last executing test programs: 1.030196365s ago: executing program 2 (id=3899): bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x5f, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r0 = socket$kcm(0xa, 0x922000000003, 0x11) sendmsg$kcm(r0, &(0x7f0000000100)={&(0x7f00000002c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1={0xff, 0x2}}, 0x80, &(0x7f0000001500)=[{&(0x7f0000000000), 0x4c00}], 0x1}, 0x0) recvmsg$kcm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000340)=""/4106, 0x5a8}], 0x10}, 0x0) 1.006692287s ago: executing program 2 (id=3901): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001c2df6f270000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newtaction={0x68, 0x30, 0x871a15abc695fb3d, 0x8000000, 0x0, {}, [{0x54, 0x1, [@m_tunnel_key={0x50, 0x1, 0x0, 0x0, {{0xf}, {0x20, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0x0, 0x0, 0x0, 0x10001}, 0x1}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0) 979.82457ms ago: executing program 2 (id=3904): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x6, 0x7ffc1ffb}]}) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100000620702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f00000008c0)='kmem_cache_free\x00', r0}, 0x10) io_getevents(0x0, 0x0, 0x0, 0x0, 0x0) 931.724694ms ago: executing program 2 (id=3907): capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000140)) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), r0) sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010010000000000000000100000000001c00014100"], 0x38}}, 0x0) 881.034759ms ago: executing program 2 (id=3909): mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) mount(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000340)='tracefs\x00', 0x1, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000400)=""/258, 0x102) 880.859278ms ago: executing program 2 (id=3911): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @private2}]}, &(0x7f0000000180)=0x10) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt(r1, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8) 840.228292ms ago: executing program 3 (id=3914): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) msgrcv(0x0, 0x0, 0x0, 0x0, 0x0) 755.79469ms ago: executing program 0 (id=3916): bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x300001a, &(0x7f0000000500)=ANY=[], 0x1, 0x2b6, &(0x7f00000000c0)="$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") mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0) chmod(&(0x7f0000000080)='./file0\x00', 0x146) 727.250193ms ago: executing program 0 (id=3918): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000140)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050000000850000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r0}, 0x10) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x549, &(0x7f0000001800)="$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") mkdir(&(0x7f0000000100)='./file0\x00', 0x0) 648.64152ms ago: executing program 3 (id=3922): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000002304e800000000000000ea850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="3400000019000100000000000013000002001400fc0000000000000006001d000000000008001e0003"], 0x34}}, 0x0) 617.469883ms ago: executing program 3 (id=3923): r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002) r1 = fcntl$dupfd(r0, 0x0, r0) r2 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000100)={0xb0000008}) 361.764477ms ago: executing program 3 (id=3926): sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0xaef, 0x0}, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x6, 0x1, &(0x7f00000000c0)=@gcm_256={{0x303}, '\x00', "5171bb672965593497418688ac68cb126474cd3660dab9e2086e246728d7a040", "05e2e505", "12000700"}, 0x38) setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000020, &(0x7f0000000040)=0xa, 0x1959cc36) 332.803129ms ago: executing program 0 (id=3928): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x99, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) syz_read_part_table(0x1065, &(0x7f0000002100)="$eJzsz7FNxEAQhtF/vV5pndKA2yAkQCIhBFEOIFECFRASkdMBXdCCGzCSse46uLvgvXDm00gTzmoa+tVXcv1W39OTvCR5aklq6rGak++f+5KkfSw9tdTcjNumJ3PZq5qMd8tD2vpcftdhm5Xb6b9qezS8zofD9fHzhK8CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwMX6CwAA//9BDg4U") 285.215603ms ago: executing program 3 (id=3929): r0 = inotify_init1(0x0) inotify_add_watch(r0, &(0x7f0000000080)='.\x00', 0x2000434) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000700)='.\x00', 0x0, 0x0) getdents(r1, &(0x7f0000000100)=""/24, 0x53) 284.921553ms ago: executing program 3 (id=3931): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) sendmmsg$inet6(r0, &(0x7f0000008ec0)=[{{&(0x7f0000000080)={0xa, 0x4e21, 0x0, @private2, 0x1ac5}, 0x1c, &(0x7f0000000380)=[{&(0x7f0000000280)="d4", 0x1}], 0x1}}], 0x1, 0x4000010) sendto$inet6(r0, &(0x7f0000000200)="18", 0x1, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}, 0x1c) setsockopt(r0, 0x84, 0x7f, &(0x7f00000001c0)="020000000980ffff", 0x8) 254.427856ms ago: executing program 1 (id=3934): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) syslog(0x2, &(0x7f0000001100)=""/4086, 0xff6) 218.809159ms ago: executing program 4 (id=3935): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = memfd_create(&(0x7f0000000540)='-B\xd5NI\xc5j\x9api\x87\xb9\x02\x95$\xf1\f\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xc0\xd7Uw\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xc5\xad;\xef\xcf)\x94?\x96\\\xf6\xc6\x95\x03\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xaf\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\b\x00\xce\x8b\x19\xea\xef\xe3\x00\x00\xd9\x03\xc4\'\x1c\xcb\x9c\xbf\xb2y\xd5\x85\xdbib;e+\x12\xc9\x8c\xebn\xddx`\xb1+-\xf6\xd1\x98*-\xf7\f\xc2\x12\x86\xb5?\xaa\xe9\xe7J\xef\xb4\xa5\xf7\xceUk\xd0\xe4$\xaba\xef\xa6\'B\n\xff\xbe\x86\x01!+\x97\x100\fZ|[B\x86{\xb8?v.\xe3^\xc0cS\x00x\xf8`\xec\xc3.\x15\xcd\x18-\xea\xc0\nnw\xe7B\x91\xc7;\xb0k!\xcf[/\xc8j\xd4\xee\x82\x06\x13\xed\xe7\xfb\xaf\x83n0\x96\xff\x93H:\x03\xfdyKV\x15Z\xa7Z\xd8\x96\xea\x95\xc7}\xffX\xc1\x1caG\xda\x99\x8cK\x8b\x13\xca\x89\x01\xd2\xb4s\xb6\xce\xe0\x1d(\x95\x92x\x9e\xf4wE\x89D\x99N\xb1T\xfd#\x92%\xcf4O\xb7\xac\xa40l\x92\n\x8f\x99\x11\xb5\xa5\x10\xb2g\xc0\x96\x82\x86\x82\x9d\xba~\x9b\x00\x1a\xf2f4(u\xe6', 0x4) r1 = dup(r0) finit_module(r1, 0x0, 0x2) 218.553449ms ago: executing program 4 (id=3936): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup(r0) ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x13d, 0x0, 0xd6e}}) ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000000000)={0x2, {0x2, 0x4}}) 212.96854ms ago: executing program 1 (id=3937): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x2000480, &(0x7f0000000100), 0x5, 0x764, &(0x7f0000000f80)="$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") mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x13, 0x0, &(0x7f0000000040)) 202.605941ms ago: executing program 4 (id=3938): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) r1 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) writev(r1, &(0x7f00000025c0)=[{&(0x7f0000000240)='4', 0x1}], 0x1) 176.131774ms ago: executing program 4 (id=3939): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x18) copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x3, 0x0) 126.043028ms ago: executing program 4 (id=3940): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000001340)=@newtaction={0x488, 0x30, 0x12f, 0x0, 0x0, {}, [{0x474, 0x1, [@m_police={0x470, 0x1, 0x0, 0x0, {{0xb}, {0x444, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc74, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x7, 0x0, 0x0, 0x0, 0x0, 0x7}}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa, {0x1}}}}]}]}, 0x488}}, 0x0) 116.284489ms ago: executing program 4 (id=3941): r0 = socket$inet_udp(0x2, 0x2, 0x0) recvmmsg(r0, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x40000000000012d, 0x0, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) syz_emit_ethernet(0xd81, &(0x7f0000000d40)={@local, @broadcast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xd73, 0x0, 0x0, 0x0, 0x11, 0x0, @private, @broadcast}, {0x0, 0x4e20, 0xd5f, 0x0, @opaque="3b64747a706194e78cdabe23a84af32813a76afed267f53a08e00dc66ef29beb30054084bdf524a745ca18784b115fbbf02ff0929032a441b168c4b25ef61954688a358287c6c9bd71e95591ef0523ec0376c5158d48d73933d45217f737f6a9137a16598dac5b1f41c43638c2da8571912dddd34db1a473f3e4b1d3b73ae08d1e9f80c8af1dffcce7b2d609f3e8193dceaddd211ccae36c03fa1e78a63d5e4f5e500205a23e45b8656b9a36eddc120daeebae5f8341dcd2643d87545c18c26674d86d59a39e722c19d0fe14b0e89a995ad314db9e330f28b33468b40f7a83e66c9de6f25d5da50326df72b45bb0892aa7944ae83289b673a7efe9f4f78043c88741717f7894ab263186e8fad4aef2409aa6216503ee34952addad4ab6feff8a397866d732edfc6e3328f12bdd738be8ccd4f8c8840ef0b46d79b3a4d634318e8ccc434df797d871f9e2aa3784a6f830d24853eff768734b2b690be018f78e996c5eddda5bd7849f867c4d3df130a3183730c5b9cce1e9b68e7f3db089ad3d11edbaf137772d316dd581956706e5daf587929a27bf2db6e08f7fcb6c1bf2e55818ed084abef402ea1d72625a9b31cff1955fa2a43c10cc83a0cb9a7679cec36dc0caf5dee00ddf1de0644fcf83048a5cea1dc3149eb56e639e09e4bdd42ce7750faff4b5b275dcbb29b48620ba5f8a74c081eff11212b873a5b7f598135949b32abcd690f9d1723399ff9e5ad450e81637a7743876cccacc7bcac724f4aa6aaac58a56388b74950c2141bfb110f51a2f17d1ab3a35572855253238ba431708953c0f01c187a82f3f499375c063db38ca93df735bf4fe54a395f5794a162af1349446c2c4518b4f0026e98cb42a0c1fa240d75db04150118c7f9342bb2f8c1bd41e78b483aff0892f81a7f889c2e8682d41dd4c82691b6ee2d69933f35d1f39427fbd1421ee89eb27c9e410bb723edee8cfde039693952e35be6f8a5a9191dbe26bacb92f5097300e47d7045c51fe40549b9e9e438f8580d202913807096491a8fb6ae573319d8155167412d7a6ee6ab623edd1107f96e1dfb5472d2c5d18afe9c5c287923057ca1edf40ede2742667f89fd81b59d2d5a4d7712154fa7296b65defa50117d7e8f9e49c79df780c8f44c47dd966f46b9a9d494189f5ce2c93db87ccfdc40897da5b4f3597e6936bcd41b02986f7344b3e1bd72e33876d40a6a4c00c045eebf0a02486297eef4ef9086b8cdab5abc6b385207addd33342b22997591aa7ae8f9e3ebf45b470be1f2fbb74e8a8174139929fa5f6a8344bcebdf376f5fa842a4319428c68c581d1b899564f0b8ad3ad0c8a61d41690d4c529b200d74b47acb85e6d1734b4b20cac7c8a35aa1312316685113a4ebe8d85878d0a8e102d0f8dd61671c0f2555397f93eece359193b9692a5a1e87d11d5e2e12eca8b4683a42c378f048280fe5218a2c85d2c0944496767c3a2fcdb6be979b767b1379428c394b6fc66b1f3843cc0f0d8fefdf2a07ab2b99fcd454b97ed8037b3a4f4045474718e196a4855c6fec7a9af2eb6089c09bcefd61b504e01062a30faedb5816b6c0017f106bd72b5d7cd8e5cbd28bddc67803dd4b8bb6ca050f1a2e3f963b2301730ed363a499142bb9d844437cd59ae2bc5e1e3e6c694e477ed2b02373750b1f7aad8c8e1c2dfef891ef4aeaaf6be09d46de01e416de5225d3ecbe7e28b8ae4524d97fe97d962faff1d88f036d1a21822a45cfaaf7ea3b447f4c7db09a60ac98bc6b515769a69cf65850e497673bc510a5b0f4032dfa3c8ef878b575e2625d8d64fb8802e8c1046f6e59d536ca8741561a7c2ca2532b73f6edd72345a390f75f10297b75bd20a2342eed60965f28c2fc662d84581e784f61674c7f93c90a6ee0b5f26eb3c4f9b620b0058dea10fab284146820eaf4b270b0e2bf407c8dda0ce5f904f1f2ee56e2d41f40da42154ad20438859e9c6aa95e3d72bc701f37485ac81699714bcb19f081a3069ae723d282f097d2459d1d892d3cbb16bb0d7135526acefce79be4115c97c5d8197cf78e77a38efdf2406fd990d22118b35554eb6ca0e3359d0be66f40fa04c8dc4f04d176499fd134a83b8543fcd33603b19cd2abdc0d034fa396ec358240614f7967e8eb3e0ccff47b51b901103b154cc3ced69b7d6349e2882bf486849c03f25adae32b0ac835b42e202a2a11bbc0f505444f3bcc21a052fe25ae6694b1a59fd69054c21a75788a8f2aa9198a8ca7be19776209bbd9c784906743dd88d0fb2b4dd96a9e1859d04c7d3ba607045ed2e2269e8924f5479d686902f4a7a24b1f45233d222e936c654f21c095158a6f95bbfdcb57c71b5fa84c09bb92fd1a4c704c6fee514ff5f3b08645a08488c8951e30ea377929da198968ea1279e909a75619a67e0b05ee39bc5e9c90c421cf3ac576e4c50e3547a4fe0e5e279b370dbb06e495e122a1e4a4c07128b2a07440043308628a27d2f9486344e9315fa0fdc52779709737c5583a2b41ac1cd523b4650094b2ee72f865db995e109940b1a2ff860ffc2fbf73e25b653e09668e2a5a715a822b1379284fd4382f31b44fda2bea4ac4521f75c16611f15b4ae850e2e5e13f662a474ced8e85c6dfe425b79f71db713f25454c82af7ccdcab29aa3c2c60196711da026f80313d1d3353e3015756e3419bcbdefef4f61744fbb9486fb85797e54f8b424814ebce7eb0c4262c94467d02c1b169e543d38d4006a71faf45456cc14157a5d41f5f852645b3f66b548ce12f851d4e9fd3e323a646dac932adbc8f7d297807af0fef32bbf3cf37398410015178c3fa7027dcd339a68f775c8a9ca2b161bde4bfac87e261c4c42a3321746af2a2c451d287acb8e0062626e8c6c148034fab5e992944521b725cd796cf98c7e7d8c3166167753cdd9cdfa2a22d2cbb2db54d78c505717e8711478a7883f234d99870c99b2b82108e05ac7083cad61edfc6134cb51ce6951a4e2272de3335730a8de03327aea5e8a4221ad36c7ca8728350dfbd0c9e5f96f55f6a711286ed9f3f14bf0db31b048d7fff35f6841c13653396e0bf9bc00efc4626569fb2bad3b1944f54d764ef6c7377705a56bed55ec25e9a37d105a2e04cd7467ae5f83d55f8219ed7018759bc644dfaff1466b042bb04996eb09df34dbaaa36762444565eb0e1b0fc9bf0e6d64424d7fc218fe07d6bc02e2e406b26226194d460be490152a069b047d2e41ee79047bccc0cb7bc725878951a56ee731f4347812dc5b7823c22e36a305bbd7cc40a3be47f9ff38a7cf0363429a76bdbb75621bf1593137ddd9a058cc878970f527891133c4ecf79c622bb023bedf82fb2b75f221aa67f601d4eb6e93990a238be9bb0db1b75ad24833ebe397410b985683acaaeb725ee9c750971454bd6fb3155b3778bc84c17ba9b96c2f04c5191b15f86819b44329843c0c0ab548d3dd5fce023b0f5ac65ce10cdc91439c322b04d4cd972bacbd44ddc8d72b4b2ef00fcfc6ebdf701f1b7115857bc0afca14781b897da98a0de006cbd938357cf786ca4940b91b5637fe5dd9bee43006df344afdcb455f5e9fe29b5d65e802d729713833eb462683cf410048f6d14e2c0551bf244a40ed5fab23761449ea2de96e4b92ad297c589214b60727312b94c5b72e06badaf80fd0b1cb923038bce68f92e9acf48aff0fcb137721eaf208ffbc37087251ff1b43c553e6f6f44e3b8c57f530d75a5e893bd8549026d40a9209e6147d3b9e68ada0d0db2b24546ec6b16824fd6772fc146d7aa515a521a58a2bfbfbe10db6cb0dcc4be1640cf09ef752e32b9e77d14c2ed8c2d0bc8fd6f61a086bfa1425abc92fa72d3678a980383d856f56cead15536f1fc8c8d3850f64f11c39370fb9e5c93631c6273043dfff896d1c9095562864616dacd96631c8023c619378f132db39051b70c03319fb04d8393544558341b4f2bc54f3fbdff1498bc1a64449db6648a8ba9e221ec4e5a878eb2bac1dc75aea9f109d40f19e8a300a33c4d4781ad778c41fc00468fb7d024f36a48f762c641f2d357fa2dac9aa16f4cfc963a9ac0f1a944c45d708073714f893f429655a50daf38700962f52ce29d5c4ddfd5428094e82f14eb4b0085a9638c8acfbd05507ef1c6be8daca63cc136229f402abab22f85e305ed3d64d730b45e2f873856202ee541f0010de5b9962baa776920b11730cb2110a6d48b281abd1889bf4f437b195742d68d4815af1c414211cb05266f3990009fb3b17cd5c600c0560e696b2cf40f0aefe5ae8abed895ba861d1b9a06c10dc7b21e002fa6dd40ce1ba775640f0ed740476371d1426d7961bc5677f5a580f5c1e591238d9a8c864c6f096540992521828d9a993344a516918a540143950d894191e7d47cd77b275772b4baec15b80842a47ce5232ba51424605e8ca63e7b96e7bc5623e382f8219cbe94aabed874541280b96e750fe185324a945e88994a1b84332341c33acb857cf23299ff14175a7251604bbd749762afe8fcaf28b3fffeeed2db46d0aac88f9e1ccedafa03621f82953d5f5c13f8bfaf229f0f5d7611e321962e717d2a9d4ef129ca779556ffc388a759a941ccd23b5c7ad192092a06f3654f89408e5b9b8858c561a17d56318067abf00d04962e69bf80151f45d8dcd1d4c905257e94ad4dc4ec3f0598afc8af99f4bee6fd9f087dc68dbceacf20a1084914aeee0ad4c646d0562941484adc72f14e73ca7484e99d49dfdf04039d2d893ee4019ed7323d3be85b94a963c9db24630e284af1fcfa42408f02c8e79fa60abf4fa7ad84d47828a779a5b6c1c28ea75c37fc1323f7"}}}}}, 0x0) 115.887169ms ago: executing program 0 (id=3942): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000004c0)='./file0\x00', 0x1000802, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x4, 0x251, &(0x7f0000000880)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) fstatfs(r0, 0x0) 104.09238ms ago: executing program 1 (id=3943): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x4c, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{}]}, 0x10) connect$unix(r0, &(0x7f0000000080)=@file={0x1, './file0/file0\x00'}, 0x6e) connect$unix(r0, &(0x7f0000000140)=@abs={0x1}, 0x6e) 25.208907ms ago: executing program 1 (id=3944): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c) r1 = socket$nl_generic(0x11, 0x3, 0x10) sendmsg(r1, &(0x7f0000000080)={&(0x7f00000000c0)=@caif=@dgm={0x25, 0x4}, 0x80, &(0x7f00000005c0)=[{&(0x7f00000002c0)="4ba72c4cfd81685544f46c3f88a8", 0xe}], 0x1, 0x0, 0x0, 0x11000000}, 0x0) 25.098057ms ago: executing program 0 (id=3945): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'hsr0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8003}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x0) 24.957737ms ago: executing program 1 (id=3946): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10) syz_read_part_table(0x5c9, &(0x7f0000000880)="$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") 9.610738ms ago: executing program 0 (id=3947): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)={0x20, 0x3, 0x8, 0x401, 0x0, 0x0, {0x0, 0x0, 0x6}, [@CTA_TIMEOUT_DATA={0x4, 0x4, 0x0, 0x1, @icmp}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x11}]}, 0x20}, 0x1, 0x0, 0x0, 0x24000084}, 0x4010) 0s ago: executing program 1 (id=3948): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0xd}}, [@qdisc_kind_options=@q_pfifo_head_drop={{0x14}, {0xffffffffffffff83}}, @TCA_RATE={0x6, 0x5, {0x0, 0x4}}]}, 0x48}}, 0x0) kernel console output (not intermixed with test programs): eee802154_socket permissive=1 [ 66.806574][ T7031] netlink: 'syz.0.1587': attribute type 10 has an invalid length. [ 66.824872][ T7031] veth0_macvtap: left promiscuous mode [ 66.839613][ T7031] veth0_macvtap: entered promiscuous mode [ 66.847064][ T3345] kernel write not supported for file bpf-prog (pid: 3345 comm: kworker/1:5) [ 66.857813][ T7031] team0: Device macvtap0 failed to register rx_handler [ 66.871194][ T7031] veth0_macvtap: left promiscuous mode [ 67.027959][ T7047] loop3: detected capacity change from 0 to 512 [ 67.040854][ T29] audit: type=1326 audit(2000000023.870:1392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7045 comm="syz.4.1595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f565b4adff9 code=0x7ffc0000 [ 67.073223][ T7047] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 67.075812][ T29] audit: type=1326 audit(2000000023.870:1393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7045 comm="syz.4.1595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f565b4adff9 code=0x7ffc0000 [ 67.108785][ T29] audit: type=1326 audit(2000000023.870:1394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7045 comm="syz.4.1595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7f565b4adff9 code=0x7ffc0000 [ 67.132393][ T29] audit: type=1326 audit(2000000023.870:1395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7045 comm="syz.4.1595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f565b4adff9 code=0x7ffc0000 [ 67.155857][ T29] audit: type=1326 audit(2000000023.900:1396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7045 comm="syz.4.1595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f565b4adff9 code=0x7ffc0000 [ 67.179943][ T29] audit: type=1400 audit(2000000023.970:1397): avc: denied { map } for pid=7046 comm="syz.3.1594" path="/270/file0/file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 67.202997][ T29] audit: type=1400 audit(2000000023.970:1398): avc: denied { execute } for pid=7046 comm="syz.3.1594" path="/270/file0/file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 67.226847][ T29] audit: type=1400 audit(2000000024.030:1399): avc: denied { create } for pid=7054 comm="syz.0.1599" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_route_socket permissive=1 [ 67.227731][ T3271] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 67.265346][ T7059] 9pnet_fd: Insufficient options for proto=fd [ 67.301503][ T7067] loop3: detected capacity change from 0 to 128 [ 67.305754][ T7069] bond_slave_0: entered promiscuous mode [ 67.313406][ T7069] bond_slave_1: entered promiscuous mode [ 67.322429][ T7069] bond_slave_0: left promiscuous mode [ 67.327935][ T7069] bond_slave_1: left promiscuous mode [ 67.329948][ T7073] loop2: detected capacity change from 0 to 512 [ 67.341531][ T7067] tmpfs: Bad value for 'mpol' [ 67.399407][ T7073] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 67.423209][ T7073] ext4 filesystem being mounted at /84/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 67.501299][ T7093] loop4: detected capacity change from 0 to 8192 [ 67.548384][ T5809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 67.602883][ T7123] syz.1.1630[7123] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 67.603012][ T7123] syz.1.1630[7123] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 67.615494][ T7123] syz.1.1630[7123] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 67.722288][ T7135] Invalid ELF header magic: != ELF [ 67.791309][ T7148] loop0: detected capacity change from 0 to 2048 [ 67.850842][ T7148] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 67.866172][ T7148] 9p: Unknown Cache mode or invalid value äZU¥åñ´q–loose [ 67.897857][ T7166] loop2: detected capacity change from 0 to 512 [ 67.914263][ T3270] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 67.939467][ T7166] EXT4-fs warning (device loop2): ext4_enable_quotas:7097: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 67.954530][ T7166] EXT4-fs (loop2): mount failed [ 68.050657][ T7182] loop4: detected capacity change from 0 to 8192 [ 68.079648][ T7187] loop2: detected capacity change from 0 to 512 [ 68.086294][ T7187] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 68.119609][ T7187] EXT4-fs (loop2): 1 truncate cleaned up [ 68.125663][ T7187] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 68.157023][ T5809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.160150][ T7196] TCP: request_sock_TCPv6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 68.282203][ T7216] loop4: detected capacity change from 0 to 256 [ 68.347634][ T7232] syz.4.1681[7232] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 68.347692][ T7232] syz.4.1681[7232] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 68.359624][ T7232] syz.4.1681[7232] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 68.373308][ T7232] __nla_validate_parse: 12 callbacks suppressed [ 68.373354][ T7232] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1681'. [ 68.429423][ T7238] loop4: detected capacity change from 0 to 256 [ 68.457108][ T7242] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies. [ 68.487171][ T7246] loop2: detected capacity change from 0 to 128 [ 68.524943][ T7251] loop4: detected capacity change from 0 to 1024 [ 68.535103][ T7251] EXT4-fs: Ignoring removed nomblk_io_submit option [ 68.552625][ T7251] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 68.574883][ T6328] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.597352][ T7262] vhci_hcd: invalid port number 0 [ 68.634430][ T7276] netlink: 'syz.4.1702': attribute type 8 has an invalid length. [ 68.642216][ T7276] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1702'. [ 68.758803][ T7302] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1715'. [ 68.766880][ T7296] loop1: detected capacity change from 0 to 4096 [ 68.774210][ T7300] program syz.4.1714 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 68.795067][ T7296] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 68.812061][ T7310] loop2: detected capacity change from 0 to 512 [ 68.845160][ T7314] loop3: detected capacity change from 0 to 2048 [ 68.861489][ T7310] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 68.869257][ T7314] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 68.874118][ T7310] ext4 filesystem being mounted at /115/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 68.887765][ T3266] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.915750][ T5809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.939878][ T3271] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.073719][ T7350] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1735'. [ 69.079986][ T7332] loop1: detected capacity change from 0 to 8192 [ 69.151871][ T7361] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1740'. [ 69.159129][ T7363] loop1: detected capacity change from 0 to 1024 [ 69.179484][ T7363] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 69.209228][ T7363] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 69.256182][ T3266] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.324846][ T7394] loop2: detected capacity change from 0 to 2048 [ 69.336623][ T7394] EXT4-fs error (device loop2): ext4_orphan_get:1414: comm syz.2.1755: bad orphan inode 8192 [ 69.348136][ T7394] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 69.348939][ T7402] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 69.363569][ T7394] EXT4-fs warning (device loop2): ext4_resize_begin:82: There are errors in the filesystem, so online resizing is not allowed [ 69.431599][ T5809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.434359][ T7408] loop3: detected capacity change from 0 to 4096 [ 69.458129][ T7417] loop0: detected capacity change from 0 to 128 [ 69.464774][ T7417] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 69.465456][ T7408] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 69.477085][ T7417] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 69.532589][ T3271] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.547792][ T7423] netlink: 'syz.2.1768': attribute type 1 has an invalid length. [ 69.555694][ T259] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 69.584984][ T7430] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1772'. [ 69.594028][ T7430] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1772'. [ 69.597122][ T7431] loop3: detected capacity change from 0 to 512 [ 69.603964][ T7430] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1772'. [ 69.633834][ T7431] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 69.648137][ T7435] loop0: detected capacity change from 0 to 1024 [ 69.669099][ T7435] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 69.669119][ T7431] EXT4-fs (loop3): orphan cleanup on readonly fs [ 69.679705][ T7435] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 69.704790][ T7431] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1767: bg 0: block 248: padding at end of block bitmap is not set [ 69.719924][ T7431] EXT4-fs error (device loop3): ext4_acquire_dquot:6879: comm syz.3.1767: Failed to acquire dquot type 1 [ 69.731867][ T3270] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.738936][ T7431] EXT4-fs (loop3): 1 truncate cleaned up [ 69.750413][ T7431] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 69.780437][ T3271] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.793308][ T7453] syz.1.1792[7453] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 69.793406][ T7453] syz.1.1792[7453] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 69.808286][ T7453] syz.1.1792[7453] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 69.823688][ T7455] mmap: syz.0.1783 (7455) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 69.850730][ T7457] loop3: detected capacity change from 0 to 1024 [ 69.864251][ T7457] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 69.875556][ T7453] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1792'. [ 69.894525][ T7457] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 69.953206][ T3271] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.982621][ T9] kernel write not supported for file task/738/attr/fscreate (pid: 9 comm: kworker/0:1) [ 70.022064][ T7488] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1796'. [ 70.130186][ T7518] loop0: detected capacity change from 0 to 512 [ 70.137442][ T7518] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 70.157415][ T7518] EXT4-fs (loop0): orphan cleanup on readonly fs [ 70.164612][ T7518] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1813: bg 0: block 248: padding at end of block bitmap is not set [ 70.164709][ T7520] netlink: 'syz.1.1811': attribute type 1 has an invalid length. [ 70.180697][ T7518] EXT4-fs error (device loop0): ext4_acquire_dquot:6879: comm syz.0.1813: Failed to acquire dquot type 1 [ 70.198413][ T7518] EXT4-fs (loop0): 1 truncate cleaned up [ 70.205610][ T7518] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 70.267225][ T3270] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.317708][ T7542] loop4: detected capacity change from 0 to 128 [ 70.324430][ T7542] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 70.337670][ T7542] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 70.375768][ T259] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 70.411103][ T7559] loop2: detected capacity change from 0 to 256 [ 70.495240][ T7571] loop1: detected capacity change from 0 to 2048 [ 70.528503][ T7571] EXT4-fs error (device loop1): ext4_orphan_get:1414: comm syz.1.1836: bad orphan inode 8192 [ 70.539427][ T7571] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 70.554965][ T7571] EXT4-fs warning (device loop1): ext4_resize_begin:82: There are errors in the filesystem, so online resizing is not allowed [ 70.578793][ T3266] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.607222][ T7589] loop0: detected capacity change from 0 to 128 [ 70.659924][ T7599] loop2: detected capacity change from 0 to 512 [ 70.680243][ T7605] loop0: detected capacity change from 0 to 128 [ 70.680835][ T7599] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 70.699716][ T7599] ext4 filesystem being mounted at /149/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 70.736867][ T5809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.749545][ T7613] loop4: detected capacity change from 0 to 2048 [ 70.761331][ T7615] loop1: detected capacity change from 0 to 512 [ 70.779901][ T7613] EXT4-fs error (device loop4): ext4_orphan_get:1414: comm syz.4.1854: bad orphan inode 8192 [ 70.780283][ T7615] EXT4-fs error (device loop1): ext4_expand_extra_isize_ea:2812: inode #11: comm syz.1.1856: corrupted xattr block 95: invalid header [ 70.804343][ T7613] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 70.804493][ T7615] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.1856: bg 0: block 7: invalid block bitmap [ 70.829027][ T7615] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 70.838004][ T7615] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2976: inode #11: comm syz.1.1856: corrupted xattr block 95: invalid header [ 70.845704][ T7613] EXT4-fs warning (device loop4): ext4_resize_begin:82: There are errors in the filesystem, so online resizing is not allowed [ 70.867004][ T7615] EXT4-fs warning (device loop1): ext4_evict_inode:276: xattr delete (err -117) [ 70.876150][ T7615] EXT4-fs (loop1): 1 orphan inode deleted [ 70.882326][ T7615] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 70.895138][ T6328] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.920446][ T9] kernel write not supported for file /vcs (pid: 9 comm: kworker/0:1) [ 70.937751][ T3266] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.103840][ T7670] syz.4.1881[7670] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 71.114776][ T7527] 9pnet_fd: p9_fd_create_tcp (7527): problem connecting socket to 127.0.0.1 [ 71.258154][ T7706] netlink: 'syz.2.1897': attribute type 2 has an invalid length. [ 71.304393][ T7720] loop3: detected capacity change from 0 to 128 [ 71.361819][ T7732] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 71.387114][ T7735] loop2: detected capacity change from 0 to 1024 [ 71.398550][ T7735] EXT4-fs: inline encryption not supported [ 71.405881][ T7735] EXT4-fs: Ignoring removed nomblk_io_submit option [ 71.416417][ T7735] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 71.438591][ T7735] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 71.454459][ T7735] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none. [ 71.473662][ T5809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.533134][ T7759] loop2: detected capacity change from 0 to 512 [ 71.539816][ T7759] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 71.555680][ T7759] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 71.556693][ T7764] loop1: detected capacity change from 0 to 512 [ 71.571396][ T7759] EXT4-fs (loop2): 1 truncate cleaned up [ 71.579284][ T7764] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 71.584038][ T7759] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 71.604705][ T7764] EXT4-fs error (device loop1): ext4_orphan_get:1388: inode #15: comm syz.1.1924: casefold flag without casefold feature [ 71.617689][ T7764] EXT4-fs error (device loop1): ext4_orphan_get:1393: comm syz.1.1924: couldn't read orphan inode 15 (err -117) [ 71.630118][ T7764] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 71.631094][ T5809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.653965][ T3266] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.681445][ T7774] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7774 comm=syz.1.1928 [ 71.731042][ T7782] netlink: 'syz.1.1933': attribute type 15 has an invalid length. [ 71.731904][ T7783] loop3: detected capacity change from 0 to 128 [ 71.826236][ T7802] netlink: 'syz.1.1941': attribute type 39 has an invalid length. [ 71.835301][ T7804] lo: Caught tx_queue_len zero misconfig [ 71.892275][ T7811] SELinux: failed to load policy [ 71.936671][ T7828] loop2: detected capacity change from 0 to 512 [ 71.957234][ T7828] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2812: inode #11: comm syz.2.1954: corrupted xattr block 95: invalid header [ 71.972448][ T7828] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.1954: bg 0: block 7: invalid block bitmap [ 71.986379][ T7828] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 71.995419][ T7828] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2976: inode #11: comm syz.2.1954: corrupted xattr block 95: invalid header [ 72.009767][ T7828] EXT4-fs warning (device loop2): ext4_evict_inode:276: xattr delete (err -117) [ 72.021858][ T7828] EXT4-fs (loop2): 1 orphan inode deleted [ 72.028401][ T7828] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 72.058740][ T5809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.069118][ T29] kauditd_printk_skb: 281 callbacks suppressed [ 72.069130][ T29] audit: type=1400 audit(2000000028.552:1676): avc: denied { create } for pid=7840 comm="syz.1.1960" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 72.095346][ T29] audit: type=1400 audit(2000000028.552:1677): avc: denied { bind } for pid=7840 comm="syz.1.1960" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 72.136742][ T29] audit: type=1400 audit(2000000028.626:1678): avc: denied { name_bind } for pid=7852 comm="syz.4.1966" src=3618 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1 [ 72.186824][ T29] audit: type=1400 audit(2000000028.672:1679): avc: denied { mounton } for pid=7857 comm="syz.2.1967" path="/177/file0" dev="tmpfs" ino=936 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 72.186908][ T7859] 9pnet_fd: Insufficient options for proto=fd [ 72.215742][ T29] audit: type=1400 audit(2000000028.691:1680): avc: denied { read } for pid=7864 comm="syz.3.1971" name="event0" dev="devtmpfs" ino=218 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 72.239074][ T29] audit: type=1400 audit(2000000028.691:1681): avc: denied { open } for pid=7864 comm="syz.3.1971" path="/dev/input/event0" dev="devtmpfs" ino=218 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 72.279385][ T7867] netlink: 'syz.1.1973': attribute type 46 has an invalid length. [ 72.288852][ T29] audit: type=1326 audit(2000000028.774:1682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7868 comm="syz.2.1974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b137adff9 code=0x7ffc0000 [ 72.314324][ T29] audit: type=1326 audit(2000000028.774:1683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7868 comm="syz.2.1974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b137adff9 code=0x7ffc0000 [ 72.337821][ T29] audit: type=1326 audit(2000000028.774:1684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7868 comm="syz.2.1974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7f6b137adff9 code=0x7ffc0000 [ 72.361401][ T29] audit: type=1326 audit(2000000028.774:1685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7868 comm="syz.2.1974" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b137adff9 code=0x7ffc0000 [ 72.552872][ T7916] loop0: detected capacity change from 0 to 1024 [ 72.559513][ T7916] EXT4-fs: inline encryption not supported [ 72.565790][ T7916] EXT4-fs: Ignoring removed nomblk_io_submit option [ 72.574382][ T7916] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 72.596700][ T7916] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 72.629606][ T7916] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none. [ 72.664298][ T7935] SELinux: policydb version 0 does not match my version range 15-33 [ 72.666704][ T3270] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.672467][ T7935] SELinux: failed to load policy [ 72.753392][ T7952] ebtables: ebtables: counters copy to user failed while replacing table [ 72.766151][ T7950] IPv6: NLM_F_CREATE should be specified when creating new route [ 72.794579][ T7965] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 72.803310][ T7965] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 73.049773][ T7998] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22 [ 73.058026][ T7998] netdevsim netdevsim4: Direct firmware load for . failed with error -22 [ 73.116173][ T8014] loop3: detected capacity change from 0 to 128 [ 73.137343][ T8018] loop4: detected capacity change from 0 to 1024 [ 73.143905][ T8018] EXT4-fs: inline encryption not supported [ 73.149921][ T8018] EXT4-fs: Ignoring removed nomblk_io_submit option [ 73.150280][ T7988] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 73.157081][ T8018] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 73.175660][ T7988] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 73.191899][ T8018] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 73.210669][ T8018] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none. [ 73.227475][ T6328] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.336015][ T8012] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 73.344605][ T8012] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 73.415347][ T8031] loop2: detected capacity change from 0 to 128 [ 73.427606][ T8033] bpf_get_probe_write_proto: 5 callbacks suppressed [ 73.427616][ T8033] syz.3.2049[8033] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 73.434442][ T8033] syz.3.2049[8033] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 73.445845][ T8033] syz.3.2049[8033] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 73.754033][ T8052] xt_TPROXY: Can be used only with -p tcp or -p udp [ 74.025251][ T8077] loop0: detected capacity change from 0 to 128 [ 74.033269][ T8077] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 74.046708][ T8077] ext4 filesystem being mounted at /405/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 74.068862][ T3270] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 74.084644][ T8082] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=30768 sclass=netlink_route_socket pid=8082 comm=syz.0.2074 [ 74.264727][ T8110] loop0: detected capacity change from 0 to 512 [ 74.265725][ T8112] syz.4.2088[8112] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 74.271158][ T8112] syz.4.2088[8112] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 74.271544][ T8110] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 74.283834][ T8112] syz.4.2088[8112] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 74.295028][ T8110] EXT4-fs (loop0): 1 truncate cleaned up [ 74.321897][ T8110] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 74.357831][ T8119] bridge: RTM_NEWNEIGH with invalid state 0x0 [ 74.374693][ T8121] sch_fq: defrate 0 ignored. [ 74.533627][ T8157] loop4: detected capacity change from 0 to 512 [ 74.542691][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x1 [ 74.550186][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.557673][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.565089][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.572546][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.580020][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.587738][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.595156][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.602715][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.610145][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.617813][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x4 [ 74.625307][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.632793][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.640237][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x2 [ 74.647719][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.649596][ T8157] ext4 filesystem being mounted at /176/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 74.655349][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.672911][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.680324][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.687801][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.695413][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.702854][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.710314][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.717711][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.725126][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.732590][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.739991][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.747381][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.754761][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.762193][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.769566][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.776940][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.784421][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.791828][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.799195][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.806600][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.814034][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.821461][ T3340] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 74.830016][ T3340] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz0] on syz0 [ 74.851921][ T8170] __nla_validate_parse: 18 callbacks suppressed [ 74.851937][ T8170] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2124'. [ 74.869307][ T8172] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 74.885302][ T8172] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 75.141747][ T8182] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 75.150341][ T8182] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 75.168156][ T8217] loop1: detected capacity change from 0 to 512 [ 75.175564][ T8217] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 75.183564][ T8217] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 75.191797][ T8217] EXT4-fs (loop1): orphan cleanup on readonly fs [ 75.198341][ T8217] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279949761 > max in inode 13 [ 75.208514][ T8217] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279949762 > max in inode 13 [ 75.218823][ T8217] EXT4-fs (loop1): 1 truncate cleaned up [ 75.238751][ T8216] EXT4-fs warning (device loop1): dx_probe:893: inode #2: comm syz.1.2136: dx entry: limit 65535 != root limit 120 [ 75.250903][ T8216] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.2136: Corrupt directory, running e2fsck is recommended [ 75.359491][ T8230] loop0: detected capacity change from 0 to 256 [ 75.477566][ T8252] loop0: detected capacity change from 0 to 512 [ 75.484324][ T8252] EXT4-fs: Ignoring removed orlov option [ 75.492669][ T8252] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 75.501821][ T8252] EXT4-fs (loop0): 1 truncate cleaned up [ 75.509259][ T8259] loop4: detected capacity change from 0 to 1024 [ 75.516063][ T8259] EXT4-fs: Ignoring removed orlov option [ 75.522035][ T8259] EXT4-fs: Ignoring removed bh option [ 75.522336][ T8252] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback. [ 75.643020][ T3340] kernel write not supported for file /snd/seq (pid: 3340 comm: kworker/1:2) [ 75.644845][ T8280] loop1: detected capacity change from 0 to 256 [ 75.694153][ T8280] FAT-fs (loop1): Directory bread(block 64) failed [ 75.700697][ T8280] FAT-fs (loop1): Directory bread(block 65) failed [ 75.708531][ T8280] FAT-fs (loop1): Directory bread(block 66) failed [ 75.724340][ T8280] FAT-fs (loop1): Directory bread(block 67) failed [ 75.733613][ T8280] FAT-fs (loop1): Directory bread(block 68) failed [ 75.742854][ T8280] FAT-fs (loop1): Directory bread(block 69) failed [ 75.750377][ T8280] FAT-fs (loop1): Directory bread(block 70) failed [ 75.757080][ T8280] FAT-fs (loop1): Directory bread(block 71) failed [ 75.773241][ T8280] FAT-fs (loop1): Directory bread(block 72) failed [ 75.785903][ T8280] FAT-fs (loop1): Directory bread(block 73) failed [ 75.814239][ T8301] 9pnet_fd: Insufficient options for proto=fd [ 75.967078][ T8334] loop4: detected capacity change from 0 to 128 [ 75.987602][ T8334] ext4 filesystem being mounted at /192/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 76.125658][ T8348] syz.1.2190[8348] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 76.125730][ T8348] syz.1.2190[8348] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 76.157590][ T8352] loop1: detected capacity change from 0 to 512 [ 76.198460][ T8348] syz.1.2190[8348] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 76.211285][ T8352] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2190: bg 0: block 393: padding at end of block bitmap is not set [ 76.240462][ T8352] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 76.256264][ T8352] EXT4-fs (loop1): 2 truncates cleaned up [ 76.272982][ T8363] loop2: detected capacity change from 0 to 1024 [ 76.293606][ T8363] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 76.315327][ T8363] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #11: comm syz.2.2194: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 76.340457][ T8363] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.2194: couldn't read orphan inode 11 (err -117) [ 76.367906][ T8374] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2198'. [ 76.386246][ T8363] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.2194: Invalid block bitmap block 0 in block_group 0 [ 76.403982][ T8363] EXT4-fs error (device loop2): ext4_acquire_dquot:6879: comm syz.2.2194: Failed to acquire dquot type 0 [ 76.426044][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x1 [ 76.433559][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.441083][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.448521][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.455958][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.463863][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.471304][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.478723][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.486140][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.493536][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.501078][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x4 [ 76.508651][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.516032][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.523461][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x2 [ 76.530863][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.538251][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.545636][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.553164][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.560639][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.568009][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.575402][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.582781][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.590139][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.597561][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.604935][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.612356][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.619760][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.620888][ T8379] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 76.627166][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.627199][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.650322][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.657704][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.665117][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.672576][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.679956][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.687446][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.694919][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.702384][ T3340] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 76.709833][ T8379] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 76.712683][ T3340] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz0] on syz0 [ 76.746302][ T8387] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2202'. [ 76.771672][ T8391] syz.0.2204[8391] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 76.779458][ T8394] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 76.882518][ T8413] loop4: detected capacity change from 0 to 2048 [ 76.917856][ T8413] loop4: p1 < > p4 [ 76.922344][ T8413] loop4: p4 size 8388608 extends beyond EOD, truncated [ 76.938145][ T8424] tap0: tun_chr_ioctl cmd 1074025675 [ 76.943601][ T8424] tap0: persist disabled [ 76.993913][ T8435] sg_write: process 430 (syz.4.2218) changed security contexts after opening file descriptor, this is not allowed. [ 77.006761][ T8435] program syz.4.2218 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 77.040806][ T8441] loop4: detected capacity change from 0 to 1024 [ 77.048065][ T8441] EXT4-fs: Ignoring removed oldalloc option [ 77.054391][ T8441] EXT4-fs (loop4): stripe (222) is not aligned with cluster size (16), stripe is disabled [ 77.081576][ T8449] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2224'. [ 77.090825][ T8449] netlink: 1528 bytes leftover after parsing attributes in process `syz.0.2224'. [ 77.124620][ T8453] loop0: detected capacity change from 0 to 1024 [ 77.131356][ T8453] EXT4-fs: Ignoring removed orlov option [ 77.134144][ T8455] batadv_slave_1: invalid flags given to default FDB implementation [ 77.172852][ T8461] program syz.3.2230 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 77.179094][ T8463] loop4: detected capacity change from 0 to 512 [ 77.183955][ T8465] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2231'. [ 77.197278][ T8465] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2231'. [ 77.211976][ T8465] vlan3: entered allmulticast mode [ 77.217165][ T8465] macvlan0: entered allmulticast mode [ 77.222681][ T8465] veth1_vlan: entered allmulticast mode [ 77.232894][ T8468] bridge0: port 3(vlan2) entered blocking state [ 77.239300][ T8468] bridge0: port 3(vlan2) entered disabled state [ 77.243688][ T8463] ext4 filesystem being mounted at /209/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 77.245816][ T8468] vlan2: entered allmulticast mode [ 77.266656][ T8468] vlan2: left allmulticast mode [ 77.291544][ T8475] loop1: detected capacity change from 0 to 512 [ 77.298161][ T8475] EXT4-fs: Ignoring removed orlov option [ 77.314553][ T8475] EXT4-fs error (device loop1): ext4_map_blocks:671: inode #2: block 3: comm syz.1.2234: lblock 0 mapped to illegal pblock 3 (length 1) [ 77.320343][ T8477] loop0: detected capacity change from 0 to 512 [ 77.328884][ T8475] EXT4-fs warning (device loop1): dx_probe:823: inode #2: lblock 0: comm syz.1.2234: error -117 reading directory block [ 77.345423][ T8477] EXT4-fs: Ignoring removed nomblk_io_submit option [ 77.347420][ T8475] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117 [ 77.370278][ T8481] loop2: detected capacity change from 0 to 256 [ 77.384579][ T8477] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 77.384896][ T8481] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 77.395647][ T8477] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2 [ 77.424369][ T8477] EXT4-fs (loop0): 1 truncate cleaned up [ 77.495871][ T8495] loop4: detected capacity change from 0 to 512 [ 77.502504][ T8495] EXT4-fs: inline encryption not supported [ 77.529139][ T29] kauditd_printk_skb: 138 callbacks suppressed [ 77.529153][ T29] audit: type=1326 audit(2000000033.601:1822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8496 comm="syz.1.2245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd7eddff9 code=0x7ffc0000 [ 77.562079][ T29] audit: type=1326 audit(2000000033.601:1823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8496 comm="syz.1.2245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd7eddff9 code=0x7ffc0000 [ 77.563185][ T8495] Quota error (device loop4): v2_read_file_info: Free block number 8 out of range (1, 6). [ 77.585617][ T29] audit: type=1326 audit(2000000033.601:1824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8496 comm="syz.1.2245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=310 compat=0 ip=0x7f2dd7eddff9 code=0x7ffc0000 [ 77.610806][ T8495] EXT4-fs warning (device loop4): ext4_enable_quotas:7097: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix. [ 77.618953][ T29] audit: type=1326 audit(2000000033.601:1825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8496 comm="syz.1.2245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd7eddff9 code=0x7ffc0000 [ 77.643601][ T8495] EXT4-fs (loop4): mount failed [ 77.656897][ T29] audit: type=1326 audit(2000000033.601:1826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8496 comm="syz.1.2245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd7eddff9 code=0x7ffc0000 [ 77.794680][ T29] audit: type=1400 audit(2000000033.841:1827): avc: denied { map } for pid=8527 comm="syz.0.2259" path="/dev/zero" dev="devtmpfs" ino=5 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:zero_device_t tclass=chr_file permissive=1 [ 77.802610][ T8535] loop4: detected capacity change from 0 to 512 [ 77.821316][ T8531] loop1: detected capacity change from 0 to 1024 [ 77.827904][ T8535] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 77.842466][ T8531] EXT4-fs: Ignoring removed orlov option [ 77.859271][ T8535] EXT4-fs (loop4): 1 truncate cleaned up [ 77.873141][ T29] audit: type=1400 audit(2000000033.915:1828): avc: denied { execute } for pid=8529 comm="syz.1.2261" name="file0" dev="loop1" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 77.895874][ T29] audit: type=1400 audit(2000000033.915:1829): avc: denied { execute_no_trans } for pid=8529 comm="syz.1.2261" path="/539/file1/file0/file0" dev="loop1" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 77.920678][ T29] audit: type=1400 audit(2000000033.915:1830): avc: denied { setattr } for pid=8529 comm="syz.1.2261" name="file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 78.004714][ T8560] Invalid ELF header magic: != ELF [ 78.096911][ T8581] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2281'. [ 78.110437][ T8583] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2282'. [ 78.128383][ T8583] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2282'. [ 78.199927][ T8597] loop2: detected capacity change from 0 to 128 [ 78.208036][ T8597] ext4 filesystem being mounted at /233/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 78.340903][ T8613] loop4: detected capacity change from 0 to 512 [ 78.359782][ T8613] ext4 filesystem being mounted at /224/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 78.493899][ T8626] loop4: detected capacity change from 0 to 2048 [ 78.521241][ T8626] EXT4-fs error (device loop4): ext4_free_inode:353: comm syz.4.2299: bit already cleared for inode 15 [ 78.651972][ T8644] loop4: detected capacity change from 0 to 2048 [ 78.795571][ T8658] netlink: 'syz.0.2313': attribute type 5 has an invalid length. [ 78.836066][ T8664] tun0: tun_chr_ioctl cmd 1074025678 [ 78.841405][ T8664] tun0: group set to 0 [ 78.874904][ T8666] loop0: detected capacity change from 0 to 512 [ 78.892368][ T8666] EXT4-fs (loop0): orphan cleanup on readonly fs [ 78.910300][ T8666] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2317: bg 0: block 248: padding at end of block bitmap is not set [ 78.934062][ T8666] EXT4-fs error (device loop0): ext4_acquire_dquot:6879: comm syz.0.2317: Failed to acquire dquot type 1 [ 78.956336][ T8666] EXT4-fs (loop0): 1 truncate cleaned up [ 78.964453][ T8669] netlink: 'syz.4.2318': attribute type 33 has an invalid length. [ 79.637271][ T8793] tap0: tun_chr_ioctl cmd 1074025677 [ 79.643959][ T8793] tap0: linktype set to 821 [ 79.652299][ T8781] loop1: detected capacity change from 0 to 8192 [ 79.673389][ T8795] sch_fq: defrate 0 ignored. [ 79.735086][ T8805] 9pnet: Could not find request transport: t [ 79.745054][ T8811] loop4: detected capacity change from 0 to 128 [ 79.764526][ T8811] ext4 filesystem being mounted at /255/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 79.846812][ T8827] sctp: [Deprecated]: syz.3.2386 (pid 8827) Use of int in max_burst socket option deprecated. [ 79.846812][ T8827] Use struct sctp_assoc_value instead [ 79.862438][ T8830] veth1_vlan: left allmulticast mode [ 79.872105][ T8830] netlink: 'syz.2.2387': attribute type 1 has an invalid length. [ 79.879941][ T8830] netlink: 'syz.2.2387': attribute type 2 has an invalid length. [ 79.887787][ T8833] loop4: detected capacity change from 0 to 1024 [ 79.900818][ T8836] loop1: detected capacity change from 0 to 164 [ 79.992251][ T8863] loop3: detected capacity change from 0 to 164 [ 80.006440][ T8865] xt_hashlimit: max too large, truncated to 1048576 [ 80.250551][ T8918] loop3: detected capacity change from 0 to 512 [ 80.261789][ T8918] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 80.273845][ T8918] EXT4-fs (loop3): 1 truncate cleaned up [ 80.299901][ T8931] Â: renamed from vlan0 (while UP) [ 80.319235][ T8935] __nla_validate_parse: 3 callbacks suppressed [ 80.319249][ T8935] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2435'. [ 80.383870][ T8941] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2438'. [ 80.393380][ T8941] netlink: 64 bytes leftover after parsing attributes in process `syz.3.2438'. [ 80.418926][ T8942] loop0: detected capacity change from 0 to 1024 [ 80.425604][ T8942] EXT4-fs: Ignoring removed nobh option [ 80.499282][ T8960] loop3: detected capacity change from 0 to 512 [ 80.506042][ T8960] EXT4-fs: Ignoring removed oldalloc option [ 80.512455][ T8960] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 80.524350][ T8960] EXT4-fs (loop3): 1 truncate cleaned up [ 80.650198][ T8984] loop3: detected capacity change from 0 to 256 [ 80.662637][ T8984] FAT-fs (loop3): Directory bread(block 64) failed [ 80.669601][ T8984] FAT-fs (loop3): Directory bread(block 65) failed [ 80.676224][ T8984] FAT-fs (loop3): Directory bread(block 66) failed [ 80.682850][ T8984] FAT-fs (loop3): Directory bread(block 67) failed [ 80.690555][ T8984] FAT-fs (loop3): Directory bread(block 68) failed [ 80.697147][ T8984] FAT-fs (loop3): Directory bread(block 69) failed [ 80.703844][ T8984] FAT-fs (loop3): Directory bread(block 70) failed [ 80.710518][ T8984] FAT-fs (loop3): Directory bread(block 71) failed [ 80.717213][ T8984] FAT-fs (loop3): Directory bread(block 72) failed [ 80.723894][ T8984] FAT-fs (loop3): Directory bread(block 73) failed [ 80.911856][ T8997] loop1: detected capacity change from 0 to 512 [ 80.935361][ T8997] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 80.958871][ T8997] EXT4-fs (loop1): 1 truncate cleaned up [ 81.014941][ T9011] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2470'. [ 81.210807][ T9035] loop1: detected capacity change from 0 to 128 [ 81.229558][ T9035] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 81.275109][ T9035] FAT-fs (loop1): FAT read failed (blocknr 128) [ 81.321844][ T9047] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2487'. [ 81.391501][ T9054] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2490'. [ 81.480315][ T9062] xt_recent: hitcount (4294967295) is larger than allowed maximum (65535) [ 81.570610][ T9072] netlink: 'syz.3.2499': attribute type 8 has an invalid length. [ 81.578425][ T9072] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2499'. [ 81.640431][ T9082] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 81.673664][ T9082] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 81.688704][ T9086] loop1: detected capacity change from 0 to 2048 [ 81.702298][ T9082] program syz.0.2504 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 81.727897][ T9086] FAT-fs (loop1): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 9) [ 81.759954][ T9102] netlink: 'syz.3.2514': attribute type 1 has an invalid length. [ 81.775319][ T1549] FAT-fs (loop1): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 9) [ 81.785655][ T3266] FAT-fs (loop1): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 9) [ 81.864471][ T9115] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 81.871728][ T9115] IPv6: NLM_F_CREATE should be set when creating new route [ 81.924861][ T9129] SELinux: syz.1.2527 (9129) set checkreqprot to 1. This is no longer supported. [ 81.950715][ T9137] netlink: 'syz.1.2531': attribute type 15 has an invalid length. [ 81.958765][ T9137] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2531'. [ 82.044908][ T9151] loop2: detected capacity change from 0 to 256 [ 82.152231][ T9175] loop3: detected capacity change from 0 to 128 [ 82.165604][ T9175] ext4 filesystem being mounted at /457/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 82.200474][ T9181] loop4: detected capacity change from 0 to 256 [ 82.234402][ T9181] FAT-fs (loop4): Directory bread(block 64) failed [ 82.242675][ T9181] FAT-fs (loop4): Directory bread(block 65) failed [ 82.261417][ T9181] FAT-fs (loop4): Directory bread(block 66) failed [ 82.272671][ T9181] FAT-fs (loop4): Directory bread(block 67) failed [ 82.287100][ T9181] FAT-fs (loop4): Directory bread(block 68) failed [ 82.293735][ T9181] FAT-fs (loop4): Directory bread(block 69) failed [ 82.300380][ T9181] FAT-fs (loop4): Directory bread(block 70) failed [ 82.307198][ T9181] FAT-fs (loop4): Directory bread(block 71) failed [ 82.313843][ T9181] FAT-fs (loop4): Directory bread(block 72) failed [ 82.320623][ T9181] FAT-fs (loop4): Directory bread(block 73) failed [ 82.376689][ T9199] loop0: detected capacity change from 0 to 2048 [ 82.422796][ T9199] loop0: p1 < > p4 [ 82.430889][ T9199] loop0: p4 size 8388608 extends beyond EOD, truncated [ 82.494048][ T9233] loop2: detected capacity change from 0 to 512 [ 82.519061][ T9241] usb usb7: usbfs: process 9241 (syz.4.2580) did not claim interface 7 before use [ 82.529568][ T9233] ext4 filesystem being mounted at /287/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 82.577406][ T9255] SELinux: failed to load policy [ 82.608806][ T9263] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 82.615193][ T9262] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2590'. [ 82.637883][ T9259] program syz.0.2589 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 82.700314][ T9275] batadv_slave_1: invalid flags given to default FDB implementation [ 82.772996][ T9288] bpf_get_probe_write_proto: 5 callbacks suppressed [ 82.773012][ T9288] syz.0.2603[9288] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 82.781765][ T9288] syz.0.2603[9288] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 82.793186][ T9288] syz.0.2603[9288] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 82.814013][ T9290] program syz.2.2604 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 82.859925][ T9294] loop0: detected capacity change from 0 to 1024 [ 82.875810][ T9294] EXT4-fs: Ignoring removed oldalloc option [ 82.885458][ T9302] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2608'. [ 82.896944][ T9294] EXT4-fs (loop0): stripe (222) is not aligned with cluster size (16), stripe is disabled [ 82.899308][ T9302] vlan2: entered allmulticast mode [ 82.912142][ T9302] macvlan0: entered allmulticast mode [ 82.917517][ T9302] veth1_vlan: entered allmulticast mode [ 82.948909][ T9308] netlink: 'syz.1.2611': attribute type 3 has an invalid length. [ 82.974698][ T9312] loop1: detected capacity change from 0 to 1024 [ 82.981373][ T9312] EXT4-fs: Ignoring removed orlov option [ 83.010617][ T9322] bridge0: port 3(vlan4) entered blocking state [ 83.016920][ T9322] bridge0: port 3(vlan4) entered disabled state [ 83.030210][ T9322] vlan4: entered allmulticast mode [ 83.030254][ T29] kauditd_printk_skb: 295 callbacks suppressed [ 83.030308][ T29] audit: type=1400 audit(2000000294.684:2124): avc: denied { read } for pid=9323 comm="syz.0.2620" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 83.061473][ T29] audit: type=1400 audit(2000000294.693:2125): avc: denied { create } for pid=9325 comm="syz.4.2621" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 83.063813][ T9322] vlan4: left allmulticast mode [ 83.081008][ T29] audit: type=1400 audit(2000000294.693:2126): avc: denied { bind } for pid=9325 comm="syz.4.2621" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 83.105290][ T29] audit: type=1400 audit(2000000294.693:2127): avc: denied { name_bind } for pid=9325 comm="syz.4.2621" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1 [ 83.126102][ T29] audit: type=1400 audit(2000000294.693:2128): avc: denied { node_bind } for pid=9325 comm="syz.4.2621" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=dccp_socket permissive=1 [ 83.146986][ T29] audit: type=1400 audit(2000000294.693:2129): avc: denied { connect } for pid=9325 comm="syz.4.2621" lport=20000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 83.167642][ T29] audit: type=1400 audit(2000000294.693:2130): avc: denied { name_connect } for pid=9325 comm="syz.4.2621" dest=20004 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=dccp_socket permissive=1 [ 83.188805][ T29] audit: type=1400 audit(2000000294.739:2131): avc: denied { write } for pid=9323 comm="syz.0.2620" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 83.208175][ T29] audit: type=1400 audit(2000000294.804:2132): avc: denied { shutdown } for pid=9325 comm="syz.4.2621" laddr=fe80::f lport=20000 faddr=fe80::bb fport=20004 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 83.215482][ T9333] loop1: detected capacity change from 0 to 2048 [ 83.251669][ T29] audit: type=1400 audit(2000000294.887:2133): avc: denied { create } for pid=9337 comm="syz.4.2624" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 83.275130][ T9333] EXT4-fs error (device loop1): ext4_free_inode:353: comm syz.1.2622: bit already cleared for inode 15 [ 83.283210][ T9342] loop4: detected capacity change from 0 to 1024 [ 83.304134][ T9342] ext4 filesystem being mounted at /312/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 83.399626][ T9366] syz.1.2636[9366] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 83.399689][ T9366] syz.1.2636[9366] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 83.411306][ T9366] syz.1.2636[9366] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 83.448881][ T9374] loop2: detected capacity change from 0 to 2048 [ 83.476552][ T9374] EXT4-fs error (device loop2): ext4_free_inode:353: comm syz.2.2641: bit already cleared for inode 15 [ 83.544213][ T9397] program syz.2.2650 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 83.601181][ T9405] loop1: detected capacity change from 0 to 512 [ 83.616438][ T9405] ext4 filesystem being mounted at /592/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 83.634894][ T9409] loop3: detected capacity change from 0 to 1024 [ 83.642238][ T9415] loop2: detected capacity change from 0 to 512 [ 83.643884][ T9409] EXT4-fs: Ignoring removed orlov option [ 83.649138][ T9415] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 83.666091][ T9415] EXT4-fs (loop2): 1 truncate cleaned up [ 83.707377][ T9422] Invalid ELF header magic: != ELF [ 83.762430][ T9432] bond1: entered promiscuous mode [ 83.767579][ T9432] bond1: entered allmulticast mode [ 83.772955][ T9432] 8021q: adding VLAN 0 to HW filter on device bond1 [ 83.785209][ T9432] bond1 (unregistering): Released all slaves [ 83.794320][ T9439] IPv6: NLM_F_CREATE should be specified when creating new route [ 83.802487][ T9400] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 83.811147][ T9400] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 83.839693][ T9445] netem: change failed [ 83.899392][ T9460] loop3: detected capacity change from 0 to 2048 [ 83.906157][ T9460] EXT4-fs: Ignoring removed mblk_io_submit option [ 83.930392][ T9460] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2678: bg 0: block 234: padding at end of block bitmap is not set [ 83.944920][ T9460] EXT4-fs (loop3): Remounting filesystem read-only [ 83.952482][ T9460] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=16 [ 83.978681][ T9460] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=16 [ 83.993336][ T9471] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 84.038223][ T9477] loop1: detected capacity change from 0 to 128 [ 84.058323][ T9477] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100) [ 84.066249][ T9477] FAT-fs (loop1): Filesystem has been set read-only [ 84.105827][ T9485] loop3: detected capacity change from 0 to 2048 [ 84.226633][ T9511] loop0: detected capacity change from 0 to 256 [ 84.238505][ T9511] FAT-fs (loop0): Directory bread(block 64) failed [ 84.245157][ T9511] FAT-fs (loop0): Directory bread(block 65) failed [ 84.251885][ T9511] FAT-fs (loop0): Directory bread(block 66) failed [ 84.258520][ T9511] FAT-fs (loop0): Directory bread(block 67) failed [ 84.265305][ T9511] FAT-fs (loop0): Directory bread(block 68) failed [ 84.271871][ T9511] FAT-fs (loop0): Directory bread(block 69) failed [ 84.278507][ T9511] FAT-fs (loop0): Directory bread(block 70) failed [ 84.286304][ T9511] FAT-fs (loop0): Directory bread(block 71) failed [ 84.293227][ T9511] FAT-fs (loop0): Directory bread(block 72) failed [ 84.299933][ T9511] FAT-fs (loop0): Directory bread(block 73) failed [ 84.590896][ T9540] vhci_hcd: default hub control req: 800e v1303 i0000 l0 [ 84.890997][ T9553] sctp: [Deprecated]: syz.4.2719 (pid 9553) Use of int in max_burst socket option deprecated. [ 84.890997][ T9553] Use struct sctp_assoc_value instead [ 85.172250][ T9594] loop4: detected capacity change from 0 to 512 [ 85.211065][ T9594] ext4 filesystem being mounted at /337/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 85.313051][ T9613] loop2: detected capacity change from 0 to 1024 [ 85.326887][ T9613] EXT4-fs: Ignoring removed nobh option [ 85.353179][ T9617] loop4: detected capacity change from 0 to 2048 [ 85.432749][ T9617] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 85.501235][ T9630] loop0: detected capacity change from 0 to 512 [ 85.549496][ T9630] EXT4-fs error (device loop0): __ext4_iget:4952: inode #15: block 1803188595: comm syz.0.2754: invalid block [ 85.557667][ T9637] loop2: detected capacity change from 0 to 512 [ 85.569020][ T9630] EXT4-fs error (device loop0): ext4_orphan_get:1393: comm syz.0.2754: couldn't read orphan inode 15 (err -117) [ 85.596009][ T9630] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.2754: invalid indirect mapped block 234881024 (level 0) [ 85.601374][ T9644] sch_fq: defrate 0 ignored. [ 85.647905][ T9654] Cannot find add_set index 0 as target [ 85.669396][ T9637] ext4 filesystem being mounted at /329/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 85.751387][ T9673] loop0: detected capacity change from 0 to 2048 [ 85.759856][ T9673] EXT4-fs: Ignoring removed mblk_io_submit option [ 85.783279][ T9673] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2774: bg 0: block 234: padding at end of block bitmap is not set [ 85.812002][ T9673] EXT4-fs (loop0): Remounting filesystem read-only [ 85.833140][ T9673] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop0 ino=16 [ 85.842405][ T9673] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop0 ino=16 [ 85.845653][ T9689] loop2: detected capacity change from 0 to 512 [ 85.857981][ T9689] EXT4-fs: Ignoring removed oldalloc option [ 85.868514][ T9689] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 85.892048][ T9689] EXT4-fs (loop2): 1 truncate cleaned up [ 86.131824][ T9746] loop2: detected capacity change from 0 to 256 [ 86.284333][ T9763] x_tables: eb_tables: snat.0 target: invalid size 16 (kernel) != (user) 0 [ 86.332412][ T9768] __nla_validate_parse: 4 callbacks suppressed [ 86.332428][ T9768] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2815'. [ 86.426628][ T9783] loop2: detected capacity change from 0 to 2048 [ 86.504793][ T9783] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 86.687804][ T9815] loop1: detected capacity change from 0 to 1024 [ 86.783349][ T9827] loop4: detected capacity change from 0 to 1024 [ 86.811412][ T9827] EXT4-fs: Ignoring removed oldalloc option [ 86.817474][ T9827] EXT4-fs: Ignoring removed orlov option [ 86.818076][ T9829] loop1: detected capacity change from 0 to 2048 [ 86.826296][ T9827] EXT4-fs: Ignoring removed bh option [ 86.856704][ T9835] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2846'. [ 86.876932][ T9829] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 87.014681][ T9858] loop4: detected capacity change from 0 to 512 [ 87.022842][ T9857] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2854'. [ 87.040563][ T9858] ext4 filesystem being mounted at /360/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 87.065866][ T9858] EXT4-fs error (device loop4): ext4_get_first_dir_block:3532: inode #12: comm syz.4.2855: Directory hole found for htree leaf block 0 [ 87.128993][ T9867] netlink: 104 bytes leftover after parsing attributes in process `syz.3.2858'. [ 87.181064][ T9875] loop3: detected capacity change from 0 to 512 [ 87.200579][ T9875] ext4 filesystem being mounted at /491/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 87.585243][ T9923] loop3: detected capacity change from 0 to 512 [ 87.610672][ T9923] ext4 filesystem being mounted at /498/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 87.625779][ T9923] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #15: comm syz.3.2883: corrupted xattr block 33: invalid ea_ino [ 87.639320][ T9923] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 87.649555][ T9923] EXT4-fs error (device loop3): ext4_xattr_block_get:596: inode #15: comm syz.3.2883: corrupted xattr block 33: invalid ea_ino [ 87.663081][ T9923] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop3 ino=15 [ 87.699227][ T9927] loop3: detected capacity change from 0 to 1024 [ 87.708790][ T9929] loop0: detected capacity change from 0 to 512 [ 87.716305][ T9927] EXT4-fs: Ignoring removed orlov option [ 87.722456][ T9929] EXT4-fs: Ignoring removed oldalloc option [ 87.745886][ T9929] EXT4-fs (loop0): failed to open journal device unknown-block(0,0) -6 [ 87.834709][ T9955] loop0: detected capacity change from 0 to 512 [ 87.853605][ T9955] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.2897: corrupted in-inode xattr: invalid ea_ino [ 87.867334][ T9955] EXT4-fs error (device loop0): ext4_orphan_get:1393: comm syz.0.2897: couldn't read orphan inode 15 (err -117) [ 87.928240][ T9971] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2904'. [ 88.035303][ T9986] netlink: 'syz.2.2912': attribute type 21 has an invalid length. [ 88.046239][ T9986] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2912'. [ 88.113996][ T9997] syz.3.2917[9997] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 88.114099][ T9997] syz.3.2917[9997] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 88.130097][ T9997] syz.3.2917[9997] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 88.250223][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 88.317004][T10035] netlink: 'syz.3.2936': attribute type 2 has an invalid length. [ 88.338137][T10039] loop1: detected capacity change from 0 to 256 [ 88.475434][ T29] kauditd_printk_skb: 326 callbacks suppressed [ 88.475450][ T29] audit: type=1400 audit(2000000555.707:2460): avc: denied { name_bind } for pid=10062 comm="syz.3.2949" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 88.525388][T10067] tap0: tun_chr_ioctl cmd 1074025677 [ 88.530997][T10067] tap0: linktype set to 0 [ 88.576400][ T29] audit: type=1326 audit(2000000555.799:2461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10076 comm="syz.3.2953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6be481dff9 code=0x7ffc0000 [ 88.600101][ T29] audit: type=1326 audit(2000000555.799:2462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10076 comm="syz.3.2953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6be481dff9 code=0x7ffc0000 [ 88.623718][ T29] audit: type=1326 audit(2000000555.799:2463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10076 comm="syz.3.2953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6be481dff9 code=0x7ffc0000 [ 88.647264][ T29] audit: type=1326 audit(2000000555.799:2464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10076 comm="syz.3.2953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6be481dff9 code=0x7ffc0000 [ 88.670875][ T29] audit: type=1326 audit(2000000555.799:2465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10076 comm="syz.3.2953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6be481dff9 code=0x7ffc0000 [ 88.696783][ T29] audit: type=1326 audit(2000000555.882:2466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10076 comm="syz.3.2953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6be481dff9 code=0x7ffc0000 [ 88.720309][ T29] audit: type=1326 audit(2000000555.882:2467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10076 comm="syz.3.2953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6be481dff9 code=0x7ffc0000 [ 88.743956][ T29] audit: type=1326 audit(2000000555.892:2468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10076 comm="syz.3.2953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=160 compat=0 ip=0x7f6be481dff9 code=0x7ffc0000 [ 88.767449][ T29] audit: type=1326 audit(2000000555.892:2469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10076 comm="syz.3.2953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6be481dff9 code=0x7ffc0000 [ 89.020246][T10108] loop3: detected capacity change from 0 to 1024 [ 89.026959][T10108] EXT4-fs: Ignoring removed oldalloc option [ 89.032997][T10108] EXT4-fs: Ignoring removed orlov option [ 89.038797][T10108] EXT4-fs: Ignoring removed bh option [ 89.111498][T10128] loop3: detected capacity change from 0 to 512 [ 89.119433][T10128] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.2979: corrupted in-inode xattr: invalid ea_ino [ 89.133438][T10128] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.2979: couldn't read orphan inode 15 (err -117) [ 89.276569][ T35] kernel write not supported for file /sg0 (pid: 35 comm: kworker/1:1) [ 89.537140][T10163] loop1: detected capacity change from 0 to 512 [ 89.564938][T10163] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.2993: corrupted in-inode xattr: invalid ea_ino [ 89.579621][T10163] EXT4-fs error (device loop1): ext4_orphan_get:1393: comm syz.1.2993: couldn't read orphan inode 15 (err -117) [ 89.672674][T10180] syz.1.3002[10180] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 89.672777][T10180] syz.1.3002[10180] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 89.684453][T10178] program syz.3.3001 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 89.685619][T10180] syz.1.3002[10180] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 89.828803][T10205] loop3: detected capacity change from 0 to 256 [ 89.855306][T10205] FAT-fs (loop3): unable to read block(4294967296) for building NFS inode [ 89.952144][T10231] loop4: detected capacity change from 0 to 512 [ 89.959385][T10231] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 89.968270][T10234] loop3: detected capacity change from 0 to 1024 [ 89.980306][T10234] EXT4-fs error (device loop3): ext4_xattr_ibody_get:653: inode #2: comm syz.3.3029: corrupted in-inode xattr: bad e_name length [ 89.994060][T10234] EXT4-fs (loop3): Remounting filesystem read-only [ 89.996768][T10231] ext4 filesystem being mounted at /376/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 90.009497][ T3271] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=11 [ 90.021131][ T3271] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=11 [ 90.030161][ T3271] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=11 [ 90.039097][ T3271] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=11 [ 90.041551][T10231] EXT4-fs error (device loop4): __ext4_new_inode:1276: comm syz.4.3028: failed to insert inode 16: doubly allocated? [ 90.050278][ T3271] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=11 [ 90.069268][ T3271] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=11 [ 90.078539][ T3271] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=11 [ 90.087622][ T3271] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=11 [ 90.123776][T10244] loop0: detected capacity change from 0 to 512 [ 90.139891][T10244] EXT4-fs: Ignoring removed nobh option [ 90.165593][T10244] ext4 filesystem being mounted at /564/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 90.220303][T10255] af_packet: packet_mmap: vma is busy: 1 [ 90.301922][T10264] netlink: 88 bytes leftover after parsing attributes in process `syz.2.3042'. [ 90.321857][T10264] netlink: 48 bytes leftover after parsing attributes in process `syz.2.3042'. [ 90.624078][T10296] kernel read not supported for file /policy (pid: 10296 comm: syz.0.3057) [ 90.662155][T10306] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3059'. [ 90.685368][T10310] loop4: detected capacity change from 0 to 256 [ 90.707628][T10310] FAT-fs (loop4): unable to read block(4294967296) for building NFS inode [ 90.764808][T10291] chnl_net:caif_netlink_parms(): no params data found [ 90.787703][T10319] loop2: detected capacity change from 0 to 128 [ 90.797746][T10319] ext4 filesystem being mounted at /409/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 90.831866][T10326] loop1: detected capacity change from 0 to 128 [ 90.838975][T10291] bridge0: port 1(bridge_slave_0) entered blocking state [ 90.846265][T10291] bridge0: port 1(bridge_slave_0) entered disabled state [ 90.868137][T10291] bridge_slave_0: entered allmulticast mode [ 90.878108][T10291] bridge_slave_0: entered promiscuous mode [ 90.891943][T10291] bridge0: port 2(bridge_slave_1) entered blocking state [ 90.899316][T10291] bridge0: port 2(bridge_slave_1) entered disabled state [ 90.906671][T10291] bridge_slave_1: entered allmulticast mode [ 90.914589][T10291] bridge_slave_1: entered promiscuous mode [ 90.921586][T10341] program syz.2.3070 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 90.959482][T10291] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 90.968579][T10350] netlink: 'syz.1.3077': attribute type 10 has an invalid length. [ 90.977927][T10350] veth1_macvtap: left promiscuous mode [ 90.991600][T10291] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 91.017313][T10291] team0: Port device team_slave_0 added [ 91.024713][T10291] team0: Port device team_slave_1 added [ 91.050438][T10291] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 91.057449][T10291] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 91.083406][T10291] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 91.128926][T10370] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3086'. [ 91.129047][T10291] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 91.144896][T10291] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 91.160802][T10374] loop1: detected capacity change from 0 to 512 [ 91.170890][T10291] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 91.198922][T10291] hsr_slave_0: entered promiscuous mode [ 91.204994][T10291] hsr_slave_1: entered promiscuous mode [ 91.227341][T10374] EXT4-fs (loop1): filesystem is read-only [ 91.234919][T10374] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 91.251294][T10374] EXT4-fs (loop1): filesystem is read-only [ 91.257191][T10374] EXT4-fs (loop1): orphan cleanup on readonly fs [ 91.274373][T10374] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3088: bg 0: block 64: padding at end of block bitmap is not set [ 91.281156][T10383] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1 [ 91.291027][T10374] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 91.299634][T10383] batman_adv: batadv0: Adding interface: gretap1 [ 91.313123][T10383] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 91.321639][T10386] loop0: detected capacity change from 0 to 2048 [ 91.338451][T10383] batman_adv: batadv0: Not using interface gretap1 (retrying later): interface not active [ 91.357268][T10374] EXT4-fs (loop1): 1 orphan inode deleted [ 91.380615][T10291] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.403290][T10386] loop0: p1 < > p4 [ 91.408039][T10386] loop0: p4 size 8388608 extends beyond EOD, truncated [ 91.427481][T10291] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.493347][T10291] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.562077][T10291] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.588330][T10423] loop1: detected capacity change from 0 to 256 [ 91.640304][ T50] bridge_slave_1: left allmulticast mode [ 91.646045][ T50] bridge_slave_1: left promiscuous mode [ 91.651959][ T50] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.659914][ T50] bridge_slave_0: left promiscuous mode [ 91.665710][ T50] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.752304][ T50] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 91.762722][ T50] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 91.772736][ T50] bond0 (unregistering): Released all slaves [ 91.781511][ T50] bond1 (unregistering): Released all slaves [ 91.809615][T10291] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 91.822258][ T50] hsr_slave_0: left promiscuous mode [ 91.828118][ T50] hsr_slave_1: left promiscuous mode [ 91.833766][ T50] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 91.841371][ T50] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 91.849875][ T50] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 91.857312][ T50] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 91.866969][ T50] veth1_macvtap: left promiscuous mode [ 91.872524][ T50] veth0_macvtap: left promiscuous mode [ 91.878034][ T50] veth1_vlan: left promiscuous mode [ 91.883459][ T50] veth0_vlan: left promiscuous mode [ 91.959846][ T50] team0 (unregistering): Port device team_slave_1 removed [ 91.970797][ T50] team0 (unregistering): Port device team_slave_0 removed [ 92.003408][T10291] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 92.016269][T10291] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 92.028331][T10291] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 92.071839][T10291] 8021q: adding VLAN 0 to HW filter on device bond0 [ 92.084798][T10291] 8021q: adding VLAN 0 to HW filter on device team0 [ 92.095040][ T40] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.102127][ T40] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.156893][ T40] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.164037][ T40] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.172761][T10448] syz.4.3122: attempt to access beyond end of device [ 92.172761][T10448] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 92.273788][T10291] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 92.306409][T10460] loop1: detected capacity change from 0 to 512 [ 92.340143][T10466] netlink: 'syz.4.3126': attribute type 10 has an invalid length. [ 92.355435][T10466] bridge0: port 2(bridge_slave_1) entered disabled state [ 92.362602][T10466] bridge0: port 1(bridge_slave_0) entered disabled state [ 92.375000][T10466] bridge0: port 2(bridge_slave_1) entered blocking state [ 92.382092][T10466] bridge0: port 2(bridge_slave_1) entered forwarding state [ 92.389427][T10466] bridge0: port 1(bridge_slave_0) entered blocking state [ 92.396463][T10466] bridge0: port 1(bridge_slave_0) entered forwarding state [ 92.413101][T10466] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 92.415443][T10469] loop1: detected capacity change from 0 to 164 [ 92.427577][T10291] veth0_vlan: entered promiscuous mode [ 92.446047][T10469] rock: directory entry would overflow storage [ 92.452276][T10469] rock: sig=0x4f50, size=4, remaining=3 [ 92.457877][T10469] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 92.474179][T10291] veth1_vlan: entered promiscuous mode [ 92.496066][T10291] veth0_macvtap: entered promiscuous mode [ 92.522066][T10473] loop1: detected capacity change from 0 to 512 [ 92.536929][T10291] veth1_macvtap: entered promiscuous mode [ 92.549307][T10475] loop4: detected capacity change from 0 to 512 [ 92.555020][T10291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 92.566102][T10291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.575982][T10291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 92.586438][T10291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.596317][T10291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 92.606794][T10291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.624291][T10475] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.3130: corrupted in-inode xattr: invalid ea_ino [ 92.637821][T10475] EXT4-fs error (device loop4): ext4_orphan_get:1393: comm syz.4.3130: couldn't read orphan inode 15 (err -117) [ 92.638743][T10291] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 92.673676][T10291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 92.684231][T10291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.694166][T10291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 92.704620][T10291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.714501][T10291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 92.714872][T10473] ext4 filesystem being mounted at /699/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 92.724932][T10291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.724950][T10291] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 92.755617][T10291] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.766225][T10291] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 92.793614][T10291] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.802479][T10291] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.811169][T10291] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.819890][T10291] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.881372][T10492] loop3: detected capacity change from 0 to 512 [ 92.897831][T10492] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 92.910405][T10492] EXT4-fs (loop3): 1 truncate cleaned up [ 92.991364][T10504] __nla_validate_parse: 1 callbacks suppressed [ 92.991379][T10504] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3140'. [ 93.070290][T10513] netlink: 2 bytes leftover after parsing attributes in process `syz.3.3145'. [ 93.070692][T10511] netlink: 300 bytes leftover after parsing attributes in process `syz.1.3144'. [ 93.215649][T10541] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3159'. [ 93.243994][T10547] (unnamed net_device) (uninitialized): option ad_user_port_key: invalid value (46336) [ 93.253797][T10547] (unnamed net_device) (uninitialized): option ad_user_port_key: allowed values 0 - 1023 [ 93.276821][T10549] program syz.1.3162 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 93.339717][T10560] 9pnet_fd: Insufficient options for proto=fd [ 93.391373][T10569] loop4: detected capacity change from 0 to 128 [ 93.411836][T10575] syz.1.3175[10575] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 93.411946][T10575] syz.1.3175[10575] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 93.434942][T10569] ext4 filesystem being mounted at /405/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 93.436750][T10575] syz.1.3175[10575] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 93.486297][T10587] loop3: detected capacity change from 0 to 512 [ 93.498135][T10591] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3182'. [ 93.513173][T10591] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3182'. [ 93.771725][T10637] netlink: 2 bytes leftover after parsing attributes in process `syz.1.3202'. [ 93.833356][T10648] netlink: 96 bytes leftover after parsing attributes in process `syz.2.3207'. [ 93.916140][T10658] syz.2.3213[10658] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 93.916198][T10658] syz.2.3213[10658] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 93.930580][T10658] syz.2.3213[10658] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 93.932653][ T29] kauditd_printk_skb: 320 callbacks suppressed [ 93.932666][ T29] audit: type=1400 audit(2000000560.747:2788): avc: denied { create } for pid=10659 comm="syz.1.3214" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 93.981929][ T29] audit: type=1400 audit(2000000560.793:2789): avc: denied { create } for pid=10657 comm="syz.2.3213" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 94.001823][ T29] audit: type=1400 audit(2000000560.811:2790): avc: denied { write } for pid=10657 comm="syz.2.3213" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 94.029046][ T29] audit: type=1400 audit(2000000560.811:2791): avc: denied { create } for pid=10659 comm="syz.1.3214" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 94.048639][ T29] audit: type=1400 audit(2000000560.811:2792): avc: denied { ioctl } for pid=10659 comm="syz.1.3214" path="socket:[28723]" dev="sockfs" ino=28723 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 94.078817][ C1] hrtimer: interrupt took 34484 ns [ 94.108319][ T29] audit: type=1400 audit(2000000560.904:2793): avc: denied { create } for pid=10674 comm="syz.2.3220" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 94.128030][ T29] audit: type=1400 audit(2000000560.904:2794): avc: denied { connect } for pid=10674 comm="syz.2.3220" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 94.147596][ T29] audit: type=1400 audit(2000000560.904:2795): avc: denied { write } for pid=10674 comm="syz.2.3220" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 94.167067][ T29] audit: type=1400 audit(2000000560.904:2796): avc: denied { read } for pid=10674 comm="syz.2.3220" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 94.318730][ T29] audit: type=1400 audit(2000000561.107:2797): avc: denied { write } for pid=10692 comm="syz.0.3229" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 94.351679][T10694] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3230'. [ 94.397982][T10697] loop0: detected capacity change from 0 to 512 [ 94.417342][T10697] EXT4-fs: Ignoring removed oldalloc option [ 94.425191][T10702] loop4: detected capacity change from 0 to 256 [ 94.442020][T10697] EXT4-fs error (device loop0): ext4_xattr_inode_iget:436: comm syz.0.3232: Parent and EA inode have the same ino 15 [ 94.469359][T10697] EXT4-fs (loop0): Remounting filesystem read-only [ 94.475922][T10697] EXT4-fs warning (device loop0): ext4_evict_inode:259: couldn't mark inode dirty (err -5) [ 94.488838][T10697] EXT4-fs (loop0): 1 orphan inode deleted [ 94.497469][T10697] SELinux: (dev loop0, type ext4) getxattr errno 5 [ 94.634709][T10738] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3246'. [ 94.980643][T10791] loop2: detected capacity change from 0 to 128 [ 95.016150][T10795] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10795 comm=syz.1.3275 [ 95.119963][T10808] netlink: 'syz.1.3280': attribute type 5 has an invalid length. [ 95.242185][T10814] loop1: detected capacity change from 0 to 4096 [ 95.255791][T10814] EXT4-fs: Ignoring removed nomblk_io_submit option [ 95.611367][T10838] loop2: detected capacity change from 0 to 2048 [ 95.617188][T10845] loop0: detected capacity change from 0 to 1024 [ 95.626778][T10845] EXT4-fs: Ignoring removed orlov option [ 95.632507][T10845] EXT4-fs: Ignoring removed nomblk_io_submit option [ 95.649816][T10845] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 95.660846][T10845] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869) [ 95.671179][T10845] EXT4-fs (loop0): invalid journal inode [ 95.676874][T10845] EXT4-fs (loop0): can't get journal size [ 95.849693][T10889] loop4: detected capacity change from 0 to 2048 [ 95.899610][T10889] loop4: p1 < > p4 [ 95.905365][T10889] loop4: p4 size 8388608 extends beyond EOD, truncated [ 95.950959][T10915] syz.1.3331[10915] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 95.951174][T10915] syz.1.3331[10915] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 95.963516][T10915] syz.1.3331[10915] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 96.036688][T10929] SELinux: Context system_u:object_r:initrc_var_run_t:s0 is not valid (left unmapped). [ 96.127400][T10939] loop3: detected capacity change from 0 to 512 [ 96.129340][T10940] syz.1.3340[10940] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 96.145879][T10940] syz.1.3340[10940] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 96.168727][T10940] syz.1.3340[10940] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 96.202919][T10939] ext4 filesystem being mounted at /40/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 96.210951][T10950] loop4: detected capacity change from 0 to 128 [ 96.235372][T10951] loop1: detected capacity change from 0 to 512 [ 96.270600][T10951] ext4 filesystem being mounted at /760/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 96.507610][T11000] xt_CT: You must specify a L4 protocol and not use inversions on it [ 96.518070][T10998] netlink: 'syz.0.3368': attribute type 15 has an invalid length. [ 96.726923][T11042] loop2: detected capacity change from 0 to 4096 [ 96.738495][T11042] EXT4-fs: Ignoring removed nomblk_io_submit option [ 96.886879][T11082] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present! [ 96.907284][T11084] Â: renamed from pim6reg1 [ 96.943181][T11086] loop3: detected capacity change from 0 to 4096 [ 96.949767][T11086] EXT4-fs: Ignoring removed nomblk_io_submit option [ 97.052651][T11105] loop0: detected capacity change from 0 to 2048 [ 97.116203][T11117] x_tables: eb_tables: snat.0 target: invalid size 16 (kernel) != (user) 0 [ 97.138881][T11129] A link change request failed with some changes committed already. Interface wg0 may have been left with an inconsistent configuration, please check. [ 97.259785][T11155] program syz.1.3441 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 97.351453][T11166] netlink: 'syz.3.3447': attribute type 10 has an invalid length. [ 97.361793][T11166] veth0_macvtap: left promiscuous mode [ 97.378700][T11166] veth0_macvtap: entered promiscuous mode [ 97.393692][T11166] team0: Device macvtap0 failed to register rx_handler [ 97.400888][T11166] veth0_macvtap: left promiscuous mode [ 97.444703][T11178] hub 9-0:1.0: USB hub found [ 97.460321][T11178] hub 9-0:1.0: 8 ports detected [ 97.557983][T11199] loop3: detected capacity change from 0 to 512 [ 97.567778][T11199] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.3461: corrupted in-inode xattr: invalid ea_ino [ 97.600415][T11199] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.3461: couldn't read orphan inode 15 (err -117) [ 97.745780][T10291] EXT4-fs unmount: 154 callbacks suppressed [ 97.745795][T10291] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 97.882641][T11235] random: crng reseeded on system resumption [ 97.962804][T11250] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11250 comm=syz.0.3482 [ 98.011551][T11258] smc: net device bond0 applied user defined pnetid SYZ0 [ 98.020164][T11258] smc: net device bond0 erased user defined pnetid SYZ0 [ 98.086157][T11268] netlink: 'syz.3.3491': attribute type 10 has an invalid length. [ 98.104631][T11268] bridge0: port 2(bridge_slave_1) entered disabled state [ 98.111829][T11268] bridge0: port 1(bridge_slave_0) entered disabled state [ 98.159778][T11268] bridge0: port 2(bridge_slave_1) entered blocking state [ 98.166862][T11268] bridge0: port 2(bridge_slave_1) entered forwarding state [ 98.174241][T11268] bridge0: port 1(bridge_slave_0) entered blocking state [ 98.181312][T11268] bridge0: port 1(bridge_slave_0) entered forwarding state [ 98.190752][T11268] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 98.294731][T11285] loop2: detected capacity change from 0 to 8192 [ 98.486969][T11318] tap0: tun_chr_ioctl cmd 2147767519 [ 98.601712][T11331] ref_ctr_offset mismatch. inode: 0x1c6 offset: 0x0 ref_ctr_offset(old): 0x4 ref_ctr_offset(new): 0x0 [ 98.690603][T11341] netlink: 'syz.4.3524': attribute type 10 has an invalid length. [ 98.698805][T11341] veth1_macvtap: left promiscuous mode [ 98.776396][T11354] loop4: detected capacity change from 0 to 512 [ 98.783604][T11354] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 98.795127][T11354] EXT4-fs (loop4): orphan cleanup on readonly fs [ 98.802336][T11354] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.3530: bg 0: block 248: padding at end of block bitmap is not set [ 98.817141][T11359] __nla_validate_parse: 11 callbacks suppressed [ 98.817154][T11359] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3532'. [ 98.817382][T11354] EXT4-fs error (device loop4): ext4_acquire_dquot:6879: comm syz.4.3530: Failed to acquire dquot type 1 [ 98.848099][T11354] EXT4-fs (loop4): 1 truncate cleaned up [ 98.854499][T11354] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 98.874621][T11354] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 98.883142][T11354] EXT4-fs error (device loop4): __ext4_remount:6522: comm syz.4.3530: Abort forced by user [ 98.893310][T11354] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended [ 98.922324][T11354] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 98.940632][ T6328] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.091893][T11372] loop4: detected capacity change from 0 to 512 [ 99.099972][T11372] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.3535: corrupted in-inode xattr: invalid ea_ino [ 99.113629][T11372] EXT4-fs error (device loop4): ext4_orphan_get:1393: comm syz.4.3535: couldn't read orphan inode 15 (err -117) [ 99.132348][T11372] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 99.156662][ T6328] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.188631][T11383] Process accounting resumed [ 99.193433][T11383] kernel write not supported for file /asound/timers (pid: 11383 comm: syz.4.3540) [ 99.280935][T11397] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3549'. [ 99.366759][T11408] sctp: [Deprecated]: syz.3.3554 (pid 11408) Use of struct sctp_assoc_value in delayed_ack socket option. [ 99.366759][T11408] Use struct sctp_sack_info instead [ 99.400677][ T29] kauditd_printk_skb: 357 callbacks suppressed [ 99.400693][ T29] audit: type=1400 audit(96.943:3153): avc: denied { validate_trans } for pid=11410 comm="syz.1.3555" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 99.453002][T11419] loop1: detected capacity change from 0 to 512 [ 99.466738][T11419] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 99.489646][T11424] loop0: detected capacity change from 0 to 1764 [ 99.506457][T11419] EXT4-fs (loop1): 1 truncate cleaned up [ 99.507865][T11431] loop3: detected capacity change from 0 to 512 [ 99.514206][T11419] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 99.537484][ T29] audit: type=1400 audit(97.063:3154): avc: denied { setattr } for pid=11417 comm="syz.1.3559" name="file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 99.587016][T11431] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 99.631336][ T29] audit: type=1400 audit(97.156:3155): avc: denied { mount } for pid=11446 comm="syz.0.3571" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 99.632418][T10291] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.670843][T11449] loop3: detected capacity change from 0 to 128 [ 99.685622][ T3266] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.706471][T11457] loop1: detected capacity change from 0 to 1024 [ 99.716296][T11457] EXT4-fs: Ignoring removed nobh option [ 99.721884][T11457] EXT4-fs: Ignoring removed nomblk_io_submit option [ 99.740032][ T29] audit: type=1400 audit(97.248:3156): avc: denied { create } for pid=11462 comm="syz.3.3577" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 99.759052][ T29] audit: type=1400 audit(97.248:3157): avc: denied { bind } for pid=11464 comm="syz.0.3580" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 99.789001][ T29] audit: type=1400 audit(97.294:3158): avc: denied { read } for pid=11462 comm="syz.3.3577" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 99.816360][T11457] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 99.822248][T11475] netlink: 'syz.2.3584': attribute type 26 has an invalid length. [ 99.836946][T11457] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 99.847567][ T29] audit: type=1400 audit(97.349:3159): avc: denied { ioctl } for pid=11476 comm="syz.3.3585" path="socket:[30247]" dev="sockfs" ino=30247 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 99.871834][ T29] audit: type=1400 audit(97.359:3160): avc: denied { mount } for pid=11478 comm="syz.3.3586" name="/" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1 [ 99.898447][ T29] audit: type=1400 audit(97.405:3161): avc: denied { unmount } for pid=10291 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1 [ 99.919482][ T29] audit: type=1400 audit(97.414:3162): avc: denied { create } for pid=11481 comm="syz.3.3588" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 99.919598][T11483] ref_ctr_offset mismatch. inode: 0xa70 offset: 0x0 ref_ctr_offset(old): 0x4 ref_ctr_offset(new): 0x0 [ 99.954627][ T3266] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.988977][T11491] loop1: detected capacity change from 0 to 2048 [ 99.995940][T11491] FAT-fs (loop1): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 9) [ 100.061876][T11504] syz.2.3597[11504] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 100.061944][T11504] syz.2.3597[11504] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 100.073473][T11504] syz.2.3597[11504] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 100.103432][T11510] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3600'. [ 100.137691][T11514] loop2: detected capacity change from 0 to 128 [ 100.156873][T11514] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 100.183009][ T5809] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 100.232196][T11531] loop1: detected capacity change from 0 to 512 [ 100.258542][T11531] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3611: bg 0: block 248: padding at end of block bitmap is not set [ 100.273320][T11531] EXT4-fs error (device loop1): ext4_acquire_dquot:6879: comm syz.1.3611: Failed to acquire dquot type 1 [ 100.285024][T11531] EXT4-fs (loop1): 1 truncate cleaned up [ 100.292604][T11531] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 100.321744][ T3266] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.331539][T11546] SELinux: Context Ü is not valid (left unmapped). [ 100.347131][T11548] loop1: detected capacity change from 0 to 512 [ 100.351510][T11550] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3618'. [ 100.354586][T11548] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 100.374238][T11548] EXT4-fs (loop1): 1 truncate cleaned up [ 100.380505][T11548] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 100.407368][ T3266] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.432339][T11558] loop4: detected capacity change from 0 to 2048 [ 100.439590][T11558] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 9) [ 100.482415][T11566] 9pnet_fd: p9_fd_create_tcp (11566): problem connecting socket to 127.0.0.1 [ 100.498126][T11568] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.3627'. [ 100.506507][T11570] loop4: detected capacity change from 0 to 128 [ 100.532610][T11574] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3629'. [ 100.541759][T11574] tipc: Started in network mode [ 100.546760][T11574] tipc: Node identity cgroup.pn, cluster identity 8 [ 100.596268][T11588] loop2: detected capacity change from 0 to 512 [ 100.603728][T11588] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 100.624311][T11588] EXT4-fs (loop2): orphan cleanup on readonly fs [ 100.631438][T11588] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3637: bg 0: block 248: padding at end of block bitmap is not set [ 100.646211][T11588] EXT4-fs error (device loop2): ext4_acquire_dquot:6879: comm syz.2.3637: Failed to acquire dquot type 1 [ 100.646617][T11588] EXT4-fs (loop2): 1 truncate cleaned up [ 100.649510][T11588] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 100.687149][T11588] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 100.695854][T11588] EXT4-fs error (device loop2): __ext4_remount:6522: comm syz.2.3637: Abort forced by user [ 100.706543][T11588] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended [ 100.720756][T11588] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 100.749630][T11609] netlink: 'syz.4.3647': attribute type 10 has an invalid length. [ 100.758018][T11609] hsr0: entered promiscuous mode [ 100.758669][ T5809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.765418][T11609] bond0: (slave hsr0): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 100.784012][T11609] bond0: (slave hsr0): The slave device specified does not support setting the MAC address [ 100.794771][T11609] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets). [ 100.807210][T11609] bond0: (slave hsr0): Error -22 calling dev_set_mtu [ 100.814559][T11612] netlink: 'syz.4.3647': attribute type 10 has an invalid length. [ 100.829642][T11612] bond0: (slave hsr0): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 100.893389][T11626] loop0: detected capacity change from 0 to 128 [ 100.913434][T11626] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 100.945328][T11636] loop2: detected capacity change from 0 to 512 [ 100.952772][T11638] netlink: 236 bytes leftover after parsing attributes in process `syz.4.3659'. [ 100.953482][T11636] ext4: Bad value for 'min_batch_time' [ 100.976681][T11640] netlink: 'syz.3.3660': attribute type 12 has an invalid length. [ 100.984602][T11640] netlink: 'syz.3.3660': attribute type 29 has an invalid length. [ 100.992495][T11640] netlink: 'syz.3.3660': attribute type 2 has an invalid length. [ 101.000217][T11640] netlink: 'syz.3.3660': attribute type 2 has an invalid length. [ 101.008183][T11640] netlink: 'syz.3.3660': attribute type 1 has an invalid length. [ 101.016004][T11640] netlink: 'syz.3.3660': attribute type 37 has an invalid length. [ 101.023857][T11640] netlink: 'syz.3.3660': attribute type 2 has an invalid length. [ 101.031583][T11640] netlink: 'syz.3.3660': attribute type 1 has an invalid length. [ 101.041306][ T3270] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 101.066606][T11646] loop4: detected capacity change from 0 to 2048 [ 101.083352][T11653] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3666'. [ 101.091060][T11646] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 101.109297][T11646] EXT4-fs error (device loop4): ext4_find_extent:938: inode #2: comm syz.4.3664: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 101.131306][T11646] EXT4-fs (loop4): Remounting filesystem read-only [ 101.139548][T11662] loop3: detected capacity change from 0 to 256 [ 101.157479][ T6328] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.158849][T11662] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000001) [ 101.174422][T11662] FAT-fs (loop3): Filesystem has been set read-only [ 101.185487][T11668] loop2: detected capacity change from 0 to 512 [ 101.199469][T11668] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3673: bg 0: block 248: padding at end of block bitmap is not set [ 101.214025][T11668] EXT4-fs error (device loop2): ext4_acquire_dquot:6879: comm syz.2.3673: Failed to acquire dquot type 1 [ 101.225931][T11668] EXT4-fs (loop2): 1 truncate cleaned up [ 101.232046][T11668] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 101.255082][ T5809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.327922][T11676] loop3: detected capacity change from 0 to 128 [ 101.353080][T11681] loop0: detected capacity change from 0 to 512 [ 101.360485][T11676] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 101.372850][T11681] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 101.383722][T11681] EXT4-fs (loop0): orphan cleanup on readonly fs [ 101.392476][T11681] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.3675: bg 0: block 248: padding at end of block bitmap is not set [ 101.413276][T10291] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 101.425248][T11693] loop2: detected capacity change from 0 to 128 [ 101.426411][T11681] EXT4-fs error (device loop0): ext4_acquire_dquot:6879: comm syz.0.3675: Failed to acquire dquot type 1 [ 101.432804][T11692] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3679'. [ 101.443160][T11681] EXT4-fs (loop0): 1 truncate cleaned up [ 101.452406][T11693] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 101.458923][T11681] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 101.482525][T11693] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 101.491784][T11681] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 101.501113][T11681] EXT4-fs error (device loop0): __ext4_remount:6522: comm syz.0.3675: Abort forced by user [ 101.523884][T11681] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended [ 101.535563][ T3363] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 101.547825][T11681] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 101.585024][ T3270] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 101.642264][T11712] netlink: 256 bytes leftover after parsing attributes in process `syz.0.3690'. [ 101.748345][T11726] loop1: detected capacity change from 0 to 128 [ 101.772225][T11726] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 101.806163][T11734] A link change request failed with some changes committed already. Interface wg1 may have been left with an inconsistent configuration, please check. [ 101.876399][ T3266] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 101.950196][T11747] hsr0: entered promiscuous mode [ 101.959547][T11743] loop0: detected capacity change from 0 to 764 [ 101.977193][T11749] random: crng reseeded on system resumption [ 102.012592][T11755] syz.2.3710 (11755): /proc/11754/oom_adj is deprecated, please use /proc/11754/oom_score_adj instead. [ 102.032525][T11743] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 102.086466][T11763] Invalid ELF header magic: != ELF [ 102.088775][T11765] loop0: detected capacity change from 0 to 512 [ 102.099951][T11765] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 102.131199][T11765] EXT4-fs error (device loop0): ext4_orphan_get:1388: inode #15: comm syz.0.3715: iget: bad extended attribute block 19 [ 102.144249][T11765] EXT4-fs error (device loop0): ext4_orphan_get:1393: comm syz.0.3715: couldn't read orphan inode 15 (err -117) [ 102.157209][T11765] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 102.187415][ T3270] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.237055][T11791] hsr0: entered promiscuous mode [ 102.299329][T11801] bridge1: entered promiscuous mode [ 102.304704][T11801] bridge1: entered allmulticast mode [ 102.366111][T11810] loop1: detected capacity change from 0 to 512 [ 102.375848][T11810] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 102.391256][T11810] EXT4-fs (loop1): orphan cleanup on readonly fs [ 102.392469][T11815] loop4: detected capacity change from 0 to 1024 [ 102.404977][T11810] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3735: bg 0: block 248: padding at end of block bitmap is not set [ 102.410156][T11815] EXT4-fs: Ignoring removed orlov option [ 102.421087][T11810] EXT4-fs error (device loop1): ext4_acquire_dquot:6879: comm syz.1.3735: Failed to acquire dquot type 1 [ 102.425140][T11815] EXT4-fs: Ignoring removed nomblk_io_submit option [ 102.458056][T11810] EXT4-fs (loop1): 1 truncate cleaned up [ 102.470102][T11810] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 102.475401][T11815] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a84ec018, mo2=0002] [ 102.491017][T11815] System zones: 0-1, 3-36 [ 102.494986][T11810] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 102.496162][T11815] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 102.505362][T11823] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check. [ 102.533250][T11810] EXT4-fs error (device loop1): __ext4_remount:6522: comm syz.1.3735: Abort forced by user [ 102.558567][T11810] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended [ 102.573782][ T6328] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.601076][T11810] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 102.620818][T11841] syz.3.3748[11841] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 102.620895][T11841] syz.3.3748[11841] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 102.632680][T11841] syz.3.3748[11841] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 102.657583][ T3266] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.712836][T11854] loop4: detected capacity change from 0 to 164 [ 102.749089][T11861] tap0: tun_chr_ioctl cmd 1074025676 [ 102.754636][T11861] tap0: owner set to 0 [ 102.802596][T11876] loop2: detected capacity change from 0 to 128 [ 102.814426][T11878] loop3: detected capacity change from 0 to 128 [ 102.870585][T11892] sch_tbf: burst 5 is lower than device lo mtu (65550) ! [ 102.895613][T11890] loop3: detected capacity change from 0 to 4096 [ 102.975858][T11913] loop2: detected capacity change from 0 to 512 [ 102.992582][T11907] loop3: detected capacity change from 0 to 8192 [ 103.008899][T11913] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 103.035821][T11907] syz.3.3779: attempt to access beyond end of device [ 103.035821][T11907] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 103.049300][T11907] Buffer I/O error on dev loop3, logical block 57847, async page read [ 103.057623][T11907] syz.3.3779: attempt to access beyond end of device [ 103.057623][T11907] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 103.071083][T11907] Buffer I/O error on dev loop3, logical block 57847, async page read [ 103.079751][T11907] syz.3.3779: attempt to access beyond end of device [ 103.079751][T11907] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 103.093368][T11907] Buffer I/O error on dev loop3, logical block 57847, async page read [ 103.154950][ T5809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.185491][T11944] loop1: detected capacity change from 0 to 164 [ 103.379058][T11985] loop3: detected capacity change from 0 to 164 [ 103.389417][T11974] loop2: detected capacity change from 0 to 8192 [ 103.424192][T11974] loop2: p1 p2[DM] p4 [ 103.428362][T11974] loop2: p1 size 196608 extends beyond EOD, truncated [ 103.450270][T11974] loop2: p2 start 4292936063 is beyond EOD, truncated [ 103.457129][T11974] loop2: p4 size 50331648 extends beyond EOD, truncated [ 103.473587][T12002] SELinux: policydb version -1681192944 does not match my version range 15-33 [ 103.484643][T12002] SELinux: failed to load policy [ 103.671291][T12039] SELinux: Context syz: is not valid (left unmapped). [ 103.717732][ T3344] kernel write not supported for file /snd/seq (pid: 3344 comm: kworker/0:4) [ 103.743104][T12045] sch_tbf: burst 1 is lower than device lo mtu (65550) ! [ 103.881609][T12085] syz.4.3862[12085] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 103.881688][T12085] syz.4.3862[12085] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 103.893357][T12085] syz.4.3862[12085] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 104.012310][T12098] loop3: detected capacity change from 0 to 512 [ 104.053603][T12100] tmpfs: Bad value for 'mpol' [ 104.083005][T12098] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 104.206099][T10291] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.318573][T12144] __nla_validate_parse: 7 callbacks suppressed [ 104.318585][T12144] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3888'. [ 104.333746][T12144] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3888'. [ 104.368212][T12148] loop1: detected capacity change from 0 to 1024 [ 104.377064][T12148] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 104.402751][ T3266] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.424061][T12154] hsr0: entered promiscuous mode [ 104.483440][T12158] netlink: 44 bytes leftover after parsing attributes in process `syz.1.3893'. [ 104.514938][T12163] loop1: detected capacity change from 0 to 128 [ 104.634296][T12182] netlink: 144 bytes leftover after parsing attributes in process `syz.3.3905'. [ 104.670698][T12187] x_tables: unsorted underflow at hook 2 [ 104.777730][T12204] netlink: 536 bytes leftover after parsing attributes in process `syz.1.3915'. [ 104.838149][T12209] loop0: detected capacity change from 0 to 256 [ 104.873415][T12213] loop0: detected capacity change from 0 to 512 [ 104.883076][T12215] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3920'. [ 104.894999][T12213] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 104.921246][ T29] kauditd_printk_skb: 130 callbacks suppressed [ 104.921258][ T29] audit: type=1400 audit(102.038:3283): avc: denied { create } for pid=12210 comm="syz.0.3918" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 104.940450][T12221] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3922'. [ 104.957881][T12213] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.3918: corrupted inode contents [ 104.972060][ T29] audit: type=1326 audit(102.066:3284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12218 comm="syz.1.3921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd7eddff9 code=0x7ffc0000 [ 104.995000][ T29] audit: type=1326 audit(102.066:3285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12218 comm="syz.1.3921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd7eddff9 code=0x7ffc0000 [ 105.006472][T12213] EXT4-fs error (device loop0): ext4_dirty_inode:5984: inode #2: comm syz.0.3918: mark_inode_dirty error [ 105.017967][ T29] audit: type=1326 audit(102.066:3286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12218 comm="syz.1.3921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2dd7eddff9 code=0x7ffc0000 [ 105.051994][ T29] audit: type=1326 audit(102.066:3287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12218 comm="syz.1.3921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd7eddff9 code=0x7ffc0000 [ 105.074903][ T29] audit: type=1326 audit(102.066:3288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12218 comm="syz.1.3921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2dd7eddff9 code=0x7ffc0000 [ 105.076916][T12213] EXT4-fs error (device loop0): ext4_do_update_inode:5121: inode #2: comm syz.0.3918: corrupted inode contents [ 105.098102][ T29] audit: type=1326 audit(102.066:3289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12218 comm="syz.1.3921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd7eddff9 code=0x7ffc0000 [ 105.117883][T12213] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.3918: mark_inode_dirty error [ 105.132678][ T29] audit: type=1400 audit(102.084:3290): avc: denied { write } for pid=12222 comm="syz.3.3923" name="sg0" dev="devtmpfs" ino=111 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 trawcon="system_u:object_r:initrc_var_run_t:s0" [ 105.170319][ T29] audit: type=1326 audit(102.084:3291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12218 comm="syz.1.3921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2dd7eddff9 code=0x7ffc0000 [ 105.193967][ T29] audit: type=1326 audit(102.084:3292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12218 comm="syz.1.3921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=305 compat=0 ip=0x7f2dd7eddff9 code=0x7ffc0000 [ 105.233128][T12231] program syz.1.3927 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 105.278733][ T3270] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.348415][T12240] loop0: detected capacity change from 0 to 8192 [ 105.384866][T12252] loop1: detected capacity change from 0 to 2048 [ 105.402147][T12240] loop0: p1 p2[DM] p4 [ 105.406413][T12240] loop0: p1 size 196608 extends beyond EOD, truncated [ 105.417217][T12252] EXT4-fs error (device loop1): ext4_orphan_get:1414: comm syz.1.3937: bad orphan inode 8192 [ 105.428761][T12240] loop0: p2 start 4292936063 is beyond EOD, truncated [ 105.435646][T12240] loop0: p4 size 50331648 extends beyond EOD, truncated [ 105.443541][T12252] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 105.478750][ T3266] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.486411][T12265] loop0: detected capacity change from 0 to 256 [ 105.494668][T12265] FAT-fs (loop0): Directory bread(block 1285) failed [ 105.503539][T12265] FAT-fs (loop0): FAT read failed (blocknr 1281) [ 105.545467][T12273] loop1: detected capacity change from 0 to 2048 [ 105.589769][T12278] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3948'. [ 105.599055][T12278] ================================================================== [ 105.607285][T12278] BUG: KCSAN: assert: race in dequeue_entities+0x6df/0x760 [ 105.614578][T12278] [ 105.616894][T12278] race at unknown origin, with assert no writes to 0xffff8881001cb1e8 of 4 bytes by task 12278 on cpu 1: [ 105.628076][T12278] dequeue_entities+0x6df/0x760 [ 105.632932][T12278] pick_next_task_fair+0x7d/0x410 [ 105.637958][T12278] __schedule+0x284/0x940 [ 105.642282][T12278] schedule+0x55/0xc0 [ 105.646257][T12278] synchronize_rcu_expedited+0x611/0x7a0 [ 105.651882][T12278] synchronize_net+0x2d/0x50 [ 105.656471][T12278] dev_deactivate_many+0x3fe/0x6e0 [ 105.661581][T12278] dev_deactivate+0x9a/0x100 [ 105.666168][T12278] qdisc_graft+0x3c9/0xbd0 [ 105.670575][T12278] tc_modify_qdisc+0x73b/0x1050 [ 105.675417][T12278] rtnetlink_rcv_msg+0x6aa/0x710 [ 105.680351][T12278] netlink_rcv_skb+0x12c/0x230 [ 105.685111][T12278] rtnetlink_rcv+0x1c/0x30 [ 105.689525][T12278] netlink_unicast+0x599/0x670 [ 105.694284][T12278] netlink_sendmsg+0x5cc/0x6e0 [ 105.699059][T12278] __sock_sendmsg+0x140/0x180 [ 105.703727][T12278] ____sys_sendmsg+0x312/0x410 [ 105.708486][T12278] __sys_sendmsg+0x1d9/0x270 [ 105.713072][T12278] __x64_sys_sendmsg+0x46/0x50 [ 105.717834][T12278] x64_sys_call+0x2689/0x2d60 [ 105.722506][T12278] do_syscall_64+0xc9/0x1c0 [ 105.726996][T12278] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 105.732887][T12278] [ 105.735196][T12278] value changed: 0x00000000 -> 0x00000001 [ 105.740895][T12278] [ 105.743199][T12278] Reported by Kernel Concurrency Sanitizer on: [ 105.749332][T12278] CPU: 1 UID: 0 PID: 12278 Comm: syz.1.3948 Not tainted 6.11.0-syzkaller-11728-gad46e8f95e93 #0 [ 105.759756][T12278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 105.769801][T12278] ==================================================================