last executing test programs: 1m20.320789237s ago: executing program 2 (id=3): r0 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') mount$9p_fd(0x0, &(0x7f0000000380)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}}) mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30) mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0) 1m20.1599902s ago: executing program 2 (id=15): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000002c0)='rxrpc_peer\x00', r1}, 0x18) r2 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r2, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0) 1m5.056715602s ago: executing program 32 (id=15): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000002c0)='rxrpc_peer\x00', r1}, 0x18) r2 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r2, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x80, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0) 1.804058075s ago: executing program 1 (id=2071): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000b00)='kmem_cache_free\x00', r0, 0x0, 0x1034}, 0x18) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0xff, 0x7ffc1ffd}]}) fgetxattr(0xffffffffffffffff, 0x0, 0x0, 0x0) mq_unlink(0x0) 1.763839336s ago: executing program 1 (id=2072): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f0000000540)='GPL\x00', 0x4}, 0x94) r1 = syz_io_uring_setup(0x14d9, &(0x7f0000000480)={0x0, 0x5121, 0x0, 0x0, 0x2cf}, &(0x7f0000000040)=0x0, &(0x7f0000000080)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r2, r3, &(0x7f0000000280)=@IORING_OP_SYMLINKAT={0x26, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000140)='./file1\x00'}) io_uring_enter(r1, 0x47ba, 0x3e00, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0x9}, 0x18) 1.466844201s ago: executing program 1 (id=2078): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp, 0x1}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000c00)="d800000018009903e00312ba0d8105040a600300ff0f040b067c55a1bc000900b80006990700000015000500fef32702d3001500030001400200000901223fc6ab007f6f94007100a007a290457f0189b316277ce06bf75c10dde13fb206b33b174e54980ebace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1000000730d7a5025ccca262f3d40fad956d2b6d5a3a6692ac217e11382e767e04adcdf634c1f215ce3bb9ad809d5e1cace81ed0b66bce0b42a9ecbee5de6cc452a92307f00000e970300000000", 0xd8}], 0x1}, 0x20048812) 1.427187272s ago: executing program 3 (id=2079): mmap(&(0x7f0000003000/0x4000)=nil, 0x4000, 0x0, 0x20132, 0xffffffffffffffff, 0x391e1000) r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x800, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000060000000000000000008500000007000000850000000e00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x10) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'\x00', 0x2}) ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000380)=ANY=[@ANYRESDEC]) 1.412012412s ago: executing program 1 (id=2080): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = socket(0x10, 0x3, 0x0) connect$netlink(r2, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc) sendmsg$nl_route_sched(r2, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000001540)=@newtaction={0x18, 0x31, 0x829, 0x0, 0x25dfdbfe, {}, [{0x4}]}, 0x18}}, 0x0) 1.384961753s ago: executing program 1 (id=2084): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@mblk_io_submit}, {@resuid}, {@norecovery}]}, 0x8, 0x445, &(0x7f0000001dc0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12) write$P9_RREAD(r1, &(0x7f0000000580)=ANY=[@ANYBLOB], 0xa0) sendfile(r1, r0, 0x0, 0x3ffff) sendfile(r1, r0, 0x0, 0x7fffeffd) 1.357971254s ago: executing program 3 (id=2085): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x2, 0x4, 0x1, 0xbf22}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{r1, 0xffffffffffffffff}, &(0x7f00000001c0), &(0x7f0000000400)}, 0x20) perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x21, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x40000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xafffffffffffffff, 0xffffffffffffffff, 0x0) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000740), &(0x7f00000007c0), 0xffffd6c0, r2, 0x0, 0x20}, 0x38) 613.468468ms ago: executing program 0 (id=2101): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000004000000ff0f000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffed7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) capget(&(0x7f0000002140)={0x20080522}, 0x0) 562.052318ms ago: executing program 0 (id=2105): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7}, 0x18) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a300000000008000a40ffffffff580000000c0a010100000000000000000a0000060900020073797a30000000000900010073797a31000000012c0003802800008004000180200007800e000100636f6e6e6c696d69740000000c000280080001"], 0xbc}, 0x1, 0x0, 0x0, 0x4000851}, 0x40) 472.18031ms ago: executing program 5 (id=2106): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0xa, 0x4, 0x4, 0x5, 0x2}, 0x50) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000080)={{r0, 0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000040)='%ps \x00'}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r2}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 459.123661ms ago: executing program 4 (id=2107): r0 = socket$xdp(0x2c, 0x3, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10) setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000080)={0x0, 0xdfffffff, 0x1000, 0x5, 0x1}, 0x20) 416.134242ms ago: executing program 0 (id=2108): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x2000001, 0x12, r2, 0x0) symlinkat(0x0, 0xffffffffffffffff, 0x0) 376.442332ms ago: executing program 5 (id=2109): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='kfree\x00', r2}, 0x18) sendmsg$NL80211_CMD_GET_WIPHY(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010300000000000000000100000026000300"], 0x28}}, 0x44) 361.018643ms ago: executing program 1 (id=2110): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x80, 0x5, 0x7fff0003}]}) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000400)) 322.313483ms ago: executing program 4 (id=2111): r0 = fsopen(&(0x7f0000000000)='autofs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000240)='\xa8\xaa\xda\xa8\xde', &(0x7f0000000100)='\xb8\x00\x00\x00\x00\x00\x00\x00$\x00', 0x0) fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f00000005c0)='\x00H\xeb', 0x0, r0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f00000003c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r1}, 0x18) close(r0) 316.055824ms ago: executing program 0 (id=2112): syz_mount_image$ext4(&(0x7f0000000640)='ext4\x00', &(0x7f0000000200)='./file2\x00', 0x200000, &(0x7f0000000300)={[{@dioread_lock}, {@jqfmt_vfsv1}, {@nouid32}, {@grpquota}]}, 0xfc, 0x580, &(0x7f0000000f80)="$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") r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000c"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000000000000000000000080021850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0xd) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0x6e) 289.039794ms ago: executing program 5 (id=2113): r0 = socket(0x40000000015, 0x5, 0x0) connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) bind$inet(r0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$nl_xfrm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[], 0x18}}, 0x0) getsockopt(r0, 0x200000000114, 0x271e, &(0x7f0000000580)=""/102393, &(0x7f0000000040)=0x18ff9) 276.816985ms ago: executing program 4 (id=2114): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0x4}, 0x100b28, 0x6, 0x0, 0x1, 0x8, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan1\x00', 0x0}) bind$can_raw(r1, &(0x7f00000000c0)={0x1d, r2}, 0x10) close(r1) 262.102035ms ago: executing program 5 (id=2115): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x50) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10) sendmsg$nl_xfrm(r0, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={&(0x7f0000000240)=ANY=[@ANYBLOB="240100001600010428bd700000000000fe8000000000000000000000000000bbfc01000000000000000000000000000100040000000000000000a00000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="ff02000000000000000000000000000100000000330000000a0101010000000000000000000000000000000000004e340100000000000000000000000000000004000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000a0000002bbd70000000000000000200000000000000000008000020ffffffdf2c0027cc"], 0x124}}, 0x0) 240.945245ms ago: executing program 3 (id=2116): bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r0}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r1}, 0x10) io_setup(0x6, &(0x7f0000001380)) 226.781126ms ago: executing program 5 (id=2117): mlock(&(0x7f0000656000/0x3000)=nil, 0x3000) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2) mlockall(0x7) 190.227036ms ago: executing program 0 (id=2118): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000800)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2f, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff800}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10) r2 = socket(0x1e, 0x4, 0x0) sendmsg$tipc(r2, &(0x7f00000001c0)={&(0x7f00000003c0)=@name={0x1e, 0x2, 0x2, {{0x41, 0x1}, 0x3}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x4001) 183.813666ms ago: executing program 4 (id=2119): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0xa, 0x4, 0x4, 0x5, 0x2}, 0x50) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000080)={{r0, 0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000040)='%ps \x00'}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r2}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 141.335807ms ago: executing program 4 (id=2120): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r3}, 0x10) sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="a1ab00000000000000003200000008001781"], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0) 139.530767ms ago: executing program 0 (id=2121): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4000, &(0x7f0000000c00)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nombcache}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@mblk_io_submit}, {@resuid}, {@norecovery}]}, 0x8, 0x445, &(0x7f0000001dc0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12) write$P9_RREAD(r1, &(0x7f0000000580)=ANY=[@ANYBLOB], 0xa0) sendfile(r1, r0, 0x0, 0x3ffff) sendfile(r1, r0, 0x0, 0x7fffeffd) 124.573037ms ago: executing program 3 (id=2122): r0 = socket$xdp(0x2c, 0x3, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10) setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000080)={0x0, 0xdfffffff, 0x1000, 0x5, 0x1}, 0x20) 124.153417ms ago: executing program 5 (id=2132): r0 = socket(0xa, 0x5, 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r1, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x4) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x70bd31, 0x0, {{@in6=@loopback, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xc, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x407ffffffffffe, 0x800000000000002}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in=@local, 0x0, 0x3c}, 0x2, @in=@local, 0x6, 0x4, 0x3}]}]}, 0xfc}}, 0x0) sendto$inet6(r0, &(0x7f0000000040)='\x00', 0x1, 0x44004, &(0x7f0000000100)={0xa, 0x4e24, 0xb, @loopback, 0xc5f}, 0x1c) 38.940129ms ago: executing program 3 (id=2123): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x2000001, 0x12, r2, 0x0) symlinkat(0x0, 0xffffffffffffffff, 0x0) 15.054949ms ago: executing program 3 (id=2124): r0 = fsopen(&(0x7f0000000000)='autofs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000240)='\xa8\xaa\xda\xa8\xde', &(0x7f0000000100)='\xb8\x00\x00\x00\x00\x00\x00\x00$\x00', 0x0) fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f00000005c0)='\x00H\xeb', 0x0, r0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f00000003c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='kfree\x00', r1}, 0x18) close(r0) 0s ago: executing program 4 (id=2125): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000810018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x5, 0x4, 0x4, 0x3}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10) nanosleep(0x0, 0x0) kernel console output (not intermixed with test programs): 04'. [ 45.622053][ T3714] syz.3.102 uses obsolete (PF_INET,SOCK_PACKET) [ 45.718297][ T3718] hub 2-0:1.0: USB hub found [ 45.723599][ T3718] hub 2-0:1.0: 8 ports detected [ 45.827707][ T3729] Zero length message leads to an empty skb [ 45.863161][ T3733] netlink: 24 bytes leftover after parsing attributes in process `syz.3.111'. [ 45.917227][ T3733] IPVS: Error connecting to the multicast addr [ 45.999269][ T3739] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 46.118304][ T3745] GUP no longer grows the stack in syz.1.117 (3745): 200000004000-20000000a000 (200000002000) [ 46.131829][ T3745] CPU: 1 UID: 0 PID: 3745 Comm: syz.1.117 Not tainted syzkaller #0 PREEMPT(voluntary) [ 46.131867][ T3745] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 46.131884][ T3745] Call Trace: [ 46.131894][ T3745] [ 46.131906][ T3745] __dump_stack+0x1d/0x30 [ 46.131945][ T3745] dump_stack_lvl+0xe8/0x140 [ 46.131972][ T3745] dump_stack+0x15/0x1b [ 46.131995][ T3745] __get_user_pages+0x198d/0x1fa0 [ 46.132105][ T3745] ? __rcu_read_unlock+0x4f/0x70 [ 46.132130][ T3745] get_user_pages_remote+0x1d5/0x6d0 [ 46.132160][ T3745] __access_remote_vm+0x15c/0x590 [ 46.132200][ T3745] access_remote_vm+0x32/0x40 [ 46.132260][ T3745] proc_pid_cmdline_read+0x32b/0x6c0 [ 46.132325][ T3745] ? __pfx_proc_pid_cmdline_read+0x10/0x10 [ 46.132362][ T3745] vfs_readv+0x3f8/0x690 [ 46.132418][ T3745] __x64_sys_preadv+0xfd/0x1c0 [ 46.132448][ T3745] x64_sys_call+0x282a/0x2ff0 [ 46.132861][ T3745] do_syscall_64+0xd2/0x200 [ 46.132966][ T3745] ? arch_exit_to_user_mode_prepare+0x27/0x80 [ 46.132992][ T3745] ? irqentry_exit_to_user_mode+0x7e/0xa0 [ 46.133092][ T3745] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 46.133192][ T3745] RIP: 0033:0x7fa35262eec9 [ 46.133212][ T3745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 46.133235][ T3745] RSP: 002b:00007fa351097038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 46.133259][ T3745] RAX: ffffffffffffffda RBX: 00007fa352885fa0 RCX: 00007fa35262eec9 [ 46.133276][ T3745] RDX: 0000000000000001 RSI: 0000200000000040 RDI: 0000000000000003 [ 46.133353][ T3745] RBP: 00007fa3526b1f91 R08: 0000000000000000 R09: 0000000000000000 [ 46.133369][ T3745] R10: 0000000000000300 R11: 0000000000000246 R12: 0000000000000000 [ 46.133384][ T3745] R13: 00007fa352886038 R14: 00007fa352885fa0 R15: 00007ffd88adb688 [ 46.133407][ T3745] [ 46.445496][ T3751] loop3: detected capacity change from 0 to 1024 [ 46.470943][ T3751] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 46.486096][ T3751] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 46.514825][ T3751] JBD2: no valid journal superblock found [ 46.524947][ T3751] EXT4-fs (loop3): Could not load journal inode [ 46.541753][ T29] kauditd_printk_skb: 161 callbacks suppressed [ 46.541774][ T29] audit: type=1326 audit(1759193638.762:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3752 comm="syz.0.121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa77051eec9 code=0x7ffc0000 [ 46.593230][ T29] audit: type=1326 audit(1759193638.762:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3752 comm="syz.0.121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa77051eec9 code=0x7ffc0000 [ 46.629498][ T29] audit: type=1326 audit(1759193638.762:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3752 comm="syz.0.121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7fa77051eec9 code=0x7ffc0000 [ 46.669667][ T29] audit: type=1326 audit(1759193638.762:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3752 comm="syz.0.121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa77051eec9 code=0x7ffc0000 [ 46.707740][ T29] audit: type=1326 audit(1759193638.762:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3752 comm="syz.0.121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=76 compat=0 ip=0x7fa77051eec9 code=0x7ffc0000 [ 46.749523][ T29] audit: type=1326 audit(1759193638.762:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3752 comm="syz.0.121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa77051eec9 code=0x7ffc0000 [ 46.783477][ T29] audit: type=1326 audit(1759193638.782:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3752 comm="syz.0.121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa77051eec9 code=0x7ffc0000 [ 46.878398][ T3761] netlink: 4 bytes leftover after parsing attributes in process `syz.3.126'. [ 46.912971][ T29] audit: type=1400 audit(1759193638.892:259): avc: denied { setopt } for pid=3754 comm="syz.1.122" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 46.942015][ T29] audit: type=1400 audit(1759193638.892:260): avc: denied { write } for pid=3754 comm="syz.1.122" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 47.044554][ T29] audit: type=1400 audit(1759193639.132:261): avc: denied { kexec_image_load } for pid=3764 comm="syz.4.125" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1 [ 47.133476][ T3772] loop0: detected capacity change from 0 to 128 [ 47.609519][ T3807] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 47.609519][ T3807] program syz.0.148 not setting count and/or reply_len properly [ 48.130725][ T3816] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 48.159658][ T3816] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 48.308684][ T3827] program syz.0.149 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 48.350673][ T3829] loop4: detected capacity change from 0 to 512 [ 48.380120][ T3829] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.157: casefold flag without casefold feature [ 48.427616][ T3829] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.157: couldn't read orphan inode 15 (err -117) [ 48.449906][ T3829] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 48.693235][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.812434][ T3851] netlink: 104 bytes leftover after parsing attributes in process `syz.3.165'. [ 48.896849][ T3857] netlink: 40 bytes leftover after parsing attributes in process `syz.3.169'. [ 49.037252][ T3866] SELinux: Context system_u:object is not valid (left unmapped). [ 49.296935][ T3882] netlink: 76 bytes leftover after parsing attributes in process `syz.0.181'. [ 49.436444][ T3892] random: crng reseeded on system resumption [ 49.628168][ T3904] netlink: 2 bytes leftover after parsing attributes in process `syz.4.191'. [ 49.702747][ T3909] netlink: 276 bytes leftover after parsing attributes in process `syz.4.194'. [ 49.739849][ T3909] netlink: 276 bytes leftover after parsing attributes in process `syz.4.194'. [ 49.871491][ T3919] netlink: 24 bytes leftover after parsing attributes in process `syz.0.198'. [ 49.972154][ T3923] loop4: detected capacity change from 0 to 1024 [ 50.007204][ T3923] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 50.020218][ T3923] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 50.059462][ T3923] JBD2: no valid journal superblock found [ 50.072080][ T3923] EXT4-fs (loop4): Could not load journal inode [ 50.370106][ T3947] Illegal XDP return value 510487150 on prog (id 131) dev N/A, expect packet loss! [ 50.836748][ T3979] sd 0:0:1:0: device reset [ 51.024929][ T3988] loop4: detected capacity change from 0 to 1024 [ 51.090983][ T3988] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 51.185674][ T10] IPVS: starting estimator thread 0... [ 51.199296][ T3995] netlink: 16 bytes leftover after parsing attributes in process `syz.3.231'. [ 51.254709][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.298709][ T3998] IPVS: using max 2256 ests per chain, 112800 per kthread [ 51.568437][ T4014] openvswitch: netlink: Message has 6 unknown bytes. [ 51.707180][ T29] kauditd_printk_skb: 66 callbacks suppressed [ 51.707198][ T29] audit: type=1326 audit(1759193643.922:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4020 comm="syz.4.241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 51.798849][ T29] audit: type=1326 audit(1759193643.982:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4020 comm="syz.4.241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 51.845325][ T29] audit: type=1326 audit(1759193643.982:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4020 comm="syz.4.241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 51.883249][ T29] audit: type=1326 audit(1759193643.982:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4020 comm="syz.4.241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 51.917300][ T29] audit: type=1326 audit(1759193643.982:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4020 comm="syz.4.241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 51.954756][ T29] audit: type=1326 audit(1759193643.982:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4020 comm="syz.4.241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 51.993523][ T29] audit: type=1326 audit(1759193643.982:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4020 comm="syz.4.241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 52.030747][ T29] audit: type=1326 audit(1759193643.982:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4020 comm="syz.4.241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 52.063904][ T29] audit: type=1326 audit(1759193643.982:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4020 comm="syz.4.241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 52.099377][ T29] audit: type=1326 audit(1759193643.982:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4020 comm="syz.4.241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=150 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 52.118508][ T4027] serio: Serial port ttyS3 [ 52.475810][ T4046] SELinux: policydb version 0 does not match my version range 15-35 [ 52.518329][ T4046] SELinux: failed to load policy [ 52.747831][ T4058] loop3: detected capacity change from 0 to 1024 [ 52.790835][ T4058] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 52.805381][ T4058] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 52.848546][ T4058] JBD2: no valid journal superblock found [ 52.855814][ T4058] EXT4-fs (loop3): Could not load journal inode [ 52.912338][ T4058] SELinux: security_context_str_to_sid (-Xܘ7.H\ %u@) failed with errno=-22 [ 52.951624][ T4065] netlink: 'syz.0.261': attribute type 3 has an invalid length. [ 53.512129][ T4099] netlink: 132 bytes leftover after parsing attributes in process `wޡ'. [ 53.612279][ T4106] SELinux: Context A is not valid (left unmapped). [ 53.716640][ T4116] loop0: detected capacity change from 0 to 164 [ 53.738676][ T4116] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 53.752970][ T4116] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 53.827542][ T4116] Symlink component flag not implemented [ 53.834298][ T4116] Symlink component flag not implemented [ 53.863075][ T4116] Symlink component flag not implemented (7) [ 53.872635][ T4116] Symlink component flag not implemented (116) [ 53.937996][ T4127] netlink: 'wޡ': attribute type 1 has an invalid length. [ 54.288642][ T10] IPVS: starting estimator thread 0... [ 54.378447][ T4157] IPVS: using max 2304 ests per chain, 115200 per kthread [ 54.478820][ T4167] IPVS: stopping backup sync thread 4168 ... [ 54.576956][ T4164] loop1: detected capacity change from 0 to 8192 [ 55.237415][ T4186] netlink: 'syz.0.317': attribute type 3 has an invalid length. [ 55.442149][ T2955] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 55.455123][ T4196] netlink: '+}[@': attribute type 3 has an invalid length. [ 55.469851][ T2955] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 55.579648][ T4205] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 55.873537][ T4211] netlink: 8 bytes leftover after parsing attributes in process `syz.3.326'. [ 56.034122][ T4214] rdma_op ffff888102377d80 conn xmit_rdma 0000000000000000 [ 56.357701][ T4227] loop0: detected capacity change from 0 to 512 [ 56.392174][ T4230] SELinux: failed to load policy [ 56.421520][ T4227] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 56.526191][ T4227] ext4 filesystem being mounted at /91/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 56.631097][ T4237] ipvlan2: entered promiscuous mode [ 56.656854][ T4237] bridge0: port 3(ipvlan2) entered blocking state [ 56.668737][ T4237] bridge0: port 3(ipvlan2) entered disabled state [ 56.694303][ T4237] ipvlan2: entered allmulticast mode [ 56.703075][ T4237] bridge0: entered allmulticast mode [ 56.721599][ T4237] ipvlan2: left allmulticast mode [ 56.727159][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 56.730928][ T4237] bridge0: left allmulticast mode [ 56.785460][ T29] kauditd_printk_skb: 109 callbacks suppressed [ 56.785477][ T29] audit: type=1400 audit(1759193649.002:447): avc: denied { map } for pid=4242 comm="syz.0.340" path="socket:[6943]" dev="sockfs" ino=6943 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 56.826891][ T29] audit: type=1400 audit(1759193649.002:448): avc: denied { read } for pid=4242 comm="syz.0.340" path="socket:[6943]" dev="sockfs" ino=6943 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 57.034406][ T29] audit: type=1326 audit(1759193649.232:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4254 comm="syz.0.345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa77051eec9 code=0x7ffc0000 [ 57.069005][ T29] audit: type=1326 audit(1759193649.232:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4254 comm="syz.0.345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7fa77051eec9 code=0x7ffc0000 [ 57.103126][ T29] audit: type=1326 audit(1759193649.232:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4254 comm="syz.0.345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa77051eec9 code=0x7ffc0000 [ 57.209426][ T4263] loop0: detected capacity change from 0 to 2048 [ 57.282224][ T29] audit: type=1400 audit(1759193649.332:452): avc: denied { create } for pid=4261 comm="syz.3.349" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 57.313226][ T29] audit: type=1400 audit(1759193649.332:453): avc: denied { bind } for pid=4261 comm="syz.3.349" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 57.341673][ T29] audit: type=1400 audit(1759193649.332:454): avc: denied { listen } for pid=4261 comm="syz.3.349" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 57.369229][ T29] audit: type=1400 audit(1759193649.332:455): avc: denied { accept } for pid=4261 comm="syz.3.349" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 57.608529][ T29] audit: type=1400 audit(1759193649.742:456): avc: denied { append } for pid=4271 comm="syz.0.354" name="001" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 57.764701][ T1796] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 57.900235][ T1796] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 57.994423][ T1796] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 58.117483][ T1796] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 58.272261][ T1796] bridge_slave_1: left allmulticast mode [ 58.279864][ T1796] bridge_slave_1: left promiscuous mode [ 58.293233][ T1796] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.309405][ T1796] bridge_slave_0: left allmulticast mode [ 58.316782][ T1796] bridge_slave_0: left promiscuous mode [ 58.329607][ T1796] bridge0: port 1(bridge_slave_0) entered disabled state [ 58.565089][ T1796] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 58.592323][ T1796] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 58.630293][ T1796] bond0 (unregistering): Released all slaves [ 58.734306][ T1796] hsr_slave_0: left promiscuous mode [ 58.741969][ T4312] vhci_hcd: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 58.787042][ T1796] hsr_slave_1: left promiscuous mode [ 58.814430][ T1796] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 58.827137][ T1796] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 58.895062][ T4315] SELinux: Context system_u:object_r:wireless_device_t:s0 is not valid (left unmapped). [ 58.935829][ T1796] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 58.951409][ T1796] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 59.020081][ T1796] veth1_macvtap: left promiscuous mode [ 59.049638][ T1796] veth0_macvtap: left promiscuous mode [ 59.069316][ T1796] veth1_vlan: left promiscuous mode [ 59.097473][ T1796] veth0_vlan: left promiscuous mode [ 59.533778][ T1796] team0 (unregistering): Port device team_slave_1 removed [ 59.569067][ T1796] team0 (unregistering): Port device team_slave_0 removed [ 59.772842][ T4281] chnl_net:caif_netlink_parms(): no params data found [ 59.871640][ T4338] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 59.928872][ T4338] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 60.066398][ T4281] bridge0: port 1(bridge_slave_0) entered blocking state [ 60.075725][ T4281] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.117824][ T4281] bridge_slave_0: entered allmulticast mode [ 60.130906][ T4281] bridge_slave_0: entered promiscuous mode [ 60.145621][ T4281] bridge0: port 2(bridge_slave_1) entered blocking state [ 60.158059][ T4281] bridge0: port 2(bridge_slave_1) entered disabled state [ 60.197021][ T4281] bridge_slave_1: entered allmulticast mode [ 60.210905][ T4281] bridge_slave_1: entered promiscuous mode [ 60.251427][ T4281] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 60.277625][ T4281] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 60.302253][ T4350] netlink: 4 bytes leftover after parsing attributes in process `syz.0.381'. [ 60.312996][ T4352] loop3: detected capacity change from 0 to 2048 [ 60.318190][ T4350] bridge0: entered promiscuous mode [ 60.335952][ T4350] bridge0: port 3(macvlan2) entered blocking state [ 60.342537][ T4352] EXT4-fs (loop3): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 60.346253][ T4350] bridge0: port 3(macvlan2) entered disabled state [ 60.372554][ T4350] macvlan2: entered allmulticast mode [ 60.379118][ T4350] bridge0: entered allmulticast mode [ 60.388932][ T4350] macvlan2: left allmulticast mode [ 60.398601][ T4350] bridge0: left allmulticast mode [ 60.411742][ T4350] bridge0: left promiscuous mode [ 60.412641][ T4357] loop4: detected capacity change from 0 to 1024 [ 60.431091][ T4357] ext4: Unknown parameter 'pcr' [ 60.432535][ T3304] EXT4-fs (loop3): unmounting filesystem 00000800-0000-0000-0000-000000000000. [ 60.507229][ T4281] team0: Port device team_slave_0 added [ 60.519687][ T4281] team0: Port device team_slave_1 added [ 60.541939][ T4359] syz.3.384 (4359) used greatest stack depth: 9752 bytes left [ 60.595786][ T4281] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 60.604030][ T4281] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 60.644507][ T4281] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 60.671921][ T4281] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 60.685009][ T4281] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 60.718301][ T4281] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 60.827692][ T4281] hsr_slave_0: entered promiscuous mode [ 60.844041][ T4281] hsr_slave_1: entered promiscuous mode [ 60.853943][ T4281] debugfs: 'hsr0' already exists in 'hsr' [ 60.861158][ T4281] Cannot create hsr debugfs directory [ 60.899460][ T4383] loop0: detected capacity change from 0 to 512 [ 60.951660][ T4383] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 60.983474][ T4383] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 61.074684][ T4281] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 61.090893][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 61.093407][ T4281] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 61.119563][ T4281] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 61.140303][ T4281] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 61.225055][ T4281] 8021q: adding VLAN 0 to HW filter on device bond0 [ 61.247907][ T4410] loop3: detected capacity change from 0 to 128 [ 61.258316][ T4281] 8021q: adding VLAN 0 to HW filter on device team0 [ 61.276509][ T113] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.287439][ T113] bridge0: port 1(bridge_slave_0) entered forwarding state [ 61.306789][ T4410] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 61.325840][ T4410] ext4 filesystem being mounted at /97/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 61.387298][ T37] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.397799][ T37] bridge0: port 2(bridge_slave_1) entered forwarding state [ 61.441960][ T3304] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 61.537058][ T4419] loop3: detected capacity change from 0 to 512 [ 61.554495][ T4281] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 61.571052][ T4419] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.404: bg 0: block 5: invalid block bitmap [ 61.601576][ T4419] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 61.624205][ T4419] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.404: invalid indirect mapped block 3 (level 2) [ 61.651976][ T4419] EXT4-fs (loop3): 2 truncates cleaned up [ 61.662793][ T4419] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 61.799116][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 61.881062][ T29] kauditd_printk_skb: 68 callbacks suppressed [ 61.881078][ T29] audit: type=1326 audit(1759193654.112:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4439 comm="syz.4.409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 62.015966][ T29] audit: type=1326 audit(1759193654.162:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4439 comm="syz.4.409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 62.051068][ T29] audit: type=1326 audit(1759193654.162:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4439 comm="syz.4.409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 62.090381][ T29] audit: type=1326 audit(1759193654.162:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4439 comm="syz.4.409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 62.125744][ T29] audit: type=1326 audit(1759193654.162:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4439 comm="syz.4.409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 62.164291][ T29] audit: type=1326 audit(1759193654.162:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4439 comm="syz.4.409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 62.200142][ T29] audit: type=1326 audit(1759193654.162:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4439 comm="syz.4.409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 62.236732][ T29] audit: type=1326 audit(1759193654.162:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4439 comm="syz.4.409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 62.271831][ T29] audit: type=1326 audit(1759193654.162:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4439 comm="syz.4.409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 62.310846][ T29] audit: type=1326 audit(1759193654.162:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4439 comm="syz.4.409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 62.484662][ T4465] loop4: detected capacity change from 0 to 128 [ 62.504509][ T4281] veth0_vlan: entered promiscuous mode [ 62.531612][ T4281] veth1_vlan: entered promiscuous mode [ 62.594990][ T4281] veth0_macvtap: entered promiscuous mode [ 62.654374][ T4281] veth1_macvtap: entered promiscuous mode [ 62.698791][ T3468] IPVS: starting estimator thread 0... [ 62.723598][ T4281] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 62.760878][ T4281] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 62.802938][ T170] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.818413][ T4479] IPVS: using max 2304 ests per chain, 115200 per kthread [ 62.837084][ T4486] loop1: detected capacity change from 0 to 1024 [ 62.843887][ T170] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.871386][ T1796] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.889514][ T4486] ext4: Unknown parameter 'pcr' [ 62.933651][ T1796] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.277374][ T4513] loop1: detected capacity change from 0 to 128 [ 63.417818][ T4523] loop3: detected capacity change from 0 to 1024 [ 63.435532][ T4524] loop5: detected capacity change from 0 to 1024 [ 63.454493][ T4523] EXT4-fs: Ignoring removed orlov option [ 63.455845][ T4522] loop0: detected capacity change from 0 to 2048 [ 63.468149][ T4524] ext4: Unknown parameter 'pcr' [ 63.485764][ T4523] EXT4-fs: Ignoring removed nobh option [ 63.493120][ T4523] EXT4-fs: Ignoring removed bh option [ 63.533285][ T4529] loop4: detected capacity change from 0 to 512 [ 63.547621][ T4522] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 63.580342][ T4529] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 63.613896][ T4523] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 63.626602][ T4529] ext4 filesystem being mounted at /95/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 63.664285][ T4523] EXT4-fs error (device loop3): mb_free_blocks:2017: group 0, inode 18: block 145:freeing already freed block (bit 9); block bitmap corrupt. [ 63.664378][ T3302] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set [ 63.751099][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 63.757476][ T3302] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 63.803129][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 63.875522][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 63.890869][ T4551] netlink: 8 bytes leftover after parsing attributes in process `syz.3.454'. [ 63.915079][ T4551] batadv_slave_0: entered promiscuous mode [ 63.967493][ T4551] batadv_slave_1: entered promiscuous mode [ 64.013683][ T4551] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 64.030972][ T4551] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 64.074652][ T4568] loop0: detected capacity change from 0 to 2048 [ 64.087267][ T4557] netlink: 28 bytes leftover after parsing attributes in process `syz.4.457'. [ 64.099203][ T4557] netlink: 28 bytes leftover after parsing attributes in process `syz.4.457'. [ 64.133777][ T4568] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 64.263774][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 64.935627][ T4612] netlink: 36 bytes leftover after parsing attributes in process `syz.5.481'. [ 65.010970][ T4608] syz.4.483 (4608) used greatest stack depth: 9288 bytes left [ 65.050193][ T4614] SELinux: Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped). [ 65.102163][ T4616] netlink: 3 bytes leftover after parsing attributes in process `syz.5.485'. [ 65.163165][ T4616] batadv1: entered promiscuous mode [ 65.172007][ T4616] batadv1: entered allmulticast mode [ 65.356189][ T4637] IPv6: NLM_F_CREATE should be specified when creating new route [ 65.390998][ T4640] netlink: 8 bytes leftover after parsing attributes in process `syz.1.495'. [ 65.463647][ T4652] sd 0:0:1:0: device reset [ 65.463757][ T4649] loop5: detected capacity change from 0 to 512 [ 65.510939][ T4649] EXT4-fs: Ignoring removed nobh option [ 65.544651][ T4649] EXT4-fs (loop5): failed to initialize system zone (-117) [ 65.560885][ T4649] EXT4-fs (loop5): mount failed [ 65.651131][ T4666] loop4: detected capacity change from 0 to 512 [ 65.659938][ T4666] EXT4-fs: Ignoring removed i_version option [ 65.674039][ T4666] EXT4-fs: quotafile must be on filesystem root [ 65.785208][ T4677] netlink: 'syz.5.514': attribute type 298 has an invalid length. [ 65.884744][ T4687] loop1: detected capacity change from 0 to 128 [ 65.906554][ T4687] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 65.931002][ T4687] ext4 filesystem being mounted at /133/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 65.950227][ T4687] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 66.051350][ T4702] netlink: 16 bytes leftover after parsing attributes in process `syz.4.525'. [ 66.209606][ T4716] loop5: detected capacity change from 0 to 128 [ 66.234302][ T4711] syz.5.529: attempt to access beyond end of device [ 66.234302][ T4711] loop5: rw=0, sector=2072, nr_sectors = 1 limit=128 [ 66.303042][ T4723] netlink: 8 bytes leftover after parsing attributes in process `syz.4.533'. [ 66.336311][ T4723] batadv_slave_0: entered promiscuous mode [ 66.357547][ T4723] batadv_slave_1: entered promiscuous mode [ 66.366801][ T4723] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 66.380347][ T4723] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 66.426016][ T4723] debugfs: 'hsr1' already exists in 'hsr' [ 66.433546][ T4723] Cannot create hsr debugfs directory [ 66.545624][ T4740] netlink: 16 bytes leftover after parsing attributes in process `syz.1.542'. [ 66.613031][ T4748] loop1: detected capacity change from 0 to 128 [ 66.644144][ T4748] syz.1.545: attempt to access beyond end of device [ 66.644144][ T4748] loop1: rw=0, sector=2072, nr_sectors = 1 limit=128 [ 66.684398][ T4754] netlink: 28 bytes leftover after parsing attributes in process `syz.5.549'. [ 66.819785][ T4766] loop0: detected capacity change from 0 to 128 [ 66.868785][ T4766] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 66.871270][ T4773] netlink: 'syz.1.558': attribute type 298 has an invalid length. [ 66.894790][ T4766] ext4 filesystem being mounted at /144/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 66.928378][ T4766] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 67.084622][ T4789] loop0: detected capacity change from 0 to 512 [ 67.112371][ T4789] EXT4-fs: Ignoring removed i_version option [ 67.132445][ T4789] EXT4-fs: quotafile must be on filesystem root [ 67.200873][ T4799] loop4: detected capacity change from 0 to 128 [ 67.216500][ T4799] syz.4.570: attempt to access beyond end of device [ 67.216500][ T4799] loop4: rw=0, sector=2072, nr_sectors = 1 limit=128 [ 67.272630][ T4806] sd 0:0:1:0: device reset [ 67.321685][ T4808] loop1: detected capacity change from 0 to 512 [ 67.348979][ T4808] EXT4-fs: Ignoring removed nobh option [ 67.371571][ T4808] EXT4-fs (loop1): failed to initialize system zone (-117) [ 67.388562][ T4808] EXT4-fs (loop1): mount failed [ 67.422915][ T29] kauditd_printk_skb: 93 callbacks suppressed [ 67.422933][ T29] audit: type=1326 audit(1759193659.642:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4815 comm="syz.4.578" exe="/root/syz-executor" sig=31 arch=c000003e syscall=39 compat=0 ip=0x7f7c997f5d67 code=0x0 [ 67.425598][ T4821] IPv6: NLM_F_CREATE should be specified when creating new route [ 67.519259][ T4827] loop5: detected capacity change from 0 to 512 [ 67.529407][ T4827] EXT4-fs: Ignoring removed i_version option [ 67.540285][ T4827] EXT4-fs: quotafile must be on filesystem root [ 67.641647][ T4837] batadv1: entered promiscuous mode [ 67.650524][ T4837] batadv1: entered allmulticast mode [ 67.704934][ T4843] loop0: detected capacity change from 0 to 128 [ 67.721510][ T4843] syz.0.588: attempt to access beyond end of device [ 67.721510][ T4843] loop0: rw=0, sector=2072, nr_sectors = 1 limit=128 [ 67.894452][ T29] audit: type=1326 audit(1759193660.112:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4852 comm="syz.5.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f238b0d5d67 code=0x7ffc0000 [ 67.929702][ T29] audit: type=1326 audit(1759193660.112:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4852 comm="syz.5.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f238b07af79 code=0x7ffc0000 [ 67.965505][ T29] audit: type=1326 audit(1759193660.112:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4852 comm="syz.5.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f238b0d5d67 code=0x7ffc0000 [ 67.998314][ T29] audit: type=1326 audit(1759193660.112:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4852 comm="syz.5.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f238b07af79 code=0x7ffc0000 [ 68.029505][ T29] audit: type=1326 audit(1759193660.112:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4852 comm="syz.5.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f238b0deec9 code=0x7ffc0000 [ 68.069714][ T29] audit: type=1326 audit(1759193660.112:634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4852 comm="syz.5.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f238b0deec9 code=0x7ffc0000 [ 68.103047][ T29] audit: type=1400 audit(1759193660.292:635): avc: denied { mounton } for pid=4854 comm="syz.1.598" path="/150/file0" dev="tmpfs" ino=786 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0" [ 68.139773][ T29] audit: type=1326 audit(1759193660.332:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4852 comm="syz.5.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=79 compat=0 ip=0x7f238b0deec9 code=0x7ffc0000 [ 68.234659][ T29] audit: type=1326 audit(1759193660.332:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4852 comm="syz.5.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f238b0deec9 code=0x7ffc0000 [ 68.493676][ T4882] loop1: detected capacity change from 0 to 2048 [ 68.558770][ T4882] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 68.700794][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.539405][ T4959] loop4: detected capacity change from 0 to 512 [ 69.554682][ T4959] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 69.575286][ T4959] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 69.619535][ T4959] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 11. Delete some EAs or run e2fsck. [ 69.649418][ T4959] EXT4-fs (loop4): 1 truncate cleaned up [ 69.657142][ T4959] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 69.764227][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.951069][ T4987] __nla_validate_parse: 4 callbacks suppressed [ 69.951090][ T4987] netlink: 20 bytes leftover after parsing attributes in process `syz.0.658'. [ 70.027835][ T4974] loop5: detected capacity change from 0 to 8192 [ 70.204958][ T5002] netlink: 28 bytes leftover after parsing attributes in process `syz.5.664'. [ 70.246476][ T5002] netem: change failed [ 70.281394][ T5004] loop0: detected capacity change from 0 to 512 [ 70.369603][ T5004] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 70.379822][ T5004] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 70.418364][ T5004] System zones: 0-1, 15-15, 18-18, 34-34 [ 70.449889][ T5004] EXT4-fs (loop0): orphan cleanup on readonly fs [ 70.458539][ T5004] EXT4-fs warning (device loop0): ext4_enable_quotas:7178: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 70.466652][ T5016] netlink: 8 bytes leftover after parsing attributes in process `syz.4.671'. [ 70.478860][ T5004] EXT4-fs (loop0): Cannot turn on quotas: error -22 [ 70.504148][ T5004] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.666: bg 0: block 40: padding at end of block bitmap is not set [ 70.542837][ T5004] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 70.583686][ T5004] EXT4-fs (loop0): 1 truncate cleaned up [ 70.595499][ T5004] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 70.741496][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.764095][ T5026] loop3: detected capacity change from 0 to 512 [ 70.800093][ T5026] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 70.819322][ T5026] EXT4-fs (loop3): orphan cleanup on readonly fs [ 70.853006][ T5026] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #16: comm syz.3.673: corrupted inode contents [ 70.891684][ T5038] loop5: detected capacity change from 0 to 512 [ 70.911288][ T5038] EXT4-fs: Ignoring removed mblk_io_submit option [ 70.923207][ T5038] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 70.939163][ T5026] EXT4-fs (loop3): Remounting filesystem read-only [ 70.950831][ T5026] EXT4-fs (loop3): 1 truncate cleaned up [ 70.957278][ T1796] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 70.973303][ T1796] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 70.996297][ T5038] EXT4-fs (loop5): 1 truncate cleaned up [ 71.008164][ T5038] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 71.030224][ T1796] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started [ 71.049805][ T5026] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 71.071508][ T5050] loop1: detected capacity change from 0 to 1024 [ 71.108944][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.134605][ T5050] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 71.152223][ T5050] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 71.171527][ T5050] JBD2: no valid journal superblock found [ 71.178144][ T5050] EXT4-fs (loop1): Could not load journal inode [ 71.216157][ T5050] SELinux: security_context_str_to_sid (-Xܘ7.H\ %u@) failed with errno=-22 [ 71.291342][ T5057] 9p: Unknown access argument : -22 [ 71.302728][ T5061] dummy0: entered allmulticast mode [ 71.313127][ T5061] dummy0: left allmulticast mode [ 71.746428][ T4281] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.813065][ T5091] sd 0:0:1:0: device reset [ 71.963956][ T5100] capability: warning: `syz.1.709' uses deprecated v2 capabilities in a way that may be insecure [ 72.002059][ T5103] binfmt_misc: register: failed to install interpreter file ./file2 [ 72.278470][ T5122] netlink: 4 bytes leftover after parsing attributes in process `syz.4.718'. [ 72.324030][ T5122] netlink: 32 bytes leftover after parsing attributes in process `syz.4.718'. [ 72.418169][ T5131] netlink: 'syz.0.722': attribute type 1 has an invalid length. [ 72.716736][ T5158] loop5: detected capacity change from 0 to 128 [ 72.728099][ T29] kauditd_printk_skb: 148 callbacks suppressed [ 72.728116][ T29] audit: type=1326 audit(1759193664.952:779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5154 comm="syz.1.734" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa35262eec9 code=0x0 [ 72.793999][ T29] audit: type=1326 audit(1759193665.012:780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5164 comm="syz.4.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 72.835972][ T29] audit: type=1326 audit(1759193665.012:781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5164 comm="syz.4.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 72.871201][ T29] audit: type=1326 audit(1759193665.012:782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5164 comm="syz.4.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 72.966255][ T5172] loop0: detected capacity change from 0 to 512 [ 72.973974][ T29] audit: type=1400 audit(1759193665.172:783): avc: denied { connect } for pid=5166 comm="syz.4.739" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 73.005423][ T29] audit: type=1326 audit(1759193665.212:784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5174 comm="syz.3.742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59be2beec9 code=0x7ffc0000 [ 73.007865][ T5172] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 73.039388][ T29] audit: type=1326 audit(1759193665.212:785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5174 comm="syz.3.742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f59be2beec9 code=0x7ffc0000 [ 73.087682][ T29] audit: type=1326 audit(1759193665.212:786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5174 comm="syz.3.742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59be2beec9 code=0x7ffc0000 [ 73.129200][ T29] audit: type=1326 audit(1759193665.212:787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5174 comm="syz.3.742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59be2beec9 code=0x7ffc0000 [ 73.171612][ T29] audit: type=1326 audit(1759193665.212:788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5174 comm="syz.3.742" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f59be2beec9 code=0x7ffc0000 [ 73.211288][ T5172] EXT4-fs (loop0): 1 truncate cleaned up [ 73.230478][ T5172] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 73.290752][ T5172] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.609383][ T5202] netlink: 104 bytes leftover after parsing attributes in process `syz.0.753'. [ 73.861245][ T5218] loop1: detected capacity change from 0 to 512 [ 73.861901][ T5218] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 73.878229][ T5218] EXT4-fs (loop1): 1 truncate cleaned up [ 73.892500][ T5215] loop4: detected capacity change from 0 to 1024 [ 73.931755][ T5218] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 73.958098][ T5222] netlink: 'syz.0.762': attribute type 3 has an invalid length. [ 73.994045][ T5215] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 74.086066][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.204197][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 74.287623][ T5233] random: crng reseeded on system resumption [ 74.587205][ T5252] SELinux: policydb version 0 does not match my version range 15-35 [ 74.629881][ T5252] SELinux: failed to load policy [ 74.696908][ T5188] syz.5.747 (5188) used greatest stack depth: 7512 bytes left [ 74.755983][ T5259] loop5: detected capacity change from 0 to 512 [ 74.777256][ T5259] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 74.805381][ T5259] EXT4-fs (loop5): 1 truncate cleaned up [ 74.817218][ T5259] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.841415][ T5265] openvswitch: netlink: Message has 6 unknown bytes. [ 74.892988][ T4281] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.986664][ T5275] serio: Serial port ttyS3 [ 75.329101][ T5304] netlink: 12 bytes leftover after parsing attributes in process `syz.0.799'. [ 75.343944][ T5304] netlink: 28 bytes leftover after parsing attributes in process `syz.0.799'. [ 75.355689][ T5304] netlink: 12 bytes leftover after parsing attributes in process `syz.0.799'. [ 75.382691][ T5304] netlink: 28 bytes leftover after parsing attributes in process `syz.0.799'. [ 75.390292][ T5308] ALSA: seq fatal error: cannot create timer (-22) [ 75.398174][ T5304] netlink: 'syz.0.799': attribute type 6 has an invalid length. [ 75.465244][ T5311] IPv6: NLM_F_CREATE should be specified when creating new route [ 75.677890][ T5330] netlink: 4 bytes leftover after parsing attributes in process `syz.5.810'. [ 75.718885][ T5330] netlink: 2 bytes leftover after parsing attributes in process `syz.5.810'. [ 75.799289][ T5340] netlink: 4 bytes leftover after parsing attributes in process `syz.0.815'. [ 75.866221][ T5344] loop3: detected capacity change from 0 to 512 [ 75.891484][ T5344] EXT4-fs error (device loop3): ext4_acquire_dquot:6943: comm syz.3.817: Failed to acquire dquot type 1 [ 75.908054][ T5344] EXT4-fs (loop3): 1 truncate cleaned up [ 75.927918][ T5344] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 75.951342][ T5344] ext4 filesystem being mounted at /158/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 76.034526][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.140349][ T5363] loop3: detected capacity change from 0 to 1024 [ 76.174744][ T5363] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 76.264607][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.730967][ T5387] netlink: 12 bytes leftover after parsing attributes in process `syz.3.833'. [ 77.032878][ T3390] IPVS: starting estimator thread 0... [ 77.128387][ T5416] IPVS: using max 1824 ests per chain, 91200 per kthread [ 77.306793][ T5428] netlink: 2 bytes leftover after parsing attributes in process `syz.3.848'. [ 77.453825][ T5441] netlink: 16 bytes leftover after parsing attributes in process `syz.4.854'. [ 77.567699][ T5446] sd 0:0:1:0: device reset [ 77.866830][ T29] kauditd_printk_skb: 223 callbacks suppressed [ 77.866849][ T29] audit: type=1400 audit(1759193670.082:1010): avc: denied { execute } for pid=5462 comm="syz.3.866" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=11432 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 77.947467][ T29] audit: type=1400 audit(1759193670.162:1011): avc: denied { create } for pid=5465 comm="syz.3.868" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 78.003548][ T29] audit: type=1400 audit(1759193670.222:1012): avc: denied { setopt } for pid=5465 comm="syz.3.868" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 78.079870][ T29] audit: type=1400 audit(1759193670.272:1013): avc: denied { append } for pid=5464 comm="syz.0.867" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 78.115107][ T29] audit: type=1400 audit(1759193670.272:1014): avc: denied { write } for pid=5464 comm="syz.0.867" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 78.146643][ T29] audit: type=1400 audit(1759193670.302:1015): avc: denied { setopt } for pid=5472 comm="syz.5.871" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 78.172485][ T29] audit: type=1400 audit(1759193670.302:1016): avc: denied { write } for pid=5472 comm="syz.5.871" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 78.249805][ T3468] kernel write not supported for file /vcsu (pid: 3468 comm: kworker/1:6) [ 78.294616][ T29] audit: type=1400 audit(1759193670.512:1017): avc: denied { create } for pid=5482 comm="syz.0.874" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 78.327415][ T29] audit: type=1400 audit(1759193670.542:1018): avc: denied { read } for pid=5485 comm="syz.3.876" dev="nsfs" ino=4026532598 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 78.355786][ T29] audit: type=1400 audit(1759193670.542:1019): avc: denied { open } for pid=5485 comm="syz.3.876" path="net:[4026532598]" dev="nsfs" ino=4026532598 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 78.672036][ T5497] SELinux: failed to load policy [ 78.707990][ T5507] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address [ 78.757354][ T5507] bond1: (slave wireguard0): Error -95 calling set_mac_address [ 79.066604][ T5533] loop3: detected capacity change from 0 to 512 [ 79.099792][ T5535] vhci_hcd: invalid port number 11 [ 79.107758][ T5535] vhci_hcd: default hub control req: 6031 v0000 i000b l2 [ 79.139695][ T5533] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 79.164394][ T5533] ext4 filesystem being mounted at /185/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 79.190958][ T5544] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 79.256999][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 79.273416][ T5553] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 79.316164][ T5557] loop5: detected capacity change from 0 to 1024 [ 79.339751][ T5561] SELinux: Context @ is not valid (left unmapped). [ 79.395903][ T5563] SELinux: failed to load policy [ 79.446031][ T5557] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 79.474477][ T5570] pimreg: entered allmulticast mode [ 79.486013][ T5573] macvtap0: refused to change device tx_queue_len [ 79.500853][ T5570] pimreg: left allmulticast mode [ 79.675048][ T4281] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 79.834615][ T5599] loop3: detected capacity change from 0 to 1024 [ 79.851875][ T5599] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 79.911685][ T5599] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 79.926643][ T5613] program syz.5.927 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 80.025240][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 80.332667][ T5652] syz.3.946 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 80.422473][ T5658] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=5658 comm=syz.0.949 [ 80.548220][ T5670] __nla_validate_parse: 10 callbacks suppressed [ 80.556691][ T5670] netlink: 36 bytes leftover after parsing attributes in process `syz.3.954'. [ 80.580340][ T5670] netlink: 36 bytes leftover after parsing attributes in process `syz.3.954'. [ 80.731199][ T5679] loop3: detected capacity change from 0 to 2048 [ 80.770414][ T5679] loop3: p1 p3 p4 [ 80.780191][ T5679] loop3: p4 size 589824 extends beyond EOD, truncated [ 80.877942][ T5697] 9pnet: p9_errstr2errno: server reported unknown error  [ 80.970795][ T5707] netlink: 'syz.5.970': attribute type 1 has an invalid length. [ 81.041708][ T5715] loop5: detected capacity change from 0 to 512 [ 81.053780][ T5715] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 81.079454][ T5715] EXT4-fs (loop5): 1 truncate cleaned up [ 81.091423][ T5715] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 81.196674][ T4281] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.271444][ T5735] macvlan1: entered promiscuous mode [ 81.309603][ T5735] ipvlan0: entered promiscuous mode [ 81.338083][ T5735] ipvlan0: left promiscuous mode [ 81.359113][ T5735] macvlan1: left promiscuous mode [ 81.482727][ T5749] netlink: 4380 bytes leftover after parsing attributes in process `syz.0.991'. [ 81.516404][ T5751] netlink: 8 bytes leftover after parsing attributes in process `syz.3.992'. [ 81.533007][ T5749] netlink: 4380 bytes leftover after parsing attributes in process `syz.0.991'. [ 82.472481][ T5813] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1017'. [ 82.486500][ T5813] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1017'. [ 82.499887][ T5813] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1017'. [ 82.530497][ T5814] SELinux: policydb version -299076691 does not match my version range 15-35 [ 82.571255][ T5813] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1017'. [ 82.578803][ T5814] SELinux: failed to load policy [ 82.585137][ T5813] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1017'. [ 82.700724][ T5825] loop0: detected capacity change from 0 to 1024 [ 82.816609][ T5825] EXT4-fs: inline encryption not supported [ 82.883518][ T5825] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 82.961455][ T29] kauditd_printk_skb: 152 callbacks suppressed [ 82.961474][ T29] audit: type=1400 audit(1759193675.182:1172): avc: denied { ioctl } for pid=5824 comm="syz.0.1023" path="/255/file1/file1" dev="loop0" ino=15 ioctlcmd=0x662a scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 83.048306][ T29] audit: type=1326 audit(1759193675.242:1173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5843 comm="syz.5.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f238b0deec9 code=0x7ffc0000 [ 83.084739][ T29] audit: type=1326 audit(1759193675.242:1174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5843 comm="syz.5.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f238b0deec9 code=0x7ffc0000 [ 83.117589][ T29] audit: type=1326 audit(1759193675.242:1175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5843 comm="syz.5.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f238b0deec9 code=0x7ffc0000 [ 83.155321][ T29] audit: type=1326 audit(1759193675.242:1176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5843 comm="syz.5.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f238b0deec9 code=0x7ffc0000 [ 83.187433][ T29] audit: type=1326 audit(1759193675.242:1177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5843 comm="syz.5.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f238b0deec9 code=0x7ffc0000 [ 83.217596][ T29] audit: type=1326 audit(1759193675.242:1178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5843 comm="syz.5.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f238b0deec9 code=0x7ffc0000 [ 83.251016][ T29] audit: type=1326 audit(1759193675.242:1179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5843 comm="syz.5.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f238b0deec9 code=0x7ffc0000 [ 83.290672][ T29] audit: type=1326 audit(1759193675.242:1180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5843 comm="syz.5.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f238b0deec9 code=0x7ffc0000 [ 83.324950][ T29] audit: type=1326 audit(1759193675.242:1181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5843 comm="syz.5.1030" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f238b0deec9 code=0x7ffc0000 [ 83.397767][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.471658][ T5849] IPVS: Unknown mcast interface: ipvlan1 [ 83.538169][ T5855] loop3: detected capacity change from 0 to 512 [ 83.597379][ T5855] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 83.631598][ T5855] ext4 filesystem being mounted at /218/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 83.697716][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.804865][ T5878] loop9: detected capacity change from 0 to 7 [ 83.814151][ T5878] Buffer I/O error on dev loop9, logical block 0, async page read [ 83.837748][ T5878] Buffer I/O error on dev loop9, logical block 0, async page read [ 83.850468][ T5878] loop9: unable to read partition table [ 83.860827][ T5878] loop_reread_partitions: partition scan of loop9 () failed (rc=-5) [ 83.887378][ T5882] netlink: 'syz.3.1042': attribute type 7 has an invalid length. [ 85.013361][ T5959] batadv1: entered promiscuous mode [ 85.020551][ T5959] batadv1: entered allmulticast mode [ 85.099048][ T5971] loop3: detected capacity change from 0 to 164 [ 85.117251][ T5971] iso9660: Corrupted directory entry in block 2 of inode 1792 [ 85.184244][ T5976] netlink: 'syz.5.1071': attribute type 29 has an invalid length. [ 85.226087][ T5976] netlink: 'syz.5.1071': attribute type 29 has an invalid length. [ 85.274266][ T5984] process 'syz.3.1075' launched './file0' with NULL argv: empty string added [ 85.327101][ T5988] netdevsim netdevsim1 netdevsim0: entered promiscuous mode [ 85.356771][ T5988] vlan2: entered promiscuous mode [ 85.536793][ T6007] loop3: detected capacity change from 0 to 256 [ 85.555260][ T6007] FAT-fs (loop3): Directory bread(block 259) failed [ 85.587587][ T6007] FAT-fs (loop3): Directory bread(block 259) failed [ 85.609778][ T6007] FAT-fs (loop3): Directory bread(block 259) failed [ 85.626723][ T6007] FAT-fs (loop3): Directory bread(block 259) failed [ 86.077690][ C1] hrtimer: interrupt took 108152 ns [ 86.272028][ T6051] loop5: detected capacity change from 0 to 512 [ 86.282231][ T6051] EXT4-fs: Ignoring removed i_version option [ 86.295834][ T6051] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 86.314466][ T6051] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 86.337134][ T6051] ext4 filesystem being mounted at /130/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 86.358345][ T6051] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #2: comm syz.5.1107: corrupted inode contents [ 86.395455][ T6051] EXT4-fs (loop5): Remounting filesystem read-only [ 86.463898][ T4281] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 86.934014][ T6094] sd 0:0:1:0: device reset [ 87.089065][ T6109] mmap: syz.5.1133 (6109) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 87.663322][ T6153] sch_tbf: peakrate 64 is lower than or equals to rate 17038211371681383082 ! [ 87.807449][ T6161] loop3: detected capacity change from 0 to 2048 [ 87.896756][ T6161] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 87.981326][ T29] kauditd_printk_skb: 115 callbacks suppressed [ 87.981345][ T29] audit: type=1400 audit(1759193680.202:1297): avc: denied { mounton } for pid=6160 comm="syz.3.1155" path="/245/file0/bus" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 88.090189][ T29] audit: type=1400 audit(1759193680.312:1298): avc: denied { rmdir } for pid=3304 comm="syz-executor" name="lost+found" dev="loop3" ino=11 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 88.090648][ T3304] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set [ 88.166529][ T6190] loop5: detected capacity change from 0 to 1024 [ 88.186993][ T3304] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 88.203900][ T6190] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 88.219086][ T6190] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 88.222790][ T29] audit: type=1400 audit(1759193680.442:1299): avc: denied { create } for pid=6189 comm="syz.1.1171" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 88.265314][ T6180] loop0: detected capacity change from 0 to 1024 [ 88.297421][ T6190] JBD2: no valid journal superblock found [ 88.308181][ T6190] EXT4-fs (loop5): Could not load journal inode [ 88.308304][ T29] audit: type=1400 audit(1759193680.502:1300): avc: denied { unlink } for pid=3304 comm="syz-executor" name="file1" dev="loop3" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 88.326674][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 88.354740][ T29] audit: type=1400 audit(1759193680.512:1301): avc: denied { unmount } for pid=3304 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1 [ 88.377891][ T6180] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 88.399714][ T29] audit: type=1400 audit(1759193680.512:1302): avc: denied { unlink } for pid=3304 comm="syz-executor" name="bus" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 88.414886][ T6180] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 88.510304][ T6180] JBD2: no valid journal superblock found [ 88.521897][ T6180] EXT4-fs (loop0): Could not load journal inode [ 88.546575][ T6197] SELinux: policydb version 0 does not match my version range 15-35 [ 88.565391][ T6197] SELinux: failed to load policy [ 88.581995][ T29] audit: type=1400 audit(1759193680.682:1303): avc: denied { write } for pid=6189 comm="syz.1.1171" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1 [ 88.656353][ T6180] SELinux: security_context_str_to_sid (-Xܘ7.H\ %u@) failed with errno=-22 [ 89.093311][ T6210] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 89.111392][ T29] audit: type=1400 audit(1759193681.312:1304): avc: denied { ioctl } for pid=6209 comm="syz.1.1187" path="/dev/raw-gadget" dev="devtmpfs" ino=142 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 89.158986][ T6210] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 89.167190][ T6222] loop5: detected capacity change from 0 to 1024 [ 89.217813][ T6222] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 89.236249][ T6222] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 89.269959][ T6222] JBD2: no valid journal superblock found [ 89.278806][ T6222] EXT4-fs (loop5): Could not load journal inode [ 89.331006][ T6234] __nla_validate_parse: 10 callbacks suppressed [ 89.331026][ T6234] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1191'. [ 89.353754][ T29] audit: type=1400 audit(1759193681.552:1305): avc: denied { create } for pid=6231 comm="syz.4.1189" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 89.433073][ T6234] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1191'. [ 89.457936][ T6234] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1191'. [ 89.490209][ T6234] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1191'. [ 89.569503][ T6240] loop0: detected capacity change from 0 to 2048 [ 89.584960][ T29] audit: type=1400 audit(1759193681.802:1306): avc: denied { read write } for pid=6241 comm="syz.5.1195" name="loop-control" dev="devtmpfs" ino=99 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1 [ 89.646622][ T6240] Alternate GPT is invalid, using primary GPT. [ 89.654977][ T6240] loop0: p1 p2 p3 [ 89.659977][ T6240] loop0: partition table partially beyond EOD, truncated [ 89.672010][ T6244] netlink: 'syz.3.1196': attribute type 12 has an invalid length. [ 89.744305][ T6247] loop5: detected capacity change from 0 to 256 [ 89.976255][ T6261] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1204'. [ 90.057323][ T6261] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address [ 90.076065][ T6261] bond1: (slave wireguard0): Error -95 calling set_mac_address [ 90.180240][ T6272] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 90.235606][ T6276] pimreg: entered allmulticast mode [ 90.265938][ T6276] pimreg: left allmulticast mode [ 90.467308][ T6284] SELinux: failed to load policy [ 90.865908][ T6306] bridge0: entered promiscuous mode [ 90.892705][ T6306] macsec1: entered promiscuous mode [ 90.953646][ T6306] bridge0: port 3(macsec1) entered blocking state [ 90.966756][ T6306] bridge0: port 3(macsec1) entered disabled state [ 90.979797][ T6306] macsec1: entered allmulticast mode [ 90.986424][ T6306] bridge0: entered allmulticast mode [ 91.006707][ T6306] macsec1: left allmulticast mode [ 91.013878][ T6306] bridge0: left allmulticast mode [ 91.029571][ T6306] bridge0: left promiscuous mode [ 91.139237][ T6323] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6323 comm=syz.3.1232 [ 91.236251][ T6332] program syz.4.1236 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 91.735527][ T6375] program syz.0.1255 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 91.891757][ T6392] vhci_hcd: default hub control req: 8013 v0000 i0000 l31125 [ 91.911810][ T6396] loop4: detected capacity change from 0 to 512 [ 91.943990][ T6396] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 91.959731][ T6396] EXT4-fs (loop4): orphan cleanup on readonly fs [ 92.021370][ T6404] rdma_op ffff888124444180 conn xmit_rdma 0000000000000000 [ 92.043853][ T6406] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1268'. [ 92.076298][ T6396] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #16: comm syz.4.1263: corrupted inode contents [ 92.121592][ T6396] EXT4-fs (loop4): Remounting filesystem read-only [ 92.134689][ T6396] EXT4-fs (loop4): 1 truncate cleaned up [ 92.143744][ T5923] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 92.162565][ T5923] EXT4-fs (loop4): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 92.188823][ T5923] EXT4-fs (loop4): Quota write (off=8, len=24) cancelled because transaction is not started [ 92.274430][ T6396] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 92.337138][ T6425] netlink: 'syz.0.1276': attribute type 21 has an invalid length. [ 92.359033][ T6425] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1276'. [ 92.418649][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 92.512022][ T6435] 9pnet: p9_errstr2errno: server reported unknown error @c$ [ 92.532006][ T6440] netlink: 'syz.0.1283': attribute type 30 has an invalid length. [ 92.591238][ T6441] vhci_hcd: invalid port number 11 [ 92.597917][ T6441] vhci_hcd: default hub control req: 6031 v0000 i000b l2 [ 92.834791][ T6451] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1287'. [ 92.889925][ T6451] netem: change failed [ 93.017901][ T29] kauditd_printk_skb: 80 callbacks suppressed [ 93.017918][ T29] audit: type=1326 audit(1759193685.232:1381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6454 comm="syz.0.1288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa77051eec9 code=0x7ffc0000 [ 93.061360][ T29] audit: type=1326 audit(1759193685.232:1382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6454 comm="syz.0.1288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa77051eec9 code=0x7ffc0000 [ 93.097841][ T29] audit: type=1326 audit(1759193685.322:1383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6454 comm="syz.0.1288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa77051d710 code=0x7ffc0000 [ 93.129618][ T29] audit: type=1326 audit(1759193685.322:1384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6454 comm="syz.0.1288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa77051d710 code=0x7ffc0000 [ 93.160936][ T29] audit: type=1326 audit(1759193685.322:1385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6454 comm="syz.0.1288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa77051eec9 code=0x7ffc0000 [ 93.189957][ T29] audit: type=1326 audit(1759193685.322:1386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6454 comm="syz.0.1288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa77051eec9 code=0x7ffc0000 [ 93.238571][ T6461] netlink: 'syz.3.1301': attribute type 3 has an invalid length. [ 93.345241][ T6467] netlink: 'syz.4.1293': attribute type 21 has an invalid length. [ 93.411300][ T6471] loop5: detected capacity change from 0 to 1024 [ 93.433895][ T6471] EXT4-fs (loop5): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 93.438609][ T6467] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1293'. [ 93.450872][ T6475] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1298'. [ 93.492764][ T6471] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 93.592044][ T4281] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 93.690528][ T29] audit: type=1400 audit(1759193685.912:1387): avc: denied { create } for pid=6485 comm="syz.5.1300" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 93.729667][ T29] audit: type=1400 audit(1759193685.912:1388): avc: denied { connect } for pid=6485 comm="syz.5.1300" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 93.776930][ T29] audit: type=1326 audit(1759193685.982:1389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6488 comm="syz.4.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 93.812710][ T29] audit: type=1326 audit(1759193685.982:1390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6488 comm="syz.4.1303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 93.980246][ T6497] loop5: detected capacity change from 0 to 512 [ 94.015921][ T6497] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 94.028060][ T6497] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 94.123742][ T6497] System zones: 0-1, 15-15, 18-18, 34-34 [ 94.131772][ T6497] EXT4-fs (loop5): orphan cleanup on readonly fs [ 94.140066][ T6497] EXT4-fs warning (device loop5): ext4_enable_quotas:7178: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 94.159685][ T6497] EXT4-fs (loop5): Cannot turn on quotas: error -22 [ 94.172959][ T6497] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1317: bg 0: block 40: padding at end of block bitmap is not set [ 94.259952][ T6506] netlink: 'syz.4.1307': attribute type 3 has an invalid length. [ 94.269614][ T6497] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 94.330167][ T6497] EXT4-fs (loop5): 1 truncate cleaned up [ 94.337914][ T6497] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 94.390452][ T6508] __nla_validate_parse: 1 callbacks suppressed [ 94.390472][ T6508] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1308'. [ 94.493886][ T6508] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address [ 94.519451][ T4281] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 94.573592][ T6508] bond1: (slave wireguard0): Error -95 calling set_mac_address [ 94.862858][ T6530] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1318'. [ 94.908837][ T6530] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1318'. [ 95.159504][ T6554] loop1: detected capacity change from 0 to 1024 [ 95.178916][ T6554] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 95.193503][ T6554] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 95.210913][ T6554] JBD2: no valid journal superblock found [ 95.220281][ T6554] EXT4-fs (loop1): Could not load journal inode [ 95.247637][ T6556] loop9: detected capacity change from 0 to 7 [ 95.260656][ T6558] loop4: detected capacity change from 0 to 128 [ 95.282396][ T6556] Buffer I/O error on dev loop9, logical block 0, async page read [ 95.297604][ T6556] Buffer I/O error on dev loop9, logical block 0, async page read [ 95.308341][ T6556] loop9: unable to read partition table [ 95.309014][ T6558] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 95.315887][ T6556] loop_reread_partitions: partition scan of loop9 () failed (rc=-5) [ 95.355191][ T6558] ext4 filesystem being mounted at /265/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 95.444183][ T3306] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 95.494372][ T6569] binfmt_misc: register: failed to install interpreter file ./file2 [ 95.735454][ T6582] loop4: detected capacity change from 0 to 2048 [ 95.755864][ T6586] IPv6: NLM_F_CREATE should be specified when creating new route [ 95.773317][ T6582] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 95.850276][ T6590] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6590 comm=syz.1.1346 [ 95.884882][ T3306] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set [ 95.960848][ T6594] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1348'. [ 95.965639][ T3306] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 95.976921][ T6594] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1348'. [ 96.004251][ T6594] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1348'. [ 96.120851][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 96.135029][ T6594] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1348'. [ 96.148110][ T6594] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1348'. [ 96.159452][ T6594] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1348'. [ 96.202454][ T6602] loop1: detected capacity change from 0 to 1024 [ 96.221987][ T6602] EXT4-fs: inline encryption not supported [ 96.241820][ T6594] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1348'. [ 96.260883][ T6605] SELinux: policydb version -299076691 does not match my version range 15-35 [ 96.276765][ T6602] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 96.307911][ T6605] SELinux: failed to load policy [ 96.550479][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 96.583879][ T6619] IPVS: Error connecting to the multicast addr [ 96.613259][ T6617] loop4: detected capacity change from 0 to 1024 [ 96.639869][ T6617] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 96.657468][ T6617] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 96.729089][ T6617] JBD2: no valid journal superblock found [ 96.736012][ T6617] EXT4-fs (loop4): Could not load journal inode [ 96.794376][ T6624] sd 0:0:1:0: device reset [ 96.818411][ T6625] IPVS: Error connecting to the multicast addr [ 97.241842][ T6659] loop1: detected capacity change from 0 to 1024 [ 97.268002][ T6659] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 97.285732][ T6659] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 97.318269][ T6659] JBD2: no valid journal superblock found [ 97.328031][ T6659] EXT4-fs (loop1): Could not load journal inode [ 97.525823][ T6683] sch_tbf: peakrate 64 is lower than or equals to rate 17038211371681383082 ! [ 97.597996][ T6688] netlink: 'syz.1.1389': attribute type 12 has an invalid length. [ 97.634228][ T6692] loop4: detected capacity change from 0 to 1024 [ 97.644663][ T6692] EXT4-fs: inline encryption not supported [ 97.660912][ T6692] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 97.726122][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 98.089275][ T6703] loop0: detected capacity change from 0 to 256 [ 98.117386][ T29] kauditd_printk_skb: 40 callbacks suppressed [ 98.117405][ T29] audit: type=1326 audit(1759193690.332:1430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6704 comm="syz.4.1406" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7c997feec9 code=0x0 [ 98.120440][ T6706] 9pnet: p9_errstr2errno: server reported unknown error @c$ [ 98.161806][ T6703] FAT-fs (loop0): Directory bread(block 259) failed [ 98.173656][ T6707] loop3: detected capacity change from 0 to 1024 [ 98.190990][ T6707] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 98.205892][ T6707] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 98.221664][ T6703] FAT-fs (loop0): Directory bread(block 259) failed [ 98.221761][ T6707] JBD2: no valid journal superblock found [ 98.232362][ T6703] FAT-fs (loop0): Directory bread(block 259) failed [ 98.241104][ T6707] EXT4-fs (loop3): Could not load journal inode [ 98.250330][ T6703] FAT-fs (loop0): Directory bread(block 259) failed [ 98.298076][ T6707] SELinux: security_context_str_to_sid (-Xܘ7.H\ %u@) failed with errno=-22 [ 98.375907][ T6716] loop0: detected capacity change from 0 to 1024 [ 98.386270][ T6716] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 98.399648][ T6716] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 98.432298][ T29] audit: type=1326 audit(1759193690.642:1431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6713 comm="syz.1.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 98.467537][ T29] audit: type=1326 audit(1759193690.642:1432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6713 comm="syz.1.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 98.478177][ T6714] loop1: detected capacity change from 0 to 164 [ 98.513574][ T29] audit: type=1326 audit(1759193690.652:1433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6713 comm="syz.1.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 98.547610][ T29] audit: type=1326 audit(1759193690.652:1434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6713 comm="syz.1.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa35262ef03 code=0x7ffc0000 [ 98.583374][ T29] audit: type=1326 audit(1759193690.652:1435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6713 comm="syz.1.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa35262d97f code=0x7ffc0000 [ 98.584887][ T6716] JBD2: no valid journal superblock found [ 98.616183][ T29] audit: type=1326 audit(1759193690.652:1436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6713 comm="syz.1.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fa35262ef57 code=0x7ffc0000 [ 98.626336][ T6716] EXT4-fs (loop0): Could not load journal inode [ 98.671247][ T29] audit: type=1326 audit(1759193690.692:1437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6713 comm="syz.1.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa35262d710 code=0x7ffc0000 [ 98.705448][ T29] audit: type=1326 audit(1759193690.692:1438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6713 comm="syz.1.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa35262eacb code=0x7ffc0000 [ 98.714592][ T6714] iso9660: Corrupted directory entry in block 2 of inode 1792 [ 98.758158][ T6722] netdevsim netdevsim3 netdevsim0: entered promiscuous mode [ 98.769375][ T6722] vlan2: entered promiscuous mode [ 98.820575][ T29] audit: type=1326 audit(1759193690.772:1439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6713 comm="syz.1.1397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fa35262db2a code=0x7ffc0000 [ 98.873270][ T6727] dummy0: entered allmulticast mode [ 98.880281][ T6727] dummy0: left allmulticast mode [ 99.027066][ T6737] 9pnet: p9_errstr2errno: server reported unknown error @c$ [ 99.048216][ T6741] loop3: detected capacity change from 0 to 1024 [ 99.061605][ T6741] EXT4-fs: inline encryption not supported [ 99.076194][ T6744] loop1: detected capacity change from 0 to 512 [ 99.085712][ T6745] loop4: detected capacity change from 0 to 512 [ 99.099984][ T6741] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 99.128941][ T6744] EXT4-fs error (device loop1): ext4_acquire_dquot:6943: comm syz.1.1414: Failed to acquire dquot type 1 [ 99.170508][ T6744] EXT4-fs (loop1): 1 truncate cleaned up [ 99.173610][ T6745] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 99.191429][ T6744] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 99.223645][ T6744] ext4 filesystem being mounted at /314/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 99.262400][ T6745] ext4 filesystem being mounted at /283/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 99.277872][ T6754] loop0: detected capacity change from 0 to 164 [ 99.279655][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.309025][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.309114][ T6754] iso9660: Corrupted directory entry in block 2 of inode 1792 [ 99.396287][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.505418][ T6764] netdevsim netdevsim4 netdevsim0: entered promiscuous mode [ 99.536682][ T6764] vlan2: entered promiscuous mode [ 99.703507][ T6780] 9pnet: p9_errstr2errno: server reported unknown error @c$ [ 100.033859][ T6808] SELinux: security_context_str_to_sid () failed with errno=-22 [ 100.317933][ T6823] 9pnet: p9_errstr2errno: server reported unknown error @c$ [ 100.353522][ T6832] __nla_validate_parse: 14 callbacks suppressed [ 100.353544][ T6832] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1450'. [ 100.374668][ T6832] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1450'. [ 100.527588][ T6845] 9pnet: p9_errstr2errno: server reported unknown error 9YTPX: [ 100.657195][ T6866] rdma_op ffff8881321ae180 conn xmit_rdma 0000000000000000 [ 100.769858][ T6876] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1471'. [ 100.781992][ T6876] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1471'. [ 101.063762][ T6908] sctp: [Deprecated]: syz.1.1486 (pid 6908) Use of struct sctp_assoc_value in delayed_ack socket option. [ 101.063762][ T6908] Use struct sctp_sack_info instead [ 101.507754][ T6929] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1495'. [ 101.528516][ T6929] netlink: 'syz.4.1495': attribute type 1 has an invalid length. [ 101.616741][ T6939] netdevsim netdevsim0: Direct firmware load for failed with error -2 [ 101.661058][ T6941] loop5: detected capacity change from 0 to 1024 [ 101.675537][ T6941] EXT4-fs: Ignoring removed orlov option [ 101.689368][ T6941] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 102.061884][ T4281] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.143345][ T6965] loop1: detected capacity change from 0 to 256 [ 102.262639][ T6980] rdma_op ffff8881202c2980 conn xmit_rdma 0000000000000000 [ 102.395643][ T6995] netlink: 'syz.1.1522': attribute type 21 has an invalid length. [ 102.507233][ T7008] netlink: 3 bytes leftover after parsing attributes in process `syz.5.1526'. [ 102.529926][ T7008] batadv1: entered promiscuous mode [ 102.536947][ T7008] batadv1: entered allmulticast mode [ 102.683823][ T7025] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1532'. [ 102.700507][ T7016] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1532'. [ 102.746499][ T7027] loop5: detected capacity change from 0 to 512 [ 102.808480][ T7033] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1539'. [ 102.821837][ T7027] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #15: comm syz.5.1536: casefold flag without casefold feature [ 102.843010][ T7027] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.1536: couldn't read orphan inode 15 (err -117) [ 102.920320][ T7027] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 102.974461][ T7042] Falling back ldisc for ttyS3. [ 103.192773][ T4281] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.318389][ T29] kauditd_printk_skb: 175 callbacks suppressed [ 103.318747][ T29] audit: type=1326 audit(1759193695.532:1613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7086 comm="syz.1.1572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 103.363966][ T29] audit: type=1326 audit(1759193695.542:1614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7086 comm="syz.1.1572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 103.473989][ T29] audit: type=1326 audit(1759193695.602:1615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7086 comm="syz.1.1572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 103.504925][ T29] audit: type=1326 audit(1759193695.602:1616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7086 comm="syz.1.1572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 103.535240][ T29] audit: type=1326 audit(1759193695.602:1617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7086 comm="syz.1.1572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 103.568450][ T29] audit: type=1326 audit(1759193695.622:1618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7086 comm="syz.1.1572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 103.600392][ T29] audit: type=1326 audit(1759193695.622:1619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7086 comm="syz.1.1572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 103.637148][ T29] audit: type=1326 audit(1759193695.622:1620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7086 comm="syz.1.1572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 103.670998][ T29] audit: type=1326 audit(1759193695.622:1621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7086 comm="syz.1.1572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa35262d97f code=0x7ffc0000 [ 103.701772][ T7101] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1567'. [ 103.710762][ T29] audit: type=1326 audit(1759193695.622:1622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7086 comm="syz.1.1572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 103.806244][ T7101] batadv1: entered promiscuous mode [ 103.813419][ T7101] batadv1: entered allmulticast mode [ 103.830203][ T7107] loop0: detected capacity change from 0 to 512 [ 103.883189][ T7107] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.1568: casefold flag without casefold feature [ 103.929074][ T7114] macvtap0: refused to change device tx_queue_len [ 103.939948][ T7107] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.1568: couldn't read orphan inode 15 (err -117) [ 103.995185][ T7122] loop5: detected capacity change from 0 to 2048 [ 103.999340][ T7107] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 104.022410][ T7123] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 104.041798][ T7122] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 104.100168][ T4281] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set [ 104.145829][ T4281] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 104.173047][ T4281] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.206132][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.405057][ T7163] loop5: detected capacity change from 0 to 512 [ 104.430111][ T7163] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 104.481830][ T7163] EXT4-fs (loop5): 1 truncate cleaned up [ 104.496291][ T7163] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 104.569976][ T4281] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.637829][ T7189] loop0: detected capacity change from 0 to 512 [ 104.742550][ T7198] loop5: detected capacity change from 0 to 2048 [ 104.818753][ T7198] EXT4-fs (loop5): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 104.852920][ T7189] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.1604: bg 0: block 5: invalid block bitmap [ 104.905455][ T7189] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 104.930982][ T4281] EXT4-fs (loop5): unmounting filesystem 00000800-0000-0000-0000-000000000000. [ 104.964320][ T7189] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.1604: invalid indirect mapped block 3 (level 2) [ 104.977578][ T7223] batadv1: entered promiscuous mode [ 104.990530][ T7223] batadv1: entered allmulticast mode [ 105.007159][ T7189] EXT4-fs (loop0): 2 truncates cleaned up [ 105.015702][ T7189] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 105.091196][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.200852][ T7234] loop5: detected capacity change from 0 to 512 [ 105.263468][ T7234] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 105.281303][ T7234] ext4 filesystem being mounted at /237/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 105.307062][ T7230] Falling back ldisc for ttyS3. [ 105.351828][ T7242] macvlan1: entered promiscuous mode [ 105.361190][ T7242] ipvlan0: entered promiscuous mode [ 105.369462][ T7242] ipvlan0: left promiscuous mode [ 105.381108][ T7242] macvlan1: left promiscuous mode [ 105.444026][ T4281] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.707937][ T7261] loop4: detected capacity change from 0 to 512 [ 105.754410][ T7261] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.1630: bg 0: block 5: invalid block bitmap [ 105.782151][ T7261] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 105.803851][ T7261] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.1630: invalid indirect mapped block 3 (level 2) [ 105.858742][ T7261] EXT4-fs (loop4): 2 truncates cleaned up [ 105.870104][ T7261] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 105.970055][ T7266] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 105.987590][ T7266] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 105.999644][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 106.122637][ T7289] __nla_validate_parse: 3 callbacks suppressed [ 106.122657][ T7289] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1654'. [ 106.171832][ T7289] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address [ 106.184931][ T7289] bond1: (slave wireguard0): Error -95 calling set_mac_address [ 106.251452][ T7302] loop4: detected capacity change from 0 to 512 [ 106.263658][ T7303] program syz.0.1645 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 106.281816][ T7302] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 106.297059][ T7302] ext4 filesystem being mounted at /322/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 106.341968][ T7309] unsupported nla_type 52263 [ 106.372800][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 106.548800][ T7325] loop4: detected capacity change from 0 to 1024 [ 106.571405][ T7325] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 106.921091][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.059004][ T7356] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1669'. [ 107.102778][ T7361] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1672'. [ 107.210877][ T7209] nci: nci_ntf_packet: unsupported ntf opcode 0xf06 [ 107.928798][ T7420] vhci_hcd: default hub control req: 8013 v0000 i0000 l31125 [ 108.345951][ T7438] bridge0: entered promiscuous mode [ 108.354227][ T7438] macsec1: entered promiscuous mode [ 108.362050][ T7438] bridge0: port 3(macsec1) entered blocking state [ 108.370070][ T7438] bridge0: port 3(macsec1) entered disabled state [ 108.379822][ T7438] macsec1: entered allmulticast mode [ 108.386516][ T7438] bridge0: entered allmulticast mode [ 108.395830][ T7438] macsec1: left allmulticast mode [ 108.402390][ T7438] bridge0: left allmulticast mode [ 108.410806][ T7438] bridge0: left promiscuous mode [ 108.443834][ T7442] program syz.5.1706 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 108.586283][ T7454] loop1: detected capacity change from 0 to 512 [ 108.604144][ T7454] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 108.621222][ T7454] EXT4-fs (loop1): 1 truncate cleaned up [ 108.629925][ T7454] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 108.664329][ T29] kauditd_printk_skb: 76 callbacks suppressed [ 108.664345][ T29] audit: type=1326 audit(1759193700.882:1699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7458 comm="syz.4.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 108.698544][ T29] audit: type=1326 audit(1759193700.882:1700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7458 comm="syz.4.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 108.728316][ T29] audit: type=1326 audit(1759193700.882:1701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7458 comm="syz.4.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 108.759021][ T29] audit: type=1326 audit(1759193700.882:1702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7458 comm="syz.4.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 108.791460][ T29] audit: type=1326 audit(1759193700.882:1703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7458 comm="syz.4.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 108.821255][ T29] audit: type=1326 audit(1759193700.882:1704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7458 comm="syz.4.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 108.853612][ T29] audit: type=1326 audit(1759193700.882:1705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7458 comm="syz.4.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 108.885634][ T29] audit: type=1326 audit(1759193700.882:1706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7458 comm="syz.4.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 108.913820][ T29] audit: type=1326 audit(1759193700.882:1707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7458 comm="syz.4.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 108.941636][ T29] audit: type=1326 audit(1759193700.882:1708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7458 comm="syz.4.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 109.003631][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.023266][ T7471] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 109.095807][ T7477] bridge0: entered promiscuous mode [ 109.104107][ T7477] macsec1: entered promiscuous mode [ 109.119884][ T7477] bridge0: port 3(macsec1) entered blocking state [ 109.128612][ T7477] bridge0: port 3(macsec1) entered disabled state [ 109.148161][ T7477] macsec1: entered allmulticast mode [ 109.154251][ T7477] bridge0: entered allmulticast mode [ 109.165072][ T7477] macsec1: left allmulticast mode [ 109.170287][ T7477] bridge0: left allmulticast mode [ 109.185875][ T7477] bridge0: left promiscuous mode [ 109.310119][ T7505] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1734'. [ 109.360006][ T7503] random: crng reseeded on system resumption [ 109.443629][ T7516] loop4: detected capacity change from 0 to 1024 [ 109.452919][ T7516] EXT4-fs: inline encryption not supported [ 109.467499][ T7520] vhci_hcd: invalid port number 96 [ 109.473051][ T7520] vhci_hcd: default hub control req: 0300 vfffa i0060 l0 [ 109.492574][ T7516] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 109.531321][ T7516] SELinux: security_context_str_to_sid (unt-ro,) failed with errno=-22 [ 109.598039][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.645044][ T7538] loop0: detected capacity change from 0 to 512 [ 109.670194][ T3468] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 109.688933][ T7538] EXT4-fs: Ignoring removed mblk_io_submit option [ 109.697881][ T3468] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 109.721931][ T7538] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 109.740640][ T7538] EXT4-fs (loop0): 1 truncate cleaned up [ 109.758171][ T7538] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 110.614788][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 110.680797][ T7565] sd 0:0:1:0: device reset [ 110.747875][ T7573] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 110.872731][ T7584] loop5: detected capacity change from 0 to 128 [ 110.889683][ T7584] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 110.920359][ T7584] ext4 filesystem being mounted at /270/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 110.967535][ T7587] wg2: entered promiscuous mode [ 110.974175][ T7587] wg2: entered allmulticast mode [ 111.083504][ T7595] loop1: detected capacity change from 0 to 512 [ 111.112012][ T7595] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 111.138663][ T7595] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.1772: bg 0: block 104: invalid block bitmap [ 111.160161][ T4281] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 111.192121][ T7595] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 111.239909][ T7611] loop4: detected capacity change from 0 to 128 [ 111.248060][ T7595] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.1772: invalid indirect mapped block 1 (level 1) [ 111.303423][ T7595] EXT4-fs (loop1): 1 truncate cleaned up [ 111.328904][ T7595] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 111.393433][ T7620] netlink: 208192 bytes leftover after parsing attributes in process `syz.4.1783'. [ 111.422883][ T7620] netlink: del zone limit has 4 unknown bytes [ 111.423429][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.678573][ T7647] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7647 comm=syz.4.1795 [ 112.188511][ T7666] vcan0: tx drop: invalid sa for name 0xffffffffffffffff [ 112.267918][ T7674] vcan0: tx drop: invalid da for name 0x0000000000000001 [ 112.409549][ T7614] syz.0.1781 (7614) used greatest stack depth: 7096 bytes left [ 112.464633][ T7684] program syz.0.1814 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 112.727746][ T7726] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=7726 comm=syz.4.1833 [ 112.906552][ T7732] loop0: detected capacity change from 0 to 128 [ 113.132040][ T7756] loop3: detected capacity change from 0 to 512 [ 113.150406][ T7756] EXT4-fs: Ignoring removed mblk_io_submit option [ 113.157732][ T7756] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 113.193586][ T7756] EXT4-fs (loop3): 1 truncate cleaned up [ 113.213732][ T7756] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 113.437463][ T7773] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1854'. [ 113.446710][ T7773] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1854'. [ 113.456083][ T7773] netlink: 'syz.5.1854': attribute type 18 has an invalid length. [ 113.468819][ T7773] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1854'. [ 113.478317][ T7773] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1854'. [ 113.480660][ T5928] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 113.487418][ T7773] netlink: 'syz.5.1854': attribute type 18 has an invalid length. [ 113.506901][ T5928] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 113.517848][ C1] vcan0: j1939_tp_rxtimer: 0xffff888129269600: rx timeout, send abort [ 113.527092][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888129269600: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 113.528540][ T5928] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 113.557178][ T5928] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 113.593804][ T7777] SELinux: failed to load policy [ 113.782523][ T7783] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 ! [ 113.812865][ T7787] SELinux: security policydb version 16 (MLS) not backwards compatible [ 113.824261][ T7787] SELinux: failed to load policy [ 113.859340][ T7785] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1861'. [ 114.094290][ T7802] vcan0: tx drop: invalid da for name 0x0000000000000001 [ 114.158993][ T7808] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=7808 comm=syz.1.1871 [ 114.177831][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 114.239626][ T29] kauditd_printk_skb: 98 callbacks suppressed [ 114.239657][ T29] audit: type=1326 audit(1759193706.462:1807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7819 comm="syz.1.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 114.295802][ T29] audit: type=1326 audit(1759193706.462:1808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7819 comm="syz.1.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 114.320411][ T29] audit: type=1326 audit(1759193706.462:1809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7819 comm="syz.1.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 114.346260][ T29] audit: type=1326 audit(1759193706.462:1810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7819 comm="syz.1.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 114.371885][ T29] audit: type=1326 audit(1759193706.462:1811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7819 comm="syz.1.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 114.398061][ T29] audit: type=1326 audit(1759193706.462:1812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7819 comm="syz.1.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 114.423079][ T29] audit: type=1326 audit(1759193706.462:1813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7819 comm="syz.1.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 114.447090][ T29] audit: type=1326 audit(1759193706.462:1814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7819 comm="syz.1.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 114.471051][ T29] audit: type=1326 audit(1759193706.462:1815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7819 comm="syz.1.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 114.497403][ T29] audit: type=1326 audit(1759193706.502:1816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7819 comm="syz.1.1875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa35262eec9 code=0x7ffc0000 [ 114.674640][ T7838] loop4: detected capacity change from 0 to 512 [ 114.682465][ T7838] EXT4-fs: Ignoring removed mblk_io_submit option [ 114.710201][ T7838] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 114.739241][ T7838] EXT4-fs (loop4): 1 truncate cleaned up [ 114.745689][ T7838] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 114.760382][ T7842] vcan0: tx drop: invalid sa for name 0xffffffffffffffff [ 115.334679][ C0] vcan0: j1939_tp_rxtimer: 0xffff888104606a00: rx timeout, send abort [ 115.345184][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888104606a00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 115.439799][ T7883] loop1: detected capacity change from 0 to 128 [ 115.481630][ T7899] vcan0: tx drop: invalid sa for name 0xffffffffffffffff [ 115.680692][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 115.730643][ T7914] vcan0: tx drop: invalid da for name 0x0000000000000001 [ 115.869657][ T7926] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 ! [ 115.925232][ T7930] vhci_hcd: invalid port number 96 [ 115.930754][ T7930] vhci_hcd: default hub control req: 0300 vfffa i0060 l0 [ 115.985739][ T7938] rdma_op ffff888118ac8180 conn xmit_rdma 0000000000000000 [ 116.153178][ T7955] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1939'. [ 116.204395][ T7959] loop3: detected capacity change from 0 to 512 [ 116.252504][ T7959] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 116.278568][ T7959] ext4 filesystem being mounted at /401/w5T)`)YFnA@T<3ڂ$rcnHwC" -8 supports timestamps until 2038-01-19 (0x7fffffff) [ 116.364203][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 116.389310][ T7942] loop5: detected capacity change from 0 to 128 [ 116.560081][ T7982] loop1: detected capacity change from 0 to 512 [ 116.580894][ T7982] EXT4-fs: Ignoring removed mblk_io_submit option [ 116.590587][ T7982] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 116.633431][ T7982] EXT4-fs (loop1): 1 truncate cleaned up [ 116.640324][ T7982] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 116.687228][ T7989] loop0: detected capacity change from 0 to 1024 [ 116.713991][ T7989] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 116.792381][ T7989] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 116.802110][ T7989] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840e028, mo2=0000] [ 116.814348][ T7989] System zones: 0-1, 3-12 [ 116.819710][ T7989] EXT4-fs (loop0): orphan cleanup on readonly fs [ 116.827950][ T7989] EXT4-fs error (device loop0): ext4_free_blocks:6696: comm syz.0.1952: Freeing blocks not in datazone - block = 0, count = 4096 [ 116.856681][ T7989] EXT4-fs (loop0): Remounting filesystem read-only [ 116.864349][ T7989] EXT4-fs (loop0): 1 orphan inode deleted [ 116.910624][ T7989] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 116.976588][ T7995] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1953'. [ 116.980583][ C0] vcan0: j1939_tp_rxtimer: 0xffff888104607e00: rx timeout, send abort [ 116.985787][ T7995] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1953'. [ 116.994194][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888104607e00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 117.003420][ T7995] netlink: 'syz.3.1953': attribute type 18 has an invalid length. [ 117.046315][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 117.060383][ T7209] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 117.060422][ T7995] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1953'. [ 117.060446][ T7995] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1953'. [ 117.069604][ T7209] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 117.078818][ T7995] netlink: 'syz.3.1953': attribute type 18 has an invalid length. [ 117.113166][ T7209] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 117.124293][ T7209] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 117.440798][ T8016] vhci_hcd: invalid port number 96 [ 117.446165][ T8016] vhci_hcd: default hub control req: 0300 vfffa i0060 l0 [ 117.555512][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 117.645185][ T8040] IPv6: Can't replace route, no match found [ 117.682221][ T8004] loop4: detected capacity change from 0 to 128 [ 117.750145][ T8052] SELinux: security_context_str_to_sid () failed with errno=-22 [ 117.775240][ T8054] loop3: detected capacity change from 0 to 512 [ 117.782473][ T8048] vhci_hcd: invalid port number 96 [ 117.782922][ T8054] EXT4-fs: Ignoring removed mblk_io_submit option [ 117.787666][ T8048] vhci_hcd: default hub control req: 0300 vfffa i0060 l0 [ 117.794910][ T8054] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 117.821862][ T8054] EXT4-fs (loop3): 1 truncate cleaned up [ 117.830284][ T8054] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 117.864792][ T8062] loop4: detected capacity change from 0 to 512 [ 117.892845][ T8062] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 117.912033][ T8062] ext4 filesystem being mounted at /384/w5T)`)YFnA@T<3ڂ$rcnHwC" -8 supports timestamps until 2038-01-19 (0x7fffffff) [ 117.948605][ T3306] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 118.097864][ T8086] SELinux: security_context_str_to_sid () failed with errno=-22 [ 118.697827][ T3304] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 118.722227][ T8100] loop1: detected capacity change from 0 to 512 [ 118.732235][ T8100] EXT4-fs: Ignoring removed mblk_io_submit option [ 118.740305][ T8100] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 118.759750][ T8100] EXT4-fs (loop1): 1 truncate cleaned up [ 118.768815][ T8100] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 118.962287][ T8103] loop3: detected capacity change from 0 to 128 [ 119.052876][ T8124] 9pnet: p9_errstr2errno: server reported unknown error 9YTPX: [ 119.079949][ T8126] rdma_op ffff888128cd2d80 conn xmit_rdma 0000000000000000 [ 119.259457][ T8140] netdevsim netdevsim5: Direct firmware load for failed with error -2 [ 119.501402][ T8163] 9pnet: p9_errstr2errno: server reported unknown error 9YTPX: [ 119.648925][ T8175] netdevsim netdevsim4: Direct firmware load for failed with error -2 [ 119.721337][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 119.744904][ T29] kauditd_printk_skb: 50 callbacks suppressed [ 119.744933][ T29] audit: type=1326 audit(1759193711.962:1867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8177 comm="syz.4.2036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 119.775098][ T29] audit: type=1326 audit(1759193711.962:1868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8177 comm="syz.4.2036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 119.827561][ T29] audit: type=1326 audit(1759193712.022:1869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8177 comm="syz.4.2036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=69 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 119.851450][ T29] audit: type=1326 audit(1759193712.022:1870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8177 comm="syz.4.2036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 119.875263][ T29] audit: type=1326 audit(1759193712.022:1871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8177 comm="syz.4.2036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c997feec9 code=0x7ffc0000 [ 120.017042][ T8168] loop3: detected capacity change from 0 to 128 [ 120.119919][ T8212] netdevsim netdevsim1: Direct firmware load for failed with error -2 [ 120.272569][ T29] audit: type=1326 audit(1759193712.482:1872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8223 comm="syz.3.2057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59be2beec9 code=0x7ffc0000 [ 120.313190][ T29] audit: type=1326 audit(1759193712.492:1873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8223 comm="syz.3.2057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7f59be2beec9 code=0x7ffc0000 [ 120.337160][ T29] audit: type=1326 audit(1759193712.492:1874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8223 comm="syz.3.2057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59be2beec9 code=0x7ffc0000 [ 120.361172][ T29] audit: type=1326 audit(1759193712.492:1875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8223 comm="syz.3.2057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59be2beec9 code=0x7ffc0000 [ 120.384932][ T29] audit: type=1326 audit(1759193712.492:1876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8223 comm="syz.3.2057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=241 compat=0 ip=0x7f59be2beec9 code=0x7ffc0000 [ 120.529371][ T8249] vhci_hcd: invalid port number 23 [ 120.606899][ T8257] netdevsim netdevsim3: Direct firmware load for failed with error -2 [ 120.916389][ T8259] loop5: detected capacity change from 0 to 128 [ 121.022370][ T8284] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2087'. [ 121.034195][ T8282] IPv6: Can't replace route, no match found [ 121.117181][ T8297] loop1: detected capacity change from 0 to 512 [ 121.136889][ T8297] EXT4-fs: Ignoring removed mblk_io_submit option [ 121.148772][ T8297] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 121.166774][ T8297] EXT4-fs (loop1): 1 truncate cleaned up [ 121.174515][ T8297] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 121.586713][ T8305] loop0: detected capacity change from 0 to 128 [ 121.628243][ T8322] IPv6: Can't replace route, no match found [ 121.666439][ T8325] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2095'. [ 122.121588][ T3309] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 122.133182][ T8359] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2109'. [ 122.177812][ T8361] loop0: detected capacity change from 0 to 1024 [ 122.233955][ T8361] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 122.255223][ T8361] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 122.289816][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 122.359417][ T8388] loop0: detected capacity change from 0 to 512 [ 122.366761][ T8388] EXT4-fs: Ignoring removed mblk_io_submit option [ 122.375022][ T8388] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 122.387294][ T8388] EXT4-fs (loop0): 1 truncate cleaned up [ 122.396132][ T8388] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 122.398860][ T8384] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2120'. [ 122.516647][ T8395] ================================================================== [ 122.524887][ T8395] BUG: KCSAN: data-race in __mark_inode_dirty / generic_buffers_fsync_noflush [ 122.533794][ T8395] [ 122.536154][ T8395] write to 0xffff88811a0c0ea8 of 4 bytes by task 8388 on cpu 1: [ 122.543821][ T8395] __mark_inode_dirty+0x248/0x750 [ 122.549153][ T8395] ext4_mb_new_blocks+0x10b9/0x2080 [ 122.554496][ T8395] ext4_ind_map_blocks+0xb86/0x14f0 [ 122.559824][ T8395] ext4_map_blocks+0x598/0xd00 [ 122.564735][ T8395] _ext4_get_block+0x10a/0x350 [ 122.569561][ T8395] ext4_get_block+0x39/0x50 [ 122.574268][ T8395] ext4_block_write_begin+0x5e5/0xc00 [ 122.579819][ T8395] ext4_write_begin+0x647/0xeb0 [ 122.584701][ T8395] generic_perform_write+0x184/0x490 [ 122.590029][ T8395] ext4_buffered_write_iter+0x1ee/0x3c0 [ 122.595725][ T8395] ext4_file_write_iter+0xdbf/0xf00 [ 122.601097][ T8395] iter_file_splice_write+0x663/0xa60 [ 122.606514][ T8395] direct_splice_actor+0x153/0x2a0 [ 122.612187][ T8395] splice_direct_to_actor+0x30f/0x680 [ 122.617690][ T8395] do_splice_direct+0xda/0x150 [ 122.622686][ T8395] do_sendfile+0x380/0x650 [ 122.627251][ T8395] __x64_sys_sendfile64+0x105/0x150 [ 122.632516][ T8395] x64_sys_call+0x2bb0/0x2ff0 [ 122.637275][ T8395] do_syscall_64+0xd2/0x200 [ 122.641827][ T8395] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.647936][ T8395] [ 122.650364][ T8395] read to 0xffff88811a0c0ea8 of 4 bytes by task 8395 on cpu 0: [ 122.657947][ T8395] generic_buffers_fsync_noflush+0x80/0x120 [ 122.663899][ T8395] ext4_sync_file+0x1ab/0x690 [ 122.668625][ T8395] vfs_fsync_range+0x10d/0x130 [ 122.673525][ T8395] ext4_buffered_write_iter+0x34f/0x3c0 [ 122.679129][ T8395] ext4_file_write_iter+0xdbf/0xf00 [ 122.684559][ T8395] iter_file_splice_write+0x663/0xa60 [ 122.689979][ T8395] direct_splice_actor+0x153/0x2a0 [ 122.695136][ T8395] splice_direct_to_actor+0x30f/0x680 [ 122.700634][ T8395] do_splice_direct+0xda/0x150 [ 122.705429][ T8395] do_sendfile+0x380/0x650 [ 122.709917][ T8395] __x64_sys_sendfile64+0x105/0x150 [ 122.715330][ T8395] x64_sys_call+0x2bb0/0x2ff0 [ 122.720039][ T8395] do_syscall_64+0xd2/0x200 [ 122.724581][ T8395] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 122.730523][ T8395] [ 122.732866][ T8395] value changed: 0x00000040 -> 0x00000070 [ 122.738610][ T8395] [ 122.740953][ T8395] Reported by Kernel Concurrency Sanitizer on: [ 122.747229][ T8395] CPU: 0 UID: 0 PID: 8395 Comm: syz.0.2121 Not tainted syzkaller #0 PREEMPT(voluntary) [ 122.757082][ T8395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 122.767528][ T8395] ================================================================== [ 123.280732][ T3302] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.