Warning: Permanently added '10.128.0.74' (ED25519) to the list of known hosts. 2024/04/28 13:29:21 ignoring optional flag "sandboxArg"="0" 2024/04/28 13:29:21 parsed 1 programs [ 43.727639][ T23] kauditd_printk_skb: 72 callbacks suppressed [ 43.727653][ T23] audit: type=1400 audit(1714310961.600:148): avc: denied { mounton } for pid=405 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 43.759254][ T23] audit: type=1400 audit(1714310961.600:149): avc: denied { mount } for pid=405 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 43.782491][ T23] audit: type=1400 audit(1714310961.640:150): avc: denied { unlink } for pid=405 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" 2024/04/28 13:29:21 executed programs: 0 [ 43.877569][ T405] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 43.953005][ T412] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.960700][ T412] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.968361][ T412] device bridge_slave_0 entered promiscuous mode [ 43.975755][ T412] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.982766][ T412] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.990657][ T412] device bridge_slave_1 entered promiscuous mode [ 44.041223][ T23] audit: type=1400 audit(1714310961.920:151): avc: denied { create } for pid=412 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 44.050338][ T412] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.062259][ T23] audit: type=1400 audit(1714310961.920:152): avc: denied { write } for pid=412 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 44.069294][ T412] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.069436][ T412] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.090910][ T23] audit: type=1400 audit(1714310961.920:153): avc: denied { read } for pid=412 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 44.097330][ T412] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.152039][ T5] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.160162][ T5] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.167758][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 44.176698][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 44.187847][ T126] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 44.196384][ T126] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.204207][ T126] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.215101][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 44.224312][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.231608][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.247388][ T126] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 44.258551][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 44.279304][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 44.298787][ T126] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 44.307329][ T126] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 44.324507][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 44.333164][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 44.347164][ T23] audit: type=1400 audit(1714310962.220:154): avc: denied { mounton } for pid=412 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=10759 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 44.429728][ T23] audit: type=1400 audit(1714310962.310:155): avc: denied { mounton } for pid=417 comm="syz-executor.0" path="/root/syzkaller-testdir3379928268/syzkaller.qiO9pa/0/file0" dev="sda1" ino=1939 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 44.458659][ T418] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 44.473882][ T418] EXT4-fs (loop0): 1 truncate cleaned up [ 44.479522][ T418] EXT4-fs (loop0): mounted filesystem without journal. Opts: jqfmt=vfsold,resgid=0x000000000000ee00,noblock_validity,noload,data_err=ignore,usrjquota=,init_itable=0x0000000000000601,max_dir_size_kb=0x0000000000000003,,errors=continue [ 44.502349][ T23] audit: type=1400 audit(1714310962.380:156): avc: denied { mount } for pid=417 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 44.525061][ T23] audit: type=1400 audit(1714310962.380:157): avc: denied { write } for pid=417 comm="syz-executor.0" name="file0" dev="loop0" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 44.550471][ T412] ================================================================== [ 44.558694][ T412] BUG: KASAN: use-after-free in ext4_inlinedir_to_tree+0x555/0x1160 [ 44.566555][ T412] Read of size 68 at addr ffff8881d9b98ec9 by task syz-executor.0/412 [ 44.574968][ T412] [ 44.577371][ T412] CPU: 0 PID: 412 Comm: syz-executor.0 Not tainted 5.4.268-syzkaller-04873-g2d5d8240a7cb #0 [ 44.587912][ T412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 44.598460][ T412] Call Trace: [ 44.601592][ T412] dump_stack+0x1d8/0x241 [ 44.605749][ T412] ? __kasan_kmalloc+0x171/0x210 [ 44.610967][ T412] ? nf_ct_l4proto_log_invalid+0x258/0x258 [ 44.616869][ T412] ? printk+0xd1/0x111 [ 44.620754][ T412] ? ext4_inlinedir_to_tree+0x555/0x1160 [ 44.626780][ T412] ? wake_up_klogd+0xb2/0xf0 [ 44.631733][ T412] ? ext4_inlinedir_to_tree+0x555/0x1160 [ 44.637485][ T412] print_address_description+0x8c/0x600 [ 44.643102][ T412] ? panic+0x896/0x896 [ 44.646996][ T412] ? ext4_inlinedir_to_tree+0x555/0x1160 [ 44.652581][ T412] __kasan_report+0xf3/0x120 [ 44.657139][ T412] ? ext4_inlinedir_to_tree+0x555/0x1160 [ 44.662600][ T412] ? ext4_inlinedir_to_tree+0x555/0x1160 [ 44.668126][ T412] kasan_report+0x30/0x60 [ 44.672508][ T412] check_memory_region+0x272/0x280 [ 44.677555][ T412] memcpy+0x25/0x50 [ 44.681571][ T412] ext4_inlinedir_to_tree+0x555/0x1160 [ 44.687849][ T412] ? ext4_convert_inline_data_nolock+0xd80/0xd80 [ 44.694628][ T412] ? stack_trace_save+0x1c0/0x1c0 [ 44.699933][ T412] ? arch_stack_walk+0x111/0x140 [ 44.704812][ T412] ? __kasan_kmalloc+0x1d9/0x210 [ 44.709681][ T412] ? ksys_getdents64+0x21b/0x4c0 [ 44.714621][ T412] ? __kasan_kmalloc+0x171/0x210 [ 44.719669][ T412] ext4_htree_fill_tree+0x5b2/0x1770 [ 44.724963][ T412] ? ext4_handle_dirty_dirblock+0x6e0/0x6e0 [ 44.730808][ T412] ? kmem_cache_alloc_trace+0xdc/0x260 [ 44.736060][ T412] ? ext4_readdir+0x1d6c/0x3610 [ 44.740747][ T412] ext4_readdir+0x2c1d/0x3610 [ 44.745437][ T412] ? debug_smp_processor_id+0x20/0x20 [ 44.750641][ T412] ? debug_smp_processor_id+0x20/0x20 [ 44.755870][ T412] ? memset+0x1f/0x40 [ 44.759686][ T412] ? fsnotify+0x1280/0x1340 [ 44.764165][ T412] ? __fsnotify_parent+0xec/0x310 [ 44.769248][ T412] ? ext4_dir_llseek+0x500/0x500 [ 44.773989][ T412] ? down_read_killable+0x101/0x220 [ 44.779021][ T412] ? __fsnotify_parent+0x310/0x310 [ 44.783965][ T412] ? down_read_interruptible+0x220/0x220 [ 44.789570][ T412] ? security_file_permission+0x1dc/0x2f0 [ 44.795271][ T412] iterate_dir+0x266/0x4e0 [ 44.799521][ T412] ? ext4_dir_llseek+0x500/0x500 [ 44.804294][ T412] ksys_getdents64+0x21b/0x4c0 [ 44.808898][ T412] ? __ia32_sys_getdents+0x80/0x80 [ 44.813860][ T412] ? ksys_getdents64+0x4c0/0x4c0 [ 44.818618][ T412] ? __do_page_fault+0x725/0xbb0 [ 44.823594][ T412] __x64_sys_getdents64+0x76/0x80 [ 44.828454][ T412] do_syscall_64+0xca/0x1c0 [ 44.832846][ T412] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 44.838521][ T412] [ 44.840686][ T412] Allocated by task 404: [ 44.844773][ T412] __kasan_kmalloc+0x171/0x210 [ 44.849369][ T412] kmem_cache_alloc+0xd9/0x250 [ 44.854009][ T412] getname_flags+0xb8/0x4e0 [ 44.858319][ T412] user_path_at_empty+0x28/0x50 [ 44.863013][ T412] vfs_statx+0x115/0x210 [ 44.867215][ T412] __se_sys_newfstatat+0xce/0x770 [ 44.872063][ T412] do_syscall_64+0xca/0x1c0 [ 44.876573][ T412] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 44.882241][ T412] [ 44.884411][ T412] Freed by task 404: [ 44.888164][ T412] __kasan_slab_free+0x1b5/0x270 [ 44.892925][ T412] kmem_cache_free+0x10b/0x2c0 [ 44.897521][ T412] filename_lookup+0x50e/0x6e0 [ 44.902204][ T412] vfs_statx+0x115/0x210 [ 44.906574][ T412] __se_sys_newfstatat+0xce/0x770 [ 44.911511][ T412] do_syscall_64+0xca/0x1c0 [ 44.915861][ T412] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 44.921660][ T412] [ 44.924144][ T412] The buggy address belongs to the object at ffff8881d9b98000 [ 44.924144][ T412] which belongs to the cache names_cache of size 4096 [ 44.938231][ T412] The buggy address is located 3785 bytes inside of [ 44.938231][ T412] 4096-byte region [ffff8881d9b98000, ffff8881d9b99000) [ 44.951570][ T412] The buggy address belongs to the page: [ 44.957474][ T412] page:ffffea000766e600 refcount:1 mapcount:0 mapping:ffff8881f5d04500 index:0x0 compound_mapcount: 0 [ 44.968490][ T412] flags: 0x8000000000010200(slab|head) [ 44.974782][ T412] raw: 8000000000010200 dead000000000100 dead000000000122 ffff8881f5d04500 [ 44.983621][ T412] raw: 0000000000000000 0000000000070007 00000001ffffffff 0000000000000000 [ 44.992084][ T412] page dumped because: kasan: bad access detected [ 44.998659][ T412] page_owner tracks the page as allocated [ 45.004472][ T412] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL) [ 45.021332][ T412] prep_new_page+0x18f/0x370 [ 45.025736][ T412] get_page_from_freelist+0x2d13/0x2d90 [ 45.031111][ T412] __alloc_pages_nodemask+0x393/0x840 [ 45.036397][ T412] alloc_slab_page+0x39/0x3c0 [ 45.040920][ T412] new_slab+0x97/0x440 [ 45.044824][ T412] ___slab_alloc+0x2fe/0x490 [ 45.049247][ T412] __slab_alloc+0x62/0xa0 [ 45.053570][ T412] kmem_cache_alloc+0x109/0x250 [ 45.058436][ T412] getname_flags+0xb8/0x4e0 [ 45.063021][ T412] do_sys_open+0x357/0x810 [ 45.067283][ T412] do_syscall_64+0xca/0x1c0 [ 45.071628][ T412] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 45.077468][ T412] page last free stack trace: [ 45.082163][ T412] __free_pages_ok+0x847/0x950 [ 45.086854][ T412] skb_release_data+0x210/0x640 [ 45.092234][ T412] __kfree_skb+0x4c/0x60 [ 45.096925][ T412] tcp_recvmsg+0x174c/0x35b0 [ 45.101429][ T412] inet_recvmsg+0x158/0x510 [ 45.105769][ T412] sock_read_iter+0x34e/0x430 [ 45.110548][ T412] __vfs_read+0x5cd/0x730 [ 45.114810][ T412] vfs_read+0x148/0x360 [ 45.119156][ T412] ksys_read+0x199/0x2c0 [ 45.123237][ T412] do_syscall_64+0xca/0x1c0 [ 45.127567][ T412] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 45.133425][ T412] [ 45.135669][ T412] Memory state around the buggy address: [ 45.141337][ T412] ffff8881d9b98d80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 45.149500][ T412] ffff8881d9b98e00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 45.157661][ T412] >ffff8881d9b98e80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 45.165742][ T412] ^ [ 45.172075][ T412] ffff8881d9b98f00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 45.180530][ T412] ffff8881d9b98f80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 45.188489][ T412] ================================================================== [ 45.196311][ T412] Disabling lock debugging due to kernel taint [ 45.206171][ T412] EXT4-fs error (device loop0): ext4_inlinedir_to_tree:1437: inode #12: block 7: comm syz-executor.0: path /root/syzkaller-testdir3379928268/syzkaller.qiO9pa/0/file0/file0: bad entry in directory: directory entry overrun - offset=34816, inode=2538880996, rec_len=34812, size=128 fake=0 [ 45.234260][ T412] EXT4-fs error (device loop0): empty_inline_dir:1832: inode #12: block 7: comm syz-executor.0: bad entry in directory: directory entry overrun - offset=4, inode=2538880996, rec_len=34812, size=60 fake=0 [ 45.255227][ T412] EXT4-fs warning (device loop0): empty_inline_dir:1839: bad inline directory (dir #12) - inode 2538880996, rec_len 34812, name_len 234inline size 60 [ 45.271796][ T412] EXT4-fs error (device loop0): __ext4_iget:5217: inode #16: block 786432: comm syz-executor.0: invalid block [ 45.284103][ T412] EXT4-fs error (device loop0): __ext4_iget:5217: inode #16: block 786432: comm syz-executor.0: invalid block [ 46.248690][ T7] device bridge_slave_1 left promiscuous mode [ 46.254888][ T7] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.262743][ T7] device bridge_slave_0 left promiscuous mode [ 46.269131][ T7] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.517960][ T426] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.525401][ T426] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.532941][ T426] device bridge_slave_0 entered promiscuous mode [ 46.539803][ T426] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.547060][ T426] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.555166][ T426] device bridge_slave_1 entered promiscuous mode [ 46.610898][ T426] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.618990][ T426] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.626351][ T426] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.633422][ T426] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.664989][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 46.673617][ T108] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.681364][ T108] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.692491][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 46.700686][ T366] bridge0: port 1(bridge_slave_0) entered blocking state [ 46.707643][ T366] bridge0: port 1(bridge_slave_0) entered forwarding state [ 46.729214][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 46.737492][ T366] bridge0: port 2(bridge_slave_1) entered blocking state [ 46.744367][ T366] bridge0: port 2(bridge_slave_1) entered forwarding state [ 46.751857][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 46.760247][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 46.773365][ T126] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 46.788700][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 46.808417][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 46.816740][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 46.825377][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 46.892254][ T431] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 46.901969][ T431] EXT4-fs (loop0): 1 truncate cleaned up [ 46.907466][ T431] EXT4-fs (loop0): mounted filesystem without journal. Opts: jqfmt=vfsold,resgid=0x000000000000ee00,noblock_validity,noload,data_err=ignore,usrjquota=,init_itable=0x0000000000000601,max_dir_size_kb=0x0000000000000003,,errors=continue [ 46.944955][ T426] EXT4-fs error (device loop0): ext4_inlinedir_to_tree:1437: inode #12: block 7: comm syz-executor.0: path /root/syzkaller-testdir3068480431/syzkaller.wSz0lC/0/file0/file0: bad entry in directory: directory entry overrun - offset=34816, inode=2538880996, rec_len=34812, size=128 fake=0 [ 46.973327][ T426] EXT4-fs error (device loop0): empty_inline_dir:1832: inode #12: block 7: comm syz-executor.0: bad entry in directory: directory entry overrun - offset=4, inode=2538880996, rec_len=34812, size=60 fake=0 [ 46.995044][ T426] EXT4-fs warning (device loop0): empty_inline_dir:1839: bad inline directory (dir #12) - inode 2538880996, rec_len 34812, name_len 234inline size 60 [ 47.011262][ T426] EXT4-fs error (device loop0): __ext4_iget:5217: inode #16: block 786432: comm syz-executor.0: invalid block [ 47.023277][ T426] EXT4-fs error (device loop0): __ext4_iget:5217: inode #16: block 786432: comm syz-executor.0: invalid block [ 47.809292][ T103] device bridge_slave_1 left promiscuous mode [ 47.816003][ T103] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.823429][ T103] device bridge_slave_0 left promiscuous mode [ 47.830326][ T103] bridge0: port 1(bridge_slave_0) entered disabled state [ 48.241005][ T436] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.247998][ T436] bridge0: port 1(bridge_slave_0) entered disabled state [ 48.255881][ T436] device bridge_slave_0 entered promiscuous mode [ 48.263498][ T436] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.270456][ T436] bridge0: port 2(bridge_slave_1) entered disabled state [ 48.278507][ T436] device bridge_slave_1 entered promiscuous mode [ 48.343094][ T436] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.349980][ T436] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.357065][ T436] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.364202][ T436] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.389766][ T108] bridge0: port 1(bridge_slave_0) entered disabled state [ 48.397665][ T108] bridge0: port 2(bridge_slave_1) entered disabled state [ 48.405855][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 48.413921][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 48.429378][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 48.437716][ T24] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.444672][ T24] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.452390][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 48.460818][ T24] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.468449][ T24] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.479739][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 48.499407][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 48.507895][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 48.519997][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 48.539024][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 48.553569][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 48.562289][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 48.640987][ T442] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 48.651143][ T442] EXT4-fs (loop0): 1 truncate cleaned up [ 48.657433][ T442] EXT4-fs (loop0): mounted filesystem without journal. Opts: jqfmt=vfsold,resgid=0x000000000000ee00,noblock_validity,noload,data_err=ignore,usrjquota=,init_itable=0x0000000000000601,max_dir_size_kb=0x0000000000000003,,errors=continue [ 48.695765][ T436] EXT4-fs error (device loop0): ext4_inlinedir_to_tree:1437: inode #12: block 7: comm syz-executor.0: path /root/syzkaller-testdir1027384788/syzkaller.Qg0KIq/0/file0/file0: bad entry in directory: directory entry overrun - offset=34816, inode=2538880996, rec_len=34812, size=128 fake=0 [ 48.724515][ T436] EXT4-fs error (device loop0): empty_inline_dir:1832: inode #12: block 7: comm syz-executor.0: bad entry in directory: directory entry overrun - offset=4, inode=2538880996, rec_len=34812, size=60 fake=0 [ 48.745508][ T436] EXT4-fs warning (device loop0): empty_inline_dir:1839: bad inline directory (dir #12) - inode 2538880996, rec_len 34812, name_len 234inline size 60 [ 48.761377][ T436] EXT4-fs error (device loop0): __ext4_iget:5217: inode #16: block 786432: comm syz-executor.0: invalid block [ 48.773964][ T436] EXT4-fs error (device loop0): __ext4_iget:5217: inode #16: block 786432: comm syz-executor.0: invalid block 2024/04/28 13:29:26 executed programs: 8 [ 49.649312][ T7] device bridge_slave_1 left promiscuous mode [ 49.655508][ T7] bridge0: port 2(bridge_slave_1) entered disabled state [ 49.663146][ T7] device bridge_slave_0 left promiscuous mode [ 49.669226][ T7] bridge0: port 1(bridge_slave_0) entered disabled state [ 49.994648][ T447] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.001643][ T447] bridge0: port 1(bridge_slave_0) entered disabled state [ 50.009234][ T447] device bridge_slave_0 entered promiscuous mode [ 50.016610][ T447] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.023604][ T447] bridge0: port 2(bridge_slave_1) entered disabled state [ 50.031121][ T447] device bridge_slave_1 entered promiscuous mode [ 50.087086][ T447] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.094392][ T447] bridge0: port 2(bridge_slave_1) entered forwarding state [ 50.102476][ T447] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.109719][ T447] bridge0: port 1(bridge_slave_0) entered forwarding state [ 50.143962][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 50.153495][ T366] bridge0: port 1(bridge_slave_0) entered disabled state [ 50.161530][ T366] bridge0: port 2(bridge_slave_1) entered disabled state [ 50.179131][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 50.187535][ T366] bridge0: port 1(bridge_slave_0) entered blocking state [ 50.194695][ T366] bridge0: port 1(bridge_slave_0) entered forwarding state [ 50.202269][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 50.210577][ T366] bridge0: port 2(bridge_slave_1) entered blocking state [ 50.217799][ T366] bridge0: port 2(bridge_slave_1) entered forwarding state [ 50.225379][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 50.235356][ T126] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 50.253219][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 50.266428][ T126] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 50.274676][ T126] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 50.289227][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 50.299673][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 50.313287][ T126] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 50.322128][ T126] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 50.335233][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 50.343932][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 50.444678][ T453] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 50.454418][ T453] EXT4-fs (loop0): 1 truncate cleaned up [ 50.459912][ T453] EXT4-fs (loop0): mounted filesystem without journal. Opts: jqfmt=vfsold,resgid=0x000000000000ee00,noblock_validity,noload,data_err=ignore,usrjquota=,init_itable=0x0000000000000601,max_dir_size_kb=0x0000000000000003,,errors=continue [ 50.499650][ T447] EXT4-fs error (device loop0): ext4_inlinedir_to_tree:1437: inode #12: block 7: comm syz-executor.0: path /root/syzkaller-testdir3470526598/syzkaller.qABogU/0/file0/file0: bad entry in directory: directory entry overrun - offset=34816, inode=2538880996, rec_len=34812, size=128 fake=0 [ 50.528112][ T447] EXT4-fs error (device loop0): empty_inline_dir:1832: inode #12: block 7: comm syz-executor.0: bad entry in directory: directory entry overrun - offset=4, inode=2538880996, rec_len=34812, size=60 fake=0 [ 50.549916][ T447] EXT4-fs warning (device loop0): empty_inline_dir:1839: bad inline directory (dir #12) - inode 2538880996, rec_len 34812, name_len 234inline size 60 [ 50.566860][ T447] EXT4-fs error (device loop0): __ext4_iget:5217: inode #16: block 786432: comm syz-executor.0: invalid block [ 50.579095][ T447] EXT4-fs error (device loop0): __ext4_iget:5217: inode #16: block 786432: comm syz-executor.0: invalid block [ 51.608559][ T103] device bridge_slave_1 left promiscuous mode [ 51.615041][ T103] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.623541][ T103] device bridge_slave_0 left promiscuous mode [ 51.629796][ T103] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.762620][ T458] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.769499][ T458] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.777012][ T458] device bridge_slave_0 entered promiscuous mode [ 51.784470][ T458] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.791356][ T458] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.798825][ T458] device bridge_slave_1 entered promiscuous mode [ 51.854031][ T458] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.861007][ T458] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.868185][ T458] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.874986][ T458] bridge0: port 1(bridge_slave_0) entered forwarding state [ 51.899896][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 51.908052][ T108] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.916385][ T108] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.939321][ T126] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 51.947832][ T126] bridge0: port 1(bridge_slave_0) entered blocking state [ 51.954858][ T126] bridge0: port 1(bridge_slave_0) entered forwarding state [ 51.962168][ T126] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 51.972908][ T126] bridge0: port 2(bridge_slave_1) entered blocking state [ 51.980062][ T126] bridge0: port 2(bridge_slave_1) entered forwarding state [ 51.987656][ T126] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 51.996195][ T126] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 52.012400][ T356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 52.028509][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 52.046607][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 52.055818][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 52.070768][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 52.163604][ T466] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 52.175905][ T466] EXT4-fs (loop0): 1 truncate cleaned up [ 52.181737][ T466] EXT4-fs (loop0): mounted filesystem without journal. Opts: jqfmt=vfsold,resgid=0x000000000000ee00,noblock_validity,noload,data_err=ignore,usrjquota=,init_itable=0x0000000000000601,max_dir_size_kb=0x0000000000000003,,errors=continue [ 52.218474][ T458] EXT4-fs error (device loop0): ext4_inlinedir_to_tree:1437: inode #12: block 7: comm syz-executor.0: path /root/syzkaller-testdir158250575/syzkaller.r0kYsW/0/file0/file0: bad entry in directory: directory entry overrun - offset=34816, inode=2538880996, rec_len=34812, size=128 fake=0 [ 52.246686][ T458] EXT4-fs error (device loop0): empty_inline_dir:1832: inode #12: block 7: comm syz-executor.0: bad entry in directory: directory entry overrun - offset=4, inode=2538880996, rec_len=34812, size=60 fake=0 [ 52.267519][ T458] EXT4-fs warning (device loop0): empty_inline_dir:1839: bad inline directory (dir #12) - inode 2538880996, rec_len 34812, name_len 234inline size 60 [ 52.283515][ T458] EXT4-fs error (device loop0): __ext4_iget:5217: inode #16: block 786432: comm syz-executor.0: invalid block [ 52.296341][ T458] EXT4-fs error (device loop0): __ext4_iget:5217: inode #16: block 786432: comm syz-executor.0: invalid block [ 53.249860][ T103] device bridge_slave_1 left promiscuous mode [ 53.256294][ T103] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.264291][ T103] device bridge_slave_0 left promiscuous mode [ 53.271178][ T103] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.492397][ T472] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.499423][ T472] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.506995][ T472] device bridge_slave_0 entered promiscuous mode [ 53.514549][ T472] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.521618][ T472] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.529203][ T472] device bridge_slave_1 entered promiscuous mode [ 53.586839][ T472] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.594210][ T472] bridge0: port 2(bridge_slave_1) entered forwarding state [ 53.602132][ T472] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.609177][ T472] bridge0: port 1(bridge_slave_0) entered forwarding state [ 53.640007][ T365] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 53.648210][ T365] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.655834][ T365] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.679323][ T365] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 53.687657][ T365] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.695123][ T365] bridge0: port 1(bridge_slave_0) entered forwarding state [ 53.702632][ T365] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 53.711222][ T365] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.718142][ T365] bridge0: port 2(bridge_slave_1) entered forwarding state [ 53.725465][ T365] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 53.735480][ T366] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 53.753322][ T126] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 53.766144][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 53.781756][ T126] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 53.798960][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 53.807608][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready 2024/04/28 13:29:31 executed programs: 16 [ 53.882389][ T477] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 53.893805][ T477] EXT4-fs (loop0): 1 truncate cleaned up [ 53.899397][ T477] EXT4-fs (loop0): mounted filesystem without journal. Opts: jqfmt=vfsold,resgid=0x000000000000ee00,noblock_validity,noload,data_err=ignore,usrjquota=,init_itable=0x0000000000000601,max_dir_size_kb=0x0000000000000003,,errors=continue [ 53.938064][ T472] EXT4-fs error (device loop0): ext4_inlinedir_to_tree:1437: inode #12: block 7: comm syz-executor.0: path /root/syzkaller-testdir2429474171/syzkaller.IxZIhr/0/file0/file0: bad entry in directory: directory entry overrun - offset=34816, inode=2538880996, rec_len=34812, size=128 fake=0 [ 53.966287][ T472] EXT4-fs error (device loop0): empty_inline_dir:1832: inode #12: block 7: comm syz-executor.0: bad entry in directory: directory entry overrun - offset=4, inode=2538880996, rec_len=34812, size=60 fake=0 [ 53.988013][ T472] EXT4-fs warning (device loop0): empty_inline_dir:1839: bad inline directory (dir #12) - inode 2538880996, rec_len 34812, name_len 234inline size 60 [ 54.004180][ T472] EXT4-fs error (device loop0): __ext4_iget:5217: inode #16: block 786432: comm syz-executor.0: invalid block [ 54.016499][ T472] EXT4-fs error (device loop0): __ext4_iget:5217: inode #16: block 786432: comm syz-executor.0: invalid block