last executing test programs: 2m31.86023529s ago: executing program 3 (id=207): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000000000070200f2a7ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18) syz_emit_ethernet(0xfdef, &(0x7f0000000180)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xfde1, 0x300, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e22, 0x4d, 0x0, @wg=@data}}}}}, 0x0) 2m31.812367691s ago: executing program 3 (id=208): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff9}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0x3}, 0x18) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000007c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x29}}, './file0\x00'}) 2m31.753297042s ago: executing program 3 (id=211): r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) mkdirat(r0, &(0x7f0000000040)='./file0\x00', 0x22) move_mount(0xffffffffffffff9c, 0x0, r0, 0x0, 0x64) 2m31.661134794s ago: executing program 3 (id=215): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4056, &(0x7f0000000200)={[{@noload}, {@nombcache}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}, {@errors_remount}, {@lazytime}, {@minixdf}, {@noquota}, {@usrjquota}]}, 0x1, 0x451, &(0x7f0000000680)="$eJzs28tvG8UfAPDvbh6/X1/EVOXRBzRQEBWPpElL6YELCCQOICHBoRxD4lahboOaINGqgoJQOaJK3BFHpP4FnOCCgBOCK3BGlSrUSwsno7V3G8e1XcdK6jT+fKRtZ3bHmfl6duzZHW8AA2s8+yeJ2B4Rv0fEWD27ssB4/b+b1y/M/nP9wmwS1epbfye1cjeuX5gtihav21ZkhiPSz5LY26LexXPnT81UKuWzeX5y6fT7k4vnzj83f3rmZPlk+cz0sWNHDk+9cHT6+TWJM4vrxp6PFvbtfu2dy2/MHr/87k9XkiL+pji6MXTnIuOdDj5Zra6mug1vR0M6Ge5jQ1iVofowjZHa+B+LoVjuvLF49dO+Ng5YV9Vqtfpg+8NXagWATSoxxGFAFV/02fVvsd2lqceGcO2l+gVQFvfNfKsfGY40LzPSdH27lsYj4vjFf7/Ktmi+D7FlnSoFAAbad9n859lW8780Gu8L3ZevoZQi4v6I2BkRRyNiV0Q8EFEr+1BEPLzK+psXSW6ff6ZXewqsS9n878V8bWvl/K+Y/UVpKM/tqMU/kpyYr5QPZe/Jr/vrJeYr5akOdXz/ym9ftDvWOP/Ltqz+Yi6Yt+Pq8P9WvmZuZmmm54CbXPskYs9wq/iTWysBSUTsjog9PdYx//Q3+9odaxP/aFd/eA3WmapfRzxV7/+L0RR/Iem8Pjn5/6iUD00WZ8Xtfv7l0pvt6r9z/6+vrP+3tjz/i/j/LCWN67WLq6/j0h+ft72m7PX8H03eXrHvw5mlpbNTEaPJ67V8qXH/dFO56eXyWfwHD7Qe/ztj+Z3YGxHZSfxIRDwaEfvztj8WEY9HxIEO8f/48hPv9R7/+srin+vY/9HU/8uJ0Wje0zoxdOqHb1dUWlpN/Fn/H6mlDuZ7uvn866ZdvZ3NAAAAcO9JI2J7JOnErXSaTkzUf8O/K7amlYXFpWdOLHxwZq7+jEApRtLiTtdYw/3QqfyyvshP578tLvKH8/vGXw5tqeUnZhcqc/0OHgbctjbjP/NXFw+5APe45nW0rX1qB3D3eV4TBpfxD4PL+IfB1WL8e/QMBkSr7/+P+9AO4O5rGv8dl/1MDGBzcf0Pg8v4h8Fl/MNAWtwSd35IfnMk0ojYAM3YLIlIN0QzJNYp0e9PJgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgLXxXwAAAP//JI/k8w==") creat(&(0x7f0000000040)='./bus\x00', 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x185641, 0x0) quotactl$Q_SETINFO(0xffffffff80000601, &(0x7f00000000c0)=@filename='./bus\x00', 0xee01, &(0x7f0000000100)={0x2, 0x5, 0x0, 0xd}) 2m31.223886133s ago: executing program 3 (id=221): bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x5e, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10) lsetxattr$security_selinux(&(0x7f0000000900)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000940), &(0x7f0000000980)='system_u:object_r:netutils_exec_t:s0\x00', 0xf, 0x0) 2m30.85213997s ago: executing program 3 (id=228): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000100000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='writeback_bdi_register\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$AUTOFS_IOC_FAIL(r1, 0x4c80, 0xffffffffffffffb6) 2m30.85197216s ago: executing program 32 (id=228): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000100000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='writeback_bdi_register\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$AUTOFS_IOC_FAIL(r1, 0x4c80, 0xffffffffffffffb6) 1m41.287729876s ago: executing program 1 (id=1894): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x8, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ec0)={&(0x7f0000000bc0)='kfree\x00', r1, 0x0, 0xfffffffffffffff4}, 0x18) lsetxattr$security_selinux(&(0x7f0000000900)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000940), &(0x7f0000000980)='system_u:object_r:netutils_exec_t:s0\x00', 0xf, 0x0) 1m41.258036986s ago: executing program 1 (id=1895): r0 = syz_create_resource$binfmt(&(0x7f0000001400)='./file0\x00') openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000440)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)=[0x9], 0xfffffffffffffffe, 0x39, 0x100000, 0x1}}, 0x40) 1m41.151972628s ago: executing program 1 (id=1898): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0xe) r1 = memfd_create(&(0x7f0000000a00)='\x00\xc76\xbe\x91\x8d\x182)!\x9a%\xd9\x19\x17\xb0\xed|\xb3\xc2\x017h\xe9kL\xa2\xd28\xd6\x06\a\x0e\xfc\xfe\x12\x8f&\x13\xae%@T\xa3\xb0>\\\xec\xa9\xf9Q@6A\x10\x8cn|\x00\x00\x00\x00\x00\x00\x00\x00\xeb0\xdd\xe8\x87\x05=\xfb\x8b$\xdcQ\xee\xc5\x1f\x8bQ\xf7fo\"i\xa1hk\x1d\xf5z\xc1\x7f\xa4\\]\xc4\xbe3\xf9\xa8\t?:\xd8\xda\x84\xeepI[\x1c\x00\x00\x00\x00\xf9v\x00\x00\x00\x00\x00T\xb6\xbe\x0f~\xc0\x92\xe9O{\xa8\x81(\x01\x14\xfc\x83\xf9\xfb\x05\x94Tr@Lq]\xf9\x15zb\x87\xc4\x8e\xe8/\xb9-&R\x8e\xb2\xb3bBx\x1e1\x18\x8f2\xf7]#\xed,\xc7\x03\x00\x00\x00\xa3\xee\xcb\xaf\xb3\xe3\'}\x18\xe8O\xa8#K\xb6\xe4R$\xaa\x00U\x92\xd2\x99\xb80x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000840)=@newqdisc={0x4c, 0x24, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0x5, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c}}]}, 0x4c}}, 0x0) 1m38.372565292s ago: executing program 5 (id=1987): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r1, 0x0, 0xf7}, 0x18) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x80, &(0x7f0000000140), 0x1, 0x4dd, &(0x7f0000000240)="$eJzs3VFrHFsdAPD/TLL3pm2um4si14K3xUbSot1NGtsGkVpB9Kmg1vcYk00I2WRDdlObUDTFDyCIqOCTT74IfgBB+hFEKOi7aFFEW33wQTuysxPbtLtJJGnWu/n94HTOmTM7/3Om2bM7O4eZAE6tixFxOyKGIuJKRJSL9WmRZovU3u7Z0wfz7ZRElt39axJJsW53X+3ycESci4idiBiJiK99OeKbyetxm1vbK3P1em2jKFdbq+vV5tb21eXVuaXaUm1tenrqxszNmeszk1nhSP08HxG3vvjkh9/72Zdu/erT3/r97J8vf7vdrM99tNPuiJg/UoAeOvsu5cdiV/sYbbyJYH0wVPSn1O+GAABwKOMRcSkiPpF//y/HUP5tDgAAABgk2edH419JRAYAAAAMrDQiRiNJK8V839FI00qlM4f3I3E2rTearU8tNjbXFtp1EWNRSheX67XJYq7wWJSSdnkqz78oX3ulPB0R70bED8pn8nJlvlFf6PePHwAAAHBKnLuw9/z/H+U0zwMAAAADZqxnAQAAABgUTvkBAABg8Dn/BwAAgIH2lTt32inbfY73wr2tzZXGvasLteZKZXVzvjLf2FivLDUaS/k9+1YP2l+90Vj/TKxt3q+2as1Wtbm1Pbva2FxrzS7veQQ2AAAAcILevfDod0lE7Hz2TJ6iuA8gwB5/7HcDgOM01O8GAH0z3O8GAH1TOnALIwQMuuSA+p6Td359/G0BAADejImPvX79/62i7uDfBoAPMnN9AOD0cXUPTq+SGYBw6o13Fm/3qj/69f8s+58bBQAAHKvRPCVppbgWOBppWqlEvJM/FqCULC7Xa5MR8aGI+G259Ha7PJW/MjlwzjAAAAAAAAAAAAAAAAAAAAAAAAAA0JFlSWQAAADAQItI/5Tkd/OPmCiPj776+8BbyT/L8aQo/OTuj+7PtVobU+31fyvn9RHR+nGx/lrmkQAAAADwf6Bznl4sp/rdGgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGzbOnD+Z300nG/csXImKsW/zhGMmXI1GKiLN/T2L4pdclETF0DPF3HkbEe93iJ/E8y7KxohXd4p95w/HH8kPTPX4aEeeOIT6cZo/a48/tbu+/NC7my+7vv+EiHVXv8S/97/g31GP8eeeQMc4//kW1Z/yHEeeHu48/u/GTHvEvHTL+N76+vd2rLvtpxETXz59kT6xqa3W92tzavrq8OrdUW6qtTU9P3Zi5OXN9ZrK6uFyvFf92jfH9j//y+X79P9sj/tgB/R8/ZP///fj+0w93sqVu8S9f6v75+16P+Gnx2ffJIt+un9jN73TyL3v/5795f7/+L/To/0H//5cP2f8rX/3uHw65KQBwAppb2ytz9XptY5/MyCG2kZE5Sib7Tufv8Wj7OeLLX8tk/T4sfcz0e2QCAACO24sv/f1uCQAAAAAAAAAAAAAAAAAAAJxeJ3E7sVdj7vSnqwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+/pPAAAA//+e1d5O") 1m38.178869356s ago: executing program 5 (id=1991): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000080000000000000000000850000007d00000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000001c0)='kfree\x00', r0}, 0x10) r1 = openat$selinux_context(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$selinux_context(r1, &(0x7f0000000340)='system_u:object_r:hugetlbfs_t:s0\x00', 0xff7) 1m38.054492989s ago: executing program 5 (id=1993): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x18) timerfd_settime(0xffffffffffffffff, 0x3, 0x0, 0x0) 1m37.97649533s ago: executing program 5 (id=1995): socket(0xa, 0x3, 0xff) socket(0xa, 0x3, 0xff) r0 = socket$netlink(0x10, 0x3, 0x4) writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560aff820fffff5bab00070000002058000b4824ca945f6400940f6a0325010ebc000000000000008000f0fffeffe809005300fff5dd000000100001000a0c100000000000224e0000", 0x58}], 0x1) 1m37.922962291s ago: executing program 5 (id=1996): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0xc0800, 0x80) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20) mknod$loop(&(0x7f0000000a00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1000, 0x1) rename(&(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000040)='./file1\x00') 1m37.878120892s ago: executing program 5 (id=1997): syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', 0x100c404, &(0x7f0000000380)={[{@dots}, {@fat=@fmask={'fmask', 0x3d, 0xdbd}}, {@fat=@uid}, {@fat=@uid={'uid', 0x3d, 0xee00}}, {@dots}, {@nodots}, {@fat=@gid={'gid', 0x3d, 0xee00}}, {@nodots}, {@nodots}, {@dots}, {@nodots}, {@nodots}, {@nodots}, {}, {@nodots}, {@fat=@nfs}, {@nodots}, {@fat=@showexec}, {@fat=@flush}, {@fat=@umask={'umask', 0x3d, 0x7}}, {@nodots}, {@dots}]}, 0x1, 0x1f5, &(0x7f0000000600)="$eJzs3cFqE1EUANCbmCYTcdGdIAgjLnRV1C+oSAUxIFSy0J2gK7NqN6mb9jP8Bf/LD5CuspEncSadmKYxBDKj7Tmb3pn7Xt+7M2SSTW5SFL7f/RpZ1or2fuzHpBW70Y6ZswAArpNJSvEjFZreCwBQjzXe/3/WvCUAYMvevnv/+vlgcHCY51nE+dl4OB4Wf4v8y1eDgyf5b7vVrPPxeHjrIv80X/zsMM3vxO0y/6yYn1+kuxEx7Mbjh0V+mnvxZpD/Ob8XH7dcOwAAAAAAAAAAAAAAAAAAAAAANOV+5DNL+/vs7S3m+2W+OJrrD7TQv6cT9zrlYdUeKJ3WURQAAAAAAAAAAAAAAAAAAAD8Z45Pvnz+MBp9OqqCXkTMn+ksGXN10Cr/8VqDmw/asdn0flnmBou2yku03QL7y2/uOkF0/pW7s2mQ17BWf+XlTWkaLH8VzNpiXDm9GxGrV390uOnmJyml0bcHR8cnkVYOrp4RvVqfSAAAAAAAAAAAAAAAAAAAcHPNfev7kqyJDQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAA6rf/58Gl8+sDE4j4k78dfBsrZ3IGq0VAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA6+tXAAAA//85ziI4") sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=@newlink={0x20, 0x10, 0x437, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x20c89, 0x45028}}, 0x20}, 0x1, 0x0, 0x0, 0x4008044}, 0x20000000) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0) 1m37.799301863s ago: executing program 4 (id=2001): bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000001000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b70300000000ffff850000000400000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), 0xffffffffffffffff) sendmsg$NL80211_CMD_REQ_SET_REG(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002bbd7000fddbdf251b00000008009a0001000000070021"], 0x24}}, 0x40004) 1m37.779606604s ago: executing program 4 (id=2003): socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0x0, 0x0, &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x12, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x89b0, &(0x7f0000000040)={'bond0\x00'}) 1m37.740635915s ago: executing program 4 (id=2004): bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000142020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000e02800850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r0}, 0x10) bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000b00)=@base={0x6, 0x4, 0x70be, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x48) 1m37.665352266s ago: executing program 4 (id=2007): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x53b, &(0x7f0000000b80)="$eJzs3cFvHFcZAPBvNl7HSZzaBQ5QqaWiRUkF2Y1r2locSpEQnCohyj0Ye2NZWXste93GVgXrvwAJIUDiBBcuSPwBSCgSF44IKRKcQSoCIUhBggN00OzO2mY9a2/SjTde/37SZN6b2Znvexu/2Zmdp9kAzq3nI+KNiPggTdOXImImX17Kp2h1pux17z94dymbkkjTt/6WRJIv6+4ryedX8s2mIuJrX4n4ZnI07tbO7p3Fer22mderzbWN6tbO7o3VtcWV2kptfX5+7tWF1xZeWbg5lHZejYjXv/Sn73/np19+/ZeffeePt/5y/VtZWtP5+sPteEgTx63sNL18capng81HDPYkytpT7lYuDbbN3mPMBwCA/rJz/I9ExKci4qWYiQvHn84CAAAAZ1D6hen4TxKRFpvssxwAAAA4Q0rtMbBJqZKPBZiOUqlS6Yzh/VhcLtUbW83P3G5sry93xsrORrl0e7Veu5mPFZ6NcpLV59rlg/rLPfX5iHg6Ir43c6ldryw16suj/vIDAAAAzokrPdf//5zpXP8DAAAAY2Z21AkAAAAAj53rfwAAABh/rv8BAABgrH31zTezKe3+/vXy2zvbdxpv31iubd2prG0vVZYamxuVlUZjpf3MvrWT9ldvNDY+F+vbd6vN2lazenVn99ZaY3u9eWs1pk6lQQAAAMART3/y3u+TiGh9/lJ7ykyOOingVEzsl5J8XtD7//BUZ/7eKSUFnIoLA7zmvYvFy50nwNk20bugT18Hxk951AkAI5ecsL7v4J3fdGalIecDAAAM37VPFN//P/l8vuWUH844nRjOr577/+nMqBIBTl37/v+gA3mcLMBYKQ80AhAYZx/2/v/J0vShEgIAAIZuuj0lpUr+9d50lEqVSsTV9s8ClJPbq/XazYh4KiJ+N1O+mNXn2lsmJ14zAAAAAAAAAAAAAAAAAAAAAAAAAAAdaZpECgAAAIy1iNKfk191nuV/bebF6d7vByaTf7d/EngyIt750Vs/uLvYbG7OZcv/vr+8+cN8+cuj+AYDAAAA6NW9Tm/P/zXqbAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYN+8/eHepOw3w8kvDivvXL0bEbFH8iZhqz6eiHBGX/5HExKHtkoi4MIT4rb2I+HhR/CRLaz9kUfxhvAmtvaSVthXGj9n8XSiKf2UI8eE8u5cdf94o6v+leL49L+5/ExH/V39U/Y9/sX/8u9Cn/18dMMYz939e7Rt/L+KZieLjXzd+0if+CwPG/8bXd3f7rUt/HHGt+/nTPuIdjnBQqjbXNqpbO7s3VtcWV2ortfX5+blXF15beGXhZvX2ar2W/1sY47vP/uKD49p/ufDzL8mz6d/+Fwv2V/SZ9N/7dx98tFtpHY1//YWC+L/+Sf6Ko/FLeZxP5+Vs/bVuudUpH/bcz3773HHtXz5of/lh/v+v99tpryMd5dlB/3QAgMdga2f3zmK9Xtsc20J2lf4EpPEohcl4ItIY38K3s8L9Ye0wTdM061MFq+5FxCD7SWLILS0V53NQ6HsEGPWRCQAAGLaDk/5RZwIAAAAAAAAAAAAAAAAAAADn12k8Za035sEjkJNhPEIbAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAo/hcAAP//Yw3Xfw==") socket$inet6_tcp(0xa, 0x1, 0x0) syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0) quotactl$Q_GETNEXTQUOTA(0xffffffff80000901, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0xee00, 0x0) 1m37.549872968s ago: executing program 4 (id=2012): removexattr(&(0x7f00000002c0)='./cgroup.cpu/cgroup.procs\x00', &(0x7f00000006c0)=@known='com.apple.FinderInfo\x00') io_setup(0x8, &(0x7f00000001c0)=0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/disk', 0x1, 0x20) io_submit(r0, 0x1, &(0x7f0000000400)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000140)="2a22cab1fd", 0x5}]) 1m37.120037667s ago: executing program 4 (id=2022): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) io_setup(0x4fb, &(0x7f00000009c0)=0x0) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) io_submit(r0, 0x3, &(0x7f0000000580)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x40, r1, 0x0, 0x0, 0x4, 0x0, 0x997f18199400164}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0xfffb, r1, 0x0, 0x0, 0xc}, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x5, r1, 0x0, 0x0, 0x10, 0x0, 0x4}]) 1m37.100200177s ago: executing program 33 (id=2022): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) io_setup(0x4fb, &(0x7f00000009c0)=0x0) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) io_submit(r0, 0x3, &(0x7f0000000580)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x40, r1, 0x0, 0x0, 0x4, 0x0, 0x997f18199400164}, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0xfffb, r1, 0x0, 0x0, 0xc}, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x5, r1, 0x0, 0x0, 0x10, 0x0, 0x4}]) 1m25.785719688s ago: executing program 34 (id=1906): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000840)=@newqdisc={0x4c, 0x24, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0x5, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c}}]}, 0x4c}}, 0x0) 1m22.850637775s ago: executing program 35 (id=1997): syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', 0x100c404, &(0x7f0000000380)={[{@dots}, {@fat=@fmask={'fmask', 0x3d, 0xdbd}}, {@fat=@uid}, {@fat=@uid={'uid', 0x3d, 0xee00}}, {@dots}, {@nodots}, {@fat=@gid={'gid', 0x3d, 0xee00}}, {@nodots}, {@nodots}, {@dots}, {@nodots}, {@nodots}, {@nodots}, {}, {@nodots}, {@fat=@nfs}, {@nodots}, {@fat=@showexec}, {@fat=@flush}, {@fat=@umask={'umask', 0x3d, 0x7}}, {@nodots}, {@dots}]}, 0x1, 0x1f5, &(0x7f0000000600)="$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") sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=@newlink={0x20, 0x10, 0x437, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x20c89, 0x45028}}, 0x20}, 0x1, 0x0, 0x0, 0x4008044}, 0x20000000) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0) 1.082055808s ago: executing program 0 (id=6076): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a320000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a31000000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a31"], 0xe8}, 0x1, 0x0, 0x0, 0x40040000}, 0x0) 1.007905579s ago: executing program 0 (id=6081): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f00000003c0)=[@in={0x2, 0x4e20, @empty}], 0x10) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e20, @local}]}, &(0x7f0000000100)=0x14) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000300)={r1, 0x43}, &(0x7f0000000400)=0x8) 686.571796ms ago: executing program 6 (id=6095): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='kfree\x00', r0}, 0x18) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0) flistxattr(r1, 0x0, 0x0) 666.648017ms ago: executing program 6 (id=6097): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000020000000000002000085000000ae00000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x41, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='kfree\x00', r0}, 0x18) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021181500001e0a05010000000000000000070000000900020073797a31000000000900010073797a3000000000ec140380300000802c000180250001"], 0x159c}}, 0x40000) 645.531917ms ago: executing program 6 (id=6099): r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) ptrace$cont(0x20, r0, 0x1000000ffffffff, 0x0) ptrace(0x9, r0) 572.156058ms ago: executing program 6 (id=6101): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000200), 0x10) sendmsg$can_bcm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[], 0x20000600}}, 0x0) sendmsg$sock(r0, &(0x7f0000001940)={&(0x7f00000002c0)=@sco={0x1f, @none}, 0x80, &(0x7f0000000000), 0x5, &(0x7f00000008c0)=[@timestamping={{0x14}}], 0x18}, 0x0) 571.993988ms ago: executing program 6 (id=6102): bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x17, 0xc, &(0x7f00000005c0)=ANY=[@ANYBLOB="18020000ffffffff00000000000000001801000020646c250020910fc8d1e1afab000000002020207b1af8ff00000000bfa1"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0a000000020000003f00000040"], 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000004c0), &(0x7f0000000a80), 0x1007, r0}, 0x38) bpf$MAP_GET_NEXT_KEY(0x15, &(0x7f0000000080)={r0, &(0x7f0000001b80), &(0x7f0000001c40)=""/245}, 0x20) 388.131882ms ago: executing program 6 (id=6106): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x100000b, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) rt_sigtimedwait(0x0, 0x0, 0x0, 0x0) 337.459323ms ago: executing program 7 (id=6109): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="340000001100050000000000feffffff07000000", @ANYRES32=r2, @ANYBLOB="003000000000000014001a80100003"], 0x34}, 0x1, 0x0, 0x0, 0x800c000}, 0x0) 300.442794ms ago: executing program 8 (id=6111): socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="12000000020000000400000002"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1}, &(0x7f0000000580)=0x2, &(0x7f00000005c0)=r0}, 0x20) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000080)={r1, &(0x7f0000000040)}, 0x20) 277.168224ms ago: executing program 7 (id=6112): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d000000180100002020732600000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000180)='kfree\x00', r0, 0x0, 0x2}, 0x18) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)={{0x14}, [@NFT_MSG_NEWSET={0x14, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}}, @NFT_MSG_NEWSETELEM={0x14, 0xc, 0xa, 0x101, 0x0, 0x0, {0x1}}], {0x14, 0x10}}, 0x50}}, 0x0) 277.074964ms ago: executing program 2 (id=6113): syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000240)='./file0\x00', 0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="75746638006d61703d6f983c756661703d6e6f726d616c2c6909000000f2ff00003dda5de4d586f0df206d65656b416d6f64653d3078303030303010303071303030303030302c73657373696f6e3d307830faffffff30303030303030f4e4b4f82c6d61736b3d4d4159574b50be30c8486470722677b93165cfe6f62127553b2017754598752d977369672c7063723d303030303030303030303030303030303030332c64566e745f6d6561737572652c00000000000000006bbf4d6406b59dbc529c00000000000000fada265ab14119997600a2299d2c35a2efc1bf037787a0d801f26d335ef2ba9ac2423a358ccbb776b21e1d3b", @ANYRESDEC=0x0, @ANYRESHEX=0x0], 0xfe, 0x67a, &(0x7f0000000280)="$eJzs3ctuG9cdx/HfUNS1QFC0RWAYjnViN4CMujRJxQoEd1F2OJQmJTnEDFVIq8CNpcAw5bS2C9TapNr0ArQv0F02WfQhCnSddV+gywJBuytQFGAxN15nRFk3u833IyQ8nPOfOf+5eI5G5JwRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACQZdfL5Yqlptve2TX57LrvtU6oj5c2rztx4c7MdiUr/E9LS7oWT7r2nWH12+H/bulG/O6GlsKXJR194+1vPvh2sZDOf0JCZ6FXXeDzl0dPHvZ6+8/O1lrfOst8l2IqExVOMdeW03YDz23VthzjBp7Z3Ngo39tuBKbhNp1gL+g6LWP7TqHr+WbNvmMqm5vrxinteTvtrXqt6aQTP/h+tVzeMB8uJrv/3oelwN52m023vRXFhNVhzOLgCHFqLWMOHvf212clGQZVThNUnRVULVerlUq1Wtm4v3n/g3K5ODWhPEFTEcOD9s3Z+bhKF3TmBs6vEPb/f7OkppbU1o52ZTJ/bNXly1Mrpz6R9v/v3XNObHe0/097+WvD6uuK+v+b8bubef1/Ti5GJpohq8bKmX62n+d6qSM90UP11NO+nl3MclcvLsPL/dmSipKrQJ5ctVTTlhyZZIrRpja0obI+0rYaCmSpIVdNOQq0p0BdOWpF+8SXo5q68uTLaE227siook1tal1Gjkrak6cdtbWlumr6V7/fP9DjaLuvn5Cj0qBKRuV/+hNBxcExOB2c1///9LN4jlfr//H/Z3DsnCIGeO36yfV/vrmsiauXlxEAAAAAALhoVvTXdyv67P4dSX013KZTft1pAQAAAACACxR98n8jfJkPS+/Iyrn+7199bgAAAAAA4GJY0T12lqSV6Ev91vBOqNN8CSDz5gAAAAAAAPBmiT7/v7kg9aOh1VZlvdL1PwAAAAAA+B/w25Ex9ovpGLv99GP9gqSgs2j9+R+L8uet487ud63DWlhTO0xipr4B0G1ct4qKB+qNxutdkBS9s50bVjI+cDIIphUP7Ct9dTBrrH/Ln0hgYS7980VGAm8djSSwUUze6fd6N455N2n30VFBUU3cykrDbTol22s+qKhWe6vQdXa7v3j6+JeSP1jPg8e9/dLHn/YeRbkch5OOD8M8PhtLpzArlxfReAvRPRdZa7ysRtrk79qtFStqt5yu/5xqh4XRhk63/r/WrTjm1kr8unKU7gFZv0oKlVK0y4ZrH40OYQ2zqEyuedaOyMliKcridhxze+12/JLmF++Fpe/NSdXS9D7wR7OojmYxe1tY/5zaFjOyCI+F9TCLv4QLysli/dWymNojAPC6HAx7oWgQ8+kx9if73Yyz3HLymnuWm927/3C8lRd/7Mc3HM5JRfUXk+6ln9+vKDyjr8VhC/Eo7sXrGWf0ctKvLCnnjF4+R+8WtvWn4TOQkqfVJDXFQRb/7vf7DypRu3+Y6FU/D2f4PLfdoFmdCzfhvReHP4sGwA99sv/J/tNqdX2j/H65fL+q+Wg1khf6HgBAhtnP2BmPWBr2Z4O++/3BVfWjv78Xl8b63W8NvlJQ0sf6VD090t30EQKr2e2ujHwN4e70VWsYG/3WMR5b0d3cq7qoLx2JrQ5i55XOMv77wjB2/bJ3AwAAV+rWjH54sv/Puna/m153r13PvO4e78snnxCcF1u54i0BAMDXh+N/Za10f2P5vtv5qLK5Wal1tx3je/aPje/WtxzjtruOb2/X2luO6fhe17O9pun4WnTrTmCCnU7H87um4fmm4wXubvTkd5M8+j1wWrV217WDTtOpBY6xvXa3ZndN3Q1s09n5UdMNth0/mjnoOLbbcO1a1/XaJvCWZTslYwLHGQl060676zbcsNg2Hd9t1fw98xOvudNyTN0JbN/tdL14gWlbbrvh+a1osSX1T3rQIQAAXxvPXx49edjr7T87oXCsuJB+Hy2p+jIjeCFrga95FQEAwAR6aQAAAAAAAAAAAAAAAAAAAAAA3nynuf/vxEJ6U2A6ZV4ZwdJgys/fOtWSLQ2nfPHXc2V4hkJhckoy0m5/9uxfxoViVsxyWFiQ1Es3/2jM8czE5jLmyiusnmpNFReKF78Nl6WsI+HSCj84GD8Op2LCysyqxcFWLZ7/n0NW4ekXOVWzj6jF8W24cNIKjheKkp4tnGMXXO15CMDV+28AAAD//4S2O4U=") munmap(&(0x7f0000001000/0x4000)=nil, 0x4000) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90) getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000) 276.756644ms ago: executing program 8 (id=6114): r0 = socket$inet(0x2, 0x3, 0xd) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r1}, 0x10) getsockopt$inet_mreqsrc(r0, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000040)=0x28) 246.454305ms ago: executing program 8 (id=6115): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000a00)=ANY=[@ANYBLOB="180100000700002c0000000000000004850000002a00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80001}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x2}, 0x18) r1 = socket$igmp6(0xa, 0x3, 0x3a) setsockopt$MRT6_ADD_MFC(r1, 0x29, 0x22, &(0x7f0000000000)={{0xa, 0x0, 0x101, @loopback, 0xa3c}, {0xa, 0xfffe, 0xfffffffd, @dev, 0x4}, 0x1000, {[0x9, 0x0, 0xfffffffe, 0xfffffef9, 0x0, 0x1, 0x2]}}, 0x5c) 231.686285ms ago: executing program 7 (id=6116): r0 = syz_open_procfs(0x0, &(0x7f0000000000)='ns\x00') fchdir(r0) readlinkat(0xffffffffffffff9c, &(0x7f0000000300)='./cgroup\x00', 0xfffffffffffffffe, 0xfe9c) openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup\x00', &(0x7f0000000040)={0x200000, 0x0, 0x29}, 0x18) 218.167255ms ago: executing program 2 (id=6117): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000380)={[{@grpquota}, {@nogrpid}, {@quota}, {@nobh}]}, 0x1, 0x511, &(0x7f0000000ac0)="$eJzs3c9vI2cZAOB3nDhxsmmTlh4AQbu0hQWt1km8bVT1AOWEEKqE6BGkbUi8URQ7jmKnNGEP2zNXJCpxgiN/AOeeuHNBcOOyHJD4EYE2SByMZjzOerN2Ntps7BA/jzSa+ebz+n2/tWa+zJt4JoCxdT0i7kfEVER8GBHz+f4kX+K9zpK+7uHhvbWjw3trSbTbH/wjyfrTfdHzb1LX8vcsRcQPvhPx4+TJuM39g63VWq26m7cXW/Wdxeb+wa3N+upGdaO6XamsLK8svXP77cpzG+tr9al868sPfn//Gz9N05rL9/SO41kknSH32x8RxeM4qcmI+N55gl0iE/l4pkadCM+kEBEvR8Tr2fE/HxPZpwkAXGXt9ny053vbAMBVV8hqYEmhnNcC5qJQKJc7NbxXYrZQazRbN+829rbXO7WyhSgW7m7Wqkt5rXAhiknaXs62H7UrnfZ0t307Il6KiJ9Pz2Tt8lqjtj7KH3wAYIxdOzH//3u6M/8DAFdcadQJAABDZ/4HgPFj/geA8WP+B4Dx05n/Z0adBgAwRKde/7sfEABcSer/ADBWvv/+++nSPsrvf73+0f7eVuOjW+vV5la5vrdWXmvs7pQ3Go2N7J499ae9X63R2Fl+K/Y+XvjmTrO12Nw/uFNv7G237mT39b5TLWav6nurbABgSF567bM/JemM/O5MtkTPsxyKI80MuGiFUScAjMzEqBMARsZf98D4Osc1vvIAXBF9HtH7mFK/Lwi12+32xaUEXLAbX1D/h3HVU//3V8AwZtT/YXyp/8P4areTsz7zP876QgDgclPjBwb8/v/lfP2b/JcDP1o/+YpPLzIrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuNy6z/8t588Cn4tCoVyOeCEiFqKY3N2sVZci4sWI+ON0cTptL484ZwDgvAp/TfLnf92Yf3Pusa5Xrx1vTkXET375wS8+Xm21dv8QMZX8c7q7v/Vpvr8y/OwBgNOl1/rdeTpb91zIPzy8t9ZdhpnT374dEaVO/KPDqTg6jj8Zk9m6FMWImP1Xkrc7kp7axXnc/yQiPt9v/EnMZTWQzpNPT8ZPY78w1PiFx+IXsr7OOv2/+NxzyAXGzWfp+ee9fsdfIa5n6/7Hfyk7Q51ffv5L32rtKDsHPorfPf9NDDj/XT9rjLd+993O1syTfZ9EfHEyohv7qOf8042fDIj/5hnj//lLr74+qK/9q4gb0T9+b6zFVn1nsbl/cGuzvrpR3ahuVyoryytL79x+u7KY1agXB88Gf3/35ouD+tLxzw6IX3rK+L96xvH/+r8f/vArp8T/+hv94hfilVPip3Pi184Yf3X2t6VBfWn89QHjf9rnf/OM8R/85eCJx4YDAKPT3D/YWq3Vqrv/7xtzxc6ALks+Ni5iI/2EL0EafTe+NaxYU9G/62dvdA6BE13t9jPFGnTGeB5VN+AyOD7oI+I/o04GAAAAAAAAAAAAAADoaxjfWBr1GAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALi6/hcAAP//leLMXA==") quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000100)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000280)={0x7, 0x6, 0x800077, 0x20800000000412, 0x8004, 0x7, 0x1000, 0xf67, 0xfffffffc}) socket$inet6_udp(0xa, 0x2, 0x0) lchown(&(0x7f0000000080)='./file1\x00', 0xee01, 0xffffffffffffffff) 160.153707ms ago: executing program 8 (id=6118): sendmsg$L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x44, 0x0, 0x4b6b9d28c5b9a46b, 0x70bd25, 0x25dfdbfb, {}, [@L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0x1}, @L2TP_ATTR_UDP_SPORT={0x6, 0x1a, 0x4e23}, @L2TP_ATTR_UDP_ZERO_CSUM6_TX={0x5, 0x21, 0x1}, @L2TP_ATTR_IP_SADDR={0x8, 0x18, @remote}, @L2TP_ATTR_OFFSET={0x6, 0x3, 0x7}, @L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5}]}, 0x44}, 0x1, 0x0, 0x0, 0x4040000}, 0x40004) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x800, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4422}, [@IFLA_IFNAME={0x14, 0x3, 'veth0_virt_wifi\x00'}, @IFLA_PROMISCUITY={0x8, 0x1e, 0xfffffffe}]}, 0x3c}}, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e000000180002"], 0x50}}, 0x0) 160.049176ms ago: executing program 7 (id=6119): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000780)={0x2, 0x13, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, [@sadb_key={0x1, 0x8}]}, 0x18}}, 0x0) 152.748576ms ago: executing program 2 (id=6120): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18) quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000040)=@sr0, 0x0, &(0x7f00000002c0)='./file0/file1\x00') 146.812266ms ago: executing program 0 (id=6121): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) r1 = openat$cgroup_devices(r0, &(0x7f0000000300)='devices.allow\x00', 0x2, 0x0) write$cgroup_devices(r1, &(0x7f0000000080)=ANY=[@ANYBLOB='b ', @ANYRESDEC], 0xa) 118.536067ms ago: executing program 0 (id=6122): openat$tun(0xffffff9c, &(0x7f0000000040), 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000500), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000008000000180001801400020073797a5f74756e00000000000000000018000280080002001100000004000100080004"], 0x44}, 0x1, 0x0, 0x0, 0x10}, 0x8090) 108.231457ms ago: executing program 2 (id=6123): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000013c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000040)="76389e147583ddd0569ba56a6558", 0x0, 0x4, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 85.545488ms ago: executing program 8 (id=6124): r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc) write$binfmt_elf32(r0, &(0x7f0000000140)=ANY=[@ANYBLOB="7f454c4604070003070000000000000002000300030000000903000438007f0000fcffffff0e000000000020000100050000000000000000000300000008000000f30000007f00000004000000040020200c0000000004000018148e22f6f5417eb508bcf1c954a19ccdb974a82e18f2576782e0c4652391f441eea15dc2f68a42f1c0d523a801b903f447e483d242ad3f6db44ba37bfc31ff6d4ca9572c2fe1a93b462400ba2c"], 0x58) close(r0) execve(&(0x7f0000000400)='./file0\x00', 0x0, 0x0) 85.268148ms ago: executing program 7 (id=6125): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0) write$selinux_validatetrans(r1, 0x0, 0x6b) 61.032169ms ago: executing program 2 (id=6126): r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_misc(r1, &(0x7f0000000040), 0xe09) ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0x2000000000001]}}) 41.421839ms ago: executing program 0 (id=6127): bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={0xffffffffffffffff, 0xfeffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000140)="06ff", 0x0}, 0x50) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000840)=ANY=[@ANYBLOB="b702000000000000bfa30000000000000703000000feffff7a0af0fff8fff0ff79a4f0ff00000000b7060000ffffffff6d6405000000000065040400010000000404000001000000b7050000400000006a0a80fe000000008500000053000000b70000000000000095000010000000004e62011c3034fdb117168bd07ba08af339d1a1ee35fe163a255c33282044b32495ef8ab9adc67ccc945ff15d802f5132143c0a9fc7a84452569957c1002ed7d458e17f791f4798c8eb484de03312c69b3edff5be26765ba5f8f2879021c2ea53ac547a654bbd2db5356b971d83dd12742be9087a3e7b7c0efd3e38c794eb06b0b8c392904ae7dd5e4dee88518ddf12dddd4bfc6a4dd3b6beba51074229b0d4b504516c4c3e5d1aa044d8d00728141cd67bcd68f253288e655c6b34e02e90637ef2912ba7de26ff2357ef17f95a25780c3a057826ef4e912f01a201e694e3049b8c8fe8b65d8d66bb766f7f3f918c86a702522368d9f81897133af94a5a4cff7f4d8b9d8eaf302f0b2e0c252b0000000000000000ee917bca4885bbf597a14ab6458e6272d88e0c8088f404f011289ebc5623faa1182632161e073af1d69a2e36be115be3b325ecd201d2ffb0a7fa4f5d1106560cdcf071defd0a8be3b69ce3e4f361aca75827426dde87fdf4617222674280f55e98107450c19b861299fcd9ed9d8679406419406bf0c5329bd5b4697336112b0b8756ce3574046bf611a108f8df4d1a88597840b702b6fa8edfff8faf8b8ec039bab385cac0535373bb8fab90539b1a65ddff841eb671f7faf39a43a66c5540b8762b42007c9ec43193ccf617dbf8a12b4a189edbf9fb7c42b1f435ccd4b19b53b60322af0aa66e8f448e1bd96822e6b70b62912c926dbe417cccd4f696d528fa8a3ea847f10e9b1106f3bb506f1d7fbdf801000000000000006c028eb5b5a073d0de5538ab42e171b3baae34c35987b0dda497ac3f5e97e60eaeea15c6d55badf9b86b1c000100006e60cd06c9ed24313ce607d403bb6030f800000000690db0221b1705c501f802ff59b4e683efa4b6e77e042072ec9eb8166f6e28b49a7705a1befc4d315878f88a8fb1dd679fb4c5557abae6849917dc51a89d47b728502f7e621fc0e3ba04020000c149ee6601728c750930519339b44197c22da865059b475afd96187d881e93b42a5fdfd686d8900c44c67133eeb0109dcb60dddad58037fda65885a15a42560ee3027a5ebf95254744f10fd607bc3100b94932b8d9447c42f6e21ee0e54f8be386bdc09decece910a481e648e0cb074536a25ff581d92af08a06f857311a2f14326b0b290205e91a682e00c8762cbc6b904c980eef6e6ae00f0000000000006a8194479700a02b92bec8d05eae1f24fdd7b80d3dde04c22f689594de2ebb9687219de8d73ac83823feb402a2415a9850d5f0183ec67be96dc0e4acd7acf1dfe79d6771903b76e2ae47d972651390c22d641030e1ddac018dc3116e1803af10a5f2b5f7ba58aca5bcabbbab24414a3810788e5503e4be66d683daac5f00000000000000001000ba96edb95ede0e1957c2a2754258d9fd028096cc15a8b912b494d4bbe609031ea1ca65a548941d5d16297757310d9daebd5a3dabbced3b051129cd60a37d397643324e6f0aadf978d639650000000000000000570b0acbcaa196e6b46e213a34c1a550e7c2d8cee7a278cee591f360e345d37dc9f8991a16c08d72317e42d2ac9126acd76130ef1086016697e4d51c4b42b2efc8edab88d46bc3d5d6e5a634c912bc40513643bf44cb416b3149040220aa39035ae46d16d879fc815a5cb84b0d5c8ad970128adf8dec1171e860ca54ce5d6a5aa0327bca4f49a710bf8a8399071237fe5d764e2034873c94a4f21287f3bce3eeb69e94df2e14e4ab10cc7834b304bc879b80255991dd7aac2e92c9e7c411c019d229c1f1e563152f1c5ae9cda3e808000000a0c779d624c5a2b7491b8f73e767389ecd1dee951353bb22b7caf89468871520823715cfebd04189c6c6b34bd8a6541f6bc0630000000000f94e85f5111add3a3cb5bcace95f38465402c39df835754ef33056b0e1134187822c001a25304f3e00b44675d0a25a21dc4023c642cc6f5a75c45a29ab933600acf9a2d471b73a73178cdf309e5d53311996215b44295dfddc1dd6b81132e999366e460d15d366e84da02b8afc40c47e733f804460ed8300ec34eab2ed80097bd32ff1a6143ab1476037e474ca876187c85bed4391215cd77e6a1fd6399a498b96b9b0cca93255acb08c67e50004c5af6fd5b4ce7c1ebc9202bd7b329a4d2530486d5999dd7f90ebecca37f2869135438f05407b1fd7481daf9ec94b799c12e714d573e2a6331f496254f254a60c52b2026ed6a72c82cd191490fabe7b151f92e5d700f21830d613fbe490f305b3845a78817e59bf7ed36471dbca01d39e50ae2535460e1d2f2614940647233a02d5000000000000000000f70e52f0d56f6a4dcf7e57c03d4b4add0500000000000000320304d0d2b308c5ed3956eae263035d703f862224e9818a3d7ac270793a7bf2af87585293960a80ac63c54e55063bf8d24639e561253ef0caf6c58118120d8acecc0528f0d81d291009fc46401baf9c22d1c452a5b61b7a1b9adfcc17f5ad99dcdf935923185db7b14a7fa7babc1f53df70618bb73aa810b756696f26653b84cf842ae433fda59fbe312be11bb7dfecdc38c1c1f688d2724568cc396fca7c74984b7f7bd000000000000003ff3e5857fc6598c933610be374909dc8622b0722259e922f40d7862f7ea72f1754f07711de7600000000000000000000000000c4cb643e73ad8a45f0c7164484540e66e29943aa72297d831ce6c978866a55ed53130c6747f569c9c9abe724b4fc647b17401d2201e8c201e7d6ffa1fa122677f7393ed4fe8a93306f048b6703b04544e42a9cd937ef8d98ee8d878a12a627791c5c2d9fc6de65356be92fd98fdbe819686c7bd3be5bd0ce627c8357675f752c73a502d25c31c831078f098c34295bfe90e882843003841f4c0c65dc1810a50000000000000015911cb03e743c482199757d35df5b59fe0a0c5240c85498d818578e2d65c4ff4acbee037498222b1f81f3726a244da1fd6b8c195f1303bedb744045f31e1547d7bc3c3eae68b8da059a59c8c37e3639c2c4eb3d8229ac24d2ce12bc0e5db4a8202d72e64d5c5eacd0d0c0cd7a879ed967f5a2bd39ae4cf7daf7c9fa1777d54fb5920c8434163f75062c62455bf6e23817a85d"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r0, 0xfeffff, 0x113, 0x3f00f000, &(0x7f0000000700)="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", 0x0, 0xf0, 0x0, 0x4a, 0xffffff0c}, 0x40) 30.205279ms ago: executing program 7 (id=6128): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r1}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x50) 29.880899ms ago: executing program 2 (id=6129): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000500000001801000020786c3100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000005000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r0}, 0x10) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2000003, 0x4c831, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000000000/0x9000)=nil, 0x600600, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil) 2.442019ms ago: executing program 0 (id=6130): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ffd}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10) r1 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f00000002c0), 0x1, 0x0) write$selinux_validatetrans(r1, 0x0, 0x70) 0s ago: executing program 8 (id=6131): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000001080)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/timers\x00', 0x0, 0x0) close(r1) kernel console output (not intermixed with test programs): 6.107452][T13907] loop0: detected capacity change from 0 to 128 [ 156.280977][T13923] loop0: detected capacity change from 0 to 2048 [ 156.341272][T13923] Alternate GPT is invalid, using primary GPT. [ 156.348060][T13923] loop0: p1 p2 p3 [ 156.351967][T13923] loop0: partition table partially beyond EOD, truncated [ 156.364768][T13934] loop8: detected capacity change from 0 to 512 [ 156.371839][T13934] journal_path: Non-blockdev passed as './bus' [ 156.378746][T13934] EXT4-fs: error: could not find journal device path [ 156.473507][T13951] loop2: detected capacity change from 0 to 1024 [ 156.509025][T13951] EXT4-fs: Ignoring removed orlov option [ 156.537724][T13955] IPv6: NLM_F_CREATE should be specified when creating new route [ 156.554081][T13951] ext4 filesystem being mounted at /888/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 156.567781][T13959] loop8: detected capacity change from 0 to 512 [ 156.596941][T13959] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode [ 156.628122][T13959] EXT4-fs error (device loop8): ext4_orphan_get:1418: comm syz.8.4334: bad orphan inode 131083 [ 156.706233][T13969] netlink: 'syz.7.4337': attribute type 1 has an invalid length. [ 156.714115][T13969] __nla_validate_parse: 7 callbacks suppressed [ 156.714134][T13969] netlink: 224 bytes leftover after parsing attributes in process `syz.7.4337'. [ 156.772466][T13972] loop0: detected capacity change from 0 to 1024 [ 156.779674][T13972] EXT4-fs: Ignoring removed nobh option [ 156.785794][T13972] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 156.805134][T13972] EXT4-fs error (device loop0): ext4_ext_check_inode:523: inode #11: comm syz.0.4338: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 156.834464][T13972] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.4338: couldn't read orphan inode 11 (err -117) [ 156.888359][T13982] loop7: detected capacity change from 0 to 512 [ 156.905727][T13982] EXT4-fs: Ignoring removed nobh option [ 156.920522][T13982] EXT4-fs error (device loop7): ext4_do_update_inode:5624: inode #3: comm syz.7.4342: corrupted inode contents [ 156.946613][T13982] EXT4-fs error (device loop7): ext4_dirty_inode:6509: inode #3: comm syz.7.4342: mark_inode_dirty error [ 156.977238][T13982] EXT4-fs error (device loop7): ext4_do_update_inode:5624: inode #3: comm syz.7.4342: corrupted inode contents [ 156.994851][T13982] EXT4-fs error (device loop7): __ext4_ext_dirty:206: inode #3: comm syz.7.4342: mark_inode_dirty error [ 157.019867][T13982] EXT4-fs error (device loop7): ext4_acquire_dquot:6945: comm syz.7.4342: Failed to acquire dquot type 0 [ 157.021191][T13998] loop2: detected capacity change from 0 to 1024 [ 157.045973][T13982] EXT4-fs error (device loop7): ext4_do_update_inode:5624: inode #16: comm syz.7.4342: corrupted inode contents [ 157.046820][T14000] netlink: 60 bytes leftover after parsing attributes in process `syz.6.4350'. [ 157.067398][T14000] netlink: 60 bytes leftover after parsing attributes in process `syz.6.4350'. [ 157.077543][T13982] EXT4-fs error (device loop7): ext4_dirty_inode:6509: inode #16: comm syz.7.4342: mark_inode_dirty error [ 157.095105][T13998] ext4 filesystem being mounted at /891/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 157.109240][T14000] netlink: 60 bytes leftover after parsing attributes in process `syz.6.4350'. [ 157.118326][T14000] netlink: 60 bytes leftover after parsing attributes in process `syz.6.4350'. [ 157.130444][T13982] EXT4-fs error (device loop7): ext4_do_update_inode:5624: inode #16: comm syz.7.4342: corrupted inode contents [ 157.138328][T13998] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #15: comm syz.2.4348: lblock 0 mapped to illegal pblock 0 (length 1) [ 157.161169][T13982] EXT4-fs error (device loop7): __ext4_ext_dirty:206: inode #16: comm syz.7.4342: mark_inode_dirty error [ 157.183530][T13982] EXT4-fs error (device loop7): ext4_do_update_inode:5624: inode #16: comm syz.7.4342: corrupted inode contents [ 157.183721][T13998] EXT4-fs (loop2): Remounting filesystem read-only [ 157.204529][T13982] EXT4-fs error (device loop7) in ext4_orphan_del:301: Corrupt filesystem [ 157.221872][T13982] EXT4-fs error (device loop7): ext4_do_update_inode:5624: inode #16: comm syz.7.4342: corrupted inode contents [ 157.226307][T14000] netlink: 60 bytes leftover after parsing attributes in process `syz.6.4350'. [ 157.243387][T14000] netlink: 60 bytes leftover after parsing attributes in process `syz.6.4350'. [ 157.253999][T13982] EXT4-fs error (device loop7): ext4_truncate:4637: inode #16: comm syz.7.4342: mark_inode_dirty error [ 157.265527][T13982] EXT4-fs error (device loop7) in ext4_process_orphan:343: Corrupt filesystem [ 157.287219][T13982] EXT4-fs (loop7): 1 truncate cleaned up [ 157.302415][T13982] ext4 filesystem being mounted at /437/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 157.349395][T14026] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4360'. [ 157.378103][T14028] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 157.394712][ T3406] lo speed is unknown, defaulting to 1000 [ 157.454991][T14034] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 157.477171][T14045] loop7: detected capacity change from 0 to 1024 [ 157.501034][T14045] ext4 filesystem being mounted at /440/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 157.542124][T14045] EXT4-fs error (device loop7): ext4_map_blocks:814: inode #15: comm syz.7.4369: lblock 0 mapped to illegal pblock 0 (length 1) [ 157.554652][T14053] loop0: detected capacity change from 0 to 1024 [ 157.566920][T14045] EXT4-fs (loop7): Remounting filesystem read-only [ 157.655829][ T29] kauditd_printk_skb: 130 callbacks suppressed [ 157.655848][ T29] audit: type=1400 audit(2000000554.874:4283): avc: denied { read } for pid=14061 comm="syz.6.4376" name="autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 157.685606][ T29] audit: type=1400 audit(2000000554.874:4284): avc: denied { open } for pid=14061 comm="syz.6.4376" path="/dev/autofs" dev="devtmpfs" ino=91 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 157.709516][ T29] audit: type=1400 audit(2000000554.874:4285): avc: denied { ioctl } for pid=14061 comm="syz.6.4376" path="/dev/autofs" dev="devtmpfs" ino=91 ioctlcmd=0x937e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_device_t tclass=chr_file permissive=1 [ 157.740197][T14066] netlink: 28 bytes leftover after parsing attributes in process `syz.8.4377'. [ 157.749424][T14066] netlink: 28 bytes leftover after parsing attributes in process `syz.8.4377'. [ 157.752698][ T4925] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 157.774724][ T4925] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 320 with error 28 [ 157.790132][ T4925] EXT4-fs (loop0): This should not happen!! Data will be lost [ 157.790132][ T4925] [ 157.800221][ T4925] EXT4-fs (loop0): Total free blocks count 0 [ 157.806497][ T4925] EXT4-fs (loop0): Free/Dirty block details [ 157.812567][ T4925] EXT4-fs (loop0): free_blocks=68451041280 [ 157.820064][ T4925] EXT4-fs (loop0): dirty_blocks=320 [ 157.825667][ T4925] EXT4-fs (loop0): Block reservation details [ 157.831789][ T4925] EXT4-fs (loop0): i_reserved_data_blocks=20 [ 157.870343][ T29] audit: type=1326 audit(2000000555.094:4286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14077 comm="syz.0.4378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66085eeec9 code=0x7ffc0000 [ 157.894073][ T29] audit: type=1326 audit(2000000555.094:4287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14077 comm="syz.0.4378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66085eeec9 code=0x7ffc0000 [ 157.965068][T14087] loop8: detected capacity change from 0 to 1024 [ 158.001015][ T29] audit: type=1326 audit(2000000555.094:4288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14077 comm="syz.0.4378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f66085eeec9 code=0x7ffc0000 [ 158.026058][ T29] audit: type=1326 audit(2000000555.094:4289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14077 comm="syz.0.4378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66085eeec9 code=0x7ffc0000 [ 158.049836][ T29] audit: type=1326 audit(2000000555.094:4290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14077 comm="syz.0.4378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f66085eeec9 code=0x7ffc0000 [ 158.074347][ T29] audit: type=1326 audit(2000000555.144:4291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14077 comm="syz.0.4378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66085eeec9 code=0x7ffc0000 [ 158.089236][T14087] ext4 filesystem being mounted at /297/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 158.098818][ T29] audit: type=1326 audit(2000000555.144:4292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14077 comm="syz.0.4378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66085eeec9 code=0x7ffc0000 [ 158.149688][T14087] EXT4-fs error (device loop8): ext4_map_blocks:814: inode #15: comm syz.8.4385: lblock 0 mapped to illegal pblock 0 (length 1) [ 158.170845][T14100] loop2: detected capacity change from 0 to 1024 [ 158.177379][T14087] EXT4-fs (loop8): Remounting filesystem read-only [ 158.267599][ T4925] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 158.284004][T14112] loop8: detected capacity change from 0 to 1024 [ 158.290918][T14112] EXT4-fs: Ignoring removed nobh option [ 158.298963][ T4925] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 320 with error 28 [ 158.311460][ T4925] EXT4-fs (loop2): This should not happen!! Data will be lost [ 158.311460][ T4925] [ 158.318957][T14112] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 158.321595][ T4925] EXT4-fs (loop2): Total free blocks count 0 [ 158.337864][ T4925] EXT4-fs (loop2): Free/Dirty block details [ 158.343975][ T4925] EXT4-fs (loop2): free_blocks=68451041280 [ 158.349844][ T4925] EXT4-fs (loop2): dirty_blocks=320 [ 158.355072][ T4925] EXT4-fs (loop2): Block reservation details [ 158.361106][ T4925] EXT4-fs (loop2): i_reserved_data_blocks=20 [ 158.368752][T14112] EXT4-fs error (device loop8): ext4_ext_check_inode:523: inode #11: comm syz.8.4396: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 158.390903][T14112] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.4396: couldn't read orphan inode 11 (err -117) [ 158.416710][T14127] loop2: detected capacity change from 0 to 512 [ 158.429707][T14127] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 158.441130][T14127] EXT4-fs error (device loop2): ext4_orphan_get:1418: comm syz.2.4399: bad orphan inode 131083 [ 158.539836][T14145] loop0: detected capacity change from 0 to 1024 [ 158.572965][T14145] ext4 filesystem being mounted at /968/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 158.587400][T14145] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: comm syz.0.4409: lblock 0 mapped to illegal pblock 0 (length 1) [ 158.601734][T14145] EXT4-fs (loop0): Remounting filesystem read-only [ 158.642555][T14153] loop7: detected capacity change from 0 to 2048 [ 158.700177][T14153] Alternate GPT is invalid, using primary GPT. [ 158.706757][T14153] loop7: p1 p2 p3 [ 158.710639][T14153] loop7: partition table partially beyond EOD, truncated [ 158.727033][T14161] loop2: detected capacity change from 0 to 8192 [ 158.735639][T14161] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 158.791719][T14173] sctp: [Deprecated]: syz.8.4424 (pid 14173) Use of int in max_burst socket option deprecated. [ 158.791719][T14173] Use struct sctp_assoc_value instead [ 158.823227][T14179] loop2: detected capacity change from 0 to 1024 [ 158.835643][T14181] netlink: 'syz.7.4426': attribute type 10 has an invalid length. [ 158.846152][T14181] syz_tun: entered promiscuous mode [ 158.856833][T14181] $Hÿ: (slave syz_tun): Enslaving as an active interface with an up link [ 158.869837][T14179] ext4 filesystem being mounted at /903/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 158.892297][T14179] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #15: comm syz.2.4425: lblock 0 mapped to illegal pblock 0 (length 1) [ 158.906915][T14189] loop0: detected capacity change from 0 to 1024 [ 158.910414][T14179] EXT4-fs (loop2): Remounting filesystem read-only [ 158.915870][T14189] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 158.955143][T14189] EXT4-fs error (device loop0): ext4_xattr_inode_iget:441: inode #11: comm syz.0.4429: missing EA_INODE flag [ 158.969079][T14189] EXT4-fs (loop0): Remounting filesystem read-only [ 159.131569][T14222] loop2: detected capacity change from 0 to 1024 [ 159.147032][T14223] loop0: detected capacity change from 0 to 1024 [ 159.179776][T14223] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 159.207235][T14234] program syz.6.4450 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 159.441934][T14273] sch_fq: defrate 0 ignored. [ 159.539442][T14294] loop2: detected capacity change from 0 to 512 [ 159.561753][T14294] EXT4-fs mount: 92 callbacks suppressed [ 159.561775][T14294] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 159.582440][T14294] ext4 filesystem being mounted at /920/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 159.602161][T14299] loop7: detected capacity change from 0 to 512 [ 159.616114][ T3298] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 159.639313][T14303] loop0: detected capacity change from 0 to 1024 [ 159.668544][T14303] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 159.681546][T14299] EXT4-fs (loop7): revision level too high, forcing read-only mode [ 159.711899][T14299] EXT4-fs (loop7): orphan cleanup on readonly fs [ 159.723257][T14299] EXT4-fs error (device loop7): ext4_do_update_inode:5624: inode #16: comm syz.7.4480: corrupted inode contents [ 159.735973][T14299] EXT4-fs (loop7): Remounting filesystem read-only [ 159.761322][T14299] EXT4-fs (loop7): 1 truncate cleaned up [ 159.769079][ T4918] EXT4-fs (loop7): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 159.779784][ T4918] EXT4-fs (loop7): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 159.795096][ T4918] EXT4-fs (loop7): Quota write (off=8, len=24) cancelled because transaction is not started [ 159.806164][T14299] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 159.820062][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 159.865774][ T9089] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 160.018478][T14354] loop8: detected capacity change from 0 to 2048 [ 160.061191][T14354] Alternate GPT is invalid, using primary GPT. [ 160.067700][T14354] loop8: p1 p2 p3 [ 160.071594][T14354] loop8: partition table partially beyond EOD, truncated [ 160.177816][T14377] loop2: detected capacity change from 0 to 1764 [ 160.191255][T14382] random: crng reseeded on system resumption [ 160.280643][T14393] netlink: 'syz.2.4522': attribute type 6 has an invalid length. [ 160.298987][T14395] netlink: 'syz.6.4523': attribute type 21 has an invalid length. [ 160.334443][T14395] netlink: 'syz.6.4523': attribute type 1 has an invalid length. [ 160.385361][T14405] loop6: detected capacity change from 0 to 1024 [ 160.402951][T14406] loop2: detected capacity change from 0 to 512 [ 160.549802][T14406] EXT4-fs (loop2): orphan cleanup on readonly fs [ 160.557553][T14405] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 160.571520][T14406] EXT4-fs warning (device loop2): ext4_xattr_inode_get:560: inode #11: comm syz.2.4529: EA inode hash validation failed [ 160.584615][T14406] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 160.598325][T14406] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #15: comm syz.2.4529: corrupted inode contents [ 160.611109][T14406] EXT4-fs error (device loop2): ext4_dirty_inode:6509: inode #15: comm syz.2.4529: mark_inode_dirty error [ 160.639252][T14406] EXT4-fs error (device loop2): ext4_do_update_inode:5624: inode #15: comm syz.2.4529: corrupted inode contents [ 160.651947][T14406] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2996: inode #15: comm syz.2.4529: mark_inode_dirty error [ 160.665758][T14406] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2999: inode #15: comm syz.2.4529: mark inode dirty (error -117) [ 160.679467][T14406] EXT4-fs warning (device loop2): ext4_evict_inode:274: xattr delete (err -117) [ 160.693066][T14406] EXT4-fs (loop2): 1 orphan inode deleted [ 160.706282][T14405] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 160.717221][T14406] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 160.748938][ T3298] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 160.810767][ T8454] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 160.955096][T14434] loop2: detected capacity change from 0 to 512 [ 160.963094][T14434] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 160.976547][T14434] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 160.990415][T14434] EXT4-fs (loop2): 1 truncate cleaned up [ 160.997320][T14434] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 161.048040][ T3298] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.128612][T14450] random: crng reseeded on system resumption [ 161.435135][T14498] loop8: detected capacity change from 0 to 1024 [ 161.451437][T14498] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 161.471445][T14498] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 161.502397][T10101] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.559550][T14515] loop8: detected capacity change from 0 to 512 [ 161.566585][T14515] EXT4-fs (loop8): blocks per group (255) and clusters per group (8192) inconsistent [ 161.738990][T14537] netlink: 'syz.7.4590': attribute type 6 has an invalid length. [ 161.746945][T14537] __nla_validate_parse: 13 callbacks suppressed [ 161.746966][T14537] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4590'. [ 161.837063][T14550] loop6: detected capacity change from 0 to 128 [ 161.850512][T14550] bio_check_eod: 18 callbacks suppressed [ 161.850530][T14550] syz.6.4596: attempt to access beyond end of device [ 161.850530][T14550] loop6: rw=2049, sector=138, nr_sectors = 72 limit=128 [ 161.872402][T14550] syz.6.4596: attempt to access beyond end of device [ 161.872402][T14550] loop6: rw=2049, sector=210, nr_sectors = 8 limit=128 [ 161.886678][T14550] syz.6.4596: attempt to access beyond end of device [ 161.886678][T14550] loop6: rw=2049, sector=216, nr_sectors = 2 limit=128 [ 161.900441][T14550] buffer_io_error: 4 callbacks suppressed [ 161.900460][T14550] Buffer I/O error on dev loop6, logical block 108, lost async page write [ 161.918193][T14550] syz.6.4596: attempt to access beyond end of device [ 161.918193][T14550] loop6: rw=2049, sector=234, nr_sectors = 8 limit=128 [ 161.939106][T14550] syz.6.4596: attempt to access beyond end of device [ 161.939106][T14550] loop6: rw=2049, sector=240, nr_sectors = 2 limit=128 [ 161.952742][T14550] Buffer I/O error on dev loop6, logical block 120, lost async page write [ 161.973724][T14550] syz.6.4596: attempt to access beyond end of device [ 161.973724][T14550] loop6: rw=2049, sector=242, nr_sectors = 8 limit=128 [ 161.988023][T14550] syz.6.4596: attempt to access beyond end of device [ 161.988023][T14550] loop6: rw=2049, sector=248, nr_sectors = 2 limit=128 [ 162.002428][T14550] Buffer I/O error on dev loop6, logical block 124, lost async page write [ 162.021635][T14561] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4600'. [ 162.044322][T14550] syz.6.4596: attempt to access beyond end of device [ 162.044322][T14550] loop6: rw=2049, sector=218, nr_sectors = 8 limit=128 [ 162.066924][T14550] syz.6.4596: attempt to access beyond end of device [ 162.066924][T14550] loop6: rw=2049, sector=224, nr_sectors = 2 limit=128 [ 162.066953][T14550] Buffer I/O error on dev loop6, logical block 112, lost async page write [ 162.067626][T14550] syz.6.4596: attempt to access beyond end of device [ 162.067626][T14550] loop6: rw=2049, sector=226, nr_sectors = 8 limit=128 [ 162.085388][T14550] Buffer I/O error on dev loop6, logical block 116, lost async page write [ 162.308839][T14591] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4614'. [ 162.322775][T14592] loop6: detected capacity change from 0 to 512 [ 162.336710][T14592] EXT4-fs (loop6): orphan cleanup on readonly fs [ 162.349004][T14592] EXT4-fs warning (device loop6): ext4_xattr_inode_get:560: inode #11: comm syz.6.4612: EA inode hash validation failed [ 162.353849][T14586] SELinux: failed to load policy [ 162.387105][T14592] EXT4-fs warning (device loop6): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 162.401047][T14592] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #15: comm syz.6.4612: corrupted inode contents [ 162.416643][T14592] EXT4-fs error (device loop6): ext4_dirty_inode:6509: inode #15: comm syz.6.4612: mark_inode_dirty error [ 162.429277][T14592] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #15: comm syz.6.4612: corrupted inode contents [ 162.442187][T14592] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2996: inode #15: comm syz.6.4612: mark_inode_dirty error [ 162.454858][T14592] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2999: inode #15: comm syz.6.4612: mark inode dirty (error -117) [ 162.469015][T14592] EXT4-fs warning (device loop6): ext4_evict_inode:274: xattr delete (err -117) [ 162.479916][T14592] EXT4-fs (loop6): 1 orphan inode deleted [ 162.486582][T14592] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 162.536555][ T8454] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 162.781725][ T29] kauditd_printk_skb: 160 callbacks suppressed [ 162.781744][ T29] audit: type=1400 audit(2000000560.004:4447): avc: denied { create } for pid=14644 comm="syz.2.4639" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 162.813075][ T29] audit: type=1400 audit(2000000560.034:4448): avc: denied { bind } for pid=14646 comm="syz.0.4640" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 162.832970][ T29] audit: type=1400 audit(2000000560.034:4449): avc: denied { read } for pid=14646 comm="syz.0.4640" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 162.853678][ T29] audit: type=1400 audit(2000000560.074:4450): avc: denied { connect } for pid=14644 comm="syz.2.4639" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 162.873575][ T29] audit: type=1400 audit(2000000560.074:4451): avc: denied { write } for pid=14644 comm="syz.2.4639" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 162.933185][ T29] audit: type=1400 audit(2000000560.154:4452): avc: denied { create } for pid=14654 comm="syz.7.4644" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 162.971486][T14659] program syz.7.4646 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 163.005499][ T29] audit: type=1400 audit(2000000560.194:4453): avc: denied { append } for pid=14658 comm="syz.7.4646" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 163.052654][T14665] random: crng reseeded on system resumption [ 163.144429][ T29] audit: type=1400 audit(2000000560.364:4454): avc: denied { read write } for pid=14674 comm="syz.7.4654" name="uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 163.171297][ T29] audit: type=1400 audit(2000000560.364:4455): avc: denied { open } for pid=14674 comm="syz.7.4654" path="/dev/uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 163.204657][ T29] audit: type=1400 audit(2000000560.424:4456): avc: denied { read append } for pid=14680 comm="syz.6.4656" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 163.229924][T14677] IPv6: NLM_F_CREATE should be specified when creating new route [ 163.377794][T14703] loop7: detected capacity change from 0 to 512 [ 163.391832][T14703] msdos: Unknown parameter 'rors' [ 163.525668][T14726] pim6reg0: tun_chr_ioctl cmd 1074812118 [ 163.572323][T14732] loop7: detected capacity change from 0 to 128 [ 163.592697][T14732] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 163.610647][T14732] ext4 filesystem being mounted at /495/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 163.687951][ T9089] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 163.865428][T14748] lo speed is unknown, defaulting to 1000 [ 163.964152][T14753] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4688'. [ 163.973403][T14753] netlink: 32 bytes leftover after parsing attributes in process `syz.7.4688'. [ 163.982417][T14753] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4688'. [ 163.991594][T14753] netlink: 2 bytes leftover after parsing attributes in process `syz.7.4688'. [ 164.000845][T14753] netlink: 32 bytes leftover after parsing attributes in process `syz.7.4688'. [ 164.010501][T14748] lo speed is unknown, defaulting to 1000 [ 164.082786][T14755] SELinux: failed to load policy [ 164.137224][T14766] tc_dump_action: action bad kind [ 164.312037][T14790] loop7: detected capacity change from 0 to 1024 [ 164.338754][T14790] EXT4-fs: Ignoring removed orlov option [ 164.361013][T14790] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 164.424722][ T9089] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.448901][T14809] netlink: 'syz.8.4715': attribute type 2 has an invalid length. [ 164.457224][T14809] netlink: 'syz.8.4715': attribute type 1 has an invalid length. [ 164.564112][T14825] loop6: detected capacity change from 0 to 128 [ 164.600303][T14830] vlan2: entered allmulticast mode [ 164.925330][T14888] loop6: detected capacity change from 0 to 512 [ 164.932140][T14888] EXT4-fs: Ignoring removed nobh option [ 164.950190][T14888] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #3: comm syz.6.4753: corrupted inode contents [ 164.962677][T14888] EXT4-fs error (device loop6): ext4_dirty_inode:6509: inode #3: comm syz.6.4753: mark_inode_dirty error [ 164.975090][T14888] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #3: comm syz.6.4753: corrupted inode contents [ 164.987656][T14888] EXT4-fs error (device loop6): __ext4_ext_dirty:206: inode #3: comm syz.6.4753: mark_inode_dirty error [ 165.000805][T14888] EXT4-fs error (device loop6): ext4_acquire_dquot:6945: comm syz.6.4753: Failed to acquire dquot type 0 [ 165.014056][T14888] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #16: comm syz.6.4753: corrupted inode contents [ 165.026816][T14888] EXT4-fs error (device loop6): ext4_dirty_inode:6509: inode #16: comm syz.6.4753: mark_inode_dirty error [ 165.051922][T14888] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #16: comm syz.6.4753: corrupted inode contents [ 165.066425][T14888] EXT4-fs error (device loop6): __ext4_ext_dirty:206: inode #16: comm syz.6.4753: mark_inode_dirty error [ 165.078598][T14888] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #16: comm syz.6.4753: corrupted inode contents [ 165.091299][T14888] EXT4-fs error (device loop6) in ext4_orphan_del:301: Corrupt filesystem [ 165.102235][T14888] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #16: comm syz.6.4753: corrupted inode contents [ 165.115014][T14888] EXT4-fs error (device loop6): ext4_truncate:4637: inode #16: comm syz.6.4753: mark_inode_dirty error [ 165.126525][T14888] EXT4-fs error (device loop6) in ext4_process_orphan:343: Corrupt filesystem [ 165.136306][T14888] EXT4-fs (loop6): 1 truncate cleaned up [ 165.143529][T14888] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 165.156249][T14888] ext4 filesystem being mounted at /632/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 165.167559][T14888] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.289541][T14917] loop6: detected capacity change from 0 to 128 [ 165.329431][T14922] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4766'. [ 165.338628][T14922] netlink: 'syz.0.4766': attribute type 18 has an invalid length. [ 165.346472][T14922] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4766'. [ 165.611600][T14974] loop7: detected capacity change from 0 to 512 [ 165.625506][T14974] msdos: Bad value for 'uid' [ 165.630774][T14974] msdos: Bad value for 'uid' [ 165.656673][T14981] loop8: detected capacity change from 0 to 128 [ 165.665519][T14981] FAT-fs (loop8): Directory bread(block 414) failed [ 165.688828][T14985] netlink: 'syz.7.4798': attribute type 9 has an invalid length. [ 165.700655][T14981] FAT-fs (loop8): Directory bread(block 415) failed [ 165.707422][T14981] FAT-fs (loop8): Directory bread(block 416) failed [ 165.738137][T14981] FAT-fs (loop8): Directory bread(block 417) failed [ 165.749487][T14981] FAT-fs (loop8): Directory bread(block 418) failed [ 165.756807][T14981] FAT-fs (loop8): Directory bread(block 419) failed [ 165.767725][T14981] FAT-fs (loop8): Directory bread(block 420) failed [ 165.770396][T14994] netlink: 'syz.0.4802': attribute type 2 has an invalid length. [ 165.775482][T14981] FAT-fs (loop8): Directory bread(block 421) failed [ 165.802401][T14981] FAT-fs (loop8): Directory bread(block 414) failed [ 165.826635][T14981] FAT-fs (loop8): Directory bread(block 415) failed [ 165.850335][T15006] loop7: detected capacity change from 0 to 164 [ 165.871729][T15006] rock: corrupted directory entry. extent=32, offset=0, size=65773 [ 165.891334][T15006] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 165.995101][T15026] lo speed is unknown, defaulting to 1000 [ 166.161255][T15026] lo speed is unknown, defaulting to 1000 [ 166.688968][T15127] loop6: detected capacity change from 0 to 1024 [ 166.695969][T15127] EXT4-fs: Ignoring removed orlov option [ 166.719240][T15127] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 166.749044][ T8454] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 166.857096][T15148] loop6: detected capacity change from 0 to 8192 [ 166.898353][T15148] loop6: p2 p3 p4 [ 166.902470][T15148] loop6: p2 start 4293394690 is beyond EOD, truncated [ 166.909522][T15148] loop6: p3 size 100663552 extends beyond EOD, truncated [ 166.917905][T15148] loop6: p4 size 50331648 extends beyond EOD, truncated [ 167.124411][T15160] lo speed is unknown, defaulting to 1000 [ 167.249094][T15160] lo speed is unknown, defaulting to 1000 [ 167.412116][T15194] netlink: 'syz.7.4886': attribute type 1 has an invalid length. [ 167.433598][T15196] loop6: detected capacity change from 0 to 128 [ 167.559369][T15216] netlink: 'syz.8.4893': attribute type 21 has an invalid length. [ 167.567333][T15216] __nla_validate_parse: 5 callbacks suppressed [ 167.567350][T15216] netlink: 128 bytes leftover after parsing attributes in process `syz.8.4893'. [ 167.618147][T15216] netlink: 3 bytes leftover after parsing attributes in process `syz.8.4893'. [ 167.733932][T15237] SELinux: security policydb version 16 (MLS) not backwards compatible [ 167.752551][T15237] SELinux: failed to load policy [ 167.793251][ T29] kauditd_printk_skb: 158 callbacks suppressed [ 167.793310][ T29] audit: type=1400 audit(2000000565.015:4613): avc: denied { block_suspend } for pid=15245 comm="syz.2.4910" capability=36 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 167.876019][ T29] audit: type=1400 audit(2000000565.095:4614): avc: denied { execute } for pid=15253 comm="syz.6.4913" path=2F6D656D66643AB159F824202864656C6574656429 dev="tmpfs" ino=311 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 167.958032][ T29] audit: type=1400 audit(2000000565.175:4615): avc: denied { listen } for pid=15263 comm="syz.0.4919" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 168.012968][T15274] loop8: detected capacity change from 0 to 1024 [ 168.057505][T15274] EXT4-fs: Ignoring removed orlov option [ 168.069714][T15274] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 168.096260][T15274] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.4923: bg 0: block 232: padding at end of block bitmap is not set [ 168.097774][ T29] audit: type=1400 audit(2000000565.315:4616): avc: denied { create } for pid=15272 comm="syz.8.4923" name=131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D338 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 168.159909][T15274] EXT4-fs (loop8): Remounting filesystem read-only [ 168.166606][T15274] EXT4-fs (loop8): error restoring inline_data for inode -- potential data loss! (inode 12, error -30) [ 168.196240][T10101] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 168.287942][ T29] audit: type=1400 audit(2000000565.505:4617): avc: denied { write } for pid=15307 comm="syz.0.4938" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 168.384609][ T29] audit: type=1326 audit(2000000565.595:4618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15313 comm="syz.0.4942" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f66085eeec9 code=0x0 [ 168.487570][ T29] audit: type=1326 audit(2000000565.705:4619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15329 comm="syz.2.4947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaad59eec9 code=0x7ffc0000 [ 168.527253][ T29] audit: type=1326 audit(2000000565.705:4620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15329 comm="syz.2.4947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaad59eec9 code=0x7ffc0000 [ 168.551196][ T29] audit: type=1326 audit(2000000565.735:4621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15329 comm="syz.2.4947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feaad59eec9 code=0x7ffc0000 [ 168.575246][ T29] audit: type=1326 audit(2000000565.735:4622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15329 comm="syz.2.4947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaad59eec9 code=0x7ffc0000 [ 168.651251][T15338] loop6: detected capacity change from 0 to 512 [ 168.688284][T15338] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 168.727114][T15342] loop8: detected capacity change from 0 to 4096 [ 168.733947][T15338] EXT4-fs (loop6): 1 truncate cleaned up [ 168.740342][T15338] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 168.759249][T15342] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 168.785395][ T8454] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 168.795171][T15351] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4956'. [ 168.826070][T10101] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 169.109699][T15398] program syz.8.4978 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 169.190088][T15412] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4985'. [ 169.221561][T15412] netlink: 'syz.2.4985': attribute type 5 has an invalid length. [ 169.491610][T15457] loop6: detected capacity change from 0 to 4096 [ 169.499846][T15457] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 169.518918][T15457] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 169.562088][ T8454] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 169.741210][ T31] netdevsim netdevsim8 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 169.788833][T15482] SELinux: policydb version -2103515528 does not match my version range 15-35 [ 169.799793][T15482] SELinux: failed to load policy [ 169.806032][ T31] netdevsim netdevsim8 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 169.837133][T15485] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5029'. [ 169.855841][T15485] netem: change failed [ 169.869248][ T31] netdevsim netdevsim8 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 169.930168][ T31] netdevsim netdevsim8 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 169.973679][T15502] veth0: entered promiscuous mode [ 169.979877][T15501] veth0: left promiscuous mode [ 169.988837][T15505] loop7: detected capacity change from 0 to 1024 [ 169.995057][T15488] lo speed is unknown, defaulting to 1000 [ 170.016063][T15505] EXT4-fs (loop7): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 170.031293][T15509] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5024'. [ 170.040688][T15505] ext4 filesystem being mounted at /546/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 170.078235][ T31] bridge_slave_1: left allmulticast mode [ 170.084211][ T31] bridge_slave_1: left promiscuous mode [ 170.090038][ T31] bridge0: port 2(bridge_slave_1) entered disabled state [ 170.099738][ T9089] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 170.131877][ T31] bridge_slave_0: left allmulticast mode [ 170.137656][ T31] bridge_slave_0: left promiscuous mode [ 170.143520][ T31] bridge0: port 1(bridge_slave_0) entered disabled state [ 170.230447][ T31] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 170.240757][ T31] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 170.250495][ T31] bond0 (unregistering): Released all slaves [ 170.294696][T15488] lo speed is unknown, defaulting to 1000 [ 170.359895][T15538] loop7: detected capacity change from 0 to 1024 [ 170.373546][T15537] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5040'. [ 170.382722][T15537] netlink: 'syz.2.5040': attribute type 18 has an invalid length. [ 170.390618][T15537] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5040'. [ 170.422220][T15538] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 170.445932][ T31] hsr_slave_0: left promiscuous mode [ 170.453493][ T31] hsr_slave_1: left promiscuous mode [ 170.461149][ T31] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 170.469152][ T31] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 170.477713][ T31] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 170.479251][ T9089] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 170.487292][ T31] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 170.508125][ T31] veth1_macvtap: left promiscuous mode [ 170.513718][ T31] veth0_macvtap: left promiscuous mode [ 170.519637][ T31] veth1_vlan: left promiscuous mode [ 170.524913][ T31] veth0_vlan: left promiscuous mode [ 170.602546][ T31] team0 (unregistering): Port device team_slave_1 removed [ 170.612999][ T31] team0 (unregistering): Port device team_slave_0 removed [ 170.674008][T15488] chnl_net:caif_netlink_parms(): no params data found [ 170.724603][T15563] netlink: 'syz.2.5050': attribute type 2 has an invalid length. [ 170.754523][T15488] bridge0: port 1(bridge_slave_0) entered blocking state [ 170.761977][T15488] bridge0: port 1(bridge_slave_0) entered disabled state [ 170.784838][T15488] bridge_slave_0: entered allmulticast mode [ 170.792975][T15488] bridge_slave_0: entered promiscuous mode [ 170.800520][T15488] bridge0: port 2(bridge_slave_1) entered blocking state [ 170.807639][T15488] bridge0: port 2(bridge_slave_1) entered disabled state [ 170.814974][T15488] bridge_slave_1: entered allmulticast mode [ 170.821820][T15488] bridge_slave_1: entered promiscuous mode [ 170.828455][T15575] netlink: 28 bytes leftover after parsing attributes in process `syz.6.5054'. [ 170.839469][T15575] netem: change failed [ 170.857715][T15488] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 170.869457][T15488] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 170.891956][T15488] team0: Port device team_slave_0 added [ 170.900424][T15488] team0: Port device team_slave_1 added [ 170.918274][T15488] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 170.925331][T15488] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 170.951506][T15488] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 170.963015][T15488] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 170.970035][T15488] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 170.996378][T15488] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 171.028463][T15488] hsr_slave_0: entered promiscuous mode [ 171.034764][T15488] hsr_slave_1: entered promiscuous mode [ 171.041049][T15488] debugfs: 'hsr0' already exists in 'hsr' [ 171.047010][T15488] Cannot create hsr debugfs directory [ 171.073668][T15591] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5060'. [ 171.119720][T15595] loop6: detected capacity change from 0 to 512 [ 171.379068][T15488] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 171.394463][T15488] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 171.407721][T15488] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 171.417351][T15488] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 171.442689][T15488] bridge0: port 2(bridge_slave_1) entered blocking state [ 171.449832][T15488] bridge0: port 2(bridge_slave_1) entered forwarding state [ 171.457194][T15488] bridge0: port 1(bridge_slave_0) entered blocking state [ 171.464375][T15488] bridge0: port 1(bridge_slave_0) entered forwarding state [ 171.494603][ T4938] bridge0: port 1(bridge_slave_0) entered disabled state [ 171.508789][ T4938] bridge0: port 2(bridge_slave_1) entered disabled state [ 171.557416][T15488] 8021q: adding VLAN 0 to HW filter on device bond0 [ 171.573232][T15488] 8021q: adding VLAN 0 to HW filter on device team0 [ 171.583476][ T4938] bridge0: port 1(bridge_slave_0) entered blocking state [ 171.590739][ T4938] bridge0: port 1(bridge_slave_0) entered forwarding state [ 171.610147][ T4938] bridge0: port 2(bridge_slave_1) entered blocking state [ 171.617272][ T4938] bridge0: port 2(bridge_slave_1) entered forwarding state [ 171.730007][T15488] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 171.961743][T15698] usb usb8: usbfs: process 15698 (syz.7.5096) did not claim interface 0 before use [ 171.981667][T15698] usb usb8: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 172.016727][T15488] veth0_vlan: entered promiscuous mode [ 172.031394][T15488] veth1_vlan: entered promiscuous mode [ 172.070516][T15488] veth0_macvtap: entered promiscuous mode [ 172.084072][T15488] veth1_macvtap: entered promiscuous mode [ 172.105920][T15488] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 172.122131][T15488] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 172.142110][ T4925] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 172.161392][ T4925] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 172.178427][ T4925] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 172.201327][ T4925] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 172.758506][T15831] netlink: 'syz.8.5133': attribute type 4 has an invalid length. [ 173.032121][ T29] kauditd_printk_skb: 97 callbacks suppressed [ 173.032140][ T29] audit: type=1400 audit(2000000570.245:4720): avc: denied { create } for pid=15874 comm="syz.0.5145" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1 [ 173.067771][ T29] audit: type=1400 audit(2000000570.245:4721): avc: denied { sys_admin } for pid=15874 comm="syz.0.5145" capability=21 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1 [ 173.089022][ T29] audit: type=1400 audit(2000000570.245:4722): avc: denied { checkpoint_restore } for pid=15874 comm="syz.0.5145" capability=40 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 173.217546][T15897] loop8: detected capacity change from 0 to 128 [ 173.286385][T15905] dvmrp1: tun_chr_ioctl cmd 1074025677 [ 173.300464][T15909] __nla_validate_parse: 2 callbacks suppressed [ 173.300483][T15909] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5150'. [ 173.304063][T15905] dvmrp1: linktype set to 270 [ 173.403954][ T29] audit: type=1400 audit(2000000570.615:4723): avc: denied { ioctl } for pid=15924 comm="syz.8.5153" path="net:[4026532513]" dev="nsfs" ino=4026532513 ioctlcmd=0xb701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 173.493381][ T29] audit: type=1400 audit(2000000570.705:4724): avc: denied { validate_trans } for pid=15940 comm="syz.8.5160" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 173.585703][ T29] audit: type=1400 audit(2000000570.795:4725): avc: denied { compute_member } for pid=15956 comm="syz.8.5166" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 173.646658][ T29] audit: type=1400 audit(2000000570.855:4726): avc: denied { shutdown } for pid=15965 comm="syz.8.5170" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 173.670317][T15968] netlink: 'syz.2.5171': attribute type 2 has an invalid length. [ 173.690816][T15971] loop8: detected capacity change from 0 to 512 [ 173.697904][T15971] msdos: Bad value for 'uid' [ 173.700748][T15973] netlink: 'syz.2.5173': attribute type 1 has an invalid length. [ 173.702694][T15971] msdos: Bad value for 'uid' [ 173.730325][ T29] audit: type=1400 audit(2000000570.945:4727): avc: denied { bind } for pid=15974 comm="syz.8.5174" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 173.770363][T15979] netlink: 'syz.8.5176': attribute type 16 has an invalid length. [ 173.778308][T15979] netlink: 156 bytes leftover after parsing attributes in process `syz.8.5176'. [ 173.813381][ T29] audit: type=1326 audit(2000000571.025:4728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15984 comm="syz.2.5179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaad59eec9 code=0x7ffc0000 [ 173.837193][ T29] audit: type=1326 audit(2000000571.025:4729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15984 comm="syz.2.5179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaad59eec9 code=0x7ffc0000 [ 173.933507][T15997] netlink: 'syz.2.5185': attribute type 25 has an invalid length. [ 173.941487][T15997] netlink: 'syz.2.5185': attribute type 7 has an invalid length. [ 174.379449][T16069] loop7: detected capacity change from 0 to 512 [ 174.389549][T16069] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended [ 174.433141][T16069] EXT4-fs warning (device loop7): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 174.452050][T16082] netlink: 'syz.2.5223': attribute type 21 has an invalid length. [ 174.460261][T16069] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.5218: bg 0: block 248: padding at end of block bitmap is not set [ 174.484422][T16082] netlink: 132 bytes leftover after parsing attributes in process `syz.2.5223'. [ 174.493725][T16082] netlink: 20 bytes leftover after parsing attributes in process `syz.2.5223'. [ 174.510297][T16084] netlink: 'syz.0.5224': attribute type 21 has an invalid length. [ 174.525812][T16084] netlink: 'syz.0.5224': attribute type 1 has an invalid length. [ 174.533711][T16084] netlink: 144 bytes leftover after parsing attributes in process `syz.0.5224'. [ 174.548007][T16069] EXT4-fs error (device loop7): ext4_acquire_dquot:6945: comm syz.7.5218: Failed to acquire dquot type 1 [ 174.561858][T16069] EXT4-fs (loop7): 1 truncate cleaned up [ 174.571970][T16087] netlink: 36 bytes leftover after parsing attributes in process `syz.6.5225'. [ 174.604762][T16069] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 174.699245][ T9089] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0008-000000000000. [ 174.710267][ T12] EXT4-fs error (device loop7): ext4_release_dquot:6981: comm kworker/u8:0: Failed to release dquot type 1 [ 174.807857][T16118] loop8: detected capacity change from 0 to 512 [ 174.814624][T16118] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 174.873674][T16129] netlink: 'syz.0.5242': attribute type 1 has an invalid length. [ 175.012486][T16158] loop7: detected capacity change from 0 to 1024 [ 175.022904][T16158] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 175.034071][T16158] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 175.058770][T16158] JBD2: no valid journal superblock found [ 175.065164][T16158] EXT4-fs (loop7): Could not load journal inode [ 175.065868][T16166] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.5260'. [ 175.105472][T16160] loop6: detected capacity change from 0 to 8192 [ 175.114439][T16160] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 175.177222][T16179] netlink: 260 bytes leftover after parsing attributes in process `syz.6.5265'. [ 175.183612][T16181] loop8: detected capacity change from 0 to 1024 [ 175.199361][T16181] EXT4-fs (loop8): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 175.212150][T16181] ext4 filesystem being mounted at /44/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 175.233992][T16181] EXT4-fs warning (device loop8): ext4_empty_dir:3099: inode #12: comm syz.8.5267: directory missing '..' [ 175.263032][T15488] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 175.454001][T16229] loop7: detected capacity change from 0 to 1024 [ 175.475199][T16229] EXT4-fs: Ignoring removed orlov option [ 175.484704][T16229] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 175.513318][ T9089] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 175.542751][T16239] program syz.6.5294 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 175.708692][T16267] pimreg0: renamed from bridge_slave_1 (while UP) [ 175.736747][T16267] bridge0: port 2(pimreg0) entered disabled state [ 175.753856][T16272] netem: change failed [ 175.827257][T16288] SELinux: failed to load policy [ 175.844295][ T12] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 175.892739][ T12] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 175.961666][ T12] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 175.993665][T16311] netlink: 830 bytes leftover after parsing attributes in process `syz.2.5328'. [ 176.020868][ T12] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 176.079754][T16297] lo speed is unknown, defaulting to 1000 [ 176.095148][T16324] netlink: 260 bytes leftover after parsing attributes in process `syz.0.5332'. [ 176.172112][ T12] bridge_slave_1: left allmulticast mode [ 176.178115][ T12] bridge_slave_1: left promiscuous mode [ 176.184482][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 176.204508][ T12] bridge_slave_0: left promiscuous mode [ 176.210408][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 176.242701][T16338] program syz.8.5339 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 176.300596][ T12] bond0 (unregistering): left promiscuous mode [ 176.306966][ T12] bond_slave_0: left promiscuous mode [ 176.313094][ T12] bond_slave_1: left promiscuous mode [ 176.319928][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 176.329327][ T12] bond_slave_0: left allmulticast mode [ 176.336503][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 176.346183][ T12] bond_slave_1: left allmulticast mode [ 176.353156][ T12] bond0 (unregistering): Released all slaves [ 176.371403][T16297] lo speed is unknown, defaulting to 1000 [ 176.495785][ T12] dummy0: left promiscuous mode [ 176.505468][ T12] hsr_slave_0: left promiscuous mode [ 176.514623][ T12] hsr_slave_1: left promiscuous mode [ 176.523195][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 176.530734][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 176.539454][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 176.547148][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 176.560052][ T12] veth1_macvtap: left promiscuous mode [ 176.565779][ T12] veth0_macvtap: left promiscuous mode [ 176.572065][ T12] veth1_vlan: left promiscuous mode [ 176.577667][ T12] veth0_vlan: left promiscuous mode [ 176.619174][ T3373] IPVS: starting estimator thread 0... [ 176.628720][T16368] loop8: detected capacity change from 0 to 164 [ 176.679548][ T12] team0 (unregistering): Port device team_slave_1 removed [ 176.701989][ T12] team0 (unregistering): Port device team_slave_0 removed [ 176.707529][T16367] IPVS: using max 1920 ests per chain, 96000 per kthread [ 176.761177][ T10] lo speed is unknown, defaulting to 1000 [ 176.767032][ T10] infiniband syz2: ib_query_port failed (-19) [ 176.773977][T16297] chnl_net:caif_netlink_parms(): no params data found [ 176.850286][T16297] bridge0: port 1(bridge_slave_0) entered blocking state [ 176.857739][T16297] bridge0: port 1(bridge_slave_0) entered disabled state [ 176.867661][T16297] bridge_slave_0: entered allmulticast mode [ 176.877789][T16297] bridge_slave_0: entered promiscuous mode [ 176.890962][T16297] bridge0: port 2(bridge_slave_1) entered blocking state [ 176.898256][T16297] bridge0: port 2(bridge_slave_1) entered disabled state [ 176.906919][T16297] bridge_slave_1: entered allmulticast mode [ 176.917194][T16297] bridge_slave_1: entered promiscuous mode [ 176.954597][T16297] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 176.968609][T16297] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 176.990851][T16297] team0: Port device team_slave_0 added [ 177.005263][T16297] team0: Port device team_slave_1 added [ 177.039716][T16297] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 177.046895][T16297] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 177.073776][T16297] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 177.086079][T16297] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 177.089393][T16402] SELinux: policydb version 0 does not match my version range 15-35 [ 177.093215][T16297] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 177.107707][T16402] SELinux: failed to load policy [ 177.127823][T16297] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 177.150503][T16404] loop7: detected capacity change from 0 to 512 [ 177.150750][ T12] ------------[ cut here ]------------ [ 177.163090][ T12] WARNING: CPU: 0 PID: 12 at net/xfrm/xfrm_state.c:3306 xfrm_state_fini+0x179/0x1f0 [ 177.172574][ T12] Modules linked in: [ 177.176601][ T12] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:0 Not tainted syzkaller #0 PREEMPT(voluntary) [ 177.186761][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 177.197012][ T12] Workqueue: netns cleanup_net [ 177.201887][ T12] RIP: 0010:xfrm_state_fini+0x179/0x1f0 [ 177.207792][ T12] Code: 48 8d bb 70 0e 00 00 e8 05 38 b9 fc 48 8b bb 70 0e 00 00 e8 99 e2 c5 fc 5b 41 5e 41 5f 5d c3 cc cc cc cc cc e8 48 e6 9d fc 90 <0f> 0b 90 e9 d9 fe ff ff e8 3a e6 9d fc 90 0f 0b 90 4c 89 f7 e8 ce [ 177.228140][ T12] RSP: 0018:ffffc9000006fc60 EFLAGS: 00010293 [ 177.231300][T16406] program syz.2.5369 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 177.234687][ T12] RAX: ffffffff84b95a38 RBX: ffff8881189d1780 RCX: ffff8881010b4200 [ 177.251838][ T12] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8881189d25c0 [ 177.259923][ T12] RBP: ffffffff86c8ec40 R08: 0001ffff8684802f R09: 0000000000000000 [ 177.260976][T16404] EXT4-fs (loop7): orphan cleanup on readonly fs [ 177.268085][ T12] R10: ffffc9000006fbe8 R11: 0001c9000006fbe8 R12: ffffffff86c8ec60 [ 177.275380][T16404] EXT4-fs error (device loop7): ext4_orphan_get:1392: inode #15: comm syz.7.5368: iget: bad i_size value: 38620345925642 [ 177.282584][ T12] R13: ffff8881189d17a8 R14: ffff8881189d25c0 R15: ffff8881189d1780 [ 177.282606][ T12] FS: 0000000000000000(0000) GS:ffff8882aee47000(0000) knlGS:0000000000000000 [ 177.296011][T16404] EXT4-fs error (device loop7): ext4_orphan_get:1397: comm syz.7.5368: couldn't read orphan inode 15 (err -117) [ 177.303903][ T12] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 177.313948][T16404] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 177.324750][ T12] CR2: ffffffff93000000 CR3: 00000001026be000 CR4: 00000000003506f0 [ 177.352315][ T12] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 177.360572][ T12] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 [ 177.360596][ T12] Call Trace: [ 177.360605][ T12] [ 177.360616][ T12] xfrm_net_exit+0x2d/0x60 [ 177.379877][ T12] ops_undo_list+0x27b/0x410 [ 177.384677][ T12] cleanup_net+0x2f4/0x4f0 [ 177.389564][ T12] process_scheduled_works+0x4cb/0x9d0 [ 177.395422][ T12] worker_thread+0x582/0x770 [ 177.400182][ T12] kthread+0x486/0x510 [ 177.404341][ T12] ? finish_task_switch+0xad/0x2b0 [ 177.409721][ T12] ? __pfx_worker_thread+0x10/0x10 [ 177.414921][ T12] ? __pfx_kthread+0x10/0x10 [ 177.419609][ T12] ret_from_fork+0x11f/0x1b0 [ 177.424338][ T12] ? __pfx_kthread+0x10/0x10 [ 177.428973][ T12] ret_from_fork_asm+0x1a/0x30 [ 177.434748][ T12] [ 177.437842][ T12] ---[ end trace 0000000000000000 ]--- [ 177.444287][ T12] ------------[ cut here ]------------ [ 177.449930][ T12] WARNING: CPU: 0 PID: 12 at net/xfrm/xfrm_state.c:3313 xfrm_state_fini+0x1b9/0x1f0 [ 177.459649][ T12] Modules linked in: [ 177.463726][ T12] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:0 Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 177.475381][ T12] Tainted: [W]=WARN [ 177.479215][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 177.489509][ T12] Workqueue: netns cleanup_net [ 177.494473][ T12] RIP: 0010:xfrm_state_fini+0x1b9/0x1f0 [ 177.500330][ T12] Code: 37 b9 fc 4d 8b 3e e9 06 ff ff ff e8 21 e6 9d fc 90 0f 0b 90 4c 89 f7 e8 b5 37 b9 fc 4d 8b 3e e9 24 ff ff ff e8 08 e6 9d fc 90 <0f> 0b 90 4c 89 f7 e8 9c 37 b9 fc 4d 8b 3e e9 42 ff ff ff e8 ef e5 [ 177.520118][ T12] RSP: 0018:ffffc9000006fc60 EFLAGS: 00010293 [ 177.526515][ T12] RAX: ffffffff84b95a78 RBX: ffff8881189d1780 RCX: ffff8881010b4200 [ 177.534645][ T12] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8881240b68c0 [ 177.543063][ T12] RBP: 0000000000000040 R08: 00018881189d25df R09: 0000000000000000 [ 177.551424][ T12] R10: ffff8881240b6900 R11: 00018881240b6fbf R12: ffffffff86c8ec60 [ 177.559537][ T12] R13: ffff8881189d17a8 R14: ffff8881189d25d8 R15: ffff8881240b68c0 [ 177.567706][ T12] FS: 0000000000000000(0000) GS:ffff8882aee47000(0000) knlGS:0000000000000000 [ 177.576748][ T12] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 177.583495][ T12] CR2: ffffffff93000000 CR3: 0000000006834000 CR4: 00000000003506f0 [ 177.591546][ T12] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 177.599639][ T12] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 [ 177.607723][ T12] Call Trace: [ 177.611152][ T12] [ 177.614184][ T12] xfrm_net_exit+0x2d/0x60 [ 177.618877][ T12] ops_undo_list+0x27b/0x410 [ 177.623786][ T12] cleanup_net+0x2f4/0x4f0 [ 177.628335][ T12] process_scheduled_works+0x4cb/0x9d0 [ 177.633854][ T12] worker_thread+0x582/0x770 [ 177.638542][ T12] kthread+0x486/0x510 [ 177.642704][ T12] ? finish_task_switch+0xad/0x2b0 [ 177.648061][ T12] ? __pfx_worker_thread+0x10/0x10 [ 177.653209][ T12] ? __pfx_kthread+0x10/0x10 [ 177.657846][ T12] ret_from_fork+0x11f/0x1b0 [ 177.662475][ T12] ? __pfx_kthread+0x10/0x10 [ 177.667087][ T12] ret_from_fork_asm+0x1a/0x30 [ 177.671914][ T12] [ 177.675033][ T12] ---[ end trace 0000000000000000 ]--- [ 177.681852][ T12] ------------[ cut here ]------------ [ 177.687844][ T12] WARNING: CPU: 0 PID: 12 at net/xfrm/xfrm_state.c:3315 xfrm_state_fini+0x1d2/0x1f0 [ 177.697951][ T12] Modules linked in: [ 177.701752][T16419] loop8: detected capacity change from 0 to 128 [ 177.701961][ T12] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:0 Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 177.711034][T16419] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 177.719583][ T12] Tainted: [W]=WARN [ 177.732301][T16419] ext4 filesystem being mounted at /69/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 177.735621][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 177.778273][ T12] Workqueue: netns cleanup_net [ 177.783402][ T12] RIP: 0010:xfrm_state_fini+0x1d2/0x1f0 [ 177.789403][ T12] Code: 37 b9 fc 4d 8b 3e e9 24 ff ff ff e8 08 e6 9d fc 90 0f 0b 90 4c 89 f7 e8 9c 37 b9 fc 4d 8b 3e e9 42 ff ff ff e8 ef e5 9d fc 90 <0f> 0b 90 4c 89 f7 e8 83 37 b9 fc 4d 8b 3e e9 60 ff ff ff 66 66 2e [ 177.809353][ T12] RSP: 0018:ffffc9000006fc60 EFLAGS: 00010293 [ 177.815601][ T12] RAX: ffffffff84b95a91 RBX: ffff8881189d1780 RCX: ffff8881010b4200 [ 177.823748][ T12] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8881240b6880 [ 177.831843][ T12] RBP: 0000000000000040 R08: 00018881189d25d7 R09: 0000000000000000 [ 177.839961][ T12] R10: ffff8881240b6f80 R11: 00018881240b68ff R12: ffffffff86c8ec60 [ 177.848318][ T12] R13: ffff8881189d17a8 R14: ffff8881189d25d0 R15: ffff8881240b6880 [ 177.856468][ T12] FS: 0000000000000000(0000) GS:ffff8882aee47000(0000) knlGS:0000000000000000 [ 177.865852][ T12] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 177.872580][ T12] CR2: ffffffff93000000 CR3: 0000000006834000 CR4: 00000000003506f0 [ 177.880694][ T12] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 177.888723][ T12] DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600 [ 177.896860][ T12] Call Trace: [ 177.900489][ T12] [ 177.903441][ T12] xfrm_net_exit+0x2d/0x60 [ 177.907938][ T12] ops_undo_list+0x27b/0x410 [ 177.913102][ T12] cleanup_net+0x2f4/0x4f0 [ 177.917637][ T12] process_scheduled_works+0x4cb/0x9d0 [ 177.923229][ T12] worker_thread+0x582/0x770 [ 177.927920][ T12] kthread+0x486/0x510 [ 177.932027][ T12] ? finish_task_switch+0xad/0x2b0 [ 177.937237][ T12] ? __pfx_worker_thread+0x10/0x10 [ 177.942779][ T12] ? __pfx_kthread+0x10/0x10 [ 177.948139][ T12] ret_from_fork+0x11f/0x1b0 [ 177.952847][ T12] ? __pfx_kthread+0x10/0x10 [ 177.957603][ T12] ret_from_fork_asm+0x1a/0x30 [ 177.962551][ T12] [ 177.965593][ T12] ---[ end trace 0000000000000000 ]--- [ 177.974590][ T9089] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 177.984883][T16297] hsr_slave_0: entered promiscuous mode [ 177.991038][T16297] hsr_slave_1: entered promiscuous mode [ 177.997214][T16297] debugfs: 'hsr0' already exists in 'hsr' [ 178.003082][T16297] Cannot create hsr debugfs directory [ 178.010186][T16415] can0: slcan on ttyS3. [ 178.054400][T15488] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 178.067533][T16416] can0 (unregistered): slcan off ttyS3. [ 178.081726][T16417] can0: slcan on ttyS3. [ 178.136142][T16441] program syz.8.5380 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 178.146178][T16414] can0 (unregistered): slcan off ttyS3. [ 178.173723][T16445] validate_nla: 1 callbacks suppressed [ 178.173739][T16445] netlink: 'syz.7.5382': attribute type 1 has an invalid length. [ 178.201393][T16448] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=16448 comm=syz.0.5394 [ 178.201400][ T29] kauditd_printk_skb: 68 callbacks suppressed [ 178.201417][ T29] audit: type=1400 audit(2000000575.415:4795): avc: denied { nlmsg_write } for pid=16447 comm="syz.0.5394" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1 [ 178.249666][ T29] audit: type=1326 audit(2000000575.455:4796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16450 comm="syz.2.5386" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7feaad59eec9 code=0x0 [ 178.355461][T16470] __nla_validate_parse: 1 callbacks suppressed [ 178.355481][T16470] netlink: 256 bytes leftover after parsing attributes in process `syz.0.5395'. [ 178.398396][T16297] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 178.408347][T16297] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 178.418149][T16297] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 178.428839][T16297] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 178.481809][T16297] 8021q: adding VLAN 0 to HW filter on device bond0 [ 178.495436][T16297] 8021q: adding VLAN 0 to HW filter on device team0 [ 178.505717][ T4938] bridge0: port 1(bridge_slave_0) entered blocking state [ 178.513199][ T4938] bridge0: port 1(bridge_slave_0) entered forwarding state [ 178.535893][ T4938] bridge0: port 2(bridge_slave_1) entered blocking state [ 178.543256][ T4938] bridge0: port 2(bridge_slave_1) entered forwarding state [ 178.626006][T16297] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 178.791021][T16297] veth0_vlan: entered promiscuous mode [ 178.801377][T16297] veth1_vlan: entered promiscuous mode [ 178.825682][T16297] veth0_macvtap: entered promiscuous mode [ 178.838602][T16297] veth1_macvtap: entered promiscuous mode [ 178.851812][T16297] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 178.862623][T16526] loop8: detected capacity change from 0 to 128 [ 178.871122][T16297] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 178.883058][ T4938] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 178.892957][ T4938] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 178.894132][T16526] FAT-fs (loop8): error, invalid access to FAT (entry 0x00000100) [ 178.904457][ T4938] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 178.909954][T16526] FAT-fs (loop8): Filesystem has been set read-only [ 178.917472][T16526] bio_check_eod: 1 callbacks suppressed [ 178.917495][T16526] syz.8.5409: attempt to access beyond end of device [ 178.917495][T16526] loop8: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 178.939498][ T4938] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 178.945688][T16526] FAT-fs (loop8): error, invalid access to FAT (entry 0x00000100) [ 178.962319][T16526] FAT-fs (loop8): error, invalid access to FAT (entry 0x00000100) [ 178.973593][T16531] syz.8.5409: attempt to access beyond end of device [ 178.973593][T16531] loop8: rw=0, sector=2065, nr_sectors = 1 limit=128 [ 178.987045][T16531] Buffer I/O error on dev loop8, logical block 2065, async page read [ 179.002138][T16531] syz.8.5409: attempt to access beyond end of device [ 179.002138][T16531] loop8: rw=0, sector=2066, nr_sectors = 1 limit=128 [ 179.015844][T16531] Buffer I/O error on dev loop8, logical block 2066, async page read [ 179.024563][T16531] syz.8.5409: attempt to access beyond end of device [ 179.024563][T16531] loop8: rw=0, sector=2067, nr_sectors = 1 limit=128 [ 179.038020][T16531] Buffer I/O error on dev loop8, logical block 2067, async page read [ 179.046832][T16531] syz.8.5409: attempt to access beyond end of device [ 179.046832][T16531] loop8: rw=0, sector=2068, nr_sectors = 1 limit=128 [ 179.060433][T16531] Buffer I/O error on dev loop8, logical block 2068, async page read [ 179.086404][T16531] syz.8.5409: attempt to access beyond end of device [ 179.086404][T16531] loop8: rw=0, sector=2069, nr_sectors = 1 limit=128 [ 179.100144][T16531] Buffer I/O error on dev loop8, logical block 2069, async page read [ 179.109073][T16531] syz.8.5409: attempt to access beyond end of device [ 179.109073][T16531] loop8: rw=0, sector=2070, nr_sectors = 1 limit=128 [ 179.122530][T16531] Buffer I/O error on dev loop8, logical block 2070, async page read [ 179.151157][ T29] audit: type=1400 audit(2000000576.355:4797): avc: denied { name_bind } for pid=16537 comm="syz.2.5416" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 179.173450][ T29] audit: type=1400 audit(2000000576.355:4798): avc: denied { node_bind } for pid=16537 comm="syz.2.5416" saddr=255.255.255.255 src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1 [ 179.196732][ T29] audit: type=1400 audit(2000000576.365:4799): avc: denied { read write } for pid=9089 comm="syz-executor" name="loop7" dev="devtmpfs" ino=107 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 179.221425][ T29] audit: type=1400 audit(2000000576.365:4800): avc: denied { open } for pid=9089 comm="syz-executor" path="/dev/loop7" dev="devtmpfs" ino=107 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 179.229415][T16531] syz.8.5409: attempt to access beyond end of device [ 179.229415][T16531] loop8: rw=0, sector=2071, nr_sectors = 1 limit=128 [ 179.245772][ T29] audit: type=1400 audit(2000000576.365:4801): avc: denied { ioctl } for pid=9089 comm="syz-executor" path="/dev/loop7" dev="devtmpfs" ino=107 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 179.270504][ T29] audit: type=1400 audit(2000000576.485:4802): avc: denied { read } for pid=16543 comm="syz.6.5417" dev="nsfs" ino=4026532793 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 179.284926][T16531] Buffer I/O error on dev loop8, logical block 2071, async page read [ 179.306455][ T29] audit: type=1400 audit(2000000576.485:4803): avc: denied { open } for pid=16543 comm="syz.6.5417" path="net:[4026532793]" dev="nsfs" ino=4026532793 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 179.315536][T16531] syz.8.5409: attempt to access beyond end of device [ 179.315536][T16531] loop8: rw=0, sector=2072, nr_sectors = 1 limit=128 [ 179.338043][ T29] audit: type=1400 audit(2000000576.485:4804): avc: denied { create } for pid=16543 comm="syz.6.5417" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 179.351564][T16531] Buffer I/O error on dev loop8, logical block 2072, async page read [ 179.352472][T16526] syz.8.5409: attempt to access beyond end of device [ 179.352472][T16526] loop8: rw=0, sector=2065, nr_sectors = 1 limit=128 [ 179.392752][T16526] Buffer I/O error on dev loop8, logical block 2065, async page read [ 179.401568][T16526] Buffer I/O error on dev loop8, logical block 2066, async page read [ 179.420785][T16551] netlink: 96 bytes leftover after parsing attributes in process `syz.0.5419'. [ 179.549875][T16567] netlink: 'syz.0.5426': attribute type 13 has an invalid length. [ 179.573288][T16570] netlink: 76 bytes leftover after parsing attributes in process `syz.6.5427'. [ 179.720983][T16581] loop7: detected capacity change from 0 to 512 [ 179.731070][T16581] EXT4-fs (loop7): external journal device major/minor numbers have changed [ 179.740298][T16581] EXT4-fs (loop7): failed to open journal device unknown-block(128,0) -6 [ 179.767910][T16567] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 179.805782][T16586] loop7: detected capacity change from 0 to 128 [ 180.006271][T16616] loop7: detected capacity change from 0 to 128 [ 180.139984][T16624] loop0: detected capacity change from 0 to 512 [ 180.176824][T16624] EXT4-fs warning (device loop0): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 180.199185][T16624] EXT4-fs (loop0): mount failed [ 180.259168][T16643] netlink: 'syz.7.5463': attribute type 10 has an invalid length. [ 180.267308][T16643] netlink: 40 bytes leftover after parsing attributes in process `syz.7.5463'. [ 180.317147][T16643] team0: Port device geneve1 added [ 180.421426][T16664] netem: incorrect gi model size [ 180.426017][T16665] program syz.7.5472 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 180.426459][T16664] netem: change failed [ 180.541315][T16688] netlink: 256 bytes leftover after parsing attributes in process `syz.6.5481'. [ 180.629974][T16703] loop6: detected capacity change from 0 to 2048 [ 180.659202][T16703] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 180.733566][ T4925] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 180.756056][T16723] netlink: 256 bytes leftover after parsing attributes in process `syz.8.5495'. [ 180.765583][ T4925] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 180.778263][ T4925] EXT4-fs (loop6): This should not happen!! Data will be lost [ 180.778263][ T4925] [ 180.788366][ T4925] EXT4-fs (loop6): Total free blocks count 0 [ 180.794486][ T4925] EXT4-fs (loop6): Free/Dirty block details [ 180.800295][T16725] loop7: detected capacity change from 0 to 2048 [ 180.800485][ T4925] EXT4-fs (loop6): free_blocks=2415919504 [ 180.812550][ T4925] EXT4-fs (loop6): dirty_blocks=64 [ 180.817858][ T4925] EXT4-fs (loop6): Block reservation details [ 180.823875][ T4925] EXT4-fs (loop6): i_reserved_data_blocks=4 [ 180.834076][ T4925] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 33 with error 28 [ 180.874416][T16725] Alternate GPT is invalid, using primary GPT. [ 180.880857][T16725] loop7: p1 p2 p3 [ 180.884607][T16725] loop7: partition table partially beyond EOD, truncated [ 181.041698][T16753] loop0: detected capacity change from 0 to 512 [ 181.076410][T16756] loop0: detected capacity change from 0 to 1024 [ 181.084604][T16756] EXT4-fs: inline encryption not supported [ 181.119410][T16756] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 181.155560][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 181.285814][T16779] loop8: detected capacity change from 0 to 512 [ 181.294586][T16779] EXT4-fs error (device loop8): ext4_orphan_get:1392: inode #15: comm syz.8.5516: casefold flag without casefold feature [ 181.310272][T16779] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.5516: couldn't read orphan inode 15 (err -117) [ 181.323741][T16782] dvmrp1: tun_chr_ioctl cmd 1074025677 [ 181.333916][T16782] dvmrp1: linktype set to 804 [ 181.348151][T16779] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 181.401182][T16790] loop0: detected capacity change from 0 to 512 [ 181.424441][T16789] loop7: detected capacity change from 0 to 512 [ 181.431895][T15488] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 181.441600][T16790] EXT4-fs (loop0): external journal device major/minor numbers have changed [ 181.443734][T16789] SELinux: security_context_str_to_sid (system_u) failed with errno=-22 [ 181.460640][T16790] EXT4-fs (loop0): failed to open journal device unknown-block(128,0) -6 [ 181.471673][T16795] program syz.2.5532 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 181.674875][T16827] loop7: detected capacity change from 0 to 2048 [ 181.830980][T16854] netlink: 140 bytes leftover after parsing attributes in process `syz.2.5547'. [ 181.859880][T16857] program syz.7.5549 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 181.888720][T16859] netlink: 36 bytes leftover after parsing attributes in process `syz.8.5550'. [ 181.898426][T16857] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 181.995499][T16870] loop7: detected capacity change from 0 to 256 [ 182.008687][T16870] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 182.028472][T16870] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 182.093540][T16873] loop7: detected capacity change from 0 to 2048 [ 182.106528][T16873] EXT4-fs: Ignoring removed mblk_io_submit option [ 182.120101][T16873] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 182.151427][T16873] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.5559: bg 0: block 234: padding at end of block bitmap is not set [ 182.166074][T16873] EXT4-fs (loop7): Remounting filesystem read-only [ 182.182126][T16880] sctp: [Deprecated]: syz.8.5560 (pid 16880) Use of int in maxseg socket option. [ 182.182126][T16880] Use struct sctp_assoc_value instead [ 182.206498][ T9089] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 182.236063][T16885] loop0: detected capacity change from 0 to 1024 [ 182.242528][T16888] SELinux: failed to load policy [ 182.271519][T16885] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 182.296131][T16898] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5566'. [ 182.307063][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 182.332804][T16900] loop7: detected capacity change from 0 to 1024 [ 182.348777][T16900] EXT4-fs (loop7): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 182.361620][T16900] ext4 filesystem being mounted at /678/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 182.773033][ T4925] EXT4-fs error (device loop7): ext4_map_blocks:814: inode #15: comm kworker/u8:11: lblock 0 mapped to illegal pblock 0 (length 6) [ 182.807572][ T4925] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117 [ 182.820020][ T4925] EXT4-fs (loop7): This should not happen!! Data will be lost [ 182.820020][ T4925] [ 182.841878][ T31] EXT4-fs error (device loop7): ext4_map_blocks:814: inode #15: block 8: comm kworker/u8:1: lblock 8 mapped to illegal pblock 8 (length 8) [ 182.856629][T16935] loop0: detected capacity change from 0 to 512 [ 182.863892][T16935] EXT4-fs: Ignoring removed nobh option [ 182.870920][ T31] EXT4-fs (loop7): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117 [ 182.883500][ T31] EXT4-fs (loop7): This should not happen!! Data will be lost [ 182.883500][ T31] [ 182.908105][T16935] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #3: comm syz.0.5584: corrupted inode contents [ 182.940763][T16935] EXT4-fs error (device loop0): ext4_dirty_inode:6509: inode #3: comm syz.0.5584: mark_inode_dirty error [ 182.970191][T16935] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #3: comm syz.0.5584: corrupted inode contents [ 182.995127][T16935] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #3: comm syz.0.5584: mark_inode_dirty error [ 183.023615][T16935] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.5584: Failed to acquire dquot type 0 [ 183.039540][T16952] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=16952 comm=syz.2.5591 [ 183.041688][ T9089] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 183.064177][T16935] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #16: comm syz.0.5584: corrupted inode contents [ 183.076997][T16935] EXT4-fs error (device loop0): ext4_dirty_inode:6509: inode #16: comm syz.0.5584: mark_inode_dirty error [ 183.090701][T16935] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #16: comm syz.0.5584: corrupted inode contents [ 183.126882][T16935] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.5584: mark_inode_dirty error [ 183.139591][T16935] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #16: comm syz.0.5584: corrupted inode contents [ 183.157575][T16935] EXT4-fs error (device loop0) in ext4_orphan_del:301: Corrupt filesystem [ 183.170887][T16935] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #16: comm syz.0.5584: corrupted inode contents [ 183.183304][T16935] EXT4-fs error (device loop0): ext4_truncate:4637: inode #16: comm syz.0.5584: mark_inode_dirty error [ 183.194753][T16935] EXT4-fs error (device loop0) in ext4_process_orphan:343: Corrupt filesystem [ 183.219965][T16935] EXT4-fs (loop0): 1 truncate cleaned up [ 183.226217][T16935] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 183.239134][ T29] kauditd_printk_skb: 198 callbacks suppressed [ 183.239152][ T29] audit: type=1400 audit(2000000580.465:5000): avc: denied { map } for pid=16963 comm="syz.6.5595" path="socket:[49121]" dev="sockfs" ino=49121 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1 [ 183.239382][T16935] ext4 filesystem being mounted at /1222/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 183.321006][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 183.338873][ T29] audit: type=1400 audit(2000000580.555:5001): avc: denied { ioctl } for pid=16956 comm="syz.7.5580" path="/dev/raw-gadget" dev="devtmpfs" ino=142 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 183.339256][T16958] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 183.374890][T16958] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 183.405249][ T29] audit: type=1400 audit(2000000580.605:5002): avc: denied { read write } for pid=16979 comm="syz.8.5603" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 183.430469][ T29] audit: type=1400 audit(2000000580.605:5003): avc: denied { open } for pid=16979 comm="syz.8.5603" path="/dev/loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 183.467464][T16977] loop6: detected capacity change from 0 to 8192 [ 183.479371][ T29] audit: type=1400 audit(2000000580.666:5004): avc: denied { ioctl } for pid=16979 comm="syz.8.5603" path="/dev/loop-control" dev="devtmpfs" ino=99 ioctlcmd=0x4c80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 183.494521][ T9] kernel write not supported for file /input/event2 (pid: 9 comm: kworker/0:0) [ 183.506293][ T29] audit: type=1400 audit(2000000580.696:5005): avc: denied { read } for pid=16986 comm="syz.0.5606" name="event2" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 183.557981][ T29] audit: type=1400 audit(2000000580.776:5006): avc: denied { tracepoint } for pid=16988 comm="syz.8.5608" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 183.633604][ T29] audit: type=1400 audit(2000000580.836:5007): avc: denied { create } for pid=17001 comm="syz.2.5612" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 183.653425][ T29] audit: type=1400 audit(2000000580.836:5008): avc: denied { setopt } for pid=17001 comm="syz.2.5612" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 183.673145][ T29] audit: type=1400 audit(2000000580.836:5009): avc: denied { bind } for pid=17001 comm="syz.2.5612" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 183.694453][T17004] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5614'. [ 183.721474][T17006] geneve2: entered promiscuous mode [ 183.726729][T17006] geneve2: entered allmulticast mode [ 183.776625][T17017] loop0: detected capacity change from 0 to 512 [ 183.803791][T17017] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 183.816814][T17017] ext4 filesystem being mounted at /1227/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 183.831787][T17025] loop8: detected capacity change from 0 to 512 [ 183.838609][T17025] EXT4-fs: Ignoring removed bh option [ 183.844617][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 183.846960][T17027] bridge0: port 3(gretap0) entered blocking state [ 183.860387][T17027] bridge0: port 3(gretap0) entered disabled state [ 183.860695][T17025] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended [ 183.867152][T17027] gretap0: entered allmulticast mode [ 183.876313][T17025] EXT4-fs (loop8): mounting ext2 file system using the ext4 subsystem [ 183.882356][T17027] gretap0: entered promiscuous mode [ 183.898766][T17025] EXT4-fs (loop8): warning: mounting unchecked fs, running e2fsck is recommended [ 183.910715][T17025] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006] [ 183.924773][T17025] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 183.952631][T17034] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 183.959378][T17034] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 183.967092][T17034] vhci_hcd vhci_hcd.0: Device attached [ 183.978274][T17035] vhci_hcd: connection closed [ 183.978455][ T31] vhci_hcd: stop threads [ 183.987855][ T31] vhci_hcd: release socket [ 183.992377][ T31] vhci_hcd: disconnect device [ 183.997768][T15488] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 184.016097][T17041] program syz.7.5628 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 184.029956][T17044] loop8: detected capacity change from 0 to 512 [ 184.036975][T17044] EXT4-fs: Ignoring removed orlov option [ 184.053855][T17044] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem [ 184.063583][T17044] EXT4-fs error (device loop8): ext4_iget_extra_inode:5075: inode #15: comm syz.8.5626: corrupted in-inode xattr: e_value size too large [ 184.078009][T17044] EXT4-fs error (device loop8): ext4_orphan_get:1397: comm syz.8.5626: couldn't read orphan inode 15 (err -117) [ 184.277620][T17083] lo speed is unknown, defaulting to 1000 [ 184.287268][T17089] netlink: 20 bytes leftover after parsing attributes in process `syz.8.5650'. [ 184.366490][T17094] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5652'. [ 184.385383][T17094] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 184.392906][T17094] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 184.418507][T17094] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 184.426028][T17094] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 184.477961][T17105] loop0: detected capacity change from 0 to 512 [ 184.485044][T17105] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 184.499173][T17105] EXT4-fs (loop0): 1 orphan inode deleted [ 184.505028][T17105] EXT4-fs (loop0): 1 truncate cleaned up [ 184.606498][T17124] netlink: 830 bytes leftover after parsing attributes in process `syz.0.5665'. [ 184.745025][T17144] loop7: detected capacity change from 0 to 256 [ 184.758175][T17144] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 184.902706][T17162] block device autoloading is deprecated and will be removed. [ 185.006506][T17180] loop8: detected capacity change from 0 to 256 [ 185.033304][T17180] FAT-fs (loop8): Directory bread(block 1285) failed [ 185.053641][T17180] FAT-fs (loop8): Directory bread(block 1285) failed [ 185.136778][T17202] SELinux: failed to load policy [ 185.169252][ T3417] kernel write not supported for file /load (pid: 3417 comm: kworker/1:4) [ 185.297401][T17223] loop7: detected capacity change from 0 to 128 [ 185.328022][T17223] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100) [ 185.335905][T17223] FAT-fs (loop7): Filesystem has been set read-only [ 185.348375][T17229] SELinux: Context system_u:object_r:netutils_exec_t:s0 is not valid (left unmapped). [ 185.360568][T17223] bio_check_eod: 13233 callbacks suppressed [ 185.360584][T17223] syz.7.5713: attempt to access beyond end of device [ 185.360584][T17223] loop7: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 185.402834][T17223] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100) [ 185.410860][T17223] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100) [ 185.419723][T17232] syz.7.5713: attempt to access beyond end of device [ 185.419723][T17232] loop7: rw=0, sector=2065, nr_sectors = 1 limit=128 [ 185.433084][T17232] buffer_io_error: 13218 callbacks suppressed [ 185.433106][T17232] Buffer I/O error on dev loop7, logical block 2065, async page read [ 185.454214][T17232] syz.7.5713: attempt to access beyond end of device [ 185.454214][T17232] loop7: rw=0, sector=2066, nr_sectors = 1 limit=128 [ 185.467857][T17232] Buffer I/O error on dev loop7, logical block 2066, async page read [ 185.480976][T17236] loop8: detected capacity change from 0 to 1024 [ 185.490244][T17232] syz.7.5713: attempt to access beyond end of device [ 185.490244][T17232] loop7: rw=0, sector=2067, nr_sectors = 1 limit=128 [ 185.503608][T17232] Buffer I/O error on dev loop7, logical block 2067, async page read [ 185.512535][T17232] syz.7.5713: attempt to access beyond end of device [ 185.512535][T17232] loop7: rw=0, sector=2068, nr_sectors = 1 limit=128 [ 185.525903][T17232] Buffer I/O error on dev loop7, logical block 2068, async page read [ 185.536188][T17236] ext4 filesystem being mounted at /147/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 185.587050][T17232] syz.7.5713: attempt to access beyond end of device [ 185.587050][T17232] loop7: rw=0, sector=2069, nr_sectors = 1 limit=128 [ 185.600516][T17232] Buffer I/O error on dev loop7, logical block 2069, async page read [ 185.609011][T17232] syz.7.5713: attempt to access beyond end of device [ 185.609011][T17232] loop7: rw=0, sector=2070, nr_sectors = 1 limit=128 [ 185.622435][T17232] Buffer I/O error on dev loop7, logical block 2070, async page read [ 185.630625][T17232] syz.7.5713: attempt to access beyond end of device [ 185.630625][T17232] loop7: rw=0, sector=2071, nr_sectors = 1 limit=128 [ 185.643898][T17232] Buffer I/O error on dev loop7, logical block 2071, async page read [ 185.652171][T17232] syz.7.5713: attempt to access beyond end of device [ 185.652171][T17232] loop7: rw=0, sector=2072, nr_sectors = 1 limit=128 [ 185.665608][T17232] Buffer I/O error on dev loop7, logical block 2072, async page read [ 185.673907][T17232] syz.7.5713: attempt to access beyond end of device [ 185.673907][T17232] loop7: rw=0, sector=2065, nr_sectors = 1 limit=128 [ 185.687193][T17232] Buffer I/O error on dev loop7, logical block 2065, async page read [ 185.695383][T17232] Buffer I/O error on dev loop7, logical block 2066, async page read [ 185.921961][T17240] loop0: detected capacity change from 0 to 1024 [ 185.959149][T17240] ext4 filesystem being mounted at /1253/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 186.049030][ T31] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: comm kworker/u8:1: lblock 0 mapped to illegal pblock 0 (length 1) [ 186.079706][ T31] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 186.092420][ T31] EXT4-fs (loop0): This should not happen!! Data will be lost [ 186.092420][ T31] [ 186.134435][ T31] EXT4-fs error (device loop8): ext4_map_blocks:814: inode #15: comm kworker/u8:1: lblock 0 mapped to illegal pblock 0 (length 6) [ 186.140016][T17246] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5721'. [ 186.153790][ T31] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117 [ 186.169508][ T31] EXT4-fs (loop8): This should not happen!! Data will be lost [ 186.169508][ T31] [ 186.214734][ T31] EXT4-fs error (device loop8): ext4_map_blocks:814: inode #15: block 8: comm kworker/u8:1: lblock 8 mapped to illegal pblock 8 (length 8) [ 186.229639][ T31] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117 [ 186.242030][ T31] EXT4-fs (loop8): This should not happen!! Data will be lost [ 186.242030][ T31] [ 186.285564][T17252] lo speed is unknown, defaulting to 1000 [ 186.326204][T17256] loop7: detected capacity change from 0 to 512 [ 186.362372][T17256] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode [ 186.382285][T17256] EXT4-fs warning (device loop7): ext4_expand_extra_isize_ea:2853: Unable to expand inode 11. Delete some EAs or run e2fsck. [ 186.415718][T17256] EXT4-fs (loop7): 1 truncate cleaned up [ 186.427392][T17264] bridge0: port 3(gretap0) entered blocking state [ 186.430108][T17256] EXT4-fs (loop7): shut down requested (1) [ 186.434125][T17264] bridge0: port 3(gretap0) entered disabled state [ 186.458660][T17264] gretap0: entered allmulticast mode [ 186.465034][T17264] gretap0: entered promiscuous mode [ 186.470802][T17264] bridge0: port 3(gretap0) entered blocking state [ 186.477321][T17264] bridge0: port 3(gretap0) entered forwarding state [ 186.517178][T17269] SELinux: failed to load policy [ 186.585457][T17281] loop7: detected capacity change from 0 to 512 [ 186.637229][T17281] ext4 filesystem being mounted at /711/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 186.703618][T17297] geneve2: entered promiscuous mode [ 186.709094][T17297] geneve2: entered allmulticast mode [ 186.759810][T17304] loop8: detected capacity change from 0 to 256 [ 187.003156][T17333] netlink: 44 bytes leftover after parsing attributes in process `syz.2.5771'. [ 187.012415][T17333] netlink: 43 bytes leftover after parsing attributes in process `syz.2.5771'. [ 187.021512][T17333] netlink: 'syz.2.5771': attribute type 5 has an invalid length. [ 187.029336][T17333] netlink: 43 bytes leftover after parsing attributes in process `syz.2.5771'. [ 187.079292][T17336] geneve2: entered promiscuous mode [ 187.084952][T17336] geneve2: entered allmulticast mode [ 187.132712][T17345] loop8: detected capacity change from 0 to 512 [ 187.149084][T17345] EXT4-fs error (device loop8): ext4_lookup:1787: inode #12: comm syz.8.5766: iget: checksum invalid [ 187.161528][T17345] EXT4-fs warning (device loop8): ext4_resize_begin:82: There are errors in the filesystem, so online resizing is not allowed [ 187.326485][T17363] loop8: detected capacity change from 0 to 512 [ 187.347493][T17363] EXT4-fs: Ignoring removed nobh option [ 187.354475][T17369] 9pnet_fd: Insufficient options for proto=fd [ 187.380916][T17363] EXT4-fs error (device loop8): ext4_do_update_inode:5624: inode #3: comm syz.8.5776: corrupted inode contents [ 187.398540][T17363] EXT4-fs error (device loop8): ext4_dirty_inode:6509: inode #3: comm syz.8.5776: mark_inode_dirty error [ 187.426723][T17363] EXT4-fs error (device loop8): ext4_do_update_inode:5624: inode #3: comm syz.8.5776: corrupted inode contents [ 187.440399][T17363] EXT4-fs error (device loop8): __ext4_ext_dirty:206: inode #3: comm syz.8.5776: mark_inode_dirty error [ 187.462232][T17363] EXT4-fs error (device loop8): ext4_acquire_dquot:6945: comm syz.8.5776: Failed to acquire dquot type 0 [ 187.484116][T17363] EXT4-fs error (device loop8): ext4_do_update_inode:5624: inode #16: comm syz.8.5776: corrupted inode contents [ 187.497415][T17363] EXT4-fs error (device loop8): ext4_dirty_inode:6509: inode #16: comm syz.8.5776: mark_inode_dirty error [ 187.514938][T17363] EXT4-fs error (device loop8): ext4_do_update_inode:5624: inode #16: comm syz.8.5776: corrupted inode contents [ 187.527937][T17363] EXT4-fs error (device loop8): __ext4_ext_dirty:206: inode #16: comm syz.8.5776: mark_inode_dirty error [ 187.546892][T17363] EXT4-fs error (device loop8): ext4_do_update_inode:5624: inode #16: comm syz.8.5776: corrupted inode contents [ 187.559782][T17363] EXT4-fs error (device loop8) in ext4_orphan_del:301: Corrupt filesystem [ 187.569087][T17363] EXT4-fs error (device loop8): ext4_do_update_inode:5624: inode #16: comm syz.8.5776: corrupted inode contents [ 187.583022][T17363] EXT4-fs error (device loop8): ext4_truncate:4637: inode #16: comm syz.8.5776: mark_inode_dirty error [ 187.595194][T17363] EXT4-fs error (device loop8) in ext4_process_orphan:343: Corrupt filesystem [ 187.604948][T17363] EXT4-fs (loop8): 1 truncate cleaned up [ 187.612122][T17363] ext4 filesystem being mounted at /160/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 187.700814][T17398] loop8: detected capacity change from 0 to 512 [ 187.707853][T17398] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode [ 187.720041][T17398] EXT4-fs (loop8): 1 orphan inode deleted [ 187.725927][T17398] EXT4-fs (loop8): 1 truncate cleaned up [ 187.809620][T17408] SELinux: policydb version -299076691 does not match my version range 15-35 [ 187.818891][T17408] SELinux: failed to load policy [ 187.939639][T17428] loop6: detected capacity change from 0 to 1024 [ 187.971084][T17433] loop8: detected capacity change from 0 to 1024 [ 187.979167][T17433] EXT4-fs (loop8): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 187.990439][T17433] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 188.001509][T17433] JBD2: no valid journal superblock found [ 188.002517][T17426] SELinux: failed to load policy [ 188.007365][T17433] EXT4-fs (loop8): Could not load journal inode [ 188.192873][T17457] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5818'. [ 188.213075][T17459] loop8: detected capacity change from 0 to 1024 [ 188.278560][T17466] loop6: detected capacity change from 0 to 1024 [ 188.294755][ T29] kauditd_printk_skb: 154 callbacks suppressed [ 188.294776][ T29] audit: type=1400 audit(2000000585.506:5162): avc: denied { read write } for pid=17468 comm="syz.7.5821" name="uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 188.324839][ T29] audit: type=1400 audit(2000000585.506:5163): avc: denied { open } for pid=17468 comm="syz.7.5821" path="/dev/uhid" dev="devtmpfs" ino=253 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 188.328175][T17466] ext4 filesystem being mounted at /62/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 188.412824][T17476] loop8: detected capacity change from 0 to 1024 [ 188.419484][ T29] audit: type=1400 audit(2000000585.576:5164): avc: denied { create } for pid=17467 comm="syz.8.5822" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 188.440493][ T29] audit: type=1400 audit(2000000585.576:5165): avc: denied { mounton } for pid=17467 comm="syz.8.5822" path="/174/file0" dev="tmpfs" ino=912 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 188.463711][ T29] audit: type=1400 audit(2000000585.576:5166): avc: denied { mount } for pid=17467 comm="syz.8.5822" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 188.485954][ T29] audit: type=1400 audit(2000000585.606:5167): avc: denied { unlink } for pid=15488 comm="syz-executor" name="file0" dev="tmpfs" ino=912 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 188.508928][ T29] audit: type=1400 audit(2000000585.606:5168): avc: denied { ioctl } for pid=17473 comm="syz.0.5823" path="/dev/input/event2" dev="devtmpfs" ino=245 ioctlcmd=0x4591 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 188.550871][ T29] audit: type=1400 audit(2000000585.756:5169): avc: denied { write } for pid=17474 comm="syz.8.5824" path="/175/file0/.pending_reads" dev="loop8" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 188.574847][ T29] audit: type=1400 audit(2000000585.756:5170): avc: denied { setattr } for pid=17474 comm="syz.8.5824" name=".pending_reads" dev="loop8" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 188.620686][ T29] audit: type=1326 audit(2000000585.836:5171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17480 comm="syz.2.5827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feaad59eec9 code=0x7ffc0000 [ 188.735610][T17493] IPVS: ip_vs_add_dest(): server weight less than zero [ 188.780078][T17498] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5834'. [ 188.863460][ T4944] EXT4-fs error (device loop6): ext4_map_blocks:814: inode #15: comm kworker/u8:19: lblock 0 mapped to illegal pblock 0 (length 6) [ 188.879138][ T4944] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117 [ 188.891782][ T4944] EXT4-fs (loop6): This should not happen!! Data will be lost [ 188.891782][ T4944] [ 188.918534][ T4944] EXT4-fs error (device loop6): ext4_map_blocks:814: inode #15: block 8: comm kworker/u8:19: lblock 8 mapped to illegal pblock 8 (length 8) [ 188.936728][ T4944] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117 [ 188.949324][ T4944] EXT4-fs (loop6): This should not happen!! Data will be lost [ 188.949324][ T4944] [ 189.021543][T17518] loop8: detected capacity change from 0 to 512 [ 189.029242][T17518] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode [ 189.040556][T17518] EXT4-fs (loop8): 1 truncate cleaned up [ 189.049900][T17518] EXT4-fs error (device loop8): ext4_generic_delete_entry:2668: inode #2: block 13: comm syz.8.5845: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 189.071080][T17502] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 189.079846][T17502] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 189.089114][T17518] EXT4-fs error (device loop8) in ext4_delete_entry:2739: Corrupt filesystem [ 189.102225][T17518] EXT4-fs warning (device loop8): ext4_rename_delete:3731: inode #2: comm syz.8.5845: Deleting old file: nlink 4, error=-117 [ 189.120095][T17524] loop6: detected capacity change from 0 to 512 [ 189.141964][T17524] EXT4-fs error (device loop6): ext4_lookup:1787: inode #12: comm syz.6.5837: iget: checksum invalid [ 189.159227][T17524] EXT4-fs warning (device loop6): ext4_resize_begin:82: There are errors in the filesystem, so online resizing is not allowed [ 189.194751][T17529] loop8: detected capacity change from 0 to 1024 [ 189.201794][T17529] EXT4-fs: Ignoring removed orlov option [ 189.220245][T17529] ext4 filesystem being mounted at /182/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 189.242879][T17529] EXT4-fs error (device loop8): ext4_free_blocks:6706: comm syz.8.5849: Freeing blocks not in datazone - block = 0, count = 16 [ 189.267549][T17539] loop0: detected capacity change from 0 to 128 [ 189.289737][ T4944] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 189.320878][ T4944] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28 [ 189.329797][T17541] lo speed is unknown, defaulting to 1000 [ 189.333272][ T4944] EXT4-fs (loop8): This should not happen!! Data will be lost [ 189.333272][ T4944] [ 189.348822][ T4944] EXT4-fs (loop8): Total free blocks count 0 [ 189.354867][ T4944] EXT4-fs (loop8): Free/Dirty block details [ 189.360915][ T4944] EXT4-fs (loop8): free_blocks=4293918736 [ 189.366881][ T4944] EXT4-fs (loop8): dirty_blocks=16 [ 189.372030][ T4944] EXT4-fs (loop8): Block reservation details [ 189.378208][ T4944] EXT4-fs (loop8): i_reserved_data_blocks=1 [ 189.501213][T17564] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 189.509932][T17564] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 189.712689][T17583] msdos: Unknown parameter 'ÿ' [ 189.738402][T17587] program syz.8.5872 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 189.848211][T17606] netlink: 'syz.2.5882': attribute type 10 has an invalid length. [ 189.856181][T17606] netlink: 40 bytes leftover after parsing attributes in process `syz.2.5882'. [ 189.865546][T17606] dummy0: entered promiscuous mode [ 189.871822][T17606] bridge0: port 4(dummy0) entered blocking state [ 189.878455][T17606] bridge0: port 4(dummy0) entered disabled state [ 189.885148][T17606] dummy0: entered allmulticast mode [ 190.132100][T17632] vhci_hcd: invalid port number 0 [ 190.293919][T17662] netlink: 76 bytes leftover after parsing attributes in process `syz.2.5909'. [ 190.426285][T17685] SELinux: policydb magic number 0x0 does not match expected magic number 0xf97cff8c [ 190.466892][T17685] SELinux: failed to load policy [ 190.542507][T17694] lo speed is unknown, defaulting to 1000 [ 190.545952][T17700] loop7: detected capacity change from 0 to 512 [ 190.569814][T17700] EXT4-fs: Ignoring removed nobh option [ 190.600884][T17700] EXT4-fs error (device loop7): ext4_do_update_inode:5624: inode #3: comm syz.7.5925: corrupted inode contents [ 190.625756][T17708] 9p: Unknown access argument ¿: -22 [ 190.626917][T17700] EXT4-fs error (device loop7): ext4_dirty_inode:6509: inode #3: comm syz.7.5925: mark_inode_dirty error [ 190.658583][T17700] EXT4-fs error (device loop7): ext4_do_update_inode:5624: inode #3: comm syz.7.5925: corrupted inode contents [ 190.710742][T17700] EXT4-fs error (device loop7): __ext4_ext_dirty:206: inode #3: comm syz.7.5925: mark_inode_dirty error [ 190.725759][T17717] loop6: detected capacity change from 0 to 512 [ 190.742547][T17700] EXT4-fs error (device loop7): ext4_acquire_dquot:6945: comm syz.7.5925: Failed to acquire dquot type 0 [ 190.767233][T17700] EXT4-fs error (device loop7): ext4_do_update_inode:5624: inode #16: comm syz.7.5925: corrupted inode contents [ 190.783929][T17717] EXT4-fs warning (device loop6): ext4_xattr_inode_get:560: inode #11: comm syz.6.5932: EA inode hash validation failed [ 190.797279][T17717] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #15: comm syz.6.5932: corrupted inode contents [ 190.809841][T17721] loop8: detected capacity change from 0 to 512 [ 190.817292][T17717] EXT4-fs error (device loop6): ext4_dirty_inode:6509: inode #15: comm syz.6.5932: mark_inode_dirty error [ 190.829300][T17700] EXT4-fs error (device loop7): ext4_dirty_inode:6509: inode #16: comm syz.7.5925: mark_inode_dirty error [ 190.837377][T17717] EXT4-fs error (device loop6): ext4_do_update_inode:5624: inode #15: comm syz.6.5932: corrupted inode contents [ 190.854038][T17700] EXT4-fs error (device loop7): ext4_do_update_inode:5624: inode #16: comm syz.7.5925: corrupted inode contents [ 190.867367][T17700] EXT4-fs error (device loop7): __ext4_ext_dirty:206: inode #16: comm syz.7.5925: mark_inode_dirty error [ 190.882663][T17717] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2996: inode #15: comm syz.6.5932: mark_inode_dirty error [ 190.887243][T17700] EXT4-fs error (device loop7): ext4_do_update_inode:5624: inode #16: comm syz.7.5925: corrupted inode contents [ 190.919684][T17700] EXT4-fs error (device loop7) in ext4_orphan_del:301: Corrupt filesystem [ 190.919745][T17717] EXT4-fs error (device loop6): ext4_xattr_delete_inode:2999: inode #15: comm syz.6.5932: mark inode dirty (error -117) [ 190.919901][T17717] EXT4-fs warning (device loop6): ext4_evict_inode:274: xattr delete (err -117) [ 190.944159][T17700] EXT4-fs error (device loop7): ext4_do_update_inode:5624: inode #16: comm syz.7.5925: corrupted inode contents [ 190.963858][T17700] EXT4-fs error (device loop7): ext4_truncate:4637: inode #16: comm syz.7.5925: mark_inode_dirty error [ 190.971256][T17732] loop0: detected capacity change from 0 to 512 [ 190.981335][T17717] EXT4-fs (loop6): 1 orphan inode deleted [ 190.988108][T17717] EXT4-fs mount: 32 callbacks suppressed [ 190.988125][T17717] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 190.996954][T17721] EXT4-fs (loop8): too many log groups per flexible block group [ 191.020932][T17700] EXT4-fs error (device loop7) in ext4_process_orphan:343: Corrupt filesystem [ 191.038377][T17732] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 191.040908][T17721] EXT4-fs (loop8): failed to initialize mballoc (-12) [ 191.054099][T17721] EXT4-fs (loop8): mount failed [ 191.064141][T16297] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.074888][T17700] EXT4-fs (loop7): 1 truncate cleaned up [ 191.087245][T17700] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 191.102816][T17732] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.5938: bg 0: block 104: invalid block bitmap [ 191.105821][T17700] ext4 filesystem being mounted at /744/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 191.148312][T17741] netlink: 32 bytes leftover after parsing attributes in process `syz.2.5941'. [ 191.153138][T17732] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 191.185334][T17732] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.5938: invalid indirect mapped block 1 (level 1) [ 191.221495][T17700] EXT4-fs: Ignoring removed orlov option [ 191.230550][T17700] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 191.240105][T17732] EXT4-fs (loop0): 1 truncate cleaned up [ 191.246122][T17732] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 191.258754][T17700] EXT4-fs (loop7): can't enable nombcache during remount [ 191.291044][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.321678][ T9089] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.403586][T17763] loop6: detected capacity change from 0 to 2048 [ 191.428441][T17763] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 191.507985][T17782] netlink: 'syz.8.5962': attribute type 10 has an invalid length. [ 191.516906][T17782] netlink: 40 bytes leftover after parsing attributes in process `syz.8.5962'. [ 191.539772][T17782] dummy0: entered promiscuous mode [ 191.547260][T17782] bridge0: port 4(dummy0) entered blocking state [ 191.553841][T17782] bridge0: port 4(dummy0) entered disabled state [ 191.560762][T17782] dummy0: entered allmulticast mode [ 191.567000][T17782] bridge0: port 4(dummy0) entered blocking state [ 191.573516][T17782] bridge0: port 4(dummy0) entered forwarding state [ 191.581572][ T4925] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters [ 191.598090][ T4925] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 191.610512][ T4925] EXT4-fs (loop6): This should not happen!! Data will be lost [ 191.610512][ T4925] [ 191.620281][ T4925] EXT4-fs (loop6): Total free blocks count 0 [ 191.626555][ T4925] EXT4-fs (loop6): Free/Dirty block details [ 191.632751][ T4925] EXT4-fs (loop6): free_blocks=4096 [ 191.638049][ T4925] EXT4-fs (loop6): dirty_blocks=512 [ 191.643644][ T4925] EXT4-fs (loop6): Block reservation details [ 191.649893][ T4925] EXT4-fs (loop6): i_reserved_data_blocks=32 [ 191.658323][ T4925] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 480 with error 28 [ 191.700575][T17793] vlan2: entered promiscuous mode [ 191.705822][T17793] bond0: entered promiscuous mode [ 191.711027][T17793] bond_slave_0: entered promiscuous mode [ 191.716880][T17793] bond_slave_1: entered promiscuous mode [ 191.757691][T17802] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5971'. [ 191.860457][T17815] netlink: 16 bytes leftover after parsing attributes in process `syz.8.5986'. [ 191.916155][T17824] loop8: detected capacity change from 0 to 2048 [ 191.938604][T17824] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 191.956471][T17831] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5981'. [ 192.047061][T15488] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 192.136518][T17856] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5995'. [ 192.150216][T17855] loop0: detected capacity change from 0 to 512 [ 192.178083][T17855] EXT4-fs error (device loop0): ext4_quota_enable:7136: inode #4: comm syz.0.5994: iget: bogus i_mode (4200) [ 192.196382][T17855] EXT4-fs error (device loop0): ext4_quota_enable:7139: comm syz.0.5994: Bad quota inode: 4, type: 1 [ 192.208255][T17855] EXT4-fs warning (device loop0): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 192.224598][T17855] EXT4-fs (loop0): mount failed [ 192.360599][T17884] loop7: detected capacity change from 0 to 256 [ 192.588911][T17904] loop7: detected capacity change from 0 to 128 [ 192.718094][T17916] netlink: 32 bytes leftover after parsing attributes in process `syz.7.6021'. [ 192.762855][T17926] loop0: detected capacity change from 0 to 512 [ 192.769937][T17926] EXT4-fs: Ignoring removed nobh option [ 192.793683][T17926] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #3: comm syz.0.6027: corrupted inode contents [ 192.811773][T17932] 9pnet_fd: Insufficient options for proto=fd [ 192.820187][T17926] EXT4-fs error (device loop0): ext4_dirty_inode:6509: inode #3: comm syz.0.6027: mark_inode_dirty error [ 192.835136][T17926] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #3: comm syz.0.6027: corrupted inode contents [ 192.847714][T17926] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #3: comm syz.0.6027: mark_inode_dirty error [ 192.849086][T17936] loop7: detected capacity change from 0 to 1024 [ 192.870068][T17926] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.6027: Failed to acquire dquot type 0 [ 192.891417][T17926] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #16: comm syz.0.6027: corrupted inode contents [ 192.905665][T17936] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 192.923558][T17926] EXT4-fs error (device loop0): ext4_dirty_inode:6509: inode #16: comm syz.0.6027: mark_inode_dirty error [ 192.947126][T17926] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #16: comm syz.0.6027: corrupted inode contents [ 192.962474][T17926] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.6027: mark_inode_dirty error [ 192.977431][ T9089] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 192.989285][T17926] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #16: comm syz.0.6027: corrupted inode contents [ 193.002413][T17926] EXT4-fs error (device loop0) in ext4_orphan_del:301: Corrupt filesystem [ 193.032539][T17955] loop7: detected capacity change from 0 to 2048 [ 193.044110][T17926] EXT4-fs error (device loop0): ext4_do_update_inode:5624: inode #16: comm syz.0.6027: corrupted inode contents [ 193.079831][T17955] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none. [ 193.106621][T17926] EXT4-fs error (device loop0): ext4_truncate:4637: inode #16: comm syz.0.6027: mark_inode_dirty error [ 193.120381][T17926] EXT4-fs error (device loop0) in ext4_process_orphan:343: Corrupt filesystem [ 193.134176][T17955] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 193.151006][T17926] EXT4-fs (loop0): 1 truncate cleaned up [ 193.156996][T17955] EXT4-fs (loop7): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 101 with error 28 [ 193.157388][T17926] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 193.169571][T17955] EXT4-fs (loop7): This should not happen!! Data will be lost [ 193.169571][T17955] [ 193.182533][T17926] ext4 filesystem being mounted at /1295/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 193.192112][T17955] EXT4-fs (loop7): Total free blocks count 0 [ 193.192134][T17955] EXT4-fs (loop7): Free/Dirty block details [ 193.215330][T17955] EXT4-fs (loop7): free_blocks=2415919104 [ 193.221430][T17955] EXT4-fs (loop7): dirty_blocks=112 [ 193.226887][T17955] EXT4-fs (loop7): Block reservation details [ 193.232951][T17955] EXT4-fs (loop7): i_reserved_data_blocks=7 [ 193.249094][T17926] EXT4-fs: Ignoring removed orlov option [ 193.255422][T17926] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 193.264797][T17926] EXT4-fs (loop0): can't enable nombcache during remount [ 193.289569][ T9089] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000900. [ 193.322634][ T3308] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 193.335389][T17973] loop7: detected capacity change from 0 to 512 [ 193.359107][T17973] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 193.373040][T17973] ext4 filesystem being mounted at /771/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 193.397606][T17973] SELinux: Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped). [ 193.407303][ T29] kauditd_printk_skb: 190 callbacks suppressed [ 193.407328][ T29] audit: type=1400 audit(2000000591.625:5358): avc: denied { relabelto } for pid=17972 comm="syz.7.6045" name="/" dev="loop7" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0" [ 193.491184][ T9089] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 193.524435][ T29] audit: type=1326 audit(2000000591.735:5359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17992 comm="syz.0.6056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66085eeec9 code=0x7ffc0000 [ 193.548312][ T29] audit: type=1326 audit(2000000591.735:5360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17992 comm="syz.0.6056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66085eeec9 code=0x7ffc0000 [ 193.600072][ T29] audit: type=1326 audit(2000000591.735:5361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17992 comm="syz.0.6056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=217 compat=0 ip=0x7f66085eeec9 code=0x7ffc0000 [ 193.624078][ T29] audit: type=1326 audit(2000000591.735:5362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17992 comm="syz.0.6056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66085eeec9 code=0x7ffc0000 [ 193.652475][ T29] audit: type=1400 audit(2000000591.845:5363): avc: denied { read } for pid=18002 comm="syz.7.6060" name="rtc0" dev="devtmpfs" ino=244 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 193.676067][ T29] audit: type=1400 audit(2000000591.845:5364): avc: denied { open } for pid=18002 comm="syz.7.6060" path="/dev/rtc0" dev="devtmpfs" ino=244 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 193.699930][ T29] audit: type=1400 audit(2000000591.845:5365): avc: denied { ioctl } for pid=18002 comm="syz.7.6060" path="/dev/rtc0" dev="devtmpfs" ino=244 ioctlcmd=0x7014 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 193.726598][ T29] audit: type=1326 audit(2000000591.925:5366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18006 comm="syz.7.6061" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d1dcdeec9 code=0x7ffc0000 [ 193.750452][ T29] audit: type=1326 audit(2000000591.925:5367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18006 comm="syz.7.6061" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d1dcdeec9 code=0x7ffc0000 [ 193.823838][T18016] loop7: detected capacity change from 0 to 764 [ 193.836624][T18016] Symlink component flag not implemented [ 193.842383][T18016] Symlink component flag not implemented [ 193.848674][T18016] Symlink component flag not implemented (128) [ 193.854490][T18019] SELinux: ebitmap: truncated map [ 193.854973][T18016] Symlink component flag not implemented (122) [ 193.864381][T18019] SELinux: failed to load policy [ 193.978971][T18037] __nla_validate_parse: 1 callbacks suppressed [ 193.978990][T18037] netlink: 32 bytes leftover after parsing attributes in process `syz.0.6076'. [ 194.001110][T18041] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 194.009718][T18041] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 194.255157][T18069] vlan0: entered promiscuous mode [ 194.260459][T18069] bond0: entered promiscuous mode [ 194.265565][T18069] bond_slave_0: entered promiscuous mode [ 194.271448][T18069] bond_slave_1: entered promiscuous mode [ 194.879578][T18124] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6118'. [ 194.888734][T18124] netlink: 'syz.8.6118': attribute type 30 has an invalid length. [ 194.896807][T18124] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6118'. [ 195.067153][T18149] ================================================================== [ 195.075536][T18149] BUG: KCSAN: data-race in kick_pool / wq_worker_running [ 195.083036][T18149] [ 195.085479][T18149] read-write to 0xffff888237c29de4 of 4 bytes by task 9 on cpu 0: [ 195.093404][T18149] wq_worker_running+0x95/0x120 [ 195.098721][T18149] schedule_preempt_disabled+0x10/0x20 [ 195.104223][T18149] __mutex_lock+0x467/0xcc0 [ 195.108871][T18149] __mutex_lock_slowpath+0xa/0x10 [ 195.113931][T18149] mutex_lock+0x27/0x30 [ 195.118189][T18149] pcpu_balance_workfn+0x4a/0xc00 [ 195.124460][T18149] process_scheduled_works+0x4cb/0x9d0 [ 195.130114][T18149] worker_thread+0x582/0x770 [ 195.134788][T18149] kthread+0x486/0x510 [ 195.139040][T18149] ret_from_fork+0x11f/0x1b0 [ 195.143719][T18149] ret_from_fork_asm+0x1a/0x30 [ 195.148615][T18149] [ 195.150963][T18149] read to 0xffff888237c29de4 of 4 bytes by task 18149 on cpu 1: [ 195.158601][T18149] kick_pool+0x49/0x2d0 [ 195.162773][T18149] __queue_work+0x8cb/0xb50 [ 195.167454][T18149] queue_work_on+0xd1/0x160 [ 195.172050][T18149] pcpu_alloc_noprof+0x9a7/0x1250 [ 195.177579][T18149] bpf_prog_alloc_no_stats+0xf7/0x3b0 [ 195.183258][T18149] bpf_prog_alloc+0x3c/0x150 [ 195.187878][T18149] bpf_prog_load+0x506/0x1100 [ 195.193200][T18149] __sys_bpf+0x469/0x7c0 [ 195.197633][T18149] __x64_sys_bpf+0x41/0x50 [ 195.202335][T18149] x64_sys_call+0x2aee/0x3000 [ 195.207310][T18149] do_syscall_64+0xd2/0x200 [ 195.212114][T18149] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 195.218037][T18149] [ 195.220550][T18149] value changed: 0x00000000 -> 0x00000001 [ 195.226456][T18149] [ 195.228824][T18149] Reported by Kernel Concurrency Sanitizer on: [ 195.235083][T18149] CPU: 1 UID: 0 PID: 18149 Comm: syz.0.6130 Tainted: G W syzkaller #0 PREEMPT(voluntary) [ 195.246470][T18149] Tainted: [W]=WARN [ 195.250375][T18149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 195.261157][T18149] ==================================================================