last executing test programs: 1.425553572s ago: executing program 0 (id=7929): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x26, &(0x7f00000000c0)=0x3, 0x4) 1.391164303s ago: executing program 0 (id=7930): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x4, 0x8, 0x101, 0x0, 0x0, {0x5, 0x0, 0x2}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x9200}]}, 0x24}, 0x1, 0x0, 0x0, 0x24048040}, 0x810) 1.360781913s ago: executing program 0 (id=7932): r0 = epoll_create1(0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40088a01, &(0x7f0000000000)=0x100) 1.360658464s ago: executing program 3 (id=7933): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000003c0)=ANY=[@ANYBLOB="280000001e00431b000000000000000007000000", @ANYRES32=0x0, @ANYBLOB="000000fcffffffff07000a"], 0x28}}, 0x0) 1.308006145s ago: executing program 3 (id=7936): r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='coredump_filter\x00') write$cgroup_int(r0, &(0x7f0000000040)=0x9, 0x12) 1.267365956s ago: executing program 0 (id=7949): set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5) unshare(0x68040200) 1.223329296s ago: executing program 3 (id=7939): r0 = shmget$private(0x0, 0x400000, 0x8, &(0x7f000000e000/0x400000)=nil) shmat(r0, &(0x7f0000ffd000/0x1000)=nil, 0x7000) 1.207539666s ago: executing program 3 (id=7940): r0 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0) flistxattr(r0, 0x0, 0xdeff) 1.132549588s ago: executing program 3 (id=7946): perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0) 1.071687539s ago: executing program 0 (id=7951): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x3, 0xc, &(0x7f0000000200)=@framed={{0x18, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ed1}, [@call={0x85, 0x0, 0x0, 0x27}, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xc}}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000480)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="b34715ecd04550d3abc89b6f7bec", 0x0, 0xfffdfffc, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 464.553572ms ago: executing program 4 (id=7972): mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000800)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@func_proto={0x0, 0x0, 0x0, 0xd, 0xa}, @enum]}}, &(0x7f0000000f40)=""/4089, 0x32, 0xff9, 0x8}, 0x28) 419.021482ms ago: executing program 4 (id=7975): r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301) ioctl$USBDEVFS_GETDRIVER(r0, 0x41045508, &(0x7f00000002c0)={0x10001, "cb863df5c4c94764948acc22df694e4d1a5e9931f2a7c6cbfe261e26a42d111d5628cd9ae3d823396488dfd05bddce706a62245e29f5d6f51aae51a77205f60db75fa69a5dc08eaf0f07060befa5de62f5636567c6e1c0a6168123b22af66e01a193b5fa8692c83d5c4ac995eac5ad4b881bdc277b64401f346b2603f5e236ffdf38c19e364534fa8dd17290d0a715b314a4560ce79de86df15553b810571fd9ed68267e1eeec43b1a452e17d6b47284a2bac2736c4fb1e8792b57e8083cdbcfdc5e71f5d73d8b5ad94141b18d20f103dc0d90ac5020dbfad7648e94910140e23ad32b1604970523c8608ce90202ef892b662d279d0b33f2a15854ad86802dd2"}) 394.528803ms ago: executing program 4 (id=7976): set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5) unshare(0x68040200) 293.745864ms ago: executing program 2 (id=7982): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f00000000c0)=@gettaction={0x3c, 0x32, 0x301, 0x0, 0x0, {}, [@action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'police\x00'}}]}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x80000000}]}, 0x3c}}, 0x0) 266.643065ms ago: executing program 1 (id=7983): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="600000000206010200000000000000000000000014000780050014000700000008001240120500000900020073797a3200000000050001000700000011000300686173683a6e65742c6e6574000000000500050002000000050004"], 0x60}}, 0x0) 231.962446ms ago: executing program 2 (id=7984): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)={0x54, 0x2, 0x6, 0x5, 0x0, 0x0, {0xa}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x0, 0x0, 0x200}]}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}]}, 0x54}}, 0x0) 231.406246ms ago: executing program 1 (id=7994): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001080)={0x0, 0x60, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="6c000000020601000600000600000000000000000e0003006269746d61703a697000000005000400000000000900020073797a3000000000240007800c00028008000140000003000c000180080001400000000a080006401c02000005000500020000000500010006"], 0x6c}}, 0x40000) 163.613297ms ago: executing program 1 (id=7985): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000780)=ANY=[@ANYBLOB="a40100000f0a0102"], 0x1a4}, 0x1, 0x0, 0x0, 0x20000830}, 0x40000) 163.082207ms ago: executing program 2 (id=7996): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000380)={'veth1_virt_wifi\x00', &(0x7f0000000340)=@ethtool_channels={0x4a, 0x7, 0xffffffff, 0x7, 0x8001, 0xfffffff8, 0x7ff, 0x0, 0x3}}) 124.143068ms ago: executing program 1 (id=7986): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000001540), 0x2) writev(r0, &(0x7f0000000280)=[{&(0x7f0000000040)="ffdf1709476c651a87aa903900f8ffffffffffffff0900ff05c8d5c2", 0x1c}, {&(0x7f0000000100)="bec17c82550a7b88b176c5f1902bb259df87ac4d9deea9be7146461d", 0x1c}], 0x2) 124.070008ms ago: executing program 2 (id=7987): r0 = syz_io_uring_setup(0x5807, &(0x7f0000000500)={0x0, 0x8866, 0x8, 0x2, 0x243}, &(0x7f0000000100), &(0x7f0000000180)) io_uring_register$IORING_UNREGISTER_RING_FDS(r0, 0x15, 0x0, 0x0) 102.842828ms ago: executing program 4 (id=7988): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=@newlink={0x44, 0x10, 0x401, 0x70bd28, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5b5d}, [@IFLA_AF_SPEC={0x10, 0x1a, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0xf5}]}]}, @IFLA_ALT_IFNAME={0x14, 0x35, 'wg1\x00'}]}, 0x44}}, 0x0) 70.625839ms ago: executing program 1 (id=7989): r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r0, &(0x7f0000006b80)=[{{&(0x7f0000000040)={0xa, 0x4e24, 0x0, @local}, 0x1c, 0x0}}, {{&(0x7f0000000340)={0xa, 0x4e24, 0x0, @local}, 0x1c, 0x0, 0x0, &(0x7f0000000a00)=ANY=[], 0x30}}], 0x2, 0x0) 70.540839ms ago: executing program 2 (id=7990): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) getsockopt$inet6_int(r0, 0x29, 0x4e, 0x0, &(0x7f0000000000)) 46.254429ms ago: executing program 3 (id=7991): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3d, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x2, 0x0, 0x7ffffdbd}]}) nanosleep(&(0x7f00000001c0)={0x0, 0x3938700}, 0x0) 38.681699ms ago: executing program 2 (id=7992): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000003c0)=ANY=[@ANYBLOB="280000001e00431b000000000000000007000000", @ANYRES32=0x0, @ANYBLOB="000000fcffffffff07000a"], 0x28}}, 0x0) 28.874909ms ago: executing program 1 (id=7993): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000300)="d8000000190081054e81f782db4cb9040220080006007c09e8fe55a10a0005000400142603600e120800120000000401a8101600200004400400027c035c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9a941", 0x12b}], 0x1}, 0x0) 26.29513ms ago: executing program 4 (id=7995): r0 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0) flistxattr(r0, 0x0, 0xdeff) 14.57909ms ago: executing program 0 (id=7997): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000300)="2e00000011008188040f80ec59acbc0413a181004000000004000000000000000e000a000d00000002800200121f", 0x2e}], 0x1}, 0x0) 0s ago: executing program 4 (id=7998): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000007c0)={0xffffffffffffffff}) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000000)={'veth1_to_hsr\x00', &(0x7f0000000400)=@ethtool_perm_addr={0x51}}) kernel console output (not intermixed with test programs): type=1326 audit(1758063742.894:2212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11477 comm="syz.0.3840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf9776eba9 code=0x7ffc0000 [ 82.287748][ T29] audit: type=1326 audit(1758063742.894:2213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11477 comm="syz.0.3840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf9776eba9 code=0x7ffc0000 [ 82.311536][ T29] audit: type=1326 audit(1758063742.904:2214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11477 comm="syz.0.3840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7fcf9776eba9 code=0x7ffc0000 [ 82.335219][ T29] audit: type=1326 audit(1758063742.904:2215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11477 comm="syz.0.3840" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf9776eba9 code=0x7ffc0000 [ 82.363089][T11495] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 82.500302][T11517] __nla_validate_parse: 7 callbacks suppressed [ 82.500320][T11517] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.3860'. [ 82.659528][T11543] openvswitch: netlink: Message has 6 unknown bytes. [ 82.905910][T11584] netlink: 'syz.3.3893': attribute type 9 has an invalid length. [ 82.913741][T11584] netlink: 'syz.3.3893': attribute type 6 has an invalid length. [ 83.059469][T11599] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3900'. [ 83.068561][T11599] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3900'. [ 83.095869][T11605] loop0: detected capacity change from 0 to 512 [ 83.102602][T11605] EXT4-fs: Ignoring removed orlov option [ 83.159426][T11605] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 83.208945][T11605] EXT4-fs (loop0): orphan cleanup on readonly fs [ 83.254745][T11605] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.3902: bg 0: block 248: padding at end of block bitmap is not set [ 83.291568][T11605] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.3902: Failed to acquire dquot type 1 [ 83.331413][T11605] EXT4-fs (loop0): 1 truncate cleaned up [ 83.347328][T11633] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3916'. [ 83.356400][T11633] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3916'. [ 83.362421][T11637] loop1: detected capacity change from 0 to 1024 [ 83.366659][T11605] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 83.377190][T11637] EXT4-fs: Ignoring removed bh option [ 83.411943][T11637] EXT4-fs: inline encryption not supported [ 83.421754][T11640] loop2: detected capacity change from 0 to 512 [ 83.428551][T11637] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 83.448179][T11637] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 83.458160][T11637] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 2: comm syz.1.3917: lblock 2 mapped to illegal pblock 2 (length 1) [ 83.475269][T11637] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 48: comm syz.1.3917: lblock 0 mapped to illegal pblock 48 (length 1) [ 83.493059][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.512530][T11637] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.3917: Failed to acquire dquot type 0 [ 83.532554][T11640] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 83.545569][T11640] ext4 filesystem being mounted at /792/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 83.559087][T11637] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 83.600665][T11637] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.3917: mark_inode_dirty error [ 83.613286][T11637] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 83.617838][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.623941][T11637] EXT4-fs (loop1): 1 orphan inode deleted [ 83.638973][T11637] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 83.645654][ T31] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:1: lblock 1 mapped to illegal pblock 1 (length 1) [ 83.692055][ T31] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:1: Failed to release dquot type 0 [ 83.736634][T11672] sock: sock_timestamping_bind_phc: sock not bind to device [ 83.745530][T11637] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.770314][T11637] EXT4-fs error (device loop1): __ext4_get_inode_loc:4861: comm syz.1.3917: Invalid inode table block 1 in block_group 0 [ 83.793011][T11676] loop2: detected capacity change from 0 to 512 [ 83.811088][T11637] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 83.829626][T11637] EXT4-fs error (device loop1): ext4_quota_off:7221: inode #3: comm syz.1.3917: mark_inode_dirty error [ 83.841184][T11676] EXT4-fs: Ignoring removed oldalloc option [ 83.875142][T11676] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 83.935083][T11676] ext4 filesystem being mounted at /793/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 83.951516][T11676] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3928: bg 0: block 217: padding at end of block bitmap is not set [ 83.980663][T11676] EXT4-fs (loop2): Remounting filesystem read-only [ 84.016134][T11676] EXT4-fs warning (device loop2): ext4_xattr_inode_lookup_create:1597: inode #18: comm syz.2.3928: cleanup dec ref error -28 [ 84.031793][T11704] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3949'. [ 84.040839][T11704] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3949'. [ 84.081002][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 84.152331][T11722] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3958'. [ 84.195041][T11728] loop2: detected capacity change from 0 to 128 [ 85.041072][T11815] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4003'. [ 85.316273][T11845] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4018'. [ 85.515453][T11871] SELinux: security_context_str_to_sid (s) failed with errno=-22 [ 85.697698][T11897] netlink: 'syz.0.4043': attribute type 3 has an invalid length. [ 85.922504][T11934] netlink: 'syz.3.4062': attribute type 19 has an invalid length. [ 86.041245][T11951] netlink: zone id is out of range [ 86.059600][T11951] netlink: del zone limit has 8 unknown bytes [ 86.380847][T12003] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=65280 sclass=netlink_xfrm_socket pid=12003 comm=syz.4.4097 [ 86.544662][ T29] kauditd_printk_skb: 8343 callbacks suppressed [ 86.544757][ T29] audit: type=1326 audit(1758063747.294:10552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11723 comm="syz.1.3959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x7ff00000 [ 86.642012][ T29] audit: type=1326 audit(1758063747.324:10553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11723 comm="syz.1.3959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x7ff00000 [ 86.665783][ T29] audit: type=1326 audit(1758063747.324:10554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11723 comm="syz.1.3959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x7ff00000 [ 86.689435][ T29] audit: type=1326 audit(1758063747.324:10555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11723 comm="syz.1.3959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x7ff00000 [ 86.713089][ T29] audit: type=1326 audit(1758063747.324:10556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11723 comm="syz.1.3959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x7ff00000 [ 86.736696][ T29] audit: type=1326 audit(1758063747.324:10557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11723 comm="syz.1.3959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x7ff00000 [ 86.760293][ T29] audit: type=1326 audit(1758063747.324:10558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11723 comm="syz.1.3959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x7ff00000 [ 86.784110][ T29] audit: type=1326 audit(1758063747.324:10559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11723 comm="syz.1.3959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x7ff00000 [ 86.808085][ T29] audit: type=1326 audit(1758063747.324:10560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11723 comm="syz.1.3959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x7ff00000 [ 86.823242][T12051] gretap1: entered promiscuous mode [ 86.831952][ T29] audit: type=1326 audit(1758063747.324:10561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11723 comm="syz.1.3959" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x7ff00000 [ 86.864012][T12036] loop3: detected capacity change from 0 to 164 [ 86.935763][T12058] netlink: 'syz.4.4124': attribute type 10 has an invalid length. [ 86.947456][T12058] macvlan1: entered promiscuous mode [ 86.969513][T12058] bond0: (slave macvlan1): Enslaving as an active interface with an up link [ 87.167971][T12089] netlink: zone id is out of range [ 87.184890][T12089] netlink: del zone limit has 8 unknown bytes [ 87.195651][T12094] netlink: 'syz.0.4142': attribute type 10 has an invalid length. [ 87.219490][T12094] macvlan1: entered promiscuous mode [ 87.235816][T12098] loop4: detected capacity change from 0 to 512 [ 87.257837][T12094] bond0: (slave macvlan1): Enslaving as an active interface with an up link [ 87.279042][T12098] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002] [ 87.292798][T12098] System zones: 0-2, 18-18, 34-34 [ 87.344943][T12098] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 42 vs 41 free clusters [ 87.381027][T12098] EXT4-fs (loop4): Remounting filesystem read-only [ 87.391212][T12098] EXT4-fs (loop4): 1 truncate cleaned up [ 87.397559][T12098] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 87.398216][T12125] netlink: zone id is out of range [ 87.410404][T12098] ext4 filesystem being mounted at /838/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 87.426425][ T12] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 87.427591][T12125] netlink: del zone limit has 8 unknown bytes [ 87.437293][ T12] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 87.450027][ T12] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started [ 87.528948][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 87.581309][T12141] __nla_validate_parse: 20 callbacks suppressed [ 87.581325][T12141] netlink: 96 bytes leftover after parsing attributes in process `syz.4.4163'. [ 87.585534][T12144] ------------[ cut here ]------------ [ 87.587679][T12141] netlink: 96 bytes leftover after parsing attributes in process `syz.4.4163'. [ 87.596670][T12144] verifier bug: REG INVARIANTS VIOLATION (false_reg1): range bounds violation u64=[0x10000008, 0x10000008] s64=[0x10000008, 0x10000008] u32=[0x10000008, 0x10000000] s32=[0x10000008, 0x10000008] var_off=(0x10000008, 0x0)(1) [ 87.602149][T12141] netlink: 96 bytes leftover after parsing attributes in process `syz.4.4163'. [ 87.611243][T12144] WARNING: CPU: 1 PID: 12144 at kernel/bpf/verifier.c:2728 reg_bounds_sanity_check+0x673/0x680 [ 87.652129][T12144] Modules linked in: [ 87.656158][T12144] CPU: 1 UID: 0 PID: 12144 Comm: syz.1.4164 Not tainted syzkaller #0 PREEMPT(voluntary) [ 87.666069][T12144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 87.676269][T12144] RIP: 0010:reg_bounds_sanity_check+0x673/0x680 [ 87.682644][T12144] Code: 7c 24 18 41 ff 74 24 20 55 41 56 4d 89 ee 53 48 8b 5c 24 30 ff 74 24 40 ff 74 24 50 ff 74 24 30 e8 e2 81 ba ff 48 83 c4 38 90 <0f> 0b 90 90 e9 02 fb ff ff 0f 1f 40 00 90 90 90 90 90 90 90 90 90 [ 87.702649][T12144] RSP: 0018:ffffc90000e73440 EFLAGS: 00010292 [ 87.708803][T12144] RAX: c64baa5fc24fe400 RBX: ffff888119f6c478 RCX: 0000000000080000 [ 87.716858][T12144] RDX: ffffc90001c22000 RSI: 0000000000036356 RDI: 0000000000036357 [ 87.725061][T12144] RBP: 0000000010000008 R08: 0001ffff86a20c2f R09: 0000000000000000 [ 87.733141][T12144] R10: ffffffff88e69978 R11: ffffffff822037e0 R12: ffff888119f6c438 [ 87.741143][T12144] R13: ffff888109720000 R14: ffff888109720000 R15: ffff888119f6c470 [ 87.749196][T12144] FS: 00007fe3d36a76c0(0000) GS:ffff8882aef40000(0000) knlGS:0000000000000000 [ 87.758339][T12144] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 87.764973][T12144] CR2: 0000200000002000 CR3: 00000001259a6000 CR4: 00000000003506f0 [ 87.773010][T12144] Call Trace: [ 87.776406][T12144] [ 87.779360][T12144] reg_set_min_max+0x215/0x260 [ 87.784206][T12144] check_cond_jmp_op+0x1013/0x16e0 [ 87.789366][T12144] do_check+0x332a/0x7a10 [ 87.793796][T12144] ? __rcu_read_unlock+0x4f/0x70 [ 87.798837][T12144] ? __rcu_read_unlock+0x4f/0x70 [ 87.803839][T12144] ? __pfx_verbose+0x10/0x10 [ 87.808508][T12144] ? __pfx_disasm_kfunc_name+0x10/0x10 [ 87.814092][T12144] do_check_common+0xc3a/0x12a0 [ 87.818982][T12144] ? __pfx_disasm_kfunc_name+0x10/0x10 [ 87.824527][T12144] bpf_check+0x942b/0xd9e0 [ 87.828973][T12144] ? __rcu_read_unlock+0x4f/0x70 [ 87.834088][T12144] ? __alloc_frozen_pages_noprof+0x188/0x360 [ 87.840197][T12144] ? alloc_pages_bulk_noprof+0x4b8/0x540 [ 87.845924][T12144] ? __vmap_pages_range_noflush+0xbc4/0xcf0 [ 87.851856][T12144] ? css_rstat_updated+0xb7/0x240 [ 87.857001][T12144] ? pcpu_block_update+0x24e/0x3b0 [ 87.862142][T12144] ? _find_next_zero_bit+0x64/0xa0 [ 87.867469][T12144] ? pcpu_block_refresh_hint+0x157/0x170 [ 87.869949][T12163] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0) [ 87.873198][T12144] ? pcpu_block_update_hint_alloc+0x63d/0x660 [ 87.891484][T12144] ? css_rstat_updated+0xb7/0x240 [ 87.896667][T12144] ? __rcu_read_unlock+0x4f/0x70 [ 87.901635][T12144] ? pcpu_memcg_post_alloc_hook+0xf1/0x150 [ 87.907515][T12144] ? should_fail_ex+0x30/0x280 [ 87.912302][T12144] ? selinux_bpf_prog_load+0x36/0xf0 [ 87.917675][T12144] ? should_failslab+0x8c/0xb0 [ 87.922693][T12144] ? __kmalloc_cache_noprof+0x189/0x320 [ 87.928356][T12144] ? selinux_bpf_prog_load+0xbf/0xf0 [ 87.933786][T12144] ? security_bpf_prog_load+0x2c/0xa0 [ 87.939188][T12144] bpf_prog_load+0xedd/0x1070 [ 87.943967][T12144] ? security_bpf+0x2b/0x90 [ 87.948590][T12144] __sys_bpf+0x462/0x7b0 [ 87.953020][T12144] __x64_sys_bpf+0x41/0x50 [ 87.957472][T12144] x64_sys_call+0x2aea/0x2ff0 [ 87.962320][T12144] do_syscall_64+0xd2/0x200 [ 87.966956][T12144] ? arch_exit_to_user_mode_prepare+0x27/0x80 [ 87.973082][T12144] ? irqentry_exit_to_user_mode+0x7e/0xa0 [ 87.978858][T12144] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 87.984800][T12144] RIP: 0033:0x7fe3d4c3eba9 [ 87.989273][T12144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 88.008915][T12144] RSP: 002b:00007fe3d36a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 88.017412][T12144] RAX: ffffffffffffffda RBX: 00007fe3d4e85fa0 RCX: 00007fe3d4c3eba9 [ 88.025538][T12144] RDX: 0000000000000094 RSI: 0000200000000180 RDI: 0000000000000005 [ 88.033552][T12144] RBP: 00007fe3d4cc1e19 R08: 0000000000000000 R09: 0000000000000000 [ 88.041620][T12144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 88.049663][T12144] R13: 00007fe3d4e86038 R14: 00007fe3d4e85fa0 R15: 00007ffe9c12afe8 [ 88.057719][T12144] [ 88.060735][T12144] ---[ end trace 0000000000000000 ]--- [ 88.073000][ C1] ip6_tunnel: ip6gretap2 xmit: Local address not yet configured! [ 88.073047][ C0] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 88.173899][T12182] netlink: 'syz.0.4182': attribute type 22 has an invalid length. [ 88.181858][T12182] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4182'. [ 88.191871][T12181] SELinux: security_context_str_to_sid (xvZE6cbo(&|Y!Zݲ:18Jo3OLQr^.LOɹ!Qj|ף) failed with errno=-22 [ 88.276049][T12192] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4188'. [ 88.376313][T12212] netlink: 'syz.0.4199': attribute type 9 has an invalid length. [ 88.384145][T12212] netlink: 'syz.0.4199': attribute type 6 has an invalid length. [ 88.529288][T12237] loop1: detected capacity change from 0 to 1764 [ 88.605478][T12245] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: mode dependency failed, not supported in mode balance-rr(0) [ 88.711807][T12260] netlink: 'syz.3.4222': attribute type 3 has an invalid length. [ 88.719826][T12260] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4222'. [ 88.731348][T12263] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4224'. [ 88.815154][ T3409] hid (null): unknown global tag 0xd [ 88.821183][ T3409] hid-generic 068E:1000:0000.0001: unknown global tag 0xd [ 88.828398][ T3409] hid-generic 068E:1000:0000.0001: item 0 4 1 13 parsing failed [ 88.859031][ T3409] hid-generic 068E:1000:0000.0001: probe with driver hid-generic failed with error -22 [ 89.135645][T12335] netlink: 132 bytes leftover after parsing attributes in process `syz.0.4260'. [ 89.382144][T12357] loop3: detected capacity change from 0 to 8192 [ 89.391480][T12361] (unnamed net_device) (uninitialized): option arp_validate: invalid value (18446744073709551614) [ 89.463946][T12367] bond0: Error: Cannot enslave bond to itself. [ 89.611871][T12393] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4289'. [ 89.691069][T12406] loop0: detected capacity change from 0 to 1024 [ 89.712780][T12406] EXT4-fs: Ignoring removed nomblk_io_submit option [ 89.729608][T12406] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 89.760106][T12406] System zones: 0-1, 3-36 [ 89.777020][T12406] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 89.815769][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 89.969050][T12449] IPv6: NLM_F_CREATE should be specified when creating new route [ 90.283859][T12497] Process accounting resumed [ 90.303389][T12511] netlink: 'syz.0.4345': attribute type 3 has an invalid length. [ 90.320005][T12513] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4346'. [ 90.408892][T12528] loop3: detected capacity change from 0 to 1024 [ 90.413126][T12532] netlink: 'syz.0.4356': attribute type 1 has an invalid length. [ 90.438852][T12528] EXT4-fs: Ignoring removed bh option [ 90.453369][T12528] EXT4-fs: inline encryption not supported [ 90.468040][T12528] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 90.513085][T12528] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 90.524535][T12528] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 2: comm syz.3.4351: lblock 2 mapped to illegal pblock 2 (length 1) [ 90.551192][T12528] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 48: comm syz.3.4351: lblock 0 mapped to illegal pblock 48 (length 1) [ 90.586512][T12528] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.4351: Failed to acquire dquot type 0 [ 90.602589][T12559] bridge3: trying to set multicast startup query interval above maximum, setting to 8640000 (86400000ms) [ 90.635273][T12528] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 90.653815][T12528] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.4351: mark_inode_dirty error [ 90.674119][T12571] netlink: 'syz.1.4374': attribute type 21 has an invalid length. [ 90.688911][T12528] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 90.699409][T12528] EXT4-fs (loop3): 1 orphan inode deleted [ 90.709838][T12528] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 90.723069][ T31] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:1: lblock 1 mapped to illegal pblock 1 (length 1) [ 90.755037][ T31] EXT4-fs error (device loop3): ext4_release_dquot:6973: comm kworker/u8:1: Failed to release dquot type 0 [ 90.777898][T12528] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 90.799686][T12528] EXT4-fs error (device loop3): __ext4_get_inode_loc:4861: comm syz.3.4351: Invalid inode table block 1 in block_group 0 [ 90.815709][T12528] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 90.843008][T12528] EXT4-fs error (device loop3): ext4_quota_off:7221: inode #3: comm syz.3.4351: mark_inode_dirty error [ 91.195601][T12632] loop0: detected capacity change from 0 to 1024 [ 91.214194][T12632] EXT4-fs: Ignoring removed bh option [ 91.243124][T12632] EXT4-fs: inline encryption not supported [ 91.250428][T12632] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 91.271791][T12632] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 91.289917][T12632] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 2: comm syz.0.4404: lblock 2 mapped to illegal pblock 2 (length 1) [ 91.304956][T12632] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 48: comm syz.0.4404: lblock 0 mapped to illegal pblock 48 (length 1) [ 91.321389][T12632] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.4404: Failed to acquire dquot type 0 [ 91.335893][T12632] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 91.354142][T12632] EXT4-fs error (device loop0): ext4_evict_inode:254: inode #11: comm syz.0.4404: mark_inode_dirty error [ 91.395306][T12632] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 91.427259][T12632] EXT4-fs (loop0): 1 orphan inode deleted [ 91.443057][ T3435] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:8: lblock 1 mapped to illegal pblock 1 (length 1) [ 91.459873][T12632] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 91.481619][ T3435] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u8:8: Failed to release dquot type 0 [ 91.508664][T12632] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 91.518772][T12632] EXT4-fs error (device loop0): __ext4_get_inode_loc:4861: comm syz.0.4404: Invalid inode table block 1 in block_group 0 [ 91.549642][T12632] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 91.553047][ T29] kauditd_printk_skb: 3088 callbacks suppressed [ 91.553061][ T29] audit: type=1326 audit(1758063752.304:13636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12612 comm="syz.1.4396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x50000 [ 91.566262][T12632] EXT4-fs error (device loop0): ext4_quota_off:7221: inode #3: comm syz.0.4404: mark_inode_dirty error [ 91.639431][ T29] audit: type=1326 audit(1758063752.344:13637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12612 comm="syz.1.4396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x50000 [ 91.663117][ T29] audit: type=1326 audit(1758063752.344:13638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12612 comm="syz.1.4396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x50000 [ 91.686484][ T29] audit: type=1326 audit(1758063752.344:13639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12612 comm="syz.1.4396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x50000 [ 91.709900][ T29] audit: type=1326 audit(1758063752.344:13640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12612 comm="syz.1.4396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x50000 [ 91.733345][ T29] audit: type=1326 audit(1758063752.344:13641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12612 comm="syz.1.4396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x50000 [ 91.756743][ T29] audit: type=1326 audit(1758063752.344:13642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12612 comm="syz.1.4396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x50000 [ 91.780147][ T29] audit: type=1326 audit(1758063752.344:13643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12612 comm="syz.1.4396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x50000 [ 91.803703][ T29] audit: type=1326 audit(1758063752.344:13644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12612 comm="syz.1.4396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x50000 [ 91.827071][ T29] audit: type=1326 audit(1758063752.344:13645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12612 comm="syz.1.4396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x50000 [ 91.997026][T12690] netlink: 'syz.4.4430': attribute type 21 has an invalid length. [ 92.013141][T12689] vhci_hcd: invalid port number 23 [ 92.225302][T12712] netlink: 'syz.4.4443': attribute type 97 has an invalid length. [ 92.233234][T12712] netlink: 'syz.4.4443': attribute type 97 has an invalid length. [ 92.573584][T12754] netlink: 'syz.4.4463': attribute type 13 has an invalid length. [ 92.647706][T12765] netlink: 'syz.2.4469': attribute type 21 has an invalid length. [ 92.802844][T12787] netlink: 'syz.2.4480': attribute type 21 has an invalid length. [ 93.049131][T12825] netlink: 'syz.2.4496': attribute type 8 has an invalid length. [ 93.057067][T12825] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 93.193087][ C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 93.288564][T12856] __nla_validate_parse: 11 callbacks suppressed [ 93.288587][T12856] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4514'. [ 93.429825][T12878] netlink: 'syz.2.4524': attribute type 8 has an invalid length. [ 93.734152][T12927] loop3: detected capacity change from 0 to 128 [ 93.973402][T12956] loop3: detected capacity change from 0 to 512 [ 93.973702][T12956] EXT4-fs: Ignoring removed nobh option [ 94.013840][T12956] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.4562: corrupted inode contents [ 94.028012][T12967] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=12967 comm=syz.2.4566 [ 94.050924][T12956] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #3: comm syz.3.4562: mark_inode_dirty error [ 94.094875][T12956] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #3: comm syz.3.4562: corrupted inode contents [ 94.123031][T12956] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #3: comm syz.3.4562: mark_inode_dirty error [ 94.149217][T12981] netlink: 'syz.0.4571': attribute type 2 has an invalid length. [ 94.182020][T12956] EXT4-fs error (device loop3): ext4_acquire_dquot:6937: comm syz.3.4562: Failed to acquire dquot type 0 [ 94.220276][T12956] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.4562: corrupted inode contents [ 94.226246][T12994] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4578'. [ 94.266970][T12956] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #16: comm syz.3.4562: mark_inode_dirty error [ 94.323569][T12956] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.4562: corrupted inode contents [ 94.389359][T12956] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.4562: mark_inode_dirty error [ 94.404427][T13019] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4591'. [ 94.442238][T12956] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.4562: corrupted inode contents [ 94.488168][T12956] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem [ 94.515186][T13035] loop0: detected capacity change from 0 to 512 [ 94.521977][T12956] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.4562: corrupted inode contents [ 94.551308][T12956] EXT4-fs error (device loop3): ext4_truncate:4666: inode #16: comm syz.3.4562: mark_inode_dirty error [ 94.578666][T13042] loop1: detected capacity change from 0 to 256 [ 94.581385][T13035] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.4600: bg 0: block 104: invalid block bitmap [ 94.598087][T12956] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem [ 94.598486][T13045] netlink: 252 bytes leftover after parsing attributes in process `syz.4.4604'. [ 94.611965][T12956] EXT4-fs (loop3): 1 truncate cleaned up [ 94.622300][T13035] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 94.622780][T13047] loop2: detected capacity change from 0 to 1024 [ 94.631786][T12956] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 94.650277][T12956] ext4 filesystem being mounted at /883/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 94.653243][T13035] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.4600: invalid indirect mapped block 1 (level 1) [ 94.691266][T13035] EXT4-fs (loop0): 1 truncate cleaned up [ 94.714916][T13047] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 94.721309][T13035] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 94.727478][T13051] netlink: 48 bytes leftover after parsing attributes in process `syz.1.4606'. [ 94.748184][T13051] netlink: 32 bytes leftover after parsing attributes in process `syz.1.4606'. [ 94.761853][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 94.774747][T13047] EXT4-fs error (device loop2): ext4_empty_dir:3109: inode #11: block 623: comm syz.2.4603: Attempting to read directory block (623) that is past i_size (638464) [ 94.795519][T13047] EXT4-fs (loop2): Remounting filesystem read-only [ 94.840217][T13061] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4607'. [ 94.850714][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 94.867470][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 94.944116][T13071] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4612'. [ 94.984346][T13071] netlink: 312 bytes leftover after parsing attributes in process `syz.2.4612'. [ 94.993569][T13071] netlink: 'syz.2.4612': attribute type 1 has an invalid length. [ 95.230623][T13126] usb usb1: usbfs: process 13126 (syz.0.4640) did not claim interface 0 before use [ 95.290797][T13139] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4649'. [ 95.581272][T13198] gtp1: entered promiscuous mode [ 95.586439][T13198] gtp1: entered allmulticast mode [ 95.874359][T13251] usb usb8: usbfs: process 13251 (syz.1.4699) did not claim interface 0 before use [ 96.602245][T13357] batadv1: entered promiscuous mode [ 96.701554][T13363] usb usb4: usbfs: process 13363 (syz.1.4757) did not claim interface 0 before use [ 96.754034][T13370] usb usb8: usbfs: process 13370 (syz.4.4760) did not claim interface 0 before use [ 96.802531][T13373] wg1: left allmulticast mode [ 96.848252][T13373] vlan1: left allmulticast mode [ 96.853243][T13373] veth0_vlan: left allmulticast mode [ 96.889654][T13373] gre1: left allmulticast mode [ 96.913078][ T3389] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 97.069572][ T29] kauditd_printk_skb: 7415 callbacks suppressed [ 97.069592][ T29] audit: type=1400 audit(1758063757.814:21059): avc: denied { map } for pid=13417 comm="syz.1.4784" path="/dev/bus/usb/006/001" dev="devtmpfs" ino=162 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 97.176581][T13440] ipvlan1: left promiscuous mode [ 97.201272][T13440] netdevsim netdevsim1 netdevsim0: left promiscuous mode [ 97.230214][T13446] netdevsim netdevsim4 netdevsim0: entered allmulticast mode [ 97.241679][ T36] ip6_tunnel: ip6gretap2 xmit: Local address not yet configured! [ 97.272813][T13452] loop1: detected capacity change from 0 to 1024 [ 97.276475][T13452] EXT4-fs: Ignoring removed bh option [ 97.323127][T13452] EXT4-fs: inline encryption not supported [ 97.330004][T13452] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 97.344013][T13452] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 2: comm syz.1.4801: lblock 2 mapped to illegal pblock 2 (length 1) [ 97.344997][T13452] Quota error (device loop1): qtree_write_dquot: dquota write failed [ 97.345020][T13452] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 48: comm syz.1.4801: lblock 0 mapped to illegal pblock 48 (length 1) [ 97.345863][T13452] Quota error (device loop1): v2_write_file_info: Can't write info structure [ 97.345880][T13452] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.4801: Failed to acquire dquot type 0 [ 97.347002][T13452] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 97.350119][T13465] SELinux: policydb string does not match my string SE Linux [ 97.394531][T13452] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.4801: mark_inode_dirty error [ 97.423048][ T1036] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 97.424354][T13465] SELinux: failed to load policy [ 97.452157][T13467] loop2: detected capacity change from 0 to 512 [ 97.461662][T13452] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 97.461720][T13452] EXT4-fs (loop1): 1 orphan inode deleted [ 97.462123][T13452] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 97.473033][ T36] ip6_tunnel: ip6gretap2 xmit: Local address not yet configured! [ 97.478584][ T3329] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1) [ 97.494133][T13467] EXT4-fs: Ignoring removed bh option [ 97.516014][ T3329] Quota error (device loop1): remove_tree: Can't read quota data block 1 [ 97.525940][ T3329] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:6: Failed to release dquot type 0 [ 97.555544][T13452] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 97.555809][T13452] EXT4-fs error (device loop1): __ext4_get_inode_loc:4861: comm syz.1.4801: Invalid inode table block 1 in block_group 0 [ 97.555893][T13452] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 97.555953][T13452] EXT4-fs error (device loop1): ext4_quota_off:7221: inode #3: comm syz.1.4801: mark_inode_dirty error [ 97.587510][T13467] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 97.587600][T13467] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 97.590634][T13467] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended [ 97.590790][T13467] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006] [ 97.591433][T13467] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 97.602266][ T29] audit: type=1400 audit(1758063758.344:21060): avc: denied { create } for pid=13466 comm="syz.2.4808" name="file7" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 97.619065][T13477] validate_nla: 6 callbacks suppressed [ 97.619081][T13477] netlink: 'syz.4.4812': attribute type 15 has an invalid length. [ 97.683970][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 98.095587][T13557] bridge_slave_1: left allmulticast mode [ 98.101308][T13557] bridge_slave_1: left promiscuous mode [ 98.107266][T13557] bridge0: port 2(bridge_slave_1) entered disabled state [ 98.164280][T13557] bridge_slave_0: left allmulticast mode [ 98.170094][T13557] bridge_slave_0: left promiscuous mode [ 98.175936][T13557] bridge0: port 1(bridge_slave_0) entered disabled state [ 98.340592][T13602] usb usb1: check_ctrlrecip: process 13602 (syz.4.4872) requesting ep 01 but needs 81 [ 98.350559][T13602] usb usb1: usbfs: process 13602 (syz.4.4872) did not claim interface 0 before use [ 98.366337][T13605] loop1: detected capacity change from 0 to 512 [ 98.414983][T13605] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 0, start 22000003) [ 98.425084][T13605] FAT-fs (loop1): Filesystem has been set read-only [ 98.536367][T13633] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check. [ 98.561310][T13639] netlink: 'syz.1.4886': attribute type 21 has an invalid length. [ 98.604901][T13639] netlink: 'syz.1.4886': attribute type 1 has an invalid length. [ 98.612787][T13639] __nla_validate_parse: 15 callbacks suppressed [ 98.612804][T13639] netlink: 132 bytes leftover after parsing attributes in process `syz.1.4886'. [ 98.651030][T13653] netdevsim netdevsim3 netdevsim0: entered promiscuous mode [ 98.855715][T13693] netlink: 44 bytes leftover after parsing attributes in process `syz.4.4914'. [ 99.052106][T13728] loop4: detected capacity change from 0 to 736 [ 99.074871][T13738] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4936'. [ 99.099040][T13740] loop3: detected capacity change from 0 to 164 [ 99.168909][T13740] Unsupported NM flag settings (8) [ 99.226441][T13756] netlink: 'syz.2.4945': attribute type 21 has an invalid length. [ 99.390933][T13789] loop1: detected capacity change from 0 to 256 [ 99.461220][T13789] FAT-fs (loop1): Directory bread(block 64) failed [ 99.479105][T13789] FAT-fs (loop1): Directory bread(block 65) failed [ 99.499296][T13789] FAT-fs (loop1): Directory bread(block 66) failed [ 99.533767][T13789] FAT-fs (loop1): Directory bread(block 67) failed [ 99.540447][T13789] FAT-fs (loop1): Directory bread(block 68) failed [ 99.575701][T13820] new mount options do not match the existing superblock, will be ignored [ 99.594137][T13789] FAT-fs (loop1): Directory bread(block 69) failed [ 99.600873][T13789] FAT-fs (loop1): Directory bread(block 70) failed [ 99.608091][T13789] FAT-fs (loop1): Directory bread(block 71) failed [ 99.608879][ T29] audit: type=1400 audit(1758063760.354:21061): avc: denied { unmount } for pid=3305 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 99.614840][T13789] FAT-fs (loop1): Directory bread(block 72) failed [ 99.641915][T13789] FAT-fs (loop1): Directory bread(block 73) failed [ 99.660716][T13789] syz.1.4959: attempt to access beyond end of device [ 99.660716][T13789] loop1: rw=0, sector=1192, nr_sectors = 4 limit=256 [ 99.989364][T13879] RDS: rds_bind could not find a transport for fc02::, load rds_tcp or rds_rdma? [ 100.012559][ T29] audit: type=1400 audit(1758063760.754:21062): avc: denied { map } for pid=13880 comm="syz.1.5002" path="socket:[38532]" dev="sockfs" ino=38532 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 100.079618][ T29] audit: type=1400 audit(1758063760.754:21063): avc: denied { read } for pid=13880 comm="syz.1.5002" path="socket:[38532]" dev="sockfs" ino=38532 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 100.108267][T13900] netlink: 'syz.2.5009': attribute type 1 has an invalid length. [ 100.116196][T13900] netlink: 224 bytes leftover after parsing attributes in process `syz.2.5009'. [ 100.243627][T13919] netlink: 'syz.4.5017': attribute type 10 has an invalid length. [ 100.364960][T13934] Process accounting resumed [ 100.499745][ T29] audit: type=1326 audit(1758063761.234:21064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13962 comm="syz.1.5037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x7ffc0000 [ 100.523512][ T29] audit: type=1326 audit(1758063761.234:21065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13962 comm="syz.1.5037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x7ffc0000 [ 100.770880][T14013] netlink: 7 bytes leftover after parsing attributes in process `syz.3.5062'. [ 100.780217][T14013] netlink: 60 bytes leftover after parsing attributes in process `syz.3.5062'. [ 100.789337][T14013] netlink: 60 bytes leftover after parsing attributes in process `syz.3.5062'. [ 100.842683][T14013] netlink: 7 bytes leftover after parsing attributes in process `syz.3.5062'. [ 100.865354][T14025] 9pnet: Could not find request transport: f0xffffffffffffffff [ 100.869103][T14013] netlink: 60 bytes leftover after parsing attributes in process `syz.3.5062'. [ 100.882143][T14013] netlink: 60 bytes leftover after parsing attributes in process `syz.3.5062'. [ 101.102564][T14065] loop3: detected capacity change from 0 to 1024 [ 101.155875][T14076] gtp0: entered promiscuous mode [ 101.160878][T14076] gtp0: entered allmulticast mode [ 101.183707][T14065] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 101.222679][T14065] EXT4-fs error (device loop3): ext4_get_first_dir_block:3552: inode #11: comm syz.3.5086: directory missing '..' [ 101.266578][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.340681][T14110] loop0: detected capacity change from 0 to 128 [ 101.347185][T14109] loop2: detected capacity change from 0 to 512 [ 101.381871][T14109] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 101.402039][T14119] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 101.418185][T14109] ext4 filesystem being mounted at /1057/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 101.495255][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.037092][T14224] netlink: 'syz.4.5160': attribute type 4 has an invalid length. [ 102.137056][T14240] usb usb4: usbfs: process 14240 (syz.2.5169) did not claim interface 0 before use [ 102.155208][ T29] kauditd_printk_skb: 13 callbacks suppressed [ 102.155224][ T29] audit: type=1326 audit(1758063762.904:21079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14245 comm="syz.4.5171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb545aeba9 code=0x7ffc0000 [ 102.173389][T14249] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 102.184971][ T29] audit: type=1326 audit(1758063762.904:21080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14245 comm="syz.4.5171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb545aeba9 code=0x7ffc0000 [ 102.202058][ T29] audit: type=1326 audit(1758063762.944:21081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14245 comm="syz.4.5171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=100 compat=0 ip=0x7feb545aeba9 code=0x7ffc0000 [ 102.247545][ T29] audit: type=1326 audit(1758063762.944:21082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14245 comm="syz.4.5171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb545aeba9 code=0x7ffc0000 [ 102.271202][ T29] audit: type=1326 audit(1758063762.944:21083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14245 comm="syz.4.5171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb545aeba9 code=0x7ffc0000 [ 102.304547][T14252] loop2: detected capacity change from 0 to 128 [ 102.441445][T14276] batadv1: entered promiscuous mode [ 102.497453][T14284] loop4: detected capacity change from 0 to 512 [ 102.529546][T14284] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 102.566829][T14284] ext4 filesystem being mounted at /1060/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 102.628143][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.753229][ T36] ip6_tunnel: ip6gretap2 xmit: Local address not yet configured! [ 102.831692][T14333] netlink: 'syz.1.5212': attribute type 15 has an invalid length. [ 103.149031][T14368] netdevsim netdevsim1 netdevsim0: left allmulticast mode [ 103.218515][ T36] ip6_tunnel: ip6gretap2 xmit: Local address not yet configured! [ 103.309060][ T36] ip6_tunnel: ip6gretap2 xmit: Local address not yet configured! [ 103.511383][ T29] audit: type=1400 audit(1758063764.254:21084): avc: denied { setopt } for pid=14429 comm="syz.0.5258" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 103.533962][T14427] netlink: 'syz.1.5260': attribute type 2 has an invalid length. [ 103.541718][T14427] netlink: 'syz.1.5260': attribute type 1 has an invalid length. [ 103.754604][T14465] __nla_validate_parse: 19 callbacks suppressed [ 103.754673][T14465] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5276'. [ 103.824085][T14465] bridge4: entered promiscuous mode [ 103.928534][T14487] usb usb1: check_ctrlrecip: process 14487 (syz.0.5287) requesting ep 01 but needs 81 [ 103.938290][T14487] usb usb1: usbfs: process 14487 (syz.0.5287) did not claim interface 0 before use [ 103.959896][T14489] netlink: 830 bytes leftover after parsing attributes in process `syz.1.5289'. [ 104.073007][ C0] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 104.280824][ T39] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 104.306953][ T39] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 104.307075][T14547] netlink: 'syz.0.5316': attribute type 2 has an invalid length. [ 104.315990][ T39] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 104.324023][T14547] netlink: 'syz.0.5316': attribute type 1 has an invalid length. [ 104.452893][T14561] netlink: 44 bytes leftover after parsing attributes in process `syz.1.5325'. [ 104.459144][T14565] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5327'. [ 104.628692][ T29] audit: type=1400 audit(1758063765.374:21085): avc: denied { write } for pid=14595 comm="syz.4.5341" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 104.666043][T14601] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check. [ 104.815928][T14627] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5356'. [ 104.842249][T14629] loop0: detected capacity change from 0 to 736 [ 104.849593][T14631] netlink: 'syz.1.5359': attribute type 21 has an invalid length. [ 104.890011][T14637] netlink: 'syz.3.5362': attribute type 4 has an invalid length. [ 104.993958][T14655] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5369'. [ 105.074741][T14671] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5376'. [ 105.083925][T14671] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5376'. [ 105.179028][T14688] netlink: 'syz.3.5384': attribute type 9 has an invalid length. [ 105.186938][T14688] netlink: 'syz.3.5384': attribute type 7 has an invalid length. [ 105.194733][T14688] netlink: 'syz.3.5384': attribute type 8 has an invalid length. [ 105.226137][T14692] netlink: 224 bytes leftover after parsing attributes in process `syz.1.5397'. [ 105.250527][T14694] loop4: detected capacity change from 0 to 512 [ 105.264620][ T29] audit: type=1326 audit(1758063766.014:21086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14696 comm="syz.2.5390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e5025eba9 code=0x7ffc0000 [ 105.288279][ T29] audit: type=1326 audit(1758063766.014:21087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14696 comm="syz.2.5390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e5025eba9 code=0x7ffc0000 [ 105.288310][ T29] audit: type=1326 audit(1758063766.014:21088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14696 comm="syz.2.5390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f9e5025eba9 code=0x7ffc0000 [ 105.325878][T14694] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 0, start 22000003) [ 105.358315][ C1] ip6_tunnel: ip6gretap2 xmit: Local address not yet configured! [ 105.366288][T14694] FAT-fs (loop4): Filesystem has been set read-only [ 105.507973][T14728] loop0: detected capacity change from 0 to 1024 [ 105.528946][T14728] EXT4-fs: Ignoring removed oldalloc option [ 105.538347][T14730] loop1: detected capacity change from 0 to 2048 [ 105.549741][T14728] EXT4-fs: inline encryption not supported [ 105.572389][T14728] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 105.586731][T14730] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 105.618835][T14728] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 2: comm syz.0.5402: lblock 2 mapped to illegal pblock 2 (length 1) [ 105.649181][T14728] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 48: comm syz.0.5402: lblock 0 mapped to illegal pblock 48 (length 1) [ 105.694953][T14728] EXT4-fs error (device loop0): ext4_acquire_dquot:6937: comm syz.0.5402: Failed to acquire dquot type 0 [ 105.717559][T14728] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 105.728143][T14728] EXT4-fs error (device loop0): ext4_evict_inode:254: inode #11: comm syz.0.5402: mark_inode_dirty error [ 105.743307][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.758961][T14728] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 105.778692][T14728] EXT4-fs (loop0): 1 orphan inode deleted [ 105.793626][ T3329] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1) [ 105.808574][T14728] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 105.811861][T14758] netlink: 132 bytes leftover after parsing attributes in process `syz.3.5415'. [ 105.835009][ T3329] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u8:6: Failed to release dquot type 0 [ 105.851768][T14728] EXT4-fs error (device loop0): __ext4_get_inode_loc:4861: comm syz.0.5402: Invalid inode table block 1 in block_group 0 [ 105.872153][T14728] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 105.915543][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.933053][ T39] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1) [ 105.953239][ T39] EXT4-fs error (device loop0): ext4_release_dquot:6973: comm kworker/u8:2: Failed to release dquot type 0 [ 105.971491][ T3305] EXT4-fs error (device loop0): __ext4_get_inode_loc:4861: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 106.023726][ T3305] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 106.041271][ T3305] EXT4-fs error (device loop0): ext4_quota_off:7221: inode #3: comm syz-executor: mark_inode_dirty error [ 106.386199][T14851] gtp0: entered promiscuous mode [ 106.391259][T14851] gtp0: entered allmulticast mode [ 106.691737][T14913] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 106.701535][T14915] loop1: detected capacity change from 0 to 512 [ 106.736204][T14915] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a802c098, mo2=0002] [ 106.774436][T14915] System zones: 0-2, 18-18, 34-34 [ 106.801729][T14915] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 106.837112][T14915] ext4 filesystem being mounted at /1086/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 106.870292][T14915] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.5487: corrupted xattr block 19: overlapping e_value [ 106.889255][T14915] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop1 ino=15 [ 106.898643][T14915] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.5487: corrupted xattr block 19: overlapping e_value [ 106.935795][T14915] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop1 ino=15 [ 106.953193][T14915] EXT4-fs error (device loop1): ext4_xattr_block_list:762: inode #15: comm syz.1.5487: corrupted xattr block 19: overlapping e_value [ 107.031656][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.145635][T14975] IPv6: sit5: Disabled Multicast RS [ 107.194074][T14977] syz.0.5516 (14977): attempted to duplicate a private mapping with mremap. This is not supported. [ 107.291553][ T29] kauditd_printk_skb: 32 callbacks suppressed [ 107.291570][ T29] audit: type=1326 audit(1758063768.034:21117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14998 comm="syz.0.5534" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcf9776eba9 code=0x0 [ 107.616777][T15056] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 107.782054][T15083] loop0: detected capacity change from 0 to 512 [ 107.815600][T15091] IPv6: sit2: Disabled Multicast RS [ 107.824911][T15083] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a802c098, mo2=0002] [ 107.853067][T15083] System zones: 0-2, 18-18, 34-34 [ 107.885082][T15083] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 107.904520][T15083] ext4 filesystem being mounted at /1108/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 107.932642][T15083] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.5570: corrupted xattr block 19: overlapping e_value [ 107.983346][T15083] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=15 [ 108.013786][T15083] EXT4-fs error (device loop0): ext4_xattr_block_get:593: inode #15: comm syz.0.5570: corrupted xattr block 19: overlapping e_value [ 108.041624][T15083] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=15 [ 108.050947][T15083] EXT4-fs error (device loop0): ext4_xattr_block_list:762: inode #15: comm syz.0.5570: corrupted xattr block 19: overlapping e_value [ 108.098584][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.346626][T15167] validate_nla: 9 callbacks suppressed [ 108.346643][T15167] netlink: 'syz.0.5611': attribute type 21 has an invalid length. [ 108.426015][T15176] netlink: 'syz.2.5613': attribute type 3 has an invalid length. [ 108.434325][T15179] netlink: 'syz.1.5615': attribute type 1 has an invalid length. [ 108.493570][T15187] : renamed from veth0_to_bond (while UP) [ 108.594394][T15199] batadv0: entered promiscuous mode [ 108.609381][T15203] loop4: detected capacity change from 0 to 512 [ 108.613585][T15199] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 108.646957][T15203] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 108.664349][T15203] EXT4-fs (loop4): 1 truncate cleaned up [ 108.671852][T15203] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 108.778901][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.827964][T15226] __nla_validate_parse: 16 callbacks suppressed [ 108.827984][T15226] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5634'. [ 108.960828][T15240] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5646'. [ 108.991697][T15240] (unnamed net_device) (uninitialized): option arp_all_targets: invalid value (40192) [ 109.028791][ T29] audit: type=1326 audit(1758063769.774:21118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15244 comm="syz.4.5649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb545aeba9 code=0x7ffc0000 [ 109.052510][ T29] audit: type=1326 audit(1758063769.774:21119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15244 comm="syz.4.5649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=36 compat=0 ip=0x7feb545aeba9 code=0x7ffc0000 [ 109.053649][T15247] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5648'. [ 109.076107][ T29] audit: type=1326 audit(1758063769.774:21120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15244 comm="syz.4.5649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb545aeba9 code=0x7ffc0000 [ 109.085071][T15247] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5648'. [ 109.117872][ T29] audit: type=1326 audit(1758063769.774:21121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15244 comm="syz.4.5649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb545aeba9 code=0x7ffc0000 [ 109.128519][T15247] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on [ 109.168170][T15253] netlink: 'syz.4.5653': attribute type 15 has an invalid length. [ 109.176115][T15253] netlink: 'syz.4.5653': attribute type 7 has an invalid length. [ 109.201791][T15247] bond3: entered allmulticast mode [ 109.208268][T15247] 8021q: adding VLAN 0 to HW filter on device bond3 [ 109.261386][T15265] netlink: 'syz.4.5658': attribute type 3 has an invalid length. [ 109.324089][T15275] IPVS: Error connecting to the multicast addr [ 109.441540][T15288] netlink: 10 bytes leftover after parsing attributes in process `syz.0.5670'. [ 109.474217][T15293] netlink: 56 bytes leftover after parsing attributes in process `syz.4.5672'. [ 109.493982][T15295] netlink: 'syz.3.5673': attribute type 3 has an invalid length. [ 109.568642][ T29] audit: type=1400 audit(1758063770.314:21122): avc: denied { read } for pid=15306 comm="syz.0.5679" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 109.598048][T15303] loop4: detected capacity change from 0 to 8192 [ 109.623600][T15311] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5682'. [ 109.736552][T15331] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5691'. [ 109.745640][T15331] (unnamed net_device) (uninitialized): option arp_all_targets: invalid value (40192) [ 109.792647][T15337] netlink: 'syz.0.5692': attribute type 3 has an invalid length. [ 109.873010][T15354] IPVS: sync thread started: state = MASTER, mcast_ifn = team_slave_1, syncid = 2, id = 0 [ 109.885613][T15351] batadv1: entered promiscuous mode [ 109.891627][T15351] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 109.922767][ T29] audit: type=1400 audit(1758063770.664:21123): avc: denied { module_load } for pid=15358 comm="syz.1.5705" path="/sys/power/pm_trace_dev_match" dev="sysfs" ino=217 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1 [ 109.953617][T15356] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 109.969715][T15359] (unnamed net_device) (uninitialized): Removing last ns target with arp_interval on [ 110.035045][T15378] netlink: 'syz.4.5714': attribute type 21 has an invalid length. [ 110.049994][T15376] netlink: 256 bytes leftover after parsing attributes in process `syz.3.5712'. [ 110.246640][T15412] netlink: 'syz.3.5730': attribute type 15 has an invalid length. [ 110.283915][T15418] futex_wake_op: syz.4.5727 tries to shift op by 144; fix this program [ 110.403147][ T29] audit: type=1326 audit(1758063771.144:21124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15433 comm="syz.3.5740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd1cfeba9 code=0x7ffc0000 [ 110.426913][ T29] audit: type=1326 audit(1758063771.144:21125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15433 comm="syz.3.5740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd1cfeba9 code=0x7ffc0000 [ 110.450911][ T29] audit: type=1326 audit(1758063771.144:21126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15433 comm="syz.3.5740" exe="/root/syz-executor" sig=0 arch=c000003e syscall=163 compat=0 ip=0x7fdbd1cfeba9 code=0x7ffc0000 [ 110.483357][T15443] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 110.541808][T15451] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5749'. [ 110.629772][T15463] openvswitch: netlink: Message has 6 unknown bytes. [ 110.705406][T15476] loop3: detected capacity change from 0 to 512 [ 110.730811][T15475] loop4: detected capacity change from 0 to 1024 [ 110.748741][T15477] loop1: detected capacity change from 0 to 1024 [ 110.758798][T15476] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 110.773456][T15475] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 110.836571][T15479] loop2: detected capacity change from 0 to 8192 [ 110.844373][T15477] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 110.891946][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 110.924332][T15477] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a040e11d, mo2=0002] [ 110.946306][T15477] System zones: 0-1, 2-3, 4-36, 98-101, 102-102 [ 110.953931][T15477] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 110.996660][T15496] gtp1: entered allmulticast mode [ 111.095458][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.565536][T15572] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 111.593288][T15572] vhci_hcd: invalid port number 253 [ 111.904690][T15626] futex_wake_op: syz.0.5823 tries to shift op by 144; fix this program [ 112.182479][T15665] gtp0: entered allmulticast mode [ 112.340604][ T29] kauditd_printk_skb: 3 callbacks suppressed [ 112.340622][ T29] audit: type=1326 audit(1758063773.084:21130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15686 comm="syz.1.5860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x7ffc0000 [ 112.370895][ T29] audit: type=1326 audit(1758063773.084:21131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15686 comm="syz.1.5860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x7ffc0000 [ 112.563071][ T29] audit: type=1326 audit(1758063773.094:21132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15686 comm="syz.1.5860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fe3d4c3eba9 code=0x7ffc0000 [ 112.586884][ T29] audit: type=1326 audit(1758063773.094:21133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15686 comm="syz.1.5860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x7ffc0000 [ 112.610829][ T29] audit: type=1326 audit(1758063773.094:21134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15686 comm="syz.1.5860" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x7ffc0000 [ 112.653139][T15714] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 112.673033][T15714] vhci_hcd: invalid port number 253 [ 112.722687][T15729] loop4: detected capacity change from 0 to 1024 [ 112.766359][T15729] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 112.807952][T15729] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a040e11d, mo2=0002] [ 112.836869][T15729] System zones: 0-1, 2-3, 4-36, 98-101, 102-102 [ 112.849422][T15742] futex_wake_op: syz.3.5876 tries to shift op by 144; fix this program [ 112.856184][T15729] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 112.895609][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 113.082183][ T29] audit: type=1326 audit(1758063773.824:21135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15769 comm="syz.4.5894" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb545aeba9 code=0x7ffc0000 [ 113.105979][ T29] audit: type=1326 audit(1758063773.824:21136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15769 comm="syz.4.5894" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7feb545aeba9 code=0x7ffc0000 [ 113.130040][ T29] audit: type=1326 audit(1758063773.824:21137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15769 comm="syz.4.5894" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb545aeba9 code=0x7ffc0000 [ 113.153646][ T29] audit: type=1326 audit(1758063773.824:21138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15769 comm="syz.4.5894" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb545aeba9 code=0x7ffc0000 [ 113.266268][ T29] audit: type=1326 audit(1758063774.014:21139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15789 comm="syz.0.5912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf9776eba9 code=0x7ffc0000 [ 113.354032][T15803] futex_wake_op: syz.1.5901 tries to shift op by 144; fix this program [ 113.839853][T15865] validate_nla: 2 callbacks suppressed [ 113.839872][T15865] netlink: 'syz.0.5924': attribute type 3 has an invalid length. [ 113.853225][T15865] __nla_validate_parse: 11 callbacks suppressed [ 113.853242][T15865] netlink: 132 bytes leftover after parsing attributes in process `syz.0.5924'. [ 114.062371][T15907] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5930'. [ 114.071526][T15907] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5930'. [ 114.080502][T15907] netlink: 2 bytes leftover after parsing attributes in process `syz.3.5930'. [ 114.186560][T15902] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5929'. [ 114.236958][T15923] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5934'. [ 114.252759][T15926] netlink: 64 bytes leftover after parsing attributes in process `syz.0.5936'. [ 114.336192][T15932] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5939'. [ 114.627078][T15958] loop3: detected capacity change from 0 to 512 [ 114.740252][T15967] netlink: 'syz.2.5957': attribute type 21 has an invalid length. [ 114.843277][T15958] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 114.913251][T15958] ext4 filesystem being mounted at /1132/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 114.966831][T15988] netlink: 'syz.2.5966': attribute type 3 has an invalid length. [ 114.975866][T15958] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5952: corrupted xattr block 33: invalid ea_ino [ 115.030258][T15958] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 115.069866][T15995] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5969'. [ 115.069898][T15958] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5952: corrupted xattr block 33: invalid ea_ino [ 115.117641][T15958] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 115.141769][T15958] EXT4-fs error (device loop3): ext4_xattr_block_get:593: inode #15: comm syz.3.5952: corrupted xattr block 33: invalid ea_ino [ 115.142477][T16002] (unnamed net_device) (uninitialized): up delay (1024) is not a multiple of miimon (100), value rounded to 1000 ms [ 115.167311][T16002] (unnamed net_device) (uninitialized): down delay (4) is not a multiple of miimon (100), value rounded to 0 ms [ 115.169087][T15958] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 115.383677][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 115.405239][T16024] bond0: option arp_interval: mode dependency failed, not supported in mode 802.3ad(4) [ 115.483702][T16032] netlink: 'syz.2.5987': attribute type 10 has an invalid length. [ 115.491604][T16032] netlink: 40 bytes leftover after parsing attributes in process `syz.2.5987'. [ 115.550282][T16040] netlink: 'syz.2.5990': attribute type 9 has an invalid length. [ 115.659639][T16054] netlink: 'syz.1.5998': attribute type 1 has an invalid length. [ 116.415060][T16139] netlink: 'syz.2.6040': attribute type 1 has an invalid length. [ 116.841126][T16205] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 116.959231][T16213] bond4: entered allmulticast mode [ 116.970646][T16213] 8021q: adding VLAN 0 to HW filter on device bond4 [ 117.159287][T16243] loop4: detected capacity change from 0 to 1024 [ 117.189956][T16243] EXT4-fs: Ignoring removed bh option [ 117.226298][T16243] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 117.335352][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 117.548997][T16321] loop1: detected capacity change from 0 to 512 [ 117.602201][T16321] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 117.618374][T16321] ext4 filesystem being mounted at /1210/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 117.631146][T16321] EXT4-fs error (device loop1): ext4_find_dest_de:2052: inode #2: block 3: comm syz.1.6130: bad entry in directory: inode out of bounds - offset=44, inode=2336, rec_len=16, size=2048 fake=0 [ 117.673569][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 117.720955][T16346] IPVS: set_ctl: invalid protocol: 196 172.20.20.187:20000 [ 117.739819][T16347] lo: entered promiscuous mode [ 117.774781][ T29] kauditd_printk_skb: 7809 callbacks suppressed [ 117.774813][ T29] audit: type=1326 audit(1758063778.524:28949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16352 comm="syz.2.6145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e5025eba9 code=0x7ffc0000 [ 117.775578][ T29] audit: type=1326 audit(1758063778.524:28950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16352 comm="syz.2.6145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7f9e5025eba9 code=0x7ffc0000 [ 117.778036][ T29] audit: type=1326 audit(1758063778.524:28951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16352 comm="syz.2.6145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9e5025eba9 code=0x7ffc0000 [ 117.843379][T16357] C: renamed from team_slave_0 (while UP) [ 117.845251][T16357] netlink: 'syz.0.6147': attribute type 3 has an invalid length. [ 117.846125][T16357] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 117.885744][T16363] random: crng reseeded on system resumption [ 117.888073][ T29] audit: type=1400 audit(1758063778.634:28952): avc: denied { append } for pid=16362 comm="syz.1.6150" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 117.968818][T16373] Option ' ' to dns_resolver key: bad/missing value [ 117.996005][T16376] loop0: detected capacity change from 0 to 512 [ 117.996247][T16376] EXT4-fs: Ignoring removed orlov option [ 117.996265][T16376] EXT4-fs: Ignoring removed i_version option [ 117.996682][T16376] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 118.010135][T16379] lo: entered promiscuous mode [ 118.041014][T16376] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 118.072685][T16376] ext4 filesystem being mounted at /1238/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 118.143128][T16376] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #2: comm syz.0.6157: corrupted inode contents [ 118.167099][T16376] EXT4-fs (loop0): Remounting filesystem read-only [ 118.190437][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 118.326472][T16425] netlink: 'syz.3.6179': attribute type 10 has an invalid length. [ 118.382247][ T29] audit: type=1326 audit(1758063779.124:28953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.4.6184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb545aeba9 code=0x7ffc0000 [ 118.436390][ T29] audit: type=1326 audit(1758063779.164:28954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.4.6184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7feb545aeba9 code=0x7ffc0000 [ 118.460066][ T29] audit: type=1326 audit(1758063779.164:28955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.4.6184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb545aeba9 code=0x7ffc0000 [ 118.483884][ T29] audit: type=1326 audit(1758063779.164:28956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16433 comm="syz.4.6184" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb545aeba9 code=0x7ffc0000 [ 118.597939][T16462] 9p: Unknown access argument : -22 [ 118.634731][T16470] dummy0: entered promiscuous mode [ 118.756175][T16488] netlink: 'syz.4.6210': attribute type 6 has an invalid length. [ 118.949112][T16514] loop2: detected capacity change from 0 to 512 [ 119.011405][T16514] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 119.101205][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 119.126059][T16544] __nla_validate_parse: 17 callbacks suppressed [ 119.126090][T16544] netlink: 14 bytes leftover after parsing attributes in process `syz.0.6237'. [ 119.200848][T16548] loop4: detected capacity change from 0 to 512 [ 119.227761][T16548] EXT4-fs: Ignoring removed orlov option [ 119.233746][T16548] EXT4-fs: Ignoring removed i_version option [ 119.263785][T16548] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 119.295840][T16548] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 119.326540][T16548] ext4 filesystem being mounted at /1243/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 119.347043][T16548] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #2: comm syz.4.6240: corrupted inode contents [ 119.360244][T16548] EXT4-fs (loop4): Remounting filesystem read-only [ 119.382095][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 119.415432][T16578] netlink: 48 bytes leftover after parsing attributes in process `syz.2.6254'. [ 119.444836][T16585] 9p: Unknown access argument : -22 [ 119.540721][T16600] netlink: 'syz.3.6262': attribute type 6 has an invalid length. [ 119.569175][T16605] netlink: 'syz.4.6265': attribute type 3 has an invalid length. [ 119.595739][T16609] netdevsim netdevsim0 netdevsim0: entered allmulticast mode [ 119.603699][T16609] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 119.666146][T16619] 9p: Unknown access argument : -22 [ 119.714309][T16628] loop0: detected capacity change from 0 to 128 [ 119.765597][T16637] loop3: detected capacity change from 0 to 512 [ 119.802429][T16637] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 119.876931][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 119.941757][T16663] netlink: 14 bytes leftover after parsing attributes in process `syz.1.6295'. [ 119.995431][T16670] netlink: 'syz.2.6296': attribute type 2 has an invalid length. [ 120.048524][T16676] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6301'. [ 120.075871][T16684] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6302'. [ 120.085021][T16684] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6302'. [ 120.142793][T16692] loop3: detected capacity change from 0 to 1024 [ 120.192270][T16692] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 120.192805][T16706] netlink: 'syz.0.6314': attribute type 2 has an invalid length. [ 120.219885][T16692] ext4 filesystem being mounted at /1197/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 120.267756][T16692] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.6309: Freeing blocks not in datazone - block = 0, count = 16 [ 120.281244][ T29] audit: type=1400 audit(1758063781.014:28957): avc: denied { write } for pid=16691 comm="syz.3.6309" name="file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 120.304052][ T29] audit: type=1400 audit(1758063781.014:28958): avc: denied { open } for pid=16691 comm="syz.3.6309" path="/1197/file1/file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 120.364978][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 120.464347][T16740] netlink: 628 bytes leftover after parsing attributes in process `syz.1.6331'. [ 120.478741][T16742] netlink: 'syz.2.6333': attribute type 21 has an invalid length. [ 120.628877][T16771] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6347'. [ 120.860074][T16814] netlink: 'syz.3.6369': attribute type 1 has an invalid length. [ 121.079711][T16855] netlink: 'syz.4.6390': attribute type 10 has an invalid length. [ 121.087719][T16855] netlink: 168 bytes leftover after parsing attributes in process `syz.4.6390'. [ 121.098387][T16852] : renamed from vlan0 (while UP) [ 121.172861][T16866] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6395'. [ 121.247036][T16883] netlink: 'syz.4.6402': attribute type 21 has an invalid length. [ 121.329826][T16898] loop2: detected capacity change from 0 to 1024 [ 121.415415][T16898] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 121.446394][T16898] ext4 filesystem being mounted at /1355/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 121.461968][T16898] EXT4-fs error (device loop2): ext4_free_blocks:6696: comm syz.2.6411: Freeing blocks not in datazone - block = 0, count = 16 [ 121.576020][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 121.822906][T16987] SELinux: security_context_str_to_sid () failed with errno=-22 [ 122.035596][T17022] ip6gre2: entered promiscuous mode [ 122.462406][T17099] netlink: 'syz.0.6506': attribute type 4 has an invalid length. [ 122.962712][T17193] loop4: detected capacity change from 0 to 512 [ 123.015898][T17203] syz.3.6558 uses obsolete (PF_INET,SOCK_PACKET) [ 123.073224][T17215] program syz.1.6561 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 123.113566][T17222] netlink: 'syz.4.6564': attribute type 4 has an invalid length. [ 123.751584][ T29] kauditd_printk_skb: 23 callbacks suppressed [ 123.751601][ T29] audit: type=1400 audit(1758063784.494:28982): avc: denied { block_suspend } for pid=17328 comm="syz.1.6615" capability=36 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 124.130010][T17392] 9pnet: Could not find request transport: 0xffffffffffffffff [ 124.142824][T17397] __nla_validate_parse: 16 callbacks suppressed [ 124.142842][T17397] netlink: 132 bytes leftover after parsing attributes in process `syz.4.6648'. [ 124.232622][T17407] loop0: detected capacity change from 0 to 512 [ 124.266122][T17413] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6653'. [ 124.275816][T17407] EXT4-fs (loop0): too many log groups per flexible block group [ 124.283709][T17407] EXT4-fs (loop0): failed to initialize mballoc (-12) [ 124.298797][T17407] EXT4-fs (loop0): mount failed [ 124.604207][T17477] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6686'. [ 124.682964][ T29] audit: type=1400 audit(1758063785.424:28983): avc: denied { map } for pid=17486 comm="syz.1.6691" path="/dev/zero" dev="devtmpfs" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:zero_device_t tclass=chr_file permissive=1 [ 124.706339][ T29] audit: type=1400 audit(1758063785.424:28984): avc: denied { execute } for pid=17486 comm="syz.1.6691" path="/dev/zero" dev="devtmpfs" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:zero_device_t tclass=chr_file permissive=1 [ 124.904731][T17514] netlink: 'syz.2.6702': attribute type 3 has an invalid length. [ 124.912703][T17514] netlink: 132 bytes leftover after parsing attributes in process `syz.2.6702'. [ 124.929942][T17513] netlink: 5 bytes leftover after parsing attributes in process `syz.1.6703'. [ 124.945772][T17513] 0{X: renamed from gretap0 [ 124.958379][T17513] 0{X: entered allmulticast mode [ 124.970193][T17513] A link change request failed with some changes committed already. Interface 30{X may have been left with an inconsistent configuration, please check. [ 125.092171][T17541] netlink: 'syz.4.6717': attribute type 66 has an invalid length. [ 125.187866][ T29] audit: type=1400 audit(1758063785.934:28985): avc: granted { setsecparam } for pid=17563 comm="syz.1.6728" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security [ 125.225511][ T29] audit: type=1400 audit(1758063785.964:28986): avc: denied { mount } for pid=17559 comm="syz.4.6727" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1 [ 125.269812][T17572] netlink: 'syz.1.6731': attribute type 1 has an invalid length. [ 125.323046][T17581] netlink: 'syz.1.6735': attribute type 21 has an invalid length. [ 125.360742][T17587] IPv6: NLM_F_CREATE should be specified when creating new route [ 125.469057][T17601] veth7: entered allmulticast mode [ 125.555902][T17617] netlink: 'syz.1.6754': attribute type 3 has an invalid length. [ 125.563804][T17617] netlink: 132 bytes leftover after parsing attributes in process `syz.1.6754'. [ 125.711427][T17638] netlink: 5 bytes leftover after parsing attributes in process `syz.0.6763'. [ 125.729106][T17638] 0{X: renamed from gretap0 (while UP) [ 125.741577][T17642] netlink: 'syz.3.6765': attribute type 66 has an invalid length. [ 125.752476][T17638] 0{X: entered allmulticast mode [ 125.758787][T17638] A link change request failed with some changes committed already. Interface 30{X may have been left with an inconsistent configuration, please check. [ 125.827309][T17653] netlink: 'syz.4.6769': attribute type 3 has an invalid length. [ 125.835198][T17653] netlink: 132 bytes leftover after parsing attributes in process `syz.4.6769'. [ 125.865262][T17658] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6782'. [ 125.880554][T17662] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6775'. [ 125.881252][T17663] IPv6: NLM_F_CREATE should be specified when creating new route [ 125.889671][T17662] tc_dump_action: action bad kind [ 125.951235][ T29] audit: type=1326 audit(1758063786.694:28987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17668 comm="syz.3.6778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd1cfeba9 code=0x7ffc0000 [ 125.975089][ T29] audit: type=1326 audit(1758063786.694:28988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17668 comm="syz.3.6778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=198 compat=0 ip=0x7fdbd1cfeba9 code=0x7ffc0000 [ 125.998856][ T29] audit: type=1326 audit(1758063786.694:28989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17668 comm="syz.3.6778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd1cfeba9 code=0x7ffc0000 [ 126.022575][ T29] audit: type=1326 audit(1758063786.694:28990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17668 comm="syz.3.6778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd1cfeba9 code=0x7ffc0000 [ 126.093497][T17681] netlink: 'syz.4.6785': attribute type 29 has an invalid length. [ 126.101727][T17681] netlink: 'syz.4.6785': attribute type 3 has an invalid length. [ 126.153922][T17684] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 126.184824][T17684] vhci_hcd: default hub control req: 2314 v0008 i0002 l0 [ 126.234015][ T29] audit: type=1400 audit(1758063786.984:28991): avc: denied { execmod } for pid=17694 comm="syz.1.6791" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=51309 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 126.335130][T17709] vxcan3: entered promiscuous mode [ 126.340382][T17709] vxcan3: entered allmulticast mode [ 126.434465][T17727] netdevsim netdevsim4: Direct firmware load for ./file0/file1 failed with error -2 [ 126.467484][T17731] tc_dump_action: action bad kind [ 126.581817][T17757] vti0: entered promiscuous mode [ 126.586954][T17757] vti0: entered allmulticast mode [ 126.653646][T17767] netlink: 'syz.2.6826': attribute type 7 has an invalid length. [ 126.984499][T17807] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 127.010037][T17807] vhci_hcd: default hub control req: 2314 v0008 i0002 l0 [ 127.300845][T17843] ip6gretap1: entered allmulticast mode [ 127.334296][T17849] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 127.341568][T17849] IPv6: NLM_F_CREATE should be set when creating new route [ 127.726895][T17912] loop4: detected capacity change from 0 to 764 [ 127.753037][ C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 127.924341][T17947] loop2: detected capacity change from 0 to 512 [ 127.944915][T17947] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 127.988262][T17947] EXT4-fs (loop2): 1 truncate cleaned up [ 128.009686][T17947] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 128.045122][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 128.106925][T17978] Option 'ڼeF 2͂ K*Ϫ,۟nyB6f[A [ 128.106925][T17978] Q׿2:[kz' to dns_resolver key: bad/missing value [ 128.135901][T17977] SELinux: Context system_u:object_r:framebuf_device_t:s0 is not valid (left unmapped). [ 128.170690][T17986] (unnamed net_device) (uninitialized): option use_carrier: invalid value (5) [ 128.331014][T18010] (unnamed net_device) (uninitialized): option packets_per_slave: invalid value (18446744073709551615) [ 128.342164][T18010] (unnamed net_device) (uninitialized): option packets_per_slave: allowed values 0 - 65535 [ 128.566153][T18040] loop3: detected capacity change from 0 to 764 [ 128.568767][T18046] SELinux: policydb version 0 does not match my version range 15-35 [ 128.595493][T18048] loop4: detected capacity change from 0 to 512 [ 128.605474][T18046] SELinux: failed to load policy [ 128.614808][T18048] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 128.644940][T18048] EXT4-fs (loop4): 1 truncate cleaned up [ 128.653283][T18048] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 128.786257][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 128.843160][T18069] (unnamed net_device) (uninitialized): option use_carrier: invalid value (5) [ 128.984029][ T29] kauditd_printk_skb: 14 callbacks suppressed [ 128.984109][ T29] audit: type=1326 audit(1758063789.734:29006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18089 comm="syz.3.6985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd1cfeba9 code=0x7ffc0000 [ 129.027195][T18091] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 129.033776][T18091] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 129.041559][T18091] vhci_hcd vhci_hcd.0: Device attached [ 129.062630][ T29] audit: type=1326 audit(1758063789.764:29007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18089 comm="syz.3.6985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd1cfeba9 code=0x7ffc0000 [ 129.086444][ T29] audit: type=1326 audit(1758063789.764:29008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18089 comm="syz.3.6985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fdbd1d00afa code=0x7ffc0000 [ 129.110202][ T29] audit: type=1326 audit(1758063789.764:29009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18089 comm="syz.3.6985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdbd1cfd510 code=0x7ffc0000 [ 129.124534][T18094] vhci_hcd: connection closed [ 129.133910][ T29] audit: type=1326 audit(1758063789.764:29010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18089 comm="syz.3.6985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fdbd1cfd65f code=0x7ffc0000 [ 129.141917][ T12] vhci_hcd: stop threads [ 129.167048][ T12] vhci_hcd: release socket [ 129.171483][ T12] vhci_hcd: disconnect device [ 129.178661][ T29] audit: type=1326 audit(1758063789.874:29011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18089 comm="syz.3.6985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fdbd1cfd80a code=0x7ffc0000 [ 129.202262][ T29] audit: type=1326 audit(1758063789.874:29012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18089 comm="syz.3.6985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd1cfeba9 code=0x7ffc0000 [ 129.225919][ T29] audit: type=1326 audit(1758063789.874:29013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18089 comm="syz.3.6985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdbd1cfeba9 code=0x7ffc0000 [ 129.300599][T18113] (unnamed net_device) (uninitialized): option packets_per_slave: invalid value (18446744073709551615) [ 129.311808][T18113] (unnamed net_device) (uninitialized): option packets_per_slave: allowed values 0 - 65535 [ 129.370575][T18123] : renamed from bond_slave_0 [ 129.418858][T18133] loop2: detected capacity change from 0 to 256 [ 129.462314][T18139] loop1: detected capacity change from 0 to 2048 [ 129.535199][ T4140] loop1: unable to read partition table [ 129.540968][ T4140] loop1: partition table beyond EOD, truncated [ 129.594088][T18155] __nla_validate_parse: 8 callbacks suppressed [ 129.594114][T18155] netlink: 20 bytes leftover after parsing attributes in process `syz.4.7016'. [ 129.606260][T18139] loop1: unable to read partition table [ 129.621416][T18139] loop1: partition table beyond EOD, truncated [ 129.627828][T18139] loop_reread_partitions: partition scan of loop1 () failed (rc=-5) [ 129.691202][ T29] audit: type=1326 audit(1758063790.434:29014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18162 comm="syz.1.7019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe3d4c3eba9 code=0x7ffc0000 [ 129.705427][T18166] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 129.748089][ T29] audit: type=1326 audit(1758063790.434:29015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18162 comm="syz.1.7019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=63 compat=0 ip=0x7fe3d4c3eba9 code=0x7ffc0000 [ 130.036289][T18212] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 130.165149][T18231] netlink: 44 bytes leftover after parsing attributes in process `syz.0.7053'. [ 130.185257][T18234] netlink: 9004 bytes leftover after parsing attributes in process `syz.1.7056'. [ 130.193141][T18231] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7053'. [ 130.203480][T18231] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7053'. [ 130.265565][T18245] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7060'. [ 130.352231][T18245] netdevsim netdevsim0 netdevsim0: left promiscuous mode [ 130.359566][T18245] netlink: 44 bytes leftover after parsing attributes in process `syz.0.7060'. [ 130.380864][T18248] : renamed from bond_slave_0 [ 130.444545][T18264] netlink: 9004 bytes leftover after parsing attributes in process `syz.2.7070'. [ 131.018614][T18308] validate_nla: 6 callbacks suppressed [ 131.018647][T18308] netlink: 'syz.0.7090': attribute type 29 has an invalid length. [ 131.089273][T18314] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 131.096740][T18314] IPv6: NLM_F_CREATE should be set when creating new route [ 131.103972][T18314] IPv6: NLM_F_CREATE should be set when creating new route [ 131.792104][T18393] netlink: 16399 bytes leftover after parsing attributes in process `syz.2.7132'. [ 131.882308][T18405] bond0: (slave bond_slave_1): Releasing backup interface [ 132.709918][T18553] netlink: 'syz.2.7211': attribute type 39 has an invalid length. [ 132.733876][T18559] netlink: 'syz.4.7214': attribute type 4 has an invalid length. [ 132.777406][T18563] loop3: detected capacity change from 0 to 512 [ 132.825088][T18563] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 132.865185][T18563] EXT4-fs (loop3): warning: maximal mount count reached, running e2fsck is recommended [ 132.898863][T18563] EXT4-fs error (device loop3): ext4_orphan_get:1392: comm syz.3.7216: inode #15: comm syz.3.7216: iget: illegal inode # [ 132.916980][T18563] EXT4-fs (loop3): Remounting filesystem read-only [ 132.933394][T18563] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 132.981135][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 133.182641][T18625] loop0: detected capacity change from 0 to 128 [ 133.228253][T18625] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 133.235823][T18635] IPv6: NLM_F_REPLACE set, but no existing node found! [ 133.278128][ T3329] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 133.403857][T18656] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7261'. [ 133.889957][T18729] netlink: 'syz.0.7297': attribute type 11 has an invalid length. [ 133.997611][T18739] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 134.074107][ T29] kauditd_printk_skb: 116 callbacks suppressed [ 134.074123][ T29] audit: type=1400 audit(1758063794.824:29132): avc: denied { ioctl } for pid=18753 comm="syz.0.7310" path="socket:[54494]" dev="sockfs" ino=54494 ioctlcmd=0x89f0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 134.105405][T18754] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 134.117563][T18754] bond0: (slave lo): Error: Device can not be enslaved while up [ 134.136663][ T29] audit: type=1400 audit(1758063794.884:29133): avc: denied { setopt } for pid=18755 comm="syz.1.7311" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 134.217425][T18768] loop2: detected capacity change from 0 to 512 [ 134.237256][ T29] audit: type=1400 audit(1758063794.984:29134): avc: denied { module_request } for pid=18769 comm="syz.0.7318" kmod="nfct-helper-" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 134.264388][T18768] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 134.284307][T18768] ext4 filesystem being mounted at /1500/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 134.330353][ T29] audit: type=1400 audit(1758063795.074:29135): avc: denied { setattr } for pid=18767 comm="syz.2.7317" name="file0" dev="loop2" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 134.382503][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 134.396854][ T29] audit: type=1400 audit(1758063795.144:29136): avc: denied { write } for pid=18788 comm="syz.1.7327" name="usbmon4" dev="devtmpfs" ino=154 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 134.420613][ T29] audit: type=1400 audit(1758063795.144:29137): avc: denied { open } for pid=18788 comm="syz.1.7327" path="/dev/usbmon4" dev="devtmpfs" ino=154 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 134.471551][ T29] audit: type=1326 audit(1758063795.214:29138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18796 comm="syz.0.7331" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcf9776eba9 code=0x0 [ 134.500964][ T29] audit: type=1400 audit(1758063795.244:29139): avc: denied { setopt } for pid=18794 comm="syz.2.7326" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 134.580003][ T29] audit: type=1400 audit(1758063795.324:29140): avc: denied { setopt } for pid=18810 comm="syz.2.7337" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 134.597932][T18813] C: renamed from team_slave_0 [ 134.606359][T18813] netlink: 'syz.4.7338': attribute type 1 has an invalid length. [ 134.614146][T18813] __nla_validate_parse: 1 callbacks suppressed [ 134.614164][T18813] netlink: 152 bytes leftover after parsing attributes in process `syz.4.7338'. [ 134.629638][T18813] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 134.666384][ T29] audit: type=1400 audit(1758063795.414:29141): avc: denied { ioctl } for pid=18819 comm="syz.2.7340" path="socket:[55433]" dev="sockfs" ino=55433 ioctlcmd=0x8955 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 134.783371][T18836] SELinux: failed to load policy [ 134.840288][T18846] loop4: detected capacity change from 0 to 512 [ 134.857797][T18846] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 134.904080][T18846] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 134.910529][T18857] loop3: detected capacity change from 0 to 512 [ 134.925719][T18846] ext4 filesystem being mounted at /1498/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 134.938544][T18846] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.7354: corrupted xattr block 19: overlapping e_value [ 134.947928][T18861] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: invalid value (242) [ 134.953640][T18857] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.7359: Invalid inode bitmap blk 4 in block_group 0 [ 134.976421][T18857] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 134.980063][T18846] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 134.998011][T18846] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.7354: corrupted xattr block 19: overlapping e_value [ 135.014281][T18846] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 135.029971][T18857] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. [ 135.039253][T18846] EXT4-fs error (device loop4): ext4_xattr_block_get:593: inode #15: comm syz.4.7354: corrupted xattr block 19: overlapping e_value [ 135.079331][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 135.079597][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 135.222900][T18890] netlink: 'syz.2.7374': attribute type 1 has an invalid length. [ 135.442996][ C0] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 135.474942][T18926] 8021q: adding VLAN 0 to HW filter on device bond6 [ 135.562321][T18949] Unsupported ieee802154 address type: 0 [ 135.576294][T18952] netlink: 'syz.3.7404': attribute type 12 has an invalid length. [ 135.695989][T18969] loop3: detected capacity change from 0 to 2048 [ 135.722797][T18977] netlink: 'syz.2.7417': attribute type 3 has an invalid length. [ 135.731038][T18977] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7417'. [ 135.733016][T18979] netlink: 'syz.4.7418': attribute type 10 has an invalid length. [ 135.763391][ T3294] loop3: p1 < > p4 [ 135.768265][ T3294] loop3: p4 size 8388608 extends beyond EOD, truncated [ 135.779593][T18981] loop0: detected capacity change from 0 to 512 [ 135.788462][T18969] loop3: p1 < > p4 [ 135.796250][T18969] loop3: p4 size 8388608 extends beyond EOD, truncated [ 135.816657][T18985] Unsupported ieee802154 address type: 0 [ 135.884724][ T4140] udevd[4140]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory [ 135.895837][ T3294] udevd[3294]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory [ 136.010413][T19007] loop0: detected capacity change from 0 to 1024 [ 136.058783][T19007] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 136.109371][T19015] 8021q: adding VLAN 0 to HW filter on device bond5 [ 136.128295][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 136.183466][T19022] lo: left promiscuous mode [ 136.279099][T19026] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7440'. [ 136.305659][T19028] netlink: 'syz.2.7441': attribute type 29 has an invalid length. [ 136.680392][T19075] loop0: detected capacity change from 0 to 512 [ 136.697543][T19078] netlink: 'syz.3.7466': attribute type 10 has an invalid length. [ 136.705684][T19075] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 136.727468][T19075] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.7463: bg 0: block 4: invalid block bitmap [ 136.743178][T19075] EXT4-fs (loop0): Remounting filesystem read-only [ 136.749858][T19075] EXT4-fs (loop0): 1 truncate cleaned up [ 136.764710][T19075] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 136.778313][T19089] netlink: 28 bytes leftover after parsing attributes in process `syz.4.7468'. [ 136.820390][T19093] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7472'. [ 136.829513][T19093] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7472'. [ 136.846184][T19097] netlink: 'syz.1.7473': attribute type 21 has an invalid length. [ 136.849730][ T3305] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 136.854268][T19097] netlink: 128 bytes leftover after parsing attributes in process `syz.1.7473'. [ 136.866368][T19099] loop4: detected capacity change from 0 to 512 [ 136.883191][T19097] netlink: 'syz.1.7473': attribute type 5 has an invalid length. [ 136.890951][T19097] netlink: 3 bytes leftover after parsing attributes in process `syz.1.7473'. [ 136.905286][T19099] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.7475: bad orphan inode 13 [ 136.915828][ T1036] IPVS: starting estimator thread 0... [ 136.936291][T19110] netlink: 'syz.2.7478': attribute type 10 has an invalid length. [ 136.936573][T19099] ext4_test_bit(bit=12, block=4) = 1 [ 136.944405][T19110] netlink: 40 bytes leftover after parsing attributes in process `syz.2.7478'. [ 136.959098][T19099] is_bad_inode(inode)=0 [ 136.963303][T19099] NEXT_ORPHAN(inode)=0 [ 136.967378][T19099] max_ino=32 [ 136.969928][T19110] team0: Port device geneve1 added [ 136.970582][T19099] i_nlink=1 [ 136.987209][T19099] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 137.004338][T19106] IPVS: using max 2880 ests per chain, 144000 per kthread [ 137.040769][T19099] EXT4-fs warning (device loop4): dx_probe:801: inode #2: comm syz.4.7475: Unrecognised inode hash code 20 [ 137.052331][T19099] EXT4-fs warning (device loop4): dx_probe:934: inode #2: comm syz.4.7475: Corrupt directory, running e2fsck is recommended [ 137.156402][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.196165][T19140] netlink: 'syz.0.7493': attribute type 5 has an invalid length. [ 137.204105][T19140] netlink: 168 bytes leftover after parsing attributes in process `syz.0.7493'. [ 137.329094][T19152] loop3: detected capacity change from 0 to 1024 [ 137.338104][T19164] loop4: detected capacity change from 0 to 128 [ 137.358128][T19152] EXT4-fs: Ignoring removed nobh option [ 137.363908][T19152] EXT4-fs: Ignoring removed bh option [ 137.408276][T19152] EXT4-fs (loop3): stripe (8) is not aligned with cluster size (16), stripe is disabled [ 137.445945][T19176] loop4: detected capacity change from 0 to 1024 [ 137.453343][T19176] EXT4-fs: Ignoring removed nomblk_io_submit option [ 137.453555][T19152] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 137.479458][T19152] EXT4-fs: Ignoring removed nobh option [ 137.485229][T19152] EXT4-fs: Ignoring removed bh option [ 137.498869][T19185] loop2: detected capacity change from 0 to 512 [ 137.504298][T19152] EXT4-fs (loop3): stripe (8) is not aligned with cluster size (16), stripe is disabled [ 137.507768][T19185] EXT4-fs: Ignoring removed nobh option [ 137.521183][T19152] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. [ 137.535249][T19176] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 137.549961][T19176] System zones: 0-1, 3-36 [ 137.555528][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.591537][T19176] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 137.625360][T19185] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #3: comm syz.2.7514: corrupted inode contents [ 137.641398][T19185] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #3: comm syz.2.7514: mark_inode_dirty error [ 137.677541][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.693138][T19185] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #3: comm syz.2.7514: corrupted inode contents [ 137.724953][T19185] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #3: comm syz.2.7514: mark_inode_dirty error [ 137.765800][T19185] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.7514: Failed to acquire dquot type 0 [ 137.832984][T19185] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.7514: corrupted inode contents [ 137.877209][T19185] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #16: comm syz.2.7514: mark_inode_dirty error [ 137.908295][T19185] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.7514: corrupted inode contents [ 137.940689][T19185] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #16: comm syz.2.7514: mark_inode_dirty error [ 137.963596][T19185] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.7514: corrupted inode contents [ 138.002160][T19185] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem [ 138.043300][T19185] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #16: comm syz.2.7514: corrupted inode contents [ 138.078100][T19185] EXT4-fs error (device loop2): ext4_truncate:4666: inode #16: comm syz.2.7514: mark_inode_dirty error [ 138.112529][T19185] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem [ 138.128511][T19264] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 138.146860][T19185] EXT4-fs (loop2): 1 truncate cleaned up [ 138.153068][T19185] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 138.159219][T19266] ------------[ cut here ]------------ [ 138.171336][T19266] verifier bug: scc exit: no visit info for call chain (1)(1) [ 138.179004][T19266] WARNING: CPU: 1 PID: 19266 at kernel/bpf/verifier.c:1950 do_check+0x78e4/0x7a10 [ 138.183825][T19185] ext4 filesystem being mounted at /1560/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 138.188392][T19266] Modules linked in: [ 138.202855][T19266] CPU: 1 UID: 0 PID: 19266 Comm: syz.0.7551 Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 138.214437][T19266] Tainted: [W]=WARN [ 138.218336][T19266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 138.228566][T19266] RIP: 0010:do_check+0x78e4/0x7a10 [ 138.233786][T19266] Code: d4 86 e8 ff f3 0c 00 c6 05 1b 7d 6e 05 01 90 4c 89 ef 4c 89 f6 e8 3c 4a 00 00 48 c7 c7 78 9d 45 86 48 89 c6 e8 5d e7 bb ff 90 <0f> 0b 90 90 e9 12 fd ff ff e8 6e 95 02 04 e8 59 43 f2 ff 48 c7 c7 [ 138.253642][T19266] RSP: 0018:ffffc90001367608 EFLAGS: 00010246 [ 138.259999][T19266] RAX: c5c7841ea1917000 RBX: ffff8881003be720 RCX: 0000000000080000 [ 138.268057][T19266] RDX: ffffc90002023000 RSI: 0000000000028c3e RDI: 0000000000028c3f [ 138.276344][T19266] RBP: 0000000000000001 R08: 0001c9000136747f R09: 0000000000000000 [ 138.284446][T19266] R10: 00000000ffffffff R11: 0000000000000002 R12: ffff88811b8baf00 [ 138.292449][T19266] R13: ffff888109778000 R14: ffff88810977e328 R15: 0000000000000000 [ 138.300483][T19266] FS: 00007fcf961d76c0(0000) GS:ffff8882aef40000(0000) knlGS:0000000000000000 [ 138.309493][T19266] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 138.311525][T19274] netlink: 'syz.3.7555': attribute type 3 has an invalid length. [ 138.316137][T19266] CR2: 0000200000003000 CR3: 0000000137108000 CR4: 00000000003506f0 [ 138.316161][T19266] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 138.316203][T19266] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 [ 138.316221][T19266] Call Trace: [ 138.316228][T19266] [ 138.316241][T19266] ? __account_obj_stock+0x211/0x350 [ 138.359686][T19266] ? __rcu_read_unlock+0x4f/0x70 [ 138.365053][T19266] do_check_common+0xc3a/0x12a0 [ 138.369950][T19266] bpf_check+0x942b/0xd9e0 [ 138.374616][T19266] ? __rcu_read_unlock+0x4f/0x70 [ 138.379747][T19266] ? __alloc_frozen_pages_noprof+0x188/0x360 [ 138.385820][T19266] ? alloc_pages_bulk_noprof+0x4b8/0x540 [ 138.391493][T19266] ? __vmap_pages_range_noflush+0xbc4/0xcf0 [ 138.397612][T19266] ? pcpu_block_refresh_hint+0x10b/0x170 [ 138.403406][T19266] ? pcpu_block_update_hint_alloc+0x63d/0x660 [ 138.409820][T19266] ? pcpu_block_update_hint_alloc+0x63d/0x660 [ 138.416053][T19266] ? css_rstat_updated+0xb7/0x240 [ 138.421142][T19266] ? __rcu_read_unlock+0x4f/0x70 [ 138.426151][T19266] ? pcpu_memcg_post_alloc_hook+0xf1/0x150 [ 138.431983][T19266] ? should_fail_ex+0x30/0x280 [ 138.436927][T19266] ? selinux_bpf_prog_load+0x36/0xf0 [ 138.442344][T19266] ? should_failslab+0x8c/0xb0 [ 138.447258][T19266] ? __kmalloc_cache_noprof+0x189/0x320 [ 138.452941][T19266] ? selinux_bpf_prog_load+0xbf/0xf0 [ 138.458259][T19266] ? security_bpf_prog_load+0x2c/0xa0 [ 138.463780][T19266] bpf_prog_load+0xedd/0x1070 [ 138.468692][T19266] ? security_bpf+0x2b/0x90 [ 138.473359][T19266] __sys_bpf+0x462/0x7b0 [ 138.477650][T19266] __x64_sys_bpf+0x41/0x50 [ 138.482259][T19266] x64_sys_call+0x2aea/0x2ff0 [ 138.487092][T19266] do_syscall_64+0xd2/0x200 [ 138.491792][T19266] ? arch_exit_to_user_mode_prepare+0x27/0x80 [ 138.498035][T19266] ? irqentry_exit_to_user_mode+0x7e/0xa0 [ 138.503890][T19266] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 138.509815][T19266] RIP: 0033:0x7fcf9776eba9 [ 138.514332][T19266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 138.534019][T19266] RSP: 002b:00007fcf961d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 138.542466][T19266] RAX: ffffffffffffffda RBX: 00007fcf979b5fa0 RCX: 00007fcf9776eba9 [ 138.550539][T19266] RDX: 0000000000000048 RSI: 00002000000017c0 RDI: 0000000000000005 [ 138.558595][T19266] RBP: 00007fcf977f1e19 R08: 0000000000000000 R09: 0000000000000000 [ 138.566670][T19266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 138.574709][T19266] R13: 00007fcf979b6038 R14: 00007fcf979b5fa0 R15: 00007ffd63b93ec8 [ 138.582715][T19266] [ 138.585925][T19266] ---[ end trace 0000000000000000 ]--- [ 138.592363][ T3301] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.687244][T19307] ieee802154 phy1 wpan1: encryption failed: -22 [ 138.893873][T19345] netlink: 'syz.3.7590': attribute type 21 has an invalid length. [ 139.009207][T19360] netlink: 'syz.0.7597': attribute type 20 has an invalid length. [ 139.017356][T19360] IPv6: NLM_F_CREATE should be specified when creating new route [ 139.181552][T19385] loop3: detected capacity change from 0 to 1024 [ 139.192321][ T29] kauditd_printk_skb: 58 callbacks suppressed [ 139.192338][ T29] audit: type=1400 audit(1758063799.944:29198): avc: denied { create } for pid=19384 comm="syz.2.7610" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 139.201971][T19385] EXT4-fs: Ignoring removed nobh option [ 139.250220][ T29] audit: type=1400 audit(1758063799.974:29199): avc: denied { setopt } for pid=19384 comm="syz.2.7610" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 139.264411][T19385] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 139.316393][T19385] EXT4-fs error (device loop3): ext4_ext_check_inode:523: inode #11: comm syz.3.7609: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 139.346137][ T29] audit: type=1400 audit(1758063800.094:29200): avc: denied { read } for pid=19404 comm="syz.0.7616" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 139.352535][T19385] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.7609: couldn't read orphan inode 11 (err -117) [ 139.381400][T19385] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 139.458131][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.511400][ T23] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 139.511739][ T29] audit: type=1400 audit(1758063800.254:29201): avc: denied { read write } for pid=19419 comm="syz.4.7627" name="uhid" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 139.519221][ T23] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 139.542557][ T29] audit: type=1400 audit(1758063800.254:29202): avc: denied { open } for pid=19419 comm="syz.4.7627" path="/dev/uhid" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 139.656294][ T29] audit: type=1400 audit(1758063800.394:29203): avc: denied { read } for pid=19441 comm="syz.0.7633" name="vsock" dev="devtmpfs" ino=257 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 139.679226][ T29] audit: type=1400 audit(1758063800.394:29204): avc: denied { open } for pid=19441 comm="syz.0.7633" path="/dev/vsock" dev="devtmpfs" ino=257 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 139.702667][ T29] audit: type=1400 audit(1758063800.394:29205): avc: denied { ioctl } for pid=19441 comm="syz.0.7633" path="/dev/vsock" dev="devtmpfs" ino=257 ioctlcmd=0x7b9 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 139.740142][T19431] fido_id[19431]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 139.768187][T19453] loop1: detected capacity change from 0 to 764 [ 139.800502][ T29] audit: type=1400 audit(1758063800.524:29206): avc: denied { mount } for pid=19450 comm="syz.1.7637" name="/" dev="loop1" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1 [ 139.823478][ T29] audit: type=1400 audit(1758063800.534:29207): avc: denied { read } for pid=19447 comm="syz.0.7636" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 139.965265][T19484] __nla_validate_parse: 6 callbacks suppressed [ 139.965285][T19484] netlink: 56 bytes leftover after parsing attributes in process `syz.1.7652'. [ 140.447884][T19568] netlink: 'syz.3.7694': attribute type 4 has an invalid length. [ 140.455897][T19568] netlink: 152 bytes leftover after parsing attributes in process `syz.3.7694'. [ 140.499830][T19568] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check. [ 140.529878][T19580] netlink: 16 bytes leftover after parsing attributes in process `syz.0.7699'. [ 140.552987][ C1] ip6_tunnel: ip6gretap2 xmit: Local address not yet configured! [ 140.572106][T19586] netlink: 56 bytes leftover after parsing attributes in process `syz.1.7703'. [ 140.609896][T19586] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7703'. [ 140.619190][T19586] netlink: 31 bytes leftover after parsing attributes in process `syz.1.7703'. [ 140.628405][T19586] netlink: 31 bytes leftover after parsing attributes in process `syz.1.7703'. [ 140.638256][T19592] netlink: 228 bytes leftover after parsing attributes in process `syz.2.7704'. [ 140.687702][T19604] loop4: detected capacity change from 0 to 164 [ 140.708048][T19606] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7713'. [ 140.755058][T19604] Unable to read rock-ridge attributes [ 140.889895][T19636] netlink: 40 bytes leftover after parsing attributes in process `syz.2.7728'. [ 140.914919][T19636] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check. [ 141.051238][T19662] loop3: detected capacity change from 0 to 764 [ 141.069846][T19662] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 141.095372][T19662] Symlink component flag not implemented [ 141.102634][T19662] Symlink component flag not implemented (7) [ 142.256455][T19880] loop4: detected capacity change from 0 to 512 [ 142.295986][T19880] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 142.319583][T19880] ext4 filesystem being mounted at /1587/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 142.362407][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 142.443645][T19909] C: renamed from team_slave_0 (while UP) [ 142.456138][T19909] validate_nla: 6 callbacks suppressed [ 142.456153][T19909] netlink: 'syz.1.7860': attribute type 1 has an invalid length. [ 142.469464][T19909] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 142.542333][T19915] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 142.758251][T19955] SELinux: failed to load policy [ 142.846998][T19964] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 143.027468][T19987] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: invalid value (242) [ 143.207081][T20011] netlink: 'syz.1.7909': attribute type 12 has an invalid length. [ 143.220206][T20009] Unsupported ieee802154 address type: 0 [ 143.318648][T20017] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 143.334388][T20019] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: invalid value (242) [ 143.431976][T20033] netlink: 'syz.1.7919': attribute type 1 has an invalid length. [ 143.511415][T20042] loop4: detected capacity change from 0 to 512 [ 143.533237][T20045] loop1: detected capacity change from 0 to 512 [ 143.537205][T20042] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.7924: Invalid inode bitmap blk 4 in block_group 0 [ 143.556637][T20042] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 143.579551][T20042] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. [ 143.588389][T20045] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 143.642308][T20045] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 143.655328][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 143.683213][T20045] ext4 filesystem being mounted at /1589/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 143.709649][T20062] netlink: 'syz.3.7933': attribute type 10 has an invalid length. [ 143.745103][T20045] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.7925: corrupted xattr block 19: overlapping e_value [ 143.768486][T20045] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop1 ino=15 [ 143.777917][T20045] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.7925: corrupted xattr block 19: overlapping e_value [ 143.795463][T20045] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop1 ino=15 [ 143.806259][T20045] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.7925: corrupted xattr block 19: overlapping e_value [ 143.865874][ T3300] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 144.046314][T20101] loop4: detected capacity change from 0 to 1024 [ 144.076937][T20101] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 144.093548][T20107] Unsupported ieee802154 address type: 0 [ 144.328286][ T3310] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 144.695614][T20154] Unsupported ieee802154 address type: 0 [ 145.034952][T20187] netlink: 'syz.2.7992': attribute type 10 has an invalid length. [ 145.049648][T20191] netlink: 'syz.0.7997': attribute type 10 has an invalid length. [ 145.064631][T20194] netlink: 'syz.1.7993': attribute type 5 has an invalid length. [ 145.072471][T20194] __nla_validate_parse: 17 callbacks suppressed [ 145.072488][T20194] netlink: 168 bytes leftover after parsing attributes in process `syz.1.7993'. [ 145.088865][ T2993] ================================================================== [ 145.097081][ T2993] BUG: KCSAN: data-race in dont_mount / lookup_fast [ 145.103710][ T2993] [ 145.106061][ T2993] read-write to 0xffff88810067fcc0 of 4 bytes by task 3294 on cpu 0: [ 145.114238][ T2993] dont_mount+0x2a/0x40 [ 145.118426][ T2993] vfs_unlink+0x28f/0x420 [ 145.122785][ T2993] do_unlinkat+0x24e/0x480 [ 145.127328][ T2993] __x64_sys_unlink+0x2e/0x40 [ 145.132017][ T2993] x64_sys_call+0x2dc0/0x2ff0 [ 145.136707][ T2993] do_syscall_64+0xd2/0x200 [ 145.141252][ T2993] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 145.147150][ T2993] [ 145.149474][ T2993] read to 0xffff88810067fcc0 of 4 bytes by task 2993 on cpu 1: [ 145.157104][ T2993] lookup_fast+0xf0/0x320 [ 145.161446][ T2993] walk_component+0x3f/0x220 [ 145.166053][ T2993] path_lookupat+0xfe/0x2a0 [ 145.170673][ T2993] filename_lookup+0x147/0x340 [ 145.175472][ T2993] do_readlinkat+0x7d/0x320 [ 145.180090][ T2993] __x64_sys_readlink+0x47/0x60 [ 145.184954][ T2993] x64_sys_call+0x28da/0x2ff0 [ 145.189646][ T2993] do_syscall_64+0xd2/0x200 [ 145.194162][ T2993] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 145.200068][ T2993] [ 145.202387][ T2993] value changed: 0x00300080 -> 0x00004080 [ 145.208101][ T2993] [ 145.210446][ T2993] Reported by Kernel Concurrency Sanitizer on: [ 145.216684][ T2993] CPU: 1 UID: 0 PID: 2993 Comm: udevd Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 145.227547][ T2993] Tainted: [W]=WARN [ 145.231603][ T2993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 145.241694][ T2993] ================================================================== [ 145.255475][ T3435] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 145.270339][ T12] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 145.281367][ T12] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0