffc0000 [ 149.954422][ T29] audit: type=1326 audit(2000000269.732:2375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18867 comm="syz.5.7096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4eeeade719 code=0x7ffc0000 [ 149.979039][ T29] audit: type=1326 audit(2000000269.732:2376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18867 comm="syz.5.7096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eeeade719 code=0x7ffc0000 [ 150.003771][ T29] audit: type=1326 audit(2000000269.732:2377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18867 comm="syz.5.7096" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4eeeade719 code=0x7ffc0000 [ 150.030569][ T28] tipc: Left network mode [ 150.125174][ T29] audit: type=1326 audit(2000000269.902:2378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18885 comm="syz.2.7104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 150.148830][ T29] audit: type=1326 audit(2000000269.902:2379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18885 comm="syz.2.7104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 150.151484][T18831] chnl_net:caif_netlink_parms(): no params data found [ 150.172409][ T29] audit: type=1326 audit(2000000269.912:2380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18885 comm="syz.2.7104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=127 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 150.172443][ T29] audit: type=1326 audit(2000000269.912:2381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18885 comm="syz.2.7104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 150.229204][ T29] audit: type=1326 audit(2000000269.952:2382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18890 comm="syz.2.7106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 150.231914][T18888] loop0: detected capacity change from 0 to 512 [ 150.252753][ T29] audit: type=1326 audit(2000000269.952:2383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18890 comm="syz.2.7106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 150.297176][ T28] hsr_slave_0: left promiscuous mode [ 150.307352][T18888] ext4 filesystem being mounted at /1449/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 150.323099][ T28] hsr_slave_1: left promiscuous mode [ 150.329819][ T28] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 150.337288][ T28] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 150.345360][ T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 150.352761][ T28] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 150.368123][ T28] veth1_macvtap: left promiscuous mode [ 150.373632][ T28] veth0_macvtap: left promiscuous mode [ 150.379305][ T28] veth1_vlan: left promiscuous mode [ 150.384673][ T28] veth0_vlan: left promiscuous mode [ 150.443925][T18913] loop0: detected capacity change from 0 to 2048 [ 150.450877][T18913] EXT4-fs: Ignoring removed mblk_io_submit option [ 150.478202][T18917] loop5: detected capacity change from 0 to 512 [ 150.488826][T18913] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.7116: bg 0: block 234: padding at end of block bitmap is not set [ 150.504060][T18917] EXT4-fs error (device loop5): ext4_xattr_block_get:596: inode #2: comm syz.5.7118: corrupted xattr block 255: invalid header [ 150.505613][T18913] EXT4-fs (loop0): Remounting filesystem read-only [ 150.530360][T18917] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117 [ 150.541189][T18917] EXT4-fs error (device loop5): ext4_xattr_block_get:596: inode #2: comm syz.5.7118: corrupted xattr block 255: invalid header [ 150.557999][T18917] SELinux: (dev loop5, type ext4) getxattr errno 117 [ 150.587872][ T28] team0 (unregistering): Port device macvlan1 removed [ 150.637886][ T28] team0 (unregistering): Port device team_slave_1 removed [ 150.649661][ T28] team0 (unregistering): Port device team_slave_0 removed [ 150.715594][T18944] netlink: 'syz.5.7130': attribute type 1 has an invalid length. [ 150.723415][T18944] netlink: 'syz.5.7130': attribute type 2 has an invalid length. [ 150.804218][T18831] bridge0: port 1(bridge_slave_0) entered blocking state [ 150.811424][T18831] bridge0: port 1(bridge_slave_0) entered disabled state [ 150.821582][T18831] bridge_slave_0: entered allmulticast mode [ 150.830454][T18831] bridge_slave_0: entered promiscuous mode [ 150.837643][T18831] bridge0: port 2(bridge_slave_1) entered blocking state [ 150.844746][T18831] bridge0: port 2(bridge_slave_1) entered disabled state [ 150.852223][T18831] bridge_slave_1: entered allmulticast mode [ 150.858744][T18831] bridge_slave_1: entered promiscuous mode [ 150.887847][T18831] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 150.897079][T18840] chnl_net:caif_netlink_parms(): no params data found [ 150.898650][T18971] loop0: detected capacity change from 0 to 512 [ 150.911362][T18831] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 150.946744][T18971] ext4 filesystem being mounted at /1458/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 150.969484][T18984] loop2: detected capacity change from 0 to 512 [ 150.984248][T18984] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 151.007283][T18840] bridge0: port 1(bridge_slave_0) entered blocking state [ 151.014534][T18840] bridge0: port 1(bridge_slave_0) entered disabled state [ 151.021807][T18840] bridge_slave_0: entered allmulticast mode [ 151.028331][T18840] bridge_slave_0: entered promiscuous mode [ 151.028907][T18984] EXT4-fs (loop2): 1 truncate cleaned up [ 151.050847][T18831] team0: Port device team_slave_0 added [ 151.057596][T18831] team0: Port device team_slave_1 added [ 151.073278][T18840] bridge0: port 2(bridge_slave_1) entered blocking state [ 151.080386][T18840] bridge0: port 2(bridge_slave_1) entered disabled state [ 151.095458][T18840] bridge_slave_1: entered allmulticast mode [ 151.102433][T18840] bridge_slave_1: entered promiscuous mode [ 151.134566][T18831] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 151.142355][T18831] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 151.168970][T18831] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 151.181391][ T28] IPVS: stop unused estimator thread 0... [ 151.191710][T18840] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 151.199140][T19007] loop2: detected capacity change from 0 to 512 [ 151.205342][T18831] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 151.213979][T18831] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 151.240006][T18831] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 151.255100][T19007] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 151.263910][T18840] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 151.286112][T19007] EXT4-fs (loop2): 1 truncate cleaned up [ 151.293275][T19007] EXT4-fs error (device loop2): ext4_append:79: inode #2: comm syz.2.7154: Logical block already allocated [ 151.307052][T19007] EXT4-fs (loop2): Remounting filesystem read-only [ 151.338665][T19012] loop0: detected capacity change from 0 to 8192 [ 151.348052][T18831] hsr_slave_0: entered promiscuous mode [ 151.356961][T18831] hsr_slave_1: entered promiscuous mode [ 151.362567][T19016] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=19016 comm=syz.2.7158 [ 151.375191][T18831] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 151.382781][T18831] Cannot create hsr debugfs directory [ 151.389932][T18840] team0: Port device team_slave_0 added [ 151.395072][T19012] loop0: p1 p2 p3 [ 151.396658][T18840] team0: Port device team_slave_1 added [ 151.410143][T19014] bridge0: entered promiscuous mode [ 151.416703][T19014] macvlan2: entered promiscuous mode [ 151.440952][ T28] netdevsim netdevsim4 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 151.451557][ T28] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.485564][T18840] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 151.492775][T18840] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 151.518855][T18840] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 151.558656][T18840] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 151.565717][T18840] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 151.592455][T18840] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 151.608748][T19028] syz.0.7164: attempt to access beyond end of device [ 151.608748][T19028] md34: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 151.629575][T19031] loop5: detected capacity change from 0 to 1024 [ 151.641653][T19033] loop2: detected capacity change from 0 to 512 [ 151.643852][T19031] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 151.649688][T19033] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 151.669285][T19033] EXT4-fs (loop2): group descriptors corrupted! [ 151.677011][T19031] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.7167: Invalid block bitmap block 0 in block_group 0 [ 151.692915][ T28] netdevsim netdevsim4 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 151.702750][ T28] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.705012][T19031] EXT4-fs error (device loop5): ext4_acquire_dquot:6879: comm syz.5.7167: Failed to acquire dquot type 0 [ 151.724466][T19031] EXT4-fs error (device loop5): ext4_free_blocks:6589: comm syz.5.7167: Freeing blocks not in datazone - block = 0, count = 4096 [ 151.738415][T19031] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.7167: Invalid inode bitmap blk 0 in block_group 0 [ 151.751633][T19031] EXT4-fs error (device loop5) in ext4_free_inode:360: Corrupt filesystem [ 151.763049][T18840] hsr_slave_0: entered promiscuous mode [ 151.768979][ T11] EXT4-fs error (device loop5): ext4_release_dquot:6902: comm kworker/u8:0: Failed to release dquot type 0 [ 151.779051][T19031] EXT4-fs (loop5): 1 orphan inode deleted [ 151.786638][T18840] hsr_slave_1: entered promiscuous mode [ 151.792522][T18840] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 151.796605][T19043] loop2: detected capacity change from 0 to 512 [ 151.800820][T18840] Cannot create hsr debugfs directory [ 151.810642][T19043] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #2: comm syz.2.7171: corrupted xattr block 255: invalid header [ 151.825071][T19043] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117 [ 151.833600][T19043] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #2: comm syz.2.7171: corrupted xattr block 255: invalid header [ 151.847864][T19043] SELinux: (dev loop2, type ext4) getxattr errno 117 [ 151.848758][ T28] netdevsim netdevsim4 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 151.864394][ T28] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.922045][T19049] loop2: detected capacity change from 0 to 256 [ 151.932167][ T28] netdevsim netdevsim4 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 151.942591][ T28] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.958119][T18831] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 151.968886][T18831] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 151.977583][T18831] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 151.988806][T18831] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 152.034466][ T28] bridge_slave_1: left allmulticast mode [ 152.040234][ T28] bridge_slave_1: left promiscuous mode [ 152.045955][ T28] bridge0: port 2(bridge_slave_1) entered disabled state [ 152.054904][ T28] bridge_slave_0: left allmulticast mode [ 152.060589][ T28] bridge_slave_0: left promiscuous mode [ 152.066358][ T28] bridge0: port 1(bridge_slave_0) entered disabled state [ 152.149841][ T28] dvmrp4 (unregistering): left allmulticast mode [ 152.207478][ T28] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 152.218042][ T28] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 152.228568][ T28] bond0 (unregistering): Released all slaves [ 152.250939][T18840] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 152.261288][T18840] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 152.269950][T18840] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 152.279095][T18840] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 152.289107][ T28] tipc: Disabling bearer [ 152.294395][ T28] tipc: Left network mode [ 152.323738][T18831] 8021q: adding VLAN 0 to HW filter on device bond0 [ 152.333499][ T28] hsr_slave_0: left promiscuous mode [ 152.339770][ T28] hsr_slave_1: left promiscuous mode [ 152.347095][ T28] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 152.354520][ T28] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 152.362441][ T28] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 152.369879][ T28] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 152.379532][ T28] veth1_macvtap: left promiscuous mode [ 152.385049][ T28] veth0_macvtap: left promiscuous mode [ 152.390640][ T28] veth1_vlan: left promiscuous mode [ 152.395987][ T28] veth0_vlan: left promiscuous mode [ 152.470392][T19054] __nla_validate_parse: 4 callbacks suppressed [ 152.470408][T19054] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7175'. [ 152.495664][ T28] team0 (unregistering): Port device team_slave_1 removed [ 152.508795][ T28] team0 (unregistering): Port device team_slave_0 removed [ 152.557625][T19062] program syz.0.7179 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 152.562244][T18831] 8021q: adding VLAN 0 to HW filter on device team0 [ 152.593951][ T330] bridge0: port 1(bridge_slave_0) entered blocking state [ 152.599656][T19064] loop5: detected capacity change from 0 to 512 [ 152.601084][ T330] bridge0: port 1(bridge_slave_0) entered forwarding state [ 152.618164][T19064] EXT4-fs (loop5): failed to initialize system zone (-117) [ 152.627852][ T330] bridge0: port 2(bridge_slave_1) entered blocking state [ 152.634972][ T330] bridge0: port 2(bridge_slave_1) entered forwarding state [ 152.636799][T19064] EXT4-fs (loop5): mount failed [ 152.652028][T18840] 8021q: adding VLAN 0 to HW filter on device bond0 [ 152.659024][T19069] loop0: detected capacity change from 0 to 512 [ 152.667754][T19069] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 152.695097][T18840] 8021q: adding VLAN 0 to HW filter on device team0 [ 152.704713][ T354] bridge0: port 1(bridge_slave_0) entered blocking state [ 152.711873][ T354] bridge0: port 1(bridge_slave_0) entered forwarding state [ 152.723456][T19069] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0002] [ 152.733391][T19069] System zones: 1-12 [ 152.741622][ T354] bridge0: port 2(bridge_slave_1) entered blocking state [ 152.748740][ T354] bridge0: port 2(bridge_slave_1) entered forwarding state [ 152.758868][T19069] EXT4-fs (loop0): 1 truncate cleaned up [ 152.775932][T18840] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 152.786398][T18840] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 152.820204][T18831] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 152.866771][T18840] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 152.913115][T19101] loop2: detected capacity change from 0 to 512 [ 152.937062][T19101] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 152.982441][T19105] loop0: detected capacity change from 0 to 2048 [ 152.994891][T19101] ext4 filesystem being mounted at /1460/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 153.063058][T19123] lo speed is unknown, defaulting to 1000 [ 153.077915][T18831] veth0_vlan: entered promiscuous mode [ 153.094058][T18831] veth1_vlan: entered promiscuous mode [ 153.116683][T18831] veth0_macvtap: entered promiscuous mode [ 153.126130][T18831] veth1_macvtap: entered promiscuous mode [ 153.142958][T18831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 153.153547][T18831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 153.163414][T18831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 153.173873][T18831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 153.183730][T18831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 153.194284][T18831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 153.229835][T18831] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 153.248514][T18840] veth0_vlan: entered promiscuous mode [ 153.260667][T19140] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7199'. [ 153.270746][T18840] veth1_vlan: entered promiscuous mode [ 153.285846][T18831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 153.296165][T19142] loop2: detected capacity change from 0 to 512 [ 153.297279][T18831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 153.312517][T18831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 153.322968][T18831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 153.333528][T18831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 153.344053][T18831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 153.356424][T18831] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 153.367483][T19142] ext4 filesystem being mounted at /1465/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 153.385198][T18831] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.394033][T18831] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.403524][T18831] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.412281][T18831] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.431257][T18840] veth0_macvtap: entered promiscuous mode [ 153.459657][T18840] veth1_macvtap: entered promiscuous mode [ 153.501249][T18840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 153.511748][T18840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 153.522269][T18840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 153.532792][T18840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 153.542627][T18840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 153.553714][T18840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 153.563578][T18840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 153.574019][T18840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 153.585579][T18840] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 153.611032][T18840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 153.621541][T18840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 153.631396][T18840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 153.642567][T18840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 153.647134][T19157] loop0: detected capacity change from 0 to 512 [ 153.652485][T18840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 153.659578][T19157] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 153.669813][T18840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 153.688879][T18840] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 153.696977][T19157] EXT4-fs (loop0): 1 truncate cleaned up [ 153.700175][T18840] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 153.718354][T18840] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 153.745775][T18840] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.754523][T18840] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.759413][T19162] loop6: detected capacity change from 0 to 512 [ 153.764034][T18840] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.778343][T18840] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 153.778951][T19162] EXT4-fs (loop6): couldn't mount as ext2 due to feature incompatibilities [ 153.917654][T19181] loop7: detected capacity change from 0 to 1024 [ 154.302340][T19215] loop5: detected capacity change from 0 to 128 [ 154.329943][T19215] ext4 filesystem being mounted at /243/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 154.359618][T19218] loop6: detected capacity change from 0 to 256 [ 154.391749][T19218] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 154.601276][T19232] loop6: detected capacity change from 0 to 512 [ 154.650633][T19232] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002] [ 154.664248][T19232] System zones: 0-2, 18-18, 34-34 [ 154.678482][T19232] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.7237: bg 0: block 248: padding at end of block bitmap is not set [ 154.718467][T19232] EXT4-fs error (device loop6): ext4_acquire_dquot:6879: comm syz.6.7237: Failed to acquire dquot type 1 [ 154.743328][T19232] EXT4-fs (loop6): 1 truncate cleaned up [ 154.787220][T19232] ext4 filesystem being mounted at /12/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 154.826985][T19238] loop2: detected capacity change from 0 to 512 [ 154.838171][T19238] EXT4-fs: Ignoring removed mblk_io_submit option [ 154.847035][T19238] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 154.870562][T19238] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c118, mo2=0002] [ 154.887333][T19238] System zones: 1-12 [ 154.895960][T19238] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.7239: corrupted in-inode xattr: e_value size too large [ 154.921388][T19238] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.7239: couldn't read orphan inode 15 (err -117) [ 154.941058][T19245] veth3: entered allmulticast mode [ 155.079152][T19267] pimreg: entered allmulticast mode [ 155.105232][T19275] loop6: detected capacity change from 0 to 128 [ 155.117303][ T29] kauditd_printk_skb: 113 callbacks suppressed [ 155.117335][ T29] audit: type=1326 audit(2000000274.902:2492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19269 comm="syz.2.7254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 155.147160][ T29] audit: type=1326 audit(2000000274.902:2493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19269 comm="syz.2.7254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 155.171223][T19275] ext4 filesystem being mounted at /19/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 155.173253][ T29] audit: type=1326 audit(2000000274.902:2494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19269 comm="syz.2.7254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=118 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 155.226667][ T29] audit: type=1326 audit(2000000274.902:2495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19269 comm="syz.2.7254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 155.250291][ T29] audit: type=1326 audit(2000000274.902:2496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19269 comm="syz.2.7254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 155.298706][ T29] audit: type=1326 audit(2000000275.082:2497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19283 comm="syz.7.7261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c17b5e719 code=0x7ffc0000 [ 155.322360][ T29] audit: type=1326 audit(2000000275.082:2498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19283 comm="syz.7.7261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c17b5e719 code=0x7ffc0000 [ 155.347083][ T29] audit: type=1326 audit(2000000275.132:2499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19283 comm="syz.7.7261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=210 compat=0 ip=0x7f5c17b5e719 code=0x7ffc0000 [ 155.370690][ T29] audit: type=1326 audit(2000000275.132:2500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19283 comm="syz.7.7261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c17b5e719 code=0x7ffc0000 [ 155.394528][ T29] audit: type=1326 audit(2000000275.132:2501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19283 comm="syz.7.7261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c17b5e719 code=0x7ffc0000 [ 155.432247][T19291] loop2: detected capacity change from 0 to 128 [ 155.444860][T19291] ext4 filesystem being mounted at /1475/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 155.457835][T19296] loop6: detected capacity change from 0 to 512 [ 155.470196][T19296] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 155.489331][T19296] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 155.504631][T19296] EXT4-fs (loop6): 1 truncate cleaned up [ 155.644960][T19326] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7277'. [ 155.672189][T19328] loop7: detected capacity change from 0 to 512 [ 155.685689][T19332] loop6: detected capacity change from 0 to 512 [ 155.715866][T19328] ext4 filesystem being mounted at /12/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 155.727621][T19332] ext4 filesystem being mounted at /24/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 155.737885][T19328] EXT4-fs error (device loop7): ext4_acquire_dquot:6879: comm syz.7.7280: Failed to acquire dquot type 0 [ 155.742546][ T3390] kernel write not supported for file /snd/seq (pid: 3390 comm: kworker/0:3) [ 155.811789][T19358] netlink: 4 bytes leftover after parsing attributes in process `syz.7.7284'. [ 155.825982][T19362] loop6: detected capacity change from 0 to 512 [ 155.851037][T19362] EXT4-fs (loop6): too many log groups per flexible block group [ 155.858879][T19362] EXT4-fs (loop6): failed to initialize mballoc (-12) [ 155.867210][T19362] EXT4-fs (loop6): mount failed [ 155.909849][T19374] loop2: detected capacity change from 0 to 512 [ 155.916732][T19380] syz.0.7295[19380] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 155.916875][T19380] syz.0.7295[19380] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 155.928740][T19374] EXT4-fs: Ignoring removed nobh option [ 155.946530][T19374] EXT4-fs: Ignoring removed nobh option [ 155.953204][T19380] syz.0.7295[19380] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 155.954577][T19378] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 155.966562][T19374] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 155.966733][T19374] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.7292: invalid indirect mapped block 2683928664 (level 1) [ 155.967029][T19374] EXT4-fs (loop2): 1 truncate cleaned up [ 156.076137][T19396] loop6: detected capacity change from 0 to 128 [ 156.082796][T19396] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 156.095817][T19396] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 156.129605][T19401] loop2: detected capacity change from 0 to 2048 [ 156.174692][T19405] rtc_cmos 00:00: Alarms can be up to one day in the future [ 156.195940][T19411] loop0: detected capacity change from 0 to 128 [ 156.210638][T19401] EXT4-fs (loop2): shut down requested (0) [ 156.280243][T19423] Cannot find add_set index 0 as target [ 156.333171][ T3390] rtc_cmos 00:00: Alarms can be up to one day in the future [ 156.341037][ T3390] rtc_cmos 00:00: Alarms can be up to one day in the future [ 156.348704][ T3390] rtc_cmos 00:00: Alarms can be up to one day in the future [ 156.356974][ T3390] rtc_cmos 00:00: Alarms can be up to one day in the future [ 156.359568][T19439] loop6: detected capacity change from 0 to 512 [ 156.364269][ T3390] rtc rtc0: __rtc_set_alarm: err=-22 [ 156.386169][T19439] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 156.405506][T19440] sctp: [Deprecated]: syz.0.7322 (pid 19440) Use of int in max_burst socket option deprecated. [ 156.405506][T19440] Use struct sctp_assoc_value instead [ 156.409922][T19439] EXT4-fs (loop6): 1 truncate cleaned up [ 156.460461][T19439] EXT4-fs error (device loop6): ext4_xattr_inode_iget:440: comm syz.6.7323: inode #1073372648: comm syz.6.7323: iget: illegal inode # [ 156.498743][T19439] EXT4-fs error (device loop6): ext4_xattr_inode_iget:445: comm syz.6.7323: error while reading EA inode 1073372648 err=-117 [ 156.513403][T19439] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2977: inode #15: comm syz.6.7323: corrupted xattr block 33: invalid header [ 156.529057][T19439] EXT4-fs warning (device loop6): ext4_evict_inode:276: xattr delete (err -117) [ 156.549701][T19456] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7330'. [ 156.656287][T19472] netlink: 28 bytes leftover after parsing attributes in process `syz.7.7340'. [ 156.677985][T19472] team0 (unregistering): Port device team_slave_0 removed [ 156.688107][T19472] team0 (unregistering): Port device team_slave_1 removed [ 156.902290][T19509] loop0: detected capacity change from 0 to 1024 [ 156.908986][T19509] EXT4-fs: Ignoring removed orlov option [ 156.914678][T19509] EXT4-fs: Ignoring removed orlov option [ 156.924985][T19509] EXT4-fs: Ignoring removed bh option [ 156.953914][T19520] syz.7.7360[19520] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 156.954082][T19520] syz.7.7360[19520] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 156.971205][T19520] syz.7.7360[19520] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 156.984029][T19522] sctp: [Deprecated]: syz.6.7361 (pid 19522) Use of int in max_burst socket option. [ 156.984029][T19522] Use struct sctp_assoc_value instead [ 157.077840][T19526] loop5: detected capacity change from 0 to 512 [ 157.091217][T19532] netlink: 72 bytes leftover after parsing attributes in process `syz.2.7366'. [ 157.111617][T19526] EXT4-fs (loop5): orphan cleanup on readonly fs [ 157.128452][T19526] EXT4-fs error (device loop5): ext4_acquire_dquot:6879: comm +}[@: Failed to acquire dquot type 1 [ 157.156131][T19530] loop6: detected capacity change from 0 to 2048 [ 157.175440][T19526] EXT4-fs (loop5): 1 truncate cleaned up [ 157.282384][T19564] netlink: 'syz.7.7380': attribute type 13 has an invalid length. [ 157.291415][T19564] netlink: 24859 bytes leftover after parsing attributes in process `syz.7.7380'. [ 157.313818][T19563] loop5: detected capacity change from 0 to 512 [ 157.346853][T19563] EXT4-fs (loop5): too many log groups per flexible block group [ 157.354660][T19563] EXT4-fs (loop5): failed to initialize mballoc (-12) [ 157.366755][T19563] EXT4-fs (loop5): mount failed [ 157.418782][T19590] loop0: detected capacity change from 0 to 512 [ 157.427453][T19590] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 157.436663][T19590] EXT4-fs (loop0): invalid journal inode [ 157.442455][T19590] EXT4-fs (loop0): can't get journal size [ 157.461167][T19590] EXT4-fs (loop0): 1 truncate cleaned up [ 157.474499][T19590] EXT4-fs warning (device loop0): verify_group_input:137: Cannot add at group 25 (only 1 groups) [ 157.608843][T19618] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 157.654374][T19626] random: crng reseeded on system resumption [ 157.714538][T19632] 9pnet_fd: Insufficient options for proto=fd [ 157.724137][T19618] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 157.791485][T19618] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 157.878618][T19618] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 157.931239][T19618] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 157.943097][T19618] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 157.953967][T19618] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 157.965277][T19618] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 158.029972][T19663] loop5: detected capacity change from 0 to 2048 [ 158.086609][T19681] Invalid ELF header magic: != ELF [ 158.092516][T19684] netlink: 28 bytes leftover after parsing attributes in process `syz.7.7435'. [ 158.102049][T19684] netlink: 28 bytes leftover after parsing attributes in process `syz.7.7435'. [ 158.141799][T19690] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 158.201466][T19690] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 158.263784][T19690] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 158.314487][T19690] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 158.378215][T19724] loop5: detected capacity change from 0 to 2048 [ 158.386690][T19724] EXT4-fs: Ignoring removed nobh option [ 158.393758][T19690] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 158.406025][T19690] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 158.418245][T19690] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 158.430296][T19690] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 158.450626][T19724] ext4 filesystem being mounted at /280/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 158.479782][T19736] 9pnet_fd: Insufficient options for proto=fd [ 158.527822][T19740] netlink: 9286 bytes leftover after parsing attributes in process `syz.6.7459'. [ 158.569508][T19748] syz.2.7462[19748] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 158.569625][T19748] syz.2.7462[19748] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 158.586241][T19748] syz.2.7462[19748] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 158.638466][T19761] syz.6.7467: attempt to access beyond end of device [ 158.638466][T19761] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 158.722099][T19766] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 158.799481][T19766] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 158.838863][T19766] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 158.890617][T19766] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 158.952671][T19766] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 158.969915][T19766] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 158.983382][T19766] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 158.996525][T19766] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 159.057805][T19810] loop6: detected capacity change from 0 to 512 [ 159.066315][T19810] EXT4-fs error (device loop6): ext4_xattr_block_get:596: inode #2: comm syz.6.7492: corrupted xattr block 255: invalid header [ 159.080336][T19810] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -117 [ 159.088870][T19810] EXT4-fs error (device loop6): ext4_xattr_block_get:596: inode #2: comm syz.6.7492: corrupted xattr block 255: invalid header [ 159.103567][T19810] SELinux: (dev loop6, type ext4) getxattr errno 117 [ 159.190252][T19825] loop5: detected capacity change from 0 to 2048 [ 159.198395][T19825] EXT4-fs: Ignoring removed mblk_io_submit option [ 159.239329][T19825] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.7508: bg 0: block 234: padding at end of block bitmap is not set [ 159.256836][T19825] EXT4-fs (loop5): Remounting filesystem read-only [ 159.304007][T19842] loop6: detected capacity change from 0 to 8192 [ 159.351365][T19842] loop6: p1 p2 p3 [ 159.445827][T19867] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7528'. [ 159.454824][T19867] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7528'. [ 159.488075][T19875] loop5: detected capacity change from 0 to 512 [ 159.516758][T19875] ext4 filesystem being mounted at /293/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 159.548600][T19885] loop7: detected capacity change from 0 to 2048 [ 159.620319][T19896] loop5: detected capacity change from 0 to 8192 [ 159.675079][T19896] loop5: p1 p2 p3 [ 159.718545][T19915] syz.5.7537: attempt to access beyond end of device [ 159.718545][T19915] md34: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 159.805456][T19932] loop5: detected capacity change from 0 to 1024 [ 159.812477][T19932] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 159.885420][T19940] random: crng reseeded on system resumption [ 159.916570][T19936] loop2: detected capacity change from 0 to 8192 [ 159.951321][T19943] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7554'. [ 159.965177][T19936] loop2: p1 p2 p3 [ 159.992938][T19951] syz.6.7555: attempt to access beyond end of device [ 159.992938][T19951] md34: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 160.008246][T19949] netlink: 9286 bytes leftover after parsing attributes in process `syz.5.7556'. [ 160.083954][T19968] loop6: detected capacity change from 0 to 512 [ 160.090744][T19968] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 160.104444][T19968] EXT4-fs (loop6): 1 truncate cleaned up [ 160.128528][T19974] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7565'. [ 160.144103][T19976] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7568'. [ 160.188520][T19974] team0 (unregistering): Port device team_slave_0 removed [ 160.196980][T19978] loop6: detected capacity change from 0 to 2048 [ 160.203548][T19978] EXT4-fs: Ignoring removed nobh option [ 160.228753][T19974] team0 (unregistering): Port device team_slave_1 removed [ 160.251812][T19978] ext4 filesystem being mounted at /84/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 160.345388][T19990] netlink: 9286 bytes leftover after parsing attributes in process `syz.2.7572'. [ 160.358580][ T29] kauditd_printk_skb: 398 callbacks suppressed [ 160.358595][ T29] audit: type=1400 audit(2000000280.142:2896): avc: denied { getopt } for pid=19991 comm="syz.6.7574" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 160.466615][T20008] lo speed is unknown, defaulting to 1000 [ 160.539825][ T29] audit: type=1326 audit(2000000280.322:2897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20014 comm="syz.2.7584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 160.563424][ T29] audit: type=1326 audit(2000000280.322:2898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20014 comm="syz.2.7584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 160.587028][ T29] audit: type=1326 audit(2000000280.322:2899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20014 comm="syz.2.7584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 160.610625][ T29] audit: type=1326 audit(2000000280.322:2900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20014 comm="syz.2.7584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 160.634151][ T29] audit: type=1326 audit(2000000280.322:2901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20014 comm="syz.2.7584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 160.657717][ T29] audit: type=1326 audit(2000000280.322:2902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20014 comm="syz.2.7584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 160.681309][ T29] audit: type=1326 audit(2000000280.442:2903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20014 comm="syz.2.7584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 160.704894][ T29] audit: type=1326 audit(2000000280.442:2904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20014 comm="syz.2.7584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 160.728430][ T29] audit: type=1326 audit(2000000280.442:2905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20014 comm="syz.2.7584" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7fdbd81ee719 code=0x7ffc0000 [ 160.773685][T20017] loop2: detected capacity change from 0 to 2048 [ 160.780400][T20017] EXT4-fs: Ignoring removed nobh option [ 160.796946][T20017] ext4 filesystem being mounted at /1532/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 160.849364][T20027] vlan3: entered promiscuous mode [ 160.849787][T20029] loop6: detected capacity change from 0 to 1024 [ 160.854513][T20027] vlan3: entered allmulticast mode [ 160.866518][T20029] EXT4-fs error (device loop6): ext4_acquire_dquot:6879: comm syz.6.7591: Failed to acquire dquot type 0 [ 160.881186][T20029] EXT4-fs error (device loop6): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 160.896396][T20029] EXT4-fs error (device loop6): ext4_do_update_inode:5121: inode #13: comm syz.6.7591: corrupted inode contents [ 160.913557][T20029] EXT4-fs error (device loop6): ext4_dirty_inode:5984: inode #13: comm syz.6.7591: mark_inode_dirty error [ 160.949643][T20029] EXT4-fs error (device loop6): ext4_do_update_inode:5121: inode #13: comm syz.6.7591: corrupted inode contents [ 160.992603][T20029] EXT4-fs error (device loop6): __ext4_ext_dirty:207: inode #13: comm syz.6.7591: mark_inode_dirty error [ 160.998588][T20036] loop7: detected capacity change from 0 to 512 [ 161.010101][T20037] loop0: detected capacity change from 0 to 512 [ 161.021178][T20029] EXT4-fs error (device loop6): ext4_do_update_inode:5121: inode #13: comm syz.6.7591: corrupted inode contents [ 161.037238][T20036] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 161.045897][T20029] EXT4-fs error (device loop6) in ext4_orphan_del:305: Corrupt filesystem [ 161.055054][T20029] EXT4-fs error (device loop6): ext4_do_update_inode:5121: inode #13: comm syz.6.7591: corrupted inode contents [ 161.069738][T20029] EXT4-fs error (device loop6): ext4_truncate:4208: inode #13: comm syz.6.7591: mark_inode_dirty error [ 161.081423][T20029] EXT4-fs error (device loop6) in ext4_process_orphan:347: Corrupt filesystem [ 161.093240][T20037] ext4 filesystem being mounted at /1567/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 161.108191][T20029] EXT4-fs (loop6): 1 truncate cleaned up [ 161.115193][T20036] ext4 filesystem being mounted at /77/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 161.159100][T20045] loop2: detected capacity change from 0 to 256 [ 161.171795][T20045] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 161.201899][T20047] loop6: detected capacity change from 0 to 2048 [ 161.256096][T20058] random: crng reseeded on system resumption [ 162.046684][T20082] loop7: detected capacity change from 0 to 512 [ 162.067886][T20082] ext4 filesystem being mounted at /79/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 162.192231][T20097] loop7: detected capacity change from 0 to 1024 [ 162.202160][T20097] EXT4-fs (loop7): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 162.213875][T20097] EXT4-fs error (device loop7): ext4_read_block_bitmap_nowait:483: comm syz.7.7619: Invalid block bitmap block 0 in block_group 0 [ 162.229733][T20097] EXT4-fs error (device loop7): ext4_acquire_dquot:6879: comm syz.7.7619: Failed to acquire dquot type 0 [ 162.241521][T20097] EXT4-fs error (device loop7): ext4_free_blocks:6589: comm syz.7.7619: Freeing blocks not in datazone - block = 0, count = 4096 [ 162.257267][T20097] EXT4-fs error (device loop7): ext4_read_inode_bitmap:139: comm syz.7.7619: Invalid inode bitmap blk 0 in block_group 0 [ 162.270126][T20097] EXT4-fs error (device loop7) in ext4_free_inode:360: Corrupt filesystem [ 162.280364][T20097] EXT4-fs (loop7): 1 orphan inode deleted [ 162.287329][ T354] EXT4-fs error (device loop7): ext4_release_dquot:6902: comm kworker/u8:7: Failed to release dquot type 0 [ 162.323231][T20112] syz.5.7627[20112] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 162.323327][T20112] syz.5.7627[20112] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 162.335621][T20112] syz.5.7627[20112] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 162.396146][T20118] loop2: detected capacity change from 0 to 2048 [ 162.632508][T20160] loop2: detected capacity change from 0 to 128 [ 162.642095][T20160] ext4 filesystem being mounted at /1545/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 162.877388][T20191] team0 (unregistering): Port device team_slave_0 removed [ 162.903000][T20191] team0 (unregistering): Port device team_slave_1 removed [ 163.040935][T20199] pimreg: entered allmulticast mode [ 163.093310][T20211] program syz.2.7664 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 163.166539][T20223] __nla_validate_parse: 11 callbacks suppressed [ 163.166558][T20223] netlink: 20 bytes leftover after parsing attributes in process `syz.6.7672'. [ 163.181919][T20223] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7672'. [ 163.217436][T20229] loop5: detected capacity change from 0 to 2048 [ 163.249987][T20229] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.7674: bg 0: block 234: padding at end of block bitmap is not set [ 163.264722][T20229] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 163.277732][T20229] EXT4-fs (loop5): This should not happen!! Data will be lost [ 163.277732][T20229] [ 163.296791][T20229] syz.5.7674 (20229) used greatest stack depth: 9280 bytes left [ 163.371895][T20245] syz.6.7683[20245] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 163.371965][T20245] syz.6.7683[20245] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 163.391777][T20246] infiniband syz2: set down [ 163.396339][T20245] syz.6.7683[20245] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 163.403560][T20246] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 163.434757][T20250] netlink: 28 bytes leftover after parsing attributes in process `syz.2.7686'. [ 163.491598][T20250] team0 (unregistering): Port device team_slave_0 removed [ 163.518442][T20250] team0 (unregistering): Port device team_slave_1 removed [ 163.564601][T20250] team0 (unregistering): Port device macvlan1 removed [ 163.591751][T17033] lo speed is unknown, defaulting to 1000 [ 163.597901][T17033] lo speed is unknown, defaulting to 1000 [ 163.599048][T20268] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7690'. [ 163.659483][T20279] loop6: detected capacity change from 0 to 512 [ 163.677996][T20279] EXT4-fs: Ignoring removed nobh option [ 163.683679][T20279] EXT4-fs: Ignoring removed nobh option [ 163.689990][T20283] loop2: detected capacity change from 0 to 512 [ 163.701460][T20279] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -2 [ 163.710858][T20279] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.7700: invalid indirect mapped block 2683928664 (level 1) [ 163.725763][T20279] EXT4-fs (loop6): 1 truncate cleaned up [ 163.726094][T20283] EXT4-fs (loop2): too many log groups per flexible block group [ 163.734608][T20289] netlink: 20 bytes leftover after parsing attributes in process `syz.0.7703'. [ 163.739143][T20283] EXT4-fs (loop2): failed to initialize mballoc (-12) [ 163.740716][T20283] EXT4-fs (loop2): mount failed [ 163.748863][T20289] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7703'. [ 163.802881][T20294] syz.2.7704[20294] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 163.802937][T20294] syz.2.7704[20294] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 163.820830][T20294] syz.2.7704[20294] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 163.857927][T20298] loop2: detected capacity change from 0 to 512 [ 163.876797][T20298] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 163.895267][T20298] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 163.928571][T20298] EXT4-fs (loop2): 1 truncate cleaned up [ 163.942095][T20305] sctp: [Deprecated]: syz.5.7719 (pid 20305) Use of int in max_burst socket option deprecated. [ 163.942095][T20305] Use struct sctp_assoc_value instead [ 163.962657][T20308] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7710'. [ 163.973572][T20311] netlink: 28 bytes leftover after parsing attributes in process `syz.0.7709'. [ 164.055461][T20311] team0 (unregistering): Port device team_slave_0 removed [ 164.080483][T20311] team0 (unregistering): Port device team_slave_1 removed [ 164.109379][T20311] team0 (unregistering): Port device bond1 removed [ 164.176124][T20324] loop7: detected capacity change from 0 to 128 [ 164.221812][T20324] EXT4-fs mount: 140 callbacks suppressed [ 164.221829][T20324] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 164.242458][T20329] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 164.263343][T20324] ext4 filesystem being mounted at /87/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 164.337232][T20332] syz.6.7721[20332] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 164.356115][T18840] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 164.426127][T20343] loop5: detected capacity change from 0 to 128 [ 197.122662][ T29] kauditd_printk_skb: 196 callbacks suppressed [ 197.122681][ T29] audit: type=1400 audit(2000000316.902:3097): avc: denied { read } for pid=2999 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 197.151549][ T29] audit: type=1400 audit(2000000316.902:3098): avc: denied { search } for pid=2999 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 197.173666][ T29] audit: type=1400 audit(2000000316.902:3099): avc: denied { append } for pid=2999 comm="syslogd" name="messages" dev="tmpfs" ino=8 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 197.196593][ T29] audit: type=1400 audit(2000000316.902:3100): avc: denied { open } for pid=2999 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=8 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 197.219137][ T29] audit: type=1400 audit(2000000316.912:3101): avc: denied { getattr } for pid=2999 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=8 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 295.695487][ T0] ================================================================== [ 295.703597][ T0] BUG: KCSAN: data-race in __tmigr_cpu_activate / tmigr_update_events [ 295.711753][ T0] [ 295.714066][ T0] write to 0xffff888237d205dc of 1 bytes by task 0 on cpu 1: [ 295.721423][ T0] __tmigr_cpu_activate+0x55/0x200 [ 295.726523][ T0] tmigr_cpu_activate+0x8a/0xc0 [ 295.731382][ T0] timer_clear_idle+0x28/0x100 [ 295.736153][ T0] tick_nohz_restart_sched_tick+0x22/0x110 [ 295.741954][ T0] tick_nohz_idle_exit+0xfe/0x1d0 [ 295.746990][ T0] do_idle+0x1ee/0x230 [ 295.751069][ T0] cpu_startup_entry+0x25/0x30 [ 295.755824][ T0] start_secondary+0x96/0xa0 [ 295.760404][ T0] common_startup_64+0x12c/0x137 [ 295.765340][ T0] [ 295.767647][ T0] read to 0xffff888237d205dc of 1 bytes by task 0 on cpu 0: [ 295.774927][ T0] tmigr_update_events+0x41d/0x5d0 [ 295.780030][ T0] __tmigr_cpu_deactivate+0x2b1/0x410 [ 295.785395][ T0] tmigr_cpu_deactivate+0x66/0x180 [ 295.790500][ T0] __get_next_timer_interrupt+0x137/0x530 [ 295.796254][ T0] timer_base_try_to_set_idle+0x54/0x60 [ 295.801798][ T0] tick_nohz_idle_stop_tick+0x15b/0x650 [ 295.807341][ T0] do_idle+0x178/0x230 [ 295.811408][ T0] cpu_startup_entry+0x25/0x30 [ 295.816167][ T0] rest_init+0xef/0xf0 [ 295.820231][ T0] start_kernel+0x586/0x5e0 [ 295.824725][ T0] x86_64_start_reservations+0x2a/0x30 [ 295.830180][ T0] x86_64_start_kernel+0x9a/0xa0 [ 295.835134][ T0] common_startup_64+0x12c/0x137 [ 295.840073][ T0] [ 295.842382][ T0] value changed: 0x00 -> 0x01 [ 295.847059][ T0] [ 295.849385][ T0] Reported by Kernel Concurrency Sanitizer on: [ 295.855522][ T0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.12.0-rc7-syzkaller-00192-gb5a24181e461 #0 [ 295.865840][ T0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 295.875881][ T0] ==================================================================