last executing test programs: 1.056504882s ago: executing program 3 (id=7303): r0 = syz_open_dev$vcsn(&(0x7f0000000780), 0x1, 0x121482) write$UHID_CREATE(r0, 0x0, 0x0) 1.029988094s ago: executing program 3 (id=7305): mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="040000000000000020000000006f000095"], &(0x7f0000000200)='GPL\x00', 0xc, 0xff9, &(0x7f0000002300)=""/4089}, 0x90) 1.005865116s ago: executing program 3 (id=7309): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000050c0)={&(0x7f0000000040)=@can_delroute={0x34, 0x19, 0x1, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x20, 0x0, 0x8}}, @CGW_MOD_SET={0x15, 0x4, {{{}, 0x0, 0x0, 0x0, 0x0, "2d2fd7ac2612dea2"}, 0x5}}]}, 0x34}}, 0x8040) 949.34717ms ago: executing program 3 (id=7313): r0 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000003400)) 934.908941ms ago: executing program 3 (id=7315): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000140)={'macsec0\x00'}) 906.087303ms ago: executing program 3 (id=7319): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}}, 0x0) 581.366457ms ago: executing program 1 (id=7346): perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x20000000, 0x0, 0x2, @thr={0x0, 0x0}}) 510.533522ms ago: executing program 0 (id=7351): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000000080)=@newtaction={0x70, 0x30, 0x9, 0x0, 0x0, {}, [{0x5c, 0x1, [@m_skbedit={0x58, 0x1, 0x0, 0x0, {{0xc}, {0x48, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PRIORITY={0x8, 0x4}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0x0, 0x0, 0x300}}, @TCA_SKBEDIT_PTYPE={0x6, 0xa}]}, {0x4}, {0xc, 0x5}, {0xc, 0x9, {0x4c}}}}]}]}, 0x70}}, 0x0) 510.354332ms ago: executing program 1 (id=7352): r0 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0) write$selinux_attr(r0, 0x0, 0x0) 497.558693ms ago: executing program 0 (id=7354): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000700)={0x18, 0x2d, 0x107, 0x0, 0x0, {0x4, 0x7c}, [@nested={0x4, 0x1}]}, 0x18}}, 0x0) 456.753476ms ago: executing program 1 (id=7359): socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$TIPC_CONN_TIMEOUT(r0, 0x10f, 0x82, &(0x7f0000000000), &(0x7f0000000200)=0x4) 454.126846ms ago: executing program 0 (id=7360): r0 = socket(0x2, 0x1, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0xa00000000000000, 0x80, &(0x7f00000000c0)=@broute={'broute\x00', 0x20, 0x1, 0x990, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000e00], 0x0, 0x0, &(0x7f0000000e00)=ANY=[@ANYBLOB="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"/2448]}, 0xa08) 427.324268ms ago: executing program 0 (id=7361): r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r0, &(0x7f00000004c0)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c, 0x0, 0x0, &(0x7f0000000280)=[@pktinfo={{0x24, 0x29, 0x32, {@ipv4={'\x00', '\xff\xff', @local}}}}, @tclass={{0x14}}], 0x40}}], 0x1, 0x0) 427.000958ms ago: executing program 2 (id=7362): r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$RTC_WKALM_SET(r0, 0x4028700f, &(0x7f0000000080)={0x0, 0x0, {0x39, 0xfffffffc, 0x11, 0x2010, 0x0, 0x200800, 0x0, 0x0, 0xffffffffffffffff}}) 424.782888ms ago: executing program 1 (id=7363): r0 = inotify_init() inotify_add_watch(r0, &(0x7f0000000340)='.\x00', 0xa50003d1) 399.64991ms ago: executing program 1 (id=7365): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000440)={0x3c, 0x0, 0x8, 0x3, 0x0, 0x0, {0x2, 0x0, 0x3}, [@CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @tcp=[@CTA_TIMEOUT_TCP_UNACK={0x8, 0xb, 0x1, 0x0, 0x5}]}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x200}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8000000}, 0x404c000) 387.253552ms ago: executing program 0 (id=7367): r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26}, 0x20) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0xc, &(0x7f0000000cc0)=@framed={{}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}, @map_val, @exit, @tail_call]}, &(0x7f0000000280)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x10}, 0x90) 386.520391ms ago: executing program 2 (id=7368): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="4400000020002703000000000100000081"], 0x44}}, 0x0) 358.019043ms ago: executing program 0 (id=7369): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="600000000206050000000000000000000000000005000100070000000900020073797a3000000000140007800800120000000000080013400000000014000300686173683a69702c706f72742c6970000500050002000000050004"], 0x60}}, 0x0) 357.602493ms ago: executing program 1 (id=7370): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x4c, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_TYPENAME={0x13, 0x3, 'hash:net,iface\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x4c}}, 0x0) 334.952295ms ago: executing program 2 (id=7372): mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) madvise(&(0x7f0000053000/0x2000)=nil, 0x500500, 0x9) 240.395562ms ago: executing program 2 (id=7375): r0 = socket$inet6(0xa, 0x2, 0x0) ioctl$sock_inet6_SIOCSIFDSTADDR(r0, 0x8918, 0x0) 202.876694ms ago: executing program 2 (id=7377): r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x109800, 0x0) preadv(r0, &(0x7f0000000280)=[{&(0x7f0000033a80)=""/102379, 0x18feb}, {0x0}], 0x2, 0x1, 0x7) 102.998432ms ago: executing program 2 (id=7382): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x3, &(0x7f0000000000)=[{0x4c}, {0x84}, {0x6}]}) socket$nl_netfilter(0x10, 0x3, 0xc) 94.667443ms ago: executing program 4 (id=7383): rt_sigaction(0x1, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000002c0)) syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 72.262025ms ago: executing program 4 (id=7384): r0 = syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00') getdents64(r0, &(0x7f0000002f40)=""/4098, 0x1002) 54.090416ms ago: executing program 4 (id=7385): iopl(0x3) mlockall(0x0) 18.422578ms ago: executing program 4 (id=7386): r0 = socket$inet(0x2, 0xa, 0x0) ioctl$sock_inet_SIOCSARP(r0, 0x8953, &(0x7f0000000080)={{0x2, 0x4e24, @loopback}, {0x0, @random="32b2c9c6645a"}, 0x0, {0x2, 0x0, @empty}}) 18.162488ms ago: executing program 4 (id=7387): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) fstatfs(0xffffffffffffffff, 0x0) 0s ago: executing program 4 (id=7388): r0 = socket(0x40000000015, 0x5, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000007b80)={0xa, 0x0, 0x0, @mcast2, 0x4000}, 0x1c) kernel console output (not intermixed with test programs): cated [ 66.081800][ T8046] loop0: p245 start 4177526784 is beyond EOD, truncated [ 66.088911][ T8046] loop0: p246 start 8388612 is beyond EOD, truncated [ 66.095635][ T8046] loop0: p247 size 32937 extends beyond EOD, truncated [ 66.116937][ T8046] loop0: p248 start 4177526784 is beyond EOD, truncated [ 66.123922][ T8046] loop0: p249 start 8388612 is beyond EOD, truncated [ 66.130671][ T8046] loop0: p250 size 32937 extends beyond EOD, truncated [ 66.153845][ T8046] loop0: p251 start 4177526784 is beyond EOD, truncated [ 66.160860][ T8046] loop0: p252 start 8388612 is beyond EOD, truncated [ 66.167589][ T8046] loop0: p253 size 32937 extends beyond EOD, truncated [ 66.178975][ T8046] loop0: p254 start 4177526784 is beyond EOD, truncated [ 66.186112][ T8046] loop0: p255 start 8388612 is beyond EOD, truncated [ 66.244417][ T2961] loop0: p1 p2 p3 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 p217 p218 p219 p220 p221 p222 p223 p224 p2 [ 66.247752][ T2961] loop0: p1 start 4177526784 is beyond EOD, truncated [ 66.346410][ T8577] loop2: detected capacity change from 0 to 128 [ 66.354188][ T2961] loop0: p2 start 8388612 is beyond EOD, truncated [ 66.362152][ T2961] loop0: p4 size 32937 extends beyond EOD, truncated [ 66.370973][ T2961] loop0: p5 start 4177526784 is beyond EOD, truncated [ 66.377821][ T2961] loop0: p6 start 8388612 is beyond EOD, truncated [ 66.384384][ T2961] loop0: p7 size 32937 extends beyond EOD, truncated [ 66.392641][ T2961] loop0: p8 start 4177526784 is beyond EOD, truncated [ 66.399573][ T2961] loop0: p9 start 8388612 is beyond EOD, truncated [ 66.406336][ T2961] loop0: p10 size 32937 extends beyond EOD, truncated [ 66.415395][ T2961] loop0: p11 start 4177526784 is beyond EOD, truncated [ 66.422360][ T2961] loop0: p12 start 8388612 is beyond EOD, truncated [ 66.429002][ T2961] loop0: p13 size 32937 extends beyond EOD, truncated [ 66.437811][ T2961] loop0: p14 start 4177526784 is beyond EOD, truncated [ 66.444876][ T2961] loop0: p15 start 8388612 is beyond EOD, truncated [ 66.451716][ T2961] loop0: p16 size 32937 extends beyond EOD, truncated [ 66.460721][ T2961] loop0: p17 start 4177526784 is beyond EOD, truncated [ 66.467593][ T2961] loop0: p18 start 8388612 is beyond EOD, truncated [ 66.474230][ T2961] loop0: p19 size 32937 extends beyond EOD, truncated [ 66.482270][ T2961] loop0: p20 start 4177526784 is beyond EOD, truncated [ 66.489135][ T2961] loop0: p21 start 8388612 is beyond EOD, truncated [ 66.495820][ T2961] loop0: p22 size 32937 extends beyond EOD, truncated [ 66.503428][ T2961] loop0: p23 start 4177526784 is beyond EOD, truncated [ 66.510345][ T2961] loop0: p24 start 8388612 is beyond EOD, truncated [ 66.517010][ T2961] loop0: p25 size 32937 extends beyond EOD, truncated [ 66.524421][ T2961] loop0: p26 start 4177526784 is beyond EOD, truncated [ 66.531332][ T2961] loop0: p27 start 8388612 is beyond EOD, truncated [ 66.537955][ T2961] loop0: p28 size 32937 extends beyond EOD, truncated [ 66.551048][ T2961] loop0: p29 start 4177526784 is beyond EOD, truncated [ 66.557968][ T2961] loop0: p30 start 8388612 is beyond EOD, truncated [ 66.564807][ T2961] loop0: p31 size 32937 extends beyond EOD, truncated [ 66.573578][ T2961] loop0: p32 start 4177526784 is beyond EOD, truncated [ 66.580534][ T2961] loop0: p33 start 8388612 is beyond EOD, truncated [ 66.587192][ T2961] loop0: p34 size 32937 extends beyond EOD, truncated [ 66.595514][ T2961] loop0: p35 start 4177526784 is beyond EOD, truncated [ 66.602484][ T2961] loop0: p36 start 8388612 is beyond EOD, truncated [ 66.609346][ T2961] loop0: p37 size 32937 extends beyond EOD, truncated [ 66.618755][ T2961] loop0: p38 start 4177526784 is beyond EOD, truncated [ 66.625691][ T2961] loop0: p39 start 8388612 is beyond EOD, truncated [ 66.632369][ T2961] loop0: p40 size 32937 extends beyond EOD, truncated [ 66.648536][ T2961] loop0: p41 start 4177526784 is beyond EOD, truncated [ 66.655520][ T2961] loop0: p42 start 8388612 is beyond EOD, truncated [ 66.662378][ T2961] loop0: p43 size 32937 extends beyond EOD, truncated [ 66.675389][ T2961] loop0: p44 start 4177526784 is beyond EOD, truncated [ 66.682681][ T2961] loop0: p45 start 8388612 is beyond EOD, truncated [ 66.689337][ T2961] loop0: p46 size 32937 extends beyond EOD, truncated [ 66.697053][ T2961] loop0: p47 start 4177526784 is beyond EOD, truncated [ 66.703932][ T2961] loop0: p48 start 8388612 is beyond EOD, truncated [ 66.710610][ T2961] loop0: p49 size 32937 extends beyond EOD, truncated [ 66.731583][ T2961] loop0: p50 start 4177526784 is beyond EOD, truncated [ 66.738548][ T2961] loop0: p51 start 8388612 is beyond EOD, truncated [ 66.745168][ T2961] loop0: p52 size 32937 extends beyond EOD, truncated [ 66.763702][ T2961] loop0: p53 start 4177526784 is beyond EOD, truncated [ 66.770621][ T2961] loop0: p54 start 8388612 is beyond EOD, truncated [ 66.777614][ T2961] loop0: p55 size 32937 extends beyond EOD, truncated [ 66.801117][ T2961] loop0: p56 start 4177526784 is beyond EOD, truncated [ 66.808036][ T2961] loop0: p57 start 8388612 is beyond EOD, truncated [ 66.814672][ T2961] loop0: p58 size 32937 extends beyond EOD, truncated [ 66.830803][ T2961] loop0: p59 start 4177526784 is beyond EOD, truncated [ 66.837875][ T2961] loop0: p60 start 8388612 is beyond EOD, truncated [ 66.844736][ T2961] loop0: p61 size 32937 extends beyond EOD, truncated [ 66.852894][ T2961] loop0: p62 start 4177526784 is beyond EOD, truncated [ 66.859829][ T2961] loop0: p63 start 8388612 is beyond EOD, truncated [ 66.866490][ T2961] loop0: p64 size 32937 extends beyond EOD, truncated [ 66.897794][ T2961] loop0: p65 start 4177526784 is beyond EOD, truncated [ 66.904689][ T2961] loop0: p66 start 8388612 is beyond EOD, truncated [ 66.911376][ T2961] loop0: p67 size 32937 extends beyond EOD, truncated [ 66.925837][ T2961] loop0: p68 start 4177526784 is beyond EOD, truncated [ 66.932865][ T2961] loop0: p69 start 8388612 is beyond EOD, truncated [ 66.939541][ T2961] loop0: p70 size 32937 extends beyond EOD, truncated [ 66.955536][ T2961] loop0: p71 start 4177526784 is beyond EOD, truncated [ 66.962554][ T2961] loop0: p72 start 8388612 is beyond EOD, truncated [ 66.969144][ T2961] loop0: p73 size 32937 extends beyond EOD, truncated [ 67.010075][ T2961] loop0: p74 start 4177526784 is beyond EOD, truncated [ 67.017029][ T2961] loop0: p75 start 8388612 is beyond EOD, truncated [ 67.023659][ T2961] loop0: p76 size 32937 extends beyond EOD, truncated [ 67.052272][ T2961] loop0: p77 start 4177526784 is beyond EOD, truncated [ 67.059240][ T2961] loop0: p78 start 8388612 is beyond EOD, truncated [ 67.065834][ T2961] loop0: p79 size 32937 extends beyond EOD, truncated [ 67.080924][ T2961] loop0: p80 start 4177526784 is beyond EOD, truncated [ 67.087813][ T2961] loop0: p81 start 8388612 is beyond EOD, truncated [ 67.094497][ T2961] loop0: p82 size 32937 extends beyond EOD, truncated [ 67.136786][ T2961] loop0: p83 start 4177526784 is beyond EOD, truncated [ 67.143723][ T2961] loop0: p84 start 8388612 is beyond EOD, truncated [ 67.150439][ T2961] loop0: p85 size 32937 extends beyond EOD, truncated [ 67.183014][ T2961] loop0: p86 start 4177526784 is beyond EOD, truncated [ 67.189955][ T2961] loop0: p87 start 8388612 is beyond EOD, truncated [ 67.196568][ T2961] loop0: p88 size 32937 extends beyond EOD, truncated [ 67.198591][ T8735] syz.4.2605 (8735): attempted to duplicate a private mapping with mremap. This is not supported. [ 67.218006][ T2961] loop0: p89 start 4177526784 is beyond EOD, truncated [ 67.224965][ T2961] loop0: p90 start 8388612 is beyond EOD, truncated [ 67.231630][ T2961] loop0: p91 size 32937 extends beyond EOD, truncated [ 67.254744][ T2961] loop0: p92 start 4177526784 is beyond EOD, truncated [ 67.261683][ T2961] loop0: p93 start 8388612 is beyond EOD, truncated [ 67.268355][ T2961] loop0: p94 size 32937 extends beyond EOD, truncated [ 67.277035][ T8748] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3 [ 67.295929][ T2961] loop0: p95 start 4177526784 is beyond EOD, truncated [ 67.302812][ T2961] loop0: p96 start 8388612 is beyond EOD, truncated [ 67.309511][ T2961] loop0: p97 size 32937 extends beyond EOD, truncated [ 67.339157][ T2961] loop0: p98 start 4177526784 is beyond EOD, truncated [ 67.346046][ T2961] loop0: p99 start 8388612 is beyond EOD, truncated [ 67.352779][ T2961] loop0: p100 size 32937 extends beyond EOD, truncated [ 67.403119][ T2961] loop0: p101 start 4177526784 is beyond EOD, truncated [ 67.410097][ T2961] loop0: p102 start 8388612 is beyond EOD, truncated [ 67.416864][ T2961] loop0: p103 size 32937 extends beyond EOD, truncated [ 67.429598][ T2961] loop0: p104 start 4177526784 is beyond EOD, truncated [ 67.436700][ T2961] loop0: p105 start 8388612 is beyond EOD, truncated [ 67.443462][ T2961] loop0: p106 size 32937 extends beyond EOD, truncated [ 67.473498][ T2961] loop0: p107 start 4177526784 is beyond EOD, truncated [ 67.480606][ T2961] loop0: p108 start 8388612 is beyond EOD, truncated [ 67.487357][ T2961] loop0: p109 size 32937 extends beyond EOD, truncated [ 67.508319][ T2961] loop0: p110 start 4177526784 is beyond EOD, truncated [ 67.515372][ T2961] loop0: p111 start 8388612 is beyond EOD, truncated [ 67.522110][ T2961] loop0: p112 size 32937 extends beyond EOD, truncated [ 67.548252][ T2961] loop0: p113 start 4177526784 is beyond EOD, truncated [ 67.555284][ T2961] loop0: p114 start 8388612 is beyond EOD, truncated [ 67.562008][ T2961] loop0: p115 size 32937 extends beyond EOD, truncated [ 67.584021][ T2961] loop0: p116 start 4177526784 is beyond EOD, truncated [ 67.591051][ T2961] loop0: p117 start 8388612 is beyond EOD, truncated [ 67.597806][ T2961] loop0: p118 size 32937 extends beyond EOD, truncated [ 67.619666][ T2961] loop0: p119 start 4177526784 is beyond EOD, truncated [ 67.620399][ T8828] loop3: detected capacity change from 0 to 512 [ 67.626704][ T2961] loop0: p120 start 8388612 is beyond EOD, truncated [ 67.639648][ T2961] loop0: p121 size 32937 extends beyond EOD, truncated [ 67.643979][ T8830] futex_wake_op: syz.4.2653 tries to shift op by -1; fix this program [ 67.656335][ T2961] loop0: p122 start 4177526784 is beyond EOD, truncated [ 67.663597][ T2961] loop0: p123 start 8388612 is beyond EOD, truncated [ 67.670842][ T2961] loop0: p124 size 32937 extends beyond EOD, truncated [ 67.678260][ T8828] EXT4-fs (loop3): filesystem is read-only [ 67.709618][ T2961] loop0: p125 start 4177526784 is beyond EOD, truncated [ 67.716620][ T2961] loop0: p126 start 8388612 is beyond EOD, truncated [ 67.723390][ T2961] loop0: p127 size 32937 extends beyond EOD, truncated [ 67.727063][ T8843] 9pnet_fd: Insufficient options for proto=fd [ 67.757295][ T2961] loop0: p128 start 4177526784 is beyond EOD, truncated [ 67.764335][ T2961] loop0: p129 start 8388612 is beyond EOD, truncated [ 67.771244][ T2961] loop0: p130 size 32937 extends beyond EOD, truncated [ 67.804032][ T2961] loop0: p131 start 4177526784 is beyond EOD, truncated [ 67.811045][ T2961] loop0: p132 start 8388612 is beyond EOD, truncated [ 67.818007][ T2961] loop0: p133 size 32937 extends beyond EOD, truncated [ 67.838806][ T2961] loop0: p134 start 4177526784 is beyond EOD, truncated [ 67.845780][ T2961] loop0: p135 start 8388612 is beyond EOD, truncated [ 67.852575][ T2961] loop0: p136 size 32937 extends beyond EOD, truncated [ 67.871049][ T2961] loop0: p137 start 4177526784 is beyond EOD, truncated [ 67.878018][ T2961] loop0: p138 start 8388612 is beyond EOD, truncated [ 67.884894][ T2961] loop0: p139 size 32937 extends beyond EOD, truncated [ 67.913736][ T2961] loop0: p140 start 4177526784 is beyond EOD, truncated [ 67.920755][ T2961] loop0: p141 start 8388612 is beyond EOD, truncated [ 67.927464][ T2961] loop0: p142 size 32937 extends beyond EOD, truncated [ 67.956360][ T2961] loop0: p143 start 4177526784 is beyond EOD, truncated [ 67.963331][ T2961] loop0: p144 start 8388612 is beyond EOD, truncated [ 67.970048][ T2961] loop0: p145 size 32937 extends beyond EOD, truncated [ 67.988639][ T2961] loop0: p146 start 4177526784 is beyond EOD, truncated [ 67.995875][ T2961] loop0: p147 start 8388612 is beyond EOD, truncated [ 68.002646][ T2961] loop0: p148 size 32937 extends beyond EOD, truncated [ 68.037742][ T2961] loop0: p149 start 4177526784 is beyond EOD, truncated [ 68.044751][ T2961] loop0: p150 start 8388612 is beyond EOD, truncated [ 68.051600][ T2961] loop0: p151 size 32937 extends beyond EOD, truncated [ 68.084939][ T2961] loop0: p152 start 4177526784 is beyond EOD, truncated [ 68.091911][ T2961] loop0: p153 start 8388612 is beyond EOD, truncated [ 68.095980][ T8901] loop3: detected capacity change from 0 to 512 [ 68.098689][ T2961] loop0: p154 size 32937 extends beyond EOD, truncated [ 68.120703][ T8901] EXT4-fs (loop3): orphan cleanup on readonly fs [ 68.132840][ T8845] loop4: detected capacity change from 0 to 32768 [ 68.135616][ T8901] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.2688: Failed to acquire dquot type 0 [ 68.139770][ T2961] loop0: p155 start 4177526784 is beyond EOD, truncated [ 68.151184][ T8901] EXT4-fs (loop3): 1 truncate cleaned up [ 68.157473][ T2961] loop0: p156 start 8388612 is beyond EOD, truncated [ 68.169862][ T2961] loop0: p157 size 32937 extends beyond EOD, truncated [ 68.178042][ T2961] loop0: p158 start 4177526784 is beyond EOD, truncated [ 68.178703][ T8901] EXT4-fs mount: 4 callbacks suppressed [ 68.178714][ T8901] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 68.185020][ T2961] loop0: p159 start 8388612 is beyond EOD, truncated [ 68.209798][ T2961] loop0: p160 size 32937 extends beyond EOD, truncated [ 68.213227][ T8845] loop4: p1 p3 < p5 p6 > [ 68.221702][ T3261] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.238581][ T2961] loop0: p161 start 4177526784 is beyond EOD, truncated [ 68.245585][ T2961] loop0: p162 start 8388612 is beyond EOD, truncated [ 68.252293][ T2961] loop0: p163 size 32937 extends beyond EOD, truncated [ 68.282842][ T2961] loop0: p164 start 4177526784 is beyond EOD, truncated [ 68.289919][ T2961] loop0: p165 start 8388612 is beyond EOD, truncated [ 68.296701][ T2961] loop0: p166 size 32937 extends beyond EOD, truncated [ 68.331322][ T2961] loop0: p167 start 4177526784 is beyond EOD, truncated [ 68.338330][ T2961] loop0: p168 start 8388612 is beyond EOD, truncated [ 68.345104][ T2961] loop0: p169 size 32937 extends beyond EOD, truncated [ 68.364577][ T8915] loop3: detected capacity change from 0 to 128 [ 68.374439][ T2961] loop0: p170 start 4177526784 is beyond EOD, truncated [ 68.381478][ T2961] loop0: p171 start 8388612 is beyond EOD, truncated [ 68.388192][ T2961] loop0: p172 size 32937 extends beyond EOD, truncated [ 68.406696][ T2961] loop0: p173 start 4177526784 is beyond EOD, truncated [ 68.413711][ T2961] loop0: p174 start 8388612 is beyond EOD, truncated [ 68.420481][ T2961] loop0: p175 size 32937 extends beyond EOD, truncated [ 68.428724][ T2961] loop0: p176 start 4177526784 is beyond EOD, truncated [ 68.435753][ T2961] loop0: p177 start 8388612 is beyond EOD, truncated [ 68.442471][ T2961] loop0: p178 size 32937 extends beyond EOD, truncated [ 68.457702][ T2961] loop0: p179 start 4177526784 is beyond EOD, truncated [ 68.464731][ T2961] loop0: p180 start 8388612 is beyond EOD, truncated [ 68.471480][ T2961] loop0: p181 size 32937 extends beyond EOD, truncated [ 68.479658][ T2961] loop0: p182 start 4177526784 is beyond EOD, truncated [ 68.486681][ T2961] loop0: p183 start 8388612 is beyond EOD, truncated [ 68.493385][ T2961] loop0: p184 size 32937 extends beyond EOD, truncated [ 68.507697][ T2961] loop0: p185 start 4177526784 is beyond EOD, truncated [ 68.514796][ T2961] loop0: p186 start 8388612 is beyond EOD, truncated [ 68.521485][ T2961] loop0: p187 size 32937 extends beyond EOD, truncated [ 68.529898][ T2961] loop0: p188 start 4177526784 is beyond EOD, truncated [ 68.536984][ T2961] loop0: p189 start 8388612 is beyond EOD, truncated [ 68.543665][ T2961] loop0: p190 size 32937 extends beyond EOD, truncated [ 68.553692][ T8938] loop3: detected capacity change from 0 to 512 [ 68.562161][ T2961] loop0: p191 start 4177526784 is beyond EOD, truncated [ 68.569163][ T2961] loop0: p192 start 8388612 is beyond EOD, truncated [ 68.575831][ T2961] loop0: p193 size 32937 extends beyond EOD, truncated [ 68.583288][ T2961] loop0: p194 start 4177526784 is beyond EOD, truncated [ 68.590277][ T2961] loop0: p195 start 8388612 is beyond EOD, truncated [ 68.596970][ T2961] loop0: p196 size 32937 extends beyond EOD, truncated [ 68.605222][ T2961] loop0: p197 start 4177526784 is beyond EOD, truncated [ 68.612204][ T2961] loop0: p198 start 8388612 is beyond EOD, truncated [ 68.618890][ T2961] loop0: p199 size 32937 extends beyond EOD, truncated [ 68.626571][ T2961] loop0: p200 start 4177526784 is beyond EOD, truncated [ 68.630096][ T8938] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 68.633556][ T2961] loop0: p201 start 8388612 is beyond EOD, truncated [ 68.648224][ T2961] loop0: p202 size 32937 extends beyond EOD, truncated [ 68.658398][ T2961] loop0: p203 start 4177526784 is beyond EOD, truncated [ 68.665445][ T2961] loop0: p204 start 8388612 is beyond EOD, truncated [ 68.667671][ T8938] EXT4-fs (loop3): 1 truncate cleaned up [ 68.672110][ T2961] loop0: p205 size 32937 extends beyond EOD, truncated [ 68.685826][ T2961] loop0: p206 start 4177526784 is beyond EOD, truncated [ 68.692837][ T2961] loop0: p207 start 8388612 is beyond EOD, truncated [ 68.699575][ T2961] loop0: p208 size 32937 extends beyond EOD, truncated [ 68.708172][ T8938] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 68.708446][ T2961] loop0: p209 start 4177526784 is beyond EOD, truncated [ 68.727754][ T2961] loop0: p210 start 8388612 is beyond EOD, truncated [ 68.734470][ T2961] loop0: p211 size 32937 extends beyond EOD, truncated [ 68.743731][ T2961] loop0: p212 start 4177526784 is beyond EOD, truncated [ 68.750733][ T2961] loop0: p213 start 8388612 is beyond EOD, truncated [ 68.757499][ T2961] loop0: p214 size 32937 extends beyond EOD, truncated [ 68.766330][ T2961] loop0: p215 start 4177526784 is beyond EOD, truncated [ 68.773360][ T2961] loop0: p216 start 8388612 is beyond EOD, truncated [ 68.780053][ T2961] loop0: p217 size 32937 extends beyond EOD, truncated [ 68.788482][ T29] kauditd_printk_skb: 6 callbacks suppressed [ 68.788494][ T29] audit: type=1326 audit(2000002570.293:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8956 comm="syz.4.2714" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f284b9d9eb9 code=0x0 [ 68.818191][ T2961] loop0: p218 start 4177526784 is beyond EOD, truncated [ 68.820361][ T3261] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.825157][ T2961] loop0: p219 start 8388612 is beyond EOD, truncated [ 68.840781][ T2961] loop0: p220 size 32937 extends beyond EOD, truncated [ 68.861091][ T2961] loop0: p221 start 4177526784 is beyond EOD, truncated [ 68.868092][ T2961] loop0: p222 start 8388612 is beyond EOD, truncated [ 68.874822][ T2961] loop0: p223 size 32937 extends beyond EOD, truncated [ 68.882942][ T2961] loop0: p224 start 4177526784 is beyond EOD, truncated [ 68.889952][ T2961] loop0: p225 start 8388612 is beyond EOD, truncated [ 68.896632][ T2961] loop0: p226 size 32937 extends beyond EOD, truncated [ 68.916681][ T2961] loop0: p227 start 4177526784 is beyond EOD, truncated [ 68.923720][ T2961] loop0: p228 start 8388612 is beyond EOD, truncated [ 68.930422][ T2961] loop0: p229 size 32937 extends beyond EOD, truncated [ 68.947147][ T2961] loop0: p230 start 4177526784 is beyond EOD, truncated [ 68.954166][ T2961] loop0: p231 start 8388612 is beyond EOD, truncated [ 68.960861][ T2961] loop0: p232 size 32937 extends beyond EOD, truncated [ 68.975192][ T2961] loop0: p233 start 4177526784 is beyond EOD, truncated [ 68.982162][ T2961] loop0: p234 start 8388612 is beyond EOD, truncated [ 68.989022][ T2961] loop0: p235 size 32937 extends beyond EOD, truncated [ 68.996706][ T2961] loop0: p236 start 4177526784 is beyond EOD, truncated [ 69.003721][ T2961] loop0: p237 start 8388612 is beyond EOD, truncated [ 69.010509][ T2961] loop0: p238 size 32937 extends beyond EOD, truncated [ 69.030648][ T2961] loop0: p239 start 4177526784 is beyond EOD, truncated [ 69.037811][ T2961] loop0: p240 start 8388612 is beyond EOD, truncated [ 69.044503][ T2961] loop0: p241 size 32937 extends beyond EOD, truncated [ 69.060980][ T2961] loop0: p242 start 4177526784 is beyond EOD, truncated [ 69.068062][ T2961] loop0: p243 start 8388612 is beyond EOD, truncated [ 69.074922][ T2961] loop0: p244 size 32937 extends beyond EOD, truncated [ 69.092058][ T2961] loop0: p245 start 4177526784 is beyond EOD, truncated [ 69.099023][ T2961] loop0: p246 start 8388612 is beyond EOD, truncated [ 69.105760][ T2961] loop0: p247 size 32937 extends beyond EOD, truncated [ 69.112721][ T29] audit: type=1326 audit(2000002570.610:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9006 comm="syz.2.2740" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff162459eb9 code=0x0 [ 69.143081][ T2961] loop0: p248 start 4177526784 is beyond EOD, truncated [ 69.150221][ T2961] loop0: p249 start 8388612 is beyond EOD, truncated [ 69.156952][ T2961] loop0: p250 size 32937 extends beyond EOD, truncated [ 69.175055][ T2961] loop0: p251 start 4177526784 is beyond EOD, truncated [ 69.182081][ T2961] loop0: p252 start 8388612 is beyond EOD, truncated [ 69.188833][ T2961] loop0: p253 size 32937 extends beyond EOD, truncated [ 69.200882][ T2961] loop0: p254 start 4177526784 is beyond EOD, truncated [ 69.207907][ T2961] loop0: p255 start 8388612 is beyond EOD, truncated [ 69.410453][ T3530] udevd[3530]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory [ 69.433152][ T6264] udevd[6264]: inotify_add_watch(7, /dev/loop0p16, 10) failed: No such file or directory [ 69.443034][ T6259] udevd[6259]: inotify_add_watch(7, /dev/loop0p34, 10) failed: No such file or directory [ 69.454860][ T3717] udevd[3717]: inotify_add_watch(7, /dev/loop0p22, 10) failed: No such file or directory [ 69.465603][ T6267] udevd[6267]: inotify_add_watch(7, /dev/loop0p10, 10) failed: No such file or directory [ 69.465750][ T6258] udevd[6258]: inotify_add_watch(7, /dev/loop0p31, 10) failed: No such file or directory [ 69.486437][ T3254] udevd[3254]: inotify_add_watch(7, /dev/loop0p28, 10) failed: No such file or directory [ 69.497348][ T3721] udevd[3721]: inotify_add_watch(7, /dev/loop0p25, 10) failed: No such file or directory [ 69.508327][ T6270] udevd[6270]: inotify_add_watch(7, /dev/loop0p7, 10) failed: No such file or directory [ 69.508612][ T6268] udevd[6268]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 69.562499][ T9089] dccp_invalid_packet: P.Data Offset(100) too large [ 69.585478][ T9093] loop2: detected capacity change from 0 to 512 [ 69.590118][ T29] audit: type=1326 audit(2000002571.059:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9094 comm="syz.1.2781" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f30656e9eb9 code=0x0 [ 69.592035][ T9093] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22 [ 69.735707][ T9121] loop0: detected capacity change from 0 to 128 [ 69.745962][ T9122] loop2: detected capacity change from 0 to 512 [ 69.779183][ T9121] FAT-fs (loop0): error, invalid access to FAT (entry 0x0ffffff6) [ 69.787334][ T9122] EXT4-fs warning (device loop2): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 69.799001][ T9122] EXT4-fs warning (device loop2): dx_probe:881: Enable large directory feature to access it [ 69.809262][ T9122] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.2794: Corrupt directory, running e2fsck is recommended [ 69.826197][ T9128] loop4: detected capacity change from 0 to 1024 [ 69.840671][ T9122] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 69.855633][ T9128] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 458755)! [ 69.866266][ T9128] EXT4-fs (loop4): group descriptors corrupted! [ 69.891030][ T9122] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.2794: corrupted in-inode xattr: invalid ea_ino [ 69.948354][ T9122] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.2794: couldn't read orphan inode 15 (err -117) [ 69.971286][ T9149] loop0: detected capacity change from 0 to 512 [ 69.973960][ T9122] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 70.021433][ T9149] EXT4-fs (loop0): VFS: Found ext4 filesystem with unknown checksum algorithm. [ 70.076306][ T3269] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.127861][ T9173] tmpfs: Bad value for 'nr_inodes' [ 70.244273][ T9194] loop3: detected capacity change from 0 to 512 [ 70.258413][ T9194] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 70.268227][ T9194] EXT4-fs (loop3): group descriptors corrupted! [ 70.393213][ T9229] loop0: detected capacity change from 0 to 512 [ 70.435241][ T9229] EXT4-fs error (device loop0): ext4_get_branch:178: inode #11: block 4294967295: comm syz.0.2847: invalid block [ 70.464797][ T9229] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.2847: invalid indirect mapped block 4294967295 (level 1) [ 70.479655][ T9229] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.2847: invalid indirect mapped block 4294967295 (level 1) [ 70.495150][ T9229] EXT4-fs (loop0): 2 truncates cleaned up [ 70.501167][ T9229] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 70.564903][ T3263] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.586058][ T9264] ip6_tunnel: non-ECT from 0000:0000:0000:0000:0000:ffff:ac1e:0001 with DS=0xd [ 70.594761][ T9266] loop4: detected capacity change from 0 to 512 [ 70.622151][ T9266] EXT4-fs warning (device loop4): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 70.633699][ T9266] EXT4-fs warning (device loop4): dx_probe:881: Enable large directory feature to access it [ 70.643809][ T9266] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.2866: Corrupt directory, running e2fsck is recommended [ 70.723598][ T9266] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 70.734643][ T9286] loop0: detected capacity change from 0 to 512 [ 70.745975][ T9266] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.2866: corrupted in-inode xattr: invalid ea_ino [ 70.779527][ T9286] FAT-fs (loop0): bogus number of FAT sectors [ 70.785644][ T9286] FAT-fs (loop0): Can't find a valid FAT filesystem [ 70.803537][ T9266] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.2866: couldn't read orphan inode 15 (err -117) [ 70.848849][ T9266] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 70.849485][ T9303] loop2: detected capacity change from 0 to 1024 [ 70.874946][ T9303] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 70.901370][ T9303] EXT4-fs error (device loop2): ext4_ext_check_inode:520: inode #3: comm syz.2.2883: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 3(4), depth 0(0) [ 70.982766][ T3265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.041794][ T9303] EXT4-fs error (device loop2): ext4_quota_enable:7025: comm syz.2.2883: Bad quota inode: 3, type: 0 [ 71.059068][ T29] audit: type=1400 audit(2000002572.443:213): avc: denied { unlink } for pid=2943 comm="syslogd" name="messages.0" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 71.103207][ T9303] EXT4-fs warning (device loop2): ext4_enable_quotas:7066: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix. [ 71.164570][ T9303] EXT4-fs (loop2): mount failed [ 71.319975][ T9341] loop2: detected capacity change from 0 to 512 [ 71.349803][ T9341] EXT4-fs (loop2): filesystem is read-only [ 71.371733][ T9341] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 71.426230][ T29] audit: type=1400 audit(2000002572.780:214): avc: denied { write } for pid=9362 comm="syz.3.2912" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 71.450438][ T9341] EXT4-fs (loop2): filesystem is read-only [ 71.456375][ T9341] EXT4-fs (loop2): orphan cleanup on readonly fs [ 71.477565][ T29] audit: type=1400 audit(2000002572.780:215): avc: denied { open } for pid=9362 comm="syz.3.2912" path="/dev/nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 71.479832][ T9341] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2901: bg 0: block 64: padding at end of block bitmap is not set [ 71.530454][ T9341] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 71.543542][ T9341] EXT4-fs (loop2): 1 orphan inode deleted [ 71.549843][ T9341] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 71.668542][ T9384] loop4: detected capacity change from 0 to 256 [ 71.675492][ T3269] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.766993][ T9404] loop0: detected capacity change from 0 to 2048 [ 71.849202][ T9404] loop0: p1 p2 < > p3 p4 < p5 > [ 71.854187][ T9404] loop0: partition table partially beyond EOD, truncated [ 71.875721][ T9404] loop0: p1 start 2305 is beyond EOD, truncated [ 71.882053][ T9404] loop0: p2 start 4294902784 is beyond EOD, truncated [ 71.888894][ T9404] loop0: p3 start 4278191616 is beyond EOD, truncated [ 71.919223][ T9404] loop0: p5 start 2305 is beyond EOD, truncated [ 71.954527][ T2961] loop0: p1 p2 < > p3 p4 < p5 > [ 71.959534][ T2961] loop0: partition table partially beyond EOD, truncated [ 71.985751][ T2961] loop0: p1 start 2305 is beyond EOD, truncated [ 71.992095][ T2961] loop0: p2 start 4294902784 is beyond EOD, truncated [ 71.998932][ T2961] loop0: p3 start 4278191616 is beyond EOD, truncated [ 72.020504][ T2961] loop0: p5 start 2305 is beyond EOD, truncated [ 72.079760][ T29] audit: type=1400 audit(2000002573.386:216): avc: denied { create } for pid=9464 comm="syz.1.2964" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 72.512811][ T9548] dccp_invalid_packet: P.Data Offset(100) too large [ 72.526102][ T9544] loop4: detected capacity change from 0 to 512 [ 72.643317][ T9564] loop2: detected capacity change from 0 to 1024 [ 72.670834][ T9564] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 72.699311][ T9564] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 72.710247][ T9564] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 not in group (block 2)! [ 72.720378][ T9564] EXT4-fs (loop2): group descriptors corrupted! [ 72.761435][ T9583] loop4: detected capacity change from 0 to 2048 [ 72.817720][ T9583] loop4: p1 < > p4 [ 72.830554][ T9583] loop4: p4 size 8388608 extends beyond EOD, truncated [ 72.850803][ T2961] loop4: p1 < > p4 [ 72.862904][ T2961] loop4: p4 size 8388608 extends beyond EOD, truncated [ 72.970074][ T29] audit: type=1326 audit(2000002574.218:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9618 comm="syz.4.3039" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f284b9d9eb9 code=0x0 [ 73.083859][ T9641] loop4: detected capacity change from 0 to 512 [ 73.111670][ T9641] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 73.120757][ T9641] EXT4-fs (loop4): Couldn't mount because of unsupported optional features (b80000) [ 73.321875][ T9680] loop0: detected capacity change from 0 to 512 [ 73.346621][ T9680] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e01c, mo2=0002] [ 73.358815][ T9680] System zones: 1-12 [ 73.412565][ T9688] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 73.427312][ T9680] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.3067: invalid indirect mapped block 8 (level 2) [ 73.562078][ T9680] EXT4-fs (loop0): 1 truncate cleaned up [ 73.583457][ T9680] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 73.691761][ T3263] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.725466][ T9726] loop4: detected capacity change from 0 to 4096 [ 73.748283][ T9726] EXT4-fs (loop4): filesystem too large to mount safely on this system [ 73.957280][ T9772] loop2: detected capacity change from 0 to 764 [ 74.098282][ T9804] loop3: detected capacity change from 0 to 512 [ 74.143127][ T9804] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 74.178804][ T9804] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal [ 74.437117][ T9878] dccp_invalid_packet: P.Data Offset(0) too small [ 74.509696][ T9895] loop2: detected capacity change from 0 to 512 [ 74.549180][ T9895] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 74.589644][ T9895] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #17: comm syz.2.3174: iget: bad i_size value: -6917529027641081756 [ 74.660841][ T9895] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.3174: couldn't read orphan inode 17 (err -117) [ 74.713530][ T9895] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.750041][ T3269] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.785996][ T9959] nfs: Unknown parameter '' [ 74.878573][ T29] audit: type=1400 audit(2000002832.013:218): avc: denied { write } for pid=9980 comm="syz.4.3215" name="001" dev="devtmpfs" ino=126 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 75.566032][T10106] loop4: detected capacity change from 0 to 2048 [ 75.653713][T10118] loop3: detected capacity change from 0 to 2048 [ 75.710400][T10118] loop3: p1 < > p3 [ 75.719886][T10118] loop3: p3 size 134217728 extends beyond EOD, truncated [ 75.761721][ T2961] loop3: p1 < > p3 [ 75.779851][ T2961] loop3: p3 size 134217728 extends beyond EOD, truncated [ 75.808420][ T3530] udevd[3530]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory [ 75.834579][ T6268] udevd[6268]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory [ 75.858019][T10160] dccp_invalid_packet: P.Data Offset(0) too small [ 75.878518][ T6268] udevd[6268]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory [ 75.893069][ T3530] udevd[3530]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory [ 75.943605][T10172] loop0: detected capacity change from 0 to 512 [ 76.002466][T10172] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 76.025466][T10172] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2 [ 76.031819][T10185] dccp_v4_rcv: dropped packet with invalid checksum [ 76.038066][T10172] EXT4-fs (loop0): 1 truncate cleaned up [ 76.046165][T10172] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 76.084014][ T3263] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.265878][T10235] futex_wake_op: syz.1.3342 tries to shift op by 144; fix this program [ 76.404362][ T29] audit: type=1326 audit(2000002833.425:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10264 comm="syz.3.3355" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f68923b9eb9 code=0x0 [ 76.568956][T10299] loop3: detected capacity change from 0 to 1024 [ 76.590505][T10304] loop4: detected capacity change from 0 to 1024 [ 76.612236][T10304] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 76.622042][T10304] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 76.642921][T10304] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 76.658922][T10304] EXT4-fs error (device loop4): ext4_get_journal_inode:5740: inode #5: comm syz.4.3377: unexpected bad inode w/o EXT4_IGET_BAD [ 76.676362][T10316] loop3: detected capacity change from 0 to 1024 [ 76.687641][T10316] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 76.698625][T10316] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 76.710948][T10316] JBD2: no valid journal superblock found [ 76.714575][T10304] EXT4-fs (loop4): no journal found [ 76.716703][T10316] EXT4-fs (loop3): Could not load journal inode [ 76.721885][T10304] EXT4-fs (loop4): can't get journal size [ 76.735243][T10304] EXT4-fs (loop4): failed to initialize system zone (-117) [ 76.742563][T10304] EXT4-fs (loop4): mount failed [ 76.903506][ T29] audit: type=1400 audit(2000002833.902:220): avc: denied { read write } for pid=10354 comm="syz.4.3403" name="uhid" dev="devtmpfs" ino=228 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 76.926976][ T29] audit: type=1400 audit(2000002833.902:221): avc: denied { open } for pid=10354 comm="syz.4.3403" path="/dev/uhid" dev="devtmpfs" ino=228 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 77.035836][T10382] loop4: detected capacity change from 0 to 512 [ 77.044606][T10382] EXT4-fs: Ignoring removed orlov option [ 77.057451][T10382] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 77.084154][T10382] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.3414: corrupted in-inode xattr: overlapping e_value [ 77.085048][T10395] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0 [ 77.120822][T10382] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.3414: couldn't read orphan inode 15 (err -117) [ 77.161726][T10382] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 77.214663][ T3265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.276266][ T29] audit: type=1326 audit(2000002834.248:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10420 comm="syz.2.3434" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff162459eb9 code=0x0 [ 77.479375][T10469] loop4: detected capacity change from 0 to 512 [ 77.507179][T10469] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 77.602002][T10495] loop0: detected capacity change from 0 to 512 [ 77.612908][ T3265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.622233][T10495] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 77.632176][T10495] EXT4-fs (loop0): group descriptors corrupted! [ 77.650327][ T29] audit: type=1400 audit(2000002834.604:223): avc: denied { read } for pid=10498 comm="syz.2.3475" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 77.677457][T10502] loop3: detected capacity change from 0 to 1024 [ 77.720250][T10502] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 77.727156][T10510] loop2: detected capacity change from 0 to 512 [ 77.733652][T10506] loop0: detected capacity change from 0 to 512 [ 77.754589][T10510] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 77.779351][T10512] loop4: detected capacity change from 0 to 2048 [ 77.791204][ T3261] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.800721][ T3269] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.810632][T10506] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 77.853646][ T3263] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.883667][T10512] loop4: p2 p3 p7 [ 77.953928][T10541] loop0: detected capacity change from 0 to 512 [ 77.964760][T10538] loop3: detected capacity change from 0 to 2048 [ 77.966091][ T2961] loop4: p2 p3 p7 [ 77.977056][T10539] loop2: detected capacity change from 0 to 2048 [ 77.986252][T10539] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 77.999705][T10538] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 78.046861][ T3269] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.051309][T10541] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 78.078681][T10541] ext4 filesystem being mounted at /584/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 78.089489][T10547] loop4: detected capacity change from 0 to 4096 [ 78.116593][ T3261] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.117320][T10547] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 78.127852][ T3530] udevd[3530]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory [ 78.141257][ T6270] udevd[6270]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory [ 78.149413][ T3263] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.161919][ T6268] udevd[6268]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 78.205662][ T6270] udevd[6270]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory [ 78.211444][ T6268] udevd[6268]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 78.216841][ T3530] udevd[3530]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory [ 78.226428][T10559] loop2: detected capacity change from 0 to 512 [ 78.236267][ T3265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.245161][T10560] loop3: detected capacity change from 0 to 128 [ 78.253363][T10562] loop0: detected capacity change from 0 to 128 [ 78.303989][T10564] loop3: detected capacity change from 0 to 128 [ 78.312738][T10567] loop0: detected capacity change from 0 to 512 [ 78.344029][T10567] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 78.349458][T10568] loop2: detected capacity change from 0 to 2048 [ 78.361705][T10567] EXT4-fs (loop0): orphan cleanup on readonly fs [ 78.391831][T10567] EXT4-fs warning (device loop0): ext4_enable_quotas:7066: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 78.396058][T10571] loop4: detected capacity change from 0 to 4096 [ 78.421172][T10571] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 78.435928][T10567] EXT4-fs (loop0): Cannot turn on quotas: error -22 [ 78.452212][T10567] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #13: comm syz.0.3504: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 78.454664][T10573] loop3: detected capacity change from 0 to 8192 [ 78.480229][T10576] loop2: detected capacity change from 0 to 2048 [ 78.491275][ T3265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.500950][T10567] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.3504: couldn't read orphan inode 13 (err -117) [ 78.513613][T10576] EXT4-fs warning (device loop2): ext4_multi_mount_protect:292: Invalid MMP block in superblock [ 78.517191][T10567] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 78.547103][T10578] loop4: detected capacity change from 0 to 128 [ 78.594265][T10583] loop4: detected capacity change from 0 to 128 [ 78.597704][T10584] loop2: detected capacity change from 0 to 512 [ 78.615393][ T3263] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.626759][T10581] loop3: detected capacity change from 0 to 2048 [ 78.668243][T10590] loop3: detected capacity change from 0 to 128 [ 78.703045][T10592] loop2: detected capacity change from 0 to 256 [ 78.710727][T10588] loop4: detected capacity change from 0 to 2048 [ 78.733961][T10588] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 78.750649][T10596] loop3: detected capacity change from 0 to 512 [ 78.787148][T10598] loop2: detected capacity change from 0 to 256 [ 78.795169][T10588] ext4 filesystem being mounted at /760/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 78.859917][T10586] loop0: detected capacity change from 0 to 32768 [ 78.867196][T10600] loop3: detected capacity change from 0 to 512 [ 78.888090][T10602] loop2: detected capacity change from 0 to 2048 [ 78.890732][ T3265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.960523][T10606] loop3: detected capacity change from 0 to 128 [ 79.042285][T10604] loop4: detected capacity change from 0 to 8192 [ 79.051798][T10612] loop0: detected capacity change from 0 to 512 [ 79.154736][T10620] loop4: detected capacity change from 0 to 128 [ 79.171091][ T29] audit: type=1400 audit(2000002835.997:224): avc: denied { create } for pid=10623 comm="syz.0.3529" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 79.226155][ T29] audit: type=1400 audit(2000002836.025:225): avc: denied { write } for pid=10623 comm="syz.0.3529" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 79.246873][ T29] audit: type=1400 audit(2000002836.053:226): avc: denied { write } for pid=10627 comm="syz.1.3531" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 79.272318][T10631] (unnamed net_device) (uninitialized): option ad_user_port_key: invalid value (46336) [ 79.282060][T10631] (unnamed net_device) (uninitialized): option ad_user_port_key: allowed values 0 - 1023 [ 79.317617][ T29] audit: type=1400 audit(2000002836.117:227): avc: denied { setopt } for pid=10633 comm="syz.1.3534" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 79.352492][T10608] loop2: detected capacity change from 0 to 32768 [ 79.465194][T10652] netlink: 'syz.0.3543': attribute type 2 has an invalid length. [ 79.578975][T10664] loop4: detected capacity change from 0 to 512 [ 79.697087][T10682] bridge1: entered promiscuous mode [ 79.702359][T10682] bridge1: entered allmulticast mode [ 79.733782][T10686] loop0: detected capacity change from 0 to 128 [ 79.908613][T10614] loop3: detected capacity change from 0 to 65536 [ 79.911052][T10700] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3567'. [ 79.924101][T10700] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3567'. [ 79.933039][T10700] netlink: 7 bytes leftover after parsing attributes in process `syz.0.3567'. [ 80.031063][T10710] netlink: 'syz.2.3572': attribute type 5 has an invalid length. [ 80.085629][T10716] ipt_ECN: cannot use operation on non-tcp rule [ 80.150655][T10724] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3579'. [ 80.264772][T10684] loop4: detected capacity change from 0 to 32768 [ 80.283986][ T29] kauditd_printk_skb: 24 callbacks suppressed [ 80.283999][ T29] audit: type=1326 audit(2000002837.031:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10737 comm="syz.2.3586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff162459eb9 code=0x7ffc0000 [ 80.313594][ T29] audit: type=1326 audit(2000002837.031:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10737 comm="syz.2.3586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff162459eb9 code=0x7ffc0000 [ 80.337358][ T29] audit: type=1326 audit(2000002837.059:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10737 comm="syz.2.3586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=71 compat=0 ip=0x7ff162459eb9 code=0x7ffc0000 [ 80.360784][ T29] audit: type=1326 audit(2000002837.059:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10737 comm="syz.2.3586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff162459eb9 code=0x7ffc0000 [ 80.370860][T10745] netlink: 'syz.2.3590': attribute type 30 has an invalid length. [ 80.384180][ T29] audit: type=1326 audit(2000002837.059:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10737 comm="syz.2.3586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff162459eb9 code=0x7ffc0000 [ 80.393362][T10745] (unnamed net_device) (uninitialized): option arp_missed_max: invalid value (0) [ 80.424646][T10745] (unnamed net_device) (uninitialized): option arp_missed_max: allowed values 1 - 255 [ 80.514430][T10760] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3595'. [ 80.600542][ T29] audit: type=1400 audit(2000002837.317:257): avc: denied { create } for pid=10776 comm="syz.0.3605" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 80.645797][ T29] audit: type=1400 audit(2000002837.336:258): avc: denied { write } for pid=10776 comm="syz.0.3605" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 80.684652][ T29] audit: type=1400 audit(2000002837.400:259): avc: denied { read } for pid=10794 comm="syz.1.3613" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 80.701932][T10797] netlink: 'syz.2.3614': attribute type 21 has an invalid length. [ 80.860483][ T29] audit: type=1400 audit(2000002837.557:260): avc: denied { search } for pid=2999 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 80.881803][ T29] audit: type=1400 audit(2000002837.557:261): avc: denied { read } for pid=2999 comm="dhcpcd" name="n25" dev="tmpfs" ino=13607 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 80.954820][T10853] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 81.036570][T10875] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: invalid value (3) [ 81.318873][T10945] sctp: [Deprecated]: syz.0.3670 (pid 10945) Use of int in maxseg socket option. [ 81.318873][T10945] Use struct sctp_assoc_value instead [ 81.597856][T11001] netlink: 'syz.1.3700': attribute type 21 has an invalid length. [ 81.626708][T11001] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3700'. [ 81.700801][T11028] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3714'. [ 81.765571][T11041] loop2: detected capacity change from 0 to 128 [ 81.826451][T11055] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3727'. [ 81.982402][T11091] ebt_limit: overflow, try lower: 0/0 [ 82.207604][T11138] xt_TCPMSS: Only works on TCP SYN packets [ 82.751536][T11266] netlink: 'syz.1.3832': attribute type 3 has an invalid length. [ 82.759315][T11266] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3832'. [ 82.878480][T11295] xt_hashlimit: Unknown mode mask 2000, kernel too old? [ 82.887825][T11299] SET target dimension over the limit! [ 82.912203][T11303] xt_CONNSECMARK: invalid mode: 0 [ 82.959507][T11314] (unnamed net_device) (uninitialized): option ad_user_port_key: invalid value (46336) [ 82.969282][T11314] (unnamed net_device) (uninitialized): option ad_user_port_key: allowed values 0 - 1023 [ 83.183793][T11355] loop0: detected capacity change from 0 to 512 [ 83.192796][T11355] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 83.227067][T11355] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec01c, mo2=0002] [ 83.248081][T11355] System zones: 1-12 [ 83.267781][T11355] EXT4-fs (loop0): 1 truncate cleaned up [ 83.283499][T11355] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 83.344805][ T3263] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.960585][ C0] hrtimer: interrupt took 28321 ns [ 84.273328][T11420] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3898'. [ 84.807125][T11537] xt_connbytes: Forcing CT accounting to be enabled [ 84.816123][T11537] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 84.829759][T11537] xt_bpf: check failed: parse error [ 84.860660][T11546] netlink: 'syz.1.3961': attribute type 2 has an invalid length. [ 84.873223][T11543] lo: entered allmulticast mode [ 84.894594][T11543] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 84.909850][T11553] A link change request failed with some changes committed already. Interface vlan0 may have been left with an inconsistent configuration, please check. [ 84.993569][T11569] x_tables: ip_tables: TCPMSS target: only valid for protocol 6 [ 84.997972][T11571] x_tables: ip6_tables: sctp match: only valid for protocol 132 [ 85.200983][T11619] loop2: detected capacity change from 0 to 128 [ 85.277601][T11635] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 85.295594][T11632] xt_TPROXY: Can be used only with -p tcp or -p udp [ 85.320267][T11635] xt_cgroup: path and classid specified [ 85.637971][T11708] loop3: detected capacity change from 0 to 512 [ 85.648453][T11708] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 85.665979][T11708] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002] [ 85.674386][T11708] System zones: 1-12 [ 85.681980][T11708] EXT4-fs (loop3): 1 truncate cleaned up [ 85.689236][T11708] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 85.721923][ T3261] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.798937][ T29] kauditd_printk_skb: 73 callbacks suppressed [ 85.798951][ T29] audit: type=1400 audit(2000002842.117:335): avc: denied { write } for pid=11742 comm="syz.1.4052" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 85.867023][T11756] ieee802154 phy0 wpan0: encryption failed: -22 [ 85.879965][ T29] audit: type=1400 audit(2000002842.191:336): avc: denied { mounton } for pid=11758 comm="syz.0.4058" path="/737/file0" dev="tmpfs" ino=3749 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 85.930345][ T29] audit: type=1400 audit(2000002842.237:337): avc: denied { write } for pid=11766 comm="syz.0.4061" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 85.955155][T11770] netlink: 'syz.3.4063': attribute type 6 has an invalid length. [ 85.963718][T11774] lo: entered allmulticast mode [ 85.978893][T11774] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 86.015837][T11780] xt_CT: No such helper "netbios-ns" [ 86.028427][ T29] audit: type=1400 audit(2000002842.329:338): avc: denied { connect } for pid=11782 comm="syz.0.4069" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 86.048066][ T29] audit: type=1400 audit(2000002842.329:339): avc: denied { name_connect } for pid=11782 comm="syz.0.4069" dest=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1 [ 86.071407][T11786] netlink: 'syz.1.4071': attribute type 25 has an invalid length. [ 86.098423][T11793] __nla_validate_parse: 5 callbacks suppressed [ 86.098437][T11793] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4074'. [ 86.108581][T11797] netlink: 'syz.1.4076': attribute type 1 has an invalid length. [ 86.113589][T11793] tc_dump_action: action bad kind [ 86.126594][T11797] netlink: 224 bytes leftover after parsing attributes in process `syz.1.4076'. [ 86.149760][T11803] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 86.255984][T11825] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=11825 comm=syz.3.4087 [ 86.269281][ T29] audit: type=1400 audit(2000002842.551:340): avc: denied { nlmsg_write } for pid=11824 comm="syz.3.4087" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1 [ 86.307951][ T29] audit: type=1400 audit(2000002842.588:341): avc: denied { setattr } for pid=11828 comm="syz.4.4092" name="001" dev="devtmpfs" ino=126 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 86.388208][T11855] loop4: detected capacity change from 0 to 164 [ 86.451956][T11867] cannot load conntrack support for proto=3 [ 86.519937][T11882] xt_addrtype: output interface limitation not valid in PREROUTING and INPUT [ 86.541170][T11885] netlink: 'syz.2.4118': attribute type 1 has an invalid length. [ 86.549057][T11885] netlink: 224 bytes leftover after parsing attributes in process `syz.2.4118'. [ 86.583529][T11892] netlink: 'syz.3.4121': attribute type 2 has an invalid length. [ 86.811630][T11922] netlink: 100 bytes leftover after parsing attributes in process `syz.1.4136'. [ 86.820810][T11922] netlink: 100 bytes leftover after parsing attributes in process `syz.1.4136'. [ 86.840240][T11923] xt_CT: No such helper "netbios-ns" [ 86.873475][ T29] audit: type=1400 audit(2000002843.114:342): avc: denied { setopt } for pid=11926 comm="syz.1.4138" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 87.028083][ T29] audit: type=1400 audit(2000002843.252:343): avc: denied { getopt } for pid=11953 comm="syz.1.4152" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 87.178035][T11983] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4166'. [ 87.192845][T11983] netlink: 'syz.1.4166': attribute type 1 has an invalid length. [ 87.276914][T11996] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4172'. [ 87.285969][T11996] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4172'. [ 87.294963][T11996] netlink: 32 bytes leftover after parsing attributes in process `syz.3.4172'. [ 87.433157][T12019] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4183'. [ 87.475975][T12025] loop2: detected capacity change from 0 to 1024 [ 87.498918][T12025] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 87.557223][T12025] EXT4-fs error (device loop2): ext4_empty_dir:3115: inode #11: block 623: comm syz.2.4185: Attempting to read directory block (623) that is past i_size (638464) [ 87.574551][ T29] audit: type=1400 audit(2000002843.741:344): avc: denied { remove_name } for pid=12022 comm="syz.2.4185" name="file0" dev="loop2" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 87.634745][ T3269] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 87.929923][T12081] 9pnet_fd: Insufficient options for proto=fd [ 88.003393][T12097] : renamed from vlan0 (while UP) [ 88.389268][T12138] Restarting kernel threads ... done. [ 88.429153][T11877] loop4: detected capacity change from 0 to 262144 [ 88.456533][T12160] netlink: 'syz.1.4251': attribute type 3 has an invalid length. [ 88.541771][T12177] netlink: 'syz.1.4258': attribute type 11 has an invalid length. [ 88.652971][T12198] netlink: 'syz.1.4268': attribute type 1 has an invalid length. [ 88.660748][T12198] netlink: 'syz.1.4268': attribute type 2 has an invalid length. [ 88.721091][T12207] x_tables: duplicate underflow at hook 3 [ 89.129569][T12295] syz.2.4316 (12295): /proc/12294/oom_adj is deprecated, please use /proc/12294/oom_score_adj instead. [ 89.227584][T12313] xt_TCPMSS: Only works on TCP SYN packets [ 89.248651][T12319] Cannot find map_set index 0 as target [ 89.311425][T12333] geneve2: entered promiscuous mode [ 89.346877][T12328] loop3: detected capacity change from 0 to 8192 [ 89.392488][T12328] loop3: p1 p2 p3 p4 [ 89.396627][T12328] loop3: p1 size 108922248 extends beyond EOD, truncated [ 89.419119][T12328] loop3: p2 start 861536256 is beyond EOD, truncated [ 89.425879][T12328] loop3: p3 start 851968 is beyond EOD, truncated [ 89.432314][T12328] loop3: p4 size 65536 extends beyond EOD, truncated [ 89.484908][T12365] x_tables: duplicate underflow at hook 2 [ 89.548913][T12374] xt_nat: multiple ranges no longer supported [ 90.294223][T12537] (unnamed net_device) (uninitialized): Unable to set up delay as MII monitoring is disabled [ 90.376469][T12555] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check. [ 90.576063][T12596] xt_TPROXY: Can be used only with -p tcp or -p udp [ 90.685678][T12619] loop0: detected capacity change from 0 to 1764 [ 91.374611][ T29] kauditd_printk_skb: 32 callbacks suppressed [ 91.374624][ T29] audit: type=1400 audit(2000000000.433:377): avc: denied { getopt } for pid=12738 comm="syz.0.4531" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 91.424093][T12732] loop4: detected capacity change from 0 to 2048 [ 91.478497][T12732] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 91.533518][T12755] mapping of prio or/and queue is allowed only from OUTPUT/FORWARD/POSTROUTING chains [ 91.549501][T12732] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.4528: corrupted in-inode xattr: invalid ea_ino [ 91.578031][T12761] ip6gretap0 speed is unknown, defaulting to 1000 [ 91.584667][T12761] ip6gretap0 speed is unknown, defaulting to 1000 [ 91.591665][T12761] ip6gretap0 speed is unknown, defaulting to 1000 [ 91.598591][T12761] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 91.606267][T12761] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 91.620034][ T3265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 91.629487][T12761] ip6gretap0 speed is unknown, defaulting to 1000 [ 91.659038][T12761] ip6gretap0 speed is unknown, defaulting to 1000 [ 91.692578][T12761] ip6gretap0 speed is unknown, defaulting to 1000 [ 91.723941][T12761] ip6gretap0 speed is unknown, defaulting to 1000 [ 91.753340][T12761] ip6gretap0 speed is unknown, defaulting to 1000 [ 91.852370][T12782] validate_nla: 11 callbacks suppressed [ 91.852386][T12782] netlink: 'syz.4.4549': attribute type 3 has an invalid length. [ 91.865698][T12782] __nla_validate_parse: 17 callbacks suppressed [ 91.865752][T12782] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.4549'. [ 92.081017][T12823] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw [ 92.207110][ T29] audit: type=1326 audit(2000000001.199:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12845 comm="syz.3.4581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68923b9eb9 code=0x7ffc0000 [ 92.230623][ T29] audit: type=1326 audit(2000000001.199:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12845 comm="syz.3.4581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68923b9eb9 code=0x7ffc0000 [ 92.275719][ T29] audit: type=1326 audit(2000000001.246:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12845 comm="syz.3.4581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f68923b9eb9 code=0x7ffc0000 [ 92.278300][T12858] x_tables: ip_tables: REDIRECT target: used from hooks INPUT, but only usable from PREROUTING/OUTPUT [ 92.299205][ T29] audit: type=1326 audit(2000000001.246:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12845 comm="syz.3.4581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68923b9eb9 code=0x7ffc0000 [ 92.323198][T12861] IPv6: Can't replace route, no match found [ 92.333599][ T29] audit: type=1326 audit(2000000001.246:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12845 comm="syz.3.4581" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68923b9eb9 code=0x7ffc0000 [ 92.388120][T12865] mmap: syz.2.4589 (12865): VmData 29073408 exceed data ulimit 2. Update limits or use boot option ignore_rlimit_data. [ 92.398472][ T29] audit: type=1400 audit(2000000001.375:383): avc: denied { ioctl } for pid=12862 comm="syz.3.4590" path="socket:[32396]" dev="sockfs" ino=32396 ioctlcmd=0x89f1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 92.471141][ T29] audit: type=1400 audit(2000000001.449:384): avc: denied { connect } for pid=12877 comm="syz.3.4597" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 92.528773][ T29] audit: type=1400 audit(2000000001.504:385): avc: denied { setcurrent } for pid=12894 comm="syz.2.4605" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 92.577350][T12902] Driver unsupported XDP return value 0 on prog (id 322) dev N/A, expect packet loss! [ 92.658223][ T29] audit: type=1326 audit(2000000001.624:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12920 comm="syz.2.4620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff162459eb9 code=0x7ffc0000 [ 92.696970][T12930] netlink: 'syz.1.4622': attribute type 9 has an invalid length. [ 92.761533][T12944] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4630'. [ 92.814160][T12949] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4632'. [ 92.836085][T12957] netlink: 'syz.1.4636': attribute type 4 has an invalid length. [ 92.843927][T12957] netlink: 152 bytes leftover after parsing attributes in process `syz.1.4636'. [ 92.867650][T12957] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 92.999064][T12995] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 93.015543][T12995] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 93.098328][T13006] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 93.235869][T13050] netlink: 'syz.4.4682': attribute type 21 has an invalid length. [ 93.243770][T13050] netlink: 128 bytes leftover after parsing attributes in process `syz.4.4682'. [ 93.254609][T13053] netlink: 128124 bytes leftover after parsing attributes in process `syz.0.4683'. [ 93.412794][T13090] loop0: detected capacity change from 0 to 128 [ 93.479623][T13099] ip6gretap0 speed is unknown, defaulting to 1000 [ 93.537788][T13110] ip6gretap0 speed is unknown, defaulting to 1000 [ 93.861434][T13180] netlink: 6 bytes leftover after parsing attributes in process `syz.4.4742'. [ 93.878828][T13184] loop0: detected capacity change from 0 to 512 [ 93.912920][T13184] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 93.925599][T13184] ext4 filesystem being mounted at /834/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 93.931670][T13196] 8021q: adding VLAN 0 to HW filter on device bond3 [ 93.939749][T13184] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #2: comm syz.0.4744: corrupted inode contents [ 93.955550][T13184] EXT4-fs error (device loop0): ext4_dirty_inode:6014: inode #2: comm syz.0.4744: mark_inode_dirty error [ 93.968099][T13184] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #2: comm syz.0.4744: corrupted inode contents [ 94.000813][ T3263] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 94.145971][T13235] loop0: detected capacity change from 0 to 1024 [ 94.159475][T13235] EXT4-fs: Ignoring removed orlov option [ 94.168141][T13235] EXT4-fs: Ignoring removed bh option [ 94.196807][T13235] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 94.228759][ T3263] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 94.356859][T13283] @: renamed from veth0_vlan (while UP) [ 94.392388][T13292] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4795'. [ 94.401454][T13292] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4795'. [ 94.410482][T13292] netlink: 160 bytes leftover after parsing attributes in process `syz.3.4795'. [ 94.439787][T13301] netlink: 'syz.0.4799': attribute type 10 has an invalid length. [ 94.503740][T13314] openvswitch: netlink: IPv4 tunnel dst address is zero [ 94.642438][T13344] 8021q: adding VLAN 0 to HW filter on device bond1 [ 94.682971][T13353] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0) [ 94.745143][T13365] netlink: 'syz.0.4831': attribute type 32 has an invalid length. [ 94.757725][T13369] sctp: [Deprecated]: syz.2.4833 (pid 13369) Use of int in maxseg socket option. [ 94.757725][T13369] Use struct sctp_assoc_value instead [ 94.830225][T13385] netlink: 'syz.1.4841': attribute type 16 has an invalid length. [ 94.891803][T13401] netlink: 'syz.2.4848': attribute type 4 has an invalid length. [ 94.925411][T13406] netlink: 'syz.1.4851': attribute type 1 has an invalid length. [ 95.038001][T13433] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw [ 95.088645][T13443] netlink: 'syz.1.4868': attribute type 6 has an invalid length. [ 95.142499][T13451] ip6gretap0 speed is unknown, defaulting to 1000 [ 95.173450][T13459] SELinux: Context :}B is not valid (left unmapped). [ 95.671577][T13555] ip6gretap0 speed is unknown, defaulting to 1000 [ 95.789955][T13583] xt_TCPMSS: Only works on TCP SYN packets [ 96.671069][T13757] ip6gretap0 speed is unknown, defaulting to 1000 [ 96.763358][T13775] kernel profiling enabled (shift: 0) [ 96.906436][ T29] kauditd_printk_skb: 50 callbacks suppressed [ 96.906456][ T29] audit: type=1400 audit(2000000005.537:437): avc: denied { read } for pid=13799 comm="syz.1.5045" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 96.984920][ T29] audit: type=1326 audit(2000000005.611:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13809 comm="syz.0.5049" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0172539eb9 code=0x0 [ 97.099643][T13824] ip6gretap0 speed is unknown, defaulting to 1000 [ 97.168736][T13824] ip6gretap0 speed is unknown, defaulting to 1000 [ 97.255217][ T29] audit: type=1400 audit(2000000005.861:439): avc: denied { connect } for pid=13835 comm="syz.4.5061" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 97.289437][ T29] audit: type=1400 audit(2000000005.888:440): avc: denied { bind } for pid=13839 comm="syz.4.5064" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 97.349585][T13848] __nla_validate_parse: 10 callbacks suppressed [ 97.349599][T13848] netlink: 32 bytes leftover after parsing attributes in process `syz.1.5068'. [ 97.391120][T13852] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5070'. [ 97.486117][ T29] audit: type=1400 audit(2000000006.073:441): avc: denied { ioctl } for pid=13865 comm="syz.4.5077" path="socket:[35255]" dev="sockfs" ino=35255 ioctlcmd=0x8941 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 97.528256][T13870] autofs4:pid:13870:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(1.43008), cmd(0xc0189374) [ 97.541827][T13870] autofs4:pid:13870:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc0189374) [ 97.633774][T13885] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5087'. [ 97.710636][T13896] validate_nla: 5 callbacks suppressed [ 97.710649][T13896] netlink: 'syz.1.5092': attribute type 2 has an invalid length. [ 97.723952][T13896] netlink: 'syz.1.5092': attribute type 8 has an invalid length. [ 97.731679][T13896] netlink: 132 bytes leftover after parsing attributes in process `syz.1.5092'. [ 97.869693][T13912] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5100'. [ 97.887257][T13788] kexec: Could not allocate control_code_buffer [ 97.963075][T13929] netlink: 'syz.0.5107': attribute type 6 has an invalid length. [ 98.072243][T13957] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5121'. [ 98.137698][T13971] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5129'. [ 98.149668][T13974] ieee802154 phy0 wpan0: encryption failed: -22 [ 98.159390][T13975] Non-string source [ 98.192777][T13981] netlink: 'syz.3.5135': attribute type 4 has an invalid length. [ 98.224845][T13989] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5138'. [ 98.343221][T14015] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5151'. [ 98.353763][T14019] xt_HMARK: proto mask must be zero with L3 mode [ 98.403778][T14030] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5157'. [ 98.455913][ T29] audit: type=1400 audit(2000000006.968:442): avc: denied { audit_read } for pid=14039 comm="syz.4.5161" capability=37 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 98.517422][ T29] audit: type=1326 audit(2000000007.033:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14047 comm="syz.4.5166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f284b9d9eb9 code=0x7ffc0000 [ 98.541005][ T29] audit: type=1326 audit(2000000007.033:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14047 comm="syz.4.5166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f284b9d9eb9 code=0x7ffc0000 [ 98.564701][ T29] audit: type=1326 audit(2000000007.033:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14047 comm="syz.4.5166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=208 compat=0 ip=0x7f284b9d9eb9 code=0x7ffc0000 [ 98.588114][ T29] audit: type=1326 audit(2000000007.033:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14047 comm="syz.4.5166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f284b9d9eb9 code=0x7ffc0000 [ 98.640737][T14059] xt_CT: No such helper "netbios-ns" [ 98.919068][T14110] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD [ 99.039268][T14128] loop2: detected capacity change from 0 to 2048 [ 99.058171][T14128] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 99.077580][ T3269] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.444157][T14176] No such timeout policy "syz1" [ 99.653873][T14213] xt_TCPMSS: Only works on TCP SYN packets [ 100.007728][T14269] loop4: detected capacity change from 0 to 2048 [ 100.014878][T14269] EXT4-fs: Ignoring removed bh option [ 100.043938][T14269] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 100.054236][T14283] SELinux: policydb magic number 0x9b861da2 does not match expected magic number 0xf97cff8c [ 100.066307][T14283] SELinux: failed to load policy [ 100.067357][T14269] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 100.124283][ T3265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.223530][T14303] loop4: detected capacity change from 0 to 4096 [ 100.248581][T14303] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 100.265981][T14303] EXT4-fs error (device loop4): ext4_acquire_dquot:6848: comm syz.4.5288: Failed to acquire dquot type 0 [ 100.291716][T14319] program syz.0.5295 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 100.301636][ T3265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.420962][T14347] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 0, id = 0 [ 100.423939][T14349] ip6t_srh: unknown srh match flags 744E [ 101.386206][T14368] netlink: 'syz.4.5317': attribute type 1 has an invalid length. [ 101.393958][T14368] netlink: 'syz.4.5317': attribute type 2 has an invalid length. [ 101.625328][T14433] cgroup: none used incorrectly [ 101.637074][T14436] Timeout policy `syz0' can only be used by L3 protocol number 34825 [ 101.980226][T14522] x_tables: duplicate entry at hook 2 [ 102.038830][T14534] xt_CT: No such helper "snmp_trap" [ 102.137650][T14568] cgroup: Invalid name [ 102.227996][T14587] xt_CT: No such helper "pptp" [ 102.234176][T14590] netlink: 'syz.1.5425': attribute type 4 has an invalid length. [ 102.348091][T14614] tmpfs: Bad value for 'mpol' [ 102.350841][T14620] __vm_enough_memory: pid: 14620, comm: syz.1.5440, bytes: 4503599627366400 not enough memory for the allocation [ 102.381045][T14617] loop3: detected capacity change from 0 to 2048 [ 102.407310][T14628] xt_limit: Overflow, try lower: 65536/2147483648 [ 102.437823][T14617] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 102.474990][ T29] kauditd_printk_skb: 24 callbacks suppressed [ 102.475035][ T29] audit: type=1400 audit(2000000010.679:469): avc: denied { accept } for pid=14646 comm="syz.0.5452" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 102.514042][ T3261] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.514759][T14653] openvswitch: netlink: Multiple metadata blocks provided [ 102.537042][ T29] audit: type=1400 audit(2000000010.679:470): avc: denied { unlink } for pid=14616 comm="syz.3.5438" name="file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 102.559501][ T29] audit: type=1400 audit(2000000010.716:471): avc: denied { setopt } for pid=14649 comm="syz.1.5454" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 102.940821][T14739] geneve2: entered promiscuous mode [ 102.941627][ T29] audit: type=1326 audit(2000000011.112:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14740 comm="syz.3.5498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68923b9eb9 code=0x7ffc0000 [ 102.946071][T14739] geneve2: entered allmulticast mode [ 102.969443][ T29] audit: type=1326 audit(2000000011.112:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14740 comm="syz.3.5498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68923b9eb9 code=0x7ffc0000 [ 103.010044][ T29] audit: type=1326 audit(2000000011.159:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14740 comm="syz.3.5498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7f68923b9eb9 code=0x7ffc0000 [ 103.032892][T14750] xt_ipcomp: unknown flags 12 [ 103.033536][ T29] audit: type=1326 audit(2000000011.159:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14740 comm="syz.3.5498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68923b9eb9 code=0x7ffc0000 [ 103.061518][ T29] audit: type=1326 audit(2000000011.159:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14740 comm="syz.3.5498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68923b9eb9 code=0x7ffc0000 [ 103.384208][T14803] __nla_validate_parse: 15 callbacks suppressed [ 103.384222][T14803] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5527'. [ 103.416438][T14811] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5532'. [ 103.459230][T14811] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5532'. [ 103.486611][ T29] audit: type=1400 audit(2000000011.611:477): avc: denied { mount } for pid=14822 comm="syz.1.5537" name="/" dev="hugetlbfs" ino=38994 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=filesystem permissive=1 [ 103.520854][T14830] process 'syz.2.5540' launched '/dev/fd/3' with NULL argv: empty string added [ 103.545515][ T29] audit: type=1400 audit(2000000011.648:478): avc: denied { execute } for pid=14826 comm="syz.2.5540" dev="tmpfs" ino=1165 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 103.929219][T14891] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5571'. [ 104.256182][T14962] netlink: 'syz.4.5605': attribute type 32 has an invalid length. [ 104.264083][T14962] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5605'. [ 104.274303][T14962] (unnamed net_device) (uninitialized): Setting coupled_control to off (0) [ 104.346683][T14972] bond0: (slave ip6gre0): Error: Device can not be enslaved while up [ 104.643165][T15008] xt_hashlimit: max too large, truncated to 1048576 [ 104.771701][T15031] xt_CT: You must specify a L4 protocol and not use inversions on it [ 104.777377][T15034] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5640'. [ 104.872632][T15048] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5647'. [ 104.881675][T15048] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5647'. [ 105.355500][T15133] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5688'. [ 105.364589][T15133] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5688'. [ 105.482167][T15165] x_tables: ip_tables: icmp match: only valid for protocol 1 [ 105.576014][T15190] loop3: detected capacity change from 0 to 1024 [ 105.608207][T15190] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 105.657216][T15190] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.5717: Failed to acquire dquot type 0 [ 105.682326][ T3261] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.731383][T15224] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 105.905375][T15262] tmpfs: Bad value for 'mpol' [ 105.991644][T15282] tc_dump_action: action bad kind [ 106.098695][T15307] xt_limit: Overflow, try lower: 65536/2147483648 [ 106.686899][T15423] gretap1: entered promiscuous mode [ 106.692166][T15423] gretap1: entered allmulticast mode [ 106.780653][T15430] x_tables: unsorted entry at hook 2 [ 106.789760][T15434] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 106.797967][T15434] vhci_hcd: USB_PORT_FEAT_BH_PORT_RESET req not supported for USB 2.0 roothub [ 107.072713][T15488] autofs4:pid:15488:validate_dev_ioctl: path string terminator missing for cmd(0xc018937e) [ 107.465493][T15541] netlink: 'syz.2.5886': attribute type 21 has an invalid length. [ 107.473372][T15541] netlink: 'syz.2.5886': attribute type 3 has an invalid length. [ 107.605808][T15563] xt_time: unknown flags 0x4 [ 107.849520][T15605] bond0: (slave ip6gre0): Error: Device can not be enslaved while up [ 108.036286][T15631] xt_hashlimit: max too large, truncated to 1048576 [ 108.143096][T15643] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 108.150343][ T29] kauditd_printk_skb: 33 callbacks suppressed [ 108.150356][ T29] audit: type=1400 audit(2000000015.912:510): avc: denied { execmod } for pid=15644 comm="syz.2.5939" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=40914 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 108.209765][T15655] netlink: 'syz.4.5942': attribute type 29 has an invalid length. [ 108.220336][T15653] xt_ipvs: protocol family 7 not supported [ 108.333658][T15680] xt_CT: You must specify a L4 protocol and not use inversions on it [ 108.337511][T15678] SELinux: Context system_u:object_r:dhcp_state_t:s0 is not valid (left unmapped). [ 108.351378][ T29] audit: type=1400 audit(2000000016.106:511): avc: denied { relabelto } for pid=15677 comm="syz.2.5954" name="bus" dev="tmpfs" ino=5381 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:dhcp_state_t:s0" [ 108.377779][ T29] audit: type=1400 audit(2000000016.106:512): avc: denied { associate } for pid=15677 comm="syz.2.5954" name="bus" dev="tmpfs" ino=5381 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:dhcp_state_t:s0" [ 108.424142][ T29] audit: type=1400 audit(2000000016.170:513): avc: denied { read write } for pid=15692 comm="syz.3.5962" name="ppp" dev="devtmpfs" ino=116 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 108.457207][ T29] audit: type=1400 audit(2000000016.180:514): avc: denied { unlink } for pid=3269 comm="syz-executor" name="bus" dev="tmpfs" ino=5381 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:dhcp_state_t:s0" [ 108.483764][ T29] audit: type=1400 audit(2000000016.189:515): avc: denied { open } for pid=15692 comm="syz.3.5962" path="/dev/ppp" dev="devtmpfs" ino=116 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 108.489612][T15703] netlink: 'syz.2.5965': attribute type 9 has an invalid length. [ 108.514822][T15703] netlink: 'syz.2.5965': attribute type 7 has an invalid length. [ 108.522681][T15703] netlink: 'syz.2.5965': attribute type 8 has an invalid length. [ 108.662248][T15733] ieee802154 phy0 wpan0: encryption failed: -90 [ 108.845689][T15768] netlink: 'syz.2.5999': attribute type 21 has an invalid length. [ 108.898366][T15780] netlink: 'syz.3.6005': attribute type 3 has an invalid length. [ 108.962494][T15793] tmpfs: Bad value for 'mpol' [ 108.964296][ T29] audit: type=1400 audit(2000000016.669:516): avc: denied { mounton } for pid=15790 comm="syz.3.6012" path="/1183/file0" dev="tmpfs" ino=6003 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 109.082994][T15812] __nla_validate_parse: 20 callbacks suppressed [ 109.083009][T15812] netlink: 80 bytes leftover after parsing attributes in process `syz.2.6022'. [ 109.155600][T15830] xt_recent: hitcount (4294967295) is larger than allowed maximum (65535) [ 109.178426][ T29] audit: type=1326 audit(2000000016.872:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15832 comm="syz.4.6032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f284b9d9eb9 code=0x7ffc0000 [ 109.201916][ T29] audit: type=1326 audit(2000000016.872:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15832 comm="syz.4.6032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f284b9d9eb9 code=0x7ffc0000 [ 109.225454][ T29] audit: type=1326 audit(2000000016.872:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15832 comm="syz.4.6032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7f284b9d9eb9 code=0x7ffc0000 [ 109.328223][T15848] netlink: 4748 bytes leftover after parsing attributes in process `syz.3.6039'. [ 109.403351][T15860] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 109.412306][T15860] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 109.421228][T15860] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 109.430212][T15860] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 109.439229][T15860] vxlan0: entered promiscuous mode [ 109.444374][T15860] vxlan0: entered allmulticast mode [ 109.451528][T15860] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 109.460475][T15860] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 109.469362][T15860] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 109.478243][T15860] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 109.539592][T15878] netlink: 'syz.4.6054': attribute type 13 has an invalid length. [ 109.557930][T15880] loop2: detected capacity change from 0 to 512 [ 109.565857][T15880] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.6055: corrupted in-inode xattr: invalid ea_ino [ 109.582985][T15880] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.6055: couldn't read orphan inode 15 (err -117) [ 109.595825][T15880] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 109.596543][T15884] netlink: 20 bytes leftover after parsing attributes in process `syz.3.6057'. [ 109.636029][ T3269] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.686462][T15898] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6064'. [ 109.818868][T15924] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6076'. [ 109.886131][T15938] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6083'. [ 109.964975][T15954] netlink: 100 bytes leftover after parsing attributes in process `syz.2.6092'. [ 110.037014][T15970] netlink: 20 bytes leftover after parsing attributes in process `syz.4.6099'. [ 110.051097][T15973] unsupported nlmsg_type 40 [ 110.225405][T16014] netlink: 'syz.4.6122': attribute type 7 has an invalid length. [ 110.251742][T16020] xt_CT: You must specify a L4 protocol and not use inversions on it [ 110.258080][T16019] netlink: 44 bytes leftover after parsing attributes in process `syz.2.6124'. [ 110.282184][T16024] loop4: detected capacity change from 0 to 2048 [ 110.297501][T16024] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 110.318222][T16024] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 110.331483][T16024] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a002e01c, mo2=0002] [ 110.336776][T16033] netlink: 'syz.3.6130': attribute type 1 has an invalid length. [ 110.339818][T16024] System zones: 0-19 [ 110.352061][T16024] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 110.398312][T16041] netlink: 'syz.3.6135': attribute type 21 has an invalid length. [ 110.406263][T16041] netlink: 156 bytes leftover after parsing attributes in process `syz.3.6135'. [ 110.416129][ T3265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 110.437523][T16047] loop3: detected capacity change from 0 to 256 [ 110.598062][T16079] openvswitch: netlink: VXLAN extension message has 4 unknown bytes. [ 110.756761][T16113] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 110.764003][T16113] IPv6: NLM_F_CREATE should be set when creating new route [ 110.773412][T16112] (unnamed net_device) (uninitialized): option all_slaves_active: invalid value (14) [ 110.851548][T16132] loop4: detected capacity change from 0 to 1764 [ 110.860258][T16135] xt_TCPMSS: Only works on TCP SYN packets [ 111.121778][T16198] loop3: detected capacity change from 0 to 512 [ 111.141544][T16204] loop2: detected capacity change from 0 to 128 [ 111.150692][T16198] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0002] [ 111.168094][T16198] System zones: 0-2, 18-18, 34-35 [ 111.180058][T16198] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 111.200885][T16198] ext4 filesystem being mounted at /1252/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 111.229045][T16198] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.6211: Failed to acquire dquot type 1 [ 111.258940][ T3261] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 112.018094][T16241] tmpfs: Bad value for 'mpol' [ 112.237904][T16269] RDS: rds_bind could not find a transport for 2001::2, load rds_tcp or rds_rdma? [ 112.269964][T16277] netlink: 'syz.2.6248': attribute type 10 has an invalid length. [ 112.296237][T16277] 8021q: adding VLAN 0 to HW filter on device bond0 [ 112.304078][T16277] team0: Port device bond0 added [ 112.435638][T16315] xt_socket: unknown flags 0x50 [ 112.470302][T16327] SELinux: Context *)&^]* is not valid (left unmapped). [ 112.611200][T16357] cgroup: release_agent respecified [ 113.667850][ T29] kauditd_printk_skb: 85 callbacks suppressed [ 113.667865][ T29] audit: type=1326 audit(2000000021.007:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16432 comm="syz.1.6326" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f30656e9eb9 code=0x0 [ 113.777302][ T29] audit: type=1400 audit(2000000021.109:604): avc: denied { create } for pid=16438 comm="syz.1.6329" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 113.807744][ T29] audit: type=1400 audit(2000000021.136:605): avc: denied { write } for pid=16438 comm="syz.1.6329" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 113.847409][ T29] audit: type=1400 audit(2000000021.182:606): avc: denied { create } for pid=16448 comm="syz.1.6334" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 113.867225][ T29] audit: type=1400 audit(2000000021.182:607): avc: denied { ioctl } for pid=16448 comm="syz.1.6334" path="socket:[44356]" dev="sockfs" ino=44356 ioctlcmd=0x7459 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 113.929589][ T29] audit: type=1400 audit(2000000021.247:608): avc: denied { create } for pid=16457 comm="syz.0.6338" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 113.950817][T16458] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 113.957999][ T29] audit: type=1400 audit(2000000021.275:609): avc: denied { setopt } for pid=16457 comm="syz.0.6338" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 113.980824][ T29] audit: type=1400 audit(2000000021.293:610): avc: denied { ioctl } for pid=16463 comm="syz.0.6341" path="socket:[43898]" dev="sockfs" ino=43898 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 114.031829][ T29] audit: type=1400 audit(2000000021.348:611): avc: denied { getopt } for pid=16475 comm="syz.1.6347" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 114.069061][ T29] audit: type=1400 audit(2000000021.385:612): avc: denied { read write } for pid=16481 comm="syz.1.6350" name="rdma_cm" dev="devtmpfs" ino=226 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 114.374475][T16557] loop0: detected capacity change from 0 to 4096 [ 114.382890][T16557] EXT4-fs: Ignoring removed nomblk_io_submit option [ 114.396287][T16557] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 114.413315][T16557] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #15: comm syz.0.6387: corrupted inode contents [ 114.426871][T16557] EXT4-fs error (device loop0): ext4_dirty_inode:6014: inode #15: comm syz.0.6387: mark_inode_dirty error [ 114.439349][T16557] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #15: comm syz.0.6387: corrupted inode contents [ 114.452135][T16557] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #15: comm syz.0.6387: mark_inode_dirty error [ 114.464100][T16557] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #15: comm syz.0.6387: corrupted inode contents [ 114.483325][T16557] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #15: comm syz.0.6387: mark_inode_dirty error [ 114.495864][T16557] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #15: comm syz.0.6387: corrupted inode contents [ 114.508637][T16557] EXT4-fs error (device loop0): ext4_truncate:4241: inode #15: comm syz.0.6387: mark_inode_dirty error [ 114.535204][T16557] EXT4-fs error (device loop0): ext4_evict_inode:262: comm syz.0.6387: couldn't truncate inode 15 (err -117) [ 114.565598][ T3263] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 114.590326][T16594] __nla_validate_parse: 18 callbacks suppressed [ 114.590343][T16594] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6404'. [ 114.662068][T16605] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 114.669316][T16605] IPv6: NLM_F_CREATE should be set when creating new route [ 114.676530][T16605] IPv6: NLM_F_CREATE should be set when creating new route [ 114.708473][T16612] netlink: 'syz.0.6423': attribute type 5 has an invalid length. [ 114.989941][T16677] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6446'. [ 115.006225][T16677] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for erspan1 [ 115.014676][T16681] netlink: 64 bytes leftover after parsing attributes in process `syz.4.6448'. [ 115.040031][T16685] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6450'. [ 115.138556][T16705] loop4: detected capacity change from 0 to 2048 [ 115.159733][T16711] loop0: detected capacity change from 0 to 512 [ 115.171063][T16705] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 115.183285][T16711] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 115.199079][ T3265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 115.225888][T16711] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.6463: invalid indirect mapped block 1 (level 1) [ 115.245569][T16726] netlink: 'syz.4.6467': attribute type 3 has an invalid length. [ 115.258964][T16711] EXT4-fs (loop0): 1 truncate cleaned up [ 115.265122][T16711] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 115.279117][T16711] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 115.314306][T16736] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6473'. [ 115.323268][T16736] netlink: 40 bytes leftover after parsing attributes in process `syz.4.6473'. [ 115.335417][T16738] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6474'. [ 115.364676][T16742] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 115.448162][T16764] netlink: 24 bytes leftover after parsing attributes in process `syz.4.6487'. [ 115.503234][T16778] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6493'. [ 115.663557][T16806] netlink: 20 bytes leftover after parsing attributes in process `syz.1.6507'. [ 115.731161][T16816] loop4: detected capacity change from 0 to 4096 [ 115.746567][T16816] EXT4-fs: Ignoring removed nomblk_io_submit option [ 115.755280][T16816] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 115.774686][T16816] EXT4-fs error (device loop4): ext4_do_update_inode:5154: inode #15: comm syz.4.6512: corrupted inode contents [ 115.786920][T16816] EXT4-fs error (device loop4): ext4_dirty_inode:6014: inode #15: comm syz.4.6512: mark_inode_dirty error [ 115.798768][T16816] EXT4-fs error (device loop4): ext4_do_update_inode:5154: inode #15: comm syz.4.6512: corrupted inode contents [ 115.811640][T16816] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #15: comm syz.4.6512: mark_inode_dirty error [ 115.823208][T16816] EXT4-fs error (device loop4): ext4_do_update_inode:5154: inode #15: comm syz.4.6512: corrupted inode contents [ 115.835937][T16816] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #15: comm syz.4.6512: mark_inode_dirty error [ 115.847913][T16816] EXT4-fs error (device loop4): ext4_do_update_inode:5154: inode #15: comm syz.4.6512: corrupted inode contents [ 115.860998][T16816] EXT4-fs error (device loop4): ext4_truncate:4241: inode #15: comm syz.4.6512: mark_inode_dirty error [ 115.872374][T16816] EXT4-fs error (device loop4): ext4_evict_inode:262: comm syz.4.6512: couldn't truncate inode 15 (err -117) [ 115.895072][ T3265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 116.038161][T16865] netlink: 'syz.1.6536': attribute type 5 has an invalid length. [ 116.263478][T16881] SELinux: Context jz- l||q:G'd:$[2B$g,i [ 116.263478][T16881] D%& iYj#Գe_Ǚ [ 116.263478][T16881] ZB=\T&ՂDSWc#O is not valid (left unmapped). [ 116.281191][T16885] xt_HMARK: spi-set and port-set can't be combined [ 116.377165][T16903] xt_hashlimit: max too large, truncated to 1048576 [ 116.557674][T16946] ip6gretap0 speed is unknown, defaulting to 1000 [ 116.594177][T16954] netlink: 'syz.0.6580': attribute type 21 has an invalid length. [ 116.657542][T16965] netlink: 'syz.1.6586': attribute type 10 has an invalid length. [ 116.681055][T16965] batman_adv: batadv0: Adding interface: team0 [ 116.687281][T16965] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 116.712462][T16965] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active [ 116.729567][T16970] netlink: 'syz.4.6588': attribute type 5 has an invalid length. [ 116.741506][T16970] ip6erspan0: entered promiscuous mode [ 116.930623][T17008] SELinux: Context target default is not valid (left unmapped). [ 116.996634][T17029] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 117.129458][T17059] netlink: 'syz.4.6632': attribute type 21 has an invalid length. [ 117.139089][T17063] netlink: 'syz.0.6633': attribute type 5 has an invalid length. [ 117.149109][T17063] ip6erspan0: entered promiscuous mode [ 117.196182][T17074] netlink: zone id is out of range [ 117.201344][T17074] netlink: zone id is out of range [ 117.206476][T17074] netlink: zone id is out of range [ 117.211613][T17074] netlink: zone id is out of range [ 117.216752][T17074] netlink: zone id is out of range [ 117.339504][T17087] netlink: 'syz.0.6646': attribute type 2 has an invalid length. [ 117.660497][T17129] geneve2: entered promiscuous mode [ 117.665787][T17129] geneve2: entered allmulticast mode [ 117.800755][T17145] netlink: 'syz.4.6675': attribute type 10 has an invalid length. [ 117.817924][T17145] batman_adv: batadv0: Adding interface: team0 [ 117.824166][T17145] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 117.849452][T17145] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active [ 118.451787][T17206] usb usb8: usbfs: process 17206 (syz.1.6704) did not claim interface 0 before use [ 118.574837][T17229] /dev/nullb0: Can't lookup blockdev [ 119.089444][ T29] kauditd_printk_skb: 115 callbacks suppressed [ 119.089457][ T29] audit: type=1326 audit(2000000026.010:728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17302 comm="syz.4.6752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f284b9d9eb9 code=0x7ffc0000 [ 119.139758][ T29] audit: type=1326 audit(2000000026.047:729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17302 comm="syz.4.6752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=109 compat=0 ip=0x7f284b9d9eb9 code=0x7ffc0000 [ 119.163598][ T29] audit: type=1326 audit(2000000026.047:730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17302 comm="syz.4.6752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f284b9d9eb9 code=0x7ffc0000 [ 119.187118][ T29] audit: type=1326 audit(2000000026.047:731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17302 comm="syz.4.6752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f284b9d9eb9 code=0x7ffc0000 [ 119.243242][T17313] netlink: 'syz.4.6757': attribute type 1 has an invalid length. [ 119.283946][ T29] audit: type=1400 audit(2000000026.203:732): avc: denied { read } for pid=17318 comm="syz.1.6760" name="event2" dev="devtmpfs" ino=227 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 119.328359][ T29] audit: type=1400 audit(2000000026.203:733): avc: denied { ioctl } for pid=17318 comm="syz.1.6760" path="/dev/input/event2" dev="devtmpfs" ino=227 ioctlcmd=0x4504 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 119.536620][ T29] audit: type=1400 audit(2000000026.434:734): avc: denied { ioctl } for pid=17349 comm="syz.4.6775" path="socket:[46798]" dev="sockfs" ino=46798 ioctlcmd=0x8982 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 119.600166][T17356] openvswitch: netlink: IP tunnel dst address not specified [ 119.714649][T17380] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=17380 comm=syz.4.6789 [ 119.717346][ T29] audit: type=1400 audit(2000000026.600:735): avc: denied { getopt } for pid=17381 comm="syz.2.6791" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 119.771057][ T29] audit: type=1400 audit(2000000026.600:736): avc: denied { nlmsg_read } for pid=17379 comm="syz.4.6789" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1 [ 119.811546][T17396] nfs4: Bad value for 'source' [ 119.820727][T17400] lo: entered promiscuous mode [ 119.825602][T17400] lo: left allmulticast mode [ 119.904599][ T29] audit: type=1400 audit(2000000026.757:737): avc: denied { write } for pid=17407 comm="syz.2.6805" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 119.930417][T17414] ieee802154 phy0 wpan0: encryption failed: -22 [ 119.982397][T17424] netlink: 'syz.2.6813': attribute type 10 has an invalid length. [ 120.014770][T17424] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 120.023238][T17424] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 120.044439][T17432] SET target dimension over the limit! [ 120.056113][T17434] xt_CT: You must specify a L4 protocol and not use inversions on it [ 120.228632][T17472] program syz.4.6836 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 120.279838][T17478] loop4: detected capacity change from 0 to 128 [ 120.325599][T17491] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: mode dependency failed, not supported in mode active-backup(1) [ 120.358409][T17498] netlink: zone id is out of range [ 120.363552][T17498] netlink: zone id is out of range [ 120.368712][T17498] netlink: zone id is out of range [ 120.373839][T17498] netlink: zone id is out of range [ 120.379000][T17498] netlink: zone id is out of range [ 120.384096][T17498] netlink: zone id is out of range [ 120.389256][T17498] netlink: zone id is out of range [ 120.394434][T17498] netlink: zone id is out of range [ 120.399607][T17498] netlink: zone id is out of range [ 120.448780][T17514] __nla_validate_parse: 22 callbacks suppressed [ 120.448794][T17514] netlink: 32 bytes leftover after parsing attributes in process `syz.1.6856'. [ 120.537367][T17531] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6864'. [ 120.545052][T17525] loop0: detected capacity change from 0 to 4096 [ 120.546278][T17531] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6864'. [ 120.589850][T17525] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 120.613193][T17525] tmpfs: Bad value for 'mpol' [ 120.627582][ T3263] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 120.726009][T17565] --map-set only usable from mangle table [ 120.846214][T17590] netlink: 44 bytes leftover after parsing attributes in process `syz.2.6893'. [ 120.938353][T17613] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6904'. [ 120.946423][T17611] loop2: detected capacity change from 0 to 2048 [ 120.958736][T17611] EXT4-fs: Ignoring removed mblk_io_submit option [ 121.010260][T17611] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 121.051416][ T3269] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 121.157243][T17652] loop2: detected capacity change from 0 to 4096 [ 121.183575][T17666] xt_TPROXY: Can be used only with -p tcp or -p udp [ 121.191723][T17652] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 121.222933][T17652] tmpfs: Bad value for 'mpol' [ 121.269427][ T3269] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 121.328777][T17693] x_tables: ip_tables: osf match: only valid for protocol 6 [ 121.388956][T17712] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6951'. [ 121.404185][T17712] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6951'. [ 121.438877][T17709] loop4: detected capacity change from 0 to 4096 [ 121.447008][T17720] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6955'. [ 121.468523][T17709] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 121.531642][T17709] tmpfs: Bad value for 'mpol' [ 121.576346][ T3265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 121.679402][T17766] loop2: detected capacity change from 0 to 1024 [ 121.699147][T17766] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 121.721915][T17766] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 121.740992][T17766] EXT4-fs (loop2): orphan cleanup on readonly fs [ 121.756811][T17766] EXT4-fs warning (device loop2): ext4_enable_quotas:7066: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 121.771458][T17766] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 121.796965][T17766] EXT4-fs (loop2): 1 truncate cleaned up [ 121.819676][T17766] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 121.856422][T17799] syz.0.6992 uses obsolete (PF_INET,SOCK_PACKET) [ 121.857971][T17802] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6993'. [ 121.876275][ T3269] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 122.008335][T17826] netlink: 132 bytes leftover after parsing attributes in process `syz.1.7005'. [ 122.046122][T17836] loop2: detected capacity change from 0 to 256 [ 122.061681][T17840] x_tables: duplicate underflow at hook 1 [ 122.389319][T17882] ip6gretap0 speed is unknown, defaulting to 1000 [ 122.476157][T17882] chnl_net:caif_netlink_parms(): no params data found [ 122.511973][ T11] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 122.541076][T17882] bridge0: port 1(bridge_slave_0) entered blocking state [ 122.548655][T17882] bridge0: port 1(bridge_slave_0) entered disabled state [ 122.557340][T17882] bridge_slave_0: entered allmulticast mode [ 122.563916][T17882] bridge_slave_0: entered promiscuous mode [ 122.573697][ T11] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 122.586065][T17882] bridge0: port 2(bridge_slave_1) entered blocking state [ 122.593240][T17882] bridge0: port 2(bridge_slave_1) entered disabled state [ 122.601221][T17882] bridge_slave_1: entered allmulticast mode [ 122.607953][T17882] bridge_slave_1: entered promiscuous mode [ 122.630265][ T11] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 122.649088][T17882] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 122.659413][T17882] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 122.680715][T17882] team0: Port device team_slave_0 added [ 122.689399][ T11] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 122.701051][T17882] team0: Port device team_slave_1 added [ 122.714803][T17882] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 122.721810][T17882] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 122.747730][T17882] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 122.758924][T17882] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 122.765967][T17882] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 122.792004][T17882] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 122.818304][T17882] hsr_slave_0: entered promiscuous mode [ 122.824415][T17882] hsr_slave_1: entered promiscuous mode [ 122.830285][T17882] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 122.837862][T17882] Cannot create hsr debugfs directory [ 122.867288][ T11] bridge_slave_1: left allmulticast mode [ 122.872985][ T11] bridge_slave_1: left promiscuous mode [ 122.878615][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 122.886807][ T11] bridge_slave_0: left allmulticast mode [ 122.892538][ T11] bridge_slave_0: left promiscuous mode [ 122.898290][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 122.991345][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 123.002039][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 123.012421][ T11] bond0 (unregistering): Released all slaves [ 123.088782][ T11] hsr_slave_0: left promiscuous mode [ 123.094585][ T11] hsr_slave_1: left promiscuous mode [ 123.101373][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 123.108816][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 123.116491][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 123.123999][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 123.133457][ T11] veth1_macvtap: left promiscuous mode [ 123.138930][ T11] veth0_macvtap: left promiscuous mode [ 123.144573][ T11] veth1_vlan: left promiscuous mode [ 123.149827][ T11] veth0_vlan: left promiscuous mode [ 123.234114][T17986] loop4: detected capacity change from 0 to 1764 [ 123.256569][T17989] loop2: detected capacity change from 0 to 1764 [ 123.320007][ T11] team0 (unregistering): Port device team_slave_1 removed [ 123.344199][ T11] team0 (unregistering): Port device team_slave_0 removed [ 123.681985][T17882] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 123.702124][T17882] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 123.729718][T18079] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 123.737472][T18082] x_tables: unsorted underflow at hook 2 [ 123.746937][T17882] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 123.770605][T17882] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 123.862399][T17882] 8021q: adding VLAN 0 to HW filter on device bond0 [ 123.875791][T17882] 8021q: adding VLAN 0 to HW filter on device team0 [ 123.896833][ T53] bridge0: port 1(bridge_slave_0) entered blocking state [ 123.903983][ T53] bridge0: port 1(bridge_slave_0) entered forwarding state [ 123.943114][ T1976] bridge0: port 2(bridge_slave_1) entered blocking state [ 123.950283][ T1976] bridge0: port 2(bridge_slave_1) entered forwarding state [ 124.074092][T18142] loop2: detected capacity change from 0 to 164 [ 124.144346][T17882] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 124.263662][T17882] veth0_vlan: entered promiscuous mode [ 124.277400][T17882] veth1_vlan: entered promiscuous mode [ 124.302564][T17882] veth0_macvtap: entered promiscuous mode [ 124.316760][T17882] veth1_macvtap: entered promiscuous mode [ 124.342296][T17882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 124.352876][T17882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 124.362721][T17882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 124.373247][T17882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 124.383261][T17882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 124.393777][T17882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 124.403881][T17882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 124.414332][T17882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 124.425869][T17882] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 124.434252][T17882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 124.445014][T17882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 124.454840][T17882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 124.465277][T17882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 124.475371][T17882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 124.485837][T17882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 124.495781][T17882] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 124.506230][T17882] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 124.517670][T17882] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 124.537727][T17882] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 124.546488][T17882] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 124.555258][T17882] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 124.563976][T17882] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 124.592680][ T29] kauditd_printk_skb: 62 callbacks suppressed [ 124.592694][ T29] audit: type=1400 audit(2000000031.095:799): avc: denied { mounton } for pid=17882 comm="syz-executor" path="/root/syzkaller.NCvKFA/syz-tmp" dev="sda1" ino=1950 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 124.597243][T18213] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=18213 comm=syz.1.7156 [ 124.606036][ T29] audit: type=1400 audit(2000000031.105:800): avc: denied { mount } for pid=17882 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 124.657894][ T29] audit: type=1400 audit(2000000031.105:801): avc: denied { mount } for pid=17882 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 124.687226][ T29] audit: type=1400 audit(2000000031.132:802): avc: denied { nlmsg_write } for pid=18212 comm="syz.1.7156" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1 [ 124.707967][ T29] audit: type=1400 audit(2000000031.132:803): avc: denied { read } for pid=18214 comm="syz.4.7157" name="nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 124.730970][ T29] audit: type=1400 audit(2000000031.132:804): avc: denied { open } for pid=18214 comm="syz.4.7157" path="/dev/nvram" dev="devtmpfs" ino=98 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 124.763882][ T29] audit: type=1400 audit(2000000031.206:805): avc: denied { mounton } for pid=17882 comm="syz-executor" path="/dev/binderfs" dev="devtmpfs" ino=454 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 124.855212][ T29] audit: type=1400 audit(2000000031.345:806): avc: denied { nlmsg_read } for pid=18251 comm="syz.1.7174" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 124.891400][ T29] audit: type=1400 audit(2000000031.372:807): avc: denied { create } for pid=18256 comm="syz.2.7176" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 124.918710][ T29] audit: type=1400 audit(2000000031.381:808): avc: denied { bind } for pid=18256 comm="syz.2.7176" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 125.306677][T18358] netlink: 'syz.2.7227': attribute type 21 has an invalid length. [ 125.372982][T18370] netlink: 'syz.3.7233': attribute type 3 has an invalid length. [ 125.420451][T18383] No such timeout policy "syz0" [ 125.557722][T18414] netlink: 'syz.2.7255': attribute type 21 has an invalid length. [ 125.649082][T18434] ebt_among: src integrity fail: 30a [ 125.783508][T18470] xt_CT: You must specify a L4 protocol and not use inversions on it [ 125.803095][T18474] netlink: 'syz.2.7284': attribute type 2 has an invalid length. [ 125.811119][T18474] netlink: 'syz.2.7284': attribute type 9 has an invalid length. [ 125.840534][T18480] xt_CT: You must specify a L4 protocol and not use inversions on it [ 125.902335][T18490] loop4: detected capacity change from 0 to 1024 [ 125.912247][T18490] EXT4-fs: Ignoring removed i_version option [ 125.932285][T18490] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 125.949713][T18490] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 125.978673][ T3265] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 126.052493][T18523] netlink: 'syz.1.7307': attribute type 21 has an invalid length. [ 126.071092][T18523] __nla_validate_parse: 18 callbacks suppressed [ 126.071109][T18523] netlink: 120 bytes leftover after parsing attributes in process `syz.1.7307'. [ 126.297938][T18574] netlink: 'syz.1.7333': attribute type 2 has an invalid length. [ 126.452563][T18594] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 126.472384][T18596] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=18596 comm=syz.0.7344 [ 126.523727][T18608] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7350'. [ 126.678883][T18643] netlink: 40 bytes leftover after parsing attributes in process `syz.2.7368'. [ 126.869674][T18664] netlink: 197276 bytes leftover after parsing attributes in process `syz.4.7378'. [ 127.076431][T18546] ================================================================== [ 127.080697][T18545] syz.3.7319 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 127.084517][T18546] BUG: KCSAN: data-race in mem_cgroup_iter / mem_cgroup_iter [ 127.084538][T18546] [ 127.084542][T18546] read-write to 0xffff888114c9e668 of 4 bytes by task 18545 on cpu 0: [ 127.084557][T18546] mem_cgroup_iter+0x28e/0x380 [ 127.095517][T18545] CPU: 0 UID: 0 PID: 18545 Comm: syz.3.7319 Tainted: G W 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0 [ 127.102797][T18546] shrink_node+0x74a/0x1d40 [ 127.105102][T18545] Tainted: [W]=WARN [ 127.113214][T18546] do_try_to_free_pages+0x3c6/0xc50 [ 127.117948][T18545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 127.130144][T18546] try_to_free_mem_cgroup_pages+0x1f3/0x4f0 [ 127.134618][T18545] Call Trace: [ 127.134627][T18545] [ 127.138396][T18546] try_charge_memcg+0x2bc/0x810 [ 127.143565][T18545] dump_stack_lvl+0xf2/0x150 [ 127.153591][T18546] mem_cgroup_swapin_charge_folio+0x107/0x1a0 [ 127.159455][T18545] dump_stack+0x15/0x20 [ 127.162709][T18546] __read_swap_cache_async+0x2b7/0x520 [ 127.165621][T18545] dump_header+0x83/0x2d0 [ 127.170438][T18546] swap_cluster_readahead+0x276/0x3f0 [ 127.175003][T18545] oom_kill_process+0x341/0x4c0 [ 127.181034][T18546] swapin_readahead+0xe4/0x760 [ 127.181060][T18546] do_swap_page+0x3da/0x1ef0 [ 127.181080][T18546] handle_mm_fault+0x8cb/0x2a30 [ 127.185225][T18545] out_of_memory+0x9af/0xbe0 [ 127.190648][T18546] exc_page_fault+0x3b9/0x650 [ 127.194947][T18545] ? __rcu_read_unlock+0x4e/0x70 [ 127.200282][T18546] asm_exc_page_fault+0x26/0x30 [ 127.205136][T18545] mem_cgroup_out_of_memory+0x13e/0x190 [ 127.209865][T18546] [ 127.209872][T18546] read to 0xffff888114c9e668 of 4 bytes by task 18546 on cpu 1: [ 127.214428][T18545] try_charge_memcg+0x51b/0x810 [ 127.219240][T18546] mem_cgroup_iter+0xba/0x380 [ 127.223804][T18545] mem_cgroup_swapin_charge_folio+0x107/0x1a0 [ 127.228443][T18546] shrink_node+0x458/0x1d40 [ 127.233349][T18545] __read_swap_cache_async+0x2b7/0x520 [ 127.238166][T18546] do_try_to_free_pages+0x3c6/0xc50 [ 127.243687][T18545] swap_cluster_readahead+0x276/0x3f0 [ 127.245984][T18546] try_to_free_mem_cgroup_pages+0x1f3/0x4f0 [ 127.253648][T18545] swapin_readahead+0xe4/0x760 [ 127.258462][T18546] try_charge_memcg+0x2bc/0x810 [ 127.263112][T18545] ? __filemap_get_folio+0x420/0x5b0 [ 127.269143][T18546] obj_cgroup_charge_pages+0xbd/0x1a0 [ 127.273618][T18545] ? swap_cache_get_folio+0x77/0x210 [ 127.279041][T18546] __memcg_kmem_charge_page+0x9d/0x170 [ 127.279063][T18546] __alloc_pages_noprof+0x1bc/0x360 [ 127.279089][T18546] alloc_pages_mpol_noprof+0xb1/0x1e0 [ 127.284260][T18545] do_swap_page+0x3da/0x1ef0 [ 127.289597][T18546] alloc_pages_noprof+0xe1/0x100 [ 127.289622][T18546] __vmalloc_node_range_noprof+0x736/0xec0 [ 127.295481][T18545] ? cgroup_rstat_updated+0x99/0x550 [ 127.300210][T18546] __kvmalloc_node_noprof+0x121/0x170 [ 127.305028][T18545] ? __rcu_read_lock+0x36/0x50 [ 127.310281][T18546] ip_set_alloc+0x1f/0x30 [ 127.315622][T18545] ? pte_offset_map_nolock+0x124/0x1d0 [ 127.320873][T18546] hash_netiface_create+0x273/0x730 [ 127.326301][T18545] handle_mm_fault+0x8cb/0x2a30 [ 127.331469][T18546] ip_set_create+0x359/0x8a0 [ 127.336831][T18545] exc_page_fault+0x3b9/0x650 [ 127.341370][T18546] nfnetlink_rcv_msg+0x4a9/0x570 [ 127.341394][T18546] netlink_rcv_skb+0x12c/0x230 [ 127.341413][T18546] nfnetlink_rcv+0x16c/0x15e0 [ 127.341431][T18546] netlink_unicast+0x599/0x670 [ 127.341446][T18546] netlink_sendmsg+0x5cc/0x6e0 [ 127.341466][T18546] __sock_sendmsg+0x140/0x180 [ 127.341491][T18546] ____sys_sendmsg+0x312/0x410 [ 127.341511][T18546] __sys_sendmsg+0x1e9/0x280 [ 127.346430][T18545] asm_exc_page_fault+0x26/0x30 [ 127.352198][T18546] __x64_sys_sendmsg+0x46/0x50 [ 127.352222][T18546] x64_sys_call+0x2689/0x2d60 [ 127.352243][T18546] do_syscall_64+0xc9/0x1c0 [ 127.357497][T18545] RIP: 0033:0x7f3e2c63d9ac [ 127.362833][T18546] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 127.367569][T18545] Code: 72 64 0f 1f 40 00 69 3d 06 7d df 00 e8 03 00 00 48 8d 1d e7 85 2c 00 e8 72 c4 12 00 eb 0c 48 81 c3 d8 00 00 00 48 39 dd 74 24 <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df 48 81 c3 d8 00 00 [ 127.371862][T18546] [ 127.371867][T18546] value changed: 0x000002bb -> 0x000002bc [ 127.377285][T18545] RSP: 002b:00007ffe6ead5340 EFLAGS: 00010202 [ 127.382448][T18546] [ 127.382453][T18546] Reported by Kernel Concurrency Sanitizer on: [ 127.387263][T18545] [ 127.387269][T18545] RAX: 0000000000000000 RBX: 00007f3e2c905f80 RCX: 0000000000000000 [ 127.391825][T18546] CPU: 1 UID: 0 PID: 18546 Comm: syz.3.7319 Tainted: G W 6.11.0-rc6-syzkaller-00019-g67784a74e258 #0 [ 127.396471][T18545] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000055556b298808 [ 127.401379][T18546] Tainted: [W]=WARN [ 127.406101][T18545] RBP: 00007f3e2c907a80 R08: 0000000000000000 R09: 7fffffffffffffff [ 127.410747][T18546] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 127.415477][T18545] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000001d695 [ 127.420221][T18546] ================================================================== [ 127.500177][T18689] xt_CT: You must specify a L4 protocol and not use inversions on it [ 127.505254][T18545] R13: 00007ffe6ead5440 R14: 0000000000000032 R15: ffffffffffffffff [ 127.505280][T18545] [ 127.593469][T18545] memory: usage 307200kB, limit 307200kB, failcnt 167 [ 127.600229][T18545] memory+swap: usage 307376kB, limit 9007199254740988kB, failcnt 0 [ 127.608867][T18545] kmem: usage 307112kB, limit 9007199254740988kB, failcnt 0 [ 127.612574][T18695] net_ratelimit: 4 callbacks suppressed [ 127.612588][T18695] openvswitch: netlink: Flow actions attr not present in new flow. [ 127.616189][T18545] Memory cgroup stats for /syz3: [ 127.629842][T18545] cache 86016 [ 127.638180][T18545] rss 0 [ 127.640935][T18545] shmem 0 [ 127.643850][T18545] mapped_file 86016 [ 127.647749][T18545] dirty 86016 [ 127.651018][T18545] writeback 0 [ 127.654274][T18545] workingset_refault_anon 3 [ 127.658773][T18545] workingset_refault_file 0 [ 127.663331][T18545] swap 180224 [ 127.666595][T18545] swapcached 4096 [ 127.670286][T18545] pgpgin 66669 [ 127.673675][T18545] pgpgout 66647 [ 127.677118][T18545] pgfault 133168 [ 127.680671][T18545] pgmajfault 5 [ 127.684025][T18545] inactive_anon 0 [ 127.687630][T18545] active_anon 4096 [ 127.691373][T18545] inactive_file 0 [ 127.695046][T18545] active_file 86016 [ 127.698825][T18545] unevictable 0 [ 127.702277][T18545] hierarchical_memory_limit 314572800 [ 127.707680][T18545] hierarchical_memsw_limit 9223372036854771712 [ 127.713841][T18545] total_cache 86016 [ 127.717672][T18545] total_rss 0 [ 127.720935][T18545] total_shmem 0 [ 127.724397][T18545] total_mapped_file 86016 [ 127.728757][T18545] total_dirty 86016 [ 127.732592][T18545] total_writeback 0 [ 127.736399][T18545] total_workingset_refault_anon 3 [ 127.741406][T18545] total_workingset_refault_file 0 [ 127.746425][T18545] total_swap 180224 [ 127.750214][T18545] total_swapcached 4096 [ 127.754346][T18545] total_pgpgin 66669 [ 127.758240][T18545] total_pgpgout 66647 [ 127.762203][T18545] total_pgfault 133168 [ 127.766319][T18545] total_pgmajfault 5 [ 127.770205][T18545] total_inactive_anon 0 [ 127.774389][T18545] total_active_anon 4096 [ 127.778629][T18545] total_inactive_file 0 [ 127.782763][T18545] total_active_file 86016 [ 127.787119][T18545] total_unevictable 0 [ 127.791138][T18545] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz3,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.7319,pid=18545,uid=0 [ 127.806070][T18545] Memory cgroup out of memory: Killed process 18545 (syz.3.7319) total-vm:88832kB, anon-rss:516kB, file-rss:15792kB, shmem-rss:0kB, UID:0 pgtables:108kB oom_score_adj:1000 [ 127.998012][T18546] syz.3.7319 (18546) used greatest stack depth: 7528 bytes left