last executing test programs: 35.946960708s ago: executing program 2 (id=464): r0 = syz_open_procfs(0x0, &(0x7f0000000280)='mounts\x00') r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x62141) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x804810, &(0x7f0000000a40), 0x26, 0x771, &(0x7f0000001280)="$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") mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 35.8270961s ago: executing program 2 (id=466): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900840000000001000000940001000002fc13c40000000f00000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="300000001d0001"], 0x30}, 0x1, 0x0, 0x0, 0x4040000}, 0x0) 35.749148922s ago: executing program 2 (id=467): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) truncate(&(0x7f0000000040)='./file0\x00', 0x0) 35.702261713s ago: executing program 2 (id=468): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0) mount$bind(&(0x7f0000000580)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x1b5008, 0x0) umount2(&(0x7f00000002c0)='./file0\x00', 0x0) 35.649250264s ago: executing program 2 (id=471): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000006000000000084e27fa40000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r0}, 0x10) r1 = io_uring_setup(0x204b, &(0x7f0000001600)={0x0, 0x20, 0x3080, 0x6, 0x27d}) io_uring_register$IORING_UNREGISTER_RING_FDS(r1, 0x15, &(0x7f0000000980)=[{0x0, 0x1, 0x0, 0x0, 0x0}], 0x1) 35.554969316s ago: executing program 2 (id=475): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f00000003c0)=0x8000, 0x4) setsockopt$inet6_int(r0, 0x29, 0x8, &(0x7f00000000c0)=0x4d, 0x4) getsockopt$inet6_buf(r0, 0x29, 0x6, 0x0, &(0x7f0000000240)) 35.534880586s ago: executing program 32 (id=475): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f00000003c0)=0x8000, 0x4) setsockopt$inet6_int(r0, 0x29, 0x8, &(0x7f00000000c0)=0x4d, 0x4) getsockopt$inet6_buf(r0, 0x29, 0x6, 0x0, &(0x7f0000000240)) 1.200142277s ago: executing program 1 (id=1739): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000004d40)={0xffffffffffffffff}) ioctl$int_in(r0, 0x5452, &(0x7f0000b28000)=0x3) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000240)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0xe, 0x7fff0000}]}) close_range(r1, 0xffffffffffffffff, 0x0) 1.119511648s ago: executing program 1 (id=1741): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000002c0)={0xffffffff, 0x0, 0x0, 'queue1\x00'}) write$sndseq(r0, &(0x7f0000000000)=[{0x1e, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}], 0x1001a) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r0, 0x402c5342, &(0x7f0000000040)={0x0, 0x7a124, 0x2, {0x0, 0x100}}) 1.078127949s ago: executing program 1 (id=1742): sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f0000000f40)={0x0, 0x0, &(0x7f0000000f00)={&(0x7f0000000000)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010000000000000000000c000000280005801400f4800400020000000000080001000000000008"], 0x3c}}, 0x0) r0 = socket$inet6(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c000000190001000000000000000000021800000000fd000000ed0008000100ac1414003400080004"], 0x2c}}, 0x0) sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b) 937.271562ms ago: executing program 1 (id=1743): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) pipe2(&(0x7f0000001cc0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@access_uid}]}}) 798.774985ms ago: executing program 1 (id=1749): r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000000)={@mcast1, 0x1000800, 0x0, 0x1, 0xb, 0x0, 0x2}, 0x20) r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip6_flowlabel\x00') pread64(r1, &(0x7f0000001480)=""/4122, 0x101a, 0x99) 770.646825ms ago: executing program 1 (id=1754): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]}) r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0xb}]}) bpf$PROG_LOAD(0x5, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 658.159597ms ago: executing program 0 (id=1762): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) pipe2(&(0x7f0000001cc0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@access_uid}]}}) 553.408329ms ago: executing program 0 (id=1763): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000300)={0xffffffffffffffff}, 0x106, 0x8}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f00000001c0)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f00000000c0), r1, 0x0, 0x2, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000340)={0x15, 0x110, 0xfa00, {r1, 0x8100, 0x30, 0x30, 0x0, @in6={0x1b, 0x4e20, 0x7, @empty, 0xbff}, @ib={0x1b, 0xf, 0xffb, {"50916300"}, 0x8000000000000001, 0x8, 0x3}}}, 0x118) 522.03715ms ago: executing program 0 (id=1765): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0xffffc000) mbind(&(0x7f00001e7000/0x2000)=nil, 0x2000, 0x8003, &(0x7f0000000000)=0x9, 0x3, 0x2) madvise(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x15) madvise(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3) 478.430821ms ago: executing program 0 (id=1768): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000dd0000000000003b810000850000006d000000a50000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x16, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000580)={r1, 0x0, 0x44, 0x0, &(0x7f0000000080)="f6f4e9a10000502468da5eb1c6b2feff8833c0000000000000c548dc7914cb11ad63bf3707164aac031971c4be105eb953f86fbc6b204e076aa7a493e796123bbbd8e3b7e62d8fd097cf21d6d431a069ebc0aefd5fce80cc99fb38c771fa46e2c32a95fe99", 0x0, 0x86, 0x0, 0xffffffffffffff80, 0x0, &(0x7f0000000000)="daf9e846ab156efc71b59652333536dbfd26a6d0546366e36eb77dd0aaa2dbe567d168904cf0d5bce1771889c98ffc0abf", 0x0}, 0x15) 428.427802ms ago: executing program 4 (id=1772): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0) write$UHID_INPUT(r0, &(0x7f0000000940)={0x8, {"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", 0x1000}}, 0x1006) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000740)=ANY=[@ANYBLOB="61124c000000000061138c0000000000bf200000000000000703000008ff0200ad0301000000000095000000000000006916000000000000bf67000000000000170600000fff07006706000002000000070600000ee60000bf050000000000001f650000000000006507000002000000070700004c0000001f75000000000000bf54000000000000070500000419311f2d3001000000000095000000000000000500000000000000950000000000000032ed3c5be95e76b67754bb12dc8c27df8ecf264e0f84f9f17d3c30e3c72fe9751f008554bb4f2278af6d71d79a5e12810a089dc1d4681d295c45a674f888a08034b7dd399703d6c4f633a9a4f16d0a3e1282ee45a010fb94fa9de56c9d8a814261bdb94a65f78238b89dc6c60bf70d742a81b72bab8395fa64810b5b1bfd3782519518c505000000b8fab4d4d897db2c544c0e0895a9044f50c50b8eac8c63d2b1cd06a39702bd547f5ebaa69520bbb15f4f01cef3c9bacec15e2e3b2bd352e93a22adfe8efe33ff2f8ee5476d4ef7a6f0c4704403b9bad2b648e90fff24f69a5ef05f5408ea197ed09a9510ee6063229de2984abdd46ea3ec78e3127002ed37c2564bd98a621483fb2a5ff221e0d831f24759d17b8c59d0f2b0727f6b7958fb5b939af4be5e55a95f8c6d785a91c7c3f0c17ae7f9ac5ff05f5ecddf0cef90d50e763be96496661c749e21ab63a1f50b30a65a9027ba357bf8c614497ee59b68bf6a5d45c81c567e347d54574164bbea3e7b7f8a13cce7014137f250370b8a70ae3eaf6d6f17759c3886871e97d063b7f26eed3226bb0b9ee6320a2b02fea7a06a0e37182adf4b1be6f29358d4f5dfec405bde000000000000000000000000000000902e647cc5962eccaad64429335f3ce2a10ce72da82875427c1d16db24dca08487ba41a3fb337f8432d8176a515229e32ee11a1dd23dac038f989eafdd67f60b63f7be4d1bf325b57335b9973c73bfa89517a98b1fc15f8a2713718feb01059d570a0000e3b2a93bd745a74f9bf7f7abc5d15d56331055cc0820c5c9d676d92557c4e47cfbe27f91e0eb18e21dfdab3c84ec11377fbb00000000848060962bcbc47cefd1a2a7bd3b646614bf7cd3495663de5b63f6b5910daee8ebb7ba84a8b5b6f2d1fbc22a51a500f94c871d5e1d31ab5d7a89965bbdbf355a8544e1688a61f459f3618b3a5416eb143180d3d2c5f4e0b1a556422038801703e109e23944e53f230a3537a5412c7d0bf278c6c1684dd8de90aaa33f47dc2c7b5e4f73784fd31aa2f9d1b1623734f9cf84718b2bad31f651e3607f3ac6c427cb6c0652d21ecd4b29e96c0a3781ee820faab71040768f6b08a69fdfd0b2b7be25f19500c1b8330994efb57a53c1a67bda909630f75738ab40e7ab63d527d6c1e8cf611f05c1b6d0da1ba84d405b4d834162c88022a4625a5f7c431c39f3f9a7789f9b668ec4da9f1a981086dcf4c5a940691f9638ce34dba904483f2ed4e7a713b7eac29c5e122f1b6acd6f1da2"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48) 422.229731ms ago: executing program 0 (id=1785): mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x2, 0x59032, 0xffffffffffffffff, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000180)='tlb_flush\x00', r0, 0x0, 0x51}, 0x18) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) 398.622653ms ago: executing program 4 (id=1776): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0) unshare(0x20060400) ioctl$MON_IOCX_MFETCH(r0, 0xc0109207, &(0x7f0000000180)={0x0, 0x0, 0xfffffffd}) 389.010402ms ago: executing program 0 (id=1777): r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x40001) syz_usb_disconnect(r0) syz_usb_connect$hid(0x2, 0x36, &(0x7f00000002c0)=ANY=[], 0x0) ioctl$EVIOCRMFF(r0, 0x40085507, &(0x7f00000000c0)=0x18) 222.853575ms ago: executing program 3 (id=1784): r0 = perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x480283, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x7606}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0x9) r1 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030033000b12d25a80648c2594f90124fc60100c03400f000000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 208.599476ms ago: executing program 4 (id=1788): bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0xfffff29f, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x4d, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x5, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x304}, [@ldst={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1a7fbb}, @ldst={0x6, 0x0, 0x6, 0x0, 0x0, 0xfffffffffffffffe, 0xa000000}]}, &(0x7f0000000000)='syzkaller\x00', 0x5}, 0x94) 203.009396ms ago: executing program 3 (id=1789): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'veth0_to_bridge\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000940)=@newqdisc={0x130, 0x24, 0x4ee4e6a52ff56541, 0x8000000, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0xfff7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x100, 0x2, {{0xfffffffe, 0x2, 0x40, 0x7, 0xe9, 0xcc36}, [@TCA_NETEM_LOSS={0xb4, 0x5, 0x0, 0x1, [@NETEM_LOSS_GE={0x14, 0x2, {0x1, 0xffff, 0x0, 0x6}}, @NETEM_LOSS_GE={0x14, 0x2, {0x5, 0xfffffffa, 0xa, 0x4}}, @NETEM_LOSS_GE={0x11, 0x2, {0x1, 0x9, 0x1, 0x8}}, @NETEM_LOSS_GI={0x18, 0x1, {0xcfbb, 0x2, 0x10001, 0x8, 0x1}}, @NETEM_LOSS_GE={0x14, 0x2, {0x9, 0x5, 0x1003, 0xb}}, @NETEM_LOSS_GI={0x18, 0x1, {0x8, 0x0, 0xfffff001, 0xf6, 0x3}}, @NETEM_LOSS_GI={0x18, 0x1, {0x7, 0x3, 0x5, 0x4, 0xea}}, @NETEM_LOSS_GI={0x18, 0x1, {0x6, 0x8, 0x10000, 0x2, 0x7fff}}]}, @TCA_NETEM_CORRUPT={0xc, 0x4, {0x8, 0x1000}}, @TCA_NETEM_CORRUPT={0xc, 0x4, {0xbba5, 0x2}}, @TCA_NETEM_LATENCY64={0xc, 0xa, 0xff}, @TCA_NETEM_LATENCY64={0xc, 0xa, 0x1}]}}}]}, 0x130}}, 0x0) 156.063477ms ago: executing program 4 (id=1790): perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x2, 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 155.411517ms ago: executing program 3 (id=1791): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x2}, 0x18) openat$snapshot(0xffffffffffffff9c, &(0x7f00000001c0), 0x41, 0x0) 131.661218ms ago: executing program 5 (id=1792): r0 = socket(0x40000000015, 0x5, 0x0) setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4) connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10) bind$inet6(r0, &(0x7f0000000280)={0xa, 0x0, 0x0, @remote, 0x10001}, 0x1c) 109.359428ms ago: executing program 4 (id=1793): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) sendmmsg$inet6(r0, &(0x7f0000002fc0)=[{{&(0x7f0000000340)={0xa, 0x4e23, 0xfffffff9, @private1, 0x9}, 0x1c, &(0x7f00000004c0)=[{&(0x7f00000005c0)="05", 0x1}], 0x1}}], 0x1, 0x24000045) shutdown(r0, 0x1) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f00000000c0)={0x0, @in6={{0xa, 0x4e21, 0xfffffff9, @empty, 0x40}}, 0x9, 0x4000}, 0x90) 104.376858ms ago: executing program 5 (id=1794): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10) epoll_pwait(0xffffffffffffffff, 0x0, 0x0, 0x80000000, 0x0, 0x0) 80.666958ms ago: executing program 3 (id=1795): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15) ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000080)=0xa) 66.031329ms ago: executing program 4 (id=1805): syz_read_part_table(0x618, &(0x7f0000002200)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x42, 0x0) pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000) socket$nl_generic(0x10, 0x3, 0x10) 65.566419ms ago: executing program 5 (id=1796): prlimit64(0x0, 0xe, &(0x7f0000000600)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x83) pwritev2(r0, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x205) 64.603339ms ago: executing program 3 (id=1797): r0 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan0\x00', 0x0}) bind$can_j1939(r0, &(0x7f0000000380)={0x1d, r1, 0x1, {0x0, 0x1, 0x3}, 0xfe}, 0x18) sendmmsg$unix(r0, &(0x7f0000001ec0)=[{{0x0, 0x0, &(0x7f00000014c0)=[{0x0}, {&(0x7f0000000040)="0bbc07", 0x3}, {0x0}], 0x3, 0x0, 0x0, 0xd5}}], 0x1, 0x4000000) 40.1701ms ago: executing program 3 (id=1798): perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xbd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x5, 0x8}}, 0x0, 0x0, 0xffffffffffffffff, 0x3) sendmsg$AUDIT_DEL_RULE(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000040)=ANY=[@ANYBLOB="20040000f40300022dbd7000ffdbdf2503"], 0x420}, 0x1, 0x0, 0x0, 0x2000}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) poll(&(0x7f0000000000), 0x20000000000000b5, 0x9) 39.771689ms ago: executing program 5 (id=1799): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000080)={0x7, {{0xa, 0x4e20, 0x9, @mcast2, 0x1391}}, {{0xa, 0x4e21, 0x9, @private2, 0x4}}}, 0x108) r1 = syz_open_procfs(0x0, &(0x7f0000000640)='net/mcfilter6\x00') preadv(r1, &(0x7f0000001640)=[{&(0x7f00000013c0)=""/177, 0xb1}], 0x1, 0xb4, 0x21a) 551.15µs ago: executing program 5 (id=1800): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000440)={'batadv0\x00', 0x0}) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000880)={0x24, r1, 0x1, 0x4070bd28, 0x1, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0xff}]}, 0x24}}, 0x18) 0s ago: executing program 5 (id=1801): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7}, 0x18) syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000002c0)='./file0\x00', 0x10, &(0x7f0000000000)={[{@barrier_val={'barrier', 0x3d, 0x2}}, {@discard}]}, 0x1, 0x59d, &(0x7f00000005c0)="$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") kernel console output (not intermixed with test programs): fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 39.401203][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 39.786867][ T4103] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.794118][ T4103] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.929744][ T4103] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 39.949966][ T4103] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 40.042069][ T56] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 40.051209][ T56] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 40.079712][ T56] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 40.088898][ T56] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 40.103874][ T56] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 40.112951][ T56] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 40.122250][ T56] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 40.131244][ T56] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 40.179139][ T4113] SELinux: security policydb version 16 (MLS) not backwards compatible [ 40.187671][ T4113] SELinux: failed to load policy [ 40.247449][ T4119] netlink: 60 bytes leftover after parsing attributes in process `syz.1.294'. [ 40.256386][ T4119] netlink: 60 bytes leftover after parsing attributes in process `syz.1.294'. [ 40.266164][ T4125] netlink: 40 bytes leftover after parsing attributes in process `syz.4.296'. [ 40.340870][ T4119] netlink: 60 bytes leftover after parsing attributes in process `syz.1.294'. [ 40.399552][ T4133] bridge0: port 3(vlan2) entered blocking state [ 40.405973][ T4133] bridge0: port 3(vlan2) entered disabled state [ 40.423034][ T4133] vlan2: entered allmulticast mode [ 40.428357][ T4133] bridge0: entered allmulticast mode [ 40.457900][ T4133] vlan2: left allmulticast mode [ 40.462794][ T4133] bridge0: left allmulticast mode [ 40.715279][ T4157] netlink: 'syz.1.311': attribute type 6 has an invalid length. [ 40.751459][ T4159] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 41.151213][ T4203] netlink: 'syz.2.327': attribute type 10 has an invalid length. [ 41.159197][ T4203] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 41.305954][ T4215] loop4: detected capacity change from 0 to 128 [ 41.316214][ T4215] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 41.324186][ T4215] FAT-fs (loop4): Filesystem has been set read-only [ 41.350992][ T4215] syz.4.333: attempt to access beyond end of device [ 41.350992][ T4215] loop4: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 41.366551][ T4215] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 41.374490][ T4215] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 41.382628][ T4215] syz.4.333: attempt to access beyond end of device [ 41.382628][ T4215] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 41.395923][ T4215] syz.4.333: attempt to access beyond end of device [ 41.395923][ T4215] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 41.409647][ T4215] syz.4.333: attempt to access beyond end of device [ 41.409647][ T4215] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 41.424285][ T4215] syz.4.333: attempt to access beyond end of device [ 41.424285][ T4215] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 41.437957][ T4215] syz.4.333: attempt to access beyond end of device [ 41.437957][ T4215] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 41.451374][ T4220] syz.4.333: attempt to access beyond end of device [ 41.451374][ T4220] loop4: rw=0, sector=2065, nr_sectors = 1 limit=128 [ 41.464624][ T4220] Buffer I/O error on dev loop4, logical block 2065, async page read [ 41.474425][ T4220] syz.4.333: attempt to access beyond end of device [ 41.474425][ T4220] loop4: rw=0, sector=2066, nr_sectors = 1 limit=128 [ 41.487637][ T4220] Buffer I/O error on dev loop4, logical block 2066, async page read [ 41.495895][ T4220] syz.4.333: attempt to access beyond end of device [ 41.495895][ T4220] loop4: rw=0, sector=2067, nr_sectors = 1 limit=128 [ 41.509143][ T4220] Buffer I/O error on dev loop4, logical block 2067, async page read [ 41.521412][ T4220] syz.4.333: attempt to access beyond end of device [ 41.521412][ T4220] loop4: rw=0, sector=2068, nr_sectors = 1 limit=128 [ 41.534710][ T4220] Buffer I/O error on dev loop4, logical block 2068, async page read [ 41.543219][ T4220] Buffer I/O error on dev loop4, logical block 2069, async page read [ 41.551399][ T4220] Buffer I/O error on dev loop4, logical block 2070, async page read [ 41.559881][ T4220] Buffer I/O error on dev loop4, logical block 2071, async page read [ 41.569515][ T4220] Buffer I/O error on dev loop4, logical block 2072, async page read [ 41.577778][ T4215] Buffer I/O error on dev loop4, logical block 2065, async page read [ 41.601595][ T4215] Buffer I/O error on dev loop4, logical block 2066, async page read [ 41.624157][ T4226] SELinux: failed to load policy [ 41.987341][ T4266] unsupported nla_type 65024 [ 42.118988][ T4272] loop3: detected capacity change from 0 to 4096 [ 42.145095][ T4272] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 42.165329][ T4272] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 42.233508][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 42.384296][ T4302] loop4: detected capacity change from 0 to 512 [ 42.393691][ T4302] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.373: iget: bad i_size value: 38620345925642 [ 42.409007][ T4302] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.373: couldn't read orphan inode 15 (err -117) [ 42.443295][ T4308] mmap: syz.2.363 (4308) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 42.477101][ T4302] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 42.495564][ T4302] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.373: bg 0: block 5: invalid block bitmap [ 42.522520][ T4302] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2 with error 28 [ 42.534809][ T4302] EXT4-fs (loop4): This should not happen!! Data will be lost [ 42.534809][ T4302] [ 42.544580][ T4302] EXT4-fs (loop4): Total free blocks count 0 [ 42.550638][ T4302] EXT4-fs (loop4): Free/Dirty block details [ 42.556613][ T4302] EXT4-fs (loop4): free_blocks=0 [ 42.561619][ T4302] EXT4-fs (loop4): dirty_blocks=2 [ 42.566707][ T4302] EXT4-fs (loop4): Block reservation details [ 42.568898][ T4316] loop3: detected capacity change from 0 to 512 [ 42.572750][ T4302] EXT4-fs (loop4): i_reserved_data_blocks=2 [ 42.586759][ T4316] EXT4-fs: Ignoring removed nomblk_io_submit option [ 42.593481][ T4316] EXT4-fs: Ignoring removed nomblk_io_submit option [ 42.600206][ T4316] EXT4-fs: Ignoring removed i_version option [ 42.611978][ T4302] syz.4.373 (4302) used greatest stack depth: 9592 bytes left [ 42.637929][ T4316] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a816c099, mo2=0002] [ 42.650238][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 42.668884][ T4316] System zones: 1-12 [ 42.683225][ T4316] EXT4-fs error (device loop3): ext4_iget_extra_inode:5104: inode #15: comm syz.3.379: corrupted in-inode xattr: invalid ea_ino [ 42.713304][ T4321] IPv6: NLM_F_CREATE should be specified when creating new route [ 42.716938][ T4316] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.379: couldn't read orphan inode 15 (err -117) [ 42.756954][ T4316] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 42.804820][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 42.871525][ T4331] SELinux: Context system_u:object is not valid (left unmapped). [ 43.004207][ T4349] loop3: detected capacity change from 0 to 512 [ 43.006653][ T4348] capability: warning: `syz.4.394' uses 32-bit capabilities (legacy support in use) [ 43.041644][ T4349] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 43.057020][ T4349] ext4 filesystem being mounted at /84/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 43.075466][ T4359] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 43.092045][ T4361] loop4: detected capacity change from 0 to 512 [ 43.104002][ T4361] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 43.115435][ T4349] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #2: comm syz.3.393: corrupted inode contents [ 43.116094][ T4361] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 43.131860][ T4349] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #2: comm syz.3.393: mark_inode_dirty error [ 43.151905][ T4349] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #2: comm syz.3.393: corrupted inode contents [ 43.156769][ T4361] EXT4-fs (loop4): 1 truncate cleaned up [ 43.173899][ T4349] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #2: comm syz.3.393: corrupted inode contents [ 43.176335][ T4361] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 43.219886][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 43.255459][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 43.295300][ T29] kauditd_printk_skb: 93 callbacks suppressed [ 43.295374][ T29] audit: type=1400 audit(1759366197.965:464): avc: denied { write } for pid=4376 comm="syz.1.407" name="urandom" dev="devtmpfs" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:urandom_device_t tclass=chr_file permissive=1 [ 43.354488][ T4385] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 43.365842][ T4385] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 43.387553][ T29] audit: type=1400 audit(1759366198.055:465): avc: denied { create } for pid=4386 comm="syz.3.410" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 43.414720][ T29] audit: type=1400 audit(1759366198.065:466): avc: denied { write } for pid=4386 comm="syz.3.410" name="file0" dev="tmpfs" ino=460 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 43.437115][ T29] audit: type=1400 audit(1759366198.065:467): avc: denied { open } for pid=4386 comm="syz.3.410" path="/87/file0" dev="tmpfs" ino=460 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 43.459593][ T29] audit: type=1400 audit(1759366198.065:468): avc: denied { ioctl } for pid=4386 comm="syz.3.410" path="/87/file0" dev="tmpfs" ino=460 ioctlcmd=0x128a scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 43.483624][ T29] audit: type=1400 audit(1759366198.065:469): avc: denied { unlink } for pid=3298 comm="syz-executor" name="file0" dev="tmpfs" ino=460 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 43.514813][ T29] audit: type=1400 audit(1759366198.155:470): avc: denied { create } for pid=4394 comm="syz.4.415" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 43.534295][ T29] audit: type=1400 audit(1759366198.155:471): avc: denied { bind } for pid=4394 comm="syz.4.415" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 43.553403][ T29] audit: type=1326 audit(1759366198.185:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4398 comm="syz.0.416" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe5f8f2eec9 code=0x0 [ 43.583447][ T4404] loop4: detected capacity change from 0 to 1024 [ 43.600484][ T4404] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 43.615616][ T4404] ext4 filesystem being mounted at /93/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 43.634691][ T4413] netlink: 'syz.2.421': attribute type 9 has an invalid length. [ 43.642875][ T4404] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: block 3: comm syz.4.419: lblock 3 mapped to illegal pblock 3 (length 3) [ 43.666957][ T4404] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117 [ 43.679344][ T4404] EXT4-fs (loop4): This should not happen!! Data will be lost [ 43.679344][ T4404] [ 43.692929][ T4416] EXT4-fs error (device loop4): ext4_ext_remove_space:2955: inode #15: comm syz.4.419: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0) [ 43.712229][ T4416] EXT4-fs error (device loop4) in ext4_setattr:6071: Corrupt filesystem [ 43.765106][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 43.795813][ T4427] loop3: detected capacity change from 0 to 512 [ 43.803972][ T4427] EXT4-fs: Ignoring removed mblk_io_submit option [ 43.812130][ T4427] EXT4-fs (loop3): failed to initialize system zone (-117) [ 43.820037][ T4427] EXT4-fs (loop3): mount failed [ 43.850581][ T29] audit: type=1400 audit(1759366198.525:473): avc: denied { create } for pid=4433 comm="syz.4.430" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 44.001780][ T4460] IPv6: sit1: Disabled Multicast RS [ 44.008879][ T4460] sit1: entered allmulticast mode [ 44.043442][ T4462] bridge1: entered promiscuous mode [ 44.077801][ C1] hrtimer: interrupt took 72697 ns [ 44.214404][ T4470] loop4: detected capacity change from 0 to 512 [ 44.238918][ T4470] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 44.248900][ T4470] EXT4-fs (loop4): orphan cleanup on readonly fs [ 44.263120][ T4470] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm +}[@: corrupted inode contents [ 44.266516][ T4476] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 44.282668][ T4476] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 44.290001][ T4470] EXT4-fs (loop4): Remounting filesystem read-only [ 44.296692][ T4470] EXT4-fs (loop4): 1 truncate cleaned up [ 44.300092][ T4478] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 44.311844][ T12] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 44.322531][ T12] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 44.323134][ T4478] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 44.333607][ T12] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started [ 44.355050][ T4470] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 44.379284][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.617334][ T4510] loop2: detected capacity change from 0 to 2048 [ 44.630547][ T4510] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 44.642728][ T4510] ext4 filesystem being mounted at /77/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 44.657231][ T9] kernel write not supported for file /snd/seq (pid: 9 comm: kworker/0:0) [ 44.722537][ T3303] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.939747][ T4532] openvswitch: netlink: Message has 6 unknown bytes. [ 44.970140][ T56] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 45.029109][ T56] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 45.054663][ T4539] __nla_validate_parse: 15 callbacks suppressed [ 45.054684][ T4539] netlink: 14577 bytes leftover after parsing attributes in process `syz.1.478'. [ 45.112709][ T56] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 45.189201][ T56] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 45.298171][ T56] bridge_slave_1: left allmulticast mode [ 45.303921][ T56] bridge_slave_1: left promiscuous mode [ 45.309671][ T56] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.318668][ T56] bridge_slave_0: left allmulticast mode [ 45.324484][ T56] bridge_slave_0: left promiscuous mode [ 45.330253][ T56] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.391649][ T56] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 45.402590][ T56] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 45.427950][ T56] bond0 (unregistering): Released all slaves [ 45.441931][ T4577] netlink: 48 bytes leftover after parsing attributes in process `syz.1.492'. [ 45.486012][ T56] hsr_slave_0: left promiscuous mode [ 45.493663][ T56] hsr_slave_1: left promiscuous mode [ 45.522824][ T4585] loop4: detected capacity change from 0 to 128 [ 45.609220][ T56] team0 (unregistering): Port device team_slave_1 removed [ 45.627231][ T56] team0 (unregistering): Port device team_slave_0 removed [ 45.689944][ T4542] chnl_net:caif_netlink_parms(): no params data found [ 45.780079][ T4542] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.780365][ T4604] loop4: detected capacity change from 0 to 128 [ 45.787198][ T4542] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.837653][ T4542] bridge_slave_0: entered allmulticast mode [ 45.848077][ T4542] bridge_slave_0: entered promiscuous mode [ 45.862679][ T4542] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.869820][ T4542] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.877174][ T4542] bridge_slave_1: entered allmulticast mode [ 45.889864][ T4542] bridge_slave_1: entered promiscuous mode [ 45.959151][ T4542] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 45.974501][ T4542] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 46.009679][ T4542] team0: Port device team_slave_0 added [ 46.025235][ T4542] team0: Port device team_slave_1 added [ 46.058312][ T4542] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 46.065428][ T4542] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.091498][ T4542] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 46.104555][ T4542] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 46.111610][ T4542] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 46.137637][ T4542] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 46.228959][ T4542] hsr_slave_0: entered promiscuous mode [ 46.236000][ T4542] hsr_slave_1: entered promiscuous mode [ 46.242141][ T4542] debugfs: 'hsr0' already exists in 'hsr' [ 46.247959][ T4542] Cannot create hsr debugfs directory [ 46.286292][ T4650] Invalid ELF header magic: != ELF [ 46.403760][ T4542] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 46.451308][ T4542] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 46.482653][ T4542] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 46.496156][ T4542] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 46.600957][ T4542] 8021q: adding VLAN 0 to HW filter on device bond0 [ 46.685155][ T4542] 8021q: adding VLAN 0 to HW filter on device team0 [ 46.708382][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.715523][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.735281][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.742464][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.764359][ T4542] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 46.774786][ T4542] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 46.847203][ T4542] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 46.906131][ T4708] loop4: detected capacity change from 0 to 164 [ 46.924302][ T4713] netlink: 8 bytes leftover after parsing attributes in process `syz.3.537'. [ 47.099308][ T4542] veth0_vlan: entered promiscuous mode [ 47.101838][ T4740] hub 9-0:1.0: USB hub found [ 47.108471][ T4542] veth1_vlan: entered promiscuous mode [ 47.121288][ T4740] hub 9-0:1.0: 8 ports detected [ 47.135574][ T4542] veth0_macvtap: entered promiscuous mode [ 47.153506][ T4542] veth1_macvtap: entered promiscuous mode [ 47.174550][ T4542] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 47.186480][ T4542] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 47.206656][ T56] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.226362][ T56] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.237030][ T51] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.246582][ T51] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 47.290633][ T4763] netlink: 48 bytes leftover after parsing attributes in process `syz.3.566'. [ 47.318705][ T4764] ip6gretap0: entered promiscuous mode [ 47.337044][ T4764] ip6gretap0: left promiscuous mode [ 47.353810][ T4772] loop1: detected capacity change from 0 to 512 [ 47.363363][ T4772] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 47.429226][ T4778] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.436427][ T4778] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.476935][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.508176][ T4778] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 47.528961][ T4781] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 47.557754][ T4786] loop3: detected capacity change from 0 to 1024 [ 47.567569][ T4786] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 47.578548][ T4786] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 47.610185][ T4781] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 47.617791][ T4786] JBD2: no valid journal superblock found [ 47.626388][ T4786] EXT4-fs (loop3): Could not load journal inode [ 47.654187][ T4792] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 47.671862][ T4791] loop1: detected capacity change from 0 to 1024 [ 47.679343][ T4792] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 47.682795][ T4791] EXT4-fs error (device loop1): ext4_acquire_dquot:6943: comm gtp: Failed to acquire dquot type 0 [ 47.695900][ T4795] loop3: detected capacity change from 0 to 1024 [ 47.700343][ T4791] EXT4-fs error (device loop1): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 47.705305][ T4781] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 47.721150][ T4791] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #13: comm gtp: corrupted inode contents [ 47.742292][ T4791] EXT4-fs error (device loop1): ext4_dirty_inode:6538: inode #13: comm gtp: mark_inode_dirty error [ 47.757555][ T4791] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #13: comm gtp: corrupted inode contents [ 47.760264][ T4795] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 47.783497][ T4791] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #13: comm gtp: mark_inode_dirty error [ 47.799897][ T4781] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 47.811807][ T4791] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #13: comm gtp: corrupted inode contents [ 47.831237][ T4791] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem [ 47.853034][ T4791] EXT4-fs error (device loop1): ext4_do_update_inode:5653: inode #13: comm gtp: corrupted inode contents [ 47.866070][ T4791] EXT4-fs error (device loop1): ext4_truncate:4666: inode #13: comm gtp: mark_inode_dirty error [ 47.879339][ T4791] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem [ 47.902491][ T4791] EXT4-fs (loop1): 1 truncate cleaned up [ 47.917937][ T4791] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 48.005644][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.142370][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.154389][ T4818] autofs4:pid:4818:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(0.0), cmd(0xc0189374) [ 48.167566][ T4818] autofs4:pid:4818:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc0189374) [ 48.292166][ T4839] loop3: detected capacity change from 0 to 1024 [ 48.299402][ T4839] EXT4-fs: Ignoring removed orlov option [ 48.310608][ T4839] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 48.312072][ T4842] syz_tun: entered allmulticast mode [ 48.342183][ T4841] syz_tun: left allmulticast mode [ 48.461042][ T4849] loop4: detected capacity change from 0 to 164 [ 48.480548][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.528367][ T29] kauditd_printk_skb: 48 callbacks suppressed [ 48.528384][ T29] audit: type=1400 audit(1759366203.205:514): avc: denied { bind } for pid=4852 comm="syz.3.594" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 48.556569][ T29] audit: type=1400 audit(1759366203.205:515): avc: denied { setopt } for pid=4852 comm="syz.3.594" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 48.582881][ T4855] netlink: 8 bytes leftover after parsing attributes in process `syz.3.596'. [ 48.598682][ T4855] bond1: entered promiscuous mode [ 48.603951][ T4855] bond1: entered allmulticast mode [ 48.609465][ T4855] 8021q: adding VLAN 0 to HW filter on device bond1 [ 48.942989][ T60] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.978874][ T60] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 48.987167][ T60] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.025759][ T60] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 49.056846][ T4871] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 49.213859][ T29] audit: type=1326 audit(1759366203.885:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4885 comm="syz.0.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5f8f2eec9 code=0x7ffc0000 [ 49.265833][ T29] audit: type=1326 audit(1759366203.915:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4885 comm="syz.0.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe5f8f2eec9 code=0x7ffc0000 [ 49.289288][ T29] audit: type=1326 audit(1759366203.915:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4885 comm="syz.0.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5f8f2eec9 code=0x7ffc0000 [ 49.312781][ T29] audit: type=1326 audit(1759366203.915:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4885 comm="syz.0.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5f8f2eec9 code=0x7ffc0000 [ 49.336205][ T29] audit: type=1326 audit(1759366203.915:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4885 comm="syz.0.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe5f8f2eec9 code=0x7ffc0000 [ 49.359598][ T29] audit: type=1326 audit(1759366203.915:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4885 comm="syz.0.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5f8f2eec9 code=0x7ffc0000 [ 49.382904][ T29] audit: type=1326 audit(1759366203.915:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4885 comm="syz.0.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5f8f2eec9 code=0x7ffc0000 [ 49.406160][ T29] audit: type=1326 audit(1759366203.915:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4885 comm="syz.0.610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7fe5f8f2eec9 code=0x7ffc0000 [ 49.455955][ T4895] loop4: detected capacity change from 0 to 512 [ 49.463043][ T4895] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 49.476311][ T4895] EXT4-fs (loop4): 1 truncate cleaned up [ 49.482464][ T4895] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 49.509432][ T3301] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.572145][ T4898] 9pnet: p9_errstr2errno: server reported unknown error [ 49.864019][ T4915] loop3: detected capacity change from 0 to 1024 [ 49.884345][ T60] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 49.912146][ T4915] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 49.980630][ T4915] ext4 filesystem being mounted at /142/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 50.021780][ T60] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 50.075393][ T4915] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #15: block 3: comm syz.3.624: lblock 3 mapped to illegal pblock 3 (length 3) [ 50.108578][ T4915] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117 [ 50.121028][ T4915] EXT4-fs (loop3): This should not happen!! Data will be lost [ 50.121028][ T4915] [ 50.134662][ T60] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 50.195427][ T4931] EXT4-fs error (device loop3): ext4_ext_remove_space:2955: inode #15: comm syz.3.624: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0) [ 50.250609][ T60] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 50.264941][ T4931] EXT4-fs error (device loop3) in ext4_setattr:6071: Corrupt filesystem [ 50.324384][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 50.388417][ T4957] netlink: 28 bytes leftover after parsing attributes in process `syz.3.638'. [ 50.397353][ T4957] netlink: 28 bytes leftover after parsing attributes in process `syz.3.638'. [ 50.482850][ T60] bridge_slave_1: left allmulticast mode [ 50.488594][ T60] bridge_slave_1: left promiscuous mode [ 50.494275][ T60] bridge0: port 2(bridge_slave_1) entered disabled state [ 50.519355][ T60] bridge_slave_0: left allmulticast mode [ 50.525085][ T60] bridge_slave_0: left promiscuous mode [ 50.530779][ T60] bridge0: port 1(bridge_slave_0) entered disabled state [ 50.609891][ T60] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 50.620106][ T60] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 50.630538][ T60] bond0 (unregistering): Released all slaves [ 50.699168][ T60] hsr_slave_0: left promiscuous mode [ 50.705059][ T60] hsr_slave_1: left promiscuous mode [ 50.711343][ T60] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 50.718921][ T60] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 50.738346][ T60] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 50.746138][ T60] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 50.756320][ T60] veth1_macvtap: left promiscuous mode [ 50.763673][ T60] veth0_macvtap: left promiscuous mode [ 50.770984][ T60] veth1_vlan: left promiscuous mode [ 50.776374][ T60] veth0_vlan: left promiscuous mode [ 50.847085][ T60] team0 (unregistering): Port device team_slave_1 removed [ 50.855653][ T4979] loop3: detected capacity change from 0 to 128 [ 50.867762][ T60] team0 (unregistering): Port device team_slave_0 removed [ 50.898432][ T4979] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100) [ 50.906295][ T4979] FAT-fs (loop3): Filesystem has been set read-only [ 50.921441][ T4979] bio_check_eod: 27148 callbacks suppressed [ 50.921471][ T4979] syz.3.648: attempt to access beyond end of device [ 50.921471][ T4979] loop3: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 50.943388][ T4979] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100) [ 50.951273][ T4979] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100) [ 50.969621][ T4984] syz.3.648: attempt to access beyond end of device [ 50.969621][ T4984] loop3: rw=0, sector=2065, nr_sectors = 1 limit=128 [ 50.982903][ T4984] buffer_io_error: 27142 callbacks suppressed [ 50.982921][ T4984] Buffer I/O error on dev loop3, logical block 2065, async page read [ 51.004405][ T4984] syz.3.648: attempt to access beyond end of device [ 51.004405][ T4984] loop3: rw=0, sector=2066, nr_sectors = 1 limit=128 [ 51.017611][ T4984] Buffer I/O error on dev loop3, logical block 2066, async page read [ 51.027588][ T4984] syz.3.648: attempt to access beyond end of device [ 51.027588][ T4984] loop3: rw=0, sector=2067, nr_sectors = 1 limit=128 [ 51.031865][ T4929] chnl_net:caif_netlink_parms(): no params data found [ 51.040874][ T4984] Buffer I/O error on dev loop3, logical block 2067, async page read [ 51.056565][ T4984] syz.3.648: attempt to access beyond end of device [ 51.056565][ T4984] loop3: rw=0, sector=2068, nr_sectors = 1 limit=128 [ 51.069790][ T4984] Buffer I/O error on dev loop3, logical block 2068, async page read [ 51.082973][ T4987] loop5: detected capacity change from 0 to 1024 [ 51.087522][ T4984] syz.3.648: attempt to access beyond end of device [ 51.087522][ T4984] loop3: rw=0, sector=2069, nr_sectors = 1 limit=128 [ 51.089885][ T4987] EXT4-fs: Ignoring removed nobh option [ 51.102520][ T4984] Buffer I/O error on dev loop3, logical block 2069, async page read [ 51.120136][ T4984] syz.3.648: attempt to access beyond end of device [ 51.120136][ T4984] loop3: rw=0, sector=2070, nr_sectors = 1 limit=128 [ 51.133398][ T4984] Buffer I/O error on dev loop3, logical block 2070, async page read [ 51.145768][ T4987] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 51.169316][ T4987] EXT4-fs error (device loop5): ext4_ext_check_inode:523: inode #11: comm syz.5.651: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 51.192110][ T4984] syz.3.648: attempt to access beyond end of device [ 51.192110][ T4984] loop3: rw=0, sector=2071, nr_sectors = 1 limit=128 [ 51.205391][ T4984] Buffer I/O error on dev loop3, logical block 2071, async page read [ 51.224546][ T4993] hub 9-0:1.0: USB hub found [ 51.229329][ T4993] hub 9-0:1.0: 8 ports detected [ 51.241342][ T4987] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.651: couldn't read orphan inode 11 (err -117) [ 51.251757][ T4984] syz.3.648: attempt to access beyond end of device [ 51.251757][ T4984] loop3: rw=0, sector=2072, nr_sectors = 1 limit=128 [ 51.266295][ T4984] Buffer I/O error on dev loop3, logical block 2072, async page read [ 51.274651][ T4979] syz.3.648: attempt to access beyond end of device [ 51.274651][ T4979] loop3: rw=0, sector=2065, nr_sectors = 1 limit=128 [ 51.287909][ T4979] Buffer I/O error on dev loop3, logical block 2065, async page read [ 51.301890][ T4987] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 51.315378][ T4979] Buffer I/O error on dev loop3, logical block 2066, async page read [ 51.324369][ T4929] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.331536][ T4929] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.339581][ T4929] bridge_slave_0: entered allmulticast mode [ 51.346131][ T4929] bridge_slave_0: entered promiscuous mode [ 51.362591][ T4987] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.651: Invalid block bitmap block 0 in block_group 0 [ 51.378995][ T4929] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.386170][ T4929] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.395990][ T4929] bridge_slave_1: entered allmulticast mode [ 51.402276][ T4987] EXT4-fs error (device loop5): ext4_acquire_dquot:6943: comm syz.5.651: Failed to acquire dquot type 0 [ 51.414932][ T4987] EXT4-fs error (device loop5): __ext4_get_inode_loc:4861: comm syz.5.651: Invalid inode table block 51539607553 in block_group 0 [ 51.428558][ T4929] bridge_slave_1: entered promiscuous mode [ 51.451591][ T4929] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 51.465266][ T4929] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 51.482152][ T12] EXT4-fs error (device loop5): __ext4_get_inode_loc:4861: comm kworker/u8:0: Invalid inode table block 51539607553 in block_group 0 [ 51.509868][ T4929] team0: Port device team_slave_0 added [ 51.517117][ T4929] team0: Port device team_slave_1 added [ 51.526279][ T4542] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.583065][ T4929] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 51.590126][ T4929] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 51.616537][ T4929] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 51.727293][ T4929] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 51.734343][ T4929] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 51.760383][ T4929] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 51.847846][ T5023] SELinux: failed to load policy [ 51.860531][ T5029] program syz.3.668 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 51.872271][ T4929] hsr_slave_0: entered promiscuous mode [ 51.878618][ T4929] hsr_slave_1: entered promiscuous mode [ 51.884535][ T4929] debugfs: 'hsr0' already exists in 'hsr' [ 51.890341][ T4929] Cannot create hsr debugfs directory [ 51.903946][ T5032] loop5: detected capacity change from 0 to 1024 [ 51.912206][ T5032] EXT4-fs: Ignoring removed orlov option [ 51.936739][ T5032] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 52.003009][ T4542] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 52.118329][ T5053] loop3: detected capacity change from 0 to 8192 [ 52.165934][ T5053] loop3: p1 p2 p3 p4[DM] [ 52.171303][ T5053] loop3: p1 size 835329 extends beyond EOD, truncated [ 52.188576][ T5053] loop3: p2 size 327680 extends beyond EOD, truncated [ 52.197486][ T5053] loop3: p3 start 1052673 is beyond EOD, truncated [ 52.204062][ T5053] loop3: p4 size 262144 extends beyond EOD, truncated [ 52.250022][ T5068] loop5: detected capacity change from 0 to 7 [ 52.286458][ T4929] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 52.313375][ T4929] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 52.329868][ T4929] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 52.346069][ T4929] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 52.433930][ T4929] 8021q: adding VLAN 0 to HW filter on device bond0 [ 52.455506][ T4929] 8021q: adding VLAN 0 to HW filter on device team0 [ 52.476618][ T2384] bridge0: port 1(bridge_slave_0) entered blocking state [ 52.483808][ T2384] bridge0: port 1(bridge_slave_0) entered forwarding state [ 52.493419][ T5103] netlink: 14 bytes leftover after parsing attributes in process `syz.0.701'. [ 52.513832][ T2384] bridge0: port 2(bridge_slave_1) entered blocking state [ 52.521023][ T2384] bridge0: port 2(bridge_slave_1) entered forwarding state [ 52.554791][ T5103] hsr_slave_0: left promiscuous mode [ 52.575300][ T5103] hsr_slave_1: left promiscuous mode [ 52.624953][ T4929] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 52.635451][ T4929] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 52.698007][ T5131] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=5131 comm=syz.5.715 [ 52.710958][ T5131] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=5131 comm=syz.5.715 [ 52.750079][ T4929] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 52.920078][ T5167] SELinux: Context A) is not valid (left unmapped). [ 52.941858][ T5170] loop3: detected capacity change from 0 to 1024 [ 52.968780][ T4929] veth0_vlan: entered promiscuous mode [ 52.975591][ T5170] EXT4-fs: Ignoring removed nomblk_io_submit option [ 52.985071][ T4929] veth1_vlan: entered promiscuous mode [ 53.000511][ T5170] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 53.001674][ T5173] netlink: 8 bytes leftover after parsing attributes in process `syz.5.727'. [ 53.018271][ T4929] veth0_macvtap: entered promiscuous mode [ 53.030941][ T4929] veth1_macvtap: entered promiscuous mode [ 53.057555][ T4929] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 53.066582][ T4929] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 53.078316][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 53.095646][ T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.121499][ T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.136623][ T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.155368][ T12] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 53.253672][ T5194] netlink: 276 bytes leftover after parsing attributes in process `syz.3.735'. [ 53.261958][ T5196] loop1: detected capacity change from 0 to 128 [ 53.305147][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 53.312735][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 53.320258][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 53.327698][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 53.335153][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 53.342627][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 53.347908][ T5200] UHID_CREATE from different security context by process 294 (syz.1.738), this is not allowed. [ 53.350211][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 53.368224][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 53.375705][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 53.383165][ T3374] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 53.392552][ T3374] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.03 Device [syz1] on syz1 [ 53.422109][ T5204] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 53.439402][ T5204] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1 [ 53.451763][ T5204] batman_adv: batadv0: Adding interface: ip6gretap1 [ 53.458450][ T5204] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 53.484559][ T5204] batman_adv: batadv0: Interface activated: ip6gretap1 [ 53.559082][ T5217] program syz.4.746 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 53.586216][ T29] kauditd_printk_skb: 50 callbacks suppressed [ 53.586232][ T29] audit: type=1326 audit(1759366208.255:572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5220 comm="syz.4.748" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f47da88eec9 code=0x0 [ 54.048541][ T5253] loop1: detected capacity change from 0 to 512 [ 54.088309][ T5257] netlink: 228 bytes leftover after parsing attributes in process `syz.1.765'. [ 54.097777][ T5257] netlink: 228 bytes leftover after parsing attributes in process `syz.1.765'. [ 54.277022][ T5266] pimreg: tun_chr_ioctl cmd 1074812118 [ 54.452021][ T5273] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1 [ 54.467723][ T5273] batman_adv: batadv0: Adding interface: ip6gretap1 [ 54.474421][ T5273] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 54.502301][ T5273] batman_adv: batadv0: Interface activated: ip6gretap1 [ 54.539084][ T29] audit: type=1326 audit(1759366209.205:573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5274 comm="syz.1.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec955eec9 code=0x7ffc0000 [ 54.562427][ T29] audit: type=1326 audit(1759366209.205:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5274 comm="syz.1.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=459 compat=0 ip=0x7faec955eec9 code=0x7ffc0000 [ 54.585845][ T29] audit: type=1326 audit(1759366209.205:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5274 comm="syz.1.772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec955eec9 code=0x7ffc0000 [ 54.704421][ T5277] loop3: detected capacity change from 0 to 512 [ 54.713498][ T29] audit: type=1400 audit(1759366209.375:576): avc: denied { write } for pid=5286 comm="syz.0.777" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1 [ 54.751343][ T5277] EXT4-fs (loop3): external journal device major/minor numbers have changed [ 54.815744][ T5277] EXT4-fs (loop3): failed to open journal device unknown-block(0,4) -6 [ 54.996199][ T5317] program syz.0.791 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 55.020563][ T5319] random: crng reseeded on system resumption [ 55.020569][ T29] audit: type=1400 audit(1759366209.695:577): avc: denied { read append } for pid=5318 comm="syz.1.793" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 55.050196][ T29] audit: type=1400 audit(1759366209.695:578): avc: denied { ioctl open } for pid=5318 comm="syz.1.793" path="/dev/snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 55.160844][ T29] audit: type=1400 audit(1759366209.755:579): avc: denied { getopt } for pid=5315 comm="syz.3.792" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 55.267378][ T29] audit: type=1400 audit(1759366209.935:580): avc: denied { bind } for pid=5340 comm="syz.3.804" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 55.329443][ T29] audit: type=1400 audit(1759366209.985:581): avc: denied { write } for pid=5334 comm="syz.1.801" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 55.363217][ T5354] netlink: 16 bytes leftover after parsing attributes in process `syz.3.807'. [ 55.441279][ T5365] loop3: detected capacity change from 0 to 512 [ 55.460004][ T5365] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 55.482412][ T5365] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 55.516198][ T5365] ext4 filesystem being mounted at /179/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 55.664046][ T5383] program syz.5.818 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 55.721525][ T5387] process 'syz.5.820' launched '/dev/fd/3' with NULL argv: empty string added [ 55.863566][ T5407] delete_channel: no stack [ 55.943967][ T5403] loop4: detected capacity change from 0 to 8192 [ 55.958231][ T5365] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 55.975562][ T5365] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 2048 with error 28 [ 55.988076][ T5365] EXT4-fs (loop3): This should not happen!! Data will be lost [ 55.988076][ T5365] [ 55.997741][ T5365] EXT4-fs (loop3): Total free blocks count 0 [ 56.003733][ T5365] EXT4-fs (loop3): Free/Dirty block details [ 56.010114][ T5365] EXT4-fs (loop3): free_blocks=39626 [ 56.015409][ T5365] EXT4-fs (loop3): dirty_blocks=4096 [ 56.020742][ T5365] EXT4-fs (loop3): Block reservation details [ 56.026759][ T5365] EXT4-fs (loop3): i_reserved_data_blocks=4096 [ 56.075024][ T56] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 2046 with error 28 [ 56.105823][ T5424] syz.1.839 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 56.159594][ T5428] loop1: detected capacity change from 0 to 512 [ 56.170614][ T5428] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 56.184913][ T5428] ext4 filesystem being mounted at /173/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 56.241903][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 56.797601][ T5455] netlink: 'syz.0.852': attribute type 2 has an invalid length. [ 56.805323][ T5455] netlink: 51 bytes leftover after parsing attributes in process `syz.0.852'. [ 56.815901][ T5455] netlink: 'syz.0.852': attribute type 2 has an invalid length. [ 56.823666][ T5455] netlink: 51 bytes leftover after parsing attributes in process `syz.0.852'. [ 57.040673][ T5463] loop1: detected capacity change from 0 to 8192 [ 57.206235][ T5470] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0) [ 57.487939][ T5486] loop3: detected capacity change from 0 to 8192 [ 57.507231][ T5490] loop4: detected capacity change from 0 to 128 [ 57.526940][ T5490] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 57.575434][ T5490] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 57.613312][ T5502] SELinux: Context system_u:object_r:pam_console_exec_t:s0 is not valid (left unmapped). [ 57.667552][ T12] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 57.738772][ T5512] loop7: detected capacity change from 0 to 7 [ 57.755572][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 57.764806][ C0] buffer_io_error: 16910 callbacks suppressed [ 57.764827][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 57.792615][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 57.801828][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 57.810078][ T5512] loop7: unable to read partition table [ 57.815962][ T5512] loop_reread_partitions: partition scan of loop7 (Cj̖P=ý?}X %`ր{֐ȵ4FLQk݊) failed (rc=-5) [ 57.824304][ T5508] loop5: detected capacity change from 0 to 8192 [ 57.867594][ T5521] Invalid logical block size (6) [ 58.065484][ T5537] SELinux: Context system_u:object_r:iptables_unit_file_t:s0 is not valid (left unmapped). [ 58.119214][ T5546] program syz.3.895 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 58.167076][ T5554] netlink: 20 bytes leftover after parsing attributes in process `syz.3.899'. [ 58.260677][ T5563] loop1: detected capacity change from 0 to 128 [ 58.267786][ T5563] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 58.280046][ T5563] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 58.339792][ T2384] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 58.359553][ T5566] loop1: detected capacity change from 0 to 164 [ 58.370373][ T5566] rock: directory entry would overflow storage [ 58.376573][ T5566] rock: sig=0x4f50, size=4, remaining=3 [ 58.382200][ T5566] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 58.410505][ T5570] loop1: detected capacity change from 0 to 128 [ 58.417257][ T5570] EXT4-fs: Ignoring removed nobh option [ 58.425707][ T5570] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 58.439565][ T5570] ext4 filesystem being mounted at /189/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 58.467152][ T3297] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 58.478036][ T5575] loop3: detected capacity change from 0 to 128 [ 58.486308][ T5575] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 58.498882][ T5575] ext4 filesystem being mounted at /201/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 58.547931][ T3298] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 58.593249][ T5582] loop3: detected capacity change from 0 to 8192 [ 58.675691][ T29] kauditd_printk_skb: 116 callbacks suppressed [ 58.675709][ T29] audit: type=1400 audit(1759366213.345:698): avc: denied { create } for pid=5585 comm="syz.1.912" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 58.701689][ T29] audit: type=1400 audit(1759366213.345:699): avc: denied { ioctl } for pid=5585 comm="syz.1.912" path="socket:[11983]" dev="sockfs" ino=11983 ioctlcmd=0x89e5 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 58.746113][ T29] audit: type=1400 audit(1759366213.415:700): avc: denied { write } for pid=5587 comm="syz.1.913" name="kcm" dev="proc" ino=4026532539 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1 [ 58.803825][ T5594] loop7: detected capacity change from 0 to 7 [ 58.812880][ T5596] netlink: 'syz.0.917': attribute type 21 has an invalid length. [ 58.822746][ T5596] netlink: 156 bytes leftover after parsing attributes in process `syz.0.917'. [ 58.832531][ T5596] netlink: 'syz.0.917': attribute type 21 has an invalid length. [ 58.840533][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 58.849720][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 58.857930][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 58.864566][ T5596] netlink: 156 bytes leftover after parsing attributes in process `syz.0.917'. [ 58.867115][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 58.884225][ T5594] loop7: unable to read partition table [ 58.897472][ T5594] loop_reread_partitions: partition scan of loop7 (Cj̖P=ý?}X %`ր{֐ȵ4FLQk݊) failed (rc=-5) [ 58.921119][ T5599] syzkaller1: tun_chr_ioctl cmd 2147767506 [ 58.937482][ T5597] Invalid logical block size (6) [ 58.964129][ T29] audit: type=1400 audit(1759366213.635:701): avc: denied { relabelfrom } for pid=5607 comm="syz.1.922" name="" dev="pipefs" ino=12017 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 59.079943][ T29] audit: type=1326 audit(1759366213.755:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5625 comm="syz.5.929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3aca3eeec9 code=0x7ffc0000 [ 59.108354][ T29] audit: type=1326 audit(1759366213.755:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5625 comm="syz.5.929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3aca3eeec9 code=0x7ffc0000 [ 59.133973][ T29] audit: type=1326 audit(1759366213.785:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5625 comm="syz.5.929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3aca3eeec9 code=0x7ffc0000 [ 59.157294][ T29] audit: type=1326 audit(1759366213.785:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5625 comm="syz.5.929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3aca3eeec9 code=0x7ffc0000 [ 59.180585][ T29] audit: type=1326 audit(1759366213.785:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5625 comm="syz.5.929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3aca3eeec9 code=0x7ffc0000 [ 59.205931][ T5620] loop4: detected capacity change from 0 to 8192 [ 59.214481][ T29] audit: type=1326 audit(1759366213.805:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5625 comm="syz.5.929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3aca3eeec9 code=0x7ffc0000 [ 59.339410][ T5643] program syz.5.937 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 59.458949][ T5661] loop5: detected capacity change from 0 to 512 [ 59.561172][ T5671] loop4: detected capacity change from 0 to 512 [ 59.610391][ T5671] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 59.632097][ T5684] loop1: detected capacity change from 0 to 1024 [ 59.641190][ T5688] program syz.5.958 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 59.644253][ T5671] ext4 filesystem being mounted at /37/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 59.671296][ T5671] EXT4-fs error (device loop4): ext4_acquire_dquot:6943: comm syz.4.953: Failed to acquire dquot type 0 [ 59.689980][ T5694] netlink: 'syz.5.963': attribute type 7 has an invalid length. [ 59.721406][ T5684] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 59.737514][ T5684] ext4 filesystem being mounted at /208/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 59.750599][ T4929] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 59.826846][ T5711] loop4: detected capacity change from 0 to 1024 [ 59.860534][ T5711] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 59.870601][ T5711] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 59.916612][ T5711] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 59.938544][ T5711] EXT4-fs error (device loop4): ext4_get_journal_inode:5806: inode #5: comm syz.4.966: unexpected bad inode w/o EXT4_IGET_BAD [ 59.952563][ T5711] EXT4-fs (loop4): no journal found [ 59.957839][ T5711] EXT4-fs (loop4): can't get journal size [ 59.976323][ T5711] EXT4-fs (loop4): too many log groups per flexible block group [ 60.015538][ T5711] EXT4-fs (loop4): failed to initialize mballoc (-12) [ 60.042215][ T5711] EXT4-fs (loop4): mount failed [ 60.135256][ T5726] netlink: 20 bytes leftover after parsing attributes in process `syz.0.977'. [ 60.177092][ T60] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: comm kworker/u8:5: lblock 0 mapped to illegal pblock 0 (length 6) [ 60.219887][ T60] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117 [ 60.232394][ T60] EXT4-fs (loop1): This should not happen!! Data will be lost [ 60.232394][ T60] [ 60.243776][ T5738] loop4: detected capacity change from 0 to 128 [ 60.257824][ T5738] EXT4-fs: Ignoring removed nobh option [ 60.269041][ T12] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: block 8: comm kworker/u8:0: lblock 8 mapped to illegal pblock 8 (length 8) [ 60.285327][ T5738] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 60.293881][ T12] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117 [ 60.306061][ T5738] ext4 filesystem being mounted at /43/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 60.309814][ T12] EXT4-fs (loop1): This should not happen!! Data will be lost [ 60.309814][ T12] [ 60.428255][ T4929] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 60.505222][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 60.529322][ T5761] netlink: 20 bytes leftover after parsing attributes in process `syz.4.993'. [ 60.575651][ T5769] netlink: 120 bytes leftover after parsing attributes in process `syz.4.996'. [ 60.610664][ T5774] netlink: 'syz.0.998': attribute type 11 has an invalid length. [ 60.618574][ T5774] netlink: 132 bytes leftover after parsing attributes in process `syz.0.998'. [ 60.646711][ T5777] netlink: 32 bytes leftover after parsing attributes in process `syz.5.999'. [ 60.741982][ T5795] loop3: detected capacity change from 0 to 128 [ 60.753911][ T5795] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 60.772311][ T5795] ext4 filesystem being mounted at /217/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 60.805341][ T3298] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 60.881779][ T5810] openvswitch: netlink: Message has 6 unknown bytes. [ 60.933010][ T5817] netlink: 'syz.3.1020': attribute type 21 has an invalid length. [ 60.940134][ T5819] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=14385 sclass=netlink_route_socket pid=5819 comm=syz.0.1021 [ 61.217112][ T10] kernel write not supported for file bpf-prog (pid: 10 comm: kworker/0:1) [ 61.308582][ T5869] loop3: detected capacity change from 0 to 512 [ 61.331737][ T5869] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 61.340186][ T5869] EXT4-fs (loop3): orphan cleanup on readonly fs [ 61.350083][ T5869] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.1046: corrupted inode contents [ 61.364496][ T5869] EXT4-fs (loop3): Remounting filesystem read-only [ 61.371211][ T5869] EXT4-fs (loop3): 1 truncate cleaned up [ 61.377016][ T12] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 61.387778][ T12] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 61.407593][ T12] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started [ 61.419800][ T5869] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 61.433433][ T5885] 9pnet_fd: Insufficient options for proto=fd [ 61.456826][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 61.569385][ T5905] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 61.634810][ T5919] program syz.0.1069 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 61.669158][ T5925] batadv_slave_1: entered promiscuous mode [ 61.677316][ T5925] batman_adv: batadv0: Adding interface: macsec2 [ 61.683787][ T5925] batman_adv: batadv0: The MTU of interface macsec2 is too small (1468) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.709234][ T5925] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 61.719775][ T5925] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 61.723975][ T1035] kernel write not supported for file bpf-prog (pid: 1035 comm: kworker/0:2) [ 61.732836][ T5925] batman_adv: batadv0: Interface activated: macsec2 [ 61.807325][ T5943] sctp: [Deprecated]: syz.3.1080 (pid 5943) Use of int in max_burst socket option deprecated. [ 61.807325][ T5943] Use struct sctp_assoc_value instead [ 61.963334][ T5952] loop5: detected capacity change from 0 to 4096 [ 61.971833][ T5952] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 61.986616][ T5956] loop1: detected capacity change from 0 to 128 [ 61.995600][ T5952] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 61.995746][ T5956] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 62.022612][ T5956] ext4 filesystem being mounted at /231/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 62.048567][ T3297] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 62.062998][ T4542] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 62.358330][ T5998] program syz.1.1107 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 62.423825][ T6004] __nla_validate_parse: 7 callbacks suppressed [ 62.423848][ T6004] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1110'. [ 62.477323][ T6018] netlink: 'syz.4.1115': attribute type 1 has an invalid length. [ 62.511413][ T6025] loop4: detected capacity change from 0 to 128 [ 62.547906][ T6025] bio_check_eod: 16911 callbacks suppressed [ 62.547954][ T6025] syz.4.1120: attempt to access beyond end of device [ 62.547954][ T6025] loop4: rw=2049, sector=145, nr_sectors = 88 limit=128 [ 62.589236][ T6031] FAT-fs (loop1): unable to read boot sector [ 62.629294][ T37] kworker/u8:2: attempt to access beyond end of device [ 62.629294][ T37] loop4: rw=1, sector=233, nr_sectors = 808 limit=128 [ 62.796490][ T6052] loop4: detected capacity change from 0 to 128 [ 62.833082][ T6050] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 62.880249][ T6055] loop4: detected capacity change from 0 to 512 [ 62.970690][ T6064] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1138'. [ 63.026332][ T6072] netlink: 6 bytes leftover after parsing attributes in process `+}[@'. [ 63.063800][ T6072] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 63.063833][ T6075] program syz.4.1144 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 63.168382][ T6086] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1149'. [ 63.188057][ T6088] loop4: detected capacity change from 0 to 512 [ 63.204417][ T6088] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 63.222134][ T6088] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1150: bg 0: block 384: padding at end of block bitmap is not set [ 63.238768][ T6088] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 63.247950][ T6088] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #11: comm syz.4.1150: attempt to clear invalid blocks 983260 len 1 [ 63.262672][ T6088] EXT4-fs error (device loop4): __ext4_get_inode_loc:4861: comm syz.4.1150: Invalid inode table block 0 in block_group 0 [ 63.275640][ T6088] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 63.286409][ T6088] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem [ 63.295328][ T6088] EXT4-fs error (device loop4): __ext4_get_inode_loc:4861: comm syz.4.1150: Invalid inode table block 0 in block_group 0 [ 63.313540][ T6088] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 63.324533][ T6088] EXT4-fs error (device loop4): ext4_truncate:4666: inode #11: comm syz.4.1150: mark_inode_dirty error [ 63.336999][ T6088] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem [ 63.346278][ T6088] EXT4-fs (loop4): 1 truncate cleaned up [ 63.354030][ T6096] SELinux: failed to load policy [ 63.360522][ T6088] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 63.403547][ T6088] EXT4-fs error (device loop4): __ext4_get_inode_loc:4861: comm syz.4.1150: Invalid inode table block 0 in block_group 0 [ 63.419356][ T6088] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 63.440453][ T3387] hid_parser_main: 73 callbacks suppressed [ 63.440501][ T3387] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 63.453817][ T3387] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 63.461269][ T3387] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 63.468801][ T3387] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 63.476189][ T3387] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 63.483602][ T3387] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 63.491153][ T3387] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 63.498611][ T3387] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 63.506021][ T3387] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 63.513452][ T3387] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 63.533370][ T3387] hid-generic 0003:0004:0000.0002: hidraw0: USB HID v0.00 Device [syz0] on syz1 [ 63.533640][ T4929] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 63.615823][ T6122] SELinux: Context  is not valid (left unmapped). [ 63.653747][ T6128] loop5: detected capacity change from 0 to 1024 [ 63.679967][ T6132] loop1: detected capacity change from 0 to 2048 [ 63.680510][ T6128] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 63.688948][ T29] kauditd_printk_skb: 83 callbacks suppressed [ 63.688966][ T29] audit: type=1400 audit(2000000001.400:783): avc: denied { listen } for pid=6135 comm="syz.3.1167" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 63.724636][ T29] audit: type=1400 audit(2000000001.440:784): avc: denied { accept } for pid=6135 comm="syz.3.1167" lport=37519 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 63.726316][ T6128] ext4 filesystem being mounted at /88/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 63.759233][ T6132] Alternate GPT is invalid, using primary GPT. [ 63.765633][ T6132] loop1: p2 p3 p7 [ 63.907497][ T29] audit: type=1400 audit(2000000001.610:785): avc: denied { listen } for pid=6147 comm="syz.4.1172" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 63.927469][ T29] audit: type=1400 audit(2000000001.610:786): avc: denied { ioctl } for pid=6147 comm="syz.4.1172" path="socket:[13855]" dev="sockfs" ino=13855 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 63.989283][ T29] audit: type=1400 audit(2000000001.700:787): avc: denied { listen } for pid=6156 comm="syz.4.1176" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 64.008828][ T29] audit: type=1400 audit(2000000001.700:788): avc: denied { setopt } for pid=6156 comm="syz.4.1176" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 64.028363][ T29] audit: type=1400 audit(2000000001.700:789): avc: denied { accept } for pid=6156 comm="syz.4.1176" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 64.088954][ T29] audit: type=1400 audit(2000000001.770:790): avc: denied { getopt } for pid=6160 comm="syz.0.1177" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 64.126919][ T29] audit: type=1400 audit(2000000001.830:791): avc: denied { mount } for pid=6166 comm="syz.0.1181" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 64.210859][ T29] audit: type=1400 audit(2000000001.920:792): avc: denied { create } for pid=6174 comm="syz.1.1186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 64.253588][ T6179] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0) [ 64.274998][ T6179] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0) [ 64.428265][ T6202] loop4: detected capacity change from 0 to 1024 [ 64.435531][ T6200] 9p: Unknown access argument : -22 [ 64.447064][ T6202] EXT4-fs: inline encryption not supported [ 64.460916][ T6202] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 64.475800][ T12] EXT4-fs error (device loop5): ext4_map_blocks:814: inode #15: comm kworker/u8:0: lblock 0 mapped to illegal pblock 0 (length 6) [ 64.490037][ T12] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117 [ 64.502377][ T12] EXT4-fs (loop5): This should not happen!! Data will be lost [ 64.502377][ T12] [ 64.515682][ T12] EXT4-fs error (device loop5): ext4_map_blocks:814: inode #15: block 8: comm kworker/u8:0: lblock 8 mapped to illegal pblock 8 (length 8) [ 64.537657][ T12] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117 [ 64.550033][ T12] EXT4-fs (loop5): This should not happen!! Data will be lost [ 64.550033][ T12] [ 64.550044][ T4929] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 64.642135][ T6219] IPv6: NLM_F_CREATE should be specified when creating new route [ 64.691048][ T4542] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 64.782221][ T6232] bridge_slave_0: invalid flags given to default FDB implementation [ 64.860506][ T6237] loop5: detected capacity change from 0 to 1024 [ 64.901528][ T6237] EXT4-fs: Ignoring removed oldalloc option [ 64.917553][ T6237] EXT4-fs: Ignoring removed orlov option [ 64.931678][ T6237] EXT4-fs (loop5): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 64.947221][ T6243] loop4: detected capacity change from 0 to 256 [ 64.978955][ T6237] EXT4-fs error (device loop5): mb_free_blocks:2017: group 0, inode 15: block 433:freeing already freed block (bit 27); block bitmap corrupt. [ 65.032663][ T6250] loop4: detected capacity change from 0 to 512 [ 65.039747][ T6250] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 65.046106][ T6253] dvmrp1: entered allmulticast mode [ 65.069630][ T6253] dvmrp1: left allmulticast mode [ 65.080566][ T6255] loop5: detected capacity change from 0 to 512 [ 65.087367][ T6255] EXT4-fs: Ignoring removed nobh option [ 65.095138][ T6255] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -117 [ 65.103691][ T6255] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.1222: invalid indirect mapped block 256 (level 1) [ 65.119005][ T6255] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.1222: invalid indirect mapped block 2683928664 (level 1) [ 65.135749][ T6255] EXT4-fs (loop5): 1 truncate cleaned up [ 65.146113][ T6255] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.1222: invalid indirect mapped block 480848489 (level 1) [ 65.241154][ T6272] loop4: detected capacity change from 0 to 1024 [ 65.259383][ T6272] ext4 filesystem being mounted at /95/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 65.386934][ T6288] loop1: detected capacity change from 0 to 512 [ 65.413345][ T6288] EXT4-fs: inline encryption not supported [ 65.421588][ T6292] loop5: detected capacity change from 0 to 256 [ 65.437811][ T6288] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 65.468765][ T6292] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 322, start 00000905) [ 65.484283][ T6288] EXT4-fs (loop1): 1 truncate cleaned up [ 65.509054][ T6292] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 322, start 00000905) [ 65.560432][ T6291] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 322, start 00000905) [ 65.585494][ T6291] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 322, start 00000905) [ 65.597760][ T6291] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 322, start 00000905) [ 65.611728][ T6292] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 322, start 00000905) [ 65.628784][ T6297] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 65.639714][ T6303] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 322, start 00000905) [ 65.673120][ T6305] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 65.674842][ T6292] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 322, start 00000905) [ 65.687629][ T6305] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 65.708655][ T6303] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 322, start 00000905) [ 65.718945][ T6303] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 322, start 00000905) [ 65.729229][ T6302] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 65.786270][ T6307] loop3: detected capacity change from 0 to 128 [ 65.862125][ T12] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: comm kworker/u8:0: lblock 0 mapped to illegal pblock 0 (length 6) [ 65.889708][ T12] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117 [ 65.902158][ T12] EXT4-fs (loop4): This should not happen!! Data will be lost [ 65.902158][ T12] [ 65.934942][ T12] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: block 8: comm kworker/u8:0: lblock 8 mapped to illegal pblock 8 (length 8) [ 65.955431][ T12] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117 [ 65.967878][ T12] EXT4-fs (loop4): This should not happen!! Data will be lost [ 65.967878][ T12] [ 65.992963][ T6319] loop3: detected capacity change from 0 to 1024 [ 66.020188][ T6319] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 66.048155][ T6319] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 66.059164][ T6319] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 66.078359][ T6319] JBD2: no valid journal superblock found [ 66.084163][ T6319] EXT4-fs (loop3): Could not load journal inode [ 66.161804][ T6331] loop7: detected capacity change from 0 to 7 [ 66.182920][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 66.192131][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 66.207455][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 66.216728][ C1] Buffer I/O error on dev loop7, logical block 0, async page read [ 66.224671][ T6331] loop7: unable to read partition table [ 66.230395][ T6331] loop_reread_partitions: partition scan of loop7 (Cj̖P=ý?}X %`ր{֐ȵ4FLQk݊) failed (rc=-5) [ 66.250904][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 67.454718][ T6342] loop3: detected capacity change from 0 to 1024 [ 67.472046][ T6349] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1262'. [ 67.482151][ T6350] netlink: 27 bytes leftover after parsing attributes in process `syz.5.1261'. [ 67.493562][ T6342] ext4 filesystem being mounted at /266/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 67.583518][ T6363] bridge1: entered promiscuous mode [ 67.989911][ T37] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #15: comm kworker/u8:2: lblock 0 mapped to illegal pblock 0 (length 6) [ 68.004224][ T37] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117 [ 68.016695][ T37] EXT4-fs (loop3): This should not happen!! Data will be lost [ 68.016695][ T37] [ 68.031415][ T37] EXT4-fs error (device loop3): ext4_map_blocks:814: inode #15: block 8: comm kworker/u8:2: lblock 8 mapped to illegal pblock 8 (length 8) [ 68.046435][ T37] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117 [ 68.058881][ T37] EXT4-fs (loop3): This should not happen!! Data will be lost [ 68.058881][ T37] [ 68.094025][ T6425] 9pnet: Could not find request transport: 0xffffffffffffffff [ 68.134589][ T6431] netlink: 'syz.0.1302': attribute type 1 has an invalid length. [ 68.193034][ T6435] loop5: detected capacity change from 0 to 512 [ 68.222991][ T6443] loop4: detected capacity change from 0 to 1024 [ 68.229810][ T6435] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 68.246773][ T6435] EXT4-fs (loop5): 1 truncate cleaned up [ 68.288602][ T6443] ext4 filesystem being mounted at /116/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 68.486638][ T6471] loop5: detected capacity change from 0 to 512 [ 68.538111][ T6471] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a84ec018, mo2=0002] [ 68.557470][ T6471] System zones: 0-2, 18-18, 34-35 [ 68.571952][ T6471] ext4 filesystem being mounted at /117/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 68.693185][ T6471] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 68.736367][ T29] kauditd_printk_skb: 59 callbacks suppressed [ 68.736384][ T29] audit: type=1400 audit(2000000006.440:852): avc: denied { read } for pid=6470 comm="syz.5.1318" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop5" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 68.949360][ T29] audit: type=1400 audit(2000000006.660:853): avc: denied { create } for pid=6487 comm="syz.0.1326" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 68.981703][ T12] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: comm kworker/u8:0: lblock 0 mapped to illegal pblock 0 (length 6) [ 69.005207][ T6490] netlink: 'syz.3.1329': attribute type 13 has an invalid length. [ 69.018618][ T12] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117 [ 69.031161][ T12] EXT4-fs (loop4): This should not happen!! Data will be lost [ 69.031161][ T12] [ 69.044550][ T12] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: block 8: comm kworker/u8:0: lblock 8 mapped to illegal pblock 8 (length 8) [ 69.061187][ T12] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117 [ 69.073527][ T12] EXT4-fs (loop4): This should not happen!! Data will be lost [ 69.073527][ T12] [ 69.208448][ T6490] bridge0: port 2(bridge_slave_1) entered disabled state [ 69.215654][ T6490] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.219972][ T29] audit: type=1326 audit(2000000006.930:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6500 comm="syz.1.1327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec955eec9 code=0x7ffc0000 [ 69.302241][ T29] audit: type=1326 audit(2000000006.960:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6500 comm="syz.1.1327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faec955eec9 code=0x7ffc0000 [ 69.325900][ T29] audit: type=1326 audit(2000000006.960:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6500 comm="syz.1.1327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec955eec9 code=0x7ffc0000 [ 69.349566][ T29] audit: type=1326 audit(2000000006.970:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6500 comm="syz.1.1327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faec955eec9 code=0x7ffc0000 [ 69.373106][ T29] audit: type=1326 audit(2000000006.970:858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6500 comm="syz.1.1327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec955eec9 code=0x7ffc0000 [ 69.396552][ T29] audit: type=1326 audit(2000000006.970:859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6500 comm="syz.1.1327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec955eec9 code=0x7ffc0000 [ 69.420116][ T29] audit: type=1326 audit(2000000006.970:860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6500 comm="syz.1.1327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=27 compat=0 ip=0x7faec955eec9 code=0x7ffc0000 [ 69.443380][ T29] audit: type=1326 audit(2000000006.970:861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6500 comm="syz.1.1327" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faec955eec9 code=0x7ffc0000 [ 69.523522][ T6490] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 69.539209][ T6490] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 69.695952][ T6490] batman_adv: batadv0: Interface deactivated: macsec2 [ 69.722530][ T12] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 69.736507][ T12] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 69.763340][ T12] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 69.805227][ T12] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 69.932464][ T6555] loop3: detected capacity change from 0 to 2048 [ 69.995032][ T6555] EXT4-fs mount: 16 callbacks suppressed [ 69.995048][ T6555] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 70.026040][ T6569] netem: incorrect ge model size [ 70.031182][ T6569] netem: change failed [ 70.054067][ T6555] EXT4-fs error (device loop3): ext4_find_extent:939: inode #2: comm syz.3.1345: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 70.087045][ T6555] EXT4-fs (loop3): Remounting filesystem read-only [ 70.137774][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.191512][ T6594] loop3: detected capacity change from 0 to 512 [ 70.199997][ T6594] msdos: Unknown parameter 'ds1xfloppy' [ 70.431484][ T6625] hub 2-0:1.0: USB hub found [ 70.442550][ T6625] hub 2-0:1.0: 8 ports detected [ 70.663068][ T6666] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1396'. [ 70.673018][ T6666] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1396'. [ 70.735612][ T6673] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1401'. [ 70.744660][ T6673] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1401'. [ 70.972466][ T6717] loop5: detected capacity change from 0 to 512 [ 70.990983][ T6717] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 71.013210][ T6717] EXT4-fs (loop5): 1 truncate cleaned up [ 71.019339][ T6717] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 71.073875][ T4542] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.182153][ T6753] 9pnet_fd: Insufficient options for proto=fd [ 71.400820][ T6787] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check. [ 71.422198][ T3304] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.448214][ T6793] SELinux: failed to load policy [ 71.490569][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 71.515362][ T6795] syz.1.1458 (6795) used greatest stack depth: 9520 bytes left [ 71.598936][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 71.662137][ T6816] loop1: detected capacity change from 0 to 256 [ 71.669878][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 71.770647][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 71.785540][ T6822] loop1: detected capacity change from 0 to 764 [ 71.800781][ T6822] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 71.813729][ T6822] Symlink component flag not implemented [ 71.820929][ T6822] Symlink component flag not implemented (7) [ 71.833318][ T6803] chnl_net:caif_netlink_parms(): no params data found [ 71.894764][ T12] bridge_slave_1: left allmulticast mode [ 71.900522][ T12] bridge_slave_1: left promiscuous mode [ 71.906303][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 71.917549][ T12] bridge_slave_0: left allmulticast mode [ 71.923235][ T12] bridge_slave_0: left promiscuous mode [ 71.929035][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 72.019497][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 72.029188][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 72.038458][ T12] bond0 (unregistering): Released all slaves [ 72.106531][ T6839] program syz.5.1473 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 72.116729][ T6803] bridge0: port 1(bridge_slave_0) entered blocking state [ 72.123840][ T6803] bridge0: port 1(bridge_slave_0) entered disabled state [ 72.151706][ T6803] bridge_slave_0: entered allmulticast mode [ 72.179627][ T6803] bridge_slave_0: entered promiscuous mode [ 72.191879][ T12] tipc: Disabling bearer [ 72.197246][ T12] tipc: Left network mode [ 72.228073][ T6803] bridge0: port 2(bridge_slave_1) entered blocking state [ 72.235266][ T6803] bridge0: port 2(bridge_slave_1) entered disabled state [ 72.254059][ T6803] bridge_slave_1: entered allmulticast mode [ 72.263704][ T6803] bridge_slave_1: entered promiscuous mode [ 72.282877][ T6853] sctp: [Deprecated]: syz.5.1478 (pid 6853) Use of struct sctp_assoc_value in delayed_ack socket option. [ 72.282877][ T6853] Use struct sctp_sack_info instead [ 72.324759][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 72.344242][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 72.418513][ T12] team0 (unregistering): Port device team_slave_1 removed [ 72.436184][ T12] team0 (unregistering): Port device team_slave_0 removed [ 72.493127][ T6855] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1479'. [ 72.511618][ T6803] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 72.549711][ T6803] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 72.593205][ T6803] team0: Port device team_slave_0 added [ 72.609446][ T6803] team0: Port device team_slave_1 added [ 72.633878][ T6803] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 72.640993][ T6803] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 72.667059][ T6803] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 72.682471][ T6803] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 72.689517][ T6803] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 72.715538][ T6803] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 72.749292][ T6803] hsr_slave_0: entered promiscuous mode [ 72.758148][ T6803] hsr_slave_1: entered promiscuous mode [ 72.765710][ T6803] debugfs: 'hsr0' already exists in 'hsr' [ 72.771525][ T6803] Cannot create hsr debugfs directory [ 72.874387][ T6920] loop5: detected capacity change from 0 to 512 [ 72.893448][ T6920] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.1506: couldn't read orphan inode 26 (err -116) [ 72.906426][ T6920] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 72.919362][ T6920] ext4 filesystem being mounted at /159/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 72.953171][ T4542] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.992402][ T6936] program syz.3.1514 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 73.015361][ T6938] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1515'. [ 73.025706][ T6938] IPVS: Error joining to the multicast group [ 73.119361][ T6803] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 73.132300][ T6803] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 73.143887][ T6954] loop3: detected capacity change from 0 to 256 [ 73.159829][ T6803] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 73.176365][ T6803] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 73.239219][ T6803] 8021q: adding VLAN 0 to HW filter on device bond0 [ 73.258907][ T6803] 8021q: adding VLAN 0 to HW filter on device team0 [ 73.273620][ T37] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.280785][ T37] bridge0: port 1(bridge_slave_0) entered forwarding state [ 73.283417][ T6965] 9pnet_fd: Insufficient options for proto=fd [ 73.312546][ T37] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.319709][ T37] bridge0: port 2(bridge_slave_1) entered forwarding state [ 73.344039][ T6972] loop3: detected capacity change from 0 to 128 [ 73.432530][ T6979] loop3: detected capacity change from 0 to 512 [ 73.444840][ T6979] SELinux: security_context_str_to_sid (system_u) failed with errno=-22 [ 73.463227][ T6803] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 73.496532][ T6991] loop1: detected capacity change from 0 to 512 [ 73.503147][ T6994] loop3: detected capacity change from 0 to 764 [ 73.513490][ T6994] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 73.536971][ T6994] Symlink component flag not implemented [ 73.544728][ T6994] Symlink component flag not implemented (7) [ 73.566400][ T6999] loop5: detected capacity change from 0 to 256 [ 73.628278][ T6803] veth0_vlan: entered promiscuous mode [ 73.645847][ T6803] veth1_vlan: entered promiscuous mode [ 73.673401][ T6803] veth0_macvtap: entered promiscuous mode [ 73.682159][ T6803] veth1_macvtap: entered promiscuous mode [ 73.702690][ T6803] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 73.714439][ T6803] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 73.731175][ T37] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.753771][ T37] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.771413][ T29] kauditd_printk_skb: 162 callbacks suppressed [ 73.771428][ T29] audit: type=1400 audit(2000000011.480:1024): avc: denied { mounton } for pid=6803 comm="syz-executor" path="/root/syzkaller.5dTVse/syz-tmp" dev="sda1" ino=2051 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 73.807851][ T29] audit: type=1400 audit(2000000011.510:1025): avc: denied { mount } for pid=6803 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 73.808577][ T37] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.830056][ T29] audit: type=1400 audit(2000000011.510:1026): avc: denied { mount } for pid=6803 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 73.830092][ T29] audit: type=1400 audit(2000000011.510:1027): avc: denied { mounton } for pid=6803 comm="syz-executor" path="/root/syzkaller.5dTVse/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 73.887722][ T29] audit: type=1400 audit(2000000011.510:1028): avc: denied { mounton } for pid=6803 comm="syz-executor" path="/root/syzkaller.5dTVse/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=17222 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 73.889904][ T37] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.924754][ T29] audit: type=1400 audit(2000000011.640:1029): avc: denied { mounton } for pid=6803 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=536 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 73.956555][ T29] audit: type=1400 audit(2000000011.640:1030): avc: denied { mount } for pid=6803 comm="syz-executor" name="/" dev="gadgetfs" ino=3897 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 74.039967][ T7029] program syz.0.1546 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 74.082992][ T7036] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1551'. [ 74.126188][ T7046] loop4: detected capacity change from 0 to 256 [ 74.141510][ T29] audit: type=1400 audit(2000000011.850:1031): avc: denied { create } for pid=7048 comm="syz.0.1557" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 74.181250][ T29] audit: type=1400 audit(2000000011.870:1032): avc: denied { connect } for pid=7048 comm="syz.0.1557" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 74.201005][ T29] audit: type=1400 audit(2000000011.870:1033): avc: denied { listen } for pid=7048 comm="syz.0.1557" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 74.219621][ T7051] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1558'. [ 74.263393][ T7061] program syz.4.1563 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 74.453828][ T7075] loop1: detected capacity change from 0 to 512 [ 74.472777][ T7075] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.1579: couldn't read orphan inode 26 (err -116) [ 74.496594][ T7075] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.515773][ T7075] ext4 filesystem being mounted at /319/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 74.589790][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.644549][ T7095] sctp: [Deprecated]: syz.3.1576 (pid 7095) Use of struct sctp_assoc_value in delayed_ack socket option. [ 74.644549][ T7095] Use struct sctp_sack_info instead [ 74.703981][ T7105] loop0: detected capacity change from 0 to 128 [ 74.781906][ T7105] syz.0.1582: attempt to access beyond end of device [ 74.781906][ T7105] loop0: rw=2049, sector=145, nr_sectors = 88 limit=128 [ 74.809728][ T7116] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1586'. [ 74.821641][ T7116] IPVS: Error joining to the multicast group [ 74.834476][ T2384] kworker/u8:6: attempt to access beyond end of device [ 74.834476][ T2384] loop0: rw=1, sector=233, nr_sectors = 808 limit=128 [ 74.870771][ T7118] loop3: detected capacity change from 0 to 512 [ 74.905041][ T7123] loop0: detected capacity change from 0 to 512 [ 74.920778][ T7118] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.1587: couldn't read orphan inode 26 (err -116) [ 74.936204][ T7118] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.948261][ T7123] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 74.949038][ T7118] ext4 filesystem being mounted at /321/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 74.976289][ T10] hid_parser_main: 8 callbacks suppressed [ 74.976309][ T10] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 74.989765][ T10] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 74.997339][ T10] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 75.004868][ T10] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 75.012576][ T10] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 75.020156][ T10] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 75.027772][ T10] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 75.035369][ T10] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 75.042938][ T10] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 75.050453][ T10] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 75.061254][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.061301][ T7123] EXT4-fs (loop0): 1 truncate cleaned up [ 75.076616][ T7123] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 75.112829][ T7123] EXT4-fs error (device loop0): __ext4_remount:6746: comm syz.0.1589: Abort forced by user [ 75.124073][ T10] hid-generic 0003:0004:0000.0003: hidraw0: USB HID v0.00 Device [syz0] on syz1 [ 75.140889][ T7139] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 75.160618][ T7123] EXT4-fs (loop0): Remounting filesystem read-only [ 75.167200][ T7123] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 75.211657][ T6803] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.258168][ T7155] loop5: detected capacity change from 0 to 512 [ 75.264840][ T7155] SELinux: security_context_str_to_sid (system_u) failed with errno=-22 [ 75.318384][ T7162] loop0: detected capacity change from 0 to 512 [ 75.332815][ T7166] program syz.1.1606 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 75.353353][ T7162] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 75.370907][ T6531] hid-generic 0003:0004:0000.0004: hidraw0: USB HID v0.00 Device [syz0] on syz1 [ 75.387956][ T7162] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1605: bg 0: block 384: padding at end of block bitmap is not set [ 75.422743][ T7162] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 75.441985][ T7183] 9p: Unknown access argument : -22 [ 75.447991][ T7162] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #11: comm syz.0.1605: attempt to clear invalid blocks 983260 len 1 [ 75.463646][ T7162] EXT4-fs error (device loop0): __ext4_get_inode_loc:4861: comm syz.0.1605: Invalid inode table block 0 in block_group 0 [ 75.476709][ T7162] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 75.498774][ T7162] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem [ 75.507613][ T7162] EXT4-fs error (device loop0): __ext4_get_inode_loc:4861: comm syz.0.1605: Invalid inode table block 0 in block_group 0 [ 75.521502][ T7162] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 75.533183][ T7162] EXT4-fs error (device loop0): ext4_truncate:4666: inode #11: comm syz.0.1605: mark_inode_dirty error [ 75.544827][ T7162] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem [ 75.559419][ T7162] EXT4-fs (loop0): 1 truncate cleaned up [ 75.565379][ T7190] loop5: detected capacity change from 0 to 2048 [ 75.572650][ T7162] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 75.589976][ T7162] EXT4-fs error (device loop0): __ext4_get_inode_loc:4861: comm syz.0.1605: Invalid inode table block 0 in block_group 0 [ 75.603208][ T7162] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 75.612701][ T7189] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 75.613560][ T7177] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 75.636602][ T7177] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 75.649122][ T7190] Alternate GPT is invalid, using primary GPT. [ 75.655570][ T7190] loop5: p2 p3 p7 [ 75.668483][ T6803] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.770688][ T7206] loop0: detected capacity change from 0 to 512 [ 75.799216][ T7206] EXT4-fs error (device loop0): ext4_quota_enable:7134: inode #4: comm syz.0.1625: iget: checksum invalid [ 75.803595][ T7214] loop5: detected capacity change from 0 to 1024 [ 75.810903][ T7206] EXT4-fs error (device loop0): ext4_quota_enable:7137: comm syz.0.1625: Bad quota inode: 4, type: 1 [ 75.828253][ T7206] EXT4-fs warning (device loop0): ext4_enable_quotas:7178: Failed to enable quota tracking (type=1, err=-74, ino=4). Please run e2fsck to fix. [ 75.845554][ T7214] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 75.853060][ T7206] EXT4-fs (loop0): mount failed [ 75.943404][ T4542] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.018753][ T7238] loop5: detected capacity change from 0 to 128 [ 76.028005][ T7236] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 76.078099][ T7244] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1641'. [ 76.089480][ T7246] program syz.5.1643 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 76.099457][ T7246] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 76.099465][ T7242] loop4: detected capacity change from 0 to 512 [ 76.099977][ T7242] EXT4-fs: inline encryption not supported [ 76.131263][ T7242] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 76.192826][ T7242] EXT4-fs (loop4): 1 truncate cleaned up [ 76.201344][ T7248] loop0: detected capacity change from 0 to 8192 [ 76.208605][ T7242] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 76.248601][ T7248] loop0: p4 < > [ 76.253359][ T4929] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.274233][ T7261] loop1: detected capacity change from 0 to 512 [ 76.282538][ T7261] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 76.329001][ T7267] dvmrp1: entered allmulticast mode [ 76.359764][ T7267] dvmrp1: left allmulticast mode [ 76.454965][ T7274] 8021q: adding VLAN 0 to HW filter on device bond0 [ 76.468564][ T7274] 8021q: adding VLAN 0 to HW filter on device team0 [ 76.481220][ T7274] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 76.508547][ T7281] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0) [ 76.535988][ T7289] loop1: detected capacity change from 0 to 512 [ 76.554230][ T7285] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0) [ 76.566111][ T7289] EXT4-fs: Ignoring removed nobh option [ 76.596166][ T7289] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -117 [ 76.606104][ T7289] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.1658: invalid indirect mapped block 256 (level 1) [ 76.629633][ T7289] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.1658: invalid indirect mapped block 2683928664 (level 1) [ 76.684757][ T7289] EXT4-fs (loop1): 1 truncate cleaned up [ 76.715722][ T7289] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 76.744441][ T7302] loop3: detected capacity change from 0 to 1024 [ 76.766326][ T7304] loop0: detected capacity change from 0 to 512 [ 76.783671][ T7302] EXT4-fs: inline encryption not supported [ 76.787785][ T7289] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.1658: invalid indirect mapped block 480848489 (level 1) [ 76.797922][ T7304] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 76.839752][ T7302] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 76.860639][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.953281][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.968902][ C1] sd 0:0:1:0: [sda] tag#4815 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 76.979330][ C1] sd 0:0:1:0: [sda] tag#4815 CDB: Write(6) 0a 00 00 02 00 00 [ 77.035712][ T7315] dvmrp1: entered allmulticast mode [ 77.045615][ T7315] dvmrp1: left allmulticast mode [ 77.183777][ T7321] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 77.217542][ T7325] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 77.287814][ T7321] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 77.288978][ T7328] loop1: detected capacity change from 0 to 512 [ 77.321974][ T7328] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 77.339788][ T7328] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1677: bg 0: block 384: padding at end of block bitmap is not set [ 77.355887][ T7328] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 77.364855][ T7328] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #11: comm syz.1.1677: attempt to clear invalid blocks 983260 len 1 [ 77.374913][ T7330] loop4: detected capacity change from 0 to 512 [ 77.387659][ T7328] EXT4-fs error (device loop1): __ext4_get_inode_loc:4861: comm syz.1.1677: Invalid inode table block 0 in block_group 0 [ 77.398820][ T7330] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 77.411483][ T7328] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 77.423591][ T7328] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem [ 77.433151][ T7330] EXT4-fs (loop4): 1 truncate cleaned up [ 77.439448][ T7330] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 77.453576][ T7328] EXT4-fs error (device loop1): __ext4_get_inode_loc:4861: comm syz.1.1677: Invalid inode table block 0 in block_group 0 [ 77.483721][ T7330] EXT4-fs error (device loop4): __ext4_remount:6746: comm syz.4.1678: Abort forced by user [ 77.499901][ T7328] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 77.517684][ T7328] EXT4-fs error (device loop1): ext4_truncate:4666: inode #11: comm syz.1.1677: mark_inode_dirty error [ 77.528976][ T7330] EXT4-fs (loop4): Remounting filesystem read-only [ 77.535510][ T7330] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 77.538163][ T7328] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem [ 77.559200][ T7328] EXT4-fs (loop1): 1 truncate cleaned up [ 77.565369][ T7328] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 77.584522][ T7328] EXT4-fs error (device loop1): __ext4_get_inode_loc:4861: comm syz.1.1677: Invalid inode table block 0 in block_group 0 [ 77.599817][ T7328] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 77.611738][ T4929] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.633216][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.691901][ T7352] loop5: detected capacity change from 0 to 512 [ 77.700405][ T7353] dvmrp1: entered allmulticast mode [ 77.708109][ T7353] dvmrp1: left allmulticast mode [ 77.734596][ T7352] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 77.745780][ T7352] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1699: bg 0: block 384: padding at end of block bitmap is not set [ 77.761256][ T7352] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 77.771349][ T7352] EXT4-fs error (device loop5): ext4_clear_blocks:876: inode #11: comm syz.5.1699: attempt to clear invalid blocks 983260 len 1 [ 77.785990][ T7352] EXT4-fs error (device loop5): __ext4_get_inode_loc:4861: comm syz.5.1699: Invalid inode table block 0 in block_group 0 [ 77.807004][ T7352] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 77.848037][ T7361] loop7: detected capacity change from 0 to 7 [ 77.849317][ T7352] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem [ 77.854614][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 77.871936][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 77.882075][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 77.891272][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 77.891458][ T7352] EXT4-fs error (device loop5): __ext4_get_inode_loc:4861: comm syz.5.1699: Invalid inode table block 0 in block_group 0 [ 77.900898][ T7361] loop7: unable to read partition table [ 77.918843][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 77.928486][ T7361] loop_reread_partitions: partition scan of loop7 (Cj̖P=ý?}X %`ր{֐ȵ4FLQk݊) failed (rc=-5) [ 77.944749][ T7352] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 77.964887][ T7352] EXT4-fs error (device loop5): ext4_truncate:4666: inode #11: comm syz.5.1699: mark_inode_dirty error [ 77.993309][ T7352] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem [ 78.015459][ T7352] EXT4-fs (loop5): 1 truncate cleaned up [ 78.021938][ T7352] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 78.042504][ T7367] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 78.045516][ T7352] EXT4-fs error (device loop5): __ext4_get_inode_loc:4861: comm syz.5.1699: Invalid inode table block 0 in block_group 0 [ 78.084814][ T7352] EXT4-fs error (device loop5) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 78.095021][ T7372] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 78.135068][ T4542] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.301329][ T7383] loop1: detected capacity change from 0 to 512 [ 78.311651][ T7383] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 78.328316][ T7383] EXT4-fs (loop1): 1 truncate cleaned up [ 78.334840][ T7383] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 78.352499][ T7383] EXT4-fs error (device loop1): __ext4_remount:6746: comm syz.1.1701: Abort forced by user [ 78.363075][ T7383] EXT4-fs (loop1): Remounting filesystem read-only [ 78.369670][ T7383] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 78.400609][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.581396][ T7404] vhci_hcd: invalid port number 255 [ 78.586644][ T7404] vhci_hcd: default hub control req: 8012 v0303 i00ff l0 [ 78.902253][ T7416] loop5: detected capacity change from 0 to 8192 [ 78.928320][ T29] kauditd_printk_skb: 59 callbacks suppressed [ 78.928410][ T29] audit: type=1400 audit(2000000016.640:1093): avc: denied { bind } for pid=7425 comm="syz.0.1719" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 78.957937][ T7416] loop5: p4 < > [ 78.959554][ T29] audit: type=1400 audit(2000000016.650:1094): avc: denied { write } for pid=7425 comm="syz.0.1719" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 79.003445][ T29] audit: type=1400 audit(2000000016.710:1095): avc: denied { read } for pid=7427 comm="syz.0.1720" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 79.054902][ T7436] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1722'. [ 79.116995][ T7446] loop5: detected capacity change from 0 to 512 [ 79.153106][ T29] audit: type=1400 audit(2000000016.850:1096): avc: denied { associate } for pid=7450 comm="syz.3.1732" name="current" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 79.187533][ T7446] EXT4-fs error (device loop5): ext4_quota_enable:7134: inode #4: comm syz.5.1730: iget: checksum invalid [ 79.209558][ T7446] EXT4-fs error (device loop5): ext4_quota_enable:7137: comm syz.5.1730: Bad quota inode: 4, type: 1 [ 79.221167][ T7454] 9pnet: Could not find request transport: 0xffffffffffffffff [ 79.231968][ T7446] EXT4-fs warning (device loop5): ext4_enable_quotas:7178: Failed to enable quota tracking (type=1, err=-74, ino=4). Please run e2fsck to fix. [ 79.249426][ T7446] EXT4-fs (loop5): mount failed [ 79.262138][ T7463] loop0: detected capacity change from 0 to 1024 [ 79.280055][ T29] audit: type=1400 audit(2000000016.980:1097): avc: denied { create } for pid=7464 comm="syz.3.1737" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 79.299780][ T29] audit: type=1400 audit(2000000016.980:1098): avc: denied { bind } for pid=7464 comm="syz.3.1737" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 79.304509][ T7467] loop3: detected capacity change from 0 to 512 [ 79.327549][ T7467] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 79.349617][ T7463] Quota error (device loop0): do_check_range: Getting block 64 out of range 1-5 [ 79.358777][ T7463] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 79.368219][ T7463] EXT4-fs error (device loop0): ext4_acquire_dquot:6943: comm syz.0.1736: Failed to acquire dquot type 0 [ 79.390756][ T7467] EXT4-fs (loop3): 1 truncate cleaned up [ 79.397051][ T7467] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 79.411641][ T7463] EXT4-fs error (device loop0): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 79.426477][ T7463] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #13: comm syz.0.1736: corrupted inode contents [ 79.440873][ T7461] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 79.450160][ T7461] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 79.465487][ T7463] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #13: comm syz.0.1736: mark_inode_dirty error [ 79.482065][ T7463] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #13: comm syz.0.1736: corrupted inode contents [ 79.493124][ T7480] netlink: 27 bytes leftover after parsing attributes in process `syz.1.1742'. [ 79.500721][ T29] audit: type=1400 audit(2000000017.200:1099): avc: denied { read } for pid=7476 comm="syz.5.1751" name="usbmon7" dev="devtmpfs" ino=163 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 79.506787][ T7463] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #13: comm syz.0.1736: mark_inode_dirty error [ 79.526499][ T29] audit: type=1400 audit(2000000017.200:1100): avc: denied { open } for pid=7476 comm="syz.5.1751" path="/dev/usbmon7" dev="devtmpfs" ino=163 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 79.540407][ T7463] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #13: comm syz.0.1736: corrupted inode contents [ 79.564125][ T3298] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 79.583134][ T7463] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem [ 79.594852][ T7463] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #13: comm syz.0.1736: corrupted inode contents [ 79.616839][ T7463] EXT4-fs error (device loop0): ext4_truncate:4666: inode #13: comm syz.0.1736: mark_inode_dirty error [ 79.633173][ T7463] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem [ 79.651225][ T7463] EXT4-fs (loop0): 1 truncate cleaned up [ 79.658781][ T7463] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 79.697074][ T6803] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 79.712420][ T7486] vhci_hcd: invalid port number 255 [ 79.717709][ T7486] vhci_hcd: default hub control req: 8012 v0303 i00ff l0 [ 79.799174][ T7504] netlink: 27 bytes leftover after parsing attributes in process `syz.0.1755'. [ 79.832779][ T7507] 9pnet: Could not find request transport: 0xffffffffffffffff [ 80.225428][ T7562] loop7: detected capacity change from 0 to 7 [ 80.233321][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 80.242530][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 80.250746][ C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 80.259941][ C0] Buffer I/O error on dev loop7, logical block 0, async page read [ 80.267889][ T7562] loop7: unable to read partition table [ 80.277498][ T7562] loop_reread_partitions: partition scan of loop7 (Cj̖P=ý?}X %`ր{֐ȵ4FLQk݊) failed (rc=-5) [ 80.292778][ C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 80.349463][ T7577] netem: incorrect ge model size [ 80.354529][ T7577] netem: change failed [ 80.380013][ T7558] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 80.392406][ T7558] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 80.408303][ T7579] random: crng reseeded on system resumption [ 80.484472][ T7592] loop4: detected capacity change from 0 to 2048 [ 80.528229][ T7592] loop4: p1 < > p4 [ 80.532948][ T7592] loop4: p4 size 8388608 extends beyond EOD, truncated [ 80.559165][ T7591] ================================================================== [ 80.561463][ T7604] loop5: detected capacity change from 0 to 1024 [ 80.567292][ T7591] BUG: KCSAN: data-race in __xa_clear_mark / xas_find_marked [ 80.579020][ T7604] EXT4-fs error (device loop5): ext4_acquire_dquot:6943: comm syz.5.1801: Failed to acquire dquot type 0 [ 80.581054][ T7591] [ 80.581061][ T7591] read-write to 0xffff888106e16908 of 8 bytes by interrupt on cpu 0: [ 80.594186][ T7604] EXT4-fs error (device loop5): mb_free_blocks:2017: group 0, [ 80.594587][ T7591] __xa_clear_mark+0xf5/0x1e0 [ 80.594614][ T7591] __folio_end_writeback+0x177/0x470 [ 80.594635][ T7591] folio_end_writeback+0x71/0x3d0 [ 80.594661][ T7591] end_buffer_async_write+0x156/0x1f0 [ 80.602780][ T7604] inode 13: [ 80.610265][ T7591] end_bio_bh_io_sync+0x76/0xa0 [ 80.610296][ T7591] bio_endio+0x37b/0x420 [ 80.610316][ T7591] blk_update_request+0x336/0x730 [ 80.615016][ T7604] block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 80.621084][ T7591] blk_mq_end_request+0x26/0x50 [ 80.621149][ T7591] lo_complete_rq+0x98/0x140 [ 80.621166][ T7591] blk_done_softirq+0x74/0xb0 [ 80.628965][ T7604] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.1801: corrupted inode contents [ 80.631546][ T7591] handle_softirqs+0xba/0x290 [ 80.631578][ T7591] run_ksoftirqd+0x1c/0x30 [ 80.631607][ T7591] smpboot_thread_fn+0x328/0x530 [ 80.631628][ T7591] kthread+0x489/0x510 [ 80.631652][ T7591] ret_from_fork+0x11f/0x1b0 [ 80.631673][ T7591] ret_from_fork_asm+0x1a/0x30 [ 80.631700][ T7591] [ 80.631706][ T7591] read to 0xffff888106e16908 of 8 bytes by task 7591 on cpu 1: [ 80.631722][ T7591] xas_find_marked+0x218/0x620 [ 80.631754][ T7591] find_get_entry+0x5d/0x380 [ 80.631780][ T7591] filemap_get_folios_tag+0x13b/0x210 [ 80.635260][ T7604] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #13: comm syz.5.1801: mark_inode_dirty error [ 80.639821][ T7591] filemap_write_and_wait_range+0x1d3/0x340 [ 80.639859][ T7591] bdev_release+0xeb/0x3d0 [ 80.639887][ T7591] blkdev_release+0x15/0x20 [ 80.644489][ T7604] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.1801: corrupted inode contents [ 80.649153][ T7591] __fput+0x29b/0x650 [ 80.649186][ T7591] ____fput+0x1c/0x30 [ 80.649215][ T7591] task_work_run+0x12e/0x1a0 [ 80.785582][ T7591] exit_to_user_mode_loop+0xe1/0xf0 [ 80.790799][ T7591] do_syscall_64+0x1d6/0x200 [ 80.795409][ T7591] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 80.801313][ T7591] [ 80.803640][ T7591] value changed: 0xfffffffff0000000 -> 0xfffffff000000000 [ 80.810745][ T7591] [ 80.813066][ T7591] Reported by Kernel Concurrency Sanitizer on: [ 80.819234][ T7591] CPU: 1 UID: 0 PID: 7591 Comm: syz.4.1805 Not tainted syzkaller #0 PREEMPT(voluntary) [ 80.828955][ T7591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 80.839025][ T7591] ================================================================== [ 80.852602][ T7604] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #13: comm syz.5.1801: mark_inode_dirty error [ 80.868680][ T7604] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.1801: corrupted inode contents [ 80.881388][ T7604] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem [ 80.890331][ T7604] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.1801: corrupted inode contents [ 80.902706][ T7604] EXT4-fs error (device loop5): ext4_truncate:4666: inode #13: comm syz.5.1801: mark_inode_dirty error [ 80.914085][ T7604] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem [ 80.923436][ T7604] EXT4-fs (loop5): 1 truncate cleaned up [ 80.929746][ T7604] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 80.963317][ T4542] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.