last executing test programs: 38.310216463s ago: executing program 2 (id=1899): r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000040)={0x0, 0x2, 0x0, 0x2e32, 0x3, "90737f0000ffffffffffffffff1e277fffffeb"}) r1 = dup(r0) ioctl$TCSETAF(r1, 0x5408, &(0x7f0000000080)={0x4000, 0x2, 0x0, 0xb86f, 0x10, "8000"}) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000100)=0xff) 38.031341371s ago: executing program 2 (id=1905): r0 = socket$kcm(0x29, 0x2, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000b80)={0xffffffffffffffff}) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000080)) close(r1) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000001000)) 37.982248605s ago: executing program 2 (id=1907): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r0}, 0x18) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="d8000000100081046881f782db44b904021d080b01000000e8fe55a11800150006001400000000120800040043000000a8004000f8ff070006000d00036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a9d7c7c0b7a196e6f66112c88ac417898516277ce06bbace80177ccbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d0080000000000000b57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb14feb9f5588a63644caf1ce1bd6c769ad809d52a9ecbee", 0xd8}], 0x1}, 0x0) 37.847013343s ago: executing program 2 (id=1917): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x48100) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f0000000040)={0x0, 0x0, 0x0, 'queue0\x00'}) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r0, 0xc08c5335, &(0x7f00000001c0)={0x0, 0x80, 0x0, 'queue0\x00'}) close_range(r0, 0xffffffffffffffff, 0x0) 37.826809385s ago: executing program 2 (id=1919): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x18, 0x5, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000001040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18) mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30) mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0) 37.796755037s ago: executing program 2 (id=1921): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]}) r1 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$CAN_RAW_ERR_FILTER(r1, 0x65, 0x2, &(0x7f00000000c0)=0xf, 0x4) bind$can_raw(r1, &(0x7f0000000100), 0x10) close_range(r0, 0xffffffffffffffff, 0x0) 22.742014736s ago: executing program 32 (id=1921): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]}) r1 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$CAN_RAW_ERR_FILTER(r1, 0x65, 0x2, &(0x7f00000000c0)=0xf, 0x4) bind$can_raw(r1, &(0x7f0000000100), 0x10) close_range(r0, 0xffffffffffffffff, 0x0) 811.866316ms ago: executing program 4 (id=2845): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0}, 0x10) r1 = syz_open_dev$usbfs(&(0x7f0000000140), 0x77, 0x3501) ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f00000004c0)={0x4b5a9da54893e123, 0x3, 0x17, 0x2}, 0x8, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0}) close_range(r1, 0xffffffffffffffff, 0x0) 781.710849ms ago: executing program 1 (id=2847): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x9d}, 0x18) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x2042, 0x0) ioctl$AUTOFS_IOC_FAIL(r2, 0x4c80, 0x7000000) 696.013384ms ago: executing program 0 (id=2851): creat(&(0x7f0000000040)='./file0\x00', 0x0) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10) mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000a40)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 677.866545ms ago: executing program 4 (id=2867): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x121202, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1) ioctl$TIOCVHANGUP(r0, 0x5437, 0x2) capset(&(0x7f0000000ac0)={0x19980330}, &(0x7f0000000180)={0x0, 0x10000, 0xc898, 0x0, 0x0, 0x2}) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) 669.396096ms ago: executing program 3 (id=2856): r0 = socket$inet6(0xa, 0x80002, 0x0) ftruncate(0xffffffffffffffff, 0xc17a) set_mempolicy(0x6005, &(0x7f0000000080)=0xfffffffffffffffd, 0x4) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3b}}}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00) 640.986198ms ago: executing program 3 (id=2857): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10) syz_io_uring_setup(0x10b, 0x0, 0x0, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f68737200000000140001"], 0xfc}}, 0x0) 640.435938ms ago: executing program 1 (id=2858): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x11, 0xc, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000004000000000000000100000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000090100007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000540)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$KEYCTL_MOVE(0x1e, r2, 0xfffffffffffffffe, r2, 0x1) 620.47806ms ago: executing program 3 (id=2860): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000bc0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x5c71929b3c3c5789, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r1}, 0x10) syz_open_procfs$namespace(0x0, 0xfffffffffffffffe) 619.98873ms ago: executing program 1 (id=2872): sendmsg(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000240)='K', 0x1}], 0x1, 0x0, 0x0, 0x11000000}, 0x4008014) r0 = syz_clone(0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000540)) ptrace$cont(0x21, r0, 0x0, 0x0) 598.375461ms ago: executing program 3 (id=2861): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000b00), 0x1, 0x55f, &(0x7f0000000580)="$eJzs3d9rU+cbAPDnpK2/v18riGxjjIIXczhT2+6Hg124y7HJhO3ehfZYpKmRJhXbCdOLebObIYMxJozdb/e7lP0D+yuETZAhZbvYTcZJT2q0SRNrtNF8PnDkfXNO+p4n73le35M3IQEMrYnsn0LEyxHxTRJxMCKSfN9o5Dsn1o9bu391NtuSqNc//StpHJfVm3+r+bz9eeWliPjtq4jjhc3tVldWF0rlcrqU1ydri5cmqyurJy4slubT+fTi9MzMqbdnpt97952+xfrG2X++/+T2h6e+Prr23S93D91M4nQcyPe1xvEErrVWJmIif03G4vQjB071obFBkuz0CbAtI3mej0U2BhyMkTzrgRfflxFRB4ZUIv9hSDXnAc17+z7dBz837n2wfgO0Of7R9fdGYk/j3mjfWvLQnVF2vzveh/azNn7989bNbIv+vQ8B0NW16xFxcnR08/iX5OPf9p3s4ZhH2zD+wbNzO5v/vNlu/lPYmP9Em/nP/ja5ux3d879wtw/NdJTN/95vO//dWLQaH8lr/2vM+caS8xfKaTa2/T8ijsXY7qy+1XrOqbU79U77Wud/2Za135wL5udxd3T3w8+ZK9VKTxJzq3vXI15pO/9NNvo/adP/2etxtsc2jqS3Xuu0r3v8T1f9p4jX2/b/gxWtZOv1ycnG9TDZvCo2+/vGkd87tb/T8Wf9v2/r+MeT1vXa6uO38eOef9NO+x6KP3q//nclnzXKu/LHrpRqtaWpiF3Jx5sfn37w3Ga9eXwW/7GjW49/7a7/vRHxeY/x3zj886s9xd+t/5/CImsW/9xj9f/jF+589MUP248/6/+3GqVj+SO9jH+9nuCTvHYAAAAAAAAwaAoRcSCSQnGjXCgUi+uf7zgc+wrlSrV2/Hxl+eJcNL4rOx5jheZK98GWz0NM5Z+HbdanH6nPRMShiPh2ZG+jXpytlOd2OngAAAAAAAAAAAAAAAAAAAAYEPs7fP8/88fITp8d8NT5yW8YXl3zvx+/9AQMJP//w/CS/zC85D8ML/kPw0v+w/CS/zC85D8ML/kPAAAAAAAAAAAAAAAAAAAAAAAAAAAAfXX2zJlsq6/dvzqb1ecurywvVC6fmEurC8XF5dnibGXpUnG+Upkvp8XZymK3v1euVC5NTcfylclaWq1NVldWzy1Wli/Wzl1YLM2n59KxZxIVAAAAAAAAAAAAAAAAAAAAPF+qK6sLpXI5XVJQ2FZhdDBOY3UhYiBO40Up7PTIBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP/BcAAP//8NI25Q==") chdir(&(0x7f0000000100)='./file0\x00') r0 = open(&(0x7f0000000140)='.\x00', 0x8000, 0x112) getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8) getdents(r0, 0x0, 0x0) 565.102523ms ago: executing program 5 (id=2863): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x18) futimesat(0xffffffffffffffff, 0x0, 0xfffffffffffffffd) 510.936097ms ago: executing program 4 (id=2864): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2) madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17) 501.507467ms ago: executing program 1 (id=2865): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="070000000400000008000000d9"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000001000080000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000001100)={&(0x7f0000001140)=@newsa={0x154, 0x10, 0x1, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x64}, {@in, 0x0, 0x32}, @in=@dev={0xac, 0x14, 0x14, 0x35}, {}, {0xfffffffffffffffd, 0x0, 0x8000000, 0x200}, {0x0, 0x0, 0x2}, 0x0, 0x0, 0xa, 0x0, 0x0, 0xcd}, [@algo_crypt={0x48, 0x2, {{'cbc(aes)\x00'}}}, @replay_esn_val={0x1c, 0x17, {0x0, 0x0, 0x0, 0x70bd2a, 0x70bd28}}]}, 0x154}}, 0x0) 491.518058ms ago: executing program 0 (id=2877): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x121202, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1) ioctl$TIOCVHANGUP(r0, 0x5437, 0x2) capset(&(0x7f0000000ac0)={0x19980330}, &(0x7f0000000180)={0x0, 0x10000, 0xc898, 0x0, 0x0, 0x2}) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) 466.22602ms ago: executing program 5 (id=2866): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0}, 0x10) r1 = syz_open_dev$usbfs(&(0x7f0000000140), 0x77, 0x3501) ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f00000004c0)={0x4b5a9da54893e123, 0x3, 0x17, 0x2}, 0x8, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0}) close_range(r1, 0xffffffffffffffff, 0x0) 385.816775ms ago: executing program 0 (id=2868): r0 = socket(0x2000000015, 0x80005, 0x0) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x23, &(0x7f0000000280)=0x7, 0x4) bind$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) recvfrom$packet(r0, 0x0, 0x0, 0x40000000, 0x0, 0x0) 384.273235ms ago: executing program 5 (id=2869): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100003020702500000000002020207b1af8ff00000000bfa1000000000000070100003affffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x28, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7ffd}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='kfree\x00', r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000040)={0x14, r2, 0x209}, 0x14}, 0x1, 0x0, 0x0, 0x4008080}, 0x0) 217.640426ms ago: executing program 4 (id=2870): r0 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x4, 0x2, 0x0, 0x0, 0x7, 0x8}, {0x12, 0x3, 0x0, 0x1, 0x8001, 0x2400}, 0xa5, 0x4, 0x10100000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}}, 0x44080) sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)=@newqdisc={0x38, 0x24, 0xd0f, 0x70bd26, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xfff2, 0xa}}, [@qdisc_kind_options=@q_fq={{0x7}, {0xc, 0x2, [@TCA_FQ_BUCKETS_LOG={0x8, 0x8, 0x12}]}}]}, 0x38}}, 0x800) 217.211696ms ago: executing program 0 (id=2882): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x121202, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1) ioctl$TIOCVHANGUP(r0, 0x5437, 0x2) capset(&(0x7f0000000ac0)={0x19980330}, &(0x7f0000000180)={0x0, 0x10000, 0xc898, 0x0, 0x0, 0x2}) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) 214.528636ms ago: executing program 5 (id=2871): r0 = syz_io_uring_setup(0x45b4, &(0x7f0000000280)={0x0, 0x0, 0x10100, 0x200000, 0x46}, &(0x7f0000000080)=0x0, &(0x7f00000000c0)=0x0) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000005b40)=[{{0x0, 0x0, &(0x7f0000001780)=[{&(0x7f00000004c0)="0c71e8d7705b19c24e8c3ec98b4243ae0be48cd79f024361b8082d328363e63e360e122e7ec929c89aea0b338987609655fb5f5f91cd457584f30946f63e00fd0e8c536ae0106beb7d02fb4eb35db10c37c4bf3f2c6df9254d540598ae9b7098b74908c7da448e8891bc1b46f58553776f43370d090df693f3a4e4a724dbb498e51860bd766e36c41c0a0ee41019a0b05b519107c1fbb944f26f16f9fc127f3cd86c3fdbcf169912fc1c42a4a7051d3e85591ccd24b19681da775dc34c98ad24ab07c6feab583ba1f5efb430a0", 0xcd}], 0x1}}], 0x1, 0xc080) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000580)=@sco}) io_uring_enter(r0, 0x2914, 0x58f2, 0x0, 0x0, 0x0) 214.136137ms ago: executing program 3 (id=2873): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7f}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000000)=ANY=[@ANYBLOB="480000001000030500"/20, @ANYRES32=r2, @ANYBLOB="0000000000000000280012800b0001006d61637365630000180002800c0004000100000100c28000050003000f"], 0x48}}, 0x40000) 213.927457ms ago: executing program 1 (id=2874): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r0, &(0x7f0000000100)={@val={0x2000}, @void, @eth={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x29, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x300, 0x4, 0x28, 0x0, @gue={{0x2, 0x0, 0x0, 0xfc}, "ebc7a1e0ff5befe1fdbc66e400d7e83306de422b4a81099b"}}}}}}}, 0x4e) 158.28363ms ago: executing program 3 (id=2875): syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0x1000400, &(0x7f00000005c0)={[{@abort}, {@errors_remount}]}, 0x3, 0x44f, &(0x7f0000000600)="$eJzs282PE+UfAPDvTLfLjx/grogvvKiraNz4sssCKgcPajTxgImJHvS42V0IUljDrokQomAMnowx8W48+i940osxnky86t2QEMOFl1PNtDNsW9rClnaL9PNJBp5nXvb5fjvztM/M0wYwsqayf5KIrRHxZ0RM1KvNO0zV/7t6+ezCtctnF5KoVt/9J6ntd+Xy2YVi1+K4LXllOo1Iv0hid5t2V06fOT5fqSydyuuzqyc+ml05feaFYyfmjy4dXTq5/9ChgwfmXn5p/4t9yTOL6cquT5f37Hzrg2/ePvxVU/4tefTJVLeNT1erfW5uuLY1lJOxIQbCupQiIjtd5Vr/n4hSrJ28iXjz86EGBwxUtVqtbum8+VwVuIcl0VzX5WFUFB/02f1vsbQOAl4d3PBj6C69Vr8ByvK+mi/1LWOR5vuUW+5v+2kqIt4/d/27bInBPIcAAGjyUzb+eb7d+C+Nhxr2uy+fG5qMiPsjYntEPBAROyLiwYjavg9HxCPrbL91kuTm8U96safEblM2/nsln9tqHv8Vo7+YLOW1bbX8y8mRY5WlfflrMh3lTVl9rksbP7/xx9edtjWO/7Ila78YC+ZxXBzb1HzM4vzq/J3k3OjS+YhdY+3yT27MBCQRsTMidvXYxrFnf9jTadut8++iD/NM1e8jnqmf/3PRkn8h6T4/Ofu/qCztmy2uipv99vuFdzq1f0f590F2/v/f9vq/kf9k0jhfu7L+Ni789WXHe5per//x5L1aeTxf98n86uqpuYjx5HA96Mb1+9eOLerF/ln+03vb9//tsfZK7I6I7CJ+NCIei4jH89ifiIgnI2Jvl/x/ff2pD3vPf7Cy/BfXdf7XCuPRuqZ9oXT8lx+bGp28Kf9r3c//wVppOl9zO+9/txNXb1czAAAA/PekEbE1knTmRjlNZ2bq35ffEZFWlldWnzuy/PHJxfpvBCajnBZPuiYanofO5bf19fr5iKh/taDYfiB/bvxtaXOtPrOwXFkcdvIw4rZ06P+Zv0vDjg4YOL/XgtGl/8Po0v9hdOn/MLra9P/Nw4gD2HjtPv8/G0IcwMZr6f+m/WCEtL3/v95USzcqFmBjef4Ho0v/h5G0sjlu/SP5roXiL/V4+D1biPJdEcbACpHeFWEoDKgw3PclAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAfvk3AAD//9Ih4c0=") r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148) pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xfecc) r1 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x94) sendfile(r1, r1, 0x0, 0x800000009) 157.71195ms ago: executing program 5 (id=2876): sendmsg(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000240)='K', 0x1}], 0x1, 0x0, 0x0, 0x11000000}, 0x4008014) r0 = syz_clone(0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000540)) ptrace$cont(0x21, r0, 0x0, 0x0) 130.816781ms ago: executing program 4 (id=2878): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000850000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000010c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010300000020000000ee15660000080006000200000018000180140002007665746830"], 0x34}}, 0x44800) 112.688863ms ago: executing program 5 (id=2879): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x39) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x52e, &(0x7f0000000640)="$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") 73.704335ms ago: executing program 4 (id=2880): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000b00), 0x1, 0x55f, &(0x7f0000000580)="$eJzs3d9rU+cbAPDnpK2/v18riGxjjIIXczhT2+6Hg124y7HJhO3ehfZYpKmRJhXbCdOLebObIYMxJozdb/e7lP0D+yuETZAhZbvYTcZJT2q0SRNrtNF8PnDkfXNO+p4n73le35M3IQEMrYnsn0LEyxHxTRJxMCKSfN9o5Dsn1o9bu391NtuSqNc//StpHJfVm3+r+bz9eeWliPjtq4jjhc3tVldWF0rlcrqU1ydri5cmqyurJy4slubT+fTi9MzMqbdnpt97952+xfrG2X++/+T2h6e+Prr23S93D91M4nQcyPe1xvEErrVWJmIif03G4vQjB071obFBkuz0CbAtI3mej0U2BhyMkTzrgRfflxFRB4ZUIv9hSDXnAc17+z7dBz837n2wfgO0Of7R9fdGYk/j3mjfWvLQnVF2vzveh/azNn7989bNbIv+vQ8B0NW16xFxcnR08/iX5OPf9p3s4ZhH2zD+wbNzO5v/vNlu/lPYmP9Em/nP/ja5ux3d879wtw/NdJTN/95vO//dWLQaH8lr/2vM+caS8xfKaTa2/T8ijsXY7qy+1XrOqbU79U77Wud/2Za135wL5udxd3T3w8+ZK9VKTxJzq3vXI15pO/9NNvo/adP/2etxtsc2jqS3Xuu0r3v8T1f9p4jX2/b/gxWtZOv1ycnG9TDZvCo2+/vGkd87tb/T8Wf9v2/r+MeT1vXa6uO38eOef9NO+x6KP3q//nclnzXKu/LHrpRqtaWpiF3Jx5sfn37w3Ga9eXwW/7GjW49/7a7/vRHxeY/x3zj886s9xd+t/5/CImsW/9xj9f/jF+589MUP248/6/+3GqVj+SO9jH+9nuCTvHYAAAAAAAAwaAoRcSCSQnGjXCgUi+uf7zgc+wrlSrV2/Hxl+eJcNL4rOx5jheZK98GWz0NM5Z+HbdanH6nPRMShiPh2ZG+jXpytlOd2OngAAAAAAAAAAAAAAAAAAAAYEPs7fP8/88fITp8d8NT5yW8YXl3zvx+/9AQMJP//w/CS/zC85D8ML/kPw0v+w/CS/zC85D8ML/kPAAAAAAAAAAAAAAAAAAAAAAAAAAAAfXX2zJlsq6/dvzqb1ecurywvVC6fmEurC8XF5dnibGXpUnG+Upkvp8XZymK3v1euVC5NTcfylclaWq1NVldWzy1Wli/Wzl1YLM2n59KxZxIVAAAAAAAAAAAAAAAAAAAAPF+qK6sLpXI5XVJQ2FZhdDBOY3UhYiBO40Up7PTIBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP/BcAAP//8NI25Q==") chdir(&(0x7f0000000100)='./file0\x00') r0 = open(&(0x7f0000000140)='.\x00', 0x8000, 0x112) getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8) getdents(r0, 0x0, 0x0) 73.163505ms ago: executing program 0 (id=2891): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x121202, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x1) ioctl$TIOCVHANGUP(r0, 0x5437, 0x2) capset(&(0x7f0000000ac0)={0x19980330}, &(0x7f0000000180)={0x0, 0x10000, 0xc898, 0x0, 0x0, 0x2}) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) 27.795119ms ago: executing program 1 (id=2881): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"}) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSW(r0, 0x5403, &(0x7f00000000c0)={0x81, 0xd, 0x2c2f, 0x7f, 0x1, "1381146fee396d8d24902b030211e952c832fe"}) ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000018c0)=0x13) 0s ago: executing program 0 (id=2883): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0}, 0x10) r1 = syz_open_dev$usbfs(&(0x7f0000000140), 0x77, 0x3501) ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f00000004c0)={0x4b5a9da54893e123, 0x3, 0x17, 0x2}, 0x8, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0}) close_range(r1, 0xffffffffffffffff, 0x0) kernel console output (not intermixed with test programs): 9054][ T6388] loop3: detected capacity change from 0 to 512 [ 60.525246][ T6388] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 60.541581][ T6388] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.1269: invalid indirect mapped block 4294967295 (level 0) [ 60.560315][ T6388] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.1269: invalid indirect mapped block 4294967295 (level 1) [ 60.564031][ T6394] __nla_validate_parse: 3 callbacks suppressed [ 60.564051][ T6394] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1271'. [ 60.575499][ T6388] EXT4-fs (loop3): 1 orphan inode deleted [ 60.596064][ T6388] EXT4-fs (loop3): 1 truncate cleaned up [ 60.607667][ T6388] EXT4-fs error (device loop3): htree_dirblock_to_tree:1080: inode #2: block 13: comm syz.3.1269: bad entry in directory: rec_len is too small for name_len - offset=12, inode=2, rec_len=12, size=1024 fake=0 [ 60.643282][ T6396] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1272'. [ 60.652959][ T6396] netlink: 312 bytes leftover after parsing attributes in process `syz.2.1272'. [ 60.662100][ T6396] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1272'. [ 60.686346][ T6400] loop3: detected capacity change from 0 to 512 [ 60.692984][ T6400] EXT4-fs: Ignoring removed orlov option [ 60.699255][ T6400] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 60.725913][ T6400] EXT4-fs (loop3): 1 truncate cleaned up [ 60.757671][ T6400] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1273: bg 0: block 256: padding at end of block bitmap is not set [ 60.795418][ T6400] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 60.837179][ T6413] sd 0:0:1:0: device reset [ 60.962572][ T6433] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 61.167902][ T6466] loop2: detected capacity change from 0 to 512 [ 61.168035][ T6468] loop0: detected capacity change from 0 to 512 [ 61.194090][ T6466] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 61.195933][ T6472] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1308'. [ 61.231870][ T6466] EXT4-fs (loop2): 1 orphan inode deleted [ 61.251685][ T6204] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:57: Failed to release dquot type 1 [ 61.253666][ T6466] ext4 filesystem being mounted at /249/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 61.385042][ T6502] loop2: detected capacity change from 0 to 128 [ 61.460568][ T6504] loop1: detected capacity change from 0 to 8192 [ 61.526663][ T6522] netlink: 'syz.3.1328': attribute type 10 has an invalid length. [ 61.540703][ T6522] team0 (unregistering): Port device team_slave_0 removed [ 61.553823][ T6522] team0 (unregistering): Port device team_slave_1 removed [ 61.604551][ T6534] pim6reg: entered allmulticast mode [ 61.612029][ T6534] pim6reg: left allmulticast mode [ 61.902465][ T6586] syzkaller1: entered promiscuous mode [ 61.908450][ T6586] syzkaller1: entered allmulticast mode [ 62.022440][ T6607] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1371'. [ 62.048260][ T6612] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1373'. [ 62.057347][ T6612] netlink: 'syz.4.1373': attribute type 20 has an invalid length. [ 62.065370][ T6612] netlink: 'syz.4.1373': attribute type 21 has an invalid length. [ 62.169147][ T6631] ref_ctr_offset mismatch. inode: 0x5ee offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x20 [ 62.217192][ T6638] loop3: detected capacity change from 0 to 512 [ 62.227263][ T6638] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 62.247122][ T6638] EXT4-fs (loop3): orphan cleanup on readonly fs [ 62.261612][ T6644] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1391'. [ 62.284370][ T6638] EXT4-fs error (device loop3): ext4_do_update_inode:5624: inode #16: comm syz.3.1388: corrupted inode contents [ 62.297411][ T6638] EXT4-fs (loop3): Remounting filesystem read-only [ 62.304095][ T6638] EXT4-fs (loop3): 1 truncate cleaned up [ 62.310456][ T6204] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 62.321027][ T6204] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 62.335990][ T6204] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started [ 62.354149][ T6654] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1403'. [ 62.411589][ T6664] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1396'. [ 62.482461][ T6676] loop3: detected capacity change from 0 to 128 [ 62.494547][ T6676] ext4 filesystem being mounted at /315/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 62.663529][ T6705] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 62.670179][ T6705] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 62.678361][ T6705] vhci_hcd vhci_hcd.0: Device attached [ 62.691743][ T6705] loop2: detected capacity change from 0 to 512 [ 62.716251][ T6705] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 62.725083][ T6705] EXT4-fs (loop2): orphan cleanup on readonly fs [ 62.733298][ T6705] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #16: comm syz.2.1418: corrupted inode contents [ 62.745600][ T6705] EXT4-fs (loop2): Remounting filesystem read-only [ 62.752421][ T6705] EXT4-fs (loop2): 1 truncate cleaned up [ 62.758542][ T6146] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 62.769689][ T6146] __quota_error: 239 callbacks suppressed [ 62.769705][ T6146] Quota error (device loop2): write_blk: dquota write failed [ 62.783538][ T6146] Quota error (device loop2): remove_free_dqentry: Can't write block (5) with free entries [ 62.793960][ T6146] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 62.804898][ T6146] Quota error (device loop2): write_blk: dquota write failed [ 62.812505][ T6146] Quota error (device loop2): free_dqentry: Can't move quota data block (5) to free list [ 62.822706][ T6146] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started [ 62.833030][ T6146] Quota error (device loop2): v2_write_file_info: Can't write info structure [ 62.841931][ T6146] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 62.854680][ T6706] vhci_hcd: cannot find a urb of seqnum 8 max seqnum 0 [ 62.861951][ T6146] vhci_hcd: stop threads [ 62.866630][ T6146] vhci_hcd: release socket [ 62.871189][ T6146] vhci_hcd: disconnect device [ 62.885194][ T3418] vhci_hcd: vhci_device speed not set [ 63.224009][ T29] audit: type=1400 audit(2000000028.780:1684): avc: denied { create } for pid=6718 comm="syz.4.1422" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 63.246963][ T29] audit: type=1400 audit(2000000028.780:1685): avc: denied { read write } for pid=3313 comm="syz-executor" name="loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 63.271928][ T29] audit: type=1400 audit(2000000028.780:1686): avc: denied { open } for pid=3313 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=101 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 63.300268][ T29] audit: type=1400 audit(2000000028.780:1687): avc: denied { ioctl } for pid=3313 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=101 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 63.345173][ T3544] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 63.413059][ T6731] random: crng reseeded on system resumption [ 63.429849][ T6731] loop2: detected capacity change from 0 to 164 [ 63.434126][ T6731] Unable to read rock-ridge attributes [ 63.441873][ T6731] Unable to read rock-ridge attributes [ 63.482410][ T6731] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 63.631685][ T6755] loop3: detected capacity change from 0 to 8192 [ 63.777337][ T6778] serio: Serial port ptm0 [ 63.801232][ T6774] FAT-fs (loop3): error, corrupted directory (invalid entries) [ 63.808975][ T6774] FAT-fs (loop3): Filesystem has been set read-only [ 63.834279][ T6755] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 2075) [ 63.834331][ T6781] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 63.843396][ T6755] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 2075) [ 63.932288][ T6790] loop4: detected capacity change from 0 to 164 [ 63.940443][ T6790] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 63.950705][ T6790] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 64.031185][ T6794] loop4: detected capacity change from 0 to 128 [ 64.041776][ T6794] FAT-fs (loop4): error, fat_free_clusters: deleting FAT entry beyond EOF [ 64.050748][ T6794] FAT-fs (loop4): Filesystem has been set read-only [ 64.629234][ T6813] loop1: detected capacity change from 0 to 128 [ 64.683291][ T6818] loop3: detected capacity change from 0 to 512 [ 64.713714][ T6820] loop1: detected capacity change from 0 to 164 [ 64.724912][ T6820] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 64.725079][ T6824] loop3: detected capacity change from 0 to 512 [ 64.735230][ T6820] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 64.740258][ T6824] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 64.940843][ T6846] vlan2: entered promiscuous mode [ 64.945962][ T6846] macvtap0: entered promiscuous mode [ 65.082499][ T6859] serio: Serial port ptm0 [ 65.815469][ T6874] loop1: detected capacity change from 0 to 512 [ 65.845979][ T6874] ext4 filesystem being mounted at /268/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 65.954146][ T6892] syzkaller1: entered promiscuous mode [ 65.959848][ T6892] syzkaller1: entered allmulticast mode [ 66.006035][ T6896] loop4: detected capacity change from 0 to 8192 [ 66.138704][ T6904] loop1: detected capacity change from 0 to 512 [ 66.149871][ T6908] SELinux: failed to load policy [ 66.154043][ T6904] EXT4-fs: Ignoring removed orlov option [ 66.161252][ T6904] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 66.221283][ T6904] EXT4-fs (loop1): 1 truncate cleaned up [ 66.240217][ T6904] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1516: bg 0: block 256: padding at end of block bitmap is not set [ 66.284745][ T6904] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 66.314847][ T6917] loop2: detected capacity change from 0 to 128 [ 66.359580][ T6920] __nla_validate_parse: 4 callbacks suppressed [ 66.359599][ T6920] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1511'. [ 66.442256][ T6928] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 66.471099][ T6934] loop0: detected capacity change from 0 to 512 [ 66.495618][ T6936] syzkaller1: entered promiscuous mode [ 66.501159][ T6936] syzkaller1: entered allmulticast mode [ 66.507379][ T6934] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 66.515716][ T6934] EXT4-fs (loop0): orphan cleanup on readonly fs [ 66.526131][ T6934] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #16: comm syz.0.1519: corrupted inode contents [ 66.550904][ T6934] EXT4-fs (loop0): Remounting filesystem read-only [ 66.558801][ T6940] loop2: detected capacity change from 0 to 8192 [ 66.559963][ T6934] EXT4-fs (loop0): 1 truncate cleaned up [ 66.572476][ T6169] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 66.583278][ T6169] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 66.594870][ T6169] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started [ 66.637828][ T6950] loop3: detected capacity change from 0 to 512 [ 66.669792][ T6950] ext4 filesystem being mounted at /347/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 66.747545][ T6204] Bluetooth: hci0: Frame reassembly failed (-84) [ 66.839687][ T6970] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1535'. [ 66.882900][ T6975] loop2: detected capacity change from 0 to 512 [ 66.894163][ T6977] syzkaller1: entered promiscuous mode [ 66.901306][ T6977] syzkaller1: entered allmulticast mode [ 66.910289][ T6975] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 66.921097][ T6975] EXT4-fs (loop2): orphan cleanup on readonly fs [ 66.936532][ T6975] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #16: comm syz.2.1538: corrupted inode contents [ 66.949539][ T6975] EXT4-fs (loop2): Remounting filesystem read-only [ 66.956226][ T6975] EXT4-fs (loop2): 1 truncate cleaned up [ 66.962040][ T59] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 66.973108][ T59] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 67.008709][ T59] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started [ 67.044541][ T6987] ref_ctr_offset mismatch. inode: 0x71c offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x20 [ 67.098962][ T6997] IPv6: NLM_F_CREATE should be specified when creating new route [ 67.107308][ T6990] loop2: detected capacity change from 0 to 8192 [ 67.186320][ T7005] loop3: detected capacity change from 0 to 512 [ 67.196482][ T7007] netlink: 'syz.0.1551': attribute type 10 has an invalid length. [ 67.268074][ T7007] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 67.277147][ T7007] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 67.286447][ T7005] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 67.294509][ T7005] EXT4-fs (loop3): orphan cleanup on readonly fs [ 67.342029][ T7007] netlink: 'syz.0.1551': attribute type 10 has an invalid length. [ 67.350201][ T7007] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1551'. [ 67.359640][ T7005] EXT4-fs error (device loop3): ext4_do_update_inode:5624: inode #16: comm syz.3.1552: corrupted inode contents [ 67.405126][ T7010] FAT-fs (loop2): error, corrupted directory (invalid entries) [ 67.413022][ T7010] FAT-fs (loop2): Filesystem has been set read-only [ 67.425336][ T7005] EXT4-fs (loop3): Remounting filesystem read-only [ 67.428230][ T7007] batadv0: entered promiscuous mode [ 67.435440][ T7005] EXT4-fs (loop3): 1 truncate cleaned up [ 67.437925][ T7007] batadv0: entered allmulticast mode [ 67.449908][ T6204] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 67.452945][ T7011] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 67.460613][ T6204] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 67.481614][ T7007] bond0: (slave batadv0): Releasing backup interface [ 67.497723][ T7007] bridge0: port 3(batadv0) entered blocking state [ 67.504442][ T7007] bridge0: port 3(batadv0) entered disabled state [ 67.510699][ T6204] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started [ 67.601185][ T7019] IPv6: NLM_F_CREATE should be specified when creating new route [ 67.635554][ T7023] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3) [ 67.642323][ T7023] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 67.650118][ T7023] vhci_hcd vhci_hcd.0: Device attached [ 67.654005][ T7027] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1559'. [ 67.661579][ T7023] loop4: detected capacity change from 0 to 512 [ 67.686164][ T7023] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 67.694225][ T7023] EXT4-fs (loop4): orphan cleanup on readonly fs [ 67.702421][ T7023] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #16: comm syz.4.1560: corrupted inode contents [ 67.714629][ T7023] EXT4-fs (loop4): Remounting filesystem read-only [ 67.721362][ T7023] EXT4-fs (loop4): 1 truncate cleaned up [ 67.727335][ T6146] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 67.737966][ T6146] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 67.748679][ T6146] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started [ 67.761883][ T7024] vhci_hcd: cannot find a urb of seqnum 8 max seqnum 0 [ 67.769168][ T6146] vhci_hcd: stop threads [ 67.773473][ T6146] vhci_hcd: release socket [ 67.777972][ T6146] vhci_hcd: disconnect device [ 67.995261][ T6204] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 68.004632][ T6204] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 68.307773][ T7036] loop3: detected capacity change from 0 to 512 [ 68.314615][ T29] kauditd_printk_skb: 194 callbacks suppressed [ 68.314630][ T29] audit: type=1400 audit(2000000033.870:1858): avc: denied { mounton } for pid=7031 comm="syz.3.1562" path="/357/file0" dev="tmpfs" ino=1853 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 68.346697][ T7040] sd 0:0:1:0: device reset [ 68.387846][ T7047] loop4: detected capacity change from 0 to 128 [ 68.394994][ T7047] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 68.414875][ T7049] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1565'. [ 68.424123][ T7049] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1565'. [ 68.435590][ T7047] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 68.485403][ T29] audit: type=1400 audit(2000000034.040:1859): avc: denied { create } for pid=7054 comm="syz.3.1569" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 68.516746][ T6169] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 68.535263][ T29] audit: type=1400 audit(2000000034.090:1860): avc: denied { map } for pid=7056 comm="syz.3.1573" path="socket:[15829]" dev="sockfs" ino=15829 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=udp_socket permissive=1 [ 68.610678][ T29] audit: type=1400 audit(2000000034.150:1861): avc: denied { create } for pid=7061 comm="syz.4.1577" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 68.630433][ T29] audit: type=1400 audit(2000000034.150:1862): avc: denied { module_request } for pid=7060 comm="syz.3.1576" kmod="ip6table_" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 68.652171][ T29] audit: type=1400 audit(2000000034.170:1863): avc: denied { ioctl } for pid=7061 comm="syz.4.1577" path="socket:[15842]" dev="sockfs" ino=15842 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 68.677171][ T29] audit: type=1400 audit(2000000034.170:1864): avc: denied { write } for pid=7061 comm="syz.4.1577" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 68.723136][ T7068] sd 0:0:1:0: device reset [ 68.753641][ T7071] loop2: detected capacity change from 0 to 512 [ 68.770149][ T7072] loop4: detected capacity change from 0 to 512 [ 68.785537][ T3640] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 68.792242][ T3544] Bluetooth: hci0: command 0x1003 tx timeout [ 68.854472][ T29] audit: type=1400 audit(2000000034.410:1865): avc: denied { firmware_load } for pid=7080 comm="syz.4.1583" path="/lib/firmware/regulatory.db" dev="sda1" ino=448 scontext=system_u:system_r:kernel_t tcontext=system_u:object_r:lib_t tclass=system permissive=1 [ 68.911126][ T29] audit: type=1326 audit(2000000034.470:1866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7084 comm="syz.4.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb996fceec9 code=0x7ffc0000 [ 68.934919][ T29] audit: type=1326 audit(2000000034.470:1867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7084 comm="syz.4.1586" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb996fceec9 code=0x7ffc0000 [ 68.961704][ T7087] loop0: detected capacity change from 0 to 128 [ 68.968963][ T7087] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 68.982314][ T7087] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 69.020241][ T6146] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 69.053443][ T7099] futex_wake_op: syz.1.1590 tries to shift op by -1; fix this program [ 69.095879][ T7109] loop1: detected capacity change from 0 to 512 [ 69.135899][ T7113] loop2: detected capacity change from 0 to 512 [ 69.267344][ T7136] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1607'. [ 69.329003][ T7146] macvtap1: entered promiscuous mode [ 69.334528][ T7146] macvtap1: entered allmulticast mode [ 69.352689][ T7151] loop1: detected capacity change from 0 to 512 [ 69.378048][ T7151] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #16: comm syz.1.1611: corrupted inode contents [ 69.391906][ T7151] EXT4-fs error (device loop1): ext4_dirty_inode:6509: inode #16: comm syz.1.1611: mark_inode_dirty error [ 69.403805][ T7151] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #16: comm syz.1.1611: corrupted inode contents [ 69.416499][ T7151] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #16: comm syz.1.1611: mark_inode_dirty error [ 69.427966][ T7151] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #16: comm syz.1.1611: corrupted inode contents [ 69.440033][ T7151] EXT4-fs error (device loop1) in ext4_orphan_del:301: Corrupt filesystem [ 69.448777][ T7151] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #16: comm syz.1.1611: corrupted inode contents [ 69.461003][ T7151] EXT4-fs error (device loop1): ext4_truncate:4637: inode #16: comm syz.1.1611: mark_inode_dirty error [ 69.472597][ T7151] EXT4-fs error (device loop1) in ext4_process_orphan:343: Corrupt filesystem [ 69.482417][ T7151] EXT4-fs (loop1): 1 truncate cleaned up [ 69.488689][ T7151] EXT4-fs mount: 38 callbacks suppressed [ 69.488702][ T7151] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 69.507205][ T6192] EXT4-fs error (device loop1): ext4_release_dquot:6981: comm kworker/u8:49: Failed to release dquot type 1 [ 69.508122][ T7151] ext4 filesystem being mounted at /285/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 69.545218][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.090202][ T7157] loop4: detected capacity change from 0 to 512 [ 70.189734][ T7174] loop2: detected capacity change from 0 to 512 [ 70.238700][ T7174] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 70.246868][ T7178] loop0: detected capacity change from 0 to 8192 [ 70.246956][ T7174] EXT4-fs (loop2): orphan cleanup on readonly fs [ 70.261329][ T7174] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #16: comm syz.2.1630: corrupted inode contents [ 70.273654][ T7174] EXT4-fs (loop2): Remounting filesystem read-only [ 70.280556][ T7174] EXT4-fs (loop2): 1 truncate cleaned up [ 70.286394][ T6146] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 70.296983][ T6146] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 70.307785][ T6146] EXT4-fs (loop2): Quota write (off=8, len=24) cancelled because transaction is not started [ 70.318630][ T7174] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 70.411034][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.489652][ T7183] FAT-fs (loop0): error, corrupted directory (invalid entries) [ 70.497530][ T7183] FAT-fs (loop0): Filesystem has been set read-only [ 70.525627][ T7202] 9pnet: p9_errstr2errno: server reported unknown error 00000000000000000000004D†ü0xffffffffffffffff [ 70.540226][ T7178] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 2075) [ 70.550809][ T7190] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 70.568920][ T7178] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 2075) [ 70.613596][ T3310] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 2075) [ 70.790780][ T7227] loop2: detected capacity change from 0 to 128 [ 70.805799][ T7224] netlink: 'syz.1.1641': attribute type 2 has an invalid length. [ 70.813619][ T7224] netlink: 'syz.1.1641': attribute type 1 has an invalid length. [ 70.821482][ T7224] netlink: 144412 bytes leftover after parsing attributes in process `syz.1.1641'. [ 70.870676][ T7234] macvtap1: entered promiscuous mode [ 70.876260][ T7234] macvtap1: entered allmulticast mode [ 70.934955][ T7240] pim6reg1: entered promiscuous mode [ 70.940339][ T7240] pim6reg1: entered allmulticast mode [ 70.959282][ T7244] loop3: detected capacity change from 0 to 1024 [ 70.969397][ T7246] netlink: 'syz.2.1650': attribute type 3 has an invalid length. [ 70.970417][ T7244] EXT4-fs: Ignoring removed orlov option [ 70.987325][ T7244] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 71.024388][ T7251] loop0: detected capacity change from 0 to 2048 [ 71.059022][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.098134][ T7251] Alternate GPT is invalid, using primary GPT. [ 71.104482][ T7251] loop0: p1 p2 p3 [ 71.108297][ T7251] loop0: partition table partially beyond EOD, truncated [ 71.314721][ T7286] netlink: 92 bytes leftover after parsing attributes in process `syz.4.1668'. [ 71.409411][ T7297] veth0_to_team: entered promiscuous mode [ 71.505303][ T7308] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1688'. [ 71.528218][ T7310] macvtap1: entered promiscuous mode [ 71.533601][ T7310] macvtap1: entered allmulticast mode [ 71.544630][ T7310] gretap0: entered promiscuous mode [ 71.550079][ T7310] gretap0: entered allmulticast mode [ 71.564442][ T7315] loop4: detected capacity change from 0 to 1024 [ 71.571526][ T7316] netlink: 'wÞ£ÿ': attribute type 4 has an invalid length. [ 71.572440][ T7310] team0: Device macvtap1 failed to register rx_handler [ 71.590485][ T7310] gretap0: left allmulticast mode [ 71.595860][ T7310] gretap0: left promiscuous mode [ 71.606180][ T7315] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 71.680677][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.209155][ T7361] macvtap1: entered promiscuous mode [ 72.214526][ T7361] macvtap1: entered allmulticast mode [ 72.234642][ T7369] netlink: 92 bytes leftover after parsing attributes in process `syz.1.1701'. [ 72.236167][ T7371] loop3: detected capacity change from 0 to 512 [ 72.250609][ T7371] EXT4-fs: Ignoring removed mblk_io_submit option [ 72.257745][ T7371] EXT4-fs: Mount option(s) incompatible with ext3 [ 72.371067][ T7386] netlink: 232 bytes leftover after parsing attributes in process `syz.3.1720'. [ 72.472589][ T7394] loop3: detected capacity change from 0 to 1024 [ 72.493024][ T7394] EXT4-fs: Ignoring removed orlov option [ 72.500856][ T7397] veth0_to_team: entered promiscuous mode [ 72.510143][ T7394] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 72.553143][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.576640][ T7405] loop1: detected capacity change from 0 to 512 [ 72.583305][ T7405] EXT4-fs: Ignoring removed mblk_io_submit option [ 72.590560][ T7405] EXT4-fs: Mount option(s) incompatible with ext3 [ 72.670722][ T7413] macvtap1: entered promiscuous mode [ 72.676280][ T7413] macvtap1: entered allmulticast mode [ 72.685502][ T7410] loop3: detected capacity change from 0 to 128 [ 72.784800][ T7422] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1724'. [ 72.841318][ T7430] loop3: detected capacity change from 0 to 512 [ 72.863389][ T7434] veth0_to_team: entered promiscuous mode [ 72.875633][ T7438] loop2: detected capacity change from 0 to 128 [ 72.886385][ T7430] EXT4-fs warning (device loop3): ext4_xattr_inode_get:560: inode #11: comm syz.3.1736: EA inode hash validation failed [ 72.887893][ T7438] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 72.912041][ T7430] EXT4-fs error (device loop3): ext4_do_update_inode:5624: inode #15: comm syz.3.1736: corrupted inode contents [ 72.924357][ T7438] ext4 filesystem being mounted at /337/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 72.940760][ T7430] EXT4-fs error (device loop3): ext4_dirty_inode:6509: inode #15: comm syz.3.1736: mark_inode_dirty error [ 72.952512][ T7430] EXT4-fs error (device loop3): ext4_do_update_inode:5624: inode #15: comm syz.3.1736: corrupted inode contents [ 72.974643][ T7430] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2996: inode #15: comm syz.3.1736: mark_inode_dirty error [ 72.997688][ T7430] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2999: inode #15: comm syz.3.1736: mark inode dirty (error -117) [ 73.012395][ T7430] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117) [ 73.046686][ T7430] EXT4-fs (loop3): 1 orphan inode deleted [ 73.053060][ T7430] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 73.077902][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.153326][ T7452] loop4: detected capacity change from 0 to 1024 [ 73.168152][ T7452] EXT4-fs: Ignoring removed bh option [ 73.179703][ T7452] EXT4-fs: inline encryption not supported [ 73.202542][ T7452] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 73.216618][ T7452] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 2: comm syz.4.1735: lblock 2 mapped to illegal pblock 2 (length 1) [ 73.248524][ T7452] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 48: comm syz.4.1735: lblock 0 mapped to illegal pblock 48 (length 1) [ 73.263127][ T7452] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.1735: Failed to acquire dquot type 0 [ 73.281997][ T7452] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6305: Corrupt filesystem [ 73.292105][ T7452] EXT4-fs error (device loop4): ext4_evict_inode:254: inode #11: comm syz.4.1735: mark_inode_dirty error [ 73.304900][ T7452] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 73.315165][ T7452] EXT4-fs (loop4): 1 orphan inode deleted [ 73.317606][ T7464] loop3: detected capacity change from 0 to 2364 [ 73.321505][ T7452] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 73.344271][ T6192] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:49: lblock 1 mapped to illegal pblock 1 (length 1) [ 73.359913][ T29] kauditd_printk_skb: 171 callbacks suppressed [ 73.359929][ T29] audit: type=1400 audit(2000000038.920:2030): avc: denied { bind } for pid=7465 comm="syz.0.1744" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 73.386807][ T6192] Quota error (device loop4): remove_tree: Can't read quota data block 1 [ 73.395361][ T6192] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:49: Failed to release dquot type 0 [ 73.425551][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.436556][ T3314] EXT4-fs error (device loop4): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 73.459648][ T3314] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6305: Corrupt filesystem [ 73.464830][ T29] audit: type=1326 audit(2000000039.020:2031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7471 comm="syz.0.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44954feec9 code=0x7ffc0000 [ 73.493358][ T3314] EXT4-fs error (device loop4): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error [ 73.508507][ T29] audit: type=1326 audit(2000000039.050:2032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7471 comm="syz.0.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44954feec9 code=0x7ffc0000 [ 73.532217][ T29] audit: type=1326 audit(2000000039.070:2033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7471 comm="syz.0.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44954feec9 code=0x7ffc0000 [ 73.555938][ T29] audit: type=1326 audit(2000000039.070:2034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7471 comm="syz.0.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f44954feec9 code=0x7ffc0000 [ 73.579391][ T29] audit: type=1326 audit(2000000039.070:2035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7471 comm="syz.0.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44954feec9 code=0x7ffc0000 [ 73.603089][ T29] audit: type=1326 audit(2000000039.070:2036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7471 comm="syz.0.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44954feec9 code=0x7ffc0000 [ 73.677994][ T29] audit: type=1326 audit(2000000039.090:2037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7475 comm="syz.3.1749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac3956eec9 code=0x7ffc0000 [ 73.703656][ T29] audit: type=1326 audit(2000000039.090:2038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7475 comm="syz.3.1749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fac3956eec9 code=0x7ffc0000 [ 73.865927][ T3317] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 73.877079][ T7494] loop0: detected capacity change from 0 to 512 [ 73.890040][ T7494] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 73.906970][ T7494] EXT4-fs (loop0): orphan cleanup on readonly fs [ 73.922410][ T7494] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.1757: Failed to acquire dquot type 1 [ 73.924866][ T7497] loop4: detected capacity change from 0 to 1024 [ 73.936833][ T7494] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1757: bg 0: block 40: padding at end of block bitmap is not set [ 73.942823][ T7497] EXT4-fs: Ignoring removed orlov option [ 73.975914][ T7499] geneve0: entered allmulticast mode [ 73.986607][ T7494] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 74.002974][ T7497] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 74.020440][ T7494] EXT4-fs (loop0): 1 truncate cleaned up [ 74.026985][ T7494] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 74.055906][ T7504] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1759'. [ 74.066403][ T7504] netlink: 'syz.2.1759': attribute type 7 has an invalid length. [ 74.074160][ T7504] netlink: 'syz.2.1759': attribute type 8 has an invalid length. [ 74.082036][ T7504] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1759'. [ 74.102105][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.202754][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.348047][ T7521] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1767'. [ 74.441429][ T7527] netlink: 5 bytes leftover after parsing attributes in process `syz.0.1770'. [ 74.454652][ T7527] 0ªî{X¹¦: renamed from gretap0 (while UP) [ 74.463133][ T7527] 0ªî{X¹¦: entered allmulticast mode [ 74.473344][ T7527] A link change request failed with some changes committed already. Interface 30ªî{X¹¦ may have been left with an inconsistent configuration, please check. [ 74.575188][ T7534] loop0: detected capacity change from 0 to 512 [ 74.591439][ T7534] EXT4-fs warning (device loop0): ext4_xattr_inode_get:560: inode #11: comm syz.0.1772: EA inode hash validation failed [ 74.651082][ T7534] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #15: comm syz.0.1772: corrupted inode contents [ 74.698773][ T7545] loop1: detected capacity change from 0 to 512 [ 74.705307][ T7534] EXT4-fs error (device loop0): ext4_dirty_inode:6509: inode #15: comm syz.0.1772: mark_inode_dirty error [ 74.743134][ T7534] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #15: comm syz.0.1772: corrupted inode contents [ 74.777912][ T7545] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 74.800100][ T7534] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2996: inode #15: comm syz.0.1772: mark_inode_dirty error [ 74.822936][ T7545] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.835748][ T7534] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2999: inode #15: comm syz.0.1772: mark inode dirty (error -117) [ 74.835883][ T7545] ext4 filesystem being mounted at /326/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 74.865389][ T7534] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -117) [ 74.874793][ T7534] EXT4-fs (loop0): 1 orphan inode deleted [ 74.881664][ T7534] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 74.918351][ T7545] EXT4-fs: Ignoring removed orlov option [ 74.936923][ T7545] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 74.965876][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.980435][ T7545] EXT4-fs (loop1): can't enable nombcache during remount [ 74.995659][ T7561] can0: slcan on ttyS3. [ 75.002595][ T7563] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1781'. [ 75.011789][ T7563] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1781'. [ 75.029350][ T7545] EXT4-fs error (device loop1): __ext4_new_inode:1279: comm syz.1.1777: failed to insert inode 16: doubly allocated? [ 75.041817][ T6221] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 75.055213][ T6221] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 75.067760][ T6221] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 75.076858][ T7559] can0 (unregistered): slcan off ttyS3. [ 75.078068][ T6221] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 75.114850][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.146368][ T7569] loop4: detected capacity change from 0 to 512 [ 75.156029][ T7571] loop3: detected capacity change from 0 to 512 [ 75.157744][ T7569] EXT4-fs error (device loop4): ext4_xattr_inode_iget:446: comm syz.4.1788: error while reading EA inode 32 err=-116 [ 75.176428][ T7569] EXT4-fs (loop4): Remounting filesystem read-only [ 75.176572][ T7571] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 75.184102][ T7569] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -30) [ 75.191549][ T7571] EXT4-fs (loop3): orphan cleanup on readonly fs [ 75.217824][ T7569] EXT4-fs (loop4): 1 orphan inode deleted [ 75.230602][ T7569] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 75.288999][ T7571] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.1790: Failed to acquire dquot type 1 [ 75.338959][ T7571] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1790: bg 0: block 40: padding at end of block bitmap is not set [ 75.365020][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.374667][ T7571] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 75.386773][ T7587] loop1: detected capacity change from 0 to 128 [ 75.393373][ T7571] EXT4-fs (loop3): 1 truncate cleaned up [ 75.400213][ T7571] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 75.414856][ T7587] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 75.431953][ T7587] ext4 filesystem being mounted at /330/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 75.453058][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.591796][ T7605] loop2: detected capacity change from 0 to 512 [ 75.609504][ T7605] EXT4-fs warning (device loop2): ext4_xattr_inode_get:560: inode #11: comm syz.2.1803: EA inode hash validation failed [ 75.635383][ T7605] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #15: comm syz.2.1803: corrupted inode contents [ 75.674522][ T7617] loop4: detected capacity change from 0 to 512 [ 75.686191][ T7621] loop3: detected capacity change from 0 to 512 [ 75.706632][ T7621] EXT4-fs error (device loop3): ext4_xattr_inode_iget:446: comm syz.3.1808: error while reading EA inode 32 err=-116 [ 75.720470][ T7617] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 75.729160][ T7621] EXT4-fs (loop3): Remounting filesystem read-only [ 75.735988][ T7605] EXT4-fs error (device loop2): ext4_dirty_inode:6509: inode #15: comm syz.2.1803: mark_inode_dirty error [ 75.736183][ T7605] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #15: comm syz.2.1803: corrupted inode contents [ 75.748425][ T7621] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -30) [ 75.769546][ T7621] EXT4-fs (loop3): 1 orphan inode deleted [ 75.769712][ T7617] EXT4-fs (loop4): orphan cleanup on readonly fs [ 75.775970][ T7621] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 75.806431][ T7617] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.1809: Failed to acquire dquot type 1 [ 75.817817][ T7605] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2996: inode #15: comm syz.2.1803: mark_inode_dirty error [ 75.844695][ T7605] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2999: inode #15: comm syz.2.1803: mark inode dirty (error -117) [ 75.860623][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.872494][ T7605] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117) [ 75.882121][ T7605] EXT4-fs (loop2): 1 orphan inode deleted [ 75.882156][ T7617] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1809: bg 0: block 40: padding at end of block bitmap is not set [ 75.888372][ T7605] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 75.918604][ T7617] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 75.929945][ T7617] EXT4-fs (loop4): 1 truncate cleaned up [ 75.937088][ T7617] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 75.985436][ T3314] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.000340][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.154228][ T7655] loop2: detected capacity change from 0 to 512 [ 76.161562][ T7655] EXT4-fs: Ignoring removed bh option [ 76.172842][ T7655] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 76.182101][ T7655] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 76.191686][ T7655] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended [ 76.201514][ T7655] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006] [ 76.210542][ T7655] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 76.255654][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.264886][ T6194] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 76.275084][ T6194] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 76.291058][ T6194] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 76.300432][ T6194] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 76.310313][ T3313] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 76.324297][ T7667] loop2: detected capacity change from 0 to 512 [ 76.337399][ T7667] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 76.346241][ T7667] EXT4-fs (loop2): orphan cleanup on readonly fs [ 76.353056][ T7667] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.1827: Failed to acquire dquot type 1 [ 76.366248][ T7667] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1827: bg 0: block 40: padding at end of block bitmap is not set [ 76.390416][ T7674] loop1: detected capacity change from 0 to 1024 [ 76.397310][ T7674] EXT4-fs: Ignoring removed bh option [ 76.403128][ T7674] EXT4-fs: inline encryption not supported [ 76.409893][ T7667] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 76.419314][ T7674] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 76.430242][ T7667] EXT4-fs (loop2): 1 truncate cleaned up [ 76.436821][ T7667] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 76.437722][ T7674] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 2: comm syz.1.1829: lblock 2 mapped to illegal pblock 2 (length 1) [ 76.481696][ T7674] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 48: comm syz.1.1829: lblock 0 mapped to illegal pblock 48 (length 1) [ 76.498020][ T7674] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.1829: Failed to acquire dquot type 0 [ 76.509862][ T7674] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6305: Corrupt filesystem [ 76.510741][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.529202][ T7674] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.1829: mark_inode_dirty error [ 76.547394][ T7674] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 76.564678][ T7674] EXT4-fs (loop1): 1 orphan inode deleted [ 76.570921][ T7674] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 76.585060][ T6183] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:40: lblock 1 mapped to illegal pblock 1 (length 1) [ 76.610845][ T7690] loop2: detected capacity change from 0 to 512 [ 76.618550][ T6183] EXT4-fs error (device loop1): ext4_release_dquot:6981: comm kworker/u8:40: Failed to release dquot type 0 [ 76.640016][ T7694] loop3: detected capacity change from 0 to 128 [ 76.647350][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.656846][ T7690] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.1838: error while reading EA inode 32 err=-116 [ 76.670115][ T3313] EXT4-fs error (device loop1): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 76.683327][ T3313] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6305: Corrupt filesystem [ 76.683724][ T7694] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 76.693037][ T7690] EXT4-fs (loop2): Remounting filesystem read-only [ 76.713079][ T7694] ext4 filesystem being mounted at /425/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 76.713315][ T3313] EXT4-fs error (device loop1): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error [ 76.723913][ T7690] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -30) [ 76.746165][ T7690] EXT4-fs (loop2): 1 orphan inode deleted [ 76.754300][ T7690] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 76.823965][ T7705] __nla_validate_parse: 4 callbacks suppressed [ 76.823983][ T7705] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1846'. [ 76.867047][ T3317] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.148228][ T7729] sd 0:0:1:0: device reset [ 77.411896][ T7745] loop0: detected capacity change from 0 to 512 [ 77.432015][ T7745] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 77.445427][ T7745] ext4 filesystem being mounted at /347/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 77.552585][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.569979][ T3309] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 77.710070][ T7774] loop3: detected capacity change from 0 to 512 [ 77.730900][ T7774] EXT4-fs: Ignoring removed bh option [ 77.737764][ T7774] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 77.747059][ T7774] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 77.756482][ T7774] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended [ 77.766001][ T7774] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006] [ 77.774630][ T7774] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 77.802026][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.080213][ T7789] loop3: detected capacity change from 0 to 512 [ 78.087101][ T7789] EXT4-fs: Ignoring removed mblk_io_submit option [ 78.093982][ T7789] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 78.110524][ T7788] loop1: detected capacity change from 0 to 512 [ 78.119568][ T7788] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 78.119665][ T7789] EXT4-fs (loop3): 1 truncate cleaned up [ 78.131489][ T7788] EXT4-fs (loop1): orphan cleanup on readonly fs [ 78.141597][ T7789] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 78.142989][ T7788] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.1881: Failed to acquire dquot type 1 [ 78.167531][ T7788] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1881: bg 0: block 40: padding at end of block bitmap is not set [ 78.193252][ T7788] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 78.202659][ T7788] EXT4-fs (loop1): 1 truncate cleaned up [ 78.212821][ T7788] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 78.265570][ T7802] EXT4-fs (loop3): shut down requested (2) [ 78.293791][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.332335][ T7814] SELinux: Context system_u:object_r:syslogd_var_lib_t:s0 is not valid (left unmapped). [ 78.353451][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.376056][ T29] kauditd_printk_skb: 308 callbacks suppressed [ 78.376073][ T29] audit: type=1400 audit(2000000043.940:2334): avc: denied { create } for pid=7815 comm="syz.1.1897" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 78.402686][ T7817] rdma_op ffff88811a560980 conn xmit_rdma 0000000000000000 [ 78.403073][ T29] audit: type=1400 audit(2000000043.960:2335): avc: denied { bind } for pid=7815 comm="syz.1.1897" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 78.429361][ T29] audit: type=1400 audit(2000000043.960:2336): avc: denied { write } for pid=7815 comm="syz.1.1897" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 78.456700][ T7822] program syz.1.1900 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 78.471774][ T29] audit: type=1326 audit(2000000043.990:2337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7818 comm="syz.3.1898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac3956eec9 code=0x7ffc0000 [ 78.495331][ T29] audit: type=1326 audit(2000000043.990:2338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7818 comm="syz.3.1898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac3956eec9 code=0x7ffc0000 [ 78.519070][ T29] audit: type=1326 audit(2000000043.990:2339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7818 comm="syz.3.1898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7fac3956eec9 code=0x7ffc0000 [ 78.529833][ T7824] veth0: entered promiscuous mode [ 78.542659][ T29] audit: type=1326 audit(2000000043.990:2340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7818 comm="syz.3.1898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac3956eec9 code=0x7ffc0000 [ 78.556485][ T7823] veth0: left promiscuous mode [ 78.571213][ T29] audit: type=1326 audit(2000000043.990:2341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7818 comm="syz.3.1898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fac3956eec9 code=0x7ffc0000 [ 78.571283][ T29] audit: type=1400 audit(2000000044.020:2342): avc: denied { append } for pid=7821 comm="syz.1.1900" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 78.647782][ T7830] sd 0:0:1:0: device reset [ 78.672261][ T29] audit: type=1400 audit(2000000044.080:2343): avc: denied { setopt } for pid=7823 comm="syz.1.1902" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 78.703014][ T7836] netlink: 'syz.2.1907': attribute type 64 has an invalid length. [ 78.812980][ T7852] program syz.4.1915 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 78.901591][ T7867] loop3: detected capacity change from 0 to 512 [ 79.035800][ T7879] SELinux: Context Ü is not valid (left unmapped). [ 79.639317][ T7916] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1945'. [ 79.687200][ T7916] bond1: entered allmulticast mode [ 79.693450][ T7916] 8021q: adding VLAN 0 to HW filter on device bond1 [ 79.755366][ T7925] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 79.878196][ T7936] program syz.0.1954 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 79.994132][ T7948] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1960'. [ 80.048404][ T7952] 9pnet: p9_errstr2errno: server reported unknown error 0x0000000000000004 [ 80.156883][ T7964] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1968'. [ 80.166393][ T7964] bond0: ARP target 187.187.187.187 is already present [ 80.173337][ T7964] bond0: option arp_ip_target: invalid value (3149642683) [ 80.422985][ T7987] loop1: detected capacity change from 0 to 1024 [ 80.430122][ T7987] EXT4-fs: Ignoring removed orlov option [ 80.438841][ T7987] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 80.471421][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.699731][ T8006] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1987'. [ 80.721021][ T8006] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1987'. [ 81.062210][ T8046] netlink: 'syz.0.2007': attribute type 3 has an invalid length. [ 81.111001][ T8049] random: crng reseeded on system resumption [ 81.313696][ T8070] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem [ 81.339114][ T8074] loop1: detected capacity change from 0 to 512 [ 81.346291][ T8074] EXT4-fs: Ignoring removed oldalloc option [ 81.352641][ T8074] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 81.374841][ T8074] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #16: comm syz.1.2020: invalid indirect mapped block 4294967295 (level 0) [ 81.389236][ T8074] EXT4-fs (loop1): Remounting filesystem read-only [ 81.396045][ T8074] EXT4-fs (loop1): 1 orphan inode deleted [ 81.401869][ T8074] EXT4-fs (loop1): 1 truncate cleaned up [ 81.409434][ T8074] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 81.437909][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.484713][ T8079] loop1: detected capacity change from 0 to 512 [ 81.522165][ T8079] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 81.555056][ T8079] ext4 filesystem being mounted at /378/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 81.625005][ T8079] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.070510][ T8105] loop1: detected capacity change from 0 to 1024 [ 82.103701][ T8105] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 82.133226][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.209124][ T8124] SELinux: Context system_u:object_r:netutils_exec_t:s0 is not valid (left unmapped). [ 82.290893][ T8135] loop1: detected capacity change from 0 to 1024 [ 82.297979][ T8135] EXT4-fs: Ignoring removed nomblk_io_submit option [ 82.307236][ T8136] loop0: detected capacity change from 0 to 1024 [ 82.313846][ T8135] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 82.323163][ T8136] EXT4-fs: Ignoring removed oldalloc option [ 82.325251][ T8135] System zones: 0-1, 3-36 [ 82.329285][ T8136] EXT4-fs: Ignoring removed bh option [ 82.345470][ T8135] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 82.346761][ T8136] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 82.383083][ T8135] capability: warning: `syz.1.2047' uses deprecated v2 capabilities in a way that may be insecure [ 82.459058][ T8147] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2052'. [ 82.653661][ T8171] netlink: 332 bytes leftover after parsing attributes in process `syz.0.2064'. [ 82.664671][ T8171] netlink: 'syz.0.2064': attribute type 9 has an invalid length. [ 82.672478][ T8171] netlink: 108 bytes leftover after parsing attributes in process `syz.0.2064'. [ 82.681581][ T8171] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2064'. [ 82.702978][ T8173] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 82.786043][ T8180] vhci_hcd: invalid port number 96 [ 82.791210][ T8180] vhci_hcd: default hub control req: 0300 vfffa i0060 l0 [ 82.946619][ T8194] loop0: detected capacity change from 0 to 1024 [ 82.982655][ T8196] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.989924][ T8196] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.112284][ T8196] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 83.140806][ T8196] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 83.285674][ T6221] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.294927][ T6221] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.339428][ T6221] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.364982][ T6221] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 83.402574][ T8229] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2090'. [ 83.473020][ T8226] syzkaller1: entered promiscuous mode [ 83.478861][ T8226] syzkaller1: entered allmulticast mode [ 83.556648][ T8240] loop0: detected capacity change from 0 to 512 [ 83.566568][ T8240] __quota_error: 244 callbacks suppressed [ 83.566586][ T8240] Quota error (device loop0): v2_read_file_info: Free block number 1 out of range (1, 6). [ 83.582732][ T8240] EXT4-fs warning (device loop0): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 83.599924][ T8240] EXT4-fs (loop0): mount failed [ 83.659905][ T29] audit: type=1400 audit(2000000049.220:2588): avc: denied { module_request } for pid=8247 comm="syz.0.2098" kmod="crypto-echainiv(authencesn(digest_null,cbc(aes)))" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 83.810233][ T29] audit: type=1400 audit(2000000049.370:2589): avc: denied { create } for pid=8259 comm="syz.3.2100" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 83.871398][ T29] audit: type=1400 audit(2000000049.400:2590): avc: denied { connect } for pid=8259 comm="syz.3.2100" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 83.930018][ T8266] loop3: detected capacity change from 0 to 2048 [ 83.978110][ T8272] loop1: detected capacity change from 0 to 512 [ 83.985033][ T8272] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 84.009388][ T8266] loop3: p1 p2 p3 [ 84.013570][ T8272] EXT4-fs (loop1): 1 truncate cleaned up [ 84.268433][ T8293] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2115'. [ 84.358498][ T29] audit: type=1400 audit(2000000049.920:2591): avc: denied { execute } for pid=8299 comm="syz.4.2118" name="file0" dev="tmpfs" ino=2320 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 84.391524][ T8302] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22 [ 84.399920][ T8302] netdevsim netdevsim4: Direct firmware load for . failed with error -22 [ 84.445588][ T29] audit: type=1400 audit(2000000050.010:2592): avc: denied { setopt } for pid=8305 comm="syz.4.2121" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 84.559181][ T29] audit: type=1326 audit(2000000050.120:2593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8315 comm="syz.4.2124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb996fceec9 code=0x7ffc0000 [ 84.583364][ T29] audit: type=1326 audit(2000000050.120:2594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8315 comm="syz.4.2124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb996fceec9 code=0x7ffc0000 [ 84.607090][ T29] audit: type=1326 audit(2000000050.130:2595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8315 comm="syz.4.2124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=84 compat=0 ip=0x7fb996fceec9 code=0x7ffc0000 [ 84.630749][ T29] audit: type=1326 audit(2000000050.130:2596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8315 comm="syz.4.2124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb996fceec9 code=0x7ffc0000 [ 85.186515][ T8346] loop1: detected capacity change from 0 to 128 [ 85.267649][ T8340] bio_check_eod: 101 callbacks suppressed [ 85.267664][ T8340] syz.1.2137: attempt to access beyond end of device [ 85.267664][ T8340] loop1: rw=2049, sector=169, nr_sectors = 872 limit=128 [ 85.395452][ T8352] ALSA: seq fatal error: cannot create timer (-22) [ 85.427906][ T8356] loop1: detected capacity change from 0 to 1024 [ 85.446852][ T8358] 0ªî{X¹¦: entered promiscuous mode [ 85.456896][ T8356] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 85.473324][ T8356] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 85.485583][ T8356] EXT4-fs (loop1): This should not happen!! Data will be lost [ 85.485583][ T8356] [ 85.495271][ T8356] EXT4-fs (loop1): Total free blocks count 0 [ 85.501316][ T8356] EXT4-fs (loop1): Free/Dirty block details [ 85.507333][ T8356] EXT4-fs (loop1): free_blocks=20480 [ 85.512654][ T8356] EXT4-fs (loop1): dirty_blocks=80 [ 85.517953][ T8356] EXT4-fs (loop1): Block reservation details [ 85.523961][ T8356] EXT4-fs (loop1): i_reserved_data_blocks=5 [ 85.543722][ T6221] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 68 with error 28 [ 85.556318][ T6221] EXT4-fs (loop1): This should not happen!! Data will be lost [ 85.556318][ T6221] [ 85.818592][ T8382] loop4: detected capacity change from 0 to 512 [ 85.828900][ T8382] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.2153: casefold flag without casefold feature [ 85.844130][ T8382] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.2153: couldn't read orphan inode 15 (err -117) [ 86.085512][ T8388] loop3: detected capacity change from 0 to 1024 [ 86.097300][ T8388] EXT4-fs: Ignoring removed orlov option [ 86.103252][ T8392] loop4: detected capacity change from 0 to 512 [ 86.116925][ T8392] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c01c, mo2=0002] [ 86.125701][ T8392] System zones: 0-2, 18-18, 34-35 [ 86.133515][ T8392] ext4 filesystem being mounted at /461/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 86.301193][ T8405] SELinux: policydb version -1076681676 does not match my version range 15-35 [ 86.311161][ T8405] SELinux: failed to load policy [ 86.535296][ T8426] loop0: detected capacity change from 0 to 1024 [ 86.555305][ T8426] EXT4-fs: Ignoring removed orlov option [ 86.705854][ T8449] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 ! [ 86.740063][ T8453] 9pnet_fd: Insufficient options for proto=fd [ 86.782938][ T8460] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 86.798246][ T8457] loop0: detected capacity change from 0 to 512 [ 86.816558][ T8457] EXT4-fs warning (device loop0): ext4_xattr_inode_get:560: inode #11: comm syz.0.2184: EA inode hash validation failed [ 86.859410][ T8457] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #15: comm syz.0.2184: corrupted inode contents [ 86.876902][ T8467] loop3: detected capacity change from 0 to 512 [ 86.886736][ T8466] loop1: detected capacity change from 0 to 1024 [ 86.893506][ T8466] EXT4-fs: Ignoring removed orlov option [ 86.909390][ T8467] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 86.919363][ T8467] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities [ 86.934915][ T8457] EXT4-fs error (device loop0): ext4_dirty_inode:6509: inode #15: comm syz.0.2184: mark_inode_dirty error [ 86.949131][ T8457] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #15: comm syz.0.2184: corrupted inode contents [ 86.965248][ T8457] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2996: inode #15: comm syz.0.2184: mark_inode_dirty error [ 86.976630][ T8467] loop3: detected capacity change from 0 to 512 [ 86.984588][ T8457] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2999: inode #15: comm syz.0.2184: mark inode dirty (error -117) [ 86.985159][ T8467] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 87.016799][ T8457] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -117) [ 87.034054][ T8467] EXT4-fs (loop3): 1 truncate cleaned up [ 87.038726][ T8457] EXT4-fs (loop0): 1 orphan inode deleted [ 87.054668][ T8467] EXT4-fs error (device loop3): __ext4_remount:6748: comm syz.3.2188: Abort forced by user [ 87.077673][ T8467] EXT4-fs (loop3): Remounting filesystem read-only [ 87.084830][ T8467] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 87.255725][ T8488] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 ! [ 93.959218][ T29] kauditd_printk_skb: 41 callbacks suppressed [ 93.959235][ T29] audit: type=1400 audit(2000000059.520:2638): avc: denied { read write } for pid=8504 comm="syz.1.2212" name="rtc0" dev="devtmpfs" ino=244 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 93.989967][ T29] audit: type=1400 audit(2000000059.520:2639): avc: denied { ioctl open } for pid=8504 comm="syz.1.2212" path="/dev/rtc0" dev="devtmpfs" ino=244 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 94.018483][ T8505] rtc_cmos 00:00: Alarms can be up to one day in the future [ 94.099555][ T3385] rtc_cmos 00:00: Alarms can be up to one day in the future [ 94.107445][ T3385] rtc_cmos 00:00: Alarms can be up to one day in the future [ 94.115384][ T3385] rtc_cmos 00:00: Alarms can be up to one day in the future [ 94.123661][ T3385] rtc_cmos 00:00: Alarms can be up to one day in the future [ 94.131242][ T3385] rtc rtc0: __rtc_set_alarm: err=-22 [ 94.268198][ T6194] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.330201][ T6194] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.378184][ T6194] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.407796][ T6194] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.508753][ T6194] bridge_slave_1: left allmulticast mode [ 94.514820][ T6194] bridge_slave_1: left promiscuous mode [ 94.520724][ T6194] bridge0: port 2(bridge_slave_1) entered disabled state [ 94.528622][ T6194] bridge_slave_0: left allmulticast mode [ 94.534457][ T6194] bridge_slave_0: left promiscuous mode [ 94.540166][ T6194] bridge0: port 1(bridge_slave_0) entered disabled state [ 94.580987][ T6194] bond0 (unregistering): (slave bridge0): Releasing backup interface [ 94.628897][ T6194] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 94.638660][ T6194] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 94.648547][ T6194] bond0 (unregistering): Released all slaves [ 94.703559][ T6194] hsr_slave_0: left promiscuous mode [ 94.710332][ T6194] hsr_slave_1: left promiscuous mode [ 94.716184][ T6194] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 94.723611][ T6194] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 94.731407][ T6194] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 94.738973][ T6194] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 94.750362][ T6194] veth1_macvtap: left promiscuous mode [ 94.755950][ T6194] veth0_macvtap: left promiscuous mode [ 94.761791][ T6194] veth1_vlan: left promiscuous mode [ 94.767072][ T6194] veth0_vlan: left promiscuous mode [ 95.109189][ T6194] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 95.120021][ T6194] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 95.177744][ T6194] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 95.188514][ T6194] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 95.237685][ T6194] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 95.248019][ T6194] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 95.298892][ T6194] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 95.311282][ T6194] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 95.321564][ T29] audit: type=1400 audit(2000000060.870:2640): avc: denied { mounton } for pid=8528 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 95.345669][ T29] audit: type=1400 audit(2000000060.890:2641): avc: denied { sys_module } for pid=8528 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 95.425262][ T6194] netdevsim netdevsim4 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 95.435980][ T6194] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 95.498493][ T6194] netdevsim netdevsim4 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 95.509034][ T6194] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 95.542811][ T8528] chnl_net:caif_netlink_parms(): no params data found [ 95.571774][ T6194] netdevsim netdevsim4 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 95.582503][ T6194] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 95.605478][ T8528] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.612669][ T8528] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.620307][ T8528] bridge_slave_0: entered allmulticast mode [ 95.627068][ T8528] bridge_slave_0: entered promiscuous mode [ 95.635774][ T6194] netdevsim netdevsim4 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 95.646446][ T6194] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 95.657962][ T8528] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.665176][ T8528] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.672466][ T8528] bridge_slave_1: entered allmulticast mode [ 95.679210][ T8528] bridge_slave_1: entered promiscuous mode [ 95.696383][ T8528] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 95.707367][ T8528] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 95.728240][ T8528] team0: Port device team_slave_0 added [ 95.734933][ T8528] team0: Port device team_slave_1 added [ 95.759328][ T8528] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 95.766380][ T8528] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 95.792444][ T8528] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 95.807588][ T8528] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 95.814576][ T8528] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 95.843748][ T8528] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 95.860103][ T6194] bridge0: port 3(batadv0) entered disabled state [ 95.867977][ T6194] bridge_slave_1: left allmulticast mode [ 95.873832][ T6194] bridge_slave_1: left promiscuous mode [ 95.879613][ T6194] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.887486][ T6194] bridge_slave_0: left allmulticast mode [ 95.893352][ T6194] bridge_slave_0: left promiscuous mode [ 95.899254][ T6194] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.907710][ T6194] bridge_slave_1: left allmulticast mode [ 95.913492][ T6194] bridge_slave_1: left promiscuous mode [ 95.919328][ T6194] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.927458][ T6194] bridge_slave_0: left allmulticast mode [ 95.933415][ T6194] bridge_slave_0: left promiscuous mode [ 95.939708][ T6194] bridge0: port 1(bridge_slave_0) entered disabled state [ 96.009799][ T6194] bond0 (unregistering): (slave bridge0): Releasing backup interface [ 96.047166][ T6194] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 96.056844][ T6194] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 96.066616][ T6194] bond0 (unregistering): Released all slaves [ 96.075169][ T6194] bond1 (unregistering): Released all slaves [ 96.103204][ T6194] bond0 (unregistering): (slave bridge0): Releasing backup interface [ 96.137271][ T6194] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 96.148900][ T6194] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 96.158651][ T6194] bond0 (unregistering): Released all slaves [ 96.186582][ T8528] hsr_slave_0: entered promiscuous mode [ 96.193308][ T8528] hsr_slave_1: entered promiscuous mode [ 96.199981][ T8528] debugfs: 'hsr0' already exists in 'hsr' [ 96.205892][ T8528] Cannot create hsr debugfs directory [ 96.257950][ T6194] hsr_slave_0: left promiscuous mode [ 96.263719][ T6194] hsr_slave_1: left promiscuous mode [ 96.271880][ T6194] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 96.279472][ T6194] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 96.286990][ T6194] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 96.294431][ T6194] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 96.303973][ T6194] hsr_slave_0: left promiscuous mode [ 96.310114][ T6194] hsr_slave_1: left promiscuous mode [ 96.315759][ T6194] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 96.323159][ T6194] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 96.330707][ T6194] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 96.338149][ T6194] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 96.350703][ T6194] veth1_macvtap: left promiscuous mode [ 96.356322][ T6194] veth0_macvtap: left promiscuous mode [ 96.361837][ T6194] veth1_vlan: left promiscuous mode [ 96.367154][ T6194] veth0_vlan: left promiscuous mode [ 96.373286][ T6194] veth1_macvtap: left promiscuous mode [ 96.379033][ T6194] veth0_macvtap: left promiscuous mode [ 96.384556][ T6194] veth1_vlan: left promiscuous mode [ 96.390036][ T6194] veth0_vlan: left promiscuous mode [ 96.477204][ T6194] team0 (unregistering): Port device team_slave_1 removed [ 96.487345][ T6194] team0 (unregistering): Port device team_slave_0 removed [ 96.679239][ T8528] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 96.688967][ T8528] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 96.698230][ T8528] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 96.707299][ T8528] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 96.741841][ T8528] 8021q: adding VLAN 0 to HW filter on device bond0 [ 96.754874][ T8528] 8021q: adding VLAN 0 to HW filter on device team0 [ 96.764409][ T6210] bridge0: port 1(bridge_slave_0) entered blocking state [ 96.771513][ T6210] bridge0: port 1(bridge_slave_0) entered forwarding state [ 96.782719][ T6183] bridge0: port 2(bridge_slave_1) entered blocking state [ 96.790291][ T6183] bridge0: port 2(bridge_slave_1) entered forwarding state [ 96.853164][ T8528] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 96.958184][ T8528] veth0_vlan: entered promiscuous mode [ 96.966926][ T8528] veth1_vlan: entered promiscuous mode [ 96.982337][ T8528] veth0_macvtap: entered promiscuous mode [ 96.989875][ T8528] veth1_macvtap: entered promiscuous mode [ 97.001156][ T8528] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 97.011809][ T8528] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 97.025029][ T6210] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.034336][ T6210] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.044707][ T6210] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.054423][ T6210] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.079199][ T29] audit: type=1400 audit(2000000062.640:2642): avc: denied { mounton } for pid=8528 comm="syz-executor" path="/root/syzkaller.ux7HMs/syz-tmp" dev="sda1" ino=2050 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 97.104115][ T29] audit: type=1400 audit(2000000062.640:2643): avc: denied { mount } for pid=8528 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 97.126304][ T29] audit: type=1400 audit(2000000062.640:2644): avc: denied { mount } for pid=8528 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 97.148352][ T29] audit: type=1400 audit(2000000062.640:2645): avc: denied { mounton } for pid=8528 comm="syz-executor" path="/root/syzkaller.ux7HMs/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 97.175119][ T29] audit: type=1400 audit(2000000062.640:2646): avc: denied { mounton } for pid=8528 comm="syz-executor" path="/root/syzkaller.ux7HMs/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=21566 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 97.204185][ T29] audit: type=1400 audit(2000000062.670:2647): avc: denied { mounton } for pid=8528 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=536 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 97.390361][ T8570] chnl_net:caif_netlink_parms(): no params data found [ 97.427368][ T8570] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.434947][ T8570] bridge0: port 1(bridge_slave_0) entered disabled state [ 97.442128][ T8570] bridge_slave_0: entered allmulticast mode [ 97.449028][ T8570] bridge_slave_0: entered promiscuous mode [ 97.456872][ T8570] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.464472][ T8570] bridge0: port 2(bridge_slave_1) entered disabled state [ 97.472336][ T8570] bridge_slave_1: entered allmulticast mode [ 97.478900][ T8570] bridge_slave_1: entered promiscuous mode [ 97.497416][ T8570] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 97.508252][ T8570] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 97.527815][ T8570] team0: Port device team_slave_0 added [ 97.534648][ T8570] team0: Port device team_slave_1 added [ 97.550561][ T8570] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 97.557849][ T8570] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 97.584280][ T8570] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 97.596979][ T8570] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.604252][ T8570] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 97.630580][ T8570] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 97.658175][ T8570] hsr_slave_0: entered promiscuous mode [ 97.664366][ T8570] hsr_slave_1: entered promiscuous mode [ 97.670582][ T8570] debugfs: 'hsr0' already exists in 'hsr' [ 97.676340][ T8570] Cannot create hsr debugfs directory [ 97.911162][ T8570] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 97.919983][ T8570] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 97.929603][ T8570] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 97.938489][ T8570] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 97.953530][ T8570] bridge0: port 2(bridge_slave_1) entered blocking state [ 97.960661][ T8570] bridge0: port 2(bridge_slave_1) entered forwarding state [ 97.968072][ T8570] bridge0: port 1(bridge_slave_0) entered blocking state [ 97.975264][ T8570] bridge0: port 1(bridge_slave_0) entered forwarding state [ 98.005715][ T8570] 8021q: adding VLAN 0 to HW filter on device bond0 [ 98.017525][ T6194] bridge0: port 1(bridge_slave_0) entered disabled state [ 98.026375][ T6194] bridge0: port 2(bridge_slave_1) entered disabled state [ 98.038536][ T8570] 8021q: adding VLAN 0 to HW filter on device team0 [ 98.048999][ T6194] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.056270][ T6194] bridge0: port 1(bridge_slave_0) entered forwarding state [ 98.080496][ T6210] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.088185][ T6210] bridge0: port 2(bridge_slave_1) entered forwarding state [ 98.109243][ T8594] loop5: detected capacity change from 0 to 1024 [ 98.142608][ T8594] EXT4-fs: Ignoring removed orlov option [ 98.182553][ T8570] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 98.323389][ T8570] veth0_vlan: entered promiscuous mode [ 98.339826][ T8570] veth1_vlan: entered promiscuous mode [ 98.373723][ T8570] veth0_macvtap: entered promiscuous mode [ 98.395449][ T8570] veth1_macvtap: entered promiscuous mode [ 98.417754][ T8570] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 98.427880][ T8570] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 98.446467][ T8638] sctp: [Deprecated]: syz.5.2218 (pid 8638) Use of struct sctp_assoc_value in delayed_ack socket option. [ 98.446467][ T8638] Use struct sctp_sack_info instead [ 98.452510][ T6194] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.479076][ T6194] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.497153][ T6194] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.509281][ T6194] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.524524][ T8603] chnl_net:caif_netlink_parms(): no params data found [ 98.579591][ T8603] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.587084][ T8603] bridge0: port 1(bridge_slave_0) entered disabled state [ 98.595366][ T8603] bridge_slave_0: entered allmulticast mode [ 98.602720][ T8603] bridge_slave_0: entered promiscuous mode [ 98.610052][ T8603] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.617727][ T8603] bridge0: port 2(bridge_slave_1) entered disabled state [ 98.627381][ T8603] bridge_slave_1: entered allmulticast mode [ 98.634732][ T8603] bridge_slave_1: entered promiscuous mode [ 98.655845][ T8603] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 98.668743][ T8603] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 98.690475][ T8603] team0: Port device team_slave_0 added [ 98.697303][ T8603] team0: Port device team_slave_1 added [ 98.714554][ T8603] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 98.721899][ T8603] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 98.752452][ T8603] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 98.766014][ T8603] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 98.773513][ T8603] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 98.800172][ T8603] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 98.830541][ T8603] hsr_slave_0: entered promiscuous mode [ 98.836840][ T8603] hsr_slave_1: entered promiscuous mode [ 98.843686][ T8603] debugfs: 'hsr0' already exists in 'hsr' [ 98.850920][ T8603] Cannot create hsr debugfs directory [ 98.959524][ T8653] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2220'. [ 98.969268][ T8653] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2220'. [ 99.053383][ T29] kauditd_printk_skb: 7 callbacks suppressed [ 99.053398][ T29] audit: type=1326 audit(2000000064.610:2655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8660 comm="syz.1.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3b2b0eec9 code=0x7ffc0000 [ 99.084817][ T29] audit: type=1326 audit(2000000064.610:2656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8660 comm="syz.1.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3b2b0eec9 code=0x7ffc0000 [ 99.110533][ T29] audit: type=1326 audit(2000000064.610:2657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8660 comm="syz.1.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3b2b0eec9 code=0x7ffc0000 [ 99.134941][ T29] audit: type=1326 audit(2000000064.610:2658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8660 comm="syz.1.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3b2b0eec9 code=0x7ffc0000 [ 99.159856][ T29] audit: type=1326 audit(2000000064.610:2659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8660 comm="syz.1.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3b2b0eec9 code=0x7ffc0000 [ 99.183602][ T29] audit: type=1326 audit(2000000064.610:2660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8660 comm="syz.1.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3b2b0eec9 code=0x7ffc0000 [ 99.207653][ T29] audit: type=1326 audit(2000000064.610:2661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8660 comm="syz.1.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd3b2b0eec9 code=0x7ffc0000 [ 99.231666][ T29] audit: type=1326 audit(2000000064.650:2662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8660 comm="syz.1.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3b2b0eec9 code=0x7ffc0000 [ 99.257354][ T29] audit: type=1326 audit(2000000064.650:2663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8660 comm="syz.1.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3b2b0eec9 code=0x7ffc0000 [ 99.285133][ T29] audit: type=1326 audit(2000000064.650:2664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8660 comm="syz.1.2224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=106 compat=0 ip=0x7fd3b2b0eec9 code=0x7ffc0000 [ 99.347124][ T8603] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 99.360208][ T8603] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 99.374449][ T8603] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 99.387918][ T8603] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 99.389150][ T6214] Bluetooth: hci0: Frame reassembly failed (-84) [ 99.481500][ T8603] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.494054][ T8603] 8021q: adding VLAN 0 to HW filter on device team0 [ 99.503831][ T6194] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.510984][ T6194] bridge0: port 1(bridge_slave_0) entered forwarding state [ 99.527547][ T6183] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.534782][ T6183] bridge0: port 2(bridge_slave_1) entered forwarding state [ 99.555744][ T8603] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 99.566357][ T8603] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 99.644374][ T8603] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 99.678374][ T8692] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2232'. [ 99.687713][ T8692] netlink: 312 bytes leftover after parsing attributes in process `syz.5.2232'. [ 99.697194][ T8692] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2232'. [ 99.826925][ T8603] veth0_vlan: entered promiscuous mode [ 99.838778][ T8603] veth1_vlan: entered promiscuous mode [ 99.870115][ T8603] veth0_macvtap: entered promiscuous mode [ 99.879239][ T8603] veth1_macvtap: entered promiscuous mode [ 99.891174][ T8603] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 99.902935][ T8603] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 99.914431][ T6214] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.926935][ T6214] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.939422][ T6214] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.958190][ T6214] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.993058][ T8720] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 99.993058][ T8720] program syz.5.2241 not setting count and/or reply_len properly [ 100.348269][ T8775] tap0: tun_chr_ioctl cmd 1074025675 [ 100.353696][ T8775] tap0: persist enabled [ 100.362803][ T8775] tap0: tun_chr_ioctl cmd 1074025675 [ 100.368363][ T8775] tap0: persist disabled [ 100.381443][ T8779] netlink: 100 bytes leftover after parsing attributes in process `syz.5.2267'. [ 100.657671][ T8813] netlink: 'syz.5.2283': attribute type 1 has an invalid length. [ 100.887697][ T8838] netlink: 'syz.0.2295': attribute type 1 has an invalid length. [ 101.129261][ T8856] netlink: 14560 bytes leftover after parsing attributes in process `syz.4.2303'. [ 101.300991][ T8880] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2314'. [ 101.310035][ T8880] A link change request failed with some changes committed already. Interface veth0_to_batadv may have been left with an inconsistent configuration, please check. [ 101.338468][ T8882] can0: slcan on ttyS3. [ 101.385480][ T8881] can0 (unregistered): slcan off ttyS3. [ 101.425234][ T3640] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 101.431777][ T3544] Bluetooth: hci0: command 0x1003 tx timeout [ 101.552546][ T8904] hub 6-0:1.0: USB hub found [ 101.560473][ T8904] hub 6-0:1.0: 8 ports detected [ 101.723307][ T8933] netlink: 5452 bytes leftover after parsing attributes in process `syz.3.2340'. [ 101.873221][ T8956] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2351'. [ 101.898638][ T3418] IPVS: starting estimator thread 0... [ 101.995289][ T8960] IPVS: using max 2448 ests per chain, 122400 per kthread [ 102.055544][ T8985] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 102.055544][ T8985] The task syz.5.2355 (8985) triggered the difference, watch for misbehavior. [ 102.194536][ T8999] loop4: detected capacity change from 0 to 2048 [ 102.206767][ T8999] EXT4-fs mount: 24 callbacks suppressed [ 102.206780][ T8999] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 102.239913][ T8603] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters [ 102.259514][ T8603] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.437079][ T9025] rdma_op ffff8881045f5580 conn xmit_rdma 0000000000000000 [ 102.517271][ T9034] sd 0:0:1:0: device reset [ 102.616167][ T9046] loop4: detected capacity change from 0 to 512 [ 102.622983][ T9046] EXT4-fs: Ignoring removed mblk_io_submit option [ 102.631669][ T9046] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 102.653603][ T9046] EXT4-fs (loop4): 1 truncate cleaned up [ 102.662565][ T9046] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 102.726848][ T9059] program syz.0.2394 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 102.736431][ T9060] EXT4-fs (loop4): shut down requested (2) [ 102.842707][ T8603] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.184214][ T9126] loop3: detected capacity change from 0 to 512 [ 103.250509][ T9126] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 103.285622][ T9126] ext4 filesystem being mounted at /533/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 103.309804][ T9138] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 103.398701][ T9148] program syz.1.2434 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 103.398972][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.545724][ T9176] loop5: detected capacity change from 0 to 512 [ 103.551290][ T9178] 9pnet: p9_errstr2errno: server reported unknown error 0x0000000000000004 [ 103.578912][ T9180] sd 0:0:1:0: device reset [ 103.586756][ T9176] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 103.602820][ T9176] ext4 filesystem being mounted at /53/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 103.681830][ T8528] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.957179][ T9232] bond0: ARP target 187.187.187.187 is already present [ 103.964270][ T9232] bond0: option arp_ip_target: invalid value (3149642683) [ 104.065573][ T29] kauditd_printk_skb: 318 callbacks suppressed [ 104.065589][ T29] audit: type=1400 audit(2000000069.550:2983): avc: denied { mount } for pid=9233 comm="syz.3.2476" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 104.094225][ T29] audit: type=1400 audit(2000000069.560:2984): avc: denied { mac_admin } for pid=9233 comm="syz.3.2476" capability=33 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 104.115438][ T29] audit: type=1400 audit(2000000069.560:2985): avc: denied { relabelto } for pid=9233 comm="syz.3.2476" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:syslogd_var_lib_t:s0" [ 104.141963][ T29] audit: type=1400 audit(2000000069.560:2986): avc: denied { associate } for pid=9233 comm="syz.3.2476" name="/" dev="cgroup2" ino=1 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 srawcon="system_u:object_r:syslogd_var_lib_t:s0" [ 104.170049][ T29] audit: type=1400 audit(2000000069.570:2987): avc: denied { unmount } for pid=3309 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 104.190129][ T29] audit: type=1400 audit(2000000069.580:2988): avc: denied { create } for pid=9235 comm="syz.3.2477" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 104.209751][ T29] audit: type=1400 audit(2000000069.580:2989): avc: denied { write } for pid=9235 comm="syz.3.2477" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 104.229401][ T29] audit: type=1326 audit(2000000069.610:2990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9237 comm="syz.1.2479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3b2b0eec9 code=0x7ffc0000 [ 104.253526][ T29] audit: type=1326 audit(2000000069.610:2991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9237 comm="syz.1.2479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=221 compat=0 ip=0x7fd3b2b0eec9 code=0x7ffc0000 [ 104.276956][ T29] audit: type=1326 audit(2000000069.610:2992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9237 comm="syz.1.2479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd3b2b0eec9 code=0x7ffc0000 [ 104.318054][ T9242] rdma_op ffff8881045f6d80 conn xmit_rdma 0000000000000000 [ 104.421788][ T9259] __nla_validate_parse: 9 callbacks suppressed [ 104.421807][ T9259] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2488'. [ 104.440237][ T9259] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2488'. [ 104.449395][ T9260] veth0: entered promiscuous mode [ 104.457324][ T9258] veth0: left promiscuous mode [ 104.514818][ T9265] netlink: 'syz.1.2502': attribute type 3 has an invalid length. [ 104.524394][ T9266] sd 0:0:1:0: device reset [ 104.610851][ T9278] netlink: 'syz.0.2496': attribute type 64 has an invalid length. [ 104.680719][ T9292] loop1: detected capacity change from 0 to 512 [ 104.690571][ T9292] EXT4-fs: Ignoring removed mblk_io_submit option [ 104.697565][ T9292] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 104.716254][ T9292] EXT4-fs (loop1): 1 truncate cleaned up [ 104.724556][ T9292] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 104.764387][ T9299] random: crng reseeded on system resumption [ 104.843916][ T9306] EXT4-fs (loop1): shut down requested (2) [ 104.934896][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.966172][ T9322] loop3: detected capacity change from 0 to 512 [ 104.977804][ T9322] EXT4-fs: Ignoring removed oldalloc option [ 104.986087][ T9322] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 105.004095][ T9322] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #16: comm syz.3.2518: invalid indirect mapped block 4294967295 (level 0) [ 105.032996][ T9322] EXT4-fs (loop3): Remounting filesystem read-only [ 105.051680][ T9322] EXT4-fs (loop3): 1 orphan inode deleted [ 105.057499][ T9322] EXT4-fs (loop3): 1 truncate cleaned up [ 105.065576][ T9322] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 105.092019][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.304948][ T9351] block device autoloading is deprecated and will be removed. [ 105.343851][ T9357] loop5: detected capacity change from 0 to 512 [ 105.359269][ T9357] EXT4-fs: Ignoring removed mblk_io_submit option [ 105.371140][ T9357] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 105.383303][ T9357] EXT4-fs (loop5): 1 truncate cleaned up [ 105.397790][ T9357] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 105.473068][ T9365] EXT4-fs (loop5): shut down requested (2) [ 105.596228][ T8528] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.735685][ T9401] loop4: detected capacity change from 0 to 1024 [ 105.742598][ T9401] EXT4-fs: Ignoring removed nomblk_io_submit option [ 105.760042][ T9401] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 105.762783][ T9404] loop0: detected capacity change from 0 to 512 [ 105.770810][ T9401] System zones: 0-1, 3-36 [ 105.775009][ T9404] EXT4-fs: Ignoring removed mblk_io_submit option [ 105.779988][ T9401] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 105.785895][ T9404] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 105.814296][ T9404] EXT4-fs (loop0): 1 truncate cleaned up [ 105.820614][ T9404] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 105.821738][ T8603] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.895560][ T9407] EXT4-fs (loop0): shut down requested (2) [ 106.004166][ T8570] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 106.195579][ T9412] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2557'. [ 106.220077][ T9412] bond1: entered allmulticast mode [ 106.227441][ T9412] 8021q: adding VLAN 0 to HW filter on device bond1 [ 106.302085][ T9429] loop4: detected capacity change from 0 to 1024 [ 106.333661][ T9429] EXT4-fs: Ignoring removed oldalloc option [ 106.339722][ T9429] EXT4-fs: Ignoring removed bh option [ 106.382147][ T9429] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 106.430359][ T8603] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 106.521520][ T9458] 9pnet: p9_errstr2errno: server reported unknown error 0x0000000000000004 [ 106.674329][ T9478] blktrace: Concurrent blktraces are not allowed on loop6 [ 106.738191][ T9486] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 107.316293][ T9499] vhci_hcd: invalid port number 96 [ 107.321447][ T9499] vhci_hcd: default hub control req: 0300 vfffa i0060 l0 [ 107.415938][ T9508] blktrace: Concurrent blktraces are not allowed on loop8 [ 107.504585][ T9516] loop1: detected capacity change from 0 to 1024 [ 107.534620][ T9516] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 107.560817][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.574817][ T9518] bridge0: port 2(bridge_slave_1) entered disabled state [ 107.582166][ T9518] bridge0: port 1(bridge_slave_0) entered disabled state [ 107.590763][ T9527] program syz.5.2608 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 107.653197][ T9518] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 107.663442][ T9518] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 107.819507][ T6214] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 107.835690][ T6214] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 107.860475][ T6214] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 107.883885][ T6214] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 107.936770][ T9561] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2619'. [ 107.946220][ T9561] bond0: ARP target 187.187.187.187 is already present [ 107.953113][ T9561] bond0: option arp_ip_target: invalid value (3149642683) [ 108.004484][ T9571] loop1: detected capacity change from 0 to 512 [ 108.023137][ T9571] EXT4-fs warning (device loop1): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 108.049875][ T9571] EXT4-fs (loop1): mount failed [ 108.130459][ T9589] loop5: detected capacity change from 0 to 512 [ 108.146466][ T9589] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 108.162460][ T9589] EXT4-fs (loop5): 1 truncate cleaned up [ 108.169002][ T9589] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 108.268358][ T8528] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.353860][ T9608] loop1: detected capacity change from 0 to 2048 [ 108.386762][ T9616] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2646'. [ 108.430368][ T9608] loop1: p1 p2 p3 [ 108.494305][ T9635] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2652'. [ 108.520893][ T9635] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2652'. [ 108.550984][ T9642] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22 [ 108.559640][ T9642] netdevsim netdevsim1: Direct firmware load for . failed with error -22 [ 108.966025][ T9695] random: crng reseeded on system resumption [ 109.439437][ T29] kauditd_printk_skb: 249 callbacks suppressed [ 109.439455][ T29] audit: type=1326 audit(2000000075.000:3241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9707 comm="syz.5.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3611afeec9 code=0x7ffc0000 [ 109.469876][ T29] audit: type=1326 audit(2000000075.000:3242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9707 comm="syz.5.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3611afeec9 code=0x7ffc0000 [ 109.493869][ T29] audit: type=1326 audit(2000000075.000:3243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9707 comm="syz.5.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3611afeec9 code=0x7ffc0000 [ 109.517893][ T29] audit: type=1326 audit(2000000075.000:3244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9707 comm="syz.5.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3611afeec9 code=0x7ffc0000 [ 109.541425][ T29] audit: type=1326 audit(2000000075.000:3245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9707 comm="syz.5.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3611afeec9 code=0x7ffc0000 [ 109.564922][ T29] audit: type=1326 audit(2000000075.000:3246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9707 comm="syz.5.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3611afeec9 code=0x7ffc0000 [ 109.588812][ T29] audit: type=1326 audit(2000000075.000:3247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9707 comm="syz.5.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3611afeec9 code=0x7ffc0000 [ 109.612590][ T29] audit: type=1326 audit(2000000075.000:3248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9707 comm="syz.5.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3611afeec9 code=0x7ffc0000 [ 109.636841][ T29] audit: type=1326 audit(2000000075.080:3249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9707 comm="syz.5.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3611afeec9 code=0x7ffc0000 [ 109.660480][ T29] audit: type=1326 audit(2000000075.080:3250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9707 comm="syz.5.2688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3611afeec9 code=0x7ffc0000 [ 109.719167][ T9718] netlink: 'syz.5.2692': attribute type 3 has an invalid length. [ 109.786991][ T9730] random: crng reseeded on system resumption [ 109.900532][ T9745] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=none:owns=io+mem [ 110.038863][ T9752] loop0: detected capacity change from 0 to 512 [ 110.051834][ T9752] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.2719: casefold flag without casefold feature [ 110.065007][ T9752] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.2719: couldn't read orphan inode 15 (err -117) [ 110.077927][ T9752] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 110.109878][ T8570] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 110.231391][ T9769] loop5: detected capacity change from 0 to 512 [ 110.239768][ T9769] EXT4-fs: Ignoring removed oldalloc option [ 110.249091][ T9771] loop0: detected capacity change from 0 to 512 [ 110.249230][ T9769] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 110.270394][ T9769] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #16: comm syz.5.2716: invalid indirect mapped block 4294967295 (level 0) [ 110.284898][ T9769] EXT4-fs (loop5): Remounting filesystem read-only [ 110.292114][ T9769] EXT4-fs (loop5): 1 orphan inode deleted [ 110.298115][ T9769] EXT4-fs (loop5): 1 truncate cleaned up [ 110.299178][ T9771] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 110.304570][ T9769] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 110.316505][ T9771] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 110.363809][ T8528] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 110.374391][ T9771] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 110.556380][ T9788] SELinux: policydb version -1076681676 does not match my version range 15-35 [ 110.565483][ T9788] SELinux: failed to load policy [ 110.886077][ T9812] loop0: detected capacity change from 0 to 512 [ 110.893202][ T9812] EXT4-fs: Ignoring removed oldalloc option [ 110.899688][ T9812] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 110.912155][ T9812] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #16: comm syz.0.2745: invalid indirect mapped block 4294967295 (level 0) [ 110.926739][ T9812] EXT4-fs (loop0): Remounting filesystem read-only [ 110.933461][ T9812] EXT4-fs (loop0): 1 orphan inode deleted [ 110.939365][ T9812] EXT4-fs (loop0): 1 truncate cleaned up [ 110.945815][ T9812] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 110.970262][ T8570] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.009438][ T9822] loop4: detected capacity change from 0 to 512 [ 111.016026][ T9822] EXT4-fs: Ignoring removed oldalloc option [ 111.023169][ T9822] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 111.040104][ T9822] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #16: comm syz.4.2749: invalid indirect mapped block 4294967295 (level 0) [ 111.058036][ T9822] EXT4-fs (loop4): Remounting filesystem read-only [ 111.065033][ T9822] EXT4-fs (loop4): 1 orphan inode deleted [ 111.070956][ T9822] EXT4-fs (loop4): 1 truncate cleaned up [ 111.071426][ T9822] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 111.095927][ T8603] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.953261][ T9837] loop0: detected capacity change from 0 to 512 [ 111.964115][ T9843] loop4: detected capacity change from 0 to 512 [ 111.969867][ T9837] EXT4-fs: Ignoring removed oldalloc option [ 111.976839][ T9837] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 111.988778][ T9843] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 111.995209][ T9837] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #16: comm syz.0.2756: invalid indirect mapped block 4294967295 (level 0) [ 112.001639][ T9843] ext4 filesystem being mounted at /102/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 112.016643][ T9837] EXT4-fs (loop0): Remounting filesystem read-only [ 112.032593][ T9837] EXT4-fs (loop0): 1 orphan inode deleted [ 112.038426][ T9837] EXT4-fs (loop0): 1 truncate cleaned up [ 112.044756][ T9837] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 112.118588][ T9843] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 112.127798][ T8570] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 112.174737][ T9862] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2754'. [ 113.117040][ T9885] loop5: detected capacity change from 0 to 512 [ 113.143433][ T9885] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 113.156776][ T9885] ext4 filesystem being mounted at /128/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 113.213826][ T9885] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 113.241523][ T9901] loop3: detected capacity change from 0 to 1024 [ 113.298271][ T9901] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 113.311820][ T9912] loop1: detected capacity change from 0 to 1024 [ 113.319122][ T9912] EXT4-fs: Ignoring removed oldalloc option [ 113.325132][ T9912] EXT4-fs: Ignoring removed bh option [ 113.351386][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 113.363322][ T9912] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 113.391738][ T3313] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 113.493071][ T9945] loop3: detected capacity change from 0 to 1024 [ 113.500202][ T9945] EXT4-fs: Ignoring removed nomblk_io_submit option [ 113.508176][ T9945] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 113.516443][ T9945] System zones: 0-1, 3-36 [ 113.521681][ T9945] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 113.549908][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 113.580558][ T9954] loop3: detected capacity change from 0 to 512 [ 113.598235][ T9954] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c01c, mo2=0002] [ 113.606739][ T9954] System zones: 0-2, 18-18, 34-35 [ 113.609646][ T9957] loop4: detected capacity change from 0 to 512 [ 113.614666][ T9954] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 113.631467][ T9954] ext4 filesystem being mounted at /599/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 113.645197][ T9957] EXT4-fs warning (device loop4): ext4_xattr_inode_get:560: inode #11: comm syz.4.2795: EA inode hash validation failed [ 113.674208][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 113.689582][ T9957] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #15: comm syz.4.2795: corrupted inode contents [ 113.703679][ T9968] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 ! [ 113.713111][ T9957] EXT4-fs error (device loop4): ext4_dirty_inode:6509: inode #15: comm syz.4.2795: mark_inode_dirty error [ 113.739061][ T9957] EXT4-fs error (device loop4): ext4_do_update_inode:5624: inode #15: comm syz.4.2795: corrupted inode contents [ 113.765438][ T9957] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2996: inode #15: comm syz.4.2795: mark_inode_dirty error [ 113.777966][ T9957] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2999: inode #15: comm syz.4.2795: mark inode dirty (error -117) [ 113.790847][ T9957] EXT4-fs warning (device loop4): ext4_evict_inode:274: xattr delete (err -117) [ 113.800322][ T9957] EXT4-fs (loop4): 1 orphan inode deleted [ 113.806409][ T9971] loop3: detected capacity change from 0 to 128 [ 113.806576][ T9957] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 113.843421][ T8603] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 113.866967][ T9966] syz.3.2802: attempt to access beyond end of device [ 113.866967][ T9966] loop3: rw=2049, sector=169, nr_sectors = 872 limit=128 [ 114.284994][T10000] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 ! [ 114.553395][ T29] kauditd_printk_skb: 87 callbacks suppressed [ 114.553413][ T29] audit: type=1400 audit(2000000080.110:3338): avc: denied { remount } for pid=10006 comm="syz.0.2819" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 114.594313][ T29] audit: type=1400 audit(2000000080.150:3339): avc: denied { mount } for pid=10010 comm="syz.0.2820" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 114.733170][T10021] ALSA: seq fatal error: cannot create timer (-22) [ 114.756501][T10023] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 115.040803][ T29] audit: type=1326 audit(2000000080.600:3340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10035 comm="syz.5.2830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3611afeec9 code=0x7ffc0000 [ 115.064448][ T29] audit: type=1326 audit(2000000080.600:3341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10035 comm="syz.5.2830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3611afeec9 code=0x7ffc0000 [ 115.097639][ T29] audit: type=1326 audit(2000000080.600:3342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10035 comm="syz.5.2830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=67 compat=0 ip=0x7f3611afeec9 code=0x7ffc0000 [ 115.121706][ T29] audit: type=1326 audit(2000000080.600:3343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10035 comm="syz.5.2830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3611afeec9 code=0x7ffc0000 [ 115.145416][ T29] audit: type=1326 audit(2000000080.630:3344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10035 comm="syz.5.2830" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3611afeec9 code=0x7ffc0000 [ 115.187792][ T29] audit: type=1400 audit(2000000080.730:3345): avc: denied { ioctl } for pid=10038 comm="syz.5.2832" path="socket:[25580]" dev="sockfs" ino=25580 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 115.235775][T10049] sch_tbf: burst 32855 is lower than device lo mtu (65550) ! [ 115.237170][T10040] netlink: 332 bytes leftover after parsing attributes in process `syz.1.2833'. [ 115.252588][T10040] netlink: 'syz.1.2833': attribute type 9 has an invalid length. [ 115.260367][T10040] netlink: 108 bytes leftover after parsing attributes in process `syz.1.2833'. [ 115.269547][T10040] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2833'. [ 115.383665][T10052] netlink: 332 bytes leftover after parsing attributes in process `syz.5.2849'. [ 115.393142][T10052] netlink: 'syz.5.2849': attribute type 9 has an invalid length. [ 115.401131][T10052] netlink: 108 bytes leftover after parsing attributes in process `syz.5.2849'. [ 115.410307][T10052] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2849'. [ 115.526175][T10055] bridge0: port 2(bridge_slave_1) entered disabled state [ 115.533363][T10055] bridge0: port 1(bridge_slave_0) entered disabled state [ 115.616438][T10055] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 115.628736][T10055] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 115.685468][ T6194] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 115.694855][ T6194] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 115.724430][ T6194] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 115.744639][ T29] audit: type=1326 audit(2000000081.300:3346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10069 comm="syz.0.2853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f324367eec9 code=0x7ffc0000 [ 115.768241][ T29] audit: type=1326 audit(2000000081.300:3347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10069 comm="syz.0.2853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f324367eec9 code=0x7ffc0000 [ 115.777462][T10075] vhci_hcd: invalid port number 96 [ 115.796963][T10075] vhci_hcd: default hub control req: 0300 vfffa i0060 l0 [ 115.797652][ T6194] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 115.905346][T10085] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 116.080789][T10117] loop3: detected capacity change from 0 to 1024 [ 116.116012][T10117] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 116.231303][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 116.250904][T10131] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 116.472050][T10148] sch_tbf: burst 32855 is lower than device lo mtu (65550) ! [ 116.528197][T10157] loop3: detected capacity change from 0 to 512 [ 116.545904][T10157] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 116.557228][T10157] EXT4-fs (loop3): 1 truncate cleaned up [ 116.563402][T10157] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 116.583463][T10163] loop5: detected capacity change from 0 to 512 [ 116.601792][T10163] EXT4-fs warning (device loop5): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 116.629068][T10163] EXT4-fs (loop5): mount failed [ 116.652865][T10169] loop4: detected capacity change from 0 to 1024 [ 116.683417][T10157] ================================================================== [ 116.683899][T10173] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 116.691646][T10157] BUG: KCSAN: data-race in __xa_clear_mark / xas_find_marked [ 116.707768][T10157] [ 116.710105][T10157] read-write to 0xffff888100602fe0 of 8 bytes by interrupt on cpu 0: [ 116.718217][T10157] __xa_clear_mark+0xf5/0x1e0 [ 116.722917][T10157] __folio_end_writeback+0xf7/0x3b0 [ 116.728144][T10157] folio_end_writeback_no_dropbehind+0x6d/0x1b0 [ 116.734412][T10157] folio_end_writeback+0x1c/0x70 [ 116.739365][T10157] ext4_finish_bio+0x459/0x8c0 [ 116.744160][T10157] ext4_end_bio+0x298/0x3b0 [ 116.748689][T10157] bio_endio+0x37b/0x420 [ 116.752971][T10157] blk_update_request+0x336/0x730 [ 116.758018][T10157] blk_mq_end_request+0x26/0x50 [ 116.762887][T10157] lo_complete_rq+0x98/0x140 [ 116.767498][T10157] blk_done_softirq+0x77/0xb0 [ 116.772190][T10157] handle_softirqs+0xb7/0x290 [ 116.776889][T10157] run_ksoftirqd+0x1c/0x30 [ 116.781329][T10157] smpboot_thread_fn+0x32b/0x530 [ 116.786274][T10157] kthread+0x489/0x510 [ 116.790363][T10157] ret_from_fork+0x122/0x1b0 [ 116.794977][T10157] ret_from_fork_asm+0x1a/0x30 [ 116.799754][T10157] [ 116.802110][T10157] read to 0xffff888100602fe0 of 8 bytes by task 10157 on cpu 1: [ 116.809745][T10157] xas_find_marked+0x218/0x620 [ 116.814630][T10157] find_get_entry+0x5d/0x380 [ 116.819257][T10157] filemap_get_folios_tag+0x13b/0x210 [ 116.824646][T10157] file_write_and_wait_range+0x1ea/0x2c0 [ 116.830295][T10157] generic_buffers_fsync_noflush+0x45/0x120 [ 116.836203][T10157] ext4_sync_file+0x1ab/0x690 [ 116.840914][T10157] vfs_fsync_range+0x10d/0x130 [ 116.845687][T10157] ext4_buffered_write_iter+0x34f/0x3c0 [ 116.851280][T10157] ext4_file_write_iter+0xe27/0xf60 [ 116.856506][T10157] iter_file_splice_write+0x663/0xa60 [ 116.861950][T10157] direct_splice_actor+0x153/0x2a0 [ 116.867094][T10157] splice_direct_to_actor+0x30f/0x680 [ 116.872480][T10157] do_splice_direct+0xda/0x150 [ 116.877254][T10157] do_sendfile+0x380/0x650 [ 116.881687][T10157] __x64_sys_sendfile64+0x105/0x150 [ 116.886904][T10157] x64_sys_call+0x2bb4/0x3000 [ 116.891592][T10157] do_syscall_64+0xd2/0x200 [ 116.896108][T10157] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 116.902011][T10157] [ 116.904336][T10157] value changed: 0x000000000000ffff -> 0x000000000000fff8 [ 116.911445][T10157] [ 116.913773][T10157] Reported by Kernel Concurrency Sanitizer on: [ 116.919937][T10157] CPU: 1 UID: 0 PID: 10157 Comm: syz.3.2875 Not tainted syzkaller #0 PREEMPT(voluntary) [ 116.929754][T10157] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 116.939824][T10157] ================================================================== [ 116.951665][T10169] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 116.978097][ T8603] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 116.996952][ T3309] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.