last executing test programs: 1.762985683s ago: executing program 2 (id=2393): bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) socket$nl_generic(0x10, 0x3, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x48) r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000080), 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000000c0)={'vcan0\x00', 0x0}) sendmsg$can_bcm(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[@ANYBLOB="05"], 0x48}}, 0x0) sendmsg$can_bcm(r0, &(0x7f00000002c0)={&(0x7f0000000000)={0x1d, r1}, 0x10, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYRES32=r0], 0x48}}, 0x0) 1.547902507s ago: executing program 2 (id=2399): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0xa30e, 0x1, 0xfffffffa}}}}]}, 0x44}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd22, 0x25dfdbfc, {0x0, 0x0, 0x0, r2, {0x4, 0xa}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_bpf={{0x8}, {0x20, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x6, 0xd, 0x5, 0x4}]}}, @TCA_BPF_CLASSID={0x8, 0x3, {0xa, 0xf}}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48848}, 0x20004804) 1.373691219s ago: executing program 4 (id=2404): keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000200)='.request_key_auth\x00', &(0x7f0000000300)) 1.370107709s ago: executing program 2 (id=2405): syz_genetlink_get_family_id$nl80211(&(0x7f0000001880), 0xffffffffffffffff) r0 = socket(0x10, 0x3, 0x0) write(r0, &(0x7f0000000180)="2000000012005f0214f9f4070000fbe40a0000000000", 0x41d) recvmmsg(r0, &(0x7f0000001500)=[{{0x0, 0x117, 0x0}}, {{&(0x7f0000000000)=@xdp, 0x80, &(0x7f00000011c0)=[{&(0x7f00000001c0)=""/4096, 0x1000}, {&(0x7f0000000080)=""/236, 0xec}], 0x2, &(0x7f0000001200)=""/97, 0x61}}, {{&(0x7f00000015c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f0000001480)=[{&(0x7f0000001300)=""/68, 0x44}, {&(0x7f0000001380)=""/197, 0xc5}], 0x2e3, &(0x7f00000014c0)=""/45, 0x38}}], 0x3, 0x0, 0x0) 1.264917221s ago: executing program 4 (id=2408): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) 1.173160592s ago: executing program 2 (id=2411): prlimit64(0x0, 0xe, 0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000080), 0x64, 0x50a, &(0x7f0000000200)="$eJzs3VFrHFsdAPD/bHZr06Y3ueqDXvB6tZW0aHeTxrbBh1pB9Kmg1vcak00I2WRDdtM2oWiKH0AQUcEnffFF8AMIUvDFRxEK+qyoKKKtPvigncvuTtI03U227TabZn8/mMw5Z2b2f86GmZ0zc5gJYGC9FxHXI+JJmqYXImI0K89lU2y1psZ6jx/dm21MSaTpzX8mkWRl25+VZPPT2WYnI+JrX474ZvJ83NrG5tJMpVJey/Kl+vJqqbaxeXFxeWahvFBemZqavDJ9dfry9ERP2nkmIq598a8/+O7PvnTtV5+586dbfz//rUa1RrLlu9vxgvL7LWw1vdD8LnZvsPaSwY6ifLOFmeF2aww9V3L/NdcJAID2Guf4H4yIT0bEhRiNof1PZwEAAIA3UPr5kfhfEpG2d6JDOQAAAPAGyTXHwCa5YjYWYCRyuWKxNYb3w3EqV6nW6p+er66vzLXGyo5FITe/WClPZGOFx6KQNPKTzfTT/KU9+amIeDsivj863MwXZ6uVuX5f/AAAAIABcXpP//8/o63+PwAAAHDMjPW7AgAAAMBrp/8PAAAAx5/+PwAAABxrX7lxozGl2++/nru9sb5UvX1xrlxbKi6vzxZnq2urxYVqdaH5zL7lgz6vUq2ufjZW1u+W6uVavVTb2Ly1XF1fqd9afOYV2AAAAMAhevvjD/6QRMTW54abU8OJ7jbtcjXgqMrvpJJs3ma3/uNbrflfDqlSwKEY6ncFgL7J97sCQN8U+l0BoO+SA5Z3HLzz22z+id7WBwAA6L3xj3a+/5/bd8ut/RcDR56dGAaX+/8wuJr3/7sdyetkAY6VgjMAGHivfP//QGn6QhUCAAB6bqQ5JblidnlvJHK5YjHiTPO1AIVkfrFSnoiItyLi96OFDzTyk80tkwP7DAAAAAAAAAAAAAAAAAAAAAAAAABAS5omkQIAAADHWkTub8mvW8/yHx89N7L3+sCJ5L+jkb0i9M6Pb/7w7ky9vjbZKP/XTnn9R1n5pX5cwQAAAICB8EIv8N/up2/34wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACglx4/uje7PR1m3H98ISLG2sXPx8nm/GQUIuLUv5PI79ouiYihHsQfbvz5SLv4SaNaOyHbxR/uQfyt+/vGj7HsW2gX/3QP4sMge9A4/lxvt//l4r3mvP3+l494Jv+yOh//Yuf4N9Rh/z/TZYx3Hv6i1DH+/Yh38u2PP9vxkw7xz3YZ/xtf39zstCz9ScR429+f5JlYpfryaqm2sXlxcXlmobxQXpmamrwyfXX68vREaX6xUs7+to3xvY/98sl+7T/VIf7YAe0/12X7///w7qMPtZKFdvHPn20T/zc/zdZ4Pn4u++37VJZuLB/fTm+10ru9+/Pfvbtf++c6tP+g///5Ltt/4avf+XOXqwIAh6C2sbk0U6mU145totFLPwLVkDiCiW/39APTNE0b+9QrfE4SR+FraSb6fWQCAAB67elJf79rAgAAAAAAAAAAAAAAAAAAAIPrMB4ntjfm1k4q6cUjtAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeuL9AAAA//+GAdlV") r1 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0) r2 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0) write$binfmt_register(r2, &(0x7f0000000440)={0x3a, 'syz1', 0x3a, 'M', 0x3a, 0x0, 0x3a, 'usrjquota=', 0x3a, '', 0x3a, './file2', 0x3a, [0x46]}, 0x32) fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0) 1.123045733s ago: executing program 4 (id=2412): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r2 = openat$cgroup_ro(r1, &(0x7f0000000380)='memory.stat\x00', 0x0, 0x0) r3 = socket$netlink(0x10, 0x3, 0x7) sendfile(r3, r2, 0x0, 0x17) 1.021625075s ago: executing program 1 (id=2415): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) dup(0xffffffffffffffff) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="14000000190a01"], 0x14}}, 0x0) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) 914.969217ms ago: executing program 1 (id=2416): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0xa30e, 0x1, 0xfffffffa}}}}]}, 0x44}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd22, 0x25dfdbfc, {0x0, 0x0, 0x0, r2, {0x4, 0xa}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_bpf={{0x8}, {0x20, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x6, 0xd, 0x5, 0x4}]}}, @TCA_BPF_CLASSID={0x8, 0x3, {0xa, 0xf}}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48848}, 0x20004804) 914.751136ms ago: executing program 4 (id=2417): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./bus\x00', 0x1001a, &(0x7f0000000280)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x20000}}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@inlinecrypt}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nombcache}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x6}}]}, 0x1, 0x42e, &(0x7f0000001980)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.idle_time\x00', 0x275a, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0x8004587d, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x8, 0x0, 0xb}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, 0xffffffffffffffff, 0x0) 900.805197ms ago: executing program 3 (id=2419): r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0xffffffff}, 0x1c) listen(r0, 0x80080400) setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f00000002c0)={0x3b, 0xe, 0x1, 0x6, 0x0, [@rand_addr=' \x01\x00', @mcast2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @remote, @loopback, @private2={0xfc, 0x2, '\x00', 0x1}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01']}, 0x78) 782.757049ms ago: executing program 1 (id=2421): syz_genetlink_get_family_id$nl80211(&(0x7f0000001880), 0xffffffffffffffff) r0 = socket(0x10, 0x3, 0x0) write(r0, &(0x7f0000000180)="2000000012005f0214f9f4070000fbe40a0000000000", 0x41d) recvmmsg(r0, &(0x7f0000001500)=[{{0x0, 0x117, 0x0}}, {{&(0x7f0000000000)=@xdp, 0x80, &(0x7f00000011c0)=[{&(0x7f00000001c0)=""/4096, 0x1000}, {&(0x7f0000000080)=""/236, 0xec}], 0x2, &(0x7f0000001200)=""/97, 0x61}}, {{&(0x7f00000015c0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f0000001480)=[{&(0x7f0000001300)=""/68, 0x44}, {&(0x7f0000001380)=""/197, 0xc5}], 0x2e3, &(0x7f00000014c0)=""/45, 0x38}}], 0x3, 0x0, 0x0) 675.06837ms ago: executing program 2 (id=2422): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r1}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r2, &(0x7f0000000180), 0x40010) 674.83852ms ago: executing program 3 (id=2423): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) sendmmsg(0xffffffffffffffff, &(0x7f0000000180), 0x40000000000007b, 0x4004) socket$unix(0x1, 0x1, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) socket(0x10, 0x3, 0x0) shmget$private(0x0, 0x4000, 0x800, &(0x7f0000007000/0x4000)=nil) 663.20883ms ago: executing program 0 (id=2424): bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) socket$nl_generic(0x10, 0x3, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB], 0x48) r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000080), 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000000c0)={'vcan0\x00', 0x0}) sendmsg$can_bcm(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[@ANYBLOB="05"], 0x48}}, 0x0) sendmsg$can_bcm(r0, &(0x7f00000002c0)={&(0x7f0000000000)={0x1d, r1}, 0x10, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYRES32=r0], 0x48}}, 0x0) 626.796361ms ago: executing program 1 (id=2425): bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0xfca804a0, 0x0, 0x0, &(0x7f00000002c0), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="11000000040000000400000005"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b70300000000000085000000330000"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x500}, 0x57) 576.096032ms ago: executing program 3 (id=2426): shmctl$SHM_UNLOCK(0x0, 0xc) 575.723752ms ago: executing program 4 (id=2427): socket(0x3, 0x1, 0x0) socket(0x2, 0x800, 0xd) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4000000) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000200)={[{@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0xdcc}}]}, 0x3, 0x44a, &(0x7f0000000400)="$eJzs281vG0UbAPBn10n6vv1KKOWjpUCgQkR8JE1aoAcuIJA4FIEEh3IMTlpVdRvUBIlWFQ0IlQsSqgRnxBGJv4AbFwSckLjCHVWqoJcWTkG73m1t106b1rFD/ftJm8x4x555PDve2R07gIE1nv1JIrZGxG8RMVrPNhcYr/+7evls9e/LZ6tJrKy89WeSl7ty+Wy1LFo+b0uRmUgj0k+SopJmi6fPHJ+t1eZPFfmppRPvTS2ePvPssROzR+ePzp+cOXjwwP7pF56fea4rcWZxXdn94cKeXa+9c+H16uEL7/70bdbercX+xji6ZTwL/K+VXOu+J7pdWZ9ta0gnQ31sCGtSiYisu4bz8T8albjeeaPx6sd9bRywrrJz06bOu5dXgLtYEv1uAdAf5Yk+u/4ttx5NPTaESy/VL4CyuK8WW33PUKRFmeGW69tuGo+Iw8v/fJVtsU73IQAAGn1W/fJQPNNu/pfG/Q3lthdrKGMRcU9E7IiIeyNiZ0TcF5GXfSAiHlxj/a1LQzfOf9KLtxXYLcrmfy8Wa1vN879y9hdjlSK3LY9/ODlyrDa/r3hPJmJ4U5afXqWO71/59fNO+xrnf9mW1V/OBYt2XBxquUE3N7s0m09Ku+DSRxG7h9rFn1xbCUgiYldE7F7bS28vE8ee+mZPp0I3j38VXVhnWvk64sl6/y9HS/ylZPX1yan/RW1+31R5VNzo51/Ov9mp/juKvwuy/t/cfPy3FhlLGtdrF9dex/nfP+14TXO7x/9I8nbeLyPFYx/MLi2dmo4YSQ7l+abHZ64/t8yX5bP4J/a2H/87iudk9TwUEdlB/HBEPBIRjxZtfywiHo+IvavE/+PLnfdthP6fa/v5d+34b+n/tScqx3/4rlP9t9b/B/LURPFI/vl3E7fawDt57wAAAOC/Is2/A5+kk9fSaTo5Wf8O/87YnNYWFpeePrLw/sm5+nflx2I4Le90jTbcD51OlotXrOdninvF5f79xX3jLyr/z/OT1YXaXJ9jh0G3pcP4z/xR6XfrgHXXbh1tZqQPDQF6rnX8p83Zc2/0sjFAT/m9Ngyum4z/tFftAHrP+R8GV7vxf64lby0A7k7O/zC4jH8YXMY/DC7jHwbSnfyuX2KQE5FuiGZIrFOi359MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3fFvAAAA//+uEO7O") bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b00)=ANY=[@ANYBLOB="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"], 0x548}}, 0x0) timer_getoverrun(0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)=ANY=[@ANYBLOB="800000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c0002800500010000"], 0x80}}, 0x0) 575.240432ms ago: executing program 3 (id=2428): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={0x0, 0xb0}}, 0x0) 518.417622ms ago: executing program 2 (id=2429): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='sched_switch\x00', r0}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000004000000450000008814"], 0x50) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000002bc0)={0x0, 0x0, &(0x7f0000002b80)={&(0x7f0000002980)=@dellink={0x34, 0x11, 0x1, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0xc0, 0x1400}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'wg2\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000100}, 0x40004) 517.577852ms ago: executing program 0 (id=2430): r0 = add_key$fscrypt_v1(0x0, &(0x7f00000001c0)={'fscrypt:', @desc4}, &(0x7f0000000380)={0x0, "562c4e5bb1afcc4ea13d69352036aea7fc5d23354827095b50b5fbfc89ea5db22b74d2a18d30150057a9ff6c4c41d400a39844bcd81027ec1cf0574f875a2ba0", 0x1d}, 0x48, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000200)='.request_key_auth\x00', &(0x7f0000000300)) 440.065524ms ago: executing program 1 (id=2431): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0xa30e, 0x1, 0xfffffffa}}}}]}, 0x44}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd22, 0x25dfdbfc, {0x0, 0x0, 0x0, r2, {0x4, 0xa}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_bpf={{0x8}, {0x20, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x6, 0xd, 0x5, 0x4}]}}, @TCA_BPF_CLASSID={0x8, 0x3, {0xa, 0xf}}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x48848}, 0x20004804) 439.107264ms ago: executing program 3 (id=2432): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000240)=[{0x200000000006, 0x4, 0x0, 0x7ffc0001}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, 0x0, 0x20) 383.143705ms ago: executing program 0 (id=2433): r0 = socket$inet_mptcp(0x2, 0x1, 0x106) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast1}, 0x10) connect$inet(r0, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10) r1 = syz_io_uring_setup(0x15d0, &(0x7f0000000900)={0x0, 0x1b5, 0x10, 0x802, 0x3a0}, &(0x7f0000000000)=0x0, &(0x7f0000000540)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000100)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) io_uring_enter(r1, 0x47f4, 0x0, 0x0, 0x0, 0x0) shutdown(r0, 0x1) 227.883507ms ago: executing program 0 (id=2434): mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103) write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff53000000800395032303030"], 0x15) pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15) r2 = dup(r1) write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) 190.984388ms ago: executing program 3 (id=2435): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000400)=0x11) 129.425939ms ago: executing program 0 (id=2436): syz_genetlink_get_family_id$nl80211(&(0x7f0000001880), 0xffffffffffffffff) r0 = socket(0x10, 0x3, 0x0) write(r0, &(0x7f0000000180)="2000000012005f0214f9f4070000fbe40a0000000000", 0x41d) 62.93345ms ago: executing program 4 (id=2437): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000013c0)={0x11, 0xc, &(0x7f0000001080)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0xffffffffffffffff}, 0x18) setsockopt$bt_hci_HCI_FILTER(0xffffffffffffffff, 0x0, 0x2, &(0x7f0000000680)={0xfff3, [0x80, 0x204], 0x40}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) clock_settime(0x0, &(0x7f0000000240)={0x77359400}) setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000000)=0x6, 0x4) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wg0\x00', 0x0}) sendto$packet(0xffffffffffffffff, &(0x7f0000000180)="0b03feff4f00021202004788aa96a13bb1000011000088ca1a00", 0x1fffc, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="8f384219c2edc3865fc1b4094e4ae17d7a12cd907c520dad54ae4560e831f989521bfcf9b2f03486e879c998fec59d9c9ea5f396fe880192a5a2a678a6995fd13be986705a0ccedfd422be83df44af8221f8b5df5cc076b4263c073c76289a8cf064346237584fefb2f062a8136bd3b717e638b2b6dc565f8b031ef01fc91c965f59c8fe5a1cc121111ab3e5cfe0875e10339f7004da6679a40fcae3a6f86b4012170f3505a1e6c8778672e2946047bf6885c0b7a2465028b0feef2fe4f1e0a7248fa483c222f0b17741763dbd578c877a248c4303a63b556557d108b7d747b61ad94aea4c018700634b77894b612cdeebe0587c16901cd4"], 0x0, 0x26, 0x0, 0x1, 0xffffffff, 0x0, @void, @value}, 0x28) r3 = socket(0x10, 0x2, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r4, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) connect$inet6(r4, &(0x7f0000000300)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f00000000c0), 0x4) setsockopt$inet6_tcp_TLS_TX(r4, 0x11a, 0x1, &(0x7f0000000340)=@gcm_128={{0x304}, "a6341a1a379332f5", "1fd33cb95d66a1781f31bf07fd2ae874", "62266bd8", "d1b29b99d21d88a2"}, 0x28) write$binfmt_script(r4, &(0x7f0000000780)={'#! ', './file0'}, 0xb) close_range(r3, r4, 0x0) connect$inet6(r4, &(0x7f0000000640)={0xa, 0x4e24, 0x1, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}, 0x4}, 0x1c) 59.181ms ago: executing program 1 (id=2438): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.idle_time\x00', 0x275a, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r1, 0x8004587d, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x8, 0x0, 0xb}) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) 0s ago: executing program 0 (id=2439): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r1}, &(0x7f0000000200), &(0x7f0000000280)}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000240)='kfree\x00', r2}, 0x18) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008"], 0x7c}}, 0x0) kernel console output (not intermixed with test programs): lo mtu (65550) ! [ 80.676720][ T5969] loop1: detected capacity change from 0 to 512 [ 80.710562][ T5969] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #3: comm syz.1.662: corrupted inode contents [ 80.726534][ T5969] EXT4-fs error (device loop1): ext4_dirty_inode:6089: inode #3: comm syz.1.662: mark_inode_dirty error [ 80.739011][ T5969] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #3: comm syz.1.662: corrupted inode contents [ 80.747299][ T5969] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #3: comm syz.1.662: mark_inode_dirty error [ 80.764028][ T5969] EXT4-fs error (device loop1): ext4_acquire_dquot:6802: comm syz.1.662: Failed to acquire dquot type 0 [ 80.774769][ T5969] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #16: comm syz.1.662: corrupted inode contents [ 80.780633][ T5969] EXT4-fs error (device loop1): ext4_dirty_inode:6089: inode #16: comm syz.1.662: mark_inode_dirty error [ 80.787536][ T5969] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #16: comm syz.1.662: corrupted inode contents [ 80.842659][ T5969] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #16: comm syz.1.662: mark_inode_dirty error [ 80.867495][ T5969] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #16: comm syz.1.662: corrupted inode contents [ 80.898329][ T5969] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem [ 80.901590][ T5969] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #16: comm syz.1.662: corrupted inode contents [ 80.911630][ T5969] EXT4-fs error (device loop1): ext4_truncate:4311: inode #16: comm syz.1.662: mark_inode_dirty error [ 80.921067][ T5969] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem [ 80.935124][ T5969] EXT4-fs (loop1): 1 truncate cleaned up [ 80.937020][ T5969] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 81.044783][ T4301] EXT4-fs (loop1): unmounting filesystem. [ 81.205415][ T5982] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 81.225829][ T5982] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready [ 81.255876][ T5982] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 81.258225][ T5982] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 81.497158][ T5997] batman_adv: batadv0: Local translation table size (116) exceeds maximum packet size (-176); Ignoring new local tt entry: 80:00:00:00:00:85 [ 82.056941][ T6021] loop1: detected capacity change from 0 to 512 [ 82.108791][ T6021] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #3: comm syz.1.684: corrupted inode contents [ 82.113348][ T6021] EXT4-fs error (device loop1): ext4_dirty_inode:6089: inode #3: comm syz.1.684: mark_inode_dirty error [ 82.117312][ T6021] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #3: comm syz.1.684: corrupted inode contents [ 82.127271][ T6021] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #3: comm syz.1.684: mark_inode_dirty error [ 82.132947][ T6021] EXT4-fs error (device loop1): ext4_acquire_dquot:6802: comm syz.1.684: Failed to acquire dquot type 0 [ 82.150811][ T6021] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #16: comm syz.1.684: corrupted inode contents [ 82.160700][ T6021] EXT4-fs error (device loop1): ext4_dirty_inode:6089: inode #16: comm syz.1.684: mark_inode_dirty error [ 82.178419][ T6021] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #16: comm syz.1.684: corrupted inode contents [ 82.187765][ T6021] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #16: comm syz.1.684: mark_inode_dirty error [ 82.206326][ T6021] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #16: comm syz.1.684: corrupted inode contents [ 82.224511][ T6021] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem [ 82.233045][ T6021] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #16: comm syz.1.684: corrupted inode contents [ 82.236625][ T6021] EXT4-fs error (device loop1): ext4_truncate:4311: inode #16: comm syz.1.684: mark_inode_dirty error [ 82.240254][ T6021] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem [ 82.256228][ T6021] EXT4-fs (loop1): 1 truncate cleaned up [ 82.260240][ T6021] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 82.363784][ T4301] EXT4-fs (loop1): unmounting filesystem. [ 82.383680][ T4463] EXT4-fs error (device loop1): ext4_release_dquot:6825: comm kworker/u4:9: Failed to release dquot type 1 [ 83.048695][ T6058] loop4: detected capacity change from 0 to 2048 [ 83.184666][ T6058] loop4: unable to read partition table [ 83.189943][ T6058] loop4: partition table beyond EOD, truncated [ 83.194232][ T6058] loop_reread_partitions: partition scan of loop4 () failed (rc=-5) [ 83.296619][ T3912] loop4: unable to read partition table [ 83.298237][ T3912] loop4: partition table beyond EOD, truncated [ 83.665226][ T6082] netlink: 4 bytes leftover after parsing attributes in process `syz.4.714'. [ 83.758286][ T6085] netlink: 12 bytes leftover after parsing attributes in process `syz.1.715'. [ 83.823366][ T27] kauditd_printk_skb: 76 callbacks suppressed [ 83.823379][ T27] audit: type=1326 audit(83.790:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.1.716" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 83.841350][ T27] audit: type=1326 audit(83.800:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.1.716" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 83.857710][ T27] audit: type=1326 audit(83.800:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.1.716" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 83.875450][ T27] audit: type=1326 audit(83.800:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.1.716" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 83.894805][ T27] audit: type=1326 audit(83.800:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.1.716" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 83.914536][ T27] audit: type=1326 audit(83.800:881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.1.716" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 83.926907][ T27] audit: type=1326 audit(83.810:882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.1.716" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 83.943453][ T27] audit: type=1326 audit(83.810:883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.1.716" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 83.956283][ T6091] loop1: detected capacity change from 0 to 512 [ 83.963778][ T6091] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 83.966767][ T27] audit: type=1326 audit(83.810:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.1.716" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 83.981117][ T27] audit: type=1326 audit(83.810:885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.1.716" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=85 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 83.996394][ T6091] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002] [ 83.999218][ T6091] System zones: 1-12 [ 84.026340][ T6091] EXT4-fs (loop1): 1 truncate cleaned up [ 84.028007][ T6091] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 84.096802][ T6095] random: crng reseeded on system resumption [ 84.303847][ T6108] netlink: 65039 bytes leftover after parsing attributes in process `syz.0.726'. [ 84.666693][ T6126] netlink: 4 bytes leftover after parsing attributes in process `syz.2.732'. [ 84.936417][ T6131] netlink: 28 bytes leftover after parsing attributes in process `syz.0.735'. [ 85.115011][ T6142] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 85.182832][ T6146] xt_recent: hitcount (456) is larger than allowed maximum (255) [ 85.340155][ T6153] loop3: detected capacity change from 0 to 2048 [ 85.379127][ T6156] netlink: 28 bytes leftover after parsing attributes in process `syz.4.747'. [ 85.408978][ T6153] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 85.424046][ T6153] EXT4-fs error (device loop3): __ext4_new_inode:1075: comm syz.3.745: reserved inode found cleared - inode=1 [ 85.502562][ T4300] EXT4-fs (loop3): unmounting filesystem. [ 85.614620][ T6165] netlink: 4 bytes leftover after parsing attributes in process `syz.3.749'. [ 86.022098][ T6185] netlink: 28 bytes leftover after parsing attributes in process `syz.3.759'. [ 86.999888][ T4301] EXT4-fs (loop1): unmounting filesystem. [ 87.020312][ T6208] netlink: 28 bytes leftover after parsing attributes in process `syz.3.771'. [ 87.052283][ T6210] netlink: 4 bytes leftover after parsing attributes in process `syz.0.769'. [ 87.427036][ T6233] netlink: 'syz.4.780': attribute type 3 has an invalid length. [ 87.911910][ T6250] IPVS: sync thread started: state = BACKUP, mcast_ifn = sit0, syncid = 0, id = 0 [ 87.912685][ T6249] IPVS: stopping backup sync thread 6250 ... [ 87.925237][ T6251] binfmt_misc: register: failed to install interpreter file ./file2 [ 88.294208][ T6265] loop2: detected capacity change from 0 to 128 [ 88.334050][ T6265] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 88.614639][ T4312] EXT4-fs (loop2): unmounting filesystem. [ 88.864076][ T6298] __nla_validate_parse: 8 callbacks suppressed [ 88.864092][ T6298] netlink: 24 bytes leftover after parsing attributes in process `syz.3.808'. [ 88.986391][ T27] kauditd_printk_skb: 58 callbacks suppressed [ 88.986406][ T27] audit: type=1326 audit(88.950:944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6299 comm="syz.1.809" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 88.998772][ T27] audit: type=1326 audit(88.950:945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6299 comm="syz.1.809" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 89.001122][ T6300] loop1: detected capacity change from 0 to 512 [ 89.005088][ T27] audit: type=1326 audit(88.950:946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6299 comm="syz.1.809" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 89.024805][ T27] audit: type=1326 audit(88.950:947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6299 comm="syz.1.809" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 89.034406][ T27] audit: type=1326 audit(88.950:948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6299 comm="syz.1.809" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 89.042031][ T27] audit: type=1326 audit(88.950:949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6299 comm="syz.1.809" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 89.042703][ T6300] EXT4-fs (loop1): orphan cleanup on readonly fs [ 89.048194][ T27] audit: type=1326 audit(88.950:950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6299 comm="syz.1.809" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 89.076177][ T27] audit: type=1326 audit(88.950:951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6299 comm="syz.1.809" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=279 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 89.083768][ T6300] EXT4-fs error (device loop1): ext4_orphan_get:1426: comm syz.1.809: bad orphan inode 13 [ 89.090197][ T27] audit: type=1326 audit(88.950:952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6299 comm="syz.1.809" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffff9d15bd1c code=0x7ffc0000 [ 89.096045][ T6300] ext4_test_bit(bit=12, block=18) = 1 [ 89.096074][ T6300] is_bad_inode(inode)=0 [ 89.096082][ T6300] NEXT_ORPHAN(inode)=2130706432 [ 89.096091][ T6300] max_ino=32 [ 89.096100][ T6300] i_nlink=1 [ 89.096490][ T6300] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 89.113660][ T27] audit: type=1326 audit(88.950:953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6299 comm="syz.1.809" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=64 compat=0 ip=0xffff9d15a3b0 code=0x7ffc0000 [ 89.113884][ T6312] netlink: 28 bytes leftover after parsing attributes in process `syz.4.814'. [ 89.205466][ T4301] EXT4-fs (loop1): unmounting filesystem. [ 89.305315][ T6320] loop3: detected capacity change from 0 to 2048 [ 89.341087][ T6320] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 89.452226][ T4300] EXT4-fs (loop3): unmounting filesystem. [ 89.614224][ T6333] netlink: 24 bytes leftover after parsing attributes in process `syz.4.821'. [ 89.717462][ T6340] netlink: 28 bytes leftover after parsing attributes in process `syz.4.825'. [ 89.868147][ T6347] netlink: 4 bytes leftover after parsing attributes in process `syz.0.827'. [ 90.263222][ T6358] loop2: detected capacity change from 0 to 512 [ 90.326200][ T6358] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 90.479399][ T6354] loop1: detected capacity change from 0 to 512 [ 90.515125][ T6354] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 90.549640][ T4312] EXT4-fs (loop2): unmounting filesystem. [ 90.624952][ T4351] infiniband syz2: ib_query_port failed (-19) [ 90.714410][ T4301] EXT4-fs (loop1): unmounting filesystem. [ 91.014590][ T6370] netlink: 24 bytes leftover after parsing attributes in process `syz.4.835'. [ 91.204168][ T6377] netlink: 28 bytes leftover after parsing attributes in process `syz.0.838'. [ 91.436145][ T6386] Bluetooth: MGMT ver 1.22 [ 91.631388][ T6396] netlink: 12 bytes leftover after parsing attributes in process `syz.3.847'. [ 91.813938][ T6404] netlink: 24 bytes leftover after parsing attributes in process `syz.4.850'. [ 91.997604][ T6410] netlink: 65039 bytes leftover after parsing attributes in process `syz.4.853'. [ 92.389282][ T6439] loop3: detected capacity change from 0 to 512 [ 92.472620][ T6439] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 92.686327][ T4300] EXT4-fs (loop3): unmounting filesystem. [ 93.037717][ T6481] xt_CT: You must specify a L4 protocol and not use inversions on it [ 93.614247][ T6513] syz.0.894 uses obsolete (PF_INET,SOCK_PACKET) [ 93.981906][ T6532] __nla_validate_parse: 8 callbacks suppressed [ 93.981924][ T6532] netlink: 12 bytes leftover after parsing attributes in process `syz.2.901'. [ 94.252453][ T6544] netlink: 12 bytes leftover after parsing attributes in process `syz.3.905'. [ 94.438027][ T6554] loop3: detected capacity change from 0 to 512 [ 94.518967][ T6554] EXT4-fs (loop3): 1 orphan inode deleted [ 94.523068][ T6554] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 94.532073][ T39] __quota_error: 118 callbacks suppressed [ 94.532087][ T39] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 94.536639][ T39] EXT4-fs error (device loop3): ext4_release_dquot:6825: comm kworker/u4:2: Failed to release dquot type 1 [ 94.555466][ T6554] EXT4-fs (loop3): unmounting filesystem. [ 94.609004][ T6563] mmap: syz.2.911 (6563) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 94.751695][ T6572] netlink: 12 bytes leftover after parsing attributes in process `syz.2.914'. [ 94.766416][ T6573] loop0: detected capacity change from 0 to 164 [ 94.785747][ T6573] process 'syz.0.916' launched '/dev/fd/3' with NULL argv: empty string added [ 94.813119][ T6573] syz.0.916: attempt to access beyond end of device [ 94.813119][ T6573] loop0: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 94.827040][ T6573] syz.0.916: attempt to access beyond end of device [ 94.827040][ T6573] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 94.949878][ T6581] netlink: 12 bytes leftover after parsing attributes in process `syz.4.919'. [ 95.136765][ T6595] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 95.312838][ T6608] netlink: 12 bytes leftover after parsing attributes in process `syz.1.930'. [ 95.345402][ T6611] netlink: 12 bytes leftover after parsing attributes in process `syz.0.931'. [ 95.467093][ T6618] netlink: 12 bytes leftover after parsing attributes in process `syz.1.934'. [ 95.834299][ T6631] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 95.918806][ T6642] netlink: 12 bytes leftover after parsing attributes in process `syz.3.943'. [ 95.988791][ T6646] netlink: 16 bytes leftover after parsing attributes in process `syz.3.945'. [ 96.043772][ T6631] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 96.049920][ T6644] netlink: 12 bytes leftover after parsing attributes in process `syz.1.944'. [ 96.176421][ T6631] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 96.306416][ T6631] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 96.377319][ T6659] netlink: 'syz.1.950': attribute type 3 has an invalid length. [ 96.594896][ T6631] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.611895][ T6631] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.617715][ T6631] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.652637][ T6631] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.665776][ T27] audit: type=1326 audit(96.630:1072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6667 comm="syz.3.954" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 96.675498][ T27] audit: type=1326 audit(96.640:1073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6667 comm="syz.3.954" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 96.708391][ T27] audit: type=1326 audit(96.640:1074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6667 comm="syz.3.954" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=178 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 96.721769][ T27] audit: type=1326 audit(96.640:1075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6667 comm="syz.3.954" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 96.758809][ T27] audit: type=1326 audit(96.640:1076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6667 comm="syz.3.954" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 96.775669][ T27] audit: type=1326 audit(96.640:1077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6667 comm="syz.3.954" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 96.800004][ T27] audit: type=1326 audit(96.640:1078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6667 comm="syz.3.954" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 96.827288][ T27] audit: type=1326 audit(96.640:1079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6667 comm="syz.3.954" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 97.195317][ T27] audit: type=1326 audit(97.160:1080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6692 comm="syz.4.963" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 98.618067][ T6763] loop2: detected capacity change from 0 to 128 [ 98.976760][ T6773] bridge2: port 1(vlan2) entered blocking state [ 98.981209][ T6773] bridge2: port 1(vlan2) entered disabled state [ 99.015143][ T55] kworker/u4:3: attempt to access beyond end of device [ 99.015143][ T55] loop2: rw=1, sector=145, nr_sectors = 8 limit=128 [ 99.022697][ T55] kworker/u4:3: attempt to access beyond end of device [ 99.022697][ T55] loop2: rw=1, sector=161, nr_sectors = 8 limit=128 [ 99.026503][ T55] kworker/u4:3: attempt to access beyond end of device [ 99.026503][ T55] loop2: rw=1, sector=177, nr_sectors = 8 limit=128 [ 99.027648][ T6777] __nla_validate_parse: 16 callbacks suppressed [ 99.027664][ T6777] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1001'. [ 99.036473][ T55] kworker/u4:3: attempt to access beyond end of device [ 99.036473][ T55] loop2: rw=1, sector=193, nr_sectors = 8 limit=128 [ 99.078560][ T55] kworker/u4:3: attempt to access beyond end of device [ 99.078560][ T55] loop2: rw=1, sector=209, nr_sectors = 8 limit=128 [ 99.095626][ T55] kworker/u4:3: attempt to access beyond end of device [ 99.095626][ T55] loop2: rw=1, sector=225, nr_sectors = 8 limit=128 [ 99.099334][ T55] kworker/u4:3: attempt to access beyond end of device [ 99.099334][ T55] loop2: rw=1, sector=241, nr_sectors = 8 limit=128 [ 99.110690][ T55] kworker/u4:3: attempt to access beyond end of device [ 99.110690][ T55] loop2: rw=1, sector=257, nr_sectors = 8 limit=128 [ 99.207906][ T6785] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1002'. [ 99.273103][ T6789] loop3: detected capacity change from 0 to 512 [ 99.305890][ T6789] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 99.374987][ T4300] EXT4-fs (loop3): unmounting filesystem. [ 99.709175][ T6818] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1018'. [ 99.734273][ T6819] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1017'. [ 99.776270][ T6821] loop4: detected capacity change from 0 to 512 [ 99.779404][ T6821] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 99.784517][ T6821] EXT4-fs (loop4): orphan cleanup on readonly fs [ 99.788083][ T6821] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:511: comm syz.4.1020: Block bitmap for bg 0 marked uninitialized [ 99.809244][ T6821] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 99.817200][ T6821] EXT4-fs (loop4): 1 orphan inode deleted [ 99.818909][ T6821] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 99.826955][ T6821] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended [ 99.833956][ T6819] bridge2: port 1(vlan0) entered blocking state [ 99.840824][ T6821] EXT4-fs (loop4): re-mounted. Quota mode: none. [ 99.849743][ T6821] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:511: comm syz.4.1020: Block bitmap for bg 0 marked uninitialized [ 99.855528][ T6819] bridge2: port 1(vlan0) entered disabled state [ 99.879349][ T6821] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:511: comm syz.4.1020: Block bitmap for bg 0 marked uninitialized [ 99.888076][ T6821] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:511: comm syz.4.1020: Block bitmap for bg 0 marked uninitialized [ 99.919185][ T6826] hub 1-0:1.0: USB hub found [ 99.928521][ T6826] hub 1-0:1.0: 1 port detected [ 99.948226][ T6831] IPVS: sync thread started: state = BACKUP, mcast_ifn = sit0, syncid = 0, id = 0 [ 99.948539][ T6830] IPVS: stopping backup sync thread 6831 ... [ 100.008327][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 100.021448][ T6832] loop1: detected capacity change from 0 to 512 [ 100.035539][ T6832] EXT4-fs: Ignoring removed oldalloc option [ 100.068156][ T6832] EXT4-fs (loop1): 1 truncate cleaned up [ 100.070018][ T6832] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 100.127880][ T4301] EXT4-fs (loop1): unmounting filesystem. [ 100.280109][ T6843] xt_recent: hitcount (16385) is larger than allowed maximum (255) [ 100.426834][ T6855] loop4: detected capacity change from 0 to 256 [ 100.538183][ T6858] loop0: detected capacity change from 0 to 128 [ 100.555408][ T6860] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1035'. [ 100.588748][ T6862] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1045'. [ 101.002704][ T39] bio_check_eod: 104 callbacks suppressed [ 101.002719][ T39] kworker/u4:2: attempt to access beyond end of device [ 101.002719][ T39] loop0: rw=1, sector=145, nr_sectors = 8 limit=128 [ 101.008454][ T39] kworker/u4:2: attempt to access beyond end of device [ 101.008454][ T39] loop0: rw=1, sector=161, nr_sectors = 8 limit=128 [ 101.012931][ T39] kworker/u4:2: attempt to access beyond end of device [ 101.012931][ T39] loop0: rw=1, sector=177, nr_sectors = 8 limit=128 [ 101.032993][ T39] kworker/u4:2: attempt to access beyond end of device [ 101.032993][ T39] loop0: rw=1, sector=193, nr_sectors = 8 limit=128 [ 101.038857][ T39] kworker/u4:2: attempt to access beyond end of device [ 101.038857][ T39] loop0: rw=1, sector=209, nr_sectors = 8 limit=128 [ 101.050328][ T39] kworker/u4:2: attempt to access beyond end of device [ 101.050328][ T39] loop0: rw=1, sector=225, nr_sectors = 8 limit=128 [ 101.064112][ T39] kworker/u4:2: attempt to access beyond end of device [ 101.064112][ T39] loop0: rw=1, sector=241, nr_sectors = 8 limit=128 [ 101.077170][ T6883] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1047'. [ 101.078554][ T39] kworker/u4:2: attempt to access beyond end of device [ 101.078554][ T39] loop0: rw=1, sector=257, nr_sectors = 8 limit=128 [ 101.086607][ T39] kworker/u4:2: attempt to access beyond end of device [ 101.086607][ T39] loop0: rw=1, sector=273, nr_sectors = 8 limit=128 [ 101.092710][ T39] kworker/u4:2: attempt to access beyond end of device [ 101.092710][ T39] loop0: rw=1, sector=289, nr_sectors = 8 limit=128 [ 101.168468][ T6886] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1049'. [ 101.523378][ T27] kauditd_printk_skb: 4 callbacks suppressed [ 101.523394][ T27] audit: type=1326 audit(101.490:1085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6898 comm="syz.3.1053" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 101.535268][ T27] audit: type=1326 audit(101.490:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6898 comm="syz.3.1053" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 101.557665][ T27] audit: type=1326 audit(101.490:1087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6898 comm="syz.3.1053" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=279 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 101.570082][ T6899] loop3: detected capacity change from 0 to 2048 [ 101.572096][ T27] audit: type=1326 audit(101.490:1088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6898 comm="syz.3.1053" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffff9cd5bd1c code=0x7ffc0000 [ 101.572145][ T27] audit: type=1326 audit(101.510:1089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6898 comm="syz.3.1053" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=64 compat=0 ip=0xffff9cd5a3b0 code=0x7ffc0000 [ 101.596386][ T27] audit: type=1326 audit(101.530:1090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6898 comm="syz.3.1053" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=215 compat=0 ip=0xffff9cd5bd8c code=0x7ffc0000 [ 101.623146][ T27] audit: type=1326 audit(101.530:1091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6898 comm="syz.3.1053" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffff9cd5a214 code=0x7ffc0000 [ 101.633558][ T6899] loop3: p1 < > p4 [ 101.634428][ T27] audit: type=1326 audit(101.530:1092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6898 comm="syz.3.1053" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffff9cd5b810 code=0x7ffc0000 [ 101.641256][ T6899] loop3: p4 size 8388608 extends beyond EOD, truncated [ 101.647411][ T27] audit: type=1326 audit(101.550:1093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6898 comm="syz.3.1053" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=57 compat=0 ip=0xffff9cd5a5ec code=0x7ffc0000 [ 101.659324][ T27] audit: type=1326 audit(101.550:1094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6898 comm="syz.3.1053" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffff9cd5b810 code=0x7ffc0000 [ 101.893202][ T6912] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1059'. [ 101.918489][ T6914] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1060'. [ 101.950288][ T4443] udevd[4443]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory [ 101.971767][ T5582] udevd[5582]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory [ 102.144460][ T6926] tipc: New replicast peer: 255.255.255.255 [ 102.146831][ T6926] tipc: Enabled bearer , priority 10 [ 102.180126][ T6926] tipc: Disabling bearer [ 102.585114][ T6950] tipc: New replicast peer: 255.255.255.255 [ 102.602744][ T6950] tipc: Enabled bearer , priority 10 [ 102.704245][ T6950] tipc: Disabling bearer [ 104.303738][ T6984] loop0: detected capacity change from 0 to 512 [ 104.306190][ T6984] EXT4-fs: Ignoring removed nobh option [ 104.366306][ T6984] fscrypt (loop0, inode 2): Error -61 getting encryption context [ 104.369240][ T6984] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -61 [ 104.379391][ T6984] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #13: comm syz.0.1093: casefold flag without casefold feature [ 104.383996][ T6984] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.1093: couldn't read orphan inode 13 (err -117) [ 104.392536][ T6984] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 104.546789][ T4310] EXT4-fs (loop0): unmounting filesystem. [ 105.306582][ T7025] __nla_validate_parse: 2 callbacks suppressed [ 105.306600][ T7025] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1108'. [ 105.563749][ T7038] tipc: New replicast peer: 255.255.255.255 [ 105.566905][ T7038] tipc: Enabled bearer , priority 10 [ 105.589761][ T7038] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1114'. [ 105.596983][ T7038] tipc: Disabling bearer [ 105.977788][ T7055] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1121'. [ 106.235431][ T7069] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 0, id = 0 [ 106.535624][ T7080] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1131'. [ 106.766243][ T7089] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1135'. [ 106.769096][ T7089] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1135'. [ 106.779325][ T7089] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 106.782312][ T7089] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 106.784724][ T7089] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 106.787057][ T7089] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 106.792418][ T7092] loop0: detected capacity change from 0 to 4096 [ 106.832770][ T7092] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 106.887387][ T27] kauditd_printk_skb: 37 callbacks suppressed [ 106.887400][ T27] audit: type=1326 audit(106.850:1132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7091 comm="syz.0.1136" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9bf5bce8 code=0x7ffc0000 [ 106.906017][ T27] audit: type=1326 audit(106.870:1133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7091 comm="syz.0.1136" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=163 compat=0 ip=0xffff9bf5bce8 code=0x7ffc0000 [ 106.946559][ T27] audit: type=1326 audit(106.870:1134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7091 comm="syz.0.1136" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9bf5bce8 code=0x7ffc0000 [ 106.979554][ T4310] EXT4-fs (loop0): unmounting filesystem. [ 106.991401][ T27] audit: type=1326 audit(106.870:1135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7091 comm="syz.0.1136" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=7 compat=0 ip=0xffff9bf5bce8 code=0x7ffc0000 [ 107.025950][ T27] audit: type=1326 audit(106.870:1136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7091 comm="syz.0.1136" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9bf5bce8 code=0x7ffc0000 [ 107.083057][ T7099] batadv0 speed is unknown, defaulting to 1000 [ 107.084907][ T7099] batadv0 speed is unknown, defaulting to 1000 [ 107.086817][ T7099] batadv0 speed is unknown, defaulting to 1000 [ 107.117635][ T7099] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 107.176035][ T7099] batadv0 speed is unknown, defaulting to 1000 [ 107.197683][ T7099] batadv0 speed is unknown, defaulting to 1000 [ 107.212498][ T7099] batadv0 speed is unknown, defaulting to 1000 [ 107.228307][ T7099] batadv0 speed is unknown, defaulting to 1000 [ 107.249461][ T7099] batadv0 speed is unknown, defaulting to 1000 [ 107.626417][ T27] audit: type=1326 audit(107.590:1137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7134 comm="syz.4.1152" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 107.639106][ T27] audit: type=1326 audit(107.600:1138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7134 comm="syz.4.1152" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=261 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 107.687140][ T27] audit: type=1326 audit(107.600:1139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7134 comm="syz.4.1152" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 107.726414][ T27] audit: type=1326 audit(107.600:1140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7134 comm="syz.4.1152" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=140 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 107.763948][ T27] audit: type=1326 audit(107.610:1141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7134 comm="syz.4.1152" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 108.004628][ T7132] batadv0 speed is unknown, defaulting to 1000 [ 108.187093][ T7159] loop4: detected capacity change from 0 to 2048 [ 108.216931][ T7159] loop4: p1 < > p4 [ 108.225097][ T7159] loop4: p4 size 8388608 extends beyond EOD, truncated [ 108.569137][ T7175] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 108.610640][ T7177] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 108.919494][ T7198] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 108.921980][ T7198] vhci_hcd: default hub control req: 2314 v0008 i0002 l0 [ 109.056398][ T7204] netlink: 'syz.3.1181': attribute type 3 has an invalid length. [ 109.186407][ T7210] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 109.668169][ T7230] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 109.867601][ T7236] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1194'. [ 110.129965][ T7248] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1199'. [ 110.160568][ T7248] device hsr_slave_0 left promiscuous mode [ 110.199903][ T7248] device hsr_slave_1 left promiscuous mode [ 110.257670][ T7255] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 110.262256][ T7255] vhci_hcd: default hub control req: 2314 v0008 i0002 l0 [ 110.410503][ T7260] IPVS: sync thread started: state = BACKUP, mcast_ifn = sit0, syncid = 0, id = 0 [ 110.637728][ T7271] device bond0 entered promiscuous mode [ 110.685444][ T7271] device batadv0 entered promiscuous mode [ 110.751037][ T7271] hsr1: Slave A (bond0) is not up; please bring it up to get a fully working HSR network [ 110.760301][ T7271] device bond0 left promiscuous mode [ 110.791804][ T7271] device batadv0 left promiscuous mode [ 110.962432][ T7285] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1215'. [ 111.011859][ T7285] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1215'. [ 111.015375][ T7278] smc: net device bond0 applied user defined pnetid SYZ2 [ 111.232856][ T7291] IPVS: stopping backup sync thread 7260 ... [ 111.316549][ T7296] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1220'. [ 111.325490][ T7299] hub 1-0:1.0: USB hub found [ 111.327004][ T7299] hub 1-0:1.0: 1 port detected [ 111.384068][ T7299] loop2: detected capacity change from 0 to 512 [ 111.386347][ T7299] EXT4-fs: Ignoring removed oldalloc option [ 111.401398][ T7299] EXT4-fs (loop2): 1 truncate cleaned up [ 111.402978][ T7299] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 111.448509][ T4312] EXT4-fs (loop2): unmounting filesystem. [ 111.471412][ T7308] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1224'. [ 111.564815][ T7315] loop2: detected capacity change from 0 to 1024 [ 111.567475][ T7315] EXT4-fs: Ignoring removed nomblk_io_submit option [ 111.636454][ T7315] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 111.781969][ T7327] IPVS: stopping backup sync thread 7328 ... [ 111.929114][ T7333] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1235'. [ 112.189118][ T7352] IPVS: sync thread started: state = BACKUP, mcast_ifn = sit0, syncid = 0, id = 0 [ 112.189129][ T7351] IPVS: stopping backup sync thread 7352 ... [ 112.436908][ T14] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 112.452410][ T4312] EXT4-fs (loop2): unmounting filesystem. [ 112.471133][ T14] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 112.794848][ T7378] loop2: detected capacity change from 0 to 4096 [ 112.814505][ T7378] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 112.827411][ T7384] IPVS: stopping backup sync thread 7069 ... [ 112.844971][ T7378] EXT4-fs error (device loop2): ext4_do_update_inode:5224: inode #15: comm syz.2.1255: corrupted inode contents [ 112.867467][ T7378] EXT4-fs error (device loop2): ext4_dirty_inode:6089: inode #15: comm syz.2.1255: mark_inode_dirty error [ 112.879720][ T7378] EXT4-fs error (device loop2): ext4_do_update_inode:5224: inode #15: comm syz.2.1255: corrupted inode contents [ 112.891169][ T7378] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #15: comm syz.2.1255: mark_inode_dirty error [ 112.895318][ T7378] EXT4-fs error (device loop2): ext4_do_update_inode:5224: inode #15: comm syz.2.1255: corrupted inode contents [ 112.903029][ T7378] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #15: comm syz.2.1255: mark_inode_dirty error [ 112.906946][ T7378] EXT4-fs error (device loop2): ext4_do_update_inode:5224: inode #15: comm syz.2.1255: corrupted inode contents [ 112.937991][ T7378] EXT4-fs error (device loop2): ext4_truncate:4311: inode #15: comm syz.2.1255: mark_inode_dirty error [ 112.955233][ T7378] EXT4-fs error (device loop2) in ext4_setattr:5628: Corrupt filesystem [ 113.031108][ T4312] EXT4-fs (loop2): unmounting filesystem. [ 113.511712][ T7409] loop4: detected capacity change from 0 to 8192 [ 113.526197][ T7409] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 113.893813][ T7434] loop0: detected capacity change from 0 to 1024 [ 113.911112][ T7434] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 113.914230][ T7434] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 113.931848][ T7434] JBD2: no valid journal superblock found [ 113.933570][ T7434] EXT4-fs (loop0): error loading journal [ 114.445539][ T7480] loop2: detected capacity change from 0 to 128 [ 114.691177][ T7499] IPVS: sync thread started: state = BACKUP, mcast_ifn = sit0, syncid = 0, id = 0 [ 114.867464][ T27] kauditd_printk_skb: 40 callbacks suppressed [ 114.867479][ T27] audit: type=1326 audit(114.830:1182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7508 comm="syz.2.1298" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 114.884772][ T27] audit: type=1326 audit(114.830:1183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7508 comm="syz.2.1298" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 114.920656][ T27] audit: type=1326 audit(114.830:1184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7508 comm="syz.2.1298" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 114.938665][ T27] audit: type=1326 audit(114.830:1185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7508 comm="syz.2.1298" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 114.960535][ T27] audit: type=1326 audit(114.830:1186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7508 comm="syz.2.1298" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 114.966563][ T27] audit: type=1326 audit(114.830:1187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7508 comm="syz.2.1298" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=110 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 115.000464][ T27] audit: type=1326 audit(114.830:1188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7508 comm="syz.2.1298" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 115.006992][ T27] audit: type=1326 audit(114.830:1189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7508 comm="syz.2.1298" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 115.040520][ T27] audit: type=1326 audit(114.830:1190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7508 comm="syz.2.1298" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=243 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 115.061050][ T27] audit: type=1326 audit(114.850:1191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7508 comm="syz.2.1298" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=172 compat=0 ip=0xffff827537cc code=0x7ffc0000 [ 115.105205][ T7527] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 115.367523][ T7546] IPVS: sync thread started: state = BACKUP, mcast_ifn = sit0, syncid = 0, id = 0 [ 115.440069][ T7550] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1314'. [ 115.824718][ T7577] netlink: 'syz.1.1325': attribute type 1 has an invalid length. [ 115.844721][ T7576] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1324'. [ 115.938825][ T7588] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1327'. [ 116.032467][ T7593] IPVS: sync thread started: state = BACKUP, mcast_ifn = sit0, syncid = 0, id = 0 [ 116.383487][ T7609] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1337'. [ 116.455777][ T7612] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1338'. [ 116.720715][ T7623] loop3: detected capacity change from 0 to 512 [ 116.728557][ T7623] EXT4-fs: inline encryption not supported [ 116.764436][ T7623] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 116.766912][ T7623] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 117.050440][ T7623] EXT4-fs warning (device loop3): ext4_enable_quotas:7037: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 117.060650][ T7623] EXT4-fs (loop3): mount failed [ 118.500350][ C1] sched: RT throttling activated [ 118.516787][ T7631] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1344'. [ 118.863810][ T7623] batadv0 speed is unknown, defaulting to 1000 [ 118.894667][ T7635] loop3: detected capacity change from 0 to 8192 [ 119.608841][ T7645] IPVS: stopping master sync thread 7643 ... [ 119.707755][ T7652] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1348'. [ 119.859839][ T7657] loop3: detected capacity change from 0 to 512 [ 119.860617][ T7659] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1352'. [ 119.920489][ T7657] EXT2-fs (loop3): warning: feature flags set on rev 0 fs, running e2fsck is recommended [ 119.951994][ T7657] EXT2-fs (loop3): warning: maximal mount count reached, running e2fsck is recommended [ 119.955024][ T7657] EXT2-fs (loop3): 0.5b, 95/08/09, bs=4096, gc=1, bpg=32768, ipg=32, mo=8001c] [ 119.969084][ T7657] bio_check_eod: 102 callbacks suppressed [ 119.969100][ T7657] syz.3.1351: attempt to access beyond end of device [ 119.969100][ T7657] loop3: rw=0, sector=1022032, nr_sectors = 8 limit=512 [ 120.003080][ T7657] syz.3.1351: attempt to access beyond end of device [ 120.003080][ T7657] loop3: rw=0, sector=1022032, nr_sectors = 8 limit=512 [ 120.029054][ T7657] syz.3.1351: attempt to access beyond end of device [ 120.029054][ T7657] loop3: rw=0, sector=1022032, nr_sectors = 8 limit=512 [ 120.037919][ T7665] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0 [ 120.210964][ T7675] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4) [ 120.213141][ T7675] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 120.228042][ T27] kauditd_printk_skb: 274 callbacks suppressed [ 120.228055][ T27] audit: type=1326 audit(120.190:1465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7680 comm="syz.3.1359" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 120.234888][ T7675] vhci_hcd vhci_hcd.0: Device attached [ 120.244258][ T27] audit: type=1326 audit(120.210:1466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7680 comm="syz.3.1359" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 120.252981][ T27] audit: type=1326 audit(120.220:1467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7680 comm="syz.3.1359" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 120.257178][ T7678] loop0: detected capacity change from 0 to 1024 [ 120.266276][ T7676] vhci_hcd: connection closed [ 120.270056][ T27] audit: type=1326 audit(120.220:1468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7680 comm="syz.3.1359" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 120.271776][ T4398] vhci_hcd: stop threads [ 120.279426][ T27] audit: type=1326 audit(120.220:1469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7680 comm="syz.3.1359" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 120.365839][ T7685] loop4: detected capacity change from 0 to 512 [ 120.372789][ T7685] EXT4-fs: inline encryption not supported [ 120.399909][ T7685] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 120.402574][ T7685] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 120.518648][ T7678] EXT4-fs: Ignoring removed i_version option [ 120.628491][ T27] audit: type=1326 audit(120.220:1470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7680 comm="syz.3.1359" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 120.738914][ T4398] vhci_hcd: release socket [ 120.799718][ T7685] Quota error (device loop4): v2_read_file_info: Free block number 1 out of range (1, 6). [ 120.803399][ T7685] EXT4-fs warning (device loop4): ext4_enable_quotas:7037: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 120.811949][ T7685] EXT4-fs (loop4): mount failed [ 120.894971][ T4398] vhci_hcd: disconnect device [ 120.936187][ T27] audit: type=1326 audit(120.220:1471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7680 comm="syz.3.1359" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 121.117463][ T27] audit: type=1326 audit(120.220:1472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7680 comm="syz.3.1359" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 121.280795][ T27] audit: type=1326 audit(120.220:1473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7680 comm="syz.3.1359" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=14 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 121.475752][ T7678] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 122.354301][ T7685] batadv0 speed is unknown, defaulting to 1000 [ 122.449770][ T4310] EXT4-fs (loop0): unmounting filesystem. [ 122.577707][ T7703] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1363'. [ 122.997995][ T7712] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1370'. [ 123.165135][ T7718] siw: device registration error -23 [ 123.391744][ T7732] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1378'. [ 123.629661][ T7746] rdma_op 000000000a69b6ec conn xmit_rdma 0000000000000000 [ 123.712122][ T7751] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1387'. [ 123.777122][ T7754] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1389'. [ 123.875178][ T7760] loop4: detected capacity change from 0 to 128 [ 123.882812][ T7758] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1391'. [ 124.150038][ T7770] xt_CT: You must specify a L4 protocol and not use inversions on it [ 124.343017][ T7777] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1401'. [ 124.431868][ T7781] loop3: detected capacity change from 0 to 128 [ 124.532303][ T7785] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1404'. [ 124.684328][ T7792] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1408'. [ 125.129472][ T7811] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1414'. [ 125.257265][ T27] kauditd_printk_skb: 45 callbacks suppressed [ 125.257278][ T27] audit: type=1326 audit(125.220:1519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7803 comm="syz.3.1413" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 125.276725][ T27] audit: type=1326 audit(125.220:1520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7803 comm="syz.3.1413" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 125.399046][ T7817] loop1: detected capacity change from 0 to 128 [ 125.437734][ T7818] loop3: detected capacity change from 0 to 2048 [ 125.481857][ T7821] loop2: detected capacity change from 0 to 128 [ 125.500084][ T7823] loop1: detected capacity change from 0 to 512 [ 125.506297][ T7823] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 125.533203][ T7823] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 125.642988][ T7829] capability: warning: `syz.2.1421' uses deprecated v2 capabilities in a way that may be insecure [ 126.452514][ T7835] batadv0 speed is unknown, defaulting to 1000 [ 126.534288][ T2059] ieee802154 phy0 wpan0: encryption failed: -22 [ 126.536109][ T2059] ieee802154 phy1 wpan1: encryption failed: -22 [ 126.711436][ T4301] EXT4-fs (loop1): unmounting filesystem. [ 126.855440][ T7848] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 126.858372][ T7848] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 126.965968][ T7848] loop4: detected capacity change from 0 to 2048 [ 127.012100][ T7848] loop4: p1 < > p4 [ 127.019115][ T7848] loop4: p4 size 8388608 extends beyond EOD, truncated [ 127.046137][ T27] audit: type=1326 audit(127.010:1521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7843 comm="syz.4.1428" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 127.055567][ T27] audit: type=1326 audit(127.010:1522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7843 comm="syz.4.1428" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 127.058934][ T7857] loop2: detected capacity change from 0 to 512 [ 127.093614][ T27] audit: type=1326 audit(127.010:1523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7843 comm="syz.4.1428" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 127.110692][ T27] audit: type=1326 audit(127.010:1524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7843 comm="syz.4.1428" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 127.112963][ T7857] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 127.135748][ T3912] loop4: p1 < > p4 [ 127.147057][ T3912] loop4: p4 size 8388608 extends beyond EOD, truncated [ 127.177349][ T27] audit: type=1326 audit(127.010:1525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7843 comm="syz.4.1428" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 127.226985][ T27] audit: type=1326 audit(127.010:1526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7843 comm="syz.4.1428" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=240 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 127.250089][ T27] audit: type=1326 audit(127.010:1527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7843 comm="syz.4.1428" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 127.256812][ T27] audit: type=1326 audit(127.010:1528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7843 comm="syz.4.1428" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 127.296532][ T4312] EXT4-fs (loop2): unmounting filesystem. [ 127.767654][ T7882] tun0: tun_chr_ioctl cmd 1074025677 [ 127.775183][ T7882] tun0: linktype set to 773 [ 127.784951][ T7882] xt_hashlimit: size too large, truncated to 1048576 [ 128.209584][ T7903] __nla_validate_parse: 7 callbacks suppressed [ 128.209600][ T7903] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1453'. [ 128.239807][ T7904] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1452'. [ 128.324032][ T7908] vhci_hcd: default hub control req: 8016 v0006 i0000 l0 [ 128.521015][ T7913] loop2: detected capacity change from 0 to 2048 [ 128.606261][ T7910] infiniband srz1: RDMA CMA: cma_listen_on_dev, error -98 [ 128.979860][ T7935] loop2: detected capacity change from 0 to 512 [ 129.006740][ T7935] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 129.028949][ T7939] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1467'. [ 129.169356][ T4312] EXT4-fs (loop2): unmounting filesystem. [ 129.232379][ T7946] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1470'. [ 129.364943][ T7951] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1473'. [ 129.568836][ T7958] loop1: detected capacity change from 0 to 512 [ 129.577821][ T7958] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 129.596967][ T7958] EXT4-fs (loop1): 1 truncate cleaned up [ 129.598793][ T7958] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 129.777654][ T4301] EXT4-fs (loop1): unmounting filesystem. [ 129.925023][ T7967] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1478'. [ 130.267720][ T27] kauditd_printk_skb: 25 callbacks suppressed [ 130.267737][ T27] audit: type=1326 audit(130.230:1554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7984 comm="syz.1.1485" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 130.286254][ T27] audit: type=1326 audit(130.230:1555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7984 comm="syz.1.1485" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=140 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 130.320475][ T27] audit: type=1326 audit(130.230:1556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7984 comm="syz.1.1485" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 130.510943][ T7994] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1489'. [ 130.520209][ T7996] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1490'. [ 130.708056][ T8000] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1491'. [ 130.991319][ T8003] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 131.115206][ T8003] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 131.216642][ T8003] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 131.322354][ T8003] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 131.445059][ T8021] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1501'. [ 131.509665][ T8003] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 131.593408][ T8003] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 131.612015][ T8003] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 131.640944][ T8003] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 132.003781][ T27] audit: type=1326 audit(131.970:1557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8045 comm="syz.2.1512" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 132.013955][ T27] audit: type=1326 audit(131.970:1558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8045 comm="syz.2.1512" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 132.043495][ T8047] loop2: detected capacity change from 0 to 512 [ 132.045574][ T27] audit: type=1326 audit(131.970:1559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8045 comm="syz.2.1512" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=279 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 132.077854][ T27] audit: type=1326 audit(131.970:1560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8045 comm="syz.2.1512" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffff8275bd1c code=0x7ffc0000 [ 132.103089][ T8047] EXT4-fs (loop2): 1 orphan inode deleted [ 132.104913][ T8047] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 132.112464][ T27] audit: type=1326 audit(131.980:1561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8045 comm="syz.2.1512" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=64 compat=0 ip=0xffff8275a3b0 code=0x7ffc0000 [ 132.118930][ T27] audit: type=1326 audit(132.000:1562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8045 comm="syz.2.1512" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=215 compat=0 ip=0xffff8275bd8c code=0x7ffc0000 [ 132.131374][ T55] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 132.134771][ T55] EXT4-fs error (device loop2): ext4_release_dquot:6825: comm kworker/u4:3: Failed to release dquot type 1 [ 132.151332][ T4312] EXT4-fs (loop2): unmounting filesystem. [ 133.238936][ T8094] __nla_validate_parse: 6 callbacks suppressed [ 133.238954][ T8094] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1533'. [ 133.539942][ T8108] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1539'. [ 133.721665][ T8117] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1544'. [ 133.796868][ T8121] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1546'. [ 134.068466][ T8134] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1552'. [ 134.287833][ T8144] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1557'. [ 134.430956][ T8146] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1558'. [ 134.642165][ T8160] netlink: 'syz.4.1564': attribute type 7 has an invalid length. [ 134.662816][ T8163] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1565'. [ 134.677272][ T8162] loop1: detected capacity change from 0 to 512 [ 134.742550][ T8162] EXT4-fs (loop1): 1 orphan inode deleted [ 134.744248][ T8162] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 134.762855][ T4356] EXT4-fs error (device loop1): ext4_release_dquot:6825: comm kworker/u4:5: Failed to release dquot type 1 [ 134.939995][ T4301] EXT4-fs (loop1): unmounting filesystem. [ 134.942138][ T8174] netlink: 4 bytes leftover after parsing attributes in process `wg1'. [ 135.045869][ T8180] loop0: detected capacity change from 0 to 512 [ 135.058227][ T8182] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1571'. [ 135.090179][ T8180] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.1572: casefold flag without casefold feature [ 135.108264][ T8180] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.1572: couldn't read orphan inode 15 (err -117) [ 135.165223][ T8180] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 135.437133][ T4310] EXT4-fs (loop0): unmounting filesystem. [ 136.229040][ T8239] loop4: detected capacity change from 0 to 164 [ 136.256832][ T8239] Unable to read rock-ridge attributes [ 136.264189][ T8239] Unable to read rock-ridge attributes [ 137.579787][ T8300] loop4: detected capacity change from 0 to 1024 [ 137.639444][ T8300] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 137.663350][ T8300] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 137.675598][ T8300] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 52 with error 28 [ 137.678415][ T8302] loop0: detected capacity change from 0 to 2048 [ 137.680715][ T8300] EXT4-fs (loop4): This should not happen!! Data will be lost [ 137.680715][ T8300] [ 137.684282][ T8300] EXT4-fs (loop4): Total free blocks count 0 [ 137.686125][ T8300] EXT4-fs (loop4): Free/Dirty block details [ 137.697913][ T8300] EXT4-fs (loop4): free_blocks=4293918720 [ 137.702448][ T8300] EXT4-fs (loop4): dirty_blocks=64 [ 137.706048][ T8300] EXT4-fs (loop4): Block reservation details [ 137.708493][ T8300] EXT4-fs (loop4): i_reserved_data_blocks=4 [ 137.752745][ T8302] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 137.757272][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 137.859325][ T4310] EXT4-fs (loop0): unmounting filesystem. [ 138.014699][ T8318] device ipvlan2 entered promiscuous mode [ 138.046220][ T8318] 8021q: adding VLAN 0 to HW filter on device ipvlan2 [ 138.048962][ T8318] bond0: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 138.258972][ T8333] __nla_validate_parse: 15 callbacks suppressed [ 138.258988][ T8333] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1639'. [ 138.518245][ T8346] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1646'. [ 138.526905][ T8347] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1645'. [ 138.584267][ T8347] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1645'. [ 138.682021][ T8352] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1648'. [ 138.871282][ T8358] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1651'. [ 139.133263][ T8370] netlink: '+}[@': attribute type 10 has an invalid length. [ 139.135493][ T8370] netlink: 2 bytes leftover after parsing attributes in process `+}[@'. [ 139.139768][ T8370] device team0 entered promiscuous mode [ 139.166412][ T8370] device team_slave_0 entered promiscuous mode [ 139.168216][ T8370] device team_slave_1 entered promiscuous mode [ 139.180454][ T8370] bridge0: port 3(team0) entered blocking state [ 139.182373][ T8370] bridge0: port 3(team0) entered disabled state [ 139.190170][ T8370] bridge0: port 3(team0) entered blocking state [ 139.192149][ T8370] bridge0: port 3(team0) entered forwarding state [ 139.217827][ T8372] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1657'. [ 139.235673][ T8374] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1658'. [ 139.311074][ T8378] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1658'. [ 139.880588][ T27] kauditd_printk_skb: 42 callbacks suppressed [ 139.880605][ T27] audit: type=1326 audit(139.800:1604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.2.1670" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 139.920733][ T27] audit: type=1326 audit(139.800:1605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.2.1670" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 139.926632][ T27] audit: type=1326 audit(139.800:1606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.2.1670" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 139.991453][ T27] audit: type=1326 audit(139.800:1607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.2.1670" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 139.997561][ T27] audit: type=1326 audit(139.800:1608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.2.1670" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 140.004181][ T27] audit: type=1326 audit(139.800:1609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.2.1670" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 140.009979][ T27] audit: type=1326 audit(139.800:1610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.2.1670" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 140.016923][ T27] audit: type=1326 audit(139.800:1611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.2.1670" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=123 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 140.054224][ T27] audit: type=1326 audit(139.800:1612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.2.1670" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 140.078226][ T27] audit: type=1326 audit(139.800:1613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.2.1670" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 140.138382][ T8415] hub 9-0:1.0: USB hub found [ 140.139856][ T8415] hub 9-0:1.0: 8 ports detected [ 140.706162][ T8444] loop3: detected capacity change from 0 to 512 [ 140.741294][ T8444] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.1686: inode #1: comm syz.3.1686: iget: illegal inode # [ 140.748258][ T8444] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.1686: error while reading EA inode 1 err=-117 [ 140.752731][ T8444] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.1686: inode #1: comm syz.3.1686: iget: illegal inode # [ 140.758719][ T8444] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.1686: error while reading EA inode 1 err=-117 [ 140.764029][ T8444] EXT4-fs (loop3): 1 orphan inode deleted [ 140.765661][ T8444] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 140.790213][ T4300] EXT4-fs (loop3): unmounting filesystem. [ 140.942234][ T8457] hub 2-0:1.0: USB hub found [ 140.949641][ T8457] hub 2-0:1.0: 8 ports detected [ 141.371764][ T8474] netlink: 'syz.2.1700': attribute type 3 has an invalid length. [ 142.944317][ T8510] loop0: detected capacity change from 0 to 128 [ 142.966694][ T8510] EXT4-fs: Ignoring removed nobh option [ 142.998626][ T8510] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 143.100097][ T8510] netlink: '+}[@': attribute type 10 has an invalid length. [ 143.138891][ T8520] loop2: detected capacity change from 0 to 164 [ 143.243082][ T8510] team0: Port device geneve0 added [ 143.283405][ T8524] loop3: detected capacity change from 0 to 512 [ 143.328318][ T8524] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 143.336824][ T4310] EXT4-fs (loop0): unmounting filesystem. [ 143.445205][ T4300] EXT4-fs (loop3): unmounting filesystem. [ 143.586584][ T8533] loop2: detected capacity change from 0 to 512 [ 143.610052][ T8533] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 143.685961][ T4312] EXT4-fs (loop2): unmounting filesystem. [ 143.757798][ T8537] loop2: detected capacity change from 0 to 2048 [ 143.797774][ T8537] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 143.856335][ T4312] EXT4-fs (loop2): unmounting filesystem. [ 143.972711][ T8531] __nla_validate_parse: 19 callbacks suppressed [ 143.972728][ T8531] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1724'. [ 143.977080][ T8535] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1724'. [ 143.980171][ T8541] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1727'. [ 144.100810][ T8548] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1730'. [ 144.118463][ T8548] 9pnet_fd: Insufficient options for proto=fd [ 144.305860][ T8558] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1736'. [ 144.418109][ T8566] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1740'. [ 144.429438][ T8566] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1740'. [ 144.572814][ T8572] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1742'. [ 144.608592][ T8575] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1743'. [ 144.620290][ T8575] 9pnet_fd: Insufficient options for proto=fd [ 144.726298][ T8581] tipc: Enabled bearer , priority 12 [ 144.795225][ T8584] loop0: detected capacity change from 0 to 512 [ 144.810695][ T8584] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 144.862648][ T8584] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 144.993668][ T8595] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1752'. [ 145.111259][ T4310] EXT4-fs (loop0): unmounting filesystem. [ 145.149118][ T8603] loop2: detected capacity change from 0 to 512 [ 145.167797][ T8603] EXT4-fs: Ignoring removed mblk_io_submit option [ 145.186404][ T8604] loop4: detected capacity change from 0 to 512 [ 145.188830][ T8604] EXT4-fs: Ignoring removed nomblk_io_submit option [ 145.216710][ T8604] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.1755: inode #1: comm syz.4.1755: iget: illegal inode # [ 145.233274][ T8603] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -13 [ 145.248027][ T8603] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #13: comm syz.2.1754: attempt to clear invalid blocks 2 len 1 [ 145.265663][ T8604] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.1755: error while reading EA inode 1 err=-117 [ 145.288034][ T8603] EXT4-fs (loop2): Remounting filesystem read-only [ 145.290586][ T8603] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 145.309401][ T8604] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.1755: inode #1: comm syz.4.1755: iget: illegal inode # [ 145.316498][ T8603] EXT4-fs (loop2): Remounting filesystem read-only [ 145.318652][ T8603] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.1754: invalid indirect mapped block 1819239214 (level 0) [ 145.337661][ T8604] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.1755: error while reading EA inode 1 err=-117 [ 145.368846][ T8603] EXT4-fs (loop2): Remounting filesystem read-only [ 145.376648][ T8604] EXT4-fs (loop4): 1 orphan inode deleted [ 145.378260][ T8604] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 145.382612][ T8603] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.1754: invalid indirect mapped block 1819239214 (level 1) [ 145.563282][ T8603] EXT4-fs (loop2): Remounting filesystem read-only [ 145.573154][ T8603] EXT4-fs (loop2): 1 truncate cleaned up [ 145.575074][ T8603] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 145.622905][ T8603] EXT4-fs error (device loop2): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz.2.1754: bad entry in directory: rec_len % 4 != 0 - offset=108, inode=4294901777, rec_len=65535, size=1024 fake=0 [ 145.638536][ T8613] 9pnet_fd: Insufficient options for proto=fd [ 145.653454][ T8603] EXT4-fs (loop2): Remounting filesystem read-only [ 145.718761][ T4312] EXT4-fs (loop2): unmounting filesystem. [ 145.816794][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 145.855668][ T8619] loop2: detected capacity change from 0 to 512 [ 145.912553][ T8619] EXT4-fs (loop2): 1 orphan inode deleted [ 145.914188][ T8619] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 145.934749][ T7686] __quota_error: 27 callbacks suppressed [ 145.934767][ T7686] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 145.939080][ T7686] EXT4-fs error (device loop2): ext4_release_dquot:6825: comm kworker/u4:14: Failed to release dquot type 1 [ 145.985273][ T4312] EXT4-fs (loop2): unmounting filesystem. [ 146.288691][ T27] audit: type=1400 audit(146.250:1641): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=8646 comm="syz.0.1773" [ 146.655611][ T8667] xt_hashlimit: max too large, truncated to 1048576 [ 147.293406][ T27] audit: type=1326 audit(147.260:1642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8694 comm="syz.4.1791" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 147.304525][ T27] audit: type=1326 audit(147.270:1643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8694 comm="syz.4.1791" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=111 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 147.321655][ T27] audit: type=1326 audit(147.270:1644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8694 comm="syz.4.1791" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 147.339191][ T27] audit: type=1326 audit(147.270:1645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8694 comm="syz.4.1791" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=97 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 147.356136][ T27] audit: type=1326 audit(147.270:1646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8694 comm="syz.4.1791" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 147.381517][ T27] audit: type=1326 audit(147.280:1647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8694 comm="syz.4.1791" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=190 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 147.410558][ T27] audit: type=1326 audit(147.280:1648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8694 comm="syz.4.1791" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 147.483765][ T8705] loop0: detected capacity change from 0 to 2048 [ 147.535395][ T8705] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 147.632081][ T4310] EXT4-fs (loop0): unmounting filesystem. [ 147.738862][ T8718] loop2: detected capacity change from 0 to 512 [ 147.751288][ T8718] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 147.789019][ T8718] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002] [ 147.827606][ T8718] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2186: inode #15: comm syz.2.1801: corrupted in-inode xattr [ 147.843614][ T27] audit: type=1326 audit(147.810:1649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8715 comm="syz.0.1800" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9bf5bce8 code=0x7ffc0000 [ 147.852806][ T8716] batadv0 speed is unknown, defaulting to 1000 [ 147.861204][ T8718] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.1801: couldn't read orphan inode 15 (err -117) [ 147.867998][ T8718] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 147.956498][ T8722] loop0: detected capacity change from 0 to 512 [ 148.004175][ T8722] EXT4-fs (loop0): failed to initialize system zone (-117) [ 148.006627][ T8722] EXT4-fs (loop0): mount failed [ 148.062432][ T4312] EXT4-fs (loop2): unmounting filesystem. [ 148.423628][ T8744] 9pnet_fd: Insufficient options for proto=fd [ 149.289860][ T8762] __nla_validate_parse: 22 callbacks suppressed [ 149.289886][ T8762] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1820'. [ 149.295245][ T8764] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1821'. [ 149.297914][ T8765] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1820'. [ 149.433963][ T8772] loop0: detected capacity change from 0 to 1024 [ 149.437701][ T8778] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1823'. [ 149.451268][ T8777] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1826'. [ 149.456060][ T8777] 9pnet_fd: Insufficient options for proto=fd [ 149.510871][ T8772] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 149.572122][ T4310] EXT4-fs (loop0): unmounting filesystem. [ 150.151419][ T8796] loop2: detected capacity change from 0 to 8192 [ 150.181577][ T8801] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1834'. [ 150.186917][ T8803] device bridge0 entered promiscuous mode [ 150.188995][ T8803] device macvlan2 entered promiscuous mode [ 150.232006][ T8803] bridge0: port 1(macvlan2) entered blocking state [ 150.234118][ T8803] bridge0: port 1(macvlan2) entered disabled state [ 150.284171][ T8803] device bridge0 left promiscuous mode [ 150.356049][ T8805] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1836'. [ 150.359955][ T8809] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1837'. [ 150.363245][ T8810] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1838'. [ 150.372776][ T8810] 9pnet_fd: Insufficient options for proto=fd [ 150.410782][ T8809] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1837'. [ 150.625553][ T8825] IPv4: Oversized IP packet from 127.202.26.0 [ 150.839902][ T8831] loop4: detected capacity change from 0 to 8192 [ 151.175344][ T8843] loop4: detected capacity change from 0 to 512 [ 151.193494][ T8843] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 151.203148][ T8843] EXT4-fs (loop4): VFS: Can't find ext4 filesystem [ 151.589741][ T8870] usb usb1: usbfs: interface 0 claimed by hub while 'wg1' sets config #1 [ 151.834605][ T8878] IPv6: Can't replace route, no match found [ 151.936647][ T27] kauditd_printk_skb: 40 callbacks suppressed [ 151.936662][ T27] audit: type=1326 audit(151.900:1690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8882 comm="syz.2.1870" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 151.965063][ T27] audit: type=1326 audit(151.920:1691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8882 comm="syz.2.1870" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=218 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 151.988517][ T27] audit: type=1326 audit(151.920:1692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8882 comm="syz.2.1870" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8275bce8 code=0x7ffc0000 [ 152.346795][ T27] audit: type=1326 audit(152.310:1693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8901 comm="syz.4.1879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 152.360792][ T27] audit: type=1326 audit(152.330:1694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8901 comm="syz.4.1879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 152.371737][ T27] audit: type=1326 audit(152.330:1695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8901 comm="syz.4.1879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 152.377634][ T27] audit: type=1326 audit(152.330:1696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8901 comm="syz.4.1879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 152.410823][ T27] audit: type=1326 audit(152.330:1697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8901 comm="syz.4.1879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 152.425178][ T27] audit: type=1326 audit(152.330:1698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8901 comm="syz.4.1879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 152.461746][ T27] audit: type=1326 audit(152.330:1699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8901 comm="syz.4.1879" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 152.578931][ T8913] IPv4: Oversized IP packet from 127.202.26.0 [ 152.874815][ T8924] loop4: detected capacity change from 0 to 256 [ 153.185344][ T8941] loop0: detected capacity change from 0 to 512 [ 153.193602][ T8941] journal_path: Lookup failure for './bus' [ 153.195332][ T8941] EXT4-fs: error: could not find journal device path [ 153.234052][ T4443] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 153.395313][ T8943] loop4: detected capacity change from 0 to 512 [ 153.455415][ T8943] EXT4-fs (loop4): failed to initialize system zone (-117) [ 153.462245][ T8943] EXT4-fs (loop4): mount failed [ 154.043810][ T8939] batadv0 speed is unknown, defaulting to 1000 [ 154.444618][ T8964] __nla_validate_parse: 19 callbacks suppressed [ 154.444635][ T8964] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1904'. [ 154.710249][ T8981] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 154.717326][ T8981] batadv0: mtu less than device minimum [ 154.723838][ T8981] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-176) [ 154.729930][ T8981] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-176) [ 154.735864][ T8981] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-176) [ 154.741643][ T8981] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-176) [ 154.747549][ T8981] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-176) [ 154.753307][ T8981] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-176) [ 154.759210][ T8981] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-176) [ 154.818478][ T8988] xt_hashlimit: max too large, truncated to 1048576 [ 154.982929][ T8981] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 155.134215][ T9012] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1922'. [ 155.289051][ T9015] loop4: detected capacity change from 0 to 4096 [ 155.324794][ T9015] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 155.416480][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 155.889546][ T9060] loop2: detected capacity change from 0 to 512 [ 155.962436][ T9060] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 156.147718][ T9074] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 156.154013][ T4312] EXT4-fs (loop2): unmounting filesystem. [ 156.249616][ T9078] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 156.256436][ T9078] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 158.943789][ T27] kauditd_printk_skb: 311 callbacks suppressed [ 158.943803][ T27] audit: type=1326 audit(158.910:2011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9083 comm="syz.0.1953" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9bf5bce8 code=0x7ffc0000 [ 158.953571][ T27] audit: type=1326 audit(158.920:2012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9083 comm="syz.0.1953" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9bf5bce8 code=0x7ffc0000 [ 159.032374][ T27] audit: type=1326 audit(158.920:2013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9083 comm="syz.0.1953" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=137 compat=0 ip=0xffff9bf5bce8 code=0x7ffc0000 [ 159.080915][ T27] audit: type=1326 audit(158.920:2014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9083 comm="syz.0.1953" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9bf5bce8 code=0x7ffc0000 [ 159.126121][ T27] audit: type=1326 audit(158.920:2015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9083 comm="syz.0.1953" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9bf5bce8 code=0x7ffc0000 [ 159.300663][ T47] Bluetooth: hci2: command 0x0406 tx timeout [ 159.765346][ T9117] loop2: detected capacity change from 0 to 2048 [ 159.858537][ T9117] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 159.869493][ T9117] EXT4-fs error (device loop2): ext4_find_extent:936: inode #2: comm syz.2.1966: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 159.891742][ T9117] EXT4-fs (loop2): Remounting filesystem read-only [ 159.940481][ T4317] Bluetooth: hci1: command 0x0406 tx timeout [ 159.940606][ T47] Bluetooth: hci0: command 0x0406 tx timeout [ 159.942320][ T4317] Bluetooth: hci3: command 0x0406 tx timeout [ 159.943916][ T47] Bluetooth: hci4: command 0x0406 tx timeout [ 159.987938][ T4312] EXT4-fs (loop2): unmounting filesystem. [ 160.128771][ T9144] syz.1.1977 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 160.454668][ T9159] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1984'. [ 160.467229][ T9159] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1984'. [ 160.546190][ T27] audit: type=1326 audit(160.510:2016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9162 comm="syz.1.1986" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 160.585248][ T27] audit: type=1326 audit(160.550:2017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9162 comm="syz.1.1986" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 160.599614][ T27] audit: type=1326 audit(160.550:2018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9162 comm="syz.1.1986" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 160.632540][ T27] audit: type=1326 audit(160.550:2019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9162 comm="syz.1.1986" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 160.654743][ T27] audit: type=1326 audit(160.550:2020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9162 comm="syz.1.1986" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 160.780894][ T9175] loop0: detected capacity change from 0 to 512 [ 160.806340][ T9175] EXT4-fs (loop0): orphan cleanup on readonly fs [ 160.842262][ T9175] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.1994: bg 0: block 248: padding at end of block bitmap is not set [ 160.874651][ T9183] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1995'. [ 160.885768][ T9175] EXT4-fs error (device loop0): ext4_acquire_dquot:6802: comm syz.0.1994: Failed to acquire dquot type 1 [ 160.891489][ T9184] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1996'. [ 160.938802][ T9175] EXT4-fs (loop0): 1 truncate cleaned up [ 160.951207][ T9175] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 160.981474][ T9175] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended [ 161.022948][ T9195] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1999'. [ 161.037342][ T9175] EXT4-fs (loop0): re-mounted. Quota mode: writeback. [ 161.051674][ T9195] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1999'. [ 161.102194][ T4310] EXT4-fs (loop0): unmounting filesystem. [ 161.198732][ T9205] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2006'. [ 161.264828][ T9210] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0 [ 161.341125][ T9216] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2012'. [ 161.376393][ T9214] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2010'. [ 161.516013][ T9229] loop0: detected capacity change from 0 to 512 [ 161.566677][ T9229] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 161.674687][ T9243] loop4: detected capacity change from 0 to 128 [ 161.677282][ T9243] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 161.777519][ T4310] EXT4-fs (loop0): unmounting filesystem. [ 161.796352][ T9247] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2025'. [ 161.883631][ T9249] loop2: detected capacity change from 0 to 256 [ 164.537701][ T9359] loop0: detected capacity change from 0 to 128 [ 164.865405][ T9380] rdma_rxe: rxe_register_device failed with error -23 [ 164.872532][ T9380] rdma_rxe: failed to add bond0 [ 165.000902][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.003069][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.005227][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.018809][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.038937][ T27] kauditd_printk_skb: 71 callbacks suppressed [ 165.038952][ T27] audit: type=1326 audit(165.000:2090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9389 comm="syz.4.2083" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 165.049726][ T27] audit: type=1326 audit(165.000:2091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9389 comm="syz.4.2083" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=193 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 165.060186][ T27] audit: type=1326 audit(165.000:2092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9389 comm="syz.4.2083" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 165.068724][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.071663][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.075401][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.077684][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.079937][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.083028][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.085218][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.087324][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.094833][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.097167][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.099363][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.353336][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.442138][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.523697][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.630974][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.763710][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.765841][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.783199][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.790049][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.817739][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.829956][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.843585][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.856080][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.865528][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.873527][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.876909][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.886266][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.888462][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.903055][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.905213][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.910175][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.915225][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.917389][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.923349][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.927305][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.929747][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.934557][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.936884][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.944155][ T9402] smc: net device bond0 erased user defined pnetid SYZ2 [ 165.948385][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: unknown main item tag 0x0 [ 165.964331][ T14] hid-generic FFFC:007F:FFFFFFFE.0002: hidraw0: HID v0.00 Device [syz0] on syz0 [ 166.101210][ T9414] __nla_validate_parse: 19 callbacks suppressed [ 166.101228][ T9414] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2093'. [ 166.127038][ T9414] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2093'. [ 166.358712][ T9429] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2100'. [ 167.173209][ T9436] smc: net device bond0 applied user defined pnetid SYZ2 [ 167.176956][ T9436] smc: net device bond0 erased user defined pnetid SYZ2 [ 167.230306][ T9441] loop4: detected capacity change from 0 to 128 [ 167.248626][ T9441] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 167.332566][ T27] audit: type=1326 audit(167.300:2093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9446 comm="syz.0.2108" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9bf5bce8 code=0x7ffc0000 [ 167.340473][ T27] audit: type=1326 audit(167.300:2094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9446 comm="syz.0.2108" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9bf5bce8 code=0x7ffc0000 [ 167.367012][ T27] audit: type=1326 audit(167.300:2095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9446 comm="syz.0.2108" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=31 compat=0 ip=0xffff9bf5bce8 code=0x7ffc0000 [ 167.387319][ T27] audit: type=1326 audit(167.300:2096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9446 comm="syz.0.2108" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9bf5bce8 code=0x7ffc0000 [ 167.401497][ T9451] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2110'. [ 167.407192][ T27] audit: type=1326 audit(167.300:2097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9446 comm="syz.0.2108" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9bf5bce8 code=0x7ffc0000 [ 167.416042][ T9451] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2110'. [ 167.525164][ T9457] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2112'. [ 167.618030][ T9467] netlink: 300 bytes leftover after parsing attributes in process `syz.1.2118'. [ 168.527946][ T27] audit: type=1326 audit(168.490:2098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9479 comm="syz.1.2122" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 168.546854][ T27] audit: type=1326 audit(168.510:2099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9479 comm="syz.1.2122" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 168.607036][ T9485] loop2: detected capacity change from 0 to 1024 [ 168.625608][ T9485] EXT4-fs: Ignoring removed nobh option [ 168.627398][ T9485] EXT4-fs: Ignoring removed bh option [ 168.630116][ T9485] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 168.648445][ T9487] loop3: detected capacity change from 0 to 164 [ 168.659325][ T9487] syz.3.2125: attempt to access beyond end of device [ 168.659325][ T9487] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 168.665809][ T9487] syz.3.2125: attempt to access beyond end of device [ 168.665809][ T9487] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 168.681616][ T9485] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 168.794599][ T9501] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2130'. [ 168.919759][ T9485] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3841: comm syz.2.2123: Allocating blocks 497-513 which overlap fs metadata [ 168.939438][ T9485] EXT4-fs (loop2): pa 0000000068896c56: logic 256, phys. 385, len 8 [ 168.942197][ T9485] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 1 [ 168.955809][ T9503] EXT4-fs error (device loop2): mb_free_blocks:1815: group 0, inode 15: block 129:freeing already freed block (bit 8); block bitmap corrupt. [ 168.978791][ T9499] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 169.068931][ T4312] EXT4-fs (loop2): unmounting filesystem. [ 169.128058][ T9499] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 169.342584][ T9499] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 170.099679][ T9532] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 170.129292][ T27] kauditd_printk_skb: 20 callbacks suppressed [ 170.129306][ T27] audit: type=1326 audit(170.090:2120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9529 comm="syz.1.2140" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 170.134844][ T9499] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 170.139379][ T9532] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 170.144765][ T27] audit: type=1326 audit(170.110:2121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9529 comm="syz.1.2140" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 170.160039][ T27] audit: type=1326 audit(170.110:2122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9529 comm="syz.1.2140" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 170.167198][ T27] audit: type=1326 audit(170.110:2123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9529 comm="syz.1.2140" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 170.179448][ T27] audit: type=1326 audit(170.140:2124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9529 comm="syz.1.2140" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 170.186635][ T27] audit: type=1326 audit(170.140:2125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9529 comm="syz.1.2140" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 170.197654][ T27] audit: type=1326 audit(170.140:2126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9529 comm="syz.1.2140" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 170.215801][ T9532] loop4: detected capacity change from 0 to 1024 [ 170.218618][ T27] audit: type=1326 audit(170.140:2127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9529 comm="syz.1.2140" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 170.250619][ T27] audit: type=1326 audit(170.140:2128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9529 comm="syz.1.2140" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 170.256666][ T27] audit: type=1326 audit(170.140:2129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9529 comm="syz.1.2140" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 170.279039][ T9532] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 170.296695][ T9532] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 170.331117][ T9538] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2143'. [ 170.337225][ T9532] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 52 with error 28 [ 170.345752][ T9532] EXT4-fs (loop4): This should not happen!! Data will be lost [ 170.345752][ T9532] [ 170.352047][ T9532] EXT4-fs (loop4): Total free blocks count 0 [ 170.356091][ T9532] EXT4-fs (loop4): Free/Dirty block details [ 170.360121][ T9532] EXT4-fs (loop4): free_blocks=4293918720 [ 170.394716][ T9532] EXT4-fs (loop4): dirty_blocks=64 [ 170.396316][ T9532] EXT4-fs (loop4): Block reservation details [ 170.397946][ T9532] EXT4-fs (loop4): i_reserved_data_blocks=4 [ 170.451987][ T9499] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 170.463364][ T9499] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 170.469426][ T9499] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 170.477441][ T9499] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 170.677288][ T9564] loop0: detected capacity change from 0 to 512 [ 170.680930][ T9564] EXT4-fs: inline encryption not supported [ 170.690300][ T9564] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 170.692961][ T9564] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 170.752631][ T9564] EXT4-fs warning (device loop0): ext4_enable_quotas:7037: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 170.759460][ T9564] EXT4-fs (loop0): mount failed [ 170.949360][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 171.126684][ T9579] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2157'. [ 171.193670][ T9577] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2156'. [ 171.515856][ T9597] netlink: 'syz.2.2166': attribute type 32 has an invalid length. [ 171.960078][ T9616] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2172'. [ 172.093943][ T9620] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2174'. [ 174.085396][ T9650] loop0: detected capacity change from 0 to 128 [ 183.869491][ T9641] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2183'. [ 184.032111][ T9659] x_tables: ip6_tables: tcpmss match: only valid for protocol 6 [ 184.038188][ T27] kauditd_printk_skb: 61 callbacks suppressed [ 184.038200][ T27] audit: type=1326 audit(184.000:2190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9658 comm="syz.4.2190" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 184.061797][ T27] audit: type=1326 audit(184.030:2191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9658 comm="syz.4.2190" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 184.091617][ T27] audit: type=1326 audit(184.030:2192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9658 comm="syz.4.2190" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 184.097411][ T27] audit: type=1326 audit(184.030:2193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9658 comm="syz.4.2190" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=130 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 184.099254][ T9665] loop2: detected capacity change from 0 to 1024 [ 184.137275][ T27] audit: type=1326 audit(184.030:2194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9658 comm="syz.4.2190" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 184.151026][ T27] audit: type=1326 audit(184.030:2195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9658 comm="syz.4.2190" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 184.185908][ T27] audit: type=1326 audit(184.030:2196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9658 comm="syz.4.2190" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 184.218304][ T27] audit: type=1326 audit(184.030:2197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9658 comm="syz.4.2190" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=211 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 184.225113][ T27] audit: type=1326 audit(184.030:2198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9658 comm="syz.4.2190" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab95bce8 code=0x7ffc0000 [ 184.245014][ T9673] loop3: detected capacity change from 0 to 512 [ 184.245029][ T9665] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 184.267293][ T9673] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 184.288938][ T4312] EXT4-fs (loop2): unmounting filesystem. [ 184.341892][ T9679] loop0: detected capacity change from 0 to 2048 [ 184.353749][ T9673] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 184.365011][ T9683] loop2: detected capacity change from 0 to 512 [ 184.368168][ T9683] EXT4-fs: inline encryption not supported [ 184.370505][ T9683] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 184.397842][ T9683] EXT4-fs (loop2): 1 truncate cleaned up [ 184.404059][ T9679] loop0: p1 < > p3 [ 184.406458][ T9679] loop0: p3 size 134217728 extends beyond EOD, truncated [ 184.418792][ T9683] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 184.448259][ T3912] loop0: p1 < > p3 [ 184.455789][ T3912] loop0: p3 size 134217728 extends beyond EOD, truncated [ 184.513915][ T4300] EXT4-fs (loop3): unmounting filesystem. [ 184.559122][ T9683] EXT4-fs (loop2): shut down requested (0) [ 184.791147][ T4312] EXT4-fs (loop2): unmounting filesystem. [ 184.846805][ T27] audit: type=1326 audit(184.810:2199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9705 comm="syz.1.2206" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9d15bce8 code=0x7ffc0000 [ 184.849809][ T9704] loop3: detected capacity change from 0 to 1024 [ 184.866669][ T9708] netlink: 68 bytes leftover after parsing attributes in process `syz.2.2207'. [ 184.907510][ T9704] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 184.976539][ T9715] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw [ 185.004527][ T9704] EXT4-fs warning (device loop3): ext4_rmdir:3243: inode #11: comm syz.3.2205: empty directory 'file1' has too many links (111) [ 185.037067][ T9722] loop0: detected capacity change from 0 to 512 [ 185.068524][ T4300] EXT4-fs (loop3): unmounting filesystem. [ 185.128623][ T9722] EXT4-fs (loop0): 1 orphan inode deleted [ 185.135348][ T9722] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 185.155062][ T7636] EXT4-fs error (device loop0): ext4_release_dquot:6825: comm kworker/u4:13: Failed to release dquot type 1 [ 185.178105][ T4310] EXT4-fs (loop0): unmounting filesystem. [ 185.370078][ T9739] loop0: detected capacity change from 0 to 512 [ 185.385560][ T9739] EXT4-fs: inline encryption not supported [ 185.393605][ T9739] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 185.411425][ T9739] EXT4-fs (loop0): 1 truncate cleaned up [ 185.413718][ T9739] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 185.465638][ T9739] EXT4-fs (loop0): shut down requested (0) [ 185.485334][ T9746] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2222'. [ 185.630918][ T4310] EXT4-fs (loop0): unmounting filesystem. [ 187.374134][ T9796] loop0: detected capacity change from 0 to 1764 [ 187.384922][ T2059] ieee802154 phy0 wpan0: encryption failed: -22 [ 187.386901][ T2059] ieee802154 phy1 wpan1: encryption failed: -22 [ 187.684261][ T9810] netlink: 'syz.2.2246': attribute type 4 has an invalid length. [ 187.929905][ T9823] Invalid ELF header magic: != ELF [ 188.456451][ T9847] 9pnet_fd: Insufficient options for proto=fd [ 188.556303][ T9850] loop3: detected capacity change from 0 to 512 [ 188.558591][ T9850] EXT4-fs: Ignoring removed nobh option [ 188.594422][ T9850] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 188.655524][ T4300] EXT4-fs (loop3): unmounting filesystem. [ 188.859696][ T9862] loop3: detected capacity change from 0 to 164 [ 188.882346][ T9862] Unable to read rock-ridge attributes [ 188.904597][ T9862] Unable to read rock-ridge attributes [ 188.958441][ T9864] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2270'. [ 189.013844][ T9864] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2270'. [ 189.016531][ T9866] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2270'. [ 189.217139][ T9872] 9pnet_fd: Insufficient options for proto=fd [ 189.219958][ T9873] loop0: detected capacity change from 0 to 512 [ 189.226004][ T9873] EXT4-fs: inline encryption not supported [ 189.229889][ T9873] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 189.258220][ T9873] EXT4-fs (loop0): 1 truncate cleaned up [ 189.259909][ T9873] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 189.503591][ T4310] EXT4-fs (loop0): unmounting filesystem. [ 189.609152][ T9882] loop0: detected capacity change from 0 to 512 [ 189.672998][ T9882] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 189.869862][ T9898] loop4: detected capacity change from 0 to 512 [ 189.906670][ T4310] EXT4-fs (loop0): unmounting filesystem. [ 189.964831][ T9898] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 190.044485][ T9905] loop3: detected capacity change from 0 to 512 [ 190.046754][ T9905] EXT4-fs: inline encryption not supported [ 190.096106][ T9905] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 190.122409][ T9905] EXT4-fs (loop3): 1 truncate cleaned up [ 190.123988][ T9905] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 190.221542][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 190.221708][ T4300] EXT4-fs (loop3): unmounting filesystem. [ 190.244186][ T9913] vhci_hcd: invalid port number 15 [ 190.450159][ T9926] loop3: detected capacity change from 0 to 512 [ 190.488830][ T9926] __quota_error: 31 callbacks suppressed [ 190.488847][ T9926] Quota error (device loop3): v2_read_file_info: Free block number 1 out of range (1, 6). [ 190.505858][ T9933] loop0: detected capacity change from 0 to 256 [ 190.509767][ T9926] EXT4-fs warning (device loop3): ext4_enable_quotas:7037: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 190.529580][ T9926] EXT4-fs (loop3): mount failed [ 190.607721][ T9689] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 190.679894][ T9942] loop4: detected capacity change from 0 to 512 [ 190.689330][ T9942] EXT4-fs: inline encryption not supported [ 190.697052][ T9942] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 190.725693][ T9942] EXT4-fs (loop4): 1 truncate cleaned up [ 190.729045][ T9942] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 190.762680][ T27] audit: type=1326 audit(190.730:2230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9944 comm="syz.3.2304" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 190.775443][ T27] audit: type=1326 audit(190.740:2231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9944 comm="syz.3.2304" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 190.824323][ T27] audit: type=1326 audit(190.740:2232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9944 comm="syz.3.2304" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 190.845853][ T27] audit: type=1326 audit(190.740:2233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9944 comm="syz.3.2304" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=83 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 190.866011][ T27] audit: type=1326 audit(190.740:2234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9944 comm="syz.3.2304" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 190.903149][ T9957] loop0: detected capacity change from 0 to 1024 [ 190.932057][ T9957] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 190.948127][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 190.979589][ T9957] EXT4-fs warning (device loop0): ext4_rmdir:3243: inode #11: comm syz.0.2309: empty directory 'file1' has too many links (111) [ 191.109561][ T4310] EXT4-fs (loop0): unmounting filesystem. [ 191.363870][ T27] audit: type=1326 audit(191.330:2235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9982 comm="syz.3.2319" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 191.372721][ T27] audit: type=1326 audit(191.340:2236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9982 comm="syz.3.2319" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 191.400452][ T27] audit: type=1326 audit(191.350:2237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9982 comm="syz.3.2319" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 191.422644][ T27] audit: type=1326 audit(191.350:2238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9982 comm="syz.3.2319" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 192.005701][T10024] loop4: detected capacity change from 0 to 1024 [ 192.012762][T10024] EXT4-fs: Ignoring removed nomblk_io_submit option [ 192.017030][T10024] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 192.034616][T10024] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 192.057984][T10024] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 192.242225][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 192.653376][T10058] netlink: 256 bytes leftover after parsing attributes in process `syz.0.2354'. [ 192.776045][T10041] loop2: detected capacity change from 0 to 1764 [ 192.905580][T10041] device veth0 entered promiscuous mode [ 192.907179][T10068] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2356'. [ 192.938766][T10072] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2347'. [ 193.280037][T10077] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2362'. [ 193.446728][T10089] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2366'. [ 193.632743][T10094] netlink: 'syz.3.2368': attribute type 11 has an invalid length. [ 193.635073][T10094] netlink: 448 bytes leftover after parsing attributes in process `syz.3.2368'. [ 193.826384][T10105] Invalid ELF header magic: != ELF [ 193.985370][T10115] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2389'. [ 193.998089][T10115] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2389'. [ 194.056734][T10119] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2378'. [ 194.315999][T10136] loop4: detected capacity change from 0 to 512 [ 194.341099][T10136] EXT4-fs: Ignoring removed i_version option [ 194.342802][T10136] EXT4-fs: Ignoring removed nomblk_io_submit option [ 194.354576][T10136] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e01c, mo2=0002] [ 194.356801][T10136] System zones: 1-12 [ 194.384971][T10136] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.2388: bg 0: block 328: padding at end of block bitmap is not set [ 194.394959][T10136] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 194.400754][T10136] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.2388: invalid indirect mapped block 65280 (level 0) [ 194.405104][T10136] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #13: comm syz.4.2388: attempt to clear invalid blocks 33619980 len 1 [ 194.424908][T10136] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.2388: invalid indirect mapped block 1819239214 (level 0) [ 194.463284][T10136] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.2388: invalid indirect mapped block 1819239214 (level 1) [ 194.488065][T10136] EXT4-fs (loop4): 1 orphan inode deleted [ 194.494129][T10150] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2394'. [ 194.498934][T10136] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 194.584138][T10150] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2394'. [ 194.619585][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 194.766863][T10150] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2394'. [ 194.928959][T10181] loop3: detected capacity change from 0 to 512 [ 195.034865][T10189] loop2: detected capacity change from 0 to 512 [ 195.042405][T10181] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 195.097341][T10181] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.2407: bg 0: block 304: padding at end of block bitmap is not set [ 195.108819][T10189] EXT4-fs (loop2): orphan cleanup on readonly fs [ 195.113849][T10189] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.2411: bg 0: block 248: padding at end of block bitmap is not set [ 195.132688][T10189] EXT4-fs error (device loop2): ext4_acquire_dquot:6802: comm syz.2.2411: Failed to acquire dquot type 1 [ 195.144687][T10189] EXT4-fs (loop2): 1 truncate cleaned up [ 195.167457][T10189] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 195.207498][T10189] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended [ 195.244690][ T4300] EXT4-fs (loop3): unmounting filesystem. [ 195.255474][T10189] EXT4-fs error (device loop2): ext4_acquire_dquot:6802: comm syz.2.2411: Failed to acquire dquot type 1 [ 195.255916][T10203] loop4: detected capacity change from 0 to 512 [ 195.271382][T10203] EXT4-fs: inline encryption not supported [ 195.274516][T10189] EXT4-fs warning (device loop2): ext4_enable_quotas:7037: Failed to enable quota tracking (type=1, err=-28, ino=4). Please run e2fsck to fix. [ 195.282357][T10203] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 195.300324][T10203] EXT4-fs (loop4): 1 truncate cleaned up [ 195.319798][T10203] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 195.363247][T10203] EXT4-fs (loop4): shut down requested (0) [ 195.432045][ T4312] EXT4-fs (loop2): unmounting filesystem. [ 195.592102][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 195.718894][T10235] loop4: detected capacity change from 0 to 512 [ 195.745622][T10235] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.2427: inode #1: comm syz.4.2427: iget: illegal inode # [ 195.776982][ T27] kauditd_printk_skb: 434 callbacks suppressed [ 195.776996][ T27] audit: type=1326 audit(195.740:2669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10241 comm="syz.3.2432" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 195.779169][T10235] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.2427: error while reading EA inode 1 err=-117 [ 195.803539][ T27] audit: type=1326 audit(195.760:2670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10241 comm="syz.3.2432" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 195.810034][T10235] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.2427: inode #1: comm syz.4.2427: iget: illegal inode # [ 195.822915][T10235] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.2427: error while reading EA inode 1 err=-117 [ 195.827716][T10235] EXT4-fs (loop4): 1 orphan inode deleted [ 195.829416][T10235] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 195.836946][ T27] audit: type=1326 audit(195.790:2671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10241 comm="syz.3.2432" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 195.844549][ T27] audit: type=1326 audit(195.790:2672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10241 comm="syz.3.2432" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 195.850667][ T27] audit: type=1326 audit(195.790:2673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10241 comm="syz.3.2432" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 195.860528][ T27] audit: type=1326 audit(195.790:2674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10241 comm="syz.3.2432" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 195.866542][ T27] audit: type=1326 audit(195.790:2675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10241 comm="syz.3.2432" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 195.874513][ T27] audit: type=1326 audit(195.790:2676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10241 comm="syz.3.2432" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 195.885011][ T27] audit: type=1326 audit(195.790:2677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10241 comm="syz.3.2432" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 195.892874][ T27] audit: type=1326 audit(195.790:2678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10241 comm="syz.3.2432" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9cd5bce8 code=0x7ffc0000 [ 195.927002][T10231] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2427'. [ 195.962243][T10231] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2427'. [ 196.047326][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 196.079002][T10252] can0: slcan on ttyS3. [ 216.200338][ C1] watchdog: BUG: soft lockup - CPU#1 stuck for 22s! [kworker/u4:14:7686] [ 216.203178][ C1] Modules linked in: [ 216.204246][ C1] irq event stamp: 2641192 [ 216.205389][ C1] hardirqs last enabled at (2641191): [] exit_to_kernel_mode+0xe8/0x118 [ 216.208021][ C1] hardirqs last disabled at (2641192): [] el1_interrupt+0x24/0x68 [ 216.210498][ C1] softirqs last enabled at (2637196): [] handle_softirqs+0xb84/0xd58 [ 216.213134][ C1] softirqs last disabled at (2637119): [] __do_softirq+0x14/0x20 [ 216.215631][ C1] CPU: 1 PID: 7686 Comm: kworker/u4:14 Not tainted 6.1.134-syzkaller #0 [ 216.217836][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 216.220531][ C1] Workqueue: events_unbound toggle_allocation_gate [ 216.222281][ C1] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 216.224338][ C1] pc : smp_call_function_many_cond+0x20f8/0x32b8 [ 216.226065][ C1] lr : smp_call_function_many_cond+0x2110/0x32b8 [ 216.227724][ C1] sp : ffff800021707520 [ 216.228839][ C1] x29: ffff800021707890 x28: 1fffe0003679f428 x27: ffff800015af1148 [ 216.231013][ C1] x26: ffff800021707688 x25: ffff0001b3cdf2c8 x24: 0000000000000000 [ 216.233168][ C1] x23: dfff800000000000 x22: ffff0001b3cfa148 x21: 0000000000000011 [ 216.235409][ C1] x20: ffff800021707680 x19: ffff0001b3cfa140 x18: 1fffe0003679cb76 [ 216.237602][ C1] x17: ffff800015aed000 x16: ffff80001231ec4c x15: 0000000000000000 [ 216.239785][ C1] x14: 1ffff00002b5e0b2 x13: dfff800000000000 x12: 0000000000000001 [ 216.241940][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 0000000000000000 [ 216.244012][ C1] x8 : 0000000000000011 x7 : 0000000000000000 x6 : 0000000000000000 [ 216.246161][ C1] x5 : 0000000000000080 x4 : 0000000000000000 x3 : ffff80000844b4bc [ 216.248400][ C1] x2 : 0000000000000000 x1 : 0000000000000004 x0 : 0000000000000001 [ 216.250535][ C1] Call trace: [ 216.251437][ C1] smp_call_function_many_cond+0x20f8/0x32b8 [ 216.253064][ C1] kick_all_cpus_sync+0x40/0xa0 [ 216.254418][ C1] arch_jump_label_transform_apply+0x14/0x20 [ 216.255996][ C1] __jump_label_update+0x30c/0x334 [ 216.257333][ C1] jump_label_update+0x30c/0x3bc [ 216.258646][ C1] static_key_enable_cpuslocked+0x140/0x230 [ 216.260179][ C1] static_key_enable+0x24/0x38 [ 216.261420][ C1] toggle_allocation_gate+0xcc/0x448 [ 216.262849][ C1] process_one_work+0x804/0x1484 [ 216.264165][ C1] worker_thread+0x8e4/0xfec [ 216.265364][ C1] kthread+0x250/0x2d8 [ 216.266440][ C1] ret_from_fork+0x10/0x20 [ 216.267690][ C1] Kernel panic - not syncing: softlockup: hung tasks [ 216.269454][ C1] CPU: 1 PID: 7686 Comm: kworker/u4:14 Tainted: G L 6.1.134-syzkaller #0 [ 216.272005][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 216.274672][ C1] Workqueue: events_unbound toggle_allocation_gate [ 216.276385][ C1] Call trace: [ 216.277231][ C1] dump_backtrace+0x1c8/0x1f4 [ 216.278450][ C1] show_stack+0x2c/0x3c [ 216.279510][ C1] dump_stack_lvl+0x108/0x170 [ 216.280690][ C1] dump_stack+0x1c/0x105c [ 216.281836][ C1] panic+0x300/0x804 [ 216.282871][ C1] softlockup_fn+0x0/0x120 [ 216.284043][ C1] __hrtimer_run_queues+0x484/0xdc0 [ 216.285409][ C1] hrtimer_interrupt+0x2c0/0xb64 [ 216.286823][ C1] arch_timer_handler_virt+0x74/0x88 [ 216.288240][ C1] handle_percpu_devid_irq+0x174/0x354 [ 216.289675][ C1] generic_handle_domain_irq+0xe0/0x140 [ 216.291134][ C1] gic_handle_irq+0x70/0x1e4 [ 216.292354][ C1] call_on_irq_stack+0x24/0x4c [ 216.293670][ C1] do_interrupt_handler+0xd4/0x138 [ 216.295055][ C1] el1_interrupt+0x34/0x68 [ 216.296168][ C1] el1h_64_irq_handler+0x18/0x24 [ 216.297468][ C1] el1h_64_irq+0x64/0x68 [ 216.298552][ C1] smp_call_function_many_cond+0x20f8/0x32b8 [ 216.300146][ C1] kick_all_cpus_sync+0x40/0xa0 [ 216.301398][ C1] arch_jump_label_transform_apply+0x14/0x20 [ 216.302999][ C1] __jump_label_update+0x30c/0x334 [ 216.304342][ C1] jump_label_update+0x30c/0x3bc [ 216.305657][ C1] static_key_enable_cpuslocked+0x140/0x230 [ 216.307165][ C1] static_key_enable+0x24/0x38 [ 216.308468][ C1] toggle_allocation_gate+0xcc/0x448 [ 216.309964][ C1] process_one_work+0x804/0x1484 [ 216.311282][ C1] worker_thread+0x8e4/0xfec [ 216.312504][ C1] kthread+0x250/0x2d8 [ 216.313593][ C1] ret_from_fork+0x10/0x20 [ 216.314739][ C1] SMP: stopping secondary CPUs [ 217.402095][ C1] SMP: failed to stop secondary CPUs 0-1 [ 217.403690][ C1] Kernel Offset: disabled [ 217.404994][ C1] CPU features: 0x080000,02070084,26017203 [ 217.406610][ C1] Memory Limit: none [ 217.432875][ C1] [ 217.433565][ C1] ================================ [ 217.435046][ C1] WARNING: inconsistent lock state [ 217.436393][ C1] 6.1.134-syzkaller #0 Tainted: G L [ 217.438211][ C1] -------------------------------- [ 217.439619][ C1] inconsistent {HARDIRQ-ON-W} -> {IN-HARDIRQ-W} usage. [ 217.441568][ C1] kworker/u4:14/7686 [HC1[1]:SC0[0]:HE0:SE1] takes: [ 217.443348][ C1] ffff800015b314f8 (efi_rt_lock){?...}-{2:2}, at: virt_efi_set_variable_nonblocking+0x74/0x16c [ 217.446198][ C1] {HARDIRQ-ON-W} state was registered at: [ 217.447721][ C1] lock_acquire+0x26c/0x7cc [ 217.448972][ C1] _raw_spin_lock+0x54/0x6c [ 217.450111][ C1] efi_call_rts+0x280/0x9d8 [ 217.451345][ C1] process_one_work+0x804/0x1484 [ 217.452736][ C1] worker_thread+0x8e4/0xfec [ 217.453972][ C1] kthread+0x250/0x2d8 [ 217.455060][ C1] ret_from_fork+0x10/0x20 [ 217.456335][ C1] irq event stamp: 2641192 [ 217.457609][ C1] hardirqs last enabled at (2641191): [] exit_to_kernel_mode+0xe8/0x118 [ 217.460179][ C1] hardirqs last disabled at (2641192): [] el1_interrupt+0x24/0x68 [ 217.462731][ C1] softirqs last enabled at (2637196): [] handle_softirqs+0xb84/0xd58 [ 217.465389][ C1] softirqs last disabled at (2637119): [] __do_softirq+0x14/0x20 [ 217.468005][ C1] [ 217.468005][ C1] other info that might help us debug this: [ 217.470242][ C1] Possible unsafe locking scenario: [ 217.470242][ C1] [ 217.472190][ C1] CPU0 [ 217.473081][ C1] ---- [ 217.473957][ C1] lock(efi_rt_lock); [ 217.475100][ C1] [ 217.476000][ C1] lock(efi_rt_lock); [ 217.477160][ C1] [ 217.477160][ C1] *** DEADLOCK *** [ 217.477160][ C1] [ 217.479342][ C1] 6 locks held by kworker/u4:14/7686: [ 217.480746][ C1] #0: ffff0000c0029138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x6bc/0x1484 [ 217.483814][ C1] #1: ffff800021707c20 ((work_completion)(&(&kfence_timer)->work)){+.+.}-{0:0}, at: process_one_work+0x6fc/0x1484 [ 217.487098][ C1] #2: ffff800015b66fd0 (cpu_hotplug_lock){++++}-{0:0}, at: static_key_enable+0x1c/0x38 [ 217.489725][ C1] #3: ffff800015d555e8 (jump_label_mutex){+.+.}-{3:3}, at: static_key_enable_cpuslocked+0xe8/0x230 [ 217.492642][ C1] #4: ffff800015cc78a0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x10/0x4c [ 217.495202][ C1] #5: ffff800017bae4c8 (&psinfo->buf_lock){....}-{2:2}, at: pstore_dump+0x188/0x9f4 [ 217.497791][ C1] [ 217.497791][ C1] stack backtrace: [ 217.499322][ C1] CPU: 1 PID: 7686 Comm: kworker/u4:14 Tainted: G L 6.1.134-syzkaller #0 [ 217.502046][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 217.504751][ C1] Workqueue: events_unbound toggle_allocation_gate [ 217.506626][ C1] Call trace: [ 217.507514][ C1] dump_backtrace+0x1c8/0x1f4 [ 217.508774][ C1] show_stack+0x2c/0x3c [ 217.510031][ C1] dump_stack_lvl+0x108/0x170 [ 217.511415][ C1] dump_stack+0x1c/0x105c [ 217.512619][ C1] print_usage_bug+0x654/0x9b0 [ 217.513923][ C1] mark_lock_irq+0x980/0xd2c [ 217.515189][ C1] mark_lock+0x258/0x360 [ 217.516359][ C1] __lock_acquire+0xb4c/0x7680 [ 217.517701][ C1] lock_acquire+0x26c/0x7cc [ 217.518988][ C1] _raw_spin_lock+0x54/0x6c [ 217.520180][ C1] virt_efi_set_variable_nonblocking+0x74/0x16c [ 217.521897][ C1] efivar_set_variable_locked+0x1e4/0x20c [ 217.523456][ C1] efi_pstore_write+0x424/0x64c [ 217.524734][ C1] pstore_dump+0x6c0/0x9f4 [ 217.525940][ C1] kmsg_dump+0x17c/0x26c [ 217.527161][ C1] panic+0x348/0x804 [ 217.528242][ C1] softlockup_fn+0x0/0x120 [ 217.529456][ C1] __hrtimer_run_queues+0x484/0xdc0 [ 217.530892][ C1] hrtimer_interrupt+0x2c0/0xb64 [ 217.532234][ C1] arch_timer_handler_virt+0x74/0x88 [ 217.533673][ C1] handle_percpu_devid_irq+0x174/0x354 [ 217.535168][ C1] generic_handle_domain_irq+0xe0/0x140 [ 217.536700][ C1] gic_handle_irq+0x70/0x1e4 [ 217.537875][ C1] call_on_irq_stack+0x24/0x4c [ 217.539246][ C1] do_interrupt_handler+0xd4/0x138 [ 217.540543][ C1] el1_interrupt+0x34/0x68 [ 217.541763][ C1] el1h_64_irq_handler+0x18/0x24 [ 217.543032][ C1] el1h_64_irq+0x64/0x68 [ 217.544164][ C1] smp_call_function_many_cond+0x20f8/0x32b8 [ 217.545833][ C1] kick_all_cpus_sync+0x40/0xa0 [ 217.547209][ C1] arch_jump_label_transform_apply+0x14/0x20 [ 217.548830][ C1] __jump_label_update+0x30c/0x334 [ 217.550265][ C1] jump_label_update+0x30c/0x3bc [ 217.551612][ C1] static_key_enable_cpuslocked+0x140/0x230 [ 217.553167][ C1] static_key_enable+0x24/0x38 [ 217.554464][ C1] toggle_allocation_gate+0xcc/0x448 [ 217.555946][ C1] process_one_work+0x804/0x1484 [ 217.557290][ C1] worker_thread+0x8e4/0xfec [ 217.558531][ C1] kthread+0x250/0x2d8 [ 217.559608][ C1] ret_from_fork+0x10/0x20 [ 218.064559][ C1] Rebooting in 86400 seconds..