last executing test programs: 594.241271ms ago: executing program 0 (id=25120): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth0_vlan\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xfff1}, {0x3, 0x6}, {0x0, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x48080}, 0x0) 519.743853ms ago: executing program 0 (id=25126): r0 = socket$kcm(0x29, 0x5, 0x0) write$cgroup_pressure(r0, &(0x7f0000000140)={'full'}, 0xfffffdef) sendmmsg(r0, &(0x7f00000012c0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000400)="1a", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000600)='R', 0x1}], 0x1}}], 0x2, 0x8000) 442.505685ms ago: executing program 2 (id=25132): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010027bd7000fbdbdf250100000008000100030000002c000480050003000200000005000300010000000500030000000000050003000100000005000300010000000800020002"], 0x50}}, 0x0) 442.415325ms ago: executing program 4 (id=25135): sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x6, 0x0, 0x8, 0x2, 0x0, 0xefe}, 0x10}, 0x1, 0x7}, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000001c0)={r0, &(0x7f0000000080), 0x0}, 0x20) 410.289355ms ago: executing program 4 (id=25137): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWRULE={0x88, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x5c, 0x4, 0x0, 0x1, [{0x58, 0x1, 0x0, 0x1, @inner={{0xa}, @val={0x48, 0x2, 0x0, 0x1, [@NFTA_INNER_TYPE={0x8, 0x2, 0x1, 0x0, 0x84}, @NFTA_INNER_FLAGS={0x8, 0x3, 0x1, 0x0, 0x7}, @NFTA_INNER_HDRSIZE={0x8, 0x4, 0x1, 0x0, 0xf}, @NFTA_INNER_NUM={0x8}, @NFTA_INNER_EXPR={0x24, 0x5, 0x0, 0x1, @payload={{0xc}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_PAYLOAD_OFFSET={0x8, 0x3, 0x1, 0x0, 0xb9}, @NFTA_PAYLOAD_BASE={0x8, 0x2, 0x1, 0x0, 0x2}]}}}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0xb0}, 0x1, 0x0, 0x0, 0x8000}, 0x0) 404.672855ms ago: executing program 0 (id=25138): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), r0) sendmsg$WG_CMD_GET_DEVICE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x14, r1, 0x701, 0x70bd29, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x40404) 395.058035ms ago: executing program 2 (id=25139): syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) syz_clone(0x82000, 0x0, 0x0, 0x0, 0x0, 0x0) prctl$PR_SET_CHILD_SUBREAPER(0x24, 0x1) 358.704186ms ago: executing program 4 (id=25141): perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x8}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000000c0)={r0, &(0x7f00000001c0), &(0x7f0000000080)=""/45}, 0x20) 357.533906ms ago: executing program 0 (id=25142): socket$nl_route(0x10, 0x3, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB="700000000009010800000000000000000000000008000540000000000900010073797a30000000003c0002002c00018014000300ff01000000000000000000000000000114000400fc0100000000000000000000000000000c00028005000100000000000c000480"], 0x70}}, 0x0) 227.571877ms ago: executing program 4 (id=25146): perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x8, 0x40008, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x9, 0x6}, 0x0, 0x0, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=ANY=[@ANYBLOB="140000001000"], 0x64}, 0x1, 0x0, 0x0, 0x814}, 0x0) 227.345487ms ago: executing program 1 (id=25147): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f0000002580)={0x1040, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_WANTED={0x1014, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x1004, 0x4, "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"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x7ffd}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}, @ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}]}]}, 0x1040}}, 0x0) 227.063927ms ago: executing program 2 (id=25148): r0 = socket(0x10, 0x80002, 0x0) sendmsg(r0, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000040)="24000000180003041dfffd946f610500020100000005fe060c10880008000f00fff3c00e140000001a00ffffba16a0aa1c091dbfa1090000", 0x38}], 0x1}, 0x0) recvmmsg(r0, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0}, 0x2}, {{0x0, 0x0, &(0x7f0000001000)=[{&(0x7f0000000880)=""/167, 0xa7}, {&(0x7f0000000340)=""/156, 0x9c}, {&(0x7f0000000980)=""/9, 0x9}, {&(0x7f0000000400)=""/210, 0xd2}, {&(0x7f00000011c0)=""/4089, 0xff9}, {&(0x7f00000031c0)=""/4096, 0x1000}, {&(0x7f0000000500)=""/242, 0xf2}, {&(0x7f0000000180)=""/51, 0x33}, {&(0x7f0000000600)=""/52, 0x34}, {&(0x7f0000000f00)=""/203, 0xcb}, {&(0x7f0000000700)=""/34, 0x22}], 0xb}, 0x8}], 0x2, 0x40012120, 0x0) 193.273317ms ago: executing program 3 (id=25149): perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x100, 0x12504, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x8}, 0x7610, 0xe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) mprotect(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x0) signalfd4(0xffffffffffffffff, &(0x7f00000008c0), 0x8, 0x0) 163.964407ms ago: executing program 3 (id=25150): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={0x0, r0}, 0x18) syz_open_procfs(0x0, &(0x7f0000000180)='net/kcm\x00') 163.461797ms ago: executing program 1 (id=25160): r0 = open(&(0x7f0000000140)='./bus\x00', 0x143bc2, 0x1c0) fcntl$setlease(r0, 0x400, 0x1) fcntl$setlease(r0, 0x400, 0x1) 156.830347ms ago: executing program 2 (id=25151): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff9}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x7}, 0x18) bpf$MAP_CREATE(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="2100000000000000000000000000100000040000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000002"], 0x50) 138.862677ms ago: executing program 0 (id=25152): r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xf, 0x5}, 0x100a64, 0xc78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x2, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f00000003c0)=0x9) 122.379117ms ago: executing program 3 (id=25153): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001280), 0x17) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000a80)={r0}, 0x4) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000dc0)={0x6, 0x6, &(0x7f0000000640)=@framed={{}, [@map_fd={0x18, 0x0, 0x2, 0x0, r0}, @ldst={0x1, 0x3, 0x3}]}, &(0x7f0000000d40)='syzkaller\x00'}, 0x90) 121.674487ms ago: executing program 1 (id=25164): symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00') name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="14"], &(0x7f0000000180), 0x0) open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x0) 95.599498ms ago: executing program 4 (id=25154): r0 = syz_io_uring_setup(0x17dc, &(0x7f0000000100)={0x0, 0x59c4, 0x8, 0x1000, 0x5cd}, &(0x7f0000000300), &(0x7f0000000080)) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x8) io_uring_register$IORING_REGISTER_PBUF_STATUS(r0, 0x1a, &(0x7f0000000000)={0x5}, 0x1) 92.164538ms ago: executing program 1 (id=25155): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="2309fefffffffcffffff0100000005000700000000000800090000000000060002000100000008000a0004000100080017"], 0x3c}}, 0x0) 92.020968ms ago: executing program 2 (id=25156): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010000000900000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x8}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 71.890418ms ago: executing program 3 (id=25157): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x2800050, &(0x7f0000003240)=ANY=[], 0x6, 0x33c, &(0x7f0000000340)="$eJzs3M9rK1UUwPGTyY8mKW2yEEVBetGNboY2uhaDtCAGLG0jtoIwbScaMiYlEyoRse3Krbh3JbgoXXZXUP+Bbtzpxo27bgQXdqFvHvOrmfxq07yU9LXfD5Tc3HNPMjP3JpwZOrn4+LsvahVbrxgt0dJKYiIilyJ50SQUCx41r52SqENJBK0PiqXS8ppSK8WNtwpKqfmFn7/8OhMEz2bkPP/pxd+Fv85fPH/54snG51VbVW1Vb7SUobYbf7aMbctUu1W7piu1apmGbapq3TabfrzhxytWY2+vrYz67lx2r2natjLqbVUz26rVUK1mWxmfGdW60nVdzWUFNykfr60ZxTGTdya8MbgjzWbRiItIpi9SPp7KBgEAgKnqrf81t6S/Vf3/5uw/v7+6vrkl81797w7u1P8nr/3amv3odD6o/89Sg+r/t//wX6ur/k+LyDj1/w9yi/q/vyJ6XJ6p/sf9sJDq64p1PXPr/2zw+fUcfXKy6DWo/wEAAAAAAAAAAAAAAAAAAAAAeB5cOk7OcZxc+Bj+dW4hCJ7jQRo2/zMiknZn32H+H7L1zS1JezfuuXNsfbtf3i/7j270f8cnpixKTv7z1kPYJ44T3nmkXHn5xToI8g/2y3EvUqxIVSwxZUlyku/Nd5yV90vLS8oX5F/dppSN5hckJy8Mzi905wfvn5I3Xo/k65KT33akIZbseuu6k//NklLvfVjqyc944wAAAAAAeAh0dWXg+buuD4v7vzJSrHiXiYZcH/DPrxcHnp8ncq8kpr33AAAAAAA8Dnb7q5phWWbzmkZGbh4zfiMx2uBUT0/yusHxyB6Ouj0p70KGyLAx8QFHTJPoGDdaM34c8ah2NcJ/pOgKpYPO8Q5vuP8Tm6/DaI8mI2Qlejd+we1Qt3z3o2BHrnrCy0apIcdZVvtfR+taCd1HNTmx9fzS9z/9O7kPyDun4Qq4efBRpCc58pq3LDPdu+q8RnL4N4Y2gW8dAAAAANPQKfrDnnej4dhUNgoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgEfmTn7Sr6cx7X0EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7ounAQAA//8QRPLT") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) fallocate(r0, 0x1, 0x5, 0x213) 60.114469ms ago: executing program 0 (id=25158): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001100)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xd, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000009800000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000540)="d2ffdd934517f3e145fa02e086dd", 0x0, 0xd5b4, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 41.955949ms ago: executing program 3 (id=25159): r0 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f00000000c0)=@ipv4_newroute={0x1c, 0x1a, 0x1, 0x80000000, 0x25dfdbfb, {0xa, 0x0, 0x80, 0x0, 0x0, 0x6, 0xfe, 0x9}}, 0x1c}, 0x1, 0x0, 0x0, 0x14}, 0x20000050) 41.844179ms ago: executing program 4 (id=25161): r0 = socket$inet(0x2, 0x2, 0x1) shutdown(r0, 0x0) recvmmsg(r0, &(0x7f00000066c0), 0xa0d, 0x0, 0x0) 39.97598ms ago: executing program 1 (id=25162): r0 = mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x0, 0x0) mq_notify(r0, &(0x7f00000000c0)={0x0, 0xc, 0x0, @thr={0x0, 0x0}}) readv(r0, &(0x7f0000000000)=[{&(0x7f0000000100)=""/251, 0xfb}], 0x1) 7.62005ms ago: executing program 1 (id=25163): mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x9) r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$inet_udp_int(r0, 0x11, 0x67, 0x0, &(0x7f0000000380)) 7.50467ms ago: executing program 2 (id=25165): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) bind$xdp(0xffffffffffffffff, &(0x7f0000000100)={0x2c, 0x2}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x35, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000040000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c0003800800014000000000080002400000000018000380140001007465616d3000000000000000000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c00038014"], 0xfc}}, 0x0) 0s ago: executing program 3 (id=25166): mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1, 0x0, 0x0, 0x2) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2) kernel console output (not intermixed with test programs): [T19193] loop3: detected capacity change from 0 to 1024 [ 333.901121][ T29] audit: type=1326 audit(345.862:381914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19188 comm="syz.2.20726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=4 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 333.931161][ T29] audit: type=1326 audit(345.862:381915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19188 comm="syz.2.20726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 333.955787][T19193] EXT4-fs: inline encryption not supported [ 334.001939][T19193] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 334.098910][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 334.372174][ T29] audit: type=1326 audit(346.439:381916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19236 comm="syz.3.20748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 334.372251][ T29] audit: type=1326 audit(346.439:381917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19236 comm="syz.3.20748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 334.372283][ T29] audit: type=1326 audit(346.439:381918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19236 comm="syz.3.20748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 334.372332][ T29] audit: type=1326 audit(346.439:381919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19236 comm="syz.3.20748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 334.405868][T19241] loop1: detected capacity change from 0 to 1024 [ 334.406255][T19241] EXT4-fs: Ignoring removed nomblk_io_submit option [ 334.471019][T19241] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 334.595104][T19261] netlink: 'syz.3.20757': attribute type 1 has an invalid length. [ 334.624787][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 334.720086][T19285] program syz.4.20767 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 334.769697][T19293] __nla_validate_parse: 6 callbacks suppressed [ 334.769760][T19293] netlink: 8 bytes leftover after parsing attributes in process `syz.4.20771'. [ 334.769827][T19293] netlink: 'syz.4.20771': attribute type 5 has an invalid length. [ 334.769842][T19293] netlink: 48 bytes leftover after parsing attributes in process `syz.4.20771'. [ 334.819123][T19299] netlink: 4 bytes leftover after parsing attributes in process `syz.3.20772'. [ 334.975685][ T36] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x4 [ 334.975717][ T36] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x2 [ 334.975813][ T36] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x3 [ 334.977605][ T36] hid-generic 0000:3000000:0000.0004: hidraw0: HID v0.00 Device [sy] on syz0 [ 335.106094][T19352] loop1: detected capacity change from 0 to 2048 [ 335.109477][T19355] ieee802154 phy0 wpan0: encryption failed: -22 [ 335.141775][T19352] GPT:first_usable_lbas don't match. [ 335.141788][T19352] GPT:34 != 290 [ 335.141838][T19352] GPT: Use GNU Parted to correct GPT errors. [ 335.141903][T19352] loop1: p1 p2 p3 [ 335.409143][T19413] hub 1-0:1.0: USB hub found [ 335.409193][T19413] hub 1-0:1.0: 8 ports detected [ 335.457810][T19420] netlink: 24 bytes leftover after parsing attributes in process `syz.0.20821'. [ 335.548572][T19430] !: entered allmulticast mode [ 335.548639][T19430] !: left allmulticast mode [ 335.733432][T19451] loop2: detected capacity change from 0 to 512 [ 335.748472][T19451] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 335.766209][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 335.895468][T19471] loop3: detected capacity change from 0 to 512 [ 335.896055][T19471] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 336.040712][T19486] vhci_hcd: invalid port number 236 [ 336.046089][T19486] vhci_hcd: invalid port number 236 [ 336.237389][T19501] netlink: 8 bytes leftover after parsing attributes in process `syz.3.20855'. [ 336.246697][T19501] netlink: 8 bytes leftover after parsing attributes in process `syz.3.20855'. [ 336.257062][T19501] netlink: 8 bytes leftover after parsing attributes in process `syz.3.20855'. [ 336.324679][T19510] loop1: detected capacity change from 0 to 256 [ 336.905164][T19567] loop1: detected capacity change from 0 to 512 [ 336.969080][T19567] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 337.087125][T19592] netlink: 8 bytes leftover after parsing attributes in process `syz.3.20895'. [ 337.102369][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 337.329294][T19637] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 337.496052][T19661] SELinux: security_context_str_to_sid (E) failed with errno=-22 [ 337.510799][T19674] netlink: 40 bytes leftover after parsing attributes in process `syz.4.20933'. [ 337.529460][T19674] netlink: 40 bytes leftover after parsing attributes in process `syz.4.20933'. [ 337.642491][T19700] loop2: detected capacity change from 0 to 512 [ 337.665991][T19700] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 337.686197][T19700] EXT4-fs (loop2): 1 truncate cleaned up [ 337.697833][T19700] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 337.724290][T19713] netlink: 'syz.1.20950': attribute type 29 has an invalid length. [ 337.737194][T19716] loop4: detected capacity change from 0 to 1024 [ 337.746947][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 337.773490][T19716] EXT4-fs: Ignoring removed nomblk_io_submit option [ 337.795313][T19716] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=6042c018, mo2=0102] [ 337.795908][T19726] program syz.1.20955 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 337.803601][T19716] System zones: 0-1, 3-12 [ 337.804251][T19716] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 337.943389][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 338.052054][T19762] netlink: 'syz.4.20970': attribute type 1 has an invalid length. [ 338.055681][T19761] loop2: detected capacity change from 0 to 1024 [ 338.135149][T19776] netlink: 'syz.2.20976': attribute type 11 has an invalid length. [ 338.268422][T19796] bond10: entered promiscuous mode [ 338.273868][T19796] bond10: entered allmulticast mode [ 338.280315][T19796] 8021q: adding VLAN 0 to HW filter on device bond10 [ 338.696715][T19899] devpts: Bad value for 'gid' [ 338.701519][T19899] devpts: Bad value for 'gid' [ 338.793956][T19921] random: crng reseeded on system resumption [ 338.816397][T19921] Restarting kernel threads ... [ 338.828035][T19921] Done restarting kernel threads. [ 339.186308][T19993] team0: Port device geneve1 removed [ 339.197476][T19993] team0: Port device bridge10 removed [ 339.205067][ T1766] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 339.236857][ T1766] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 339.265771][ T1766] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 339.274964][ T1766] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 339.309068][T20013] usb usb3: usbfs: process 20013 (syz.0.21070) did not claim interface 0 before use [ 339.456848][T20049] bridge_slave_1: default FDB implementation only supports local addresses [ 339.509259][T20060] 9pnet: Could not find request transport: r [ 339.541075][T20068] loop3: detected capacity change from 0 to 128 [ 339.541161][T20067] loop2: detected capacity change from 0 to 512 [ 339.556233][T20068] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 339.570367][T20067] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 339.621748][T20067] EXT4-fs (loop2): 1 truncate cleaned up [ 339.627847][T20067] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 339.647123][ T31] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 339.676108][ T29] kauditd_printk_skb: 21 callbacks suppressed [ 339.676188][ T29] audit: type=1400 audit(352.013:381941): avc: denied { bind } for pid=20085 comm="syz.1.21103" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 339.724745][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 339.734740][T20096] loop1: detected capacity change from 0 to 128 [ 339.762481][T20096] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 339.790340][T20096] EXT4-fs warning (device loop1): verify_group_input:137: Cannot add at group 7 (only 1 groups) [ 339.810107][T20113] SELinux: Context system_u:object_r:netutils_exec_t:s0 is not valid (left unmapped). [ 339.823499][ T29] audit: type=1400 audit(352.171:381942): avc: denied { relabelto } for pid=20112 comm="syz.3.21112" name="cgroup.procs" dev="cgroup" ino=53 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:netutils_exec_t:s0" [ 339.851370][ T29] audit: type=1400 audit(352.171:381943): avc: denied { associate } for pid=20112 comm="syz.3.21112" name="cgroup.procs" dev="cgroup" ino=53 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 srawcon="system_u:object_r:netutils_exec_t:s0" [ 339.898498][ T3303] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 339.921574][T20125] loop4: detected capacity change from 0 to 1024 [ 339.943086][T20132] __nla_validate_parse: 11 callbacks suppressed [ 339.943106][T20132] netlink: 140 bytes leftover after parsing attributes in process `syz.0.21120'. [ 339.970893][T20125] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 339.995124][T20143] netlink: 4 bytes leftover after parsing attributes in process `syz.0.21123'. [ 340.041462][T20150] netlink: 148 bytes leftover after parsing attributes in process `syz.2.21126'. [ 340.057809][T20150] netlink: 8 bytes leftover after parsing attributes in process `syz.2.21126'. [ 340.059981][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 340.197301][T20175] netlink: 8 bytes leftover after parsing attributes in process `syz.0.21136'. [ 340.208662][T20177] netlink: 277 bytes leftover after parsing attributes in process `syz.1.21137'. [ 340.260322][T20186] netlink: 8 bytes leftover after parsing attributes in process `syz.3.21142'. [ 340.269376][T20186] netlink: 12 bytes leftover after parsing attributes in process `syz.3.21142'. [ 340.332697][ T29] audit: type=1400 audit(352.706:381944): avc: denied { create } for pid=20202 comm="syz.0.21148" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_generic_socket permissive=1 [ 340.354849][ T29] audit: type=1400 audit(352.706:381945): avc: denied { write } for pid=20202 comm="syz.0.21148" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_generic_socket permissive=1 [ 340.376476][ T29] audit: type=1400 audit(352.706:381946): avc: denied { read } for pid=20202 comm="syz.0.21148" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=netlink_generic_socket permissive=1 [ 340.403885][T20201] hub 6-0:1.0: USB hub found [ 340.408792][T20201] hub 6-0:1.0: 8 ports detected [ 340.445668][T20214] netlink: 156 bytes leftover after parsing attributes in process `syz.2.21153'. [ 340.468432][ T29] audit: type=1326 audit(352.843:381947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20217 comm="syz.2.21155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 340.492484][ T29] audit: type=1326 audit(352.843:381948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20217 comm="syz.2.21155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 340.515697][ T29] audit: type=1326 audit(352.843:381949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20217 comm="syz.2.21155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 340.539711][ T29] audit: type=1326 audit(352.843:381950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20217 comm="syz.2.21155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 340.681387][T20243] loop3: detected capacity change from 0 to 512 [ 340.724554][T20251] loop3: detected capacity change from 0 to 512 [ 340.732500][T20251] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 340.744225][T20251] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.21169: Invalid block bitmap block 0 in block_group 0 [ 340.758914][T20251] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 340.768489][T20251] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #11: comm syz.3.21169: attempt to clear invalid blocks 983261 len 1 [ 340.778553][T20260] netlink: 8 bytes leftover after parsing attributes in process `syz.2.21172'. [ 340.789782][T20251] EXT4-fs error (device loop3): __ext4_get_inode_loc:4832: comm syz.3.21169: Invalid inode table block 0 in block_group 0 [ 340.804433][T20251] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6305: Corrupt filesystem [ 340.814296][T20251] EXT4-fs error (device loop3) in ext4_orphan_del:301: Corrupt filesystem [ 340.827240][T20251] EXT4-fs error (device loop3): __ext4_get_inode_loc:4832: comm syz.3.21169: Invalid inode table block 0 in block_group 0 [ 340.840496][T20251] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6305: Corrupt filesystem [ 340.851113][T20251] EXT4-fs error (device loop3): ext4_truncate:4637: inode #11: comm syz.3.21169: mark_inode_dirty error [ 340.862557][T20251] EXT4-fs error (device loop3) in ext4_process_orphan:343: Corrupt filesystem [ 340.871920][T20251] EXT4-fs error (device loop3): __ext4_get_inode_loc:4832: comm syz.3.21169: Invalid inode table block 0 in block_group 0 [ 340.885681][T20251] EXT4-fs (loop3): 1 truncate cleaned up [ 340.891842][T20251] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 340.916732][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 341.169172][T20310] loop3: detected capacity change from 0 to 8192 [ 341.287937][T20330] loop1: detected capacity change from 0 to 512 [ 341.308448][T20330] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 341.347463][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 341.605634][T20381] loop1: detected capacity change from 0 to 512 [ 341.656131][T20381] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.21223: bg 0: block 248: padding at end of block bitmap is not set [ 341.677054][T20381] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.21223: Failed to acquire dquot type 1 [ 341.689793][T20381] EXT4-fs (loop1): 1 truncate cleaned up [ 341.695954][T20381] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 341.766667][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 341.948433][T20441] vlan3: entered promiscuous mode [ 342.039954][T20453] pimreg: entered allmulticast mode [ 342.056783][T20453] pimreg: left allmulticast mode [ 342.071185][T20453] dvmrp1: left allmulticast mode [ 342.198219][T20468] loop2: detected capacity change from 0 to 512 [ 342.216617][T20468] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 342.216713][T20471] loop1: detected capacity change from 0 to 1764 [ 342.370522][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 342.538807][T20526] tipc: Enabled bearer , priority 7 [ 342.571344][T20531] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 342.580689][T20531] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 343.160192][T20551] Q6\bY4: left promiscuous mode [ 343.166563][T20551] Q6\bY4: left allmulticast mode [ 343.174731][T20551] tunl0: left promiscuous mode [ 343.179543][T20551] tunl0: left allmulticast mode [ 343.184998][T20551] gretap0: left allmulticast mode [ 343.200980][T20483] Process accounting paused [ 343.212332][T20556] netlink: 'syz.1.21292': attribute type 27 has an invalid length. [ 343.224686][T20551] 0X: left allmulticast mode [ 343.231789][T20551] veth0_to_bond: left allmulticast mode [ 343.240021][T20551] vlan0: left promiscuous mode [ 343.249458][T20551] bond6: left allmulticast mode [ 343.255730][T20551] bridge4: left promiscuous mode [ 343.261185][T20551] gre2: left allmulticast mode [ 343.266161][T20551] bridge5: left promiscuous mode [ 343.271187][T20551] bridge5: left allmulticast mode [ 343.276448][T20551] bridge6: left promiscuous mode [ 343.281989][T20551] bridge6: left allmulticast mode [ 343.287688][T20551] bond9: left allmulticast mode [ 343.294982][T20551] bridge9: left allmulticast mode [ 343.301318][T20551] bridge10: left promiscuous mode [ 343.306428][T20551] bridge10: left allmulticast mode [ 343.451135][T20589] netlink: 'syz.2.21298': attribute type 178 has an invalid length. [ 343.514044][T20601] loop2: detected capacity change from 0 to 128 [ 343.532816][T20605] wireguard0: entered promiscuous mode [ 343.539277][T20605] wireguard0: entered allmulticast mode [ 343.545331][T20601] vfat: Unknown parameter '' [ 343.581820][T20621] rdma_op ffff888138e52d80 conn xmit_rdma 0000000000000000 [ 343.632377][T20631] loop3: detected capacity change from 0 to 128 [ 343.650412][T20633] 9pnet_fd: Insufficient options for proto=fd [ 343.693232][T20642] loop4: detected capacity change from 0 to 512 [ 343.704071][T20642] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 343.737553][T20656] usb usb8: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 343.759166][T20642] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 343.778398][T20662] loop1: detected capacity change from 0 to 1024 [ 343.788998][ T23] hid-generic 0003:0008:0000.0005: unknown main item tag 0x0 [ 343.797230][ T23] hid-generic 0003:0008:0000.0005: unknown main item tag 0x0 [ 343.803671][T20642] EXT4-fs error (device loop4): ext4_xattr_block_get:597: inode #15: comm syz.4.21318: corrupted xattr block 19: overlapping e_value [ 343.819110][T20642] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 343.829203][T20662] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 343.841680][ T23] hid-generic 0003:0008:0000.0005: hidraw0: USB HID v0.02 Device [syz0] on syz0 [ 343.863729][T20642] EXT4-fs error (device loop4): ext4_xattr_block_get:597: inode #15: comm syz.4.21318: corrupted xattr block 19: overlapping e_value [ 343.878185][T20642] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 343.888223][T20642] EXT4-fs error (device loop4): ext4_xattr_block_get:597: inode #15: comm syz.4.21318: corrupted xattr block 19: overlapping e_value [ 343.889494][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 343.902312][T20642] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 343.927923][T20642] EXT4-fs error (device loop4): ext4_xattr_block_get:597: inode #15: comm syz.4.21318: corrupted xattr block 19: overlapping e_value [ 343.942871][T20642] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 343.970953][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 344.181702][T20739] random: crng reseeded on system resumption [ 344.254791][T20748] atomic_op ffff888121561128 conn xmit_atomic 0000000000000000 [ 344.388839][T20779] loop4: detected capacity change from 0 to 512 [ 344.408706][T20784] netlink: 'syz.3.21372': attribute type 4 has an invalid length. [ 344.419345][T20782] loop1: detected capacity change from 0 to 1024 [ 344.428783][T20779] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 344.432966][T20782] EXT4-fs: Ignoring removed nobh option [ 344.446895][T20782] EXT4-fs: inline encryption not supported [ 344.464192][T20779] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.21371: bg 0: block 96: padding at end of block bitmap is not set [ 344.484380][T20779] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 591 with max blocks 1 with error 117 [ 344.496946][T20779] EXT4-fs (loop4): This should not happen!! Data will be lost [ 344.496946][T20779] [ 344.518722][T20782] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 344.554492][ T3303] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 344.567107][T20800] dummy0: entered allmulticast mode [ 344.573453][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 344.582842][T20800] dummy0: left allmulticast mode [ 344.649403][T20818] support for cryptoloop has been removed. Use dm-crypt instead. [ 344.779758][T20840] hub 1-0:1.0: USB hub found [ 344.785207][T20840] hub 1-0:1.0: 8 ports detected [ 344.855815][ T3388] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x4 [ 344.863615][ T3388] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x2 [ 344.873285][ T3388] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x3 [ 344.883639][ T3388] hid-generic 0000:3000000:0000.0006: hidraw0: HID v0.00 Device [sy] on syz0 [ 345.031143][T20886] loop4: detected capacity change from 0 to 512 [ 345.047404][T20886] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 345.079544][T20886] EXT4-fs (loop4): 1 truncate cleaned up [ 345.085757][T20886] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 345.117326][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 345.223417][T20908] random: crng reseeded on system resumption [ 345.409355][ T29] kauditd_printk_skb: 25 callbacks suppressed [ 345.409373][ T29] audit: type=1326 audit(358.029:381974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20946 comm="syz.1.21439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 345.439869][ T29] audit: type=1326 audit(358.029:381975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20946 comm="syz.1.21439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 345.470505][T20954] __nla_validate_parse: 16 callbacks suppressed [ 345.470522][T20954] netlink: 4 bytes leftover after parsing attributes in process `syz.1.21441'. [ 345.487053][ T29] audit: type=1326 audit(358.039:381976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20946 comm="syz.1.21439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 345.487091][ T29] audit: type=1326 audit(358.039:381977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20949 comm="syz.1.21439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe734161785 code=0x7ffc0000 [ 345.487149][ T29] audit: type=1326 audit(358.039:381978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20946 comm="syz.1.21439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 345.487177][ T29] audit: type=1326 audit(358.039:381979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20946 comm="syz.1.21439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 345.581608][ T29] audit: type=1326 audit(358.060:381980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20946 comm="syz.1.21439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 345.605494][ T29] audit: type=1326 audit(358.060:381981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20946 comm="syz.1.21439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe7340caf79 code=0x7ffc0000 [ 345.628581][ T29] audit: type=1326 audit(358.060:381982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20946 comm="syz.1.21439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 345.652530][ T29] audit: type=1326 audit(358.060:381983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20946 comm="syz.1.21439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 345.695314][T20958] loop1: detected capacity change from 0 to 128 [ 345.784672][T20976] netlink: 8 bytes leftover after parsing attributes in process `syz.3.21450'. [ 345.795132][T20976] netlink: 8 bytes leftover after parsing attributes in process `syz.3.21450'. [ 345.858099][T20988] netlink: 'syz.4.21455': attribute type 4 has an invalid length. [ 345.866056][T20988] netlink: 199824 bytes leftover after parsing attributes in process `syz.4.21455'. [ 345.881667][T20994] netlink: 8 bytes leftover after parsing attributes in process `syz.0.21457'. [ 345.950211][T21002] netlink: 648 bytes leftover after parsing attributes in process `syz.4.21463'. [ 345.996258][T21008] netlink: 'syz.3.21464': attribute type 1 has an invalid length. [ 346.025936][T21011] xt_l2tp: missing protocol rule (udp|l2tpip) [ 346.046151][T21017] netlink: 12 bytes leftover after parsing attributes in process `syz.1.21470'. [ 346.048597][T21018] loop4: detected capacity change from 0 to 512 [ 346.072403][T21018] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 346.086823][T21018] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 not in group (block 4294901864)! [ 346.097873][T21018] EXT4-fs (loop4): group descriptors corrupted! [ 346.114760][T21018] loop4: detected capacity change from 0 to 512 [ 346.147073][T21018] EXT4-fs (loop4): too many log groups per flexible block group [ 346.155093][T21018] EXT4-fs (loop4): failed to initialize mballoc (-12) [ 346.181111][T21018] EXT4-fs (loop4): mount failed [ 346.645575][ T23] Process accounting resumed [ 346.660417][T21120] Process accounting resumed [ 346.707450][T21124] netlink: 20 bytes leftover after parsing attributes in process `syz.4.21518'. [ 346.717905][T21124] netlink: 20 bytes leftover after parsing attributes in process `syz.4.21518'. [ 347.030195][T21147] loop3: detected capacity change from 0 to 512 [ 347.069211][T21147] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 347.081362][T21147] EXT4-fs (loop3): 1 truncate cleaned up [ 347.087552][T21147] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 347.130665][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 347.177434][T21165] loop4: detected capacity change from 0 to 512 [ 347.209954][T21173] netlink: 60 bytes leftover after parsing attributes in process `syz.3.21541'. [ 347.241513][T21165] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 347.264586][T21165] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 347.290256][T21165] EXT4-fs error (device loop4): ext4_xattr_block_get:597: inode #15: comm syz.4.21538: corrupted xattr block 19: overlapping e_value [ 347.304510][T21165] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 347.313641][T21165] EXT4-fs error (device loop4): ext4_xattr_block_get:597: inode #15: comm syz.4.21538: corrupted xattr block 19: overlapping e_value [ 347.328486][T21165] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 347.345975][T21188] netlink: 'syz.0.21546': attribute type 10 has an invalid length. [ 347.355664][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 347.448677][T21206] x_tables: ip_tables: udp match: only valid for protocol 17 [ 348.329827][T21249] loop4: detected capacity change from 0 to 32768 [ 348.375655][T21249] loop4: p1 p2 p3 < p5 p6 > [ 348.380746][T21249] loop4: p2 size 16775168 extends beyond EOD, truncated [ 348.389869][T21249] loop4: p5 start 4294970168 is beyond EOD, truncated [ 348.745377][T21333] netlink: 'syz.2.21605': attribute type 1 has an invalid length. [ 348.836428][T21340] loop4: detected capacity change from 0 to 512 [ 348.886322][T21340] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 348.928705][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 349.088119][T21377] random: crng reseeded on system resumption [ 349.101336][T21377] Restarting kernel threads ... [ 349.114613][T21380] netlink: 'syz.4.21623': attribute type 11 has an invalid length. [ 349.123761][T21377] Done restarting kernel threads. [ 349.242644][T21401] usb usb3: usbfs: process 21401 (syz.3.21632) did not claim interface 0 before use [ 349.352553][T21411] loop3: detected capacity change from 0 to 512 [ 349.362813][T21411] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 349.374357][T21411] EXT4-fs (loop3): 1 truncate cleaned up [ 349.374747][T21411] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 349.491012][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 349.554141][T21435] SELinux: failed to load policy [ 349.623627][ T23] hid-generic 0008:0006:0007.0007: unknown main item tag 0x0 [ 349.631162][ T23] hid-generic 0008:0006:0007.0007: unknown main item tag 0x0 [ 349.639347][ T23] hid-generic 0008:0006:0007.0007: unknown main item tag 0x0 [ 349.646790][ T23] hid-generic 0008:0006:0007.0007: unknown main item tag 0x0 [ 349.654229][ T23] hid-generic 0008:0006:0007.0007: unknown main item tag 0x0 [ 349.662570][ T23] hid-generic 0008:0006:0007.0007: unknown main item tag 0x0 [ 349.670208][ T23] hid-generic 0008:0006:0007.0007: unknown main item tag 0x0 [ 349.677641][ T23] hid-generic 0008:0006:0007.0007: unknown main item tag 0x0 [ 349.685101][ T23] hid-generic 0008:0006:0007.0007: unknown main item tag 0x0 [ 349.693245][ T23] hid-generic 0008:0006:0007.0007: unknown main item tag 0x0 [ 349.718839][ T23] hid-generic 0008:0006:0007.0007: hidraw0: HID v0.0b Device [syz1] on syz1 [ 350.037109][T21502] loop4: detected capacity change from 0 to 1024 [ 350.079292][T21502] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 350.090972][T21502] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 350.129818][T21502] JBD2: no valid journal superblock found [ 350.135705][T21502] EXT4-fs (loop4): Could not load journal inode [ 350.222828][T21523] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 350.277244][T21529] SELinux: failed to load policy [ 350.369077][T21541] netlink: 'syz.4.21697': attribute type 1 has an invalid length. [ 350.379544][ T29] kauditd_printk_skb: 24 callbacks suppressed [ 350.379562][ T29] audit: type=1326 audit(363.257:382008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21542 comm="syz.1.21698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 350.461639][ T29] audit: type=1326 audit(363.288:382009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21542 comm="syz.1.21698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 350.485645][ T29] audit: type=1326 audit(363.288:382010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21542 comm="syz.1.21698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 350.511289][ T29] audit: type=1326 audit(363.288:382011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21542 comm="syz.1.21698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 350.534625][ T29] audit: type=1326 audit(363.288:382012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21542 comm="syz.1.21698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 350.686119][T21560] Process accounting paused [ 350.713457][T21579] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 350.756484][T21579] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 350.778014][ T29] audit: type=1400 audit(363.677:382013): avc: denied { ioctl } for pid=21577 comm="syz.2.21714" path="socket:[149209]" dev="sockfs" ino=149209 ioctlcmd=0x4943 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 350.899728][T21600] __nla_validate_parse: 9 callbacks suppressed [ 350.899747][T21600] netlink: 8 bytes leftover after parsing attributes in process `syz.0.21722'. [ 350.969674][T21608] netlink: 36 bytes leftover after parsing attributes in process `syz.4.21726'. [ 350.988785][ T29] audit: type=1326 audit(363.897:382014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21609 comm="syz.1.21727" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe73412eec9 code=0x0 [ 351.105925][T21633] netlink: 4 bytes leftover after parsing attributes in process `syz.3.21739'. [ 351.172155][T21654] loop4: detected capacity change from 0 to 128 [ 351.343193][ T29] audit: type=1326 audit(364.265:382015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21692 comm="syz.2.21761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 351.400173][ T29] audit: type=1326 audit(364.296:382016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21692 comm="syz.2.21761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 351.424286][ T29] audit: type=1326 audit(364.296:382017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21692 comm="syz.2.21761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 351.873472][T21781] loop2: detected capacity change from 0 to 2048 [ 351.902460][T21791] netlink: 'syz.1.21804': attribute type 3 has an invalid length. [ 351.922534][T21781] Alternate GPT is invalid, using primary GPT. [ 351.929012][T21781] loop2: p2 p3 p7 [ 352.031671][T21826] macsec0: entered promiscuous mode [ 352.037664][T21826] bridge0: entered promiscuous mode [ 352.043443][T21828] netlink: 60 bytes leftover after parsing attributes in process `syz.4.21808'. [ 352.069391][T21805] netlink: 60 bytes leftover after parsing attributes in process `syz.4.21808'. [ 352.088558][T21838] loop2: detected capacity change from 0 to 1024 [ 352.096657][T21838] EXT4-fs: Ignoring removed bh option [ 352.102674][T21838] EXT4-fs: inline encryption not supported [ 352.107257][T21840] tipc: Enabling of bearer rejected, failed to enable media [ 352.110876][T21838] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 352.190028][T21838] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 352.228328][T21838] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 2: comm syz.2.21822: lblock 2 mapped to illegal pblock 2 (length 1) [ 352.256338][T21838] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 48: comm syz.2.21822: lblock 0 mapped to illegal pblock 48 (length 1) [ 352.277376][T21838] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.21822: Failed to acquire dquot type 0 [ 352.292889][T21868] netlink: 24 bytes leftover after parsing attributes in process `syz.4.21832'. [ 352.311109][T21838] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6305: Corrupt filesystem [ 352.323361][T21838] EXT4-fs error (device loop2): ext4_evict_inode:254: inode #11: comm syz.2.21822: mark_inode_dirty error [ 352.338244][T21838] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 352.384028][T21838] EXT4-fs (loop2): 1 orphan inode deleted [ 352.396336][T21838] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 352.409235][ T3439] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:7: lblock 1 mapped to illegal pblock 1 (length 1) [ 352.433258][ T3439] EXT4-fs error (device loop2): ext4_release_dquot:6981: comm kworker/u8:7: Failed to release dquot type 0 [ 352.476481][ T3439] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 2: comm kworker/u8:7: lblock 2 mapped to illegal pblock 2 (length 1) [ 352.491938][ T3439] EXT4-fs error (device loop2): ext4_write_dquot:6925: comm kworker/u8:7: Failed to commit dquot type 0 [ 352.505088][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 352.514732][ T3307] EXT4-fs error (device loop2): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 352.550457][ T3307] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6305: Corrupt filesystem [ 352.574161][ T3307] EXT4-fs error (device loop2): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error [ 352.593622][T21905] netlink: 12 bytes leftover after parsing attributes in process `syz.3.21851'. [ 352.664613][T21921] loop4: detected capacity change from 0 to 1024 [ 352.676008][T21921] EXT4-fs: Ignoring removed mblk_io_submit option [ 352.682995][T21927] tipc: New replicast peer: 255.255.255.83 [ 352.689048][T21927] tipc: Enabled bearer , priority 7 [ 352.692792][T21921] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 352.710890][T21921] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 352.734138][T21934] netlink: 20 bytes leftover after parsing attributes in process `syz.1.21861'. [ 352.771413][T21940] SELinux: Context is not valid (left unmapped). [ 352.782346][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 352.802815][T21949] loop4: detected capacity change from 0 to 164 [ 352.827748][T21954] netlink: 352 bytes leftover after parsing attributes in process `syz.1.21870'. [ 352.837022][T21954] netlink: 68 bytes leftover after parsing attributes in process `syz.1.21870'. [ 352.858451][T21962] loop4: detected capacity change from 0 to 512 [ 352.866183][T21962] EXT4-fs: Ignoring removed nobh option [ 352.882816][T21962] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #15: comm syz.4.21872: corrupted in-inode xattr: e_value size too large [ 352.906908][T21962] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.21872: couldn't read orphan inode 15 (err -117) [ 352.927338][T21962] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 352.964099][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 353.091554][T22004] random: crng reseeded on system resumption [ 353.419199][T22074] sock: sock_timestamping_bind_phc: sock not bind to device [ 353.554038][T22097] loop2: detected capacity change from 0 to 764 [ 353.563767][T22097] rock: directory entry would overflow storage [ 353.570069][T22097] rock: sig=0x4654, size=5, remaining=4 [ 353.624473][T22112] random: crng reseeded on system resumption [ 353.637749][T22118] tipc: Enabling of bearer rejected, already enabled [ 353.812150][ T23] hid-generic 0000:0000:0000.0008: hidraw0: HID v0.03 Device [syz1] on syz1 [ 353.886427][T22185] loop2: detected capacity change from 0 to 164 [ 353.902776][T22185] iso9660: Corrupted directory entry in block 2 of inode 1792 [ 354.320551][T22281] loop3: detected capacity change from 0 to 128 [ 354.458673][T22296] loop2: detected capacity change from 0 to 8192 [ 354.642219][ T10] hid_parser_main: 126 callbacks suppressed [ 354.642252][ T10] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0 [ 354.657052][ T10] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0 [ 354.664522][ T10] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0 [ 354.673329][ T10] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0 [ 354.680734][ T10] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0 [ 354.688254][ T10] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0 [ 354.695733][ T10] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0 [ 354.704422][ T10] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0 [ 354.711963][ T10] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0 [ 354.719368][ T10] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0 [ 354.737551][ T10] hid-generic 0000:0000:0000.0009: hidraw0: HID v8.00 Device [syz0] on syz0 [ 354.886153][T22564] macvtap0: entered promiscuous mode [ 354.891535][T22564] syz_tun: entered promiscuous mode [ 354.909227][T22572] loop2: detected capacity change from 0 to 1024 [ 354.917090][T22564] syz_tun: left promiscuous mode [ 354.923801][T22572] EXT4-fs: Ignoring removed oldalloc option [ 354.929815][T22572] EXT4-fs: Ignoring removed bh option [ 354.951449][T22572] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 354.971499][T22586] loop4: detected capacity change from 0 to 512 [ 354.978284][T22586] EXT4-fs: Ignoring removed oldalloc option [ 354.995992][T22586] EXT4-fs (loop4): 1 truncate cleaned up [ 355.004652][T22586] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 355.025439][T22586] EXT4-fs error (device loop4): htree_dirblock_to_tree:1080: inode #2: block 13: comm syz.4.22056: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=0, rec_len=0, size=1024 fake=0 [ 355.069446][T22586] EXT4-fs (loop4): Remounting filesystem read-only [ 355.263398][ T29] kauditd_printk_skb: 31 callbacks suppressed [ 355.263413][ T29] audit: type=1400 audit(368.380:382044): avc: denied { setopt } for pid=22652 comm="syz.3.22086" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 355.572344][T22723] pimreg: entered allmulticast mode [ 355.579667][T22723] pimreg: left allmulticast mode [ 355.591202][T22722] vlan0: entered promiscuous mode [ 355.596303][T22722] gretap0: entered promiscuous mode [ 355.670416][T22735] loop3: detected capacity change from 0 to 1764 [ 355.912418][T22742] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 355.913826][ T29] audit: type=1326 audit(369.062:382045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22741 comm="syz.2.22115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 355.944178][T22742] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 355.953869][ T29] audit: type=1326 audit(369.104:382046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22741 comm="syz.2.22115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 355.981737][ T29] audit: type=1326 audit(369.136:382047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22741 comm="syz.2.22115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=316 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 355.987998][T22749] __nla_validate_parse: 9 callbacks suppressed [ 355.988103][T22749] netlink: 4 bytes leftover after parsing attributes in process `syz.1.22125'. [ 356.006634][ T29] audit: type=1326 audit(369.136:382048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22741 comm="syz.2.22115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 356.044596][ T29] audit: type=1326 audit(369.136:382049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22741 comm="syz.2.22115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 356.067781][ T29] audit: type=1326 audit(369.136:382050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22741 comm="syz.2.22115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 356.092259][ T29] audit: type=1326 audit(369.136:382051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22741 comm="syz.2.22115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 356.115496][ T29] audit: type=1326 audit(369.136:382052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22741 comm="syz.2.22115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 356.258648][T22785] sit0: left promiscuous mode [ 356.296496][T22785] batadv_slave_1: left promiscuous mode [ 356.307905][T22785] ip6erspan0: left promiscuous mode [ 356.315811][T22785] gretap1: left allmulticast mode [ 356.321663][T22785] bridge7: left promiscuous mode [ 356.326674][T22785] bridge7: left allmulticast mode [ 356.346005][T22785] ip6gre2: left promiscuous mode [ 356.355401][T22785] bond0: left allmulticast mode [ 356.362449][T22785] bond10: left promiscuous mode [ 356.368570][T22785] bond10: left allmulticast mode [ 356.527514][T22816] tipc: Enabled bearer , priority 7 [ 356.543177][T22813] ipvlan2: entered promiscuous mode [ 356.572571][T22825] netlink: 'syz.2.22130': attribute type 27 has an invalid length. [ 356.626411][T22836] netlink: 8 bytes leftover after parsing attributes in process `syz.2.22133'. [ 356.635488][T22836] netlink: 4 bytes leftover after parsing attributes in process `syz.2.22133'. [ 356.649059][T22839] rdma_op ffff888103099d80 conn xmit_rdma 0000000000000000 [ 356.657712][T22836] wireguard0: entered promiscuous mode [ 356.663370][T22836] wireguard0: entered allmulticast mode [ 356.674138][T22843] netlink: 44 bytes leftover after parsing attributes in process `syz.1.22151'. [ 356.691485][T22834] netlink: 44 bytes leftover after parsing attributes in process `syz.1.22151'. [ 356.713824][T22845] loop2: detected capacity change from 0 to 128 [ 356.724521][T22847] netlink: 7 bytes leftover after parsing attributes in process `syz.3.22155'. [ 356.764748][T22856] loop2: detected capacity change from 0 to 512 [ 356.786991][T22856] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 356.820999][T22856] EXT4-fs mount: 2 callbacks suppressed [ 356.821049][T22856] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 356.881401][T22856] EXT4-fs error (device loop2): ext4_xattr_block_get:597: inode #15: comm syz.2.22144: corrupted xattr block 19: overlapping e_value [ 356.896743][T22856] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop2 ino=15 [ 356.905891][T22856] EXT4-fs error (device loop2): ext4_xattr_block_get:597: inode #15: comm syz.2.22144: corrupted xattr block 19: overlapping e_value [ 356.919846][T22856] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop2 ino=15 [ 356.923102][T22873] EXT4-fs error (device loop2): ext4_xattr_block_get:597: inode #15: comm syz.2.22144: corrupted xattr block 19: overlapping e_value [ 356.928810][T22856] EXT4-fs error (device loop2): ext4_xattr_block_get:597: inode #15: comm syz.2.22144: corrupted xattr block 19: overlapping e_value [ 356.929001][T22856] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop2 ino=15 [ 356.944455][T22873] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop2 ino=15 [ 356.997881][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 357.012352][T22875] random: crng reseeded on system resumption [ 357.074960][T22893] netlink: 20 bytes leftover after parsing attributes in process `syz.2.22156'. [ 357.084714][T22893] netlink: 'syz.2.22156': attribute type 4 has an invalid length. [ 357.240656][T22905] can0: slcan on ttyS3. [ 357.256741][ T29] audit: type=1326 audit(370.469:382053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22910 comm="syz.1.22164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 357.301335][T22904] can0 (unregistered): slcan off ttyS3. [ 357.323732][T22917] loop4: detected capacity change from 0 to 128 [ 357.334331][T22917] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 357.376085][ T3298] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 357.506731][T22949] loop3: detected capacity change from 0 to 2048 [ 357.517829][T22952] loop4: detected capacity change from 0 to 512 [ 357.536369][T22952] EXT4-fs warning (device loop4): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 357.557145][T22952] EXT4-fs (loop4): mount failed [ 357.564715][T22949] Alternate GPT is invalid, using primary GPT. [ 357.571267][T22949] loop3: p2 p3 p7 [ 358.069390][T23034] loop2: detected capacity change from 0 to 512 [ 358.076673][T23034] msdos: Unknown parameter 'allow_uime' [ 358.291396][T23055] netlink: 'syz.3.22220': attribute type 1 has an invalid length. [ 358.324880][T23057] SELinux: failed to load policy [ 358.724277][T23063] loop2: detected capacity change from 0 to 8192 [ 358.842803][T23105] netlink: 8 bytes leftover after parsing attributes in process `syz.4.22243'. [ 358.852626][T23105] netlink: 8 bytes leftover after parsing attributes in process `syz.4.22243'. [ 358.927983][T23120] loop2: detected capacity change from 0 to 1024 [ 358.953464][T23120] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 358.963287][T23129] netlink: 8 bytes leftover after parsing attributes in process `syz.4.22252'. [ 359.010634][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 359.122232][T23164] 9pnet: Could not find request transport: r [ 359.318583][T23203] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 359.412864][T23225] random: crng reseeded on system resumption [ 359.439067][T23225] Restarting kernel threads ... [ 359.445837][T23225] Done restarting kernel threads. [ 359.610485][T23263] bond0: entered promiscuous mode [ 359.615595][T23263] bond0: entered allmulticast mode [ 359.631183][T23263] 8021q: adding VLAN 0 to HW filter on device bond0 [ 359.662985][T23302] netlink: 'syz.1.22313': attribute type 11 has an invalid length. [ 359.692909][T23305] netlink: 'syz.1.22315': attribute type 1 has an invalid length. [ 359.705394][T23308] loop3: detected capacity change from 0 to 1024 [ 359.770502][T23325] netlink: 'syz.0.22320': attribute type 29 has an invalid length. [ 359.781232][T23323] program syz.4.22319 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 360.219785][T23404] loop4: detected capacity change from 0 to 512 [ 360.233979][T23407] loop3: detected capacity change from 0 to 512 [ 360.237008][T23404] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 360.273817][T23407] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 360.332644][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 360.614127][T23493] random: crng reseeded on system resumption [ 360.840698][ T29] kauditd_printk_skb: 4 callbacks suppressed [ 360.840712][ T29] audit: type=1326 audit(374.238:382057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23545 comm="syz.3.22419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 360.871473][ T29] audit: type=1326 audit(374.238:382058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23545 comm="syz.3.22419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 360.896413][ T29] audit: type=1326 audit(374.238:382059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23545 comm="syz.3.22419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 360.900839][T23553] __nla_validate_parse: 12 callbacks suppressed [ 360.900862][T23553] netlink: 4 bytes leftover after parsing attributes in process `syz.4.22422'. [ 360.929538][ T29] audit: type=1326 audit(374.248:382060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23545 comm="syz.3.22419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 360.960655][ T29] audit: type=1326 audit(374.259:382061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23545 comm="syz.3.22419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 360.984123][ T29] audit: type=1326 audit(374.259:382062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23545 comm="syz.3.22419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 361.008458][ T29] audit: type=1326 audit(374.259:382063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23545 comm="syz.3.22419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 361.031724][ T29] audit: type=1326 audit(374.259:382064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23545 comm="syz.3.22419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 361.096049][T23559] netlink: 256 bytes leftover after parsing attributes in process `syz.1.22424'. [ 361.105393][T23559] netlink: 56 bytes leftover after parsing attributes in process `syz.1.22424'. [ 361.125098][T23565] loop2: detected capacity change from 0 to 164 [ 361.154340][T23565] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 361.201214][T23576] netlink: 'syz.1.22432': attribute type 4 has an invalid length. [ 361.209853][T23576] netlink: 199824 bytes leftover after parsing attributes in process `syz.1.22432'. [ 361.248548][T23584] hub 8-0:1.0: USB hub found [ 361.256810][T23584] hub 8-0:1.0: 8 ports detected [ 361.305739][T23594] netlink: 12 bytes leftover after parsing attributes in process `syz.3.22439'. [ 361.412709][T23604] loop4: detected capacity change from 0 to 512 [ 361.428499][T23604] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 361.441644][T23604] EXT4-fs (loop4): orphan cleanup on readonly fs [ 361.451094][T23604] Quota error (device loop4): dq_insert_tree: Quota tree root isn't allocated! [ 361.460176][T23604] Quota error (device loop4): qtree_write_dquot: Error -5 occurred while creating quota [ 361.461118][T23613] loop3: detected capacity change from 0 to 512 [ 361.471604][T23604] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.22456: Failed to acquire dquot type 1 [ 361.490817][T23613] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 361.502324][T23604] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.22456: bg 0: block 40: padding at end of block bitmap is not set [ 361.517609][T23604] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 361.522474][T23613] EXT4-fs (loop3): 1 truncate cleaned up [ 361.540936][T23604] EXT4-fs (loop4): 1 truncate cleaned up [ 361.550621][T23613] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 361.563562][T23604] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 361.608584][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 361.647984][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 361.707001][T23648] netlink: 16 bytes leftover after parsing attributes in process `syz.3.22470'. [ 361.723716][T23652] netlink: 8 bytes leftover after parsing attributes in process `syz.0.22474'. [ 361.729853][T23648] netlink: 60 bytes leftover after parsing attributes in process `syz.3.22470'. [ 361.789609][T23660] loop3: detected capacity change from 0 to 128 [ 361.829344][T23660] FAT-fs (loop3): error, invalid access to FAT (entry 0x0fff0000) [ 361.837341][T23660] FAT-fs (loop3): Filesystem has been set read-only [ 361.900359][T23675] netlink: 'syz.3.22484': attribute type 10 has an invalid length. [ 361.983322][T23695] loop2: detected capacity change from 0 to 512 [ 362.028973][T23695] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 362.058587][T23695] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 362.140450][T23695] EXT4-fs error (device loop2): ext4_xattr_block_get:597: inode #15: comm syz.2.22480: corrupted xattr block 19: overlapping e_value [ 362.174585][T23695] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop2 ino=15 [ 362.195481][T23695] EXT4-fs error (device loop2): ext4_xattr_block_get:597: inode #15: comm syz.2.22480: corrupted xattr block 19: overlapping e_value [ 362.216040][T23695] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop2 ino=15 [ 362.240410][T23723] x_tables: ip_tables: udp match: only valid for protocol 17 [ 362.250047][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 362.335229][T23743] netlink: 36 bytes leftover after parsing attributes in process `syz.1.22494'. [ 362.435972][T22787] hid_parser_main: 33 callbacks suppressed [ 362.436062][T22787] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 362.450642][T22787] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 362.458152][T22787] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 362.465682][T22787] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 362.473079][T22787] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 362.481863][T22787] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 362.489345][T22787] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 362.496779][T22787] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 362.505503][T22787] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 362.512938][T22787] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0 [ 362.521916][T22787] hid-generic 0000:0000:0000.000A: hidraw0: HID v0.03 Device [syz1] on syz1 [ 362.607372][T23778] tipc: Enabling of bearer rejected, failed to enable media [ 362.632377][T23782] random: crng reseeded on system resumption [ 362.687246][T23788] netlink: 24 bytes leftover after parsing attributes in process `syz.1.22509'. [ 362.743207][T23795] loop2: detected capacity change from 0 to 512 [ 363.161769][T23863] loop4: detected capacity change from 0 to 1024 [ 363.181162][T23863] EXT4-fs: Ignoring removed nomblk_io_submit option [ 363.188005][T23863] EXT4-fs: Ignoring removed bh option [ 363.204181][T23860] tipc: Disabling bearer [ 363.249135][T23863] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 363.317572][T23863] EXT4-fs: Ignoring removed orlov option [ 363.343001][T23863] EXT4-fs (loop4): can't enable nombcache during remount [ 363.408309][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 363.534933][T23930] loop2: detected capacity change from 0 to 1024 [ 363.573393][T23930] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 363.591960][T23930] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #11: comm syz.2.22563: missing EA_INODE flag [ 363.606738][T23930] EXT4-fs (loop2): Remounting filesystem read-only [ 363.647624][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 363.693238][T23948] loop3: detected capacity change from 0 to 1024 [ 363.702813][T23948] EXT4-fs: inline encryption not supported [ 363.746130][T23948] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 363.822022][T23948] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4193: comm syz.3.22572: Allocating blocks 497-513 which overlap fs metadata [ 363.846217][T23948] EXT4-fs (loop3): Remounting filesystem read-only [ 363.888000][T23947] EXT4-fs (loop3): pa ffff888106ecf700: logic 16, phys. 145, len 23 [ 363.963956][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 364.161190][T24015] loop4: detected capacity change from 0 to 512 [ 364.182034][T24015] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 2178, start 8e210000) [ 364.192352][T24015] FAT-fs (loop4): Filesystem has been set read-only [ 364.291834][T24033] loop2: detected capacity change from 0 to 2048 [ 364.299471][T24033] EXT4-fs: Ignoring removed i_version option [ 364.324650][T24033] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 364.369788][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 364.763518][T24107] loop3: detected capacity change from 0 to 512 [ 364.780142][T24107] EXT4-fs: dax option not supported [ 364.863587][T24132] loop4: detected capacity change from 0 to 256 [ 364.870996][T24132] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 364.904271][T24132] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 364.952642][T24145] netlink: 'syz.2.22658': attribute type 1 has an invalid length. [ 364.960636][T24145] netlink: 'syz.2.22658': attribute type 2 has an invalid length. [ 365.288131][T24198] loop4: detected capacity change from 0 to 2048 [ 365.318788][T22787] kernel write not supported for file /vcs (pid: 22787 comm: kworker/1:3) [ 365.347620][T24213] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 365.349721][T24198] Alternate GPT is invalid, using primary GPT. [ 365.369981][T24198] loop4: p2 p3 p7 [ 365.445941][T24225] loop2: detected capacity change from 0 to 1024 [ 365.495303][T24225] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 365.535003][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 365.601147][T24262] A link change request failed with some changes committed already. Interface Q6\bY4 may have been left with an inconsistent configuration, please check. [ 365.671013][T24276] loop2: detected capacity change from 0 to 256 [ 365.771162][T24297] loop2: detected capacity change from 0 to 128 [ 366.030810][T24343] __nla_validate_parse: 10 callbacks suppressed [ 366.030827][T24343] netlink: 224 bytes leftover after parsing attributes in process `syz.2.22738'. [ 366.049904][T24343] netlink: 16 bytes leftover after parsing attributes in process `syz.2.22738'. [ 366.192723][ T29] kauditd_printk_skb: 19 callbacks suppressed [ 366.192738][ T29] audit: type=1400 audit(379.854:382084): avc: denied { shutdown } for pid=24364 comm="syz.0.22749" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 366.264757][ T29] audit: type=1400 audit(379.886:382085): avc: denied { read } for pid=24364 comm="syz.0.22749" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 366.422823][T24405] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.22767'. [ 366.510415][T24423] netlink: 40 bytes leftover after parsing attributes in process `syz.0.22774'. [ 366.521080][T24423] netlink: 40 bytes leftover after parsing attributes in process `syz.0.22774'. [ 366.731759][ T29] audit: type=1326 audit(380.411:382086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24466 comm="syz.3.22794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 366.755807][ T29] audit: type=1326 audit(380.411:382087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24466 comm="syz.3.22794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 366.787126][ T29] audit: type=1326 audit(380.421:382088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24466 comm="syz.3.22794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=326 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 366.811324][ T29] audit: type=1326 audit(380.421:382089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24466 comm="syz.3.22794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 366.852563][T24478] ieee802154 phy0 wpan0: encryption failed: -22 [ 366.883795][T24482] netlink: 'syz.1.22799': attribute type 21 has an invalid length. [ 366.899464][T24488] netlink: 12 bytes leftover after parsing attributes in process `syz.4.22803'. [ 366.913456][T24482] netlink: 132 bytes leftover after parsing attributes in process `syz.1.22799'. [ 366.923580][T24482] netlink: 20 bytes leftover after parsing attributes in process `syz.1.22799'. [ 367.010140][T24506] ieee802154 phy0 wpan0: encryption failed: -22 [ 367.074175][ T29] audit: type=1326 audit(380.778:382090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24517 comm="syz.0.22817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1330feec9 code=0x7ffc0000 [ 367.098278][ T29] audit: type=1326 audit(380.778:382091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24517 comm="syz.0.22817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7fa1330feec9 code=0x7ffc0000 [ 367.121479][ T29] audit: type=1326 audit(380.778:382092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24521 comm="syz.0.22817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa133131785 code=0x7ffc0000 [ 367.145573][ T29] audit: type=1326 audit(380.778:382093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24517 comm="syz.0.22817" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1330feec9 code=0x7ffc0000 [ 367.492583][T24597] loop4: detected capacity change from 0 to 512 [ 367.500172][T24597] EXT4-fs: Ignoring removed oldalloc option [ 367.506198][T24597] EXT4-fs: Ignoring removed bh option [ 367.518807][T24602] loop3: detected capacity change from 0 to 256 [ 367.526843][T24597] EXT4-fs (loop4): 1 truncate cleaned up [ 367.533529][T24597] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 367.559437][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 367.569173][T24602] FAT-fs (loop3): Directory bread(block 64) failed [ 367.569201][T24602] FAT-fs (loop3): Directory bread(block 65) failed [ 367.569344][T24602] FAT-fs (loop3): Directory bread(block 66) failed [ 367.577347][T24609] atomic_op ffff888126ca8128 conn xmit_atomic 0000000000000000 [ 367.582569][T24602] FAT-fs (loop3): Directory bread(block 67) failed [ 367.603991][T24602] FAT-fs (loop3): Directory bread(block 68) failed [ 367.613124][T24602] FAT-fs (loop3): Directory bread(block 69) failed [ 367.624194][T24602] FAT-fs (loop3): Directory bread(block 70) failed [ 367.632105][T24602] FAT-fs (loop3): Directory bread(block 71) failed [ 367.639064][T24602] FAT-fs (loop3): Directory bread(block 72) failed [ 367.645683][T24602] FAT-fs (loop3): Directory bread(block 73) failed [ 367.762127][T24633] loop3: detected capacity change from 0 to 8192 [ 367.781271][T24642] can0: slcan on ttyS3. [ 367.826742][T24642] can0 (unregistered): slcan off ttyS3. [ 367.991241][T24700] tipc: Enabled bearer , priority 10 [ 368.225549][T24753] netlink: 'syz.4.22918': attribute type 1 has an invalid length. [ 368.233467][T24753] netlink: 224 bytes leftover after parsing attributes in process `syz.4.22918'. [ 368.325441][T24773] netlink: 4 bytes leftover after parsing attributes in process `syz.0.22928'. [ 368.452943][ T3359] kernel write not supported for file /vcs (pid: 3359 comm: kworker/0:2) [ 368.721318][T24852] loop4: detected capacity change from 0 to 512 [ 368.751370][T24857] loop3: detected capacity change from 0 to 136 [ 368.767968][T24852] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 368.798494][T24852] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 368.815376][T24852] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 32768 with max blocks 1 with error 28 [ 368.828038][T24852] EXT4-fs (loop4): This should not happen!! Data will be lost [ 368.828038][T24852] [ 368.838364][T24852] EXT4-fs (loop4): Total free blocks count 0 [ 368.844530][T24852] EXT4-fs (loop4): Free/Dirty block details [ 368.850564][T24852] EXT4-fs (loop4): free_blocks=39626 [ 368.856077][T24852] EXT4-fs (loop4): dirty_blocks=1 [ 368.861127][T24852] EXT4-fs (loop4): Block reservation details [ 368.867871][T24852] EXT4-fs (loop4): i_reserved_data_blocks=1 [ 368.906719][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 368.948602][T24883] loop2: detected capacity change from 0 to 512 [ 368.992289][T24883] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 369.008617][T24883] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.22979: Failed to acquire dquot type 0 [ 369.044373][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 369.174736][T24916] loop3: detected capacity change from 0 to 512 [ 369.216165][T24916] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 369.288878][T24916] EXT4-fs: Ignoring sb option on remount [ 369.294645][T24916] EXT4-fs: Ignoring removed orlov option [ 369.310418][T24916] EXT4-fs: Remounting file system with no journal so ignoring journalled data option [ 369.320786][T24916] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 369.378578][T24916] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. [ 369.434031][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 369.519233][T24959] can0: slcan on ttyS3. [ 369.550751][T24957] can0 (unregistered): slcan off ttyS3. [ 369.894579][T25010] netlink: 'syz.2.23019': attribute type 6 has an invalid length. [ 369.933145][T25011] usb usb8: usbfs: process 25011 (syz.1.23018) did not claim interface 0 before use [ 369.957821][T22787] Process accounting resumed [ 369.972918][T25014] Process accounting resumed [ 370.111715][T25039] loop4: detected capacity change from 0 to 128 [ 370.347709][T25077] loop3: detected capacity change from 0 to 512 [ 370.359368][T25077] EXT4-fs warning (device loop3): ext4_xattr_inode_get:560: inode #11: comm syz.3.23049: EA inode hash validation failed [ 370.373029][T25077] EXT4-fs error (device loop3): ext4_do_update_inode:5624: inode #15: comm syz.3.23049: corrupted inode contents [ 370.385562][T25077] EXT4-fs error (device loop3): ext4_dirty_inode:6509: inode #15: comm syz.3.23049: mark_inode_dirty error [ 370.397228][T25077] EXT4-fs error (device loop3): ext4_do_update_inode:5624: inode #15: comm syz.3.23049: corrupted inode contents [ 370.410124][T25077] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2996: inode #15: comm syz.3.23049: mark_inode_dirty error [ 370.423944][T25077] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2999: inode #15: comm syz.3.23049: mark inode dirty (error -117) [ 370.437630][T25077] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117) [ 370.446818][T25077] EXT4-fs (loop3): 1 orphan inode deleted [ 370.455603][T25077] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 370.518204][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 370.572839][T25108] random: crng reseeded on system resumption [ 370.875424][T25159] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.23091' sets config #1 [ 370.932109][ T3359] hid_parser_main: 73 callbacks suppressed [ 370.932134][ T3359] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x4 [ 370.945851][ T3359] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x2 [ 370.970008][ T3359] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x3 [ 370.978414][ T3359] hid-generic 0000:3000000:0000.000B: hidraw0: HID v0.00 Device [sy] on syz0 [ 371.070924][T25188] !: entered allmulticast mode [ 371.084596][T25188] !: left allmulticast mode [ 371.216122][T25206] __nla_validate_parse: 3 callbacks suppressed [ 371.216141][T25206] netlink: 4 bytes leftover after parsing attributes in process `syz.2.23101'. [ 371.261300][T25217] netlink: 12 bytes leftover after parsing attributes in process `syz.4.23106'. [ 371.446484][ T29] kauditd_printk_skb: 32 callbacks suppressed [ 371.446537][ T29] audit: type=1326 audit(385.366:382124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25237 comm="syz.2.23115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 371.485043][ T29] audit: type=1326 audit(385.366:382125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25237 comm="syz.2.23115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 371.509006][ T29] audit: type=1326 audit(385.376:382126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25237 comm="syz.2.23115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 371.532832][ T29] audit: type=1326 audit(385.376:382127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25237 comm="syz.2.23115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 371.556122][ T29] audit: type=1326 audit(385.376:382128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25237 comm="syz.2.23115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 371.688804][T25258] tipc: Enabling of bearer rejected, already enabled [ 371.798747][T25268] loop4: detected capacity change from 0 to 8192 [ 371.812212][T25268] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 371.898217][T25314] netlink: 4 bytes leftover after parsing attributes in process `syz.4.23140'. [ 371.983447][T25339] netlink: 4 bytes leftover after parsing attributes in process `syz.4.23147'. [ 371.992535][T25339] netlink: 4 bytes leftover after parsing attributes in process `syz.4.23147'. [ 372.001601][T25339] netlink: 4 bytes leftover after parsing attributes in process `syz.4.23147'. [ 372.055736][T25352] loop3: detected capacity change from 0 to 512 [ 372.064705][T25352] EXT4-fs: Ignoring removed oldalloc option [ 372.088828][T25352] EXT4-fs (loop3): 1 truncate cleaned up [ 372.101095][T25352] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 372.121481][T25352] EXT4-fs error (device loop3): htree_dirblock_to_tree:1080: inode #2: block 13: comm syz.3.23151: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=0, rec_len=0, size=1024 fake=0 [ 372.142404][T25352] EXT4-fs (loop3): Remounting filesystem read-only [ 372.153780][T25365] loop4: detected capacity change from 0 to 1024 [ 372.171481][T25365] EXT4-fs: Ignoring removed oldalloc option [ 372.171973][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 372.177434][T25365] EXT4-fs: Ignoring removed bh option [ 372.219031][T25365] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 372.314732][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 372.593661][ T29] audit: type=1326 audit(386.573:382129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25436 comm="syz.3.23189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 372.636351][T25445] random: crng reseeded on system resumption [ 372.641452][ T29] audit: type=1326 audit(386.573:382130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25436 comm="syz.3.23189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 372.665509][ T29] audit: type=1326 audit(386.573:382131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25436 comm="syz.3.23189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 372.688794][ T29] audit: type=1326 audit(386.573:382132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25436 comm="syz.3.23189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 372.782831][ T29] audit: type=1326 audit(386.762:382133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25463 comm="syz.0.23200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1330feec9 code=0x7ffc0000 [ 372.942143][T25488] netlink: 20 bytes leftover after parsing attributes in process `syz.3.23212'. [ 372.960128][T25492] tipc: New replicast peer: 255.255.255.83 [ 372.966053][T25492] tipc: Enabled bearer , priority 1 [ 373.109073][T25526] macsec0: entered promiscuous mode [ 373.114848][T25526] bridge0: entered promiscuous mode [ 373.151501][T25533] loop3: detected capacity change from 0 to 2048 [ 373.158780][T25535] netlink: 'syz.4.23234': attribute type 3 has an invalid length. [ 373.192213][T25533] Alternate GPT is invalid, using primary GPT. [ 373.198553][T25533] loop3: p2 p3 p7 [ 373.299081][T25569] netlink: 4 bytes leftover after parsing attributes in process `syz.4.23247'. [ 373.318755][T25569] hsr_slave_1 (unregistering): left promiscuous mode [ 373.357136][T25587] netlink: 36 bytes leftover after parsing attributes in process `syz.2.23254'. [ 373.469035][T25607] loop4: detected capacity change from 0 to 512 [ 373.477402][T25607] msdos: Unknown parameter 'allow_uime' [ 373.527142][T25620] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 373.596572][T22787] hid-generic 0008:0006:0007.000C: unknown main item tag 0x0 [ 373.604249][T22787] hid-generic 0008:0006:0007.000C: unknown main item tag 0x0 [ 373.611784][T22787] hid-generic 0008:0006:0007.000C: unknown main item tag 0x0 [ 373.611917][T25624] loop3: detected capacity change from 0 to 8192 [ 373.619230][T22787] hid-generic 0008:0006:0007.000C: unknown main item tag 0x0 [ 373.619260][T22787] hid-generic 0008:0006:0007.000C: unknown main item tag 0x0 [ 373.619307][T22787] hid-generic 0008:0006:0007.000C: unknown main item tag 0x0 [ 373.619335][T22787] hid-generic 0008:0006:0007.000C: unknown main item tag 0x0 [ 373.622145][T22787] hid-generic 0008:0006:0007.000C: hidraw0: HID v0.0b Device [syz1] on syz1 [ 374.046820][T22787] tipc: Node number set to 4269801488 [ 374.144081][T25718] netlink: 8 bytes leftover after parsing attributes in process `syz.3.23307'. [ 374.191437][T25721] hub 6-0:1.0: USB hub found [ 374.200813][T25721] hub 6-0:1.0: 8 ports detected [ 374.297566][T25749] 9pnet: Could not find request transport: r [ 374.437030][T25805] random: crng reseeded on system resumption [ 374.446401][T25780] bond11: entered promiscuous mode [ 374.452416][T25780] bond11: entered allmulticast mode [ 374.454788][T25805] Restarting kernel threads ... [ 374.457889][T25780] 8021q: adding VLAN 0 to HW filter on device bond11 [ 374.463177][T25805] Done restarting kernel threads. [ 374.622311][T25844] netlink: 'syz.3.23349': attribute type 1 has an invalid length. [ 374.646629][T25848] SELinux: security_context_str_to_sid (E) failed with errno=-22 [ 375.071821][T25940] loop3: detected capacity change from 0 to 2048 [ 375.095421][T25940] Alternate GPT is invalid, using primary GPT. [ 375.101830][T25940] loop3: p1 p2 p3 [ 375.301968][T25981] loop3: detected capacity change from 0 to 512 [ 375.309890][T25981] EXT4-fs: Ignoring removed oldalloc option [ 375.315961][T25981] EXT4-fs: Ignoring removed bh option [ 375.326300][T25981] EXT4-fs (loop3): 1 truncate cleaned up [ 375.333918][T25981] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 375.365659][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 375.869895][T26057] netlink: 'syz.3.23443': attribute type 13 has an invalid length. [ 375.877978][T26057] netlink: 'syz.3.23443': attribute type 17 has an invalid length. [ 375.934535][T26057] 8021q: adding VLAN 0 to HW filter on device team0 [ 375.945427][T26057] A link change request failed with some changes committed already. Interface 60X may have been left with an inconsistent configuration, please check. [ 376.042997][T26083] xt_l2tp: v2 tid > 0xffff: 37482740 [ 376.183600][T26133] __nla_validate_parse: 8 callbacks suppressed [ 376.183686][T26133] netlink: 160 bytes leftover after parsing attributes in process `syz.1.23467'. [ 376.199083][T26133] netlink: 160 bytes leftover after parsing attributes in process `syz.1.23467'. [ 376.302626][ T29] kauditd_printk_skb: 10 callbacks suppressed [ 376.302692][ T29] audit: type=1400 audit(390.468:382144): avc: denied { read } for pid=26153 comm="syz.4.23479" lport=47355 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 376.334161][T26154] netlink: 16 bytes leftover after parsing attributes in process `syz.3.23477'. [ 376.350844][T26161] netlink: 24 bytes leftover after parsing attributes in process `syz.4.23481'. [ 376.396308][T26170] loop3: detected capacity change from 0 to 256 [ 376.478068][T26191] netlink: 32 bytes leftover after parsing attributes in process `syz.3.23492'. [ 376.493855][ T29] audit: type=1400 audit(390.667:382145): avc: denied { mounton } for pid=26192 comm="syz.1.23494" path="/4753/cgroup" dev="tmpfs" ino=24054 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=lnk_file permissive=1 [ 376.643724][T26219] netlink: 32 bytes leftover after parsing attributes in process `syz.2.23506'. [ 376.712368][ T29] audit: type=1326 audit(390.898:382146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26235 comm="syz.0.23513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1330feec9 code=0x7ffc0000 [ 376.735708][ T29] audit: type=1326 audit(390.898:382147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26235 comm="syz.0.23513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1330feec9 code=0x7ffc0000 [ 376.759777][ T29] audit: type=1326 audit(390.919:382148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26235 comm="syz.0.23513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa1330feec9 code=0x7ffc0000 [ 376.802773][ T29] audit: type=1326 audit(390.972:382149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26235 comm="syz.0.23513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1330feec9 code=0x7ffc0000 [ 376.826296][ T29] audit: type=1326 audit(390.972:382150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26235 comm="syz.0.23513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1330feec9 code=0x7ffc0000 [ 376.849556][ T29] audit: type=1326 audit(390.982:382151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26235 comm="syz.0.23513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fa1330feec9 code=0x7ffc0000 [ 376.872885][ T29] audit: type=1326 audit(390.982:382152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26235 comm="syz.0.23513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1330feec9 code=0x7ffc0000 [ 376.896117][ T29] audit: type=1326 audit(390.982:382153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=26235 comm="syz.0.23513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1330feec9 code=0x7ffc0000 [ 377.047010][T26293] netlink: 28 bytes leftover after parsing attributes in process `syz.4.23533'. [ 377.063876][T26293] netlink: 7 bytes leftover after parsing attributes in process `syz.4.23533'. [ 377.167819][T26328] netlink: 8 bytes leftover after parsing attributes in process `syz.4.23546'. [ 377.221045][T26336] pim6reg: entered allmulticast mode [ 377.262790][T26357] loop3: detected capacity change from 0 to 1024 [ 377.273987][T26357] EXT4-fs: Ignoring removed i_version option [ 377.280351][T26357] EXT4-fs: Ignoring removed nobh option [ 377.325384][T26357] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 377.348588][T26387] loop4: detected capacity change from 0 to 1024 [ 377.364925][T26387] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 377.376635][T26387] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 377.378667][T26392] tipc: Enabling of bearer rejected, failed to enable media [ 377.393254][T26387] EXT4-fs (loop4): orphan cleanup on readonly fs [ 377.400935][T26387] EXT4-fs error (device loop4): ext4_free_blocks:6706: comm syz.4.23559: Freeing blocks not in datazone - block = 0, count = 4096 [ 377.431761][ T3306] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 377.444853][T26387] EXT4-fs (loop4): 1 orphan inode deleted [ 377.460891][T26387] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 377.495372][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 377.592316][T26425] netlink: 4 bytes leftover after parsing attributes in process `syz.2.23575'. [ 377.620220][T26425] A link change request failed with some changes committed already. Interface wg2 may have been left with an inconsistent configuration, please check. [ 377.735683][T26466] SELinux: security_context_str_to_sid () failed with errno=-22 [ 377.771215][T26476] sg_write: data in/out 987/8 bytes for SCSI command 0xfd-- guessing data in; [ 377.771215][T26476] program syz.4.23589 not setting count and/or reply_len properly [ 378.003809][T26538] vhci_hcd: invalid port number 236 [ 378.250103][T26597] program syz.3.23637 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 378.358620][T26623] vlan0: entered promiscuous mode [ 378.464444][T26638] 9pnet: Could not find request transport: r [ 378.733821][T26689] 8021q: adding VLAN 0 to HW filter on device macvtap0 [ 379.054320][T26754] loop4: detected capacity change from 0 to 256 [ 379.273238][T26799] loop4: detected capacity change from 0 to 1024 [ 379.283082][T26799] EXT4-fs: inline encryption not supported [ 379.289027][T26799] EXT4-fs: Ignoring removed i_version option [ 379.295838][T26796] Process accounting resumed [ 379.303537][T26799] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 379.341709][T26799] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 2: comm syz.4.23727: lblock 2 mapped to illegal pblock 2 (length 1) [ 379.362297][T26799] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 48: comm syz.4.23727: lblock 0 mapped to illegal pblock 48 (length 1) [ 379.381085][T26799] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.23727: Failed to acquire dquot type 0 [ 379.394765][T26799] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6305: Corrupt filesystem [ 379.395694][T26823] sg_write: data in/out 63015/8 bytes for SCSI command 0x7f-- guessing data in; [ 379.395694][T26823] program syz.1.23738 not setting count and/or reply_len properly [ 379.423851][T26799] EXT4-fs error (device loop4): ext4_evict_inode:254: inode #11: comm syz.4.23727: mark_inode_dirty error [ 379.437934][T26799] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 379.448771][T26799] EXT4-fs (loop4): 1 orphan inode deleted [ 379.455099][T26799] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 379.467326][ T37] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1) [ 379.485345][ T37] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:2: Failed to release dquot type 0 [ 379.485378][T26799] EXT4-fs error (device loop4): __ext4_get_inode_loc:4832: comm syz.4.23727: Invalid inode table block 1 in block_group 0 [ 379.512576][T26799] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6305: Corrupt filesystem [ 379.522461][T26799] EXT4-fs error (device loop4): ext4_setattr:5884: inode #2: comm syz.4.23727: mark_inode_dirty error [ 379.558234][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 379.571906][ T12] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1) [ 379.590999][ T12] EXT4-fs error (device loop4): ext4_release_dquot:6981: comm kworker/u8:0: Failed to release dquot type 0 [ 379.613449][ T3298] EXT4-fs error (device loop4): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 379.630641][ T3298] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6305: Corrupt filesystem [ 379.644837][ T3298] EXT4-fs error (device loop4): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error [ 379.855304][T26901] xt_l2tp: wrong L2TP version: 1 [ 380.010733][T26934] vlan0: entered promiscuous mode [ 380.141811][T26969] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 0 [ 380.169243][T26970] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 1 [ 380.169433][T26973] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 2 [ 380.219107][T26976] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 3 [ 380.234586][T26979] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 4 [ 380.246972][T26980] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 5 [ 380.248037][T26984] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 6 [ 380.283660][T26985] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 7 [ 380.283729][T26986] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 8 [ 380.304696][T26989] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 9 [ 380.313617][T26991] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 10 [ 380.334070][T26992] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 11 [ 380.344780][T26993] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 12 [ 380.362771][T27001] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 13 [ 380.373180][T27002] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 14 [ 380.387762][T27004] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 15 [ 380.394300][T27006] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 16 [ 380.409112][T27009] sctp: [Deprecated]: syz.0.23812 (pid 27009) Use of int in maxseg socket option. [ 380.409112][T27009] Use struct sctp_assoc_value instead [ 380.424760][T27008] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 17 [ 380.448787][T27010] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 18 [ 380.459861][T27013] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 19 [ 380.471150][T27015] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 20 [ 380.481662][T27018] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 21 [ 380.492179][T27019] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 22 [ 380.502679][T27020] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 23 [ 380.514077][T27023] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 24 [ 380.525229][T27025] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 25 [ 380.535714][T27026] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 26 [ 380.535952][T27027] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 27 [ 380.556914][T27028] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 28 [ 380.567813][T27031] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 29 [ 380.578241][T27032] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 30 [ 380.589308][T27034] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 31 [ 380.592344][T27036] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 32 [ 380.610689][T27038] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 33 [ 380.621187][T27040] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 34 [ 380.632804][T27042] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 35 [ 380.643687][T27043] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 36 [ 380.645074][T27045] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 37 [ 380.664725][T27046] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 38 [ 380.665163][T27047] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 39 [ 380.685883][T27048] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 40 [ 380.686207][T27049] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 41 [ 380.704033][T27052] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma? [ 380.707293][T27053] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 43 [ 380.716885][T27050] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 42 [ 380.737781][T27054] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 44 [ 380.748631][T27055] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 45 [ 380.760100][T27057] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 46 [ 380.762329][T27058] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 47 [ 380.781112][T27060] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 48 [ 380.792585][T27061] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 49 [ 380.803003][T27062] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 50 [ 380.816660][T27064] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 51 [ 380.826987][T27066] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 52 [ 380.837904][T27067] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 53 [ 380.840363][T27068] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 54 [ 380.849256][T27069] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 55 [ 380.868509][T27070] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 56 [ 380.868714][T27071] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 57 [ 380.879800][T27072] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 58 [ 380.890127][T27073] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 59 [ 380.900268][T27074] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 60 [ 380.900661][T27075] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 61 [ 380.911119][T27076] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 62 [ 380.911278][T27077] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 63 [ 381.112123][T27103] __nla_validate_parse: 11 callbacks suppressed [ 381.112142][T27103] netlink: 8 bytes leftover after parsing attributes in process `syz.2.23838'. [ 381.127537][T27103] netlink: 4 bytes leftover after parsing attributes in process `syz.2.23838'. [ 381.137278][T27103] netlink: 'syz.2.23838': attribute type 11 has an invalid length. [ 381.392802][T27154] netlink: 12 bytes leftover after parsing attributes in process `syz.4.23856'. [ 381.506464][T27175] tipc: Invalid UDP bearer configuration [ 381.506480][T27175] tipc: Enabling of bearer rejected, failed to enable media [ 381.605203][ T29] kauditd_printk_skb: 12 callbacks suppressed [ 381.605221][ T29] audit: type=1400 audit(396.032:382162): avc: denied { create } for pid=27188 comm="syz.4.23876" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=phonet_socket permissive=1 [ 381.885374][T27225] Process accounting resumed [ 381.948363][ T29] audit: type=1400 audit(396.388:382163): avc: denied { watch } for pid=27240 comm="syz.2.23900" path="/syzcgroup/unified/syz2" dev="cgroup2" ino=123 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1 [ 382.087639][T27257] netlink: 24 bytes leftover after parsing attributes in process `syz.1.23907'. [ 382.097650][T27257] netlink: 24 bytes leftover after parsing attributes in process `syz.1.23907'. [ 382.179116][T27270] netlink: 8 bytes leftover after parsing attributes in process `syz.1.23909'. [ 382.917964][T27356] can0: slcan on ttyS3. [ 382.928618][T27363] netlink: 40 bytes leftover after parsing attributes in process `syz.0.23957'. [ 382.944565][T27363] netlink: 40 bytes leftover after parsing attributes in process `syz.0.23957'. [ 382.982282][T27355] can0 (unregistered): slcan off ttyS3. [ 383.182518][T27380] hub 8-0:1.0: USB hub found [ 383.192363][T27378] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0 [ 383.192804][T27380] hub 8-0:1.0: 8 ports detected [ 383.240313][T27378] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0 [ 383.279256][T27378] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0 [ 383.326199][T27378] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 256 - 0 [ 383.379099][ T31] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 256 - 0 [ 383.395975][ T31] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 256 - 0 [ 383.408949][ T31] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 256 - 0 [ 383.427248][ T31] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 256 - 0 [ 383.716247][T27440] usb usb1: usbfs: interface 0 claimed by hub while 'syz.3.23970' sets config #1 [ 384.145534][T27468] SELinux: security_context_str_to_sid (E) failed with errno=-22 [ 384.207902][T27475] loop4: detected capacity change from 0 to 1024 [ 384.214792][T27475] EXT4-fs: Ignoring removed nomblk_io_submit option [ 384.231727][T27475] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 384.257177][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 384.298350][T27493] netlink: 'syz.0.23984': attribute type 11 has an invalid length. [ 384.382256][T27500] netlink: 8 bytes leftover after parsing attributes in process `syz.4.23987'. [ 384.411532][ T29] audit: type=1326 audit(398.981:382164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27497 comm="syz.1.24004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 384.449276][ T29] audit: type=1326 audit(398.981:382165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27497 comm="syz.1.24004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 384.473382][ T29] audit: type=1326 audit(398.981:382166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27497 comm="syz.1.24004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 384.497449][ T29] audit: type=1326 audit(398.981:382167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27497 comm="syz.1.24004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 384.521305][ T29] audit: type=1326 audit(399.013:382168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27497 comm="syz.1.24004" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 384.598036][T27510] random: crng reseeded on system resumption [ 384.639410][T27510] Restarting kernel threads ... [ 384.644786][T27510] Done restarting kernel threads. [ 385.001535][ T29] audit: type=1326 audit(399.590:382169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27576 comm="syz.3.24028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 385.025632][ T29] audit: type=1326 audit(399.590:382170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27576 comm="syz.3.24028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 385.067919][ T29] audit: type=1326 audit(399.622:382171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=27576 comm="syz.3.24028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7f11dfd4eec9 code=0x7ffc0000 [ 385.125348][T27585] netlink: 4 bytes leftover after parsing attributes in process `syz.0.24043'. [ 385.542170][T27670] loop4: detected capacity change from 0 to 764 [ 385.555416][T27671] macsec0: entered promiscuous mode [ 385.560686][T27671] bridge0: entered promiscuous mode [ 385.566941][T27670] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 385.645426][T27692] tipc: New replicast peer: 255.255.255.83 [ 385.651550][T27692] tipc: Enabled bearer , priority 1 [ 385.899725][T27748] loop4: detected capacity change from 0 to 512 [ 385.908855][T27748] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 385.945842][T27748] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 385.961145][T27748] EXT4-fs error (device loop4): ext4_xattr_block_get:597: inode #15: comm syz.4.24103: corrupted xattr block 19: overlapping e_value [ 385.976173][T27748] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 385.988028][T27748] EXT4-fs error (device loop4): ext4_xattr_block_get:597: inode #15: comm syz.4.24103: corrupted xattr block 19: overlapping e_value [ 386.003687][T27748] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 386.012794][T27748] EXT4-fs error (device loop4): ext4_xattr_block_get:597: inode #15: comm syz.4.24103: corrupted xattr block 19: overlapping e_value [ 386.019260][T27762] EXT4-fs error (device loop4): ext4_xattr_block_get:597: inode #15: comm syz.4.24103: corrupted xattr block 19: overlapping e_value [ 386.029449][T27748] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 386.050680][T27762] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 386.085473][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 386.133923][T27777] netlink: 'syz.2.24113': attribute type 13 has an invalid length. [ 386.142017][T27777] netlink: 'syz.2.24113': attribute type 17 has an invalid length. [ 386.190305][T27777] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 386.317304][T27804] __nla_validate_parse: 1 callbacks suppressed [ 386.317324][T27804] netlink: 16 bytes leftover after parsing attributes in process `syz.1.24125'. [ 386.344517][T27807] netlink: 24 bytes leftover after parsing attributes in process `syz.2.24126'. [ 386.397494][T27821] netlink: 4 bytes leftover after parsing attributes in process `syz.1.24130'. [ 386.577235][T27853] netlink: 52 bytes leftover after parsing attributes in process `syz.1.24146'. [ 386.621112][T27867] netlink: 16 bytes leftover after parsing attributes in process `syz.4.24152'. [ 386.871742][T27922] netlink: 'syz.2.24179': attribute type 1 has an invalid length. [ 386.880419][T27922] netlink: 224 bytes leftover after parsing attributes in process `syz.2.24179'. [ 387.078074][T27967] can0: slcan on ttyS3. [ 387.155011][T27967] can0 (unregistered): slcan off ttyS3. [ 387.448776][T28046] netlink: 224 bytes leftover after parsing attributes in process `syz.0.24243'. [ 387.458836][T28046] netlink: 16 bytes leftover after parsing attributes in process `syz.0.24243'. [ 387.807139][ T29] kauditd_printk_skb: 9 callbacks suppressed [ 387.807157][ T29] audit: type=1326 audit(402.540:382181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28113 comm="syz.2.24266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 387.837102][ T29] audit: type=1326 audit(402.540:382182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28113 comm="syz.2.24266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 387.866106][ T29] audit: type=1326 audit(402.603:382183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28113 comm="syz.2.24266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 387.889999][ T29] audit: type=1326 audit(402.603:382184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28113 comm="syz.2.24266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 387.913169][ T29] audit: type=1326 audit(402.603:382185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28113 comm="syz.2.24266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 387.959903][T28127] netlink: 4 bytes leftover after parsing attributes in process `syz.2.24270'. [ 388.214605][T28175] netlink: 20 bytes leftover after parsing attributes in process `syz.0.24294'. [ 388.276953][ T29] audit: type=1326 audit(403.034:382186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28188 comm="syz.0.24311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1330feec9 code=0x7ffc0000 [ 388.301184][ T29] audit: type=1326 audit(403.034:382187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28188 comm="syz.0.24311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1330feec9 code=0x7ffc0000 [ 388.324361][ T29] audit: type=1326 audit(403.034:382188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28188 comm="syz.0.24311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7fa1330feec9 code=0x7ffc0000 [ 388.348232][ T29] audit: type=1326 audit(403.034:382189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28188 comm="syz.0.24311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1330feec9 code=0x7ffc0000 [ 388.371580][ T29] audit: type=1326 audit(403.034:382190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=28188 comm="syz.0.24311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1330feec9 code=0x7ffc0000 [ 389.773815][T28398] vlan0: entered promiscuous mode [ 390.292918][T28487] xt_l2tp: wrong L2TP version: 1 [ 390.563671][T28542] loop4: detected capacity change from 0 to 1024 [ 390.574195][T28542] EXT4-fs: Ignoring removed orlov option [ 390.596007][T28542] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 390.688957][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 390.720020][T28570] netlink: 'syz.3.24479': attribute type 13 has an invalid length. [ 390.746518][T28570] tipc: Resetting bearer [ 390.979227][T28621] netlink: 'syz.2.24500': attribute type 13 has an invalid length. [ 390.988895][T28621] netlink: 'syz.2.24500': attribute type 12 has an invalid length. [ 391.036680][T28632] pim6reg99999999: entered allmulticast mode [ 391.418835][T28695] IPVS: You probably need to specify IP address on multicast interface. [ 391.427394][T28695] IPVS: Error connecting to the multicast addr [ 391.462844][T28724] syz_tun: entered promiscuous mode [ 391.468161][T28724] macvtap0: entered promiscuous mode [ 391.473710][T28724] macvtap0: entered allmulticast mode [ 391.479228][T28724] syz_tun: entered allmulticast mode [ 391.488528][T28724] syz_tun: left allmulticast mode [ 391.493641][T28724] syz_tun: left promiscuous mode [ 391.581621][T28745] __nla_validate_parse: 10 callbacks suppressed [ 391.581638][T28745] netlink: 24 bytes leftover after parsing attributes in process `syz.0.24548'. [ 391.594490][T28748] netlink: 8 bytes leftover after parsing attributes in process `syz.2.24550'. [ 391.752780][T28780] netlink: 16 bytes leftover after parsing attributes in process `syz.0.24565'. [ 391.857328][T28796] netlink: 56 bytes leftover after parsing attributes in process `syz.0.24573'. [ 392.229898][T28875] loop4: detected capacity change from 0 to 512 [ 392.243790][T28875] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 392.263112][T28875] EXT4-fs warning (device loop4): verify_group_input:137: Cannot add at group 7 (only 1 groups) [ 392.283595][T28885] netlink: 'syz.3.24615': attribute type 10 has an invalid length. [ 392.297952][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 392.608686][T28937] netlink: 20 bytes leftover after parsing attributes in process `syz.1.24639'. [ 393.223420][T29020] netlink: 8 bytes leftover after parsing attributes in process `syz.0.24674'. [ 393.232477][ T29] kauditd_printk_skb: 20 callbacks suppressed [ 393.232491][ T29] audit: type=1400 audit(408.230:382211): avc: denied { create } for pid=29018 comm="syz.3.24673" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=ieee802154_socket permissive=1 [ 393.417848][T29053] loop4: detected capacity change from 0 to 512 [ 393.426199][T29053] EXT4-fs: dax option not supported [ 393.431780][ T29] audit: type=1400 audit(408.451:382212): avc: denied { mounton } for pid=29052 comm="syz.4.24690" path="/5075/bus" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 393.459489][ T3408] hid (null): invalid report_size 1348077176 [ 393.467048][ T3408] hid (null): report_id 0 is invalid [ 393.472458][ T3408] hid (null): global environment stack underflow [ 393.478887][ T3408] hid (null): unknown global tag 0xd [ 393.480266][ T29] audit: type=1400 audit(408.503:382213): avc: denied { unmount } for pid=3298 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1 [ 393.485858][ T3408] hid (null): unknown global tag 0xc [ 393.514895][ T3408] hid (null): unknown global tag 0xc [ 393.521794][ T3408] hid (null): unknown global tag 0xc [ 393.527160][ T3408] hid (null): unknown global tag 0x9f [ 393.539440][ T3408] hid (null): invalid report_size -2049458569 [ 393.545588][ T3408] hid (null): unknown global tag 0xc [ 393.551109][ T3408] hid (null): unknown global tag 0xc [ 393.557832][ T3408] hid (null): unknown global tag 0xe [ 393.563484][ T3408] hid (null): unknown global tag 0xaf [ 393.569067][ T3408] hid (null): invalid report_size -1166558726 [ 393.576463][ T3408] hid (null): unknown global tag 0xc [ 393.581805][ T3408] hid (null): unknown global tag 0xe [ 393.587153][ T3408] hid (null): invalid report_size 1205587724 [ 393.593377][ T3408] hid (null): invalid report_count 64391 [ 393.600595][ T3408] hid (null): unknown global tag 0xe [ 393.606271][ T3408] hid (null): report_id 3932886125 is invalid [ 393.617266][ T3408] hid_parser_main: 46 callbacks suppressed [ 393.617337][ T3408] hid-generic 8001:0000:175C.000D: unknown main item tag 0x7 [ 393.630724][ T3408] hid-generic 8001:0000:175C.000D: collection stack underflow [ 393.639755][ T3408] hid-generic 8001:0000:175C.000D: item 0 0 0 12 parsing failed [ 393.647878][ T3408] hid-generic 8001:0000:175C.000D: probe with driver hid-generic failed with error -22 [ 393.668496][T29074] loop4: detected capacity change from 0 to 512 [ 393.741148][T29074] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.24695: couldn't read orphan inode 26 (err -116) [ 393.756304][T29074] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 393.799704][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 394.084619][T29168] netlink: 4 bytes leftover after parsing attributes in process `syz.1.24738'. [ 394.094948][T29168] tipc: Enabling of bearer rejected, media not registered [ 394.282346][ T29] audit: type=1326 audit(409.343:382214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29200 comm="syz.0.24754" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa1330feec9 code=0x0 [ 394.312420][T29205] SELinux: Context system_u:object_r:sendmail_exec_t:s0 is not valid (left unmapped). [ 394.322510][ T29] audit: type=1400 audit(409.385:382215): avc: denied { relabelto } for pid=29204 comm="syz.2.24756" name="cgroup.procs" dev="cgroup" ino=249 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:sendmail_exec_t:s0" [ 394.349800][ T29] audit: type=1400 audit(409.385:382216): avc: denied { associate } for pid=29204 comm="syz.2.24756" name="cgroup.procs" dev="cgroup" ino=249 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 srawcon="system_u:object_r:sendmail_exec_t:s0" [ 394.446104][ T29] audit: type=1400 audit(409.511:382217): avc: denied { bind } for pid=29221 comm="syz.2.24764" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=isdn_socket permissive=1 [ 394.469356][T29224] SELinux: policydb magic number 0x0 does not match expected magic number 0xf97cff8c [ 394.480575][T29224] SELinux: failed to load policy [ 394.551192][T29232] netlink: 8 bytes leftover after parsing attributes in process `syz.4.24769'. [ 394.769182][T29256] netlink: 32 bytes leftover after parsing attributes in process `syz.3.24779'. [ 394.847501][ T29] audit: type=1400 audit(409.931:382218): avc: denied { accept } for pid=29257 comm="syz.3.24780" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 395.008902][T29265] netlink: 68 bytes leftover after parsing attributes in process `syz.1.24783'. [ 395.018281][T29265] netlink: 'syz.1.24783': attribute type 2 has an invalid length. [ 395.296024][ T3408] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x4 [ 395.303840][ T3408] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x2 [ 395.313546][ T3408] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0 [ 395.316541][T29303] loop4: detected capacity change from 0 to 512 [ 395.321261][ T3408] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0 [ 395.321302][ T3408] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0 [ 395.328144][ T29] audit: type=1326 audit(410.424:382219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29229 comm="syz.2.24768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7fc00000 [ 395.367740][ T3408] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0 [ 395.376907][ T3408] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0 [ 395.384789][ T3408] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0 [ 395.392595][ T3408] hid-generic 0000:3000000:0000.000E: unknown main item tag 0x0 [ 395.406680][ T3408] hid-generic 0000:3000000:0000.000E: hidraw0: HID v0.00 Device [sy] on syz0 [ 395.419496][T29303] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 395.460468][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 395.491520][T29333] x_tables: ip_tables: recent.0 match: invalid size 216 (kernel) != (user) 4096 [ 395.648348][T29364] 9p: Unknown Cache mode or invalid value f [ 395.675763][T29370] sctp: [Deprecated]: syz.0.24828 (pid 29370) Use of int in max_burst socket option. [ 395.675763][T29370] Use struct sctp_assoc_value instead [ 395.816283][T29400] loop4: detected capacity change from 0 to 164 [ 395.824745][T29400] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 395.908721][T29422] 9pnet_rdma: rdma_create_trans (29422): problem binding to privport: 13 [ 396.064884][T29457] program syz.2.24867 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 396.179808][T29479] loop4: detected capacity change from 0 to 2048 [ 396.248924][T29479] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 396.274504][T29479] EXT4-fs error (device loop4): ext4_ext_precache:632: inode #2: comm syz.4.24879: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5) [ 396.292792][T29479] EXT4-fs (loop4): Remounting filesystem read-only [ 396.311219][ T3298] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 396.367021][T29513] loop4: detected capacity change from 0 to 512 [ 396.587116][ T29] audit: type=1326 audit(411.768:382220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29568 comm="syz.0.24918" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1330feec9 code=0x7ffc0000 [ 396.674636][T29586] geneve0: entered allmulticast mode [ 396.836214][T29627] __nla_validate_parse: 4 callbacks suppressed [ 396.836235][T29627] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.24936'. [ 396.854271][T29610] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.24936'. [ 396.903067][T29631] 9pnet: Could not find request transport: t [ 396.919100][T29638] bridge0: port 1(veth0_to_bridge) entered blocking state [ 396.926376][T29638] bridge0: port 1(veth0_to_bridge) entered disabled state [ 396.933818][T29638] veth0_to_bridge: entered allmulticast mode [ 396.941773][T29638] veth0_to_bridge: entered promiscuous mode [ 397.001799][T29648] netlink: 4 bytes leftover after parsing attributes in process `syz.3.24951'. [ 397.102872][T29678] netlink: 44 bytes leftover after parsing attributes in process `syz.3.24964'. [ 397.112951][T29678] netlink: 84 bytes leftover after parsing attributes in process `syz.3.24964'. [ 397.139899][T29684] random: crng reseeded on system resumption [ 397.166889][T29689] xt_l2tp: unknown flags: 51 [ 397.202483][ T3408] hid-generic 0000:0000:0000.000F: hidraw0: HID v0.00 Device [syz0] on syz0 [ 397.317355][T29723] random: crng reseeded on system resumption [ 397.439347][T29752] loop4: detected capacity change from 0 to 512 [ 397.446308][T29752] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22 [ 397.462735][T29752] loop4: detected capacity change from 0 to 764 [ 397.650641][T29800] netlink: 'syz.3.25016': attribute type 2 has an invalid length. [ 398.324217][T29865] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 398.377003][T29865] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 398.414714][T29865] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 398.466466][T29865] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 398.534332][ T37] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 398.555318][ T37] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 398.584605][ T37] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 398.593787][ T37] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 398.979423][ T29] kauditd_printk_skb: 8 callbacks suppressed [ 398.979441][ T29] audit: type=1326 audit(414.277:382229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29947 comm="syz.2.25066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 399.008702][ T29] audit: type=1326 audit(414.277:382230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29947 comm="syz.2.25066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 399.032262][ T29] audit: type=1326 audit(414.330:382231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29947 comm="syz.2.25066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 399.055540][ T29] audit: type=1326 audit(414.330:382232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29947 comm="syz.2.25066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 399.078717][ T29] audit: type=1326 audit(414.330:382233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=29947 comm="syz.2.25066" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61a64aeec9 code=0x7ffc0000 [ 399.215156][T29977] macsec0: entered promiscuous mode [ 399.220480][T29977] bridge0: entered promiscuous mode [ 399.302129][T29994] random: crng reseeded on system resumption [ 399.322030][T30000] tipc: Enabling of bearer rejected, failed to enable media [ 399.476708][T30124] macvtap0: entered promiscuous mode [ 399.482121][T30124] syz_tun: entered promiscuous mode [ 399.509564][T30124] syz_tun: left promiscuous mode [ 399.839832][T30262] netlink: 4 bytes leftover after parsing attributes in process `syz.0.25120'. [ 400.074750][T30310] netlink: 'syz.0.25142': attribute type 1 has an invalid length. [ 400.082635][T30310] netlink: 'syz.0.25142': attribute type 2 has an invalid length. [ 400.090372][ T29] audit: type=1326 audit(415.421:382234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30309 comm="syz.1.25143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 400.090455][ T29] audit: type=1326 audit(415.421:382235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30309 comm="syz.1.25143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 400.090487][ T29] audit: type=1326 audit(415.421:382236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=30309 comm="syz.1.25143" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe73412eec9 code=0x7ffc0000 [ 400.181264][T30310] netlink: 8 bytes leftover after parsing attributes in process `syz.0.25142'. [ 400.414899][T30357] ================================================================== [ 400.423030][T30357] BUG: KCSAN: data-race in __lru_add_drain_all / folio_add_lru [ 400.430626][T30357] [ 400.432964][T30357] read-write to 0xffff888237d25ee8 of 1 bytes by task 30348 on cpu 1: [ 400.441139][T30357] folio_add_lru+0xa5/0x1f0 [ 400.445681][T30357] folio_add_lru_vma+0x49/0x70 [ 400.450494][T30357] do_wp_page+0x1550/0x2510 [ 400.455032][T30357] handle_mm_fault+0x77d/0x2be0 [ 400.459911][T30357] do_user_addr_fault+0x3fe/0x1080 [ 400.465053][T30357] exc_page_fault+0x62/0xa0 [ 400.469584][T30357] asm_exc_page_fault+0x26/0x30 [ 400.474462][T30357] __put_user_nocheck_4+0x3/0x10 [ 400.479432][T30357] ____sys_recvmsg+0x1a1/0x280 [ 400.484237][T30357] ___sys_recvmsg+0x11f/0x370 [ 400.488925][T30357] do_recvmmsg+0x1ef/0x540 [ 400.493369][T30357] __x64_sys_recvmmsg+0xe5/0x170 [ 400.498350][T30357] x64_sys_call+0x27aa/0x3000 [ 400.503082][T30357] do_syscall_64+0xd2/0x200 [ 400.507632][T30357] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 400.513553][T30357] [ 400.515893][T30357] read to 0xffff888237d25ee8 of 1 bytes by task 30357 on cpu 0: [ 400.523561][T30357] __lru_add_drain_all+0x17e/0x450 [ 400.528715][T30357] lru_cache_disable+0x1f/0x30 [ 400.533526][T30357] __se_sys_mbind+0x496/0xac0 [ 400.538250][T30357] __x64_sys_mbind+0x78/0x90 [ 400.542881][T30357] x64_sys_call+0x2936/0x3000 [ 400.547590][T30357] do_syscall_64+0xd2/0x200 [ 400.552121][T30357] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 400.558055][T30357] [ 400.560398][T30357] value changed: 0x01 -> 0x00 [ 400.565088][T30357] [ 400.567427][T30357] Reported by Kernel Concurrency Sanitizer on: [ 400.573593][T30357] CPU: 0 UID: 0 PID: 30357 Comm: syz.3.25166 Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 400.585065][T30357] Tainted: [W]=WARN [ 400.588882][T30357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 400.598950][T30357] ==================================================================