last executing test programs: 997.616824ms ago: executing program 1 (id=3282): r0 = socket$rds(0x15, 0x5, 0x0) bind$rds(r0, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) sendmsg$rds(r0, &(0x7f0000001040)={&(0x7f00000002c0)={0x2, 0x4e22, @dev}, 0x10, 0x0, 0x0, &(0x7f0000000140)=[@rdma_map={0x30, 0x114, 0x3, {{0x0}, 0x0}}], 0x30}, 0x0) 980.634444ms ago: executing program 1 (id=3284): r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x6, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x36}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000100)={r2, r1, 0x25, 0x0, @val=@tracing}, 0x40) syz_emit_ethernet(0xfdef, &(0x7f00000003c0)={@empty, @link_local, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0xff, 0x21, 0x0, @multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}}, {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x7, 0x6, "6a31f8", 0x7f, "290f61"}}}}}}, 0x0) 945.483464ms ago: executing program 1 (id=3289): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_opts(r0, 0x0, 0x8000000000000c, &(0x7f0000000600)='u', 0x1) setsockopt$inet_opts(r0, 0x0, 0xd, &(0x7f00000001c0)=']', 0x1) munmap(&(0x7f0000001000/0x4000)=nil, 0x4000) getsockopt$inet_opts(r0, 0x0, 0x9, &(0x7f0000001540)=""/4089, &(0x7f0000000180)=0xff9) 889.843745ms ago: executing program 1 (id=3291): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)) modify_ldt$write(0x1, &(0x7f0000000040)={0xc}, 0x10) syz_clone(0x62000000, 0x0, 0x0, 0x0, 0x0, 0x0) 866.654144ms ago: executing program 1 (id=3294): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c) bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000400)=[{{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000700)="af", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000000f40)="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", 0x3b5}], 0x1}}], 0x2, 0x0) 725.405565ms ago: executing program 3 (id=3306): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="2400000001040102000000c9fd0000000000000008000340000100000500010001"], 0x24}}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFULNL_MSG_CONFIG(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c00000001040168b800000000000000000004000500010001"], 0x1c}}, 0x0) sendmsg$NFULNL_MSG_CONFIG(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x14, 0x1, 0x4, 0x201}, 0x14}}, 0x0) 708.588846ms ago: executing program 3 (id=3308): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000010a850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r1 = signalfd(0xffffffffffffffff, &(0x7f0000000080), 0x8) faccessat2(r1, &(0x7f0000000000)='\x00', 0x0, 0x1100) 671.920466ms ago: executing program 3 (id=3310): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) r2 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x8, 0x3, 0x4d0, 0x0, 0x25, 0x148, 0x340, 0x60, 0x438, 0x2a8, 0x2a8, 0x438, 0x2a8, 0x3, 0x0, {[{{@uncond, 0x0, 0x2f8, 0x340, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'geneve0\x00', {0x44, 0x0, 0x9, 0x0, 0x0, 0xffffffff, 0x7}}}, @common=@unspec=@bpf1={{0x230, 'bpf\x00', 0x0}, @pinned={0x1, 0x0, 0x6, './file0\x00'}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x6, 'syz0\x00'}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_bond\x00', 'dvmrp1\x00', {0xff}}, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@unspec=@cgroup0={{0x28}, {0x4}}, @common=@unspec=@statistic={{0x38}}]}, @common=@unspec=@MARK={0x28, 'MARK\x00', 0x2, {0x9, 0x8001}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x530) 607.443596ms ago: executing program 3 (id=3311): syz_read_part_table(0x5df, &(0x7f0000000000)="$eJzs3DGIE1kYB/CXIBEFETs7gykichAh3UkEDXGQgAnBQ4s70c4t0qyVRYxgQCzMNhE5Gy0UYQ1aaCUiCCImFkIqUXavuN1l2eJY2CawLHMEZrvjYG/JHQe/Hzx4b97/zcfHMOVM4H8tHf6I4zgVQoj37vz0T/OVs+ey9dONCyGkwi8hhN/zs79OdlJJYvuuR5P1YrIuvt3TvDcf3en2Dhx+nd38nE72byVjZfjw8q6bY+qOXT/+/sh4dOhNNTwenBqc3N+8dK2fL7f7X+qvzjzNPtt+7oUp1X9Z+njwdmc26t4ozXyNWkvRanpjPTr/4FEhM9du5NdOJLkrU6rf3LqYef7kQ7mzvK/4qVqr9V58v59rVd51bo6GuW/ju1eT3MI/eLsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPj3Hbt+/P2R8ejQm2p4PDg1OLm/eelaP19u97/UX515mn12NMkVplT/Zenjwdud2ah7ozTzNWotRavpjfXo/INHhcxcu5FfO5HkrvzV4TiO27us39y6mHn+5EO5s7yv+Klaq/VefL+fa1XedW6Ohrlv47tXk9zC3l0WAgAAAAAAAAAAAAAAAAAAgL9ROXsuWz/duDCZ/xxC+GHmx7nJPE6+d08lue3/ACxOrqdDKL7d07w3H93p9g4cfp3d/Pxbkr+VjJXhw8v/QTvs0J8BAAD//9odjZ8=") mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000500)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) truncate(&(0x7f0000000380)='./file2\x00', 0x2823) 524.227307ms ago: executing program 2 (id=3315): syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$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") r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) fallocate(r0, 0x0, 0x0, 0x80) r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0) pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x7a00, 0x0, 0x3) 499.239597ms ago: executing program 4 (id=3317): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000400)='./file1\x00', 0x200000, &(0x7f0000000800)={[{@jqfmt_vfsv1}, {@min_batch_time={'min_batch_time', 0x3d, 0xc0}}, {@delalloc}, {@noauto_da_alloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x7c}}, {@nouid32}, {@resgid}, {@nobarrier}, {@sysvgroups}]}, 0x1, 0x573, &(0x7f0000001140)="$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") r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) fallocate(r0, 0x0, 0x0, 0x1000f4) r1 = open(&(0x7f00000005c0)='./bus\x00', 0x145842, 0x0) pwritev2(r1, &(0x7f0000000680)=[{&(0x7f0000000380)='\x00', 0x1}], 0x1, 0x0, 0x1, 0xb) 442.314007ms ago: executing program 0 (id=3321): r0 = socket$nl_route(0x10, 0x3, 0x0) connect$netlink(0xffffffffffffffff, &(0x7f0000000100)=@proc={0x10, 0x0, 0x25dfdbfc, 0x800000}, 0xc) r1 = socket(0x1, 0x803, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000340)=0x14) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=@newlink={0x3c, 0x10, 0x401, 0x70bd2d, 0x100001, {0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0x3, r2}]}, 0x3c}, 0x1, 0xd, 0x0, 0x480c5}, 0x0) 378.495257ms ago: executing program 4 (id=3322): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000280)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x1000, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000070000000900010073797a300000000068000000090a010400000000000000000700000008000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d24001280140001800c000100636f756e74657200040002800c000180080001006475700008000340000001"], 0xb0}}, 0x20050800) 357.809037ms ago: executing program 2 (id=3323): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000000600)={0x0, 0x8, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000d40000000000000000000000000a20000000000a03000000000000000000010000000900010073797a3000000000bc000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000009000038008000240000000007c00038014000100626f6e64300000000000000000000000140001006970766c616e31000000000000000000140001006970766c616e300000000000000000001400010073697430000000000000fbffffffffffffff0100776c616e300000000000000000000000140001006772653000000000000000000000040008000140000000005c000000180a01010000000000000000010000000900020073797a30000000000900010073797a3000000000300003802c00038014000100626f6e64300000000000000000000000140001006970766c616e31"], 0x4b0}}, 0x0) 357.343407ms ago: executing program 0 (id=3324): syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000640)='./bus\x00', 0x0, &(0x7f0000000080)=ANY=[], 0x4, 0x1268, &(0x7f0000002500)="$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") syz_mount_image$vfat(&(0x7f00000006c0), &(0x7f0000000280)='./bus\x00', 0x1008440, 0x0, 0x1, 0x0, &(0x7f0000000080)) chdir(&(0x7f0000001180)='./bus\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0) getdents64(r0, 0x0, 0x0) 275.165338ms ago: executing program 2 (id=3325): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) socket$rds(0x15, 0x5, 0x0) creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000240), 0x25, 0x4b6, &(0x7f0000000540)="$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") 261.543918ms ago: executing program 4 (id=3326): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r1}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 191.806138ms ago: executing program 4 (id=3327): r0 = syz_create_resource$binfmt(&(0x7f0000000e40)='./file0\x00') r1 = openat$binfmt(0xffffff9c, r0, 0x41, 0x1ff) write$binfmt_script(r1, &(0x7f0000000040)={'#! ', './file0', [{0x20, '#! '}]}, 0xf) execve(&(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0) execve(&(0x7f0000001040)='./file0\x00', 0x0, &(0x7f0000001280)={[&(0x7f0000000080)='#! ']}) 191.143478ms ago: executing program 0 (id=3328): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x4, &(0x7f0000000180)={0x1, &(0x7f0000000000)=[{0x8, 0x28, 0x1, 0x9}]}) 166.164158ms ago: executing program 4 (id=3329): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000400000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) socket$kcm(0x11, 0xa, 0x300) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x560b0000, &(0x7f0000000000)="259a53f271a76d2688ca4c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 165.167568ms ago: executing program 2 (id=3330): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r0}, &(0x7f0000000280), &(0x7f00000002c0)=r1}, 0x20) pipe2$watch_queue(0x0, 0x80) 144.804329ms ago: executing program 0 (id=3331): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IPVS_CMD_NEW_DAEMON(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000a40)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000090000003c0003800800010002000000140002007663616e300000000000000000000000080003000000000014000600ff"], 0x50}}, 0x4000044) 144.119198ms ago: executing program 3 (id=3332): perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x34, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x4, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'hsr0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}]}, 0x3c}}, 0x0) 94.901948ms ago: executing program 2 (id=3333): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000400)='./file1\x00', 0x200000, &(0x7f0000000800)={[{@jqfmt_vfsv1}, {@min_batch_time={'min_batch_time', 0x3d, 0xc0}}, {@delalloc}, {@noauto_da_alloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x7c}}, {@nouid32}, {@resgid}, {@nobarrier}, {@sysvgroups}]}, 0x1, 0x573, &(0x7f0000001140)="$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") r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) fallocate(r0, 0x0, 0x0, 0x1000f4) r1 = open(&(0x7f00000005c0)='./bus\x00', 0x145842, 0x0) pwritev2(r1, &(0x7f0000000680)=[{&(0x7f0000000380)='\x00', 0x1}], 0x1, 0x0, 0x1, 0xb) 54.114789ms ago: executing program 0 (id=3343): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{r0}, &(0x7f00000005c0), &(0x7f0000000600)}, 0x20) setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x42, 0x2) 53.353399ms ago: executing program 2 (id=3334): r0 = syz_open_dev$usbfs(&(0x7f0000002000), 0xd, 0x20041) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) ioctl$USBDEVFS_ALLOW_SUSPEND(r0, 0x5522) ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000240)=@urb_type_control={0x2, {}, 0xfffffffc, 0x0, &(0x7f0000000400), 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0}) 20.675629ms ago: executing program 4 (id=3335): r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) 20.166329ms ago: executing program 0 (id=3336): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xffc, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='hrtimer_init\x00', r1}, 0x10) poll(0x0, 0x0, 0x5) 13.050049ms ago: executing program 3 (id=3337): syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000440)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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") r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) fallocate(r0, 0x0, 0x0, 0x1000f4) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000d40)={0x0, 0x2904c, 0x3fffffffffffe52, 0x10003, '\x00', [{}, {0xffffffff}]}) 0s ago: executing program 1 (id=3338): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$igmp(0x2, 0x3, 0x2) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'netdevsim0\x00', 0x0}) r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', r2, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="2c00000010000100"/20, @ANYRES32=r2, @ANYBLOB="00000000000000000c002b8008000100", @ANYRES32=r3], 0x2c}}, 0x0) kernel console output (not intermixed with test programs): rectory bread(block 34) failed [ 64.084628][ T6663] loop1: detected capacity change from 0 to 2048 [ 64.084714][ T6659] FAT-fs (loop2): Directory bread(block 35) failed [ 64.097677][ T6659] FAT-fs (loop2): Directory bread(block 36) failed [ 64.104645][ T6659] FAT-fs (loop2): Directory bread(block 37) failed [ 64.120075][ T6659] FAT-fs (loop2): Directory bread(block 38) failed [ 64.132418][ T6659] FAT-fs (loop2): Directory bread(block 39) failed [ 64.140852][ T6663] loop1: p3 < > p4 < > [ 64.144709][ T6659] FAT-fs (loop2): Directory bread(block 40) failed [ 64.145043][ T6663] loop1: partition table partially beyond EOD, truncated [ 64.151948][ T6659] FAT-fs (loop2): Directory bread(block 41) failed [ 64.163255][ T6663] loop1: p3 start 4284289 is beyond EOD, truncated [ 64.185408][ T3016] loop1: p3 < > p4 < > [ 64.189687][ T3016] loop1: partition table partially beyond EOD, truncated [ 64.203560][ T3016] loop1: p3 start 4284289 is beyond EOD, truncated [ 64.219897][ T6666] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm +}[@: bg 0: block 248: padding at end of block bitmap is not set [ 64.262869][ T3308] udevd[3308]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 64.269892][ T6666] EXT4-fs error (device loop3): ext4_acquire_dquot:6879: comm +}[@: Failed to acquire dquot type 1 [ 64.285695][ T6666] EXT4-fs (loop3): 1 truncate cleaned up [ 64.291891][ T6666] ext4 filesystem being mounted at /301/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 64.330245][ T6666] +}[@ (6666) used greatest stack depth: 9352 bytes left [ 64.337686][ T3308] udevd[3308]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 64.370942][ T1891] EXT4-fs error (device loop3): ext4_release_dquot:6902: comm kworker/u8:6: Failed to release dquot type 1 [ 64.411328][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 64.440566][ T6697] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 64.451411][ T6697] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 64.595741][ T6717] netlink: 'syz.0.1452': attribute type 2 has an invalid length. [ 64.603545][ T6717] netlink: 'syz.0.1452': attribute type 1 has an invalid length. [ 64.638049][ T6724] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 64.714050][ T6733] SELinux: Context @ is not valid (left unmapped). [ 64.788612][ T6741] loop2: detected capacity change from 0 to 512 [ 64.802470][ T6741] EXT4-fs (loop2): external journal device major/minor numbers have changed [ 64.811949][ T6741] EXT4-fs (loop2): couldn't read superblock of external journal [ 64.827611][ T6741] loop2: detected capacity change from 0 to 164 [ 64.981573][ T6741] bio_check_eod: 35728 callbacks suppressed [ 64.981588][ T6741] syz.2.1457: attempt to access beyond end of device [ 64.981588][ T6741] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 65.002997][ T6741] syz.2.1457: attempt to access beyond end of device [ 65.002997][ T6741] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 65.020470][ T6741] syz.2.1457: attempt to access beyond end of device [ 65.020470][ T6741] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 65.034367][ T6741] syz.2.1457: attempt to access beyond end of device [ 65.034367][ T6741] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 65.056684][ T6741] syz.2.1457: attempt to access beyond end of device [ 65.056684][ T6741] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 65.074450][ T6741] syz.2.1457: attempt to access beyond end of device [ 65.074450][ T6741] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 65.079657][ T6766] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1474'. [ 65.088794][ T6741] syz.2.1457: attempt to access beyond end of device [ 65.088794][ T6741] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 65.131808][ T6741] syz.2.1457: attempt to access beyond end of device [ 65.131808][ T6741] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 65.148964][ T6771] loop1: detected capacity change from 0 to 512 [ 65.152728][ T6741] syz.2.1457: attempt to access beyond end of device [ 65.152728][ T6741] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 65.172926][ T6771] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 65.181461][ T6773] netlink: 'syz.3.1477': attribute type 2 has an invalid length. [ 65.191182][ T6771] EXT4-fs (loop1): invalid journal inode [ 65.201736][ T6771] EXT4-fs (loop1): can't get journal size [ 65.212705][ T6741] syz.2.1457: attempt to access beyond end of device [ 65.212705][ T6741] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 65.228990][ T6771] EXT4-fs (loop1): 1 truncate cleaned up [ 65.344541][ T24] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x4 [ 65.352373][ T24] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x2 [ 65.360804][ T24] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 65.368558][ T24] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 65.376352][ T24] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 65.384200][ T24] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 65.391979][ T24] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 65.399727][ T24] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 65.407452][ T24] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 65.408112][ T6783] loop3: detected capacity change from 0 to 764 [ 65.415133][ T24] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 65.415163][ T24] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 65.415195][ T24] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 65.444632][ T24] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 65.452310][ T24] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 65.452337][ T24] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 65.452358][ T24] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 65.452354][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 65.463359][ T24] hid-generic 0000:3000000:0000.0002: hidraw0: HID v0.00 Device [sy] on syz0 [ 65.570634][ T6792] loop1: detected capacity change from 0 to 1024 [ 65.588635][ T6796] syz.4.1486[6796] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 65.588714][ T6796] syz.4.1486[6796] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 65.618152][ T6792] EXT4-fs (loop1): shut down requested (0) [ 65.630836][ T6796] syz.4.1486[6796] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 65.740251][ T6813] netlink: 'syz.4.1494': attribute type 2 has an invalid length. [ 65.759499][ T6813] netlink: 'syz.4.1494': attribute type 1 has an invalid length. [ 65.864339][ T6822] loop0: detected capacity change from 0 to 1024 [ 65.893794][ T6822] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 65.921461][ T6822] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 65.939661][ T6822] EXT4-fs (loop0): orphan cleanup on readonly fs [ 65.954625][ T6822] EXT4-fs warning (device loop0): ext4_enable_quotas:7097: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 65.969268][ T6822] EXT4-fs (loop0): Cannot turn on quotas: error -22 [ 65.978400][ T6822] EXT4-fs error (device loop0): ext4_free_blocks:6589: comm syz.0.1498: Freeing blocks not in datazone - block = 0, count = 4096 [ 66.001390][ T6822] EXT4-fs (loop0): Remounting filesystem read-only [ 66.009366][ T6822] EXT4-fs (loop0): 1 orphan inode deleted [ 66.015857][ T6822] SELinux: (dev loop0, type ext4) getxattr errno 5 [ 66.112902][ T6846] netlink: 'syz.4.1507': attribute type 2 has an invalid length. [ 66.166335][ T6850] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1509'. [ 66.191859][ T6852] devtmpfs: Unknown parameter 'posixacl' [ 66.409926][ T6875] Process accounting resumed [ 66.491328][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 66.508192][ T6887] block device autoloading is deprecated and will be removed. [ 66.544180][ T6895] loop0: detected capacity change from 0 to 512 [ 66.563305][ T6898] loop4: detected capacity change from 0 to 512 [ 66.570561][ T6895] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 66.589649][ T6898] EXT4-fs (loop4): external journal device major/minor numbers have changed [ 66.604358][ T6895] EXT4-fs (loop0): invalid journal inode [ 66.615922][ T6895] EXT4-fs (loop0): can't get journal size [ 66.643147][ T6895] EXT4-fs (loop0): 1 truncate cleaned up [ 66.651034][ T6898] EXT4-fs (loop4): failed to open journal device unknown-block(11,127) -6 [ 66.685853][ T6898] loop4: detected capacity change from 0 to 256 [ 66.780039][ T6898] FAT-fs (loop4): Directory bread(block 64) failed [ 66.792858][ T6898] FAT-fs (loop4): Directory bread(block 65) failed [ 66.819924][ T6898] FAT-fs (loop4): Directory bread(block 66) failed [ 66.838783][ T6898] FAT-fs (loop4): Directory bread(block 67) failed [ 66.862147][ T6898] FAT-fs (loop4): Directory bread(block 68) failed [ 66.877856][ T6898] FAT-fs (loop4): Directory bread(block 69) failed [ 66.884956][ T6898] FAT-fs (loop4): Directory bread(block 70) failed [ 66.894055][ T6898] FAT-fs (loop4): Directory bread(block 71) failed [ 66.900665][ T6898] FAT-fs (loop4): Directory bread(block 72) failed [ 66.910338][ T6898] FAT-fs (loop4): Directory bread(block 73) failed [ 66.956251][ T6930] SELinux: policydb version -858998881 does not match my version range 15-33 [ 66.981358][ T6930] SELinux: failed to load policy [ 67.034918][ T6935] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies. [ 67.223651][ T6958] devtmpfs: Unknown parameter 'posixacl' [ 67.329977][ T6965] sctp: [Deprecated]: syz.1.1560 (pid 6965) Use of int in max_burst socket option deprecated. [ 67.329977][ T6965] Use struct sctp_assoc_value instead [ 67.531333][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 67.845637][ T7001] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1578'. [ 67.884192][ T7006] xt_hashlimit: max too large, truncated to 1048576 [ 67.893532][ T7006] Cannot find set identified by id 0 to match [ 67.949736][ T7011] loop2: detected capacity change from 0 to 2048 [ 67.963033][ T7011] EXT4-fs mount: 92 callbacks suppressed [ 67.963047][ T7011] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 68.002101][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.096061][ T7019] loop2: detected capacity change from 0 to 1024 [ 68.146191][ T7019] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 68.213378][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.290286][ T7031] netlink: 6 bytes leftover after parsing attributes in process `syz.0.1588'. [ 68.423047][ T7048] loop4: detected capacity change from 0 to 2048 [ 68.423428][ T7050] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1598'. [ 68.453765][ T7050] bridge_slave_1: left allmulticast mode [ 68.459458][ T7050] bridge_slave_1: left promiscuous mode [ 68.465192][ T7050] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.473269][ T7050] bridge_slave_0: left allmulticast mode [ 68.474605][ T7048] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 68.478913][ T7050] bridge_slave_0: left promiscuous mode [ 68.496946][ T7050] bridge0: port 1(bridge_slave_0) entered disabled state [ 68.506100][ T7048] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1597: bg 0: block 48: padding at end of block bitmap is not set [ 68.531567][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.571329][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 68.643404][ T3390] kernel write not supported for file /input/event3 (pid: 3390 comm: kworker/0:3) [ 68.701442][ T29] kauditd_printk_skb: 389 callbacks suppressed [ 68.701456][ T29] audit: type=1400 audit(1731701724.326:2086): avc: denied { create } for pid=7081 comm="syz.4.1610" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 68.727445][ T29] audit: type=1326 audit(1731701724.326:2087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7078 comm="syz.2.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8fe4e719 code=0x7ffc0000 [ 68.750952][ T29] audit: type=1326 audit(1731701724.326:2088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7078 comm="syz.2.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8fe4e719 code=0x7ffc0000 [ 68.774443][ T29] audit: type=1326 audit(1731701724.326:2089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7078 comm="syz.2.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f5d8fe4e719 code=0x7ffc0000 [ 68.798040][ T29] audit: type=1326 audit(1731701724.326:2090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7078 comm="syz.2.1609" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8fe4e719 code=0x7ffc0000 [ 68.821796][ T29] audit: type=1400 audit(1731701724.386:2091): avc: denied { mount } for pid=7083 comm="syz.1.1611" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 68.843472][ T29] audit: type=1400 audit(1731701724.406:2092): avc: denied { unmount } for pid=3315 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 68.874785][ T29] audit: type=1400 audit(1731701724.506:2093): avc: denied { write } for pid=7087 comm="syz.2.1613" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 68.942269][ T29] audit: type=1400 audit(1731701724.566:2094): avc: denied { read } for pid=7097 comm="syz.2.1618" name="usbmon0" dev="devtmpfs" ino=141 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 68.965727][ T29] audit: type=1400 audit(1731701724.566:2095): avc: denied { open } for pid=7097 comm="syz.2.1618" path="/dev/usbmon0" dev="devtmpfs" ino=141 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 69.045467][ T7112] loop2: detected capacity change from 0 to 512 [ 69.052461][ T7112] EXT4-fs: inline encryption not supported [ 69.072689][ T7112] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 69.085261][ T7112] ext4 filesystem being mounted at /346/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 69.101260][ T7112] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #2: comm syz.2.1624: corrupted inode contents [ 69.123606][ T7112] EXT4-fs error (device loop2): ext4_dirty_inode:5984: inode #2: comm syz.2.1624: mark_inode_dirty error [ 69.137683][ T7112] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #2: comm syz.2.1624: corrupted inode contents [ 69.150348][ T7112] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm syz.2.1624: mark_inode_dirty error [ 69.172043][ T7126] syz.4.1629[7126] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 69.172134][ T7126] syz.4.1629[7126] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 69.183795][ T7126] syz.4.1629[7126] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 69.225423][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.370639][ T7151] loop0: detected capacity change from 0 to 1024 [ 69.380318][ T7151] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 69.396224][ T7153] loop4: detected capacity change from 0 to 512 [ 69.405896][ T7153] EXT4-fs: inline encryption not supported [ 69.427521][ T7151] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 69.457931][ T7153] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 69.478364][ T7153] ext4 filesystem being mounted at /292/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 69.503638][ T7167] loop3: detected capacity change from 0 to 512 [ 69.508390][ T7153] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #2: comm syz.4.1642: corrupted inode contents [ 69.515015][ T7167] /dev/loop3: Can't open blockdev [ 69.526413][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.557164][ T7153] EXT4-fs error (device loop4): ext4_dirty_inode:5984: inode #2: comm syz.4.1642: mark_inode_dirty error [ 69.579829][ T7153] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #2: comm syz.4.1642: corrupted inode contents [ 69.611382][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 69.623686][ T7153] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #2: comm syz.4.1642: mark_inode_dirty error [ 69.663815][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.805777][ T7210] 9pnet_fd: Insufficient options for proto=fd [ 69.827744][ T7212] loop3: detected capacity change from 0 to 512 [ 69.845386][ T7212] EXT4-fs: inline encryption not supported [ 69.850494][ T7217] loop4: detected capacity change from 0 to 1024 [ 69.865288][ T7221] ALSA: seq fatal error: cannot create timer (-22) [ 69.871358][ T7217] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 69.890336][ T7212] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 69.901695][ T7217] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 69.913673][ T7212] ext4 filesystem being mounted at /354/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 69.919431][ T7224] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1671'. [ 69.930259][ T7217] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 69.941462][ T7217] EXT4-fs (loop4): orphan cleanup on readonly fs [ 69.948414][ T7217] EXT4-fs error (device loop4): __ext4_get_inode_loc:4403: comm syz.4.1668: Invalid inode table block 0 in block_group 0 [ 69.962230][ T7217] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Corrupt filesystem [ 69.972261][ T7217] EXT4-fs error (device loop4): ext4_quota_write:7251: inode #3: comm syz.4.1668: mark_inode_dirty error [ 69.984686][ T7217] EXT4-fs error (device loop4): ext4_acquire_dquot:6879: comm syz.4.1668: Failed to acquire dquot type 0 [ 69.999590][ T7217] EXT4-fs error (device loop4): __ext4_get_inode_loc:4403: comm syz.4.1668: Invalid inode table block 0 in block_group 0 [ 70.014061][ T7217] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Corrupt filesystem [ 70.052924][ T7217] EXT4-fs error (device loop4): ext4_ext_truncate:4457: inode #15: comm syz.4.1668: mark_inode_dirty error [ 70.064915][ T7212] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.1665: corrupted inode contents [ 70.076753][ T7217] EXT4-fs error (device loop4): __ext4_get_inode_loc:4403: comm syz.4.1668: Invalid inode table block 0 in block_group 0 [ 70.113454][ T7212] EXT4-fs error (device loop3): ext4_dirty_inode:5984: inode #2: comm syz.3.1665: mark_inode_dirty error [ 70.126798][ T7212] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.1665: corrupted inode contents [ 70.168326][ T7217] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Corrupt filesystem [ 70.179145][ T7212] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.1665: mark_inode_dirty error [ 70.190672][ T7217] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem [ 70.202583][ T7217] EXT4-fs error (device loop4): __ext4_get_inode_loc:4403: comm syz.4.1668: Invalid inode table block 0 in block_group 0 [ 70.221674][ T7217] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5780: Corrupt filesystem [ 70.222814][ T7251] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 3976 [ 70.237021][ T7217] EXT4-fs error (device loop4): ext4_truncate:4208: inode #15: comm syz.4.1668: mark_inode_dirty error [ 70.253250][ T7217] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem [ 70.264430][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.269633][ T7217] EXT4-fs (loop4): 1 truncate cleaned up [ 70.287047][ T7247] veth0_vlan: left promiscuous mode [ 70.287064][ T7217] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 70.293366][ T7247] veth0_vlan: entered promiscuous mode [ 70.324156][ T7257] PF_CAN: dropped non conform CAN FD skbuff: dev type 65534, len 3 [ 70.375901][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.507878][ T7284] loop1: detected capacity change from 0 to 512 [ 70.518951][ T7284] EXT4-fs: inline encryption not supported [ 70.574670][ T7284] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 70.587483][ T7284] ext4 filesystem being mounted at /323/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 70.607752][ T7284] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.1695: corrupted inode contents [ 70.627633][ T7297] syz_tun: entered promiscuous mode [ 70.637319][ T7297] batadv_slave_0: entered promiscuous mode [ 70.638994][ T7284] EXT4-fs error (device loop1): ext4_dirty_inode:5984: inode #2: comm syz.1.1695: mark_inode_dirty error [ 70.654490][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 70.662127][ T7284] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.1695: corrupted inode contents [ 70.674498][ T7297] debugfs: Directory 'hsr1' with parent 'hsr' already present! [ 70.675580][ T7284] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.1695: mark_inode_dirty error [ 70.693288][ T7297] Cannot create hsr debugfs directory [ 70.755247][ T7312] dccp_invalid_packet: P.Data Offset(10) too large [ 70.770352][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.838909][ T7323] loop3: detected capacity change from 0 to 512 [ 70.863179][ T7323] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 70.876994][ T7323] ext4 filesystem being mounted at /363/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 70.905819][ T7333] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1717'. [ 70.915091][ T7333] bridge_slave_1: left allmulticast mode [ 70.920746][ T7333] bridge_slave_1: left promiscuous mode [ 70.926482][ T7333] bridge0: port 2(bridge_slave_1) entered disabled state [ 70.938008][ T7333] bridge_slave_0: left allmulticast mode [ 70.943750][ T7333] bridge_slave_0: left promiscuous mode [ 70.949408][ T7333] bridge0: port 1(bridge_slave_0) entered disabled state [ 70.951511][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.602096][ T7350] syz.2.1723 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 71.615052][ T7348] loop0: detected capacity change from 0 to 512 [ 71.631471][ T7348] EXT4-fs: inline encryption not supported [ 71.645321][ T7348] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 71.663468][ T7348] ext4 filesystem being mounted at /358/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 71.689844][ T7348] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.1721: corrupted inode contents [ 71.691365][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 71.708491][ T7348] EXT4-fs error (device loop0): ext4_dirty_inode:5984: inode #2: comm syz.0.1721: mark_inode_dirty error [ 71.757724][ T7348] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.1721: corrupted inode contents [ 71.818945][ T7348] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.1721: mark_inode_dirty error [ 71.912124][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.930017][ T7384] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1739'. [ 71.941953][ T7388] netlink: 300 bytes leftover after parsing attributes in process `syz.2.1742'. [ 72.000486][ T7394] tipc: Started in network mode [ 72.005448][ T7394] tipc: Node identity 7f000001, cluster identity 4711 [ 72.053476][ T7394] tipc: Enabled bearer , priority 10 [ 72.056731][ T7396] loop0: detected capacity change from 0 to 2048 [ 72.111910][ T7396] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 72.139095][ T7396] EXT4-fs (loop0): shut down requested (2) [ 72.221165][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.309290][ T7429] syz.1.1758[7429] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 72.309449][ T7429] syz.1.1758[7429] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 72.345644][ T7429] syz.1.1758[7429] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 72.455961][ T7459] loop4: detected capacity change from 0 to 256 [ 72.652815][ T7475] syz.4.1776[7475] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 72.652966][ T7475] syz.4.1776[7475] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 72.681220][ T7475] syz.4.1776[7475] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 72.731341][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 72.837582][ T7489] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1782'. [ 72.846527][ T7489] netlink: 84 bytes leftover after parsing attributes in process `syz.3.1782'. [ 72.873062][ T7494] batadv1: entered promiscuous mode [ 72.880490][ T7494] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 73.061352][ T3384] tipc: Node number set to 2130706433 [ 73.164314][ T7512] loop3: detected capacity change from 0 to 128 [ 73.180778][ T7512] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 73.215286][ T7512] ext4 filesystem being mounted at /380/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 73.312371][ T3321] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 73.354575][ T7527] loop3: detected capacity change from 0 to 256 [ 73.567473][ T7561] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1816'. [ 73.596176][ T7556] geneve0: entered allmulticast mode [ 73.707149][ T7582] loop2: detected capacity change from 0 to 1024 [ 73.715083][ T7582] EXT4-fs: Ignoring removed orlov option [ 73.720792][ T7582] EXT4-fs: Ignoring removed nomblk_io_submit option [ 73.759024][ T7582] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 73.771343][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 73.782916][ T29] kauditd_printk_skb: 290 callbacks suppressed [ 73.782932][ T29] audit: type=1400 audit(1731701729.416:2384): avc: denied { shutdown } for pid=7585 comm="syz.3.1827" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 73.820833][ T29] audit: type=1400 audit(1731701729.446:2385): avc: denied { getopt } for pid=7585 comm="syz.3.1827" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 73.840419][ T29] audit: type=1400 audit(1731701729.446:2386): avc: denied { name_connect } for pid=7585 comm="syz.3.1827" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=sctp_socket permissive=1 [ 73.860940][ T29] audit: type=1326 audit(1731701729.456:2387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7581 comm="syz.2.1826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8fe4e719 code=0x7ffc0000 [ 73.884427][ T29] audit: type=1326 audit(1731701729.456:2388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7581 comm="syz.2.1826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5d8fe4e719 code=0x7ffc0000 [ 73.907969][ T29] audit: type=1326 audit(1731701729.456:2389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7581 comm="syz.2.1826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8fe4e719 code=0x7ffc0000 [ 73.930827][ T7595] syz.1.1831[7595] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 73.931622][ T29] audit: type=1326 audit(1731701729.466:2390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7581 comm="syz.2.1826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5d8fe4e719 code=0x7ffc0000 [ 73.937449][ T7595] syz.1.1831[7595] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 73.943428][ T29] audit: type=1326 audit(1731701729.486:2391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7581 comm="syz.2.1826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8fe4e719 code=0x7ffc0000 [ 74.001113][ T29] audit: type=1326 audit(1731701729.486:2392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7581 comm="syz.2.1826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5d8fe4e719 code=0x7ffc0000 [ 74.024761][ T29] audit: type=1326 audit(1731701729.496:2393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7581 comm="syz.2.1826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7f5d8fe4e719 code=0x7ffc0000 [ 74.040324][ T7595] syz.1.1831[7595] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 74.050243][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.072057][ T7594] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1830'. [ 74.081050][ T7594] netlink: 84 bytes leftover after parsing attributes in process `syz.4.1830'. [ 74.133745][ T7600] loop3: detected capacity change from 0 to 512 [ 74.157924][ T7600] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 74.187523][ T7600] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.1834: corrupted in-inode xattr: e_name out of bounds [ 74.193177][ T7611] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1838'. [ 74.212546][ T7600] EXT4-fs (loop3): Remounting filesystem read-only [ 74.219633][ T7600] EXT4-fs (loop3): 1 truncate cleaned up [ 74.226781][ T7600] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 74.240116][ T7613] loop1: detected capacity change from 0 to 2048 [ 74.246296][ T7600] SELinux: (dev loop3, type ext4) getxattr errno 5 [ 74.262415][ T7600] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.393057][ T7632] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1847'. [ 74.431885][ T7636] IPVS: Error joining to the multicast group [ 74.646083][ T7674] loop4: detected capacity change from 0 to 512 [ 74.655920][ T7674] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 74.672500][ T7680] IPVS: Error joining to the multicast group [ 74.687589][ T7674] EXT4-fs (loop4): 1 truncate cleaned up [ 74.696206][ T7674] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.722664][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.732414][ T7685] loop2: detected capacity change from 0 to 512 [ 74.738853][ T7685] EXT4-fs: inline encryption not supported [ 74.765221][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 74.772735][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 74.780160][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 74.787583][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 74.795010][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 74.802444][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 74.809895][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 74.814021][ T7685] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.817332][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 74.832545][ T7685] ext4 filesystem being mounted at /396/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 74.836878][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 74.854722][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 74.857134][ T7695] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1870'. [ 74.862124][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 74.862152][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 74.862185][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 74.882668][ T7685] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #2: comm syz.2.1866: corrupted inode contents [ 74.885807][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 74.894556][ T7685] EXT4-fs error (device loop2): ext4_dirty_inode:5984: inode #2: comm syz.2.1866: mark_inode_dirty error [ 74.904917][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 74.914723][ T7685] EXT4-fs error (device loop2): ext4_do_update_inode:5121: inode #2: comm syz.2.1866: corrupted inode contents [ 74.923480][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 74.930960][ T7685] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm syz.2.1866: mark_inode_dirty error [ 74.942566][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 74.968584][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 74.976033][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 74.983459][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 74.990919][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 74.998369][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.005807][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.013238][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.020660][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.028081][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.035506][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.042910][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.050361][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.057784][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.065226][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.072720][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.080221][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.087677][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.095157][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.102627][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.110073][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.117569][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.125049][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.132474][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.139906][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.147322][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.154768][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.162182][ T3390] hid-generic 0000:0003:0000.0003: unknown main item tag 0x0 [ 75.170661][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.179748][ T3390] hid-generic 0000:0003:0000.0003: hidraw0: HID v0.00 Device [syz0] on syz0 [ 75.323783][ T7714] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1879'. [ 75.332856][ T7714] netlink: 84 bytes leftover after parsing attributes in process `syz.1.1879'. [ 75.352423][ T7716] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1881'. [ 75.387386][ T7724] loop1: detected capacity change from 0 to 512 [ 75.395565][ T7716] bond1: entered promiscuous mode [ 75.400636][ T7716] bond1: entered allmulticast mode [ 75.406435][ T7716] 8021q: adding VLAN 0 to HW filter on device bond1 [ 75.413976][ T7724] EXT4-fs: inline encryption not supported [ 75.446426][ T7724] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 75.450059][ T7732] syz.3.1887[7732] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 75.459055][ T7724] ext4 filesystem being mounted at /351/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 75.486676][ T7724] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.1884: corrupted inode contents [ 75.502235][ T7724] EXT4-fs error (device loop1): ext4_dirty_inode:5984: inode #2: comm syz.1.1884: mark_inode_dirty error [ 75.523858][ T7724] EXT4-fs error (device loop1): ext4_do_update_inode:5121: inode #2: comm syz.1.1884: corrupted inode contents [ 75.538948][ T7724] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #2: comm syz.1.1884: mark_inode_dirty error [ 75.590517][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.710850][ T7750] binfmt_misc: register: failed to install interpreter file ./file0 [ 75.762700][ T7756] loop1: detected capacity change from 0 to 2048 [ 75.807472][ T7765] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1902'. [ 75.851400][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 76.083648][ T7795] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 76.296309][ T7809] loop4: detected capacity change from 0 to 512 [ 76.303285][ T7809] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 76.314415][ T7809] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1920: corrupted in-inode xattr: e_name out of bounds [ 76.328558][ T7809] EXT4-fs (loop4): Remounting filesystem read-only [ 76.335579][ T7809] EXT4-fs (loop4): 1 truncate cleaned up [ 76.341834][ T7809] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 76.353919][ T7809] SELinux: (dev loop4, type ext4) getxattr errno 5 [ 76.361090][ T7809] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.800373][ T7831] SELinux: policydb version 470843038 does not match my version range 15-33 [ 76.810104][ T7831] SELinux: failed to load policy [ 76.891478][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 77.044326][ T7852] sctp: [Deprecated]: syz.2.1940 (pid 7852) Use of struct sctp_assoc_value in delayed_ack socket option. [ 77.044326][ T7852] Use struct sctp_sack_info instead [ 77.470250][ T7916] SELinux: security_context_str_to_sid (u) failed with errno=-22 [ 77.552995][ T7931] rdma_op ffff88813587b580 conn xmit_rdma 0000000000000000 [ 77.575938][ T7933] loop2: detected capacity change from 0 to 512 [ 77.625782][ T7933] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 77.638700][ T7933] ext4 filesystem being mounted at /426/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 77.657753][ T7933] EXT4-fs error (device loop2): ext4_acquire_dquot:6879: comm syz.2.1978: Failed to acquire dquot type 1 [ 77.691925][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 77.703316][ T7953] loop4: detected capacity change from 0 to 164 [ 77.840189][ T7970] batadv_slave_1: entered promiscuous mode [ 77.846825][ T7969] batadv_slave_1: left promiscuous mode [ 77.931333][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 77.956295][ T7984] loop2: detected capacity change from 0 to 256 [ 78.236862][ T7997] loop2: detected capacity change from 0 to 512 [ 78.269302][ T7997] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 78.281870][ T7997] ext4 filesystem being mounted at /437/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 78.305135][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.378189][ T8018] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 78.435588][ T8020] loop2: detected capacity change from 0 to 8192 [ 78.447665][ T8020] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 78.516865][ T8037] bpf_get_probe_write_proto: 2 callbacks suppressed [ 78.516884][ T8037] syz.3.2025[8037] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 78.525183][ T8037] syz.3.2025[8037] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 78.539366][ T8037] syz.3.2025[8037] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 78.562041][ T8042] loop2: detected capacity change from 0 to 1024 [ 78.589631][ T8042] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 78.601440][ T8042] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 78.630140][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.712987][ T8061] @ÿ: renamed from vlan0 (while UP) [ 78.750325][ T8067] vlan2: entered allmulticast mode [ 78.751582][ T8067] bond0: entered allmulticast mode [ 78.754793][ T8069] loop3: detected capacity change from 0 to 512 [ 78.755640][ T8067] bond0: left allmulticast mode [ 78.764781][ T8069] EXT4-fs error (device loop3): ext4_acquire_dquot:6879: comm syz.3.2040: Failed to acquire dquot type 1 [ 78.838372][ T8069] EXT4-fs (loop3): 1 truncate cleaned up [ 78.845779][ T8069] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 78.858580][ T8069] ext4 filesystem being mounted at /421/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 78.898855][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.921217][ T29] kauditd_printk_skb: 331 callbacks suppressed [ 78.921234][ T29] audit: type=1326 audit(1731701734.546:2721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8077 comm="syz.4.2044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc96bd9e719 code=0x7ffc0000 [ 78.950938][ T29] audit: type=1326 audit(1731701734.546:2722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8077 comm="syz.4.2044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc96bd9e719 code=0x7ffc0000 [ 78.974407][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 78.981503][ T29] audit: type=1326 audit(1731701734.546:2723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8077 comm="syz.4.2044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=245 compat=0 ip=0x7fc96bd9e719 code=0x7ffc0000 [ 79.005617][ T29] audit: type=1326 audit(1731701734.546:2724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8077 comm="syz.4.2044" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc96bd9e719 code=0x7ffc0000 [ 79.030016][ T8086] loop4: detected capacity change from 0 to 512 [ 79.061438][ T8090] loop2: detected capacity change from 0 to 256 [ 79.079704][ T8086] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 79.099774][ T8086] ext4 filesystem being mounted at /370/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 79.101523][ T29] audit: type=1400 audit(1731701734.736:2725): avc: denied { create } for pid=8095 comm="syz.3.2051" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 79.134817][ T8080] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=8080 comm=syz.1.2045 [ 79.135843][ T8086] Quota error (device loop4): write_blk: dquota write failed [ 79.154839][ T8086] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota [ 79.164694][ T8086] EXT4-fs error (device loop4): ext4_acquire_dquot:6879: comm syz.4.2048: Failed to acquire dquot type 1 [ 79.178401][ T29] audit: type=1400 audit(1731701734.806:2726): avc: denied { setopt } for pid=8095 comm="syz.3.2051" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 79.197866][ T29] audit: type=1400 audit(1731701734.806:2727): avc: denied { connect } for pid=8095 comm="syz.3.2051" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 79.233402][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 79.276221][ T29] audit: type=1326 audit(1731701734.906:2728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8103 comm="syz.0.2056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ff504e719 code=0x7ffc0000 [ 79.469813][ T8126] loop0: detected capacity change from 0 to 512 [ 79.529324][ T8126] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 79.541899][ T8126] ext4 filesystem being mounted at /412/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 79.586992][ T8126] EXT4-fs error (device loop0): ext4_acquire_dquot:6879: comm syz.0.2065: Failed to acquire dquot type 1 [ 79.640314][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 79.714352][ T8150] loop2: detected capacity change from 0 to 128 [ 79.736265][ T8150] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 79.754536][ T8150] ext4 filesystem being mounted at /450/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 79.828806][ T8158] syz.1.2078[8158] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 79.828937][ T8158] syz.1.2078[8158] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 79.840734][ T8158] syz.1.2078[8158] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 79.879863][ T3314] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 79.903070][ T8158] loop1: detected capacity change from 0 to 512 [ 79.923962][ T8158] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 79.944212][ T8158] ext4 filesystem being mounted at /402/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 79.959597][ T8166] @ÿ: renamed from vlan0 (while UP) [ 79.992341][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.011319][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 80.213642][ T8196] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 80.238110][ T8188] loop1: detected capacity change from 0 to 8192 [ 80.245645][ T8196] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0' [ 80.258169][ T8188] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 80.375296][ T8213] loop4: detected capacity change from 0 to 1024 [ 80.404622][ T8213] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 80.418821][ T8218] loop2: detected capacity change from 0 to 1024 [ 80.427413][ T8213] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 80.441719][ T8218] EXT4-fs: Ignoring removed oldalloc option [ 80.448776][ T8218] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 80.474530][ T8218] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 80.538561][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.547872][ T8228] loop0: detected capacity change from 0 to 2048 [ 80.559285][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.594732][ T8228] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 80.644359][ T8228] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 80.762876][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.793586][ T8248] @ÿ: renamed from vlan0 (while UP) [ 81.001234][ T8261] loop0: detected capacity change from 0 to 512 [ 81.020931][ T8261] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 81.051339][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 81.060545][ T8261] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 81.092749][ T8261] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.2121: corrupted inode contents [ 81.107495][ T8268] 9pnet_fd: p9_fd_create_tcp (8268): problem connecting socket to 127.0.0.1 [ 81.131953][ T8261] EXT4-fs error (device loop0): ext4_dirty_inode:5984: inode #2: comm syz.0.2121: mark_inode_dirty error [ 81.147061][ T8261] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.2121: corrupted inode contents [ 81.188016][ T8276] __nla_validate_parse: 2 callbacks suppressed [ 81.188062][ T8276] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2127'. [ 81.204093][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.270386][ T8290] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2135'. [ 81.312820][ T8296] xt_CT: You must specify a L4 protocol and not use inversions on it [ 81.338233][ T8298] loop4: detected capacity change from 0 to 512 [ 81.359255][ T8302] 9pnet_fd: p9_fd_create_tcp (8302): problem connecting socket to 127.0.0.1 [ 81.381060][ T8298] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 81.393649][ T8298] ext4 filesystem being mounted at /389/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 81.416244][ T8307] loop1: detected capacity change from 0 to 512 [ 81.423140][ T8307] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 81.442994][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.457253][ T8307] EXT4-fs (loop1): 1 truncate cleaned up [ 81.528417][ T8321] loop1: detected capacity change from 0 to 512 [ 81.536400][ T8323] loop4: detected capacity change from 0 to 128 [ 81.539615][ T8321] EXT4-fs: Ignoring removed orlov option [ 81.570418][ T8321] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 81.574612][ T8323] EXT4-fs: Ignoring removed nobh option [ 81.590160][ T8321] EXT4-fs (loop1): orphan cleanup on readonly fs [ 81.597808][ T8321] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2148: bg 0: block 248: padding at end of block bitmap is not set [ 81.613585][ T8321] EXT4-fs error (device loop1): ext4_acquire_dquot:6879: comm syz.1.2148: Failed to acquire dquot type 1 [ 81.625016][ T8323] ext4 filesystem being mounted at /391/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 81.625703][ T8321] EXT4-fs (loop1): 1 truncate cleaned up [ 81.645717][ T8323] EXT4-fs error (device loop4): __ext4_remount:6522: comm syz.4.2149: Abort forced by user [ 81.656765][ T8323] EXT4-fs (loop4): Remounting filesystem read-only [ 81.663728][ T8323] EXT4-fs (loop4): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w. Quota mode: none. [ 81.794994][ T8350] loop2: detected capacity change from 0 to 2048 [ 81.818301][ T8352] loop0: detected capacity change from 0 to 164 [ 81.819084][ T8350] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 82.036866][ T8388] syz.3.2176[8388] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 82.036951][ T8388] syz.3.2176[8388] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 82.048643][ T8388] syz.3.2176[8388] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 82.083144][ T8388] loop3: detected capacity change from 0 to 512 [ 82.094616][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 82.110313][ T8388] ext4 filesystem being mounted at /461/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 82.173748][ T8393] loop3: detected capacity change from 0 to 2048 [ 82.208371][ T8393] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 82.249950][ T8408] loop2: detected capacity change from 0 to 1024 [ 82.256801][ T8408] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22 [ 82.287372][ T8410] bio_check_eod: 6763 callbacks suppressed [ 82.287389][ T8410] syz.2.2186: attempt to access beyond end of device [ 82.287389][ T8410] md34: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 82.322585][ T8416] sit0: entered promiscuous mode [ 82.330809][ T8416] netlink: 'syz.2.2188': attribute type 1 has an invalid length. [ 82.338652][ T8416] netlink: 1 bytes leftover after parsing attributes in process `syz.2.2188'. [ 82.464706][ T8431] loop0: detected capacity change from 0 to 256 [ 82.962689][ T8480] loop2: detected capacity change from 0 to 512 [ 82.993421][ T8480] ext4 filesystem being mounted at /496/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 83.131310][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 83.230547][ T8506] loop3: detected capacity change from 0 to 1024 [ 83.241650][ T8506] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22 [ 83.298938][ T8514] loop3: detected capacity change from 0 to 512 [ 83.308035][ T8514] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 83.350494][ T8514] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.2233: corrupted inode contents [ 83.365473][ T8514] EXT4-fs error (device loop3): ext4_dirty_inode:5984: inode #2: comm syz.3.2233: mark_inode_dirty error [ 83.367425][ T8524] Invalid ELF header magic: != ELF [ 83.380073][ T8514] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.2233: corrupted inode contents [ 83.435860][ T8531] loop3: detected capacity change from 0 to 512 [ 83.445907][ T8534] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2239'. [ 83.446478][ T8535] syz.0.2240: attempt to access beyond end of device [ 83.446478][ T8535] md34: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 83.470999][ T8531] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 83.487322][ T8531] EXT4-fs (loop3): 1 truncate cleaned up [ 83.623351][ T8556] SELinux: Context system_u:object_r:hald_dccm_exec_t:s0 is not valid (left unmapped). [ 83.684334][ T8566] block device autoloading is deprecated and will be removed. [ 83.695922][ T8566] syz.0.2255: attempt to access beyond end of device [ 83.695922][ T8566] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 83.835730][ T8590] vhci_hcd: invalid port number 255 [ 83.841040][ T8590] vhci_hcd: default hub control req: 801a v087e i00ff l0 [ 83.856308][ T8586] 9pnet: Could not find request transport: f [ 84.090350][ T29] kauditd_printk_skb: 234 callbacks suppressed [ 84.090366][ T29] audit: type=1400 audit(1731701739.450:2959): avc: denied { read } for pid=8611 comm="syz.2.2278" name="usbmon0" dev="devtmpfs" ino=141 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 84.119993][ T29] audit: type=1400 audit(1731701739.450:2960): avc: denied { open } for pid=8611 comm="syz.2.2278" path="/dev/usbmon0" dev="devtmpfs" ino=141 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 84.143826][ T29] audit: type=1400 audit(1731701739.450:2961): avc: denied { ioctl } for pid=8611 comm="syz.2.2278" path="/dev/usbmon0" dev="devtmpfs" ino=141 ioctlcmd=0x9203 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 84.171359][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 84.193146][ T29] audit: type=1400 audit(1731701739.560:2962): avc: denied { ioctl } for pid=8617 comm="syz.4.2280" path="socket:[20762]" dev="sockfs" ino=20762 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 84.236625][ T8621] loop2: detected capacity change from 0 to 512 [ 84.247989][ T8621] EXT4-fs: Ignoring removed orlov option [ 84.259445][ T8621] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 84.289503][ T8621] EXT4-fs (loop2): orphan cleanup on readonly fs [ 84.309217][ T8621] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2281: bg 0: block 248: padding at end of block bitmap is not set [ 84.325102][ T8621] Quota error (device loop2): write_blk: dquota write failed [ 84.332560][ T8621] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 84.342618][ T8621] EXT4-fs error (device loop2): ext4_acquire_dquot:6879: comm syz.2.2281: Failed to acquire dquot type 1 [ 84.391385][ T8621] EXT4-fs (loop2): 1 truncate cleaned up [ 84.402280][ T8640] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.2289'. [ 84.421351][ T29] audit: type=1400 audit(1731701739.780:2963): avc: denied { create } for pid=8638 comm="syz.1.2290" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 84.427284][ T8621] syz.2.2281 (8621) used greatest stack depth: 9344 bytes left [ 84.442085][ T29] audit: type=1400 audit(1731701739.780:2964): avc: denied { write } for pid=8638 comm="syz.1.2290" name="file0" dev="tmpfs" ino=2243 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 84.442117][ T29] audit: type=1400 audit(1731701739.780:2965): avc: denied { open } for pid=8638 comm="syz.1.2290" path="/430/file0" dev="tmpfs" ino=2243 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 84.494921][ T29] audit: type=1400 audit(1731701739.780:2966): avc: denied { ioctl } for pid=8638 comm="syz.1.2290" path="/430/file0" dev="tmpfs" ino=2243 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 84.539340][ T8647] xt_hashlimit: max too large, truncated to 1048576 [ 84.553490][ T8647] Cannot find set identified by id 0 to match [ 84.628359][ T8653] loop2: detected capacity change from 0 to 764 [ 84.681682][ T8657] loop2: detected capacity change from 0 to 512 [ 84.691812][ T8657] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 84.709849][ T8657] EXT4-fs (loop2): 1 truncate cleaned up [ 84.770078][ T8668] netlink: 140 bytes leftover after parsing attributes in process `+}[@'. [ 85.211354][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 86.251320][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 87.291347][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 87.641577][ T8683] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT [ 87.707121][ T8696] geneve0: entered allmulticast mode [ 87.772726][ T8705] loop0: detected capacity change from 0 to 128 [ 88.265675][ T8757] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 88.286716][ T8757] batadv_slave_1: entered promiscuous mode [ 88.331304][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 88.340132][ T8765] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2347'. [ 88.387329][ T8773] loop0: detected capacity change from 0 to 512 [ 88.396388][ T8773] EXT4-fs error (device loop0): ext4_get_branch:178: inode #11: block 4294967295: comm syz.0.2350: invalid block [ 88.408913][ T8773] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2350: invalid indirect mapped block 4294967295 (level 1) [ 88.427851][ T8773] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.2350: invalid indirect mapped block 4294967295 (level 1) [ 88.442624][ T8773] EXT4-fs (loop0): 2 truncates cleaned up [ 88.525028][ T8787] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0) [ 88.537086][ T8787] SELinux: failed to load policy [ 88.976899][ T8846] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2385'. [ 89.102969][ T29] kauditd_printk_skb: 79 callbacks suppressed [ 89.103027][ T29] audit: type=1400 audit(1731701744.470:3046): avc: denied { sqpoll } for pid=8854 comm="syz.2.2389" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 89.314105][ T8868] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2395'. [ 89.334781][ T8864] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2393'. [ 89.343836][ T8864] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2393'. [ 89.379614][ T8864] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2393'. [ 89.388633][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 89.420668][ T8864] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2393'. [ 89.429770][ T8864] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2393'. [ 89.454476][ T8864] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2393'. [ 89.538392][ T29] audit: type=1400 audit(1731701744.900:3047): avc: denied { ioctl } for pid=8890 comm="syz.2.2405" path="socket:[21315]" dev="sockfs" ino=21315 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 89.576509][ T8864] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2393'. [ 89.596498][ T8897] loop1: detected capacity change from 0 to 512 [ 89.613370][ T8897] Quota error (device loop1): v2_read_file_info: Free block number 1 out of range (1, 6). [ 89.624392][ T8897] EXT4-fs warning (device loop1): ext4_enable_quotas:7097: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 89.639867][ T8897] EXT4-fs (loop1): mount failed [ 89.685285][ T8912] syz.1.2413[8912] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 89.685381][ T8912] syz.1.2413[8912] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 89.697425][ T8912] syz.1.2413[8912] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 89.751942][ T29] audit: type=1326 audit(1731701745.110:3048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8913 comm="syz.4.2415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc96bd9e719 code=0x7ffc0000 [ 89.786746][ T29] audit: type=1326 audit(1731701745.110:3049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8913 comm="syz.4.2415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc96bd9e719 code=0x7ffc0000 [ 89.810203][ T29] audit: type=1326 audit(1731701745.110:3050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8913 comm="syz.4.2415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc96bd9e719 code=0x7ffc0000 [ 89.833943][ T29] audit: type=1326 audit(1731701745.110:3051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8913 comm="syz.4.2415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc96bd9e719 code=0x7ffc0000 [ 89.851637][ T8928] syz.1.2419[8928] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 89.857397][ T29] audit: type=1326 audit(1731701745.110:3052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8913 comm="syz.4.2415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc96bd9e719 code=0x7ffc0000 [ 89.857429][ T29] audit: type=1326 audit(1731701745.110:3053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8913 comm="syz.4.2415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7fc96bd9e719 code=0x7ffc0000 [ 89.870556][ T8928] syz.1.2419[8928] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 89.892370][ T29] audit: type=1326 audit(1731701745.110:3054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8913 comm="syz.4.2415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc96bd9e719 code=0x7ffc0000 [ 89.953595][ T8924] tmpfs: Unknown parameter 'dont_hash' [ 89.959542][ T8928] syz.1.2419[8928] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 90.043472][ T8939] tipc: Enabling of bearer rejected, failed to enable media [ 90.228346][ T8962] loop4: detected capacity change from 0 to 1024 [ 90.255760][ T8962] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 90.279024][ T8968] loop2: detected capacity change from 0 to 1024 [ 90.324063][ T8968] ext4 filesystem being mounted at /550/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 90.349444][ T8975] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6) [ 90.356040][ T8975] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 90.363584][ T8975] vhci_hcd vhci_hcd.0: Device attached [ 90.394651][ T8978] vhci_hcd: connection closed [ 90.403483][ T37] vhci_hcd: stop threads [ 90.412539][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 90.419516][ T37] vhci_hcd: release socket [ 90.423982][ T37] vhci_hcd: disconnect device [ 90.496325][ T9000] netlink: 'syz.4.2449': attribute type 322 has an invalid length. [ 90.558036][ T9011] syz.3.2456[9011] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 90.558218][ T9011] syz.3.2456[9011] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 90.571885][ T9011] syz.3.2456[9011] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 90.586780][ T9011] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 90.611889][ T9011] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 90.901046][ T9030] sit0: entered promiscuous mode [ 90.910915][ T9030] netlink: 'syz.4.2465': attribute type 1 has an invalid length. [ 91.080059][ T9048] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 91.083170][ T9046] loop4: detected capacity change from 0 to 164 [ 91.121452][ T9046] rock: corrupted directory entry. extent=41, offset=65536, size=8 [ 91.282167][ T9065] vhci_hcd: invalid port number 61 [ 91.343899][ T9074] loop2: detected capacity change from 0 to 512 [ 91.359170][ T9074] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 91.411746][ T9074] EXT4-fs (loop2): 1 truncate cleaned up [ 91.461330][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 91.486480][ T9081] loop0: detected capacity change from 0 to 512 [ 91.493306][ T9081] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 91.512391][ T9084] loop2: detected capacity change from 0 to 1024 [ 91.532241][ T9084] EXT4-fs: Ignoring removed orlov option [ 91.538016][ T9084] EXT4-fs: Ignoring removed nomblk_io_submit option [ 91.566872][ T9081] ext4 filesystem being mounted at /491/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 91.587524][ T9094] syz.1.2494[9094] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 91.595494][ T9084] EXT4-fs error (device loop2): ext4_clear_blocks:876: inode #14: comm syz.2.2491: attempt to clear invalid blocks 1886221359 len 1 [ 91.626143][ T9094] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=9094 comm=syz.1.2494 [ 91.705839][ T9107] loop1: detected capacity change from 0 to 2048 [ 91.728388][ T9112] loop2: detected capacity change from 0 to 512 [ 91.750998][ T9112] ext4 filesystem being mounted at /571/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 91.890341][ T9136] loop3: detected capacity change from 0 to 512 [ 91.905554][ T9136] EXT4-fs: Ignoring removed nobh option [ 91.911178][ T9136] EXT4-fs: Ignoring removed nobh option [ 91.934972][ T9142] 0ªX¹¦À: renamed from caif0 [ 91.965804][ T9145] loop2: detected capacity change from 0 to 2048 [ 91.972229][ T9142] 0ªX¹¦À: entered allmulticast mode [ 91.973437][ T9136] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 91.977428][ T9142] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 92.007043][ T9136] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.2511: invalid indirect mapped block 2683928664 (level 1) [ 92.021849][ T9136] EXT4-fs (loop3): 1 truncate cleaned up [ 92.058448][ T9156] loop1: detected capacity change from 0 to 512 [ 92.072935][ T9156] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 92.127904][ T9156] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2517: bg 0: block 64: padding at end of block bitmap is not set [ 92.165284][ T9156] EXT4-fs error (device loop1): ext4_acquire_dquot:6879: comm syz.1.2517: Failed to acquire dquot type 0 [ 92.210169][ T9156] EXT4-fs (loop1): 1 truncate cleaned up [ 92.226302][ T9156] syz.1.2517 (9156) used greatest stack depth: 9328 bytes left [ 92.308907][ T9201] loop4: detected capacity change from 0 to 136 [ 92.440456][ T9219] 9pnet_fd: Insufficient options for proto=fd [ 92.492158][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 92.661336][ T9252] loop3: detected capacity change from 0 to 512 [ 92.679127][ T9250] loop1: detected capacity change from 0 to 512 [ 92.708116][ T9252] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 92.716412][ T9252] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 92.716533][ T9263] loop0: detected capacity change from 0 to 512 [ 92.743605][ T9263] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 92.754483][ T9252] EXT4-fs (loop3): 1 truncate cleaned up [ 92.755304][ T9250] ext4 filesystem being mounted at /479/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 92.765603][ T9259] loop4: detected capacity change from 0 to 4096 [ 92.777788][ T9263] EXT4-fs (loop0): 1 truncate cleaned up [ 92.785270][ T9252] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 92.857904][ T9259] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #15: comm syz.4.2554: corrupted inode contents [ 92.872700][ T9259] EXT4-fs error (device loop4): ext4_dirty_inode:5984: inode #15: comm syz.4.2554: mark_inode_dirty error [ 92.885272][ T9259] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #15: comm syz.4.2554: corrupted inode contents [ 92.895556][ T9271] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 92.898787][ T9259] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #15: comm syz.4.2554: mark_inode_dirty error [ 92.928273][ T9259] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #15: comm syz.4.2554: corrupted inode contents [ 92.951328][ T9259] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #15: comm syz.4.2554: mark_inode_dirty error [ 92.956551][ T9273] loop3: detected capacity change from 0 to 2048 [ 92.983979][ T9259] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #15: comm syz.4.2554: corrupted inode contents [ 93.000193][ T9273] ext4 filesystem being mounted at /546/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 93.015485][ T9259] EXT4-fs error (device loop4): ext4_truncate:4208: inode #15: comm syz.4.2554: mark_inode_dirty error [ 93.027608][ T9259] EXT4-fs error (device loop4) in ext4_setattr:5523: Corrupt filesystem [ 93.082394][ T9288] loop0: detected capacity change from 0 to 512 [ 93.099845][ T9288] EXT4-fs (loop0): filesystem is read-only [ 93.450117][ T9349] loop1: detected capacity change from 0 to 512 [ 93.491372][ T9346] loop4: detected capacity change from 0 to 512 [ 93.531315][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 93.553440][ T9346] EXT4-fs error (device loop4): ext4_acquire_dquot:6879: comm syz.4.2591: Failed to acquire dquot type 1 [ 93.570529][ T9346] EXT4-fs (loop4): 1 truncate cleaned up [ 93.584642][ T9346] ext4 filesystem being mounted at /446/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 93.648947][ T9380] loop4: detected capacity change from 0 to 2048 [ 93.658850][ T9376] __nla_validate_parse: 14 callbacks suppressed [ 93.658865][ T9376] netlink: 268 bytes leftover after parsing attributes in process `syz.0.2603'. [ 93.740024][ T9394] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2622'. [ 93.791626][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x1 [ 93.799196][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.806725][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.814223][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.821722][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.829112][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.843163][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.850763][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x2 [ 93.858294][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.865827][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.873299][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.880998][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.888547][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x4 [ 93.895969][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.903365][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.910738][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.918227][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.925628][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.933088][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.940492][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.947916][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.955387][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.962812][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.970196][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.977648][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.985055][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.992507][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 93.999900][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 94.007372][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 94.014795][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 94.022202][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 94.029605][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 94.037073][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 94.044471][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 94.051917][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 94.059308][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 94.066797][ T3384] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 94.075107][ T3384] hid-generic 0000:0000:0000.0004: hidraw0: HID v0.00 Device [syz0] on syz0 [ 94.100320][ T9405] netlink: 256 bytes leftover after parsing attributes in process `syz.3.2616'. [ 94.173574][ T9421] loop3: detected capacity change from 0 to 512 [ 94.184003][ T9423] hub 9-0:1.0: USB hub found [ 94.193095][ T9423] hub 9-0:1.0: 8 ports detected [ 94.198663][ T9421] ext4 filesystem being mounted at /559/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 94.219553][ T9426] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6) [ 94.226172][ T9426] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 94.233870][ T9426] vhci_hcd vhci_hcd.0: Device attached [ 94.246008][ T9428] vhci_hcd: connection closed [ 94.267862][ T50] vhci_hcd: stop threads [ 94.276847][ T50] vhci_hcd: release socket [ 94.281317][ T50] vhci_hcd: disconnect device [ 94.427485][ T29] kauditd_printk_skb: 114 callbacks suppressed [ 94.427499][ T29] audit: type=1326 audit(1731701749.790:3165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9452 comm="syz.1.2638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd3bde719 code=0x7ffc0000 [ 94.457843][ T29] audit: type=1326 audit(1731701749.790:3166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9452 comm="syz.1.2638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8bd3bde719 code=0x7ffc0000 [ 94.481399][ T29] audit: type=1326 audit(1731701749.790:3167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9452 comm="syz.1.2638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd3bde719 code=0x7ffc0000 [ 94.505024][ T29] audit: type=1326 audit(1731701749.790:3168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9452 comm="syz.1.2638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8bd3bde719 code=0x7ffc0000 [ 94.528899][ T29] audit: type=1326 audit(1731701749.800:3169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9452 comm="syz.1.2638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd3bde719 code=0x7ffc0000 [ 94.552486][ T29] audit: type=1326 audit(1731701749.800:3170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9452 comm="syz.1.2638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd3bde719 code=0x7ffc0000 [ 94.576251][ T29] audit: type=1326 audit(1731701749.800:3171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9452 comm="syz.1.2638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8bd3bde719 code=0x7ffc0000 [ 94.581332][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 94.599698][ T29] audit: type=1326 audit(1731701749.820:3172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9452 comm="syz.1.2638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd3bde719 code=0x7ffc0000 [ 94.630075][ T29] audit: type=1326 audit(1731701749.820:3173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9452 comm="syz.1.2638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bd3bde719 code=0x7ffc0000 [ 94.658091][ T29] audit: type=1326 audit(1731701749.920:3174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9452 comm="syz.1.2638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=131 compat=0 ip=0x7f8bd3bde719 code=0x7ffc0000 [ 94.757545][ T9469] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2646'. [ 94.798031][ T9477] loop1: detected capacity change from 0 to 512 [ 94.823059][ T9477] ext4 filesystem being mounted at /509/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 94.933123][ T9494] netlink: 'syz.1.2657': attribute type 3 has an invalid length. [ 95.092118][ T9518] mmap: syz.4.2669 (9518) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 95.169761][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.177309][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.184836][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.192271][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.199664][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.207090][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.214538][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.218405][ T9533] loop3: detected capacity change from 0 to 1024 [ 95.221969][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.221997][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.242074][ T9533] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal [ 95.243160][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.258384][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.265801][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.273226][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.280595][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.287985][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.295464][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.302923][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.310311][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.317812][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.325233][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.332698][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.340104][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.347561][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.355046][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.362530][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.369948][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.377399][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.384815][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.392274][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.399666][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.407138][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.414543][ T1033] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 95.423902][ T1033] hid-generic 0000:0000:0000.0005: hidraw0: HID v0.00 Device [syz0] on syz0 [ 95.605993][ T9560] netlink: 'syz.2.2688': attribute type 3 has an invalid length. [ 95.621302][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 95.743802][ T9584] SELinux: Context :yz1e is not valid (left unmapped). [ 95.808445][ T9595] bridge0: port 1(vlan0) entered blocking state [ 95.814800][ T9595] bridge0: port 1(vlan0) entered disabled state [ 95.821212][ T9595] vlan0: entered allmulticast mode [ 95.852810][ T9595] vlan0: left allmulticast mode [ 96.064834][ T9639] loop2: detected capacity change from 0 to 512 [ 96.094364][ T9639] ext4 filesystem being mounted at /613/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 96.129749][ T9652] loop1: detected capacity change from 0 to 1024 [ 96.180615][ T9663] netlink: 'syz.4.2735': attribute type 13 has an invalid length. [ 96.188527][ T9663] netlink: 24859 bytes leftover after parsing attributes in process `syz.4.2735'. [ 96.253416][ T9670] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 96.389128][ T9688] Invalid ELF header magic: != ELF [ 96.410976][ T9691] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2748'. [ 96.651301][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 96.859449][ T9736] loop1: detected capacity change from 0 to 128 [ 96.886160][ T9734] loop4: detected capacity change from 0 to 8192 [ 97.076003][ T9752] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22 [ 97.084283][ T9752] netdevsim netdevsim4: Direct firmware load for . failed with error -22 [ 97.097130][ T9754] @: renamed from vlan0 (while UP) [ 97.135398][ T9758] loop4: detected capacity change from 0 to 128 [ 97.153203][ T9758] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 97.161910][ T9758] vhci_hcd: invalid port number 219 [ 97.167219][ T9758] vhci_hcd: default hub control req: ecdb v6ab1 i00db l1556 [ 97.305674][ T9779] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2789'. [ 97.386330][ T9790] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2794'. [ 97.397794][ T9790] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 97.406807][ T9790] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 97.415557][ T9790] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 97.424438][ T9790] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 97.433307][ T9790] vxlan0: entered promiscuous mode [ 97.438425][ T9790] vxlan0: entered allmulticast mode [ 97.504093][ T9805] netlink: 'syz.0.2801': attribute type 2 has an invalid length. [ 97.563010][ T9810] loop3: detected capacity change from 0 to 512 [ 97.573669][ T9810] EXT4-fs warning (device loop3): ext4_enable_quotas:7097: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 97.584867][ T9820] bpf_get_probe_write_proto: 14 callbacks suppressed [ 97.584885][ T9820] syz.0.2807[9820] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 97.595322][ T9810] EXT4-fs (loop3): mount failed [ 97.595366][ T9820] syz.0.2807[9820] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 97.611649][ T9820] syz.0.2807[9820] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 97.701315][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 97.770091][ T9836] ebtables: ebtables: counters copy to user failed while replacing table [ 97.843144][ T9848] loop2: detected capacity change from 0 to 512 [ 97.868351][ T9850] loop0: detected capacity change from 0 to 128 [ 97.881184][ T9852] loop1: detected capacity change from 0 to 512 [ 97.892069][ T9850] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 97.899797][ T9850] vhci_hcd: invalid port number 219 [ 97.905160][ T9850] vhci_hcd: default hub control req: ecdb v6ab1 i00db l1556 [ 97.942033][ T9852] EXT4-fs (loop1): too many log groups per flexible block group [ 97.949975][ T9852] EXT4-fs (loop1): failed to initialize mballoc (-12) [ 97.958047][ T9852] EXT4-fs (loop1): mount failed [ 97.964318][ T9848] ext4 filesystem being mounted at /632/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 98.004682][ T3314] EXT4-fs unmount: 67 callbacks suppressed [ 98.004701][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 98.123473][ T9870] loop2: detected capacity change from 0 to 4096 [ 98.160611][ T9870] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 98.192754][ T9883] lo speed is unknown, defaulting to 1000 [ 98.198649][ T9883] lo speed is unknown, defaulting to 1000 [ 98.205018][ T9883] lo speed is unknown, defaulting to 1000 [ 98.211181][ T9883] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 98.219618][ T9883] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 98.244068][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 98.250571][ T9883] lo speed is unknown, defaulting to 1000 [ 98.259545][ T9883] lo speed is unknown, defaulting to 1000 [ 98.269547][ T9883] lo speed is unknown, defaulting to 1000 [ 98.277735][ T9883] lo speed is unknown, defaulting to 1000 [ 98.289367][ T9883] lo speed is unknown, defaulting to 1000 [ 98.319326][ T9891] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2838'. [ 98.356046][ T9894] loop0: detected capacity change from 0 to 512 [ 98.364593][ T9894] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 98.380675][ T9894] EXT4-fs (loop0): 1 truncate cleaned up [ 98.384152][ T9896] netlink: 256 bytes leftover after parsing attributes in process `+}[@'. [ 98.386935][ T9894] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 98.431158][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 98.539825][ T9917] loop1: detected capacity change from 0 to 512 [ 98.556380][ T9917] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 98.595204][ T9917] EXT4-fs (loop1): 1 truncate cleaned up [ 98.604597][ T9917] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 98.640973][ T9917] EXT4-fs error (device loop1): mb_free_blocks:1948: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt. [ 98.669694][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 98.731320][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 98.767979][ T9943] loop1: detected capacity change from 0 to 1024 [ 98.780830][ T9943] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 98.804558][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 98.895552][ T9964] sch_tbf: peakrate 8 is lower than or equals to rate 12 ! [ 98.978570][ T9971] loop3: detected capacity change from 0 to 4096 [ 99.002480][ T9971] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 99.076147][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.165970][T10001] loop3: detected capacity change from 0 to 512 [ 99.179358][T10001] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 99.210966][T10001] EXT4-fs (loop3): 1 truncate cleaned up [ 99.219498][T10001] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 99.255038][T10001] EXT4-fs error (device loop3): mb_free_blocks:1948: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt. [ 99.285046][ T3321] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.445572][ T29] kauditd_printk_skb: 323 callbacks suppressed [ 99.445605][ T29] audit: type=1400 audit(1731701754.810:3497): avc: denied { create } for pid=10040 comm="syz.4.2898" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 99.455898][T10039] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2897'. [ 99.480342][T10039] netlink: 'syz.1.2897': attribute type 7 has an invalid length. [ 99.483551][ T29] audit: type=1400 audit(1731701754.820:3498): avc: denied { create } for pid=10032 comm="syz.3.2894" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 99.488220][T10039] netlink: 'syz.1.2897': attribute type 8 has an invalid length. [ 99.507775][ T29] audit: type=1400 audit(1731701754.820:3499): avc: denied { setopt } for pid=10032 comm="syz.3.2894" lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 99.515531][T10039] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2897'. [ 99.536357][ T29] audit: type=1400 audit(1731701754.820:3500): avc: denied { write } for pid=10032 comm="syz.3.2894" lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 99.596090][T10039] batadv_slave_1: entered promiscuous mode [ 99.614476][ T29] audit: type=1400 audit(1731701754.910:3501): avc: denied { bind } for pid=10040 comm="syz.4.2898" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 99.633892][ T29] audit: type=1400 audit(1731701754.940:3502): avc: denied { write } for pid=10040 comm="syz.4.2898" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 99.639511][T10046] loop0: detected capacity change from 0 to 2048 [ 99.653397][ T29] audit: type=1400 audit(1731701754.970:3503): avc: denied { bind } for pid=10044 comm="syz.3.2900" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 99.679324][ T29] audit: type=1400 audit(1731701754.970:3504): avc: denied { name_bind } for pid=10044 comm="syz.3.2900" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1 [ 99.700413][ T29] audit: type=1400 audit(1731701754.970:3505): avc: denied { node_bind } for pid=10044 comm="syz.3.2900" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1 [ 99.721642][ T29] audit: type=1400 audit(1731701754.990:3506): avc: denied { tracepoint } for pid=10048 comm="syz.4.2902" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 99.741659][T10039] batadv_slave_1: left promiscuous mode [ 99.781337][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 99.795762][T10046] Alternate GPT is invalid, using primary GPT. [ 99.802276][T10046] loop0: p2 p3 p7 [ 99.844331][T10059] mmap: syz.1.2906 (10059): VmData 29093888 exceed data ulimit 9. Update limits or use boot option ignore_rlimit_data. [ 100.233452][T10097] vhci_hcd: default hub control req: 0000 v0000 i0000 l31125 [ 100.348762][T10110] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=10110 comm=syz.1.2929 [ 100.550159][T10142] netlink: 'syz.1.2946': attribute type 4 has an invalid length. [ 100.605093][T10146] loop4: detected capacity change from 0 to 512 [ 100.605648][ T8] lo speed is unknown, defaulting to 1000 [ 100.658741][T10146] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 100.700651][T10154] loop0: detected capacity change from 0 to 512 [ 100.711312][T10146] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c018, mo2=0002] [ 100.719289][T10146] System zones: 1-12 [ 100.726790][T10159] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2954'. [ 100.737225][T10146] EXT4-fs (loop4): 1 truncate cleaned up [ 100.744745][T10146] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 100.774168][T10154] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.2952: corrupted in-inode xattr: invalid ea_ino [ 100.788215][T10154] EXT4-fs error (device loop0): ext4_orphan_get:1393: comm syz.0.2952: couldn't read orphan inode 15 (err -117) [ 100.801817][T10154] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 100.821626][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 100.862205][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.884204][T10174] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2962'. [ 100.895156][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.122822][T10216] SELinux: Context system_u:object_r:auditd_var_run_t:s0 is not valid (left unmapped). [ 101.184022][T10227] netlink: 'syz.2.2987': attribute type 3 has an invalid length. [ 101.191894][T10227] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.2987'. [ 101.209384][T10230] sd 0:0:1:0: device reset [ 101.254863][T10236] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2990'. [ 101.851360][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 101.956065][T10285] hub 2-0:1.0: USB hub found [ 101.960838][T10285] hub 2-0:1.0: 8 ports detected [ 102.000448][T10291] loop1: detected capacity change from 0 to 512 [ 102.009161][T10291] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.3010: corrupted in-inode xattr: invalid ea_ino [ 102.023777][T10291] EXT4-fs error (device loop1): ext4_orphan_get:1393: comm syz.1.3010: couldn't read orphan inode 15 (err -117) [ 102.024007][T10294] loop0: detected capacity change from 0 to 1024 [ 102.037756][T10291] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 102.056593][T10294] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 102.084705][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.106042][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.120913][T10299] smc: net device bond0 applied user defined pnetid SYZ0 [ 102.131059][T10299] smc: net device bond0 erased user defined pnetid SYZ0 [ 102.134626][T10303] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3016'. [ 102.191206][T10311] netlink: 54 bytes leftover after parsing attributes in process `syz.4.3020'. [ 102.194168][T10309] loop1: detected capacity change from 0 to 2048 [ 102.227705][T10314] loop4: detected capacity change from 0 to 256 [ 102.246291][T10316] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22 [ 102.266874][T10309] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 102.272535][T10314] FAT-fs (loop4): Directory bread(block 64) failed [ 102.286758][T10314] FAT-fs (loop4): Directory bread(block 65) failed [ 102.293378][T10314] FAT-fs (loop4): Directory bread(block 66) failed [ 102.299998][T10314] FAT-fs (loop4): Directory bread(block 67) failed [ 102.306681][T10314] FAT-fs (loop4): Directory bread(block 68) failed [ 102.313395][T10314] FAT-fs (loop4): Directory bread(block 69) failed [ 102.317000][ T3321] cgroup: fork rejected by pids controller in /syz3 [ 102.319942][T10314] FAT-fs (loop4): Directory bread(block 70) failed [ 102.320001][ T3321] [ 102.335783][T10314] FAT-fs (loop4): Directory bread(block 71) failed [ 102.343999][T10314] FAT-fs (loop4): Directory bread(block 72) failed [ 102.350588][T10314] FAT-fs (loop4): Directory bread(block 73) failed [ 102.381886][T10314] syz.4.3021: attempt to access beyond end of device [ 102.381886][T10314] loop4: rw=0, sector=1768, nr_sectors = 4 limit=256 [ 102.388422][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.410630][T10314] syz.4.3021: attempt to access beyond end of device [ 102.410630][T10314] loop4: rw=0, sector=1768, nr_sectors = 4 limit=256 [ 102.557700][ T37] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 102.568224][ T37] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 102.625179][ T37] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 102.635624][ T37] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 102.704871][T10379] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 102.715563][T10379] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 102.716250][ T37] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 102.728195][T10380] netlink: 54 bytes leftover after parsing attributes in process `syz.1.3049'. [ 102.733618][ T37] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 102.795089][T10388] loop1: detected capacity change from 0 to 512 [ 102.811619][T10370] lo speed is unknown, defaulting to 1000 [ 102.834303][ T37] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 102.844781][ T37] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 102.855491][T10388] EXT4-fs warning (device loop1): ext4_enable_quotas:7097: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 102.874250][T10388] EXT4-fs (loop1): mount failed [ 102.891302][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 103.033232][ T37] bridge_slave_1: left allmulticast mode [ 103.038998][ T37] bridge_slave_1: left promiscuous mode [ 103.044690][ T37] bridge0: port 2(bridge_slave_1) entered disabled state [ 103.068310][ T37] bridge_slave_0: left allmulticast mode [ 103.074106][ T37] bridge_slave_0: left promiscuous mode [ 103.079838][ T37] bridge0: port 1(bridge_slave_0) entered disabled state [ 103.272741][T10424] loop4: detected capacity change from 0 to 1024 [ 103.281198][T10424] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 103.296192][ T37] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 103.307013][ T37] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 103.316509][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.317078][ T37] bond0 (unregistering): Released all slaves [ 103.336018][T10370] chnl_net:caif_netlink_parms(): no params data found [ 103.376820][ T37] tipc: Left network mode [ 103.383316][ T37] IPVS: stopping master sync thread 5071 ... [ 103.403775][ T37] hsr_slave_0: left promiscuous mode [ 103.409730][ T37] hsr_slave_1: left promiscuous mode [ 103.416663][ T37] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 103.424149][ T37] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 103.440851][ T37] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 103.448416][ T37] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 103.459929][ T37] veth1_macvtap: left promiscuous mode [ 103.465508][ T37] veth0_macvtap: left promiscuous mode [ 103.471088][ T37] veth1_vlan: left promiscuous mode [ 103.476365][ T37] veth0_vlan: left promiscuous mode [ 103.578221][T10370] bridge0: port 1(bridge_slave_0) entered blocking state [ 103.585347][T10370] bridge0: port 1(bridge_slave_0) entered disabled state [ 103.592541][T10370] bridge_slave_0: entered allmulticast mode [ 103.598998][T10370] bridge_slave_0: entered promiscuous mode [ 103.606293][T10370] bridge0: port 2(bridge_slave_1) entered blocking state [ 103.613414][T10370] bridge0: port 2(bridge_slave_1) entered disabled state [ 103.620542][T10370] bridge_slave_1: entered allmulticast mode [ 103.626896][T10370] bridge_slave_1: entered promiscuous mode [ 103.647521][T10370] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 103.659022][T10370] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 103.695683][T10370] team0: Port device team_slave_0 added [ 103.702859][T10370] team0: Port device team_slave_1 added [ 103.722371][T10370] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 103.729384][T10370] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 103.755497][T10370] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 103.767212][T10370] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 103.772509][T10444] loop4: detected capacity change from 0 to 764 [ 103.774195][T10370] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 103.806518][T10370] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 103.841207][T10370] hsr_slave_0: entered promiscuous mode [ 103.847366][T10370] hsr_slave_1: entered promiscuous mode [ 103.855819][T10370] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 103.859506][T10452] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 103.863784][T10370] Cannot create hsr debugfs directory [ 103.872120][T10452] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 103.926081][ T37] IPVS: stop unused estimator thread 0... [ 103.941409][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 104.155580][T10462] loop0: detected capacity change from 0 to 512 [ 104.158635][T10370] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 104.163454][T10462] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 104.180583][T10370] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 104.189054][T10370] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 104.196728][T10462] EXT4-fs (loop0): 1 truncate cleaned up [ 104.198302][T10370] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 104.202732][T10462] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 104.262856][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.272860][T10370] 8021q: adding VLAN 0 to HW filter on device bond0 [ 104.285491][T10370] 8021q: adding VLAN 0 to HW filter on device team0 [ 104.286503][T10467] loop2: detected capacity change from 0 to 1764 [ 104.300697][ T50] bridge0: port 1(bridge_slave_0) entered blocking state [ 104.301767][T10467] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 104.307810][ T50] bridge0: port 1(bridge_slave_0) entered forwarding state [ 104.326473][ T50] bridge0: port 2(bridge_slave_1) entered blocking state [ 104.333689][ T50] bridge0: port 2(bridge_slave_1) entered forwarding state [ 104.382720][T10471] loop2: detected capacity change from 0 to 1024 [ 104.389609][T10471] EXT4-fs: Ignoring removed oldalloc option [ 104.401210][T10471] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 104.439913][T10477] loop1: detected capacity change from 0 to 512 [ 104.449740][T10370] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 104.458175][T10471] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 104.483415][ T29] kauditd_printk_skb: 232 callbacks suppressed [ 104.483432][ T29] audit: type=1400 audit(1731701759.850:3738): avc: denied { ioctl } for pid=10470 comm="syz.2.3087" path="/669/bus/cpu.stat" dev="loop2" ino=19 ioctlcmd=0x583b scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 104.543661][ T29] audit: type=1400 audit(1731701759.910:3739): avc: denied { setopt } for pid=10487 comm="syz.0.3090" lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 104.550786][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.575953][T10477] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 104.589260][T10477] ext4 filesystem being mounted at /611/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 104.633322][T10494] lo speed is unknown, defaulting to 1000 [ 104.640243][ T3315] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.643830][T10370] veth0_vlan: entered promiscuous mode [ 104.676509][T10370] veth1_vlan: entered promiscuous mode [ 104.707267][T10500] vhci_hcd: default hub control req: 0006 vffff i0000 l0 [ 104.715242][ T29] audit: type=1400 audit(1731701760.080:3740): avc: denied { setopt } for pid=10501 comm="syz.4.3095" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 104.729408][T10505] SELinux: policydb version 0 does not match my version range 15-33 [ 104.744526][T10370] veth0_macvtap: entered promiscuous mode [ 104.746344][T10505] SELinux: failed to load policy [ 104.761422][ T29] audit: type=1400 audit(1731701760.080:3741): avc: denied { load_policy } for pid=10504 comm="syz.1.3096" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 104.781771][ T29] audit: type=1400 audit(1731701760.110:3742): avc: denied { write } for pid=10501 comm="syz.4.3095" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 104.811795][T10370] veth1_macvtap: entered promiscuous mode [ 104.832860][T10370] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 104.843493][T10370] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.853637][T10370] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 104.856395][ T29] audit: type=1400 audit(1731701760.220:3743): avc: denied { create } for pid=10514 comm="syz.1.3101" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 104.864087][T10370] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.864101][T10370] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 104.864118][T10370] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.865419][T10370] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 104.922250][T10370] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 104.932722][T10370] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.942555][T10370] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 104.953013][T10370] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.963797][T10370] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 104.971112][T10511] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3099'. [ 104.980085][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 104.981837][ T29] audit: type=1400 audit(1731701760.320:3744): avc: denied { write } for pid=10512 comm="syz.2.3100" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 105.010258][ T29] audit: type=1400 audit(1731701760.380:3745): avc: denied { connect } for pid=10514 comm="syz.1.3101" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 105.052772][ T29] audit: type=1326 audit(1731701760.420:3746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10520 comm="syz.0.3104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ff504e719 code=0x7ffc0000 [ 105.076355][ T29] audit: type=1326 audit(1731701760.420:3747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10520 comm="syz.0.3104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ff504e719 code=0x7ffc0000 [ 105.076885][T10521] loop0: detected capacity change from 0 to 2048 [ 105.115399][T10519] lo speed is unknown, defaulting to 1000 [ 105.116054][T10370] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.129961][T10370] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.138771][T10370] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.147507][T10370] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.168397][T10521] loop0: p1 < > p4 < > [ 105.276339][T10532] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3108'. [ 105.471847][T10560] 9pnet: Unknown protocol version 9 [ 105.542780][T10580] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3132'. [ 105.604864][T10596] sch_tbf: peakrate 8 is lower than or equals to rate 12 ! [ 105.674924][T10605] netlink: 256 bytes leftover after parsing attributes in process `syz.2.3144'. [ 105.710936][T10609] loop3: detected capacity change from 0 to 8192 [ 105.770063][T10617] netlink: 64859 bytes leftover after parsing attributes in process `syz.0.3150'. [ 105.810875][T10624] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=5127 sclass=netlink_audit_socket pid=10624 comm=syz.4.3152 [ 106.021501][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 106.073200][T10675] loop4: detected capacity change from 0 to 164 [ 106.081208][T10675] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 106.131927][T10679] netlink: 132 bytes leftover after parsing attributes in process `+}[@'. [ 106.179869][T10691] Process accounting resumed [ 106.210415][T10693] ip6t_srh: unknown srh invflags 7D00 [ 106.247529][T10705] syz.3.3192[10705] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 106.247640][T10705] syz.3.3192[10705] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 106.261822][T10705] syz.3.3192[10705] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 106.276423][T10706] loop4: detected capacity change from 0 to 512 [ 106.294920][T10706] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 106.303611][T10705] loop3: detected capacity change from 0 to 512 [ 106.304820][T10706] EXT4-fs (loop4): invalid journal inode [ 106.316323][T10706] EXT4-fs (loop4): can't get journal size [ 106.322291][T10705] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 106.335355][T10706] EXT4-fs (loop4): 1 truncate cleaned up [ 106.341711][T10706] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 106.354672][T10705] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 106.369808][T10705] EXT4-fs (loop3): 1 truncate cleaned up [ 106.370247][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 106.375933][T10705] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 106.392411][T10710] bond3: entered promiscuous mode [ 106.402198][T10710] bond3: entered allmulticast mode [ 106.408349][T10710] 8021q: adding VLAN 0 to HW filter on device bond3 [ 106.420084][T10710] bond3 (unregistering): Released all slaves [ 106.428497][T10370] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 106.450965][T10718] vlan2: entered promiscuous mode [ 106.564848][T10733] loop3: detected capacity change from 0 to 512 [ 106.585437][T10733] EXT4-fs warning (device loop3): ext4_enable_quotas:7097: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 106.600605][T10733] EXT4-fs (loop3): mount failed [ 106.605551][T10741] TCP: TCP_TX_DELAY enabled [ 106.632913][T10745] loop4: detected capacity change from 0 to 512 [ 106.683259][T10745] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 106.695953][T10745] ext4 filesystem being mounted at /590/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 106.739137][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 106.810533][T10780] netlink: 'syz.1.3223': attribute type 21 has an invalid length. [ 106.818528][ C1] ------------[ cut here ]------------ [ 106.824023][ C1] refcount_t: underflow; use-after-free. [ 106.829874][ C1] WARNING: CPU: 1 PID: 23 at lib/refcount.c:28 refcount_warn_saturate+0x1c6/0x230 [ 106.839161][ C1] Modules linked in: [ 106.843099][ C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Not tainted 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0 [ 106.853749][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 106.863840][ C1] RIP: 0010:refcount_warn_saturate+0x1c6/0x230 [ 106.870019][ C1] Code: 72 ff ff ff e8 eb 75 71 ff 48 c7 c7 be d7 b2 86 e8 df 5c 8a ff c6 05 26 1d f4 04 01 90 48 c7 c7 55 b1 1b 86 e8 2b 3a 53 ff 90 <0f> 0b 90 90 e9 43 ff ff ff e8 bc 75 71 ff 48 c7 c7 bb d7 b2 86 e8 [ 106.889673][ C1] RSP: 0018:ffffc900000cf9e8 EFLAGS: 00010246 [ 106.895778][ C1] RAX: d1ae1a9ddc066800 RBX: ffff8881348643e4 RCX: ffff888100f92100 [ 106.903829][ C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000 [ 106.911857][ C1] RBP: 0000000000000003 R08: ffffffff8111f637 R09: 0000000000000000 [ 106.919869][ C1] R10: 0001ffffffffffff R11: ffff888100f92100 R12: 0000000000000001 [ 106.927882][ C1] R13: ffff888113d7bc00 R14: ffff8881348643e4 R15: 0000000000000000 [ 106.935878][ C1] FS: 0000000000000000(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000 [ 106.944836][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 106.951445][ C1] CR2: 0000001b3311dff8 CR3: 000000011375c000 CR4: 00000000003506f0 [ 106.959425][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 106.967431][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600 [ 106.975416][ C1] Call Trace: [ 106.978701][ C1] [ 106.981665][ C1] ? __warn+0x141/0x350 [ 106.985849][ C1] ? report_bug+0x315/0x420 [ 106.990368][ C1] ? refcount_warn_saturate+0x1c6/0x230 [ 106.995973][ C1] ? handle_bug+0x60/0x90 [ 107.000330][ C1] ? exc_invalid_op+0x1a/0x50 [ 107.005058][ C1] ? asm_exc_invalid_op+0x1a/0x20 [ 107.010114][ C1] ? __warn_printk+0x167/0x1b0 [ 107.014936][ C1] ? refcount_warn_saturate+0x1c6/0x230 [ 107.020530][ C1] ? refcount_warn_saturate+0x1c5/0x230 [ 107.026116][ C1] sk_skb_reason_drop+0xe9/0x290 [ 107.031101][ C1] j1939_xtp_rx_cts+0x3c4/0x6c0 [ 107.035988][ C1] j1939_tp_recv+0x699/0xa80 [ 107.040595][ C1] j1939_can_recv+0x45f/0x550 [ 107.045299][ C1] ? __pfx_j1939_can_recv+0x10/0x10 [ 107.050539][ C1] can_rcv_filter+0x225/0x4c0 [ 107.055235][ C1] can_receive+0x182/0x1f0 [ 107.059658][ C1] ? __pfx_ip_rcv+0x10/0x10 [ 107.061320][ C0] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 107.064187][ C1] can_rcv+0xe7/0x180 [ 107.075059][ C1] ? __pfx_can_rcv+0x10/0x10 [ 107.079682][ C1] __netif_receive_skb+0x123/0x280 [ 107.084836][ C1] process_backlog+0x22e/0x440 [ 107.089718][ C1] __napi_poll+0x63/0x3c0 [ 107.094069][ C1] ? net_rx_action+0x376/0x7f0 [ 107.098834][ C1] net_rx_action+0x3a1/0x7f0 [ 107.103444][ C1] handle_softirqs+0xbf/0x280 [ 107.108119][ C1] ? __pfx_run_ksoftirqd+0x10/0x10 [ 107.113299][ C1] run_ksoftirqd+0x1c/0x30 [ 107.117721][ C1] smpboot_thread_fn+0x31c/0x4c0 [ 107.122672][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 107.128132][ C1] kthread+0x1d1/0x210 [ 107.132239][ C1] ? __pfx_kthread+0x10/0x10 [ 107.136856][ C1] ret_from_fork+0x4b/0x60 [ 107.141332][ C1] ? __pfx_kthread+0x10/0x10 [ 107.145962][ C1] ret_from_fork_asm+0x1a/0x30 [ 107.150769][ C1] [ 107.153798][ C1] ---[ end trace 0000000000000000 ]--- [ 107.284710][T10802] loop4: detected capacity change from 0 to 512 [ 107.315484][T10802] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 107.361043][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.455632][T10820] skbuff: bad partial csum: csum=65506/2 headroom=144 headlen=65526 [ 107.497796][T10828] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3245'. [ 107.591939][T10839] loop3: detected capacity change from 0 to 512 [ 107.598695][T10839] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 107.607436][T10839] EXT4-fs (loop3): invalid journal inode [ 107.614089][T10839] EXT4-fs (loop3): can't get journal size [ 107.615397][T10840] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 107.620868][T10839] EXT4-fs (loop3): 1 truncate cleaned up [ 107.628730][T10840] vhci_hcd: default hub control req: d300 v0000 i0000 l0 [ 107.633741][T10839] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 107.669984][T10370] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.683514][T10846] netlink: 'syz.4.3253': attribute type 21 has an invalid length. [ 107.691521][T10846] netlink: 176 bytes leftover after parsing attributes in process `syz.4.3253'. [ 108.190860][ C1] vcan0: j1939_tp_rxtimer: 0xffff888113d7bc00: rx timeout, send abort [ 108.199108][ C1] vcan0: j1939_tp_rxtimer: 0xffff888113d7a800: rx timeout, send abort [ 108.207408][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888113d7bc00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 108.221733][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888113d7a800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 108.372215][T10881] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 108.380825][T10881] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 108.390764][T10883] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3269'. [ 108.438393][T10885] loop0: detected capacity change from 0 to 4096 [ 108.447156][T10885] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 108.475801][ T3318] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.799608][T10950] loop0: detected capacity change from 0 to 2048 [ 108.836303][T10950] Alternate GPT is invalid, using primary GPT. [ 108.842698][T10950] loop0: p2 p3 p7 [ 108.867050][T10950] sctp: [Deprecated]: syz.0.3301 (pid 10950) Use of struct sctp_assoc_value in delayed_ack socket option. [ 108.867050][T10950] Use struct sctp_sack_info instead [ 109.009299][T10972] loop3: detected capacity change from 0 to 2048 [ 109.028858][T10978] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3314'. [ 109.039268][T10978] (unnamed net_device) (uninitialized): option ad_select: invalid value (36) [ 109.084407][T10980] loop2: detected capacity change from 0 to 4096 [ 109.094069][T10984] loop4: detected capacity change from 0 to 1024 [ 109.103460][T10972] Alternate GPT is invalid, using primary GPT. [ 109.109798][T10972] loop3: p1 p2 p3 [ 109.116308][T10980] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 109.130566][T10984] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 109.213608][ T3325] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.228263][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.317056][T10995] loop0: detected capacity change from 0 to 8192 [ 109.333133][T11005] loop2: detected capacity change from 0 to 512 [ 109.345091][T11005] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 109.359989][T11005] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.446824][T11018] IPVS: Error joining to the multicast group [ 109.470490][T11021] loop2: detected capacity change from 0 to 1024 [ 109.498547][T11021] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 109.528758][ T3314] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.567601][T11031] ================================================================== [ 109.575745][T11031] BUG: KCSAN: data-race in pcpu_alloc_noprof / pcpu_free_area [ 109.583272][T11031] [ 109.585602][T11031] read-write to 0xffffffff88be03ac of 4 bytes by task 10370 on cpu 1: [ 109.585851][T11033] loop3: detected capacity change from 0 to 512 [ 109.593756][T11031] pcpu_free_area+0x4dc/0x570 [ 109.593793][T11031] free_percpu+0x1c6/0xb30 [ 109.593827][T11031] xt_percpu_counter_free+0x63/0x80 [ 109.593862][T11031] cleanup_entry+0x195/0x1c0 [ 109.618942][T11031] __do_replace+0x470/0x580 [ 109.623461][T11031] do_ip6t_set_ctl+0x820/0x8c0 [ 109.628239][T11031] nf_setsockopt+0x195/0x1b0 [ 109.632831][T11031] ipv6_setsockopt+0x10f/0x130 [ 109.637601][T11031] tcp_setsockopt+0x93/0xb0 [ 109.642113][T11031] sock_common_setsockopt+0x64/0x80 [ 109.647324][T11031] __sys_setsockopt+0x1cc/0x240 [ 109.652192][T11031] __x64_sys_setsockopt+0x66/0x80 [ 109.657236][T11031] x64_sys_call+0x278d/0x2d60 [ 109.661936][T11031] do_syscall_64+0xc9/0x1c0 [ 109.666446][T11031] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.672360][T11031] [ 109.674683][T11031] read to 0xffffffff88be03ac of 4 bytes by task 11031 on cpu 0: [ 109.682337][T11031] pcpu_alloc_noprof+0x9b6/0x10a0 [ 109.687387][T11031] bpf_map_alloc_percpu+0xad/0x210 [ 109.692511][T11031] array_map_alloc+0x2aa/0x390 [ 109.697292][T11031] map_create+0x850/0xb70 [ 109.701627][T11031] __sys_bpf+0x667/0x7a0 [ 109.705875][T11031] __x64_sys_bpf+0x43/0x50 [ 109.710305][T11031] x64_sys_call+0x2625/0x2d60 [ 109.715026][T11031] do_syscall_64+0xc9/0x1c0 [ 109.719540][T11031] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.725451][T11031] [ 109.727774][T11031] value changed: 0x00000009 -> 0x0000000a [ 109.733487][T11031] [ 109.735813][T11031] Reported by Kernel Concurrency Sanitizer on: [ 109.741972][T11031] CPU: 0 UID: 0 PID: 11031 Comm: syz.0.3336 Tainted: G W 6.12.0-rc7-syzkaller-00187-gf868cd251776 #0 [ 109.754231][T11031] Tainted: [W]=WARN [ 109.758025][T11031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 109.768081][T11031] ================================================================== [ 109.806699][T11033] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 109.834056][T10370] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.