last executing test programs: 815.887193ms ago: executing program 1 (id=2176): r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101301) sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4904}, 0x200000c1) ioctl$USBDEVFS_FREE_STREAMS(r0, 0xc0105500, &(0x7f0000000140)=ANY=[@ANYBLOB="a1"]) 769.553925ms ago: executing program 0 (id=2179): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f00000000c0)=[{0x6, 0x84, 0x7, 0x7ffc0001}]}) r0 = add_key(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000300)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000280)='asymmetric\x00', &(0x7f0000000040)=@chain) 769.414655ms ago: executing program 4 (id=2180): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x2c, 0x1, 0x0, 0x0, 0x0, 0x7, 0x520, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x4, @perf_bp={0x0, 0x2}, 0x113042, 0x1224, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x2000000020000003}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x10, 0x640b9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_bp={0x0, 0x1}, 0x2002, 0x32, 0x43a1bd56, 0x7, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x2009}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f00000001c0)={0x1, 0x0, [0x0]}) 707.279417ms ago: executing program 0 (id=2181): mknodat$loop(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1000, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x8c, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r0]) 705.678026ms ago: executing program 1 (id=2191): r0 = socket$inet6_udp(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @mcast2, 0x1}, 0x1c) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x4, @remote, 0xb}, 0x1c) 677.821418ms ago: executing program 1 (id=2183): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) syz_clone(0x1000, 0x0, 0x0, &(0x7f0000001140), 0x0, 0x0) 666.531338ms ago: executing program 4 (id=2185): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0x80000000}, 0x19a) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000001c0)=@mpls_getroute={0x1c, 0x1a, 0x1, 0x0, 0x0, {0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc00}}, 0x1c}}, 0x0) 603.47088ms ago: executing program 2 (id=2186): unshare(0x20000400) r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0) ioctl$PTP_EXTTS_REQUEST(r0, 0x40103d02, 0x0) 603.20763ms ago: executing program 4 (id=2187): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x77, 0x101301) ioctl$USBDEVFS_CONNECTINFO(r0, 0x80045520, &(0x7f0000002a40)) 596.28296ms ago: executing program 0 (id=2189): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1, 0xfffffffc}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x14, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000100000000000000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bca2000000000000a6020000f8ffffffb703000018000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r1, 0x2000012, 0xe, 0x0, &(0x7f0000000080)="63eced8e46dc3f2ddf33c9e9b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50) 513.548323ms ago: executing program 4 (id=2190): bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1, 0x4, 0x4, 0x2, 0x0, 0x1, 0x1000000}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x100}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x4}, {0x6, 0x0, 0xa}, {}, {}, {0x85, 0x0, 0x0, 0x33}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 513.174223ms ago: executing program 2 (id=2192): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0x800714, &(0x7f0000000000)={[{@nobarrier}]}, 0xff, 0x485, &(0x7f0000001040)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x10) llistxattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000001880)=""/4096, 0x1000) 411.323966ms ago: executing program 4 (id=2193): syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x400, &(0x7f0000000180), 0x2, 0x786, &(0x7f0000000f80)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) ioctl$EXT4_IOC_SETFSUUID(r0, 0x4008662c, &(0x7f00000001c0)={0x10, 0x2000000, "73c9cf66b7caf536fb430c3e36813ea0"}) 281.214641ms ago: executing program 3 (id=2194): r0 = syz_open_dev$usbfs(&(0x7f0000000240), 0xe, 0x8c0002) ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000200)) ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000340)={0x40, 0x10, 0x1, 0x5, 0x0, 0x8, 0x0}) 280.698151ms ago: executing program 0 (id=2204): r0 = socket$inet6_udp(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @mcast2, 0x1}, 0x1c) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x4, @remote, 0xb}, 0x1c) 242.092782ms ago: executing program 4 (id=2195): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0xff, 0x7, 0x7fc00002}]}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f00000001c0)=[{0x6, 0x84, 0x7, 0x7ffc0001}]}) 233.952942ms ago: executing program 0 (id=2196): mprotect(&(0x7f0000001000/0x14000)=nil, 0x14000, 0x1) r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x4, &(0x7f0000001b00)=""/245, &(0x7f0000000000)=0xf5) 158.166894ms ago: executing program 2 (id=2197): capset(&(0x7f0000010000)={0x19980330}, &(0x7f0000000140)={0x0, 0x0, 0xa, 0x3, 0xfffffff9, 0x200800}) r0 = socket$inet(0x2, 0x2, 0x1) setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5) 158.042254ms ago: executing program 0 (id=2198): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf) ioctl$TCFLSH(r0, 0x400455c8, 0x0) 157.838014ms ago: executing program 3 (id=2199): timer_create(0x2, 0x0, &(0x7f0000044000)) timer_settime(0x0, 0x1, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_settime(0x0, 0x1, &(0x7f0000000280)={{}, {0x0, 0x9}}, 0x0) 95.199177ms ago: executing program 2 (id=2200): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x2d, 0x1, 0x0, 0x0, 0x0, 0x7, 0x520, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x4, @perf_bp={0x0, 0x2}, 0x10ecc8, 0x1224, 0x0, 0x5, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x2000001020000001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000880)=@raw={'raw\x00', 0x8, 0x3, 0x2c0, 0x0, 0xffffffff, 0xffffffff, 0x158, 0xffffffff, 0x228, 0xffffff7a, 0xffffffff, 0x228, 0xffffffff, 0x7fffffe, 0x0, {[{{@ip={@empty, @multicast1, 0xff000000, 0xffffff00, 'dvmrp1\x00', 'ip6gretap0\x00', {}, {}, 0x4, 0x1, 0x10}, 0x6, 0x130, 0x158, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x6, 'bm\x00', "00000100cbd047da9ca965f96ad5801f0514d363ee84bb895919d9490f6785fba3c4a44f1e25ecefef2a2d6054f5260ece5ce1a56a5ef73be11d65bfe8c37674024c183ebacdf741cea92ded3a9ca54de15dd9ec8ef62f9e000000000000000000ffffff7f00", 0x80, 0x0, {0x4}}}]}, @common=@unspec=@AUDIT={0x28, 'AUDIT\x00', 0x0, {0x2}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @local, 0x2, 0x7, [0x36, 0x3d, 0x20, 0x22, 0x31, 0x1d, 0x37, 0x2c, 0x14, 0x7, 0x7, 0x34, 0x13, 0x1a, 0x15, 0xa], 0x0, 0x7fff, 0x6}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x320) 95.136697ms ago: executing program 3 (id=2201): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) setsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x2, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000000000000400000000000000c3a00000a10000039500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x4, 0x93, &(0x7f0000000100)=""/143, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x17, 0x10, 0x0, 0xffffff04, 0x61e5cc96}, 0x22) 81.966827ms ago: executing program 3 (id=2202): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x7}, 0x4) setsockopt$packet_int(r0, 0x107, 0x16, 0x0, 0x0) 76.185087ms ago: executing program 1 (id=2203): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000680), 0xffffffffffffffff) sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)={0x50, r1, 0x917, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8}, @L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_IP_SADDR={0x8, 0x18, @rand_addr=0x64010102}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @remote}]}, 0x50}}, 0x0) 43.022778ms ago: executing program 3 (id=2205): r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000140)=0xb8) ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000001c0)=0x7f) 42.813668ms ago: executing program 2 (id=2206): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x38, r1, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_LINK={0x24, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x7, 0x5, 0x2}]}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x2400c005}, 0x0) 30.336899ms ago: executing program 3 (id=2207): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x2d, 0x1, 0x0, 0x0, 0x0, 0x10009, 0xf41b8, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7e, 0x2, @perf_bp={0x0, 0x7}, 0x6b04, 0x0, 0x3, 0x8, 0x9, 0x6, 0x6, 0x0, 0x0, 0x0, 0x200b}, 0x0, 0x3fffffffff, 0xffffffffffffffff, 0xa) syz_open_pts(r0, 0x24041) 16.080579ms ago: executing program 1 (id=2208): r0 = socket(0xa, 0x1, 0x0) r1 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x14, 0x4, 0x8, 0x6, 0x0, 0x1}, 0x48) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r1, &(0x7f0000000280), &(0x7f0000000a80)=@tcp6=r0}, 0x20) 527.69µs ago: executing program 1 (id=2209): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0xfc}, 0x1, 0x0, 0x0, 0x4050}, 0x40080c0) sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f0000000940)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000900)={&(0x7f0000000800)={0xd4, 0x0, 0x8, 0x101, 0x0, 0x0, {0x3}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x2f}, @CTA_TIMEOUT_DATA={0x2c, 0x4, 0x0, 0x1, @udp=[@CTA_TIMEOUT_UDP_REPLIED={0x8, 0x2, 0x1, 0x0, 0x5}, @CTA_TIMEOUT_UDP_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x4}, @CTA_TIMEOUT_UDP_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x3}, @CTA_TIMEOUT_UDP_REPLIED={0x8, 0x2, 0x1, 0x0, 0x200}, @CTA_TIMEOUT_UDP_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x800}]}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x806}, @CTA_TIMEOUT_DATA={0x24, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_ESTABLISHED={0x8, 0x4, 0x1, 0x0, 0xc}, @CTA_TIMEOUT_SCTP_HEARTBEAT_ACKED={0x8, 0x9, 0x1, 0x0, 0xfffffff7}, @CTA_TIMEOUT_SCTP_ESTABLISHED={0x8, 0x4, 0x1, 0x0, 0xff}, @CTA_TIMEOUT_SCTP_SHUTDOWN_RECD={0x8, 0x6, 0x1, 0x0, 0x4}]}, @CTA_TIMEOUT_DATA={0x4c, 0x4, 0x0, 0x1, @icmpv6=[@CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x400}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0xfffffffd}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x66d}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x6}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x9}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x2}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0xf5}, @CTA_TIMEOUT_ICMPV6_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x1ff}]}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x3}]}, 0xd4}, 0x1, 0x0, 0x0, 0x800}, 0x40) 0s ago: executing program 2 (id=2210): mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r0 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6) ioctl$sock_bt_hidp_HIDPCONNADD(r0, 0x400448c8, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff, 0xc, 0x0, 0x0, 0x6, 0xfe, 0x401, 0x5, 0x4005, 0x2, 0x7, 'syz0\x00'}) kernel console output (not intermixed with test programs): 5.776595][ T3303] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 25.785285][ T3303] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 25.801561][ T3296] 8021q: adding VLAN 0 to HW filter on device team0 [ 25.815126][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 25.822220][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 25.833548][ T39] bridge0: port 2(bridge_slave_1) entered blocking state [ 25.840658][ T39] bridge0: port 2(bridge_slave_1) entered forwarding state [ 25.873855][ T3293] 8021q: adding VLAN 0 to HW filter on device bond0 [ 25.914638][ T3294] 8021q: adding VLAN 0 to HW filter on device bond0 [ 25.923832][ T3293] 8021q: adding VLAN 0 to HW filter on device team0 [ 25.939738][ T2036] bridge0: port 1(bridge_slave_0) entered blocking state [ 25.946837][ T2036] bridge0: port 1(bridge_slave_0) entered forwarding state [ 25.958322][ T3294] 8021q: adding VLAN 0 to HW filter on device team0 [ 25.969892][ T2036] bridge0: port 2(bridge_slave_1) entered blocking state [ 25.976988][ T2036] bridge0: port 2(bridge_slave_1) entered forwarding state [ 25.994332][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 26.001470][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 26.025409][ T3299] 8021q: adding VLAN 0 to HW filter on device bond0 [ 26.034659][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 26.041754][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 26.061617][ T3303] 8021q: adding VLAN 0 to HW filter on device bond0 [ 26.079560][ T3303] 8021q: adding VLAN 0 to HW filter on device team0 [ 26.095161][ T3299] 8021q: adding VLAN 0 to HW filter on device team0 [ 26.105535][ T2036] bridge0: port 1(bridge_slave_0) entered blocking state [ 26.112637][ T2036] bridge0: port 1(bridge_slave_0) entered forwarding state [ 26.124329][ T2036] bridge0: port 1(bridge_slave_0) entered blocking state [ 26.131450][ T2036] bridge0: port 1(bridge_slave_0) entered forwarding state [ 26.142987][ T30] bridge0: port 2(bridge_slave_1) entered blocking state [ 26.150572][ T30] bridge0: port 2(bridge_slave_1) entered forwarding state [ 26.161701][ T3296] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 26.175955][ T30] bridge0: port 2(bridge_slave_1) entered blocking state [ 26.183065][ T30] bridge0: port 2(bridge_slave_1) entered forwarding state [ 26.249273][ T3299] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 26.397913][ T3293] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 26.410948][ T3294] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 26.436122][ T3296] veth0_vlan: entered promiscuous mode [ 26.456858][ T3296] veth1_vlan: entered promiscuous mode [ 26.491267][ T3296] veth0_macvtap: entered promiscuous mode [ 26.511399][ T3303] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 26.520152][ T3296] veth1_macvtap: entered promiscuous mode [ 26.528671][ T3299] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 26.544085][ T3296] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 26.570087][ T3296] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 26.588726][ T68] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 26.604095][ T2036] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 26.613218][ T2036] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 26.622101][ T2036] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 26.635804][ T3293] veth0_vlan: entered promiscuous mode [ 26.655417][ T3293] veth1_vlan: entered promiscuous mode [ 26.670090][ T3294] veth0_vlan: entered promiscuous mode [ 26.679970][ T28] kauditd_printk_skb: 17 callbacks suppressed [ 26.679984][ T28] audit: type=1400 audit(1781776642.815:147): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/root/syzkaller.bkSpnx/syz-tmp" dev="sda1" ino=2042 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 26.713281][ T3299] veth0_vlan: entered promiscuous mode [ 26.721764][ T28] audit: type=1400 audit(1781776642.845:148): avc: denied { mount } for pid=3296 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 26.722546][ T3294] veth1_vlan: entered promiscuous mode [ 26.744167][ T28] audit: type=1400 audit(1781776642.845:149): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/root/syzkaller.bkSpnx/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 26.757562][ T3294] veth0_macvtap: entered promiscuous mode [ 26.778746][ T28] audit: type=1400 audit(1781776642.845:150): avc: denied { mount } for pid=3296 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 26.790138][ T3293] veth0_macvtap: entered promiscuous mode [ 26.803581][ T28] audit: type=1400 audit(1781776642.845:151): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/root/syzkaller.bkSpnx/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 26.813073][ T3299] veth1_vlan: entered promiscuous mode [ 26.849948][ T28] audit: type=1400 audit(1781776642.855:152): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/root/syzkaller.bkSpnx/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3715 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 26.851851][ T3293] veth1_macvtap: entered promiscuous mode [ 26.885123][ T3294] veth1_macvtap: entered promiscuous mode [ 26.886112][ T3296] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 26.893903][ T3303] veth0_vlan: entered promiscuous mode [ 26.908476][ T28] audit: type=1400 audit(1781776642.855:153): avc: denied { unmount } for pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 26.923995][ T3294] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 26.932065][ T28] audit: type=1400 audit(1781776642.935:154): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=536 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 26.953087][ T3294] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 26.960618][ T28] audit: type=1400 audit(1781776642.935:155): avc: denied { mount } for pid=3296 comm="syz-executor" name="/" dev="gadgetfs" ino=3716 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 26.970484][ T3293] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 27.011002][ T3303] veth1_vlan: entered promiscuous mode [ 27.026013][ T3299] veth0_macvtap: entered promiscuous mode [ 27.034554][ T28] audit: type=1400 audit(1781776643.135:156): avc: denied { read write } for pid=3296 comm="syz-executor" name="loop4" dev="devtmpfs" ino=104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 27.037194][ T2036] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.068069][ T2036] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.077115][ T2036] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.086347][ T3501] netlink: 'syz.4.6': attribute type 2 has an invalid length. [ 27.098766][ T2036] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.114998][ T3299] veth1_macvtap: entered promiscuous mode [ 27.127929][ T3293] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 27.145201][ T30] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.154053][ T30] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.179224][ T3299] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 27.189004][ T30] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.198300][ T30] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.209491][ T3303] veth0_macvtap: entered promiscuous mode [ 27.230438][ T3303] veth1_macvtap: entered promiscuous mode [ 27.270003][ T3299] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 27.294489][ T68] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.311518][ T68] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.322041][ T3516] syz.4.12 (3516) used greatest stack depth: 11120 bytes left [ 27.329800][ T68] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.346360][ T3303] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 27.360783][ T68] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.374026][ T3519] netlink: 132 bytes leftover after parsing attributes in process `syz.2.13'. [ 27.406561][ T3303] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 27.451343][ T49] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.464160][ T49] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.497496][ T49] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.519285][ T49] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 27.580709][ T3545] netlink: 132 bytes leftover after parsing attributes in process `syz.3.4'. [ 27.781457][ T3575] xt_hl: Unknown TTL match mode: 5 [ 28.012017][ T3607] IPv6: sit1: Disabled Multicast RS [ 28.023416][ T3611] netlink: 'syz.1.55': attribute type 1 has an invalid length. [ 28.029064][ T3607] sit1: entered allmulticast mode [ 28.195324][ T3635] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 28.234281][ T3635] Cannot find add_set index 0 as target [ 28.380048][ T3667] netlink: 'syz.0.81': attribute type 3 has an invalid length. [ 28.706537][ T3713] ip6t_REJECT: ECHOREPLY is not supported [ 28.849012][ T3735] loop4: detected capacity change from 0 to 512 [ 28.904264][ T3735] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #13: comm syz.4.112: attempt to clear invalid blocks 2 len 1 [ 28.918100][ T3747] netlink: 'syz.1.118': attribute type 23 has an invalid length. [ 28.935209][ T3735] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 28.935360][ T3747] netlink: 8 bytes leftover after parsing attributes in process `syz.1.118'. [ 28.944755][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 28.944772][ C0] EXT4-fs (loop4): initial error at time 28: ext4_clear_blocks:876: inode 13 [ 28.944800][ C0] EXT4-fs (loop4): last error at time 28: ext4_clear_blocks:876: inode 13 [ 28.953331][ T3735] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 216 vs 220 free clusters [ 28.993952][ T3735] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.112: invalid indirect mapped block 1819239214 (level 0) [ 29.020708][ T3735] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 29.020908][ T3735] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.112: invalid indirect mapped block 1819239214 (level 1) [ 29.045400][ T3735] loop4: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 29.051543][ T3735] EXT4-fs (loop4): 1 truncate cleaned up [ 29.072929][ T3735] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 29.117035][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 29.354093][ T3803] loop1: detected capacity change from 0 to 512 [ 29.408989][ T3803] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 29.447403][ T3803] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 29.487755][ T3803] EXT4-fs error (device loop1): ext4_orphan_get:1425: comm syz.1.145: bad orphan inode 15 [ 29.499134][ T3803] loop1: lost filesystem error report for type 5 error -117 [ 29.499650][ T3803] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 29.521273][ T3803] EXT4-fs error (device loop1): __ext4_new_inode:1081: comm syz.1.145: reserved inode found cleared - inode=18 [ 29.553471][ T3836] capability: warning: `syz.3.156' uses deprecated v2 capabilities in a way that may be insecure [ 29.627208][ T3293] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 29.683203][ T3858] netlink: 'syz.1.163': attribute type 1 has an invalid length. [ 29.699336][ T3858] netlink: 'syz.1.163': attribute type 2 has an invalid length. [ 29.751593][ T3870] xt_TCPMSS: Only works on TCP SYN packets [ 29.956990][ T3909] netlink: 'syz.1.190': attribute type 6 has an invalid length. [ 29.991990][ T3909] netlink: 164 bytes leftover after parsing attributes in process `syz.1.190'. [ 30.073796][ T3930] netlink: 1047 bytes leftover after parsing attributes in process `syz.3.200'. [ 30.088834][ T3930] veth0_to_bond: default FDB implementation only supports local addresses [ 30.145300][ T3940] bond0: (slave bond_slave_1): Releasing backup interface [ 30.230969][ T3952] netlink: 4 bytes leftover after parsing attributes in process `syz.0.211'. [ 30.252299][ T3956] mmap: syz.3.213 (3956) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 30.303979][ T3964] netlink: 132 bytes leftover after parsing attributes in process `syz.0.217'. [ 30.399968][ T3972] bridge0: port 1(bridge_slave_0) entered disabled state [ 30.493236][ T3992] bridge0: port 1(bridge_slave_0) entered disabled state [ 30.513080][ T3992] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 30.660451][ T4023] netlink: 12 bytes leftover after parsing attributes in process `syz.1.238'. [ 30.738676][ T4037] netlink: 28 bytes leftover after parsing attributes in process `syz.0.243'. [ 30.766523][ T4037] netlink: 28 bytes leftover after parsing attributes in process `syz.0.243'. [ 30.825177][ T4047] ip6tnl1: entered allmulticast mode [ 30.839036][ T4053] Driver unsupported XDP return value 0 on prog (id 6) dev N/A, expect packet loss! [ 30.849258][ T4052] netlink: 'syz.2.250': attribute type 3 has an invalid length. [ 30.915117][ T4062] loop1: detected capacity change from 0 to 512 [ 30.940691][ T4062] EXT4-fs (loop1): 1 truncate cleaned up [ 30.952302][ T4062] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 30.989779][ T3293] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 31.220411][ T4116] netdevsim netdevsim0 netdevsim0: entered allmulticast mode [ 31.236863][ T4116] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 31.327320][ T4137] loop2: detected capacity change from 0 to 512 [ 31.363900][ T4142] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 31.390127][ T4142] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 31.411046][ T4137] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 31.412970][ T4150] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 31.438726][ T4150] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 31.471104][ T3294] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 31.549671][ T4166] loop2: detected capacity change from 0 to 1024 [ 31.578666][ T4166] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 31.614901][ T3294] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 31.707478][ T4194] IPVS: Error connecting to the multicast addr [ 32.007030][ T28] kauditd_printk_skb: 140 callbacks suppressed [ 32.007045][ T28] audit: type=1400 audit(31.988:297): avc: denied { create } for pid=4245 comm="syz.2.339" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=rawip_socket permissive=1 [ 32.117452][ T4261] netlink: 'syz.2.346': attribute type 12 has an invalid length. [ 32.164022][ T28] audit: type=1400 audit(32.138:298): avc: denied { setopt } for pid=4264 comm="syz.0.348" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 32.190808][ T12] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 32.200580][ T12] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 32.210499][ T12] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 32.232873][ T12] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 32.245613][ T4271] loop0: detected capacity change from 0 to 512 [ 32.264854][ T4271] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c198, mo2=0002] [ 32.277794][ T4271] System zones: 1-12 [ 32.291488][ T4271] EXT4-fs error (device loop0): ext4_iget_extra_inode:5128: inode #15: comm syz.0.350: corrupted in-inode xattr: e_value size too large [ 32.307790][ T28] audit: type=1400 audit(32.288:299): avc: denied { create } for pid=4276 comm="syz.4.353" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 32.347525][ T4271] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 32.349155][ T4271] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.350: couldn't read orphan inode 15 (err -117) [ 32.349438][ T4272] loop2: detected capacity change from 0 to 8192 [ 32.358383][ C0] EXT4-fs (loop0): error count since last fsck: 1 [ 32.358402][ C0] EXT4-fs (loop0): initial error at time 32: ext4_iget_extra_inode:5128: inode 15 [ 32.358431][ C0] EXT4-fs (loop0): last error at time 32: ext4_iget_extra_inode:5128: inode 15 [ 32.372127][ T4272] ======================================================= [ 32.372127][ T4272] WARNING: The mand mount option has been deprecated and [ 32.372127][ T4272] and is ignored by this kernel. Remove the mand [ 32.372127][ T4272] option from the mount to silence this warning. [ 32.372127][ T4272] ======================================================= [ 32.376520][ C0] [ 32.438569][ T28] audit: type=1400 audit(32.368:300): avc: denied { write } for pid=4282 comm="syz.1.356" path="socket:[7232]" dev="sockfs" ino=7232 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 32.443465][ T4271] loop0: lost filesystem error report for type 5 error -117 [ 32.481589][ T28] audit: type=1400 audit(32.458:301): avc: denied { mount } for pid=4270 comm="syz.2.351" name="/" dev="loop2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 32.489099][ T4271] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 32.542369][ T28] audit: type=1400 audit(32.518:302): avc: denied { write } for pid=4268 comm="syz.0.350" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 32.566198][ T28] audit: type=1400 audit(32.518:303): avc: denied { write } for pid=4268 comm="syz.0.350" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 32.597734][ T28] audit: type=1400 audit(32.518:304): avc: denied { rename } for pid=4268 comm="syz.0.350" name="file0" dev="loop0" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 32.608574][ T4299] loop4: detected capacity change from 0 to 512 [ 32.636437][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 32.648576][ T4303] __nla_validate_parse: 5 callbacks suppressed [ 32.648639][ T4303] netlink: 156 bytes leftover after parsing attributes in process `syz.2.364'. [ 32.655053][ T28] audit: type=1400 audit(32.558:305): avc: denied { create } for pid=4296 comm="syz.3.362" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=can_socket permissive=1 [ 32.683432][ T28] audit: type=1400 audit(32.558:306): avc: denied { unmount } for pid=3294 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 32.736832][ T4299] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 32.777915][ T4299] EXT4-fs error (device loop4): ext4_acquire_dquot:7032: comm syz.4.363: Failed to acquire dquot type 0 [ 32.849556][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 32.938734][ T4343] loop4: detected capacity change from 0 to 512 [ 32.950444][ T4345] netlink: 76 bytes leftover after parsing attributes in process `syz.2.384'. [ 32.958167][ T4343] ext4: Unknown parameter 'noacl' [ 32.977340][ T4349] netlink: 4 bytes leftover after parsing attributes in process `syz.3.387'. [ 32.998335][ T4349] macsec1: entered promiscuous mode [ 33.006007][ T4349] dummy0: entered promiscuous mode [ 33.012194][ T4349] macsec1: entered allmulticast mode [ 33.017700][ T4349] dummy0: entered allmulticast mode [ 33.024326][ T4349] dummy0: left allmulticast mode [ 33.036892][ T9] dummy0: left promiscuous mode [ 33.057826][ T4355] tipc: Invalid UDP bearer configuration [ 33.057840][ T4355] tipc: Enabling of bearer rejected, failed to enable media [ 33.130032][ T4365] loop3: detected capacity change from 0 to 128 [ 33.371124][ T4409] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 33.394417][ T4410] macsec1: entered allmulticast mode [ 33.414999][ T4410] dummy0: entered allmulticast mode [ 33.423523][ T4409] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.416: Invalid block bitmap block 0 in block_group 0 [ 33.445353][ T4410] dummy0: entered promiscuous mode [ 33.460953][ T4409] loop3: lost filesystem error report for type 5 error -117 [ 33.461996][ T4424] sg_write: data in/out 451548/226 bytes for SCSI command 0x0-- guessing data in; [ 33.461996][ T4424] program syz.4.421 not setting count and/or reply_len properly [ 33.474714][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 33.492860][ C1] EXT4-fs (loop3): initial error at time 33: ext4_read_block_bitmap_nowait:483 [ 33.493215][ T4409] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6679: Corrupt filesystem [ 33.501910][ C1] EXT4-fs (loop3): last error at time 33: ext4_read_block_bitmap_nowait:483 [ 33.520706][ T4410] dummy0: left allmulticast mode [ 33.546382][ T3420] dummy0: left promiscuous mode [ 33.550004][ T4409] loop3: lost filesystem error report for type 5 error -117 [ 33.557749][ T4409] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #11: comm syz.3.416: attempt to clear invalid blocks 983261 len 1 [ 33.579859][ T4409] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 33.582105][ T4409] EXT4-fs error (device loop3): __ext4_get_inode_loc:4885: comm syz.3.416: Invalid inode table block 0 in block_group 0 [ 33.605466][ T4409] loop3: lost filesystem error report for type 5 error -117 [ 33.605623][ T4409] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 33.638294][ T4409] loop3: lost filesystem error report for type 5 error -117 [ 33.639705][ T4409] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem [ 33.667154][ T4409] loop3: lost filesystem error report for type 5 error -117 [ 33.667704][ T4409] EXT4-fs error (device loop3): __ext4_get_inode_loc:4885: comm syz.3.416: Invalid inode table block 0 in block_group 0 [ 33.692618][ T4409] loop3: lost filesystem error report for type 5 error -117 [ 33.695461][ T4409] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 33.737475][ T4409] loop3: lost filesystem error report for type 5 error -117 [ 33.739137][ T4409] EXT4-fs error (device loop3): ext4_truncate:4690: inode #11: comm syz.3.416: mark_inode_dirty error [ 33.787439][ T4409] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 33.788203][ T4409] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem [ 33.825401][ T4409] loop3: lost filesystem error report for type 5 error -117 [ 33.825758][ T4409] EXT4-fs error (device loop3): __ext4_get_inode_loc:4885: comm syz.3.416: Invalid inode table block 0 in block_group 0 [ 33.863346][ T4464] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 ! [ 33.875591][ T4409] EXT4-fs (loop3): 1 truncate cleaned up [ 33.883224][ T4409] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 33.924779][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 33.995321][ T4484] set_capacity_and_notify: 1 callbacks suppressed [ 33.995336][ T4484] loop4: detected capacity change from 0 to 512 [ 34.022245][ T4484] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 34.077462][ T4484] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 34.094751][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 34.101195][ C0] EXT4-fs (loop4): initial error at time 34: ext4_mb_generate_buddy:1317 [ 34.109662][ C0] EXT4-fs (loop4): last error at time 34: ext4_mb_generate_buddy:1317 [ 34.131060][ T4484] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2860: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 34.163011][ T4484] EXT4-fs (loop4): 1 truncate cleaned up [ 34.204100][ T4484] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 34.207274][ T4515] loop0: detected capacity change from 0 to 128 [ 34.261179][ T4525] IPVS: sync thread started: state = BACKUP, mcast_ifn = batadv_slave_0, syncid = 1, id = 0 [ 34.273241][ T4484] EXT4-fs warning (device loop4): ext4_resize_begin:82: There are errors in the filesystem, so online resizing is not allowed [ 34.336735][ T4484] syz.4.454 (4484) used greatest stack depth: 10976 bytes left [ 34.370662][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 34.394923][ T4539] netlink: 8 bytes leftover after parsing attributes in process `syz.3.480'. [ 34.416986][ T4539] netlink: 24 bytes leftover after parsing attributes in process `syz.3.480'. [ 34.459047][ T4539] netlink: 105 bytes leftover after parsing attributes in process `syz.3.480'. [ 34.487563][ T4539] netlink: 24 bytes leftover after parsing attributes in process `syz.3.480'. [ 34.514397][ T4559] loop1: detected capacity change from 0 to 512 [ 34.539188][ T4559] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 34.573379][ T4559] EXT4-fs (loop1): 1 truncate cleaned up [ 34.587466][ T4559] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 34.658711][ T3293] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 34.720396][ T4588] netlink: 20 bytes leftover after parsing attributes in process `syz.0.503'. [ 34.842051][ T4605] netlink: 'syz.0.511': attribute type 3 has an invalid length. [ 34.842889][ T4606] sctp: [Deprecated]: syz.1.510 (pid 4606) Use of struct sctp_assoc_value in delayed_ack socket option. [ 34.842889][ T4606] Use struct sctp_sack_info instead [ 34.868606][ T4606] sctp: [Deprecated]: syz.1.510 (pid 4606) Use of struct sctp_assoc_value in delayed_ack socket option. [ 34.868606][ T4606] Use struct sctp_sack_info instead [ 34.922543][ T4610] netlink: 20 bytes leftover after parsing attributes in process `syz.0.513'. [ 34.953403][ T4612] loop0: detected capacity change from 0 to 512 [ 34.967875][ T4612] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 34.977135][ T4612] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 34.985206][ T4612] System zones: 0-1, 15-15, 18-18, 34-34 [ 34.991172][ T4612] EXT4-fs (loop0): orphan cleanup on readonly fs [ 34.998282][ T4612] EXT4-fs warning (device loop0): ext4_enable_quotas:7267: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 35.013292][ T4612] EXT4-fs (loop0): Cannot turn on quotas: error -22 [ 35.020294][ T4612] EXT4-fs error (device loop0): ext4_orphan_get:1425: comm syz.0.514: bad orphan inode 16 [ 35.030842][ T4612] fserror_report: 1 callbacks suppressed [ 35.030855][ T4612] loop0: lost filesystem error report for type 5 error -117 [ 35.036916][ T4612] ext4_test_bit(bit=15, block=18) = 1 [ 35.049586][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 35.049605][ C1] EXT4-fs (loop0): initial error at time 35: ext4_orphan_get:1425 [ 35.049629][ C1] EXT4-fs (loop0): last error at time 35: ext4_orphan_get:1425 [ 35.072497][ T4612] is_bad_inode(inode)=0 [ 35.076799][ T4612] NEXT_ORPHAN(inode)=0 [ 35.080886][ T4612] max_ino=32 [ 35.084173][ T4612] i_nlink=2 [ 35.088323][ T4612] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 35.572106][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 35.627178][ T4623] netlink: 240 bytes leftover after parsing attributes in process `syz.0.515'. [ 35.671595][ T4632] loop1: detected capacity change from 0 to 512 [ 35.706935][ T4632] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 35.770645][ T3293] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 35.911615][ T4669] netlink: 'syz.1.537': attribute type 21 has an invalid length. [ 35.935479][ T4669] IPv6: NLM_F_CREATE should be specified when creating new route [ 36.052122][ T4691] netlink: 'syz.3.549': attribute type 2 has an invalid length. [ 36.142124][ T4707] loop2: detected capacity change from 0 to 512 [ 36.156513][ T4707] EXT4-fs error (device loop2): ext4_orphan_get:1425: comm syz.2.557: bad orphan inode 17 [ 36.156549][ T4707] loop2: lost filesystem error report for type 5 error -117 [ 36.156690][ T4707] ext4_test_bit(bit=16, block=4) = 1 [ 36.156705][ T4707] is_bad_inode(inode)=0 [ 36.156712][ T4707] NEXT_ORPHAN(inode)=0 [ 36.156720][ T4707] max_ino=32 [ 36.156726][ T4707] i_nlink=1 [ 36.157072][ T4707] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 36.159686][ T4707] EXT4-fs warning (device loop2): ext4_resize_begin:72: won't resize using backup superblock at 1 [ 36.189842][ T3294] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 36.265681][ T4718] loop1: detected capacity change from 0 to 8192 [ 36.299648][ T4718] syz.1.562: attempt to access beyond end of device [ 36.299648][ T4718] loop1: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 36.439524][ T4744] process 'syz.3.573' launched './file2' with NULL argv: empty string added [ 36.486353][ T4749] netlink: 'syz.1.575': attribute type 3 has an invalid length. [ 36.523109][ T4756] loop4: detected capacity change from 0 to 512 [ 36.538803][ T4756] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 36.571124][ T4763] netlink: 'syz.3.581': attribute type 1 has an invalid length. [ 36.581876][ T4765] loop0: detected capacity change from 0 to 128 [ 36.588645][ T4765] vfat: Unknown parameter '0xffffffffffffffff18446744073709551615v-9t צvyfcfdU|``%6xR7A$A<[%{}!kXbxAp18446744073709551615' [ 36.607608][ T4752] Zero length message leads to an empty skb [ 36.648806][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 36.650875][ T4771] IPv6: sit1: Disabled Multicast RS [ 36.663844][ T4771] sit1: entered allmulticast mode [ 37.165560][ T4863] ip6t_REJECT: ECHOREPLY is not supported [ 37.221147][ T4872] xt_hl: Unknown TTL match mode: 5 [ 37.234969][ T4874] netlink: 'syz.0.637': attribute type 23 has an invalid length. [ 37.558080][ T4922] loop2: detected capacity change from 0 to 512 [ 37.591225][ T4922] EXT4-fs error (device loop2): ext4_clear_blocks:876: inode #13: comm syz.2.658: attempt to clear invalid blocks 2 len 1 [ 37.626168][ T4922] loop2: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 37.626403][ T4922] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1317: group 0, [ 37.635665][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 37.635702][ C1] EXT4-fs (loop2): initial error at time 37: ext4_clear_blocks:876: inode 13 [ 37.635734][ C1] EXT4-fs (loop2): last error at time 37: ext4_clear_blocks:876: inode 13 [ 37.668474][ T4922] block bitmap and bg descriptor inconsistent: 216 vs 220 free clusters [ 37.690052][ T4922] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.658: invalid indirect mapped block 1819239214 (level 0) [ 37.704357][ T4922] loop2: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 37.707278][ T4922] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.658: invalid indirect mapped block 1819239214 (level 1) [ 37.738437][ T4922] loop2: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 37.740633][ T4922] EXT4-fs (loop2): 1 truncate cleaned up [ 37.762821][ T4938] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 37.783406][ T4922] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 37.786869][ T28] kauditd_printk_skb: 54 callbacks suppressed [ 37.786883][ T28] audit: type=1400 audit(37.768:358): avc: denied { read write } for pid=4942 comm="syz.1.667" name="ptp0" dev="devtmpfs" ino=246 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 37.797068][ T4938] EXT4-fs error (device loop3): ext4_orphan_get:1425: comm syz.3.668: bad orphan inode 15 [ 37.813257][ T28] audit: type=1400 audit(37.768:359): avc: denied { open } for pid=4942 comm="syz.1.667" path="/dev/ptp0" dev="devtmpfs" ino=246 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 37.825044][ T4938] loop3: lost filesystem error report for type 5 error -117 [ 37.857438][ T28] audit: type=1400 audit(37.788:360): avc: denied { ioctl } for pid=4942 comm="syz.1.667" path="/dev/ptp0" dev="devtmpfs" ino=246 ioctlcmd=0x3d0b scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 37.864812][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 37.864830][ C1] EXT4-fs (loop3): initial error at time 37: ext4_orphan_get:1425 [ 37.864854][ C1] EXT4-fs (loop3): last error at time 37: ext4_orphan_get:1425 [ 37.875216][ T4938] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 37.912673][ T4949] __nla_validate_parse: 7 callbacks suppressed [ 37.912689][ T4949] netlink: 132 bytes leftover after parsing attributes in process `syz.4.680'. [ 37.945176][ T3294] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 38.039034][ T4938] EXT4-fs error (device loop3): __ext4_new_inode:1081: comm syz.3.668: reserved inode found cleared - inode=18 [ 38.040213][ T28] audit: type=1400 audit(38.018:361): avc: denied { write } for pid=4936 comm="syz.3.668" name="/" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 38.124519][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 38.164097][ T4976] SET target dimension over the limit! [ 38.237734][ T4984] bridge0: port 1(bridge_slave_0) entered disabled state [ 38.259765][ T4997] netlink: 12 bytes leftover after parsing attributes in process `syz.2.690'. [ 38.261404][ T28] audit: type=1400 audit(38.238:362): avc: denied { create } for pid=4990 comm="syz.1.700" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 38.302019][ T28] audit: type=1400 audit(38.268:363): avc: denied { ioctl } for pid=4990 comm="syz.1.700" path="socket:[9197]" dev="sockfs" ino=9197 ioctlcmd=0x8941 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 38.358065][ T5007] netlink: 4 bytes leftover after parsing attributes in process `syz.0.698'. [ 38.419223][ T28] audit: type=1400 audit(38.398:364): avc: denied { mount } for pid=5009 comm="syz.1.699" name="/" dev="loop1" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1 [ 38.449220][ T5016] EXT4-fs: Ignoring removed orlov option [ 38.449564][ T5016] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 38.454926][ T5016] EXT4-fs error (device loop0): ext4_ext_check_inode:521: inode #16: comm syz.0.701: pblk 0 bad header/extent: invalid magic - magic 0, entries 0, max 28(0), depth 0(0) [ 38.455026][ T5016] loop0: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 38.455149][ T5016] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.701: couldn't read orphan inode 16 (err -117) [ 38.455170][ T5016] loop0: lost filesystem error report for type 5 error -117 [ 38.455849][ T5016] EXT4-fs (loop0): 1 orphan inode deleted [ 38.458495][ T5016] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 38.460346][ T5010] Symlink component flag not implemented [ 38.460352][ T5010] Symlink component flag not implemented [ 38.460638][ T5010] Symlink component flag not implemented (129) [ 38.460648][ T5010] Symlink component flag not implemented (6) [ 38.466579][ T5016] EXT4-fs error (device loop0): ext4_check_all_de:659: inode #12: block 7: comm syz.0.701: bad entry in directory: rec_len is too small for name_len - offset=0, inode=13, rec_len=16, size=124 fake=0 [ 38.474505][ T28] audit: type=1400 audit(38.448:365): avc: denied { write } for pid=5014 comm="syz.0.701" name="file0" dev="loop0" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 38.490469][ T28] audit: type=1400 audit(38.468:366): avc: denied { unmount } for pid=3293 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1 [ 38.491895][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 38.865945][ T5061] netlink: 24 bytes leftover after parsing attributes in process `syz.0.733'. [ 38.899689][ T28] audit: type=1400 audit(38.878:367): avc: denied { connect } for pid=5068 comm="syz.1.727" lport=136 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 39.059725][ T5085] set_capacity_and_notify: 3 callbacks suppressed [ 39.059740][ T5085] loop0: detected capacity change from 0 to 1024 [ 39.127331][ T5085] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 39.177057][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 39.217102][ T5116] netlink: 'syz.3.745': attribute type 6 has an invalid length. [ 39.247403][ T5116] netlink: 164 bytes leftover after parsing attributes in process `syz.3.745'. [ 39.395421][ T5145] sg_write: data in/out 451548/226 bytes for SCSI command 0x0-- guessing data in; [ 39.395421][ T5145] program syz.2.759 not setting count and/or reply_len properly [ 39.471208][ T5154] loop1: detected capacity change from 0 to 512 [ 39.549556][ T5164] netlink: 8 bytes leftover after parsing attributes in process `syz.4.772'. [ 39.706369][ T5184] sg_write: data in/out 451548/226 bytes for SCSI command 0x0-- guessing data in; [ 39.706369][ T5184] program syz.0.782 not setting count and/or reply_len properly [ 39.728554][ T5188] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 39.955316][ T5226] netlink: 156 bytes leftover after parsing attributes in process `syz.1.801'. [ 40.007027][ T5235] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.023160][ T5235] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 40.350609][ T5296] IPVS: sync thread started: state = BACKUP, mcast_ifn = batadv_slave_0, syncid = 1, id = 0 [ 40.575840][ T5333] loop1: detected capacity change from 0 to 512 [ 40.595550][ T5333] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 40.620468][ T5333] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 40.637139][ T5333] EXT4-fs (loop1): 1 truncate cleaned up [ 40.644710][ C1] EXT4-fs (loop1): error count since last fsck: 1 [ 40.651163][ C1] EXT4-fs (loop1): initial error at time 40: ext4_mb_generate_buddy:1317 [ 40.659621][ C1] EXT4-fs (loop1): last error at time 40: ext4_mb_generate_buddy:1317 [ 40.665339][ T5333] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 40.689895][ T5333] EXT4-fs warning (device loop1): ext4_resize_begin:82: There are errors in the filesystem, so online resizing is not allowed [ 40.736676][ T3293] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 40.766723][ T5350] loop3: detected capacity change from 0 to 512 [ 40.797933][ T5350] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 40.839402][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 41.141748][ T5363] loop0: detected capacity change from 0 to 512 [ 41.222771][ T5380] loop1: detected capacity change from 0 to 128 [ 41.239179][ T5380] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 41.327678][ T5394] netlink: 132 bytes leftover after parsing attributes in process `syz.4.882'. [ 41.327923][ T3293] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 41.353030][ T5397] netlink: 28 bytes leftover after parsing attributes in process `syz.3.881'. [ 41.490121][ T5420] loop0: detected capacity change from 0 to 512 [ 41.528391][ T5420] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 41.543537][ T5420] EXT4-fs (loop0): 1 truncate cleaned up [ 41.550284][ T5420] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 41.580326][ T5432] loop2: detected capacity change from 0 to 512 [ 41.589432][ T5432] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 41.624466][ T5432] EXT4-fs error (device loop2): ext4_orphan_get:1425: comm syz.2.897: bad orphan inode 15 [ 41.636795][ T5441] netlink: 16 bytes leftover after parsing attributes in process `syz.3.901'. [ 41.643291][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 41.645836][ T5441] tipc: Failed to obtain node identity [ 41.661195][ T5441] tipc: Enabling of bearer rejected, failed to enable media [ 41.685949][ T5432] loop2: lost filesystem error report for type 5 error -117 [ 41.687152][ T5432] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 41.747783][ T5432] EXT4-fs error (device loop2): __ext4_new_inode:1081: comm syz.2.897: reserved inode found cleared - inode=18 [ 41.783420][ T5452] loop0: detected capacity change from 0 to 1024 [ 41.795074][ T3294] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 41.816826][ T5459] tmpfs: Bad value for 'mpol' [ 41.825468][ T5452] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 41.856856][ T5452] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 41.871816][ T5452] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 41.880234][ T5452] EXT4-fs (loop0): orphan cleanup on readonly fs [ 41.896798][ T5452] EXT4-fs error (device loop0): ext4_free_blocks:6718: comm syz.0.916: Freeing blocks not in datazone - block = 0, count = 4096 [ 41.926104][ T5452] loop0: lost filesystem error report for type 5 error -117 [ 41.929536][ T5452] EXT4-fs (loop0): 1 orphan inode deleted [ 41.936910][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 41.936942][ C1] EXT4-fs (loop0): initial error at time 41: ext4_free_blocks:6718 [ 41.936959][ C1] EXT4-fs (loop0): last error at time 41: ext4_free_blocks:6718 [ 41.966615][ T5452] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 41.990262][ T5474] loop1: detected capacity change from 0 to 512 [ 41.998412][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 42.031978][ T5474] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 42.053453][ T5483] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 42.087883][ T5490] xt_connbytes: Forcing CT accounting to be enabled [ 42.097020][ T5474] EXT4-fs error (device loop1): ext4_get_first_dir_block:3545: inode #12: block 32: comm syz.1.915: bad entry in directory: inode out of bounds - offset=0, inode=67108867, rec_len=2048, size=2048 fake=0 [ 42.125537][ T5489] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 42.132684][ T5483] FAT-fs (loop4): error, invalid access to FAT (entry 0x0fffff00) [ 42.150709][ T5483] FAT-fs (loop4): error, invalid access to FAT (entry 0x0fffff00) [ 42.157725][ T5489] EXT4-fs (loop2): 1 truncate cleaned up [ 42.167388][ T5474] EXT4-fs error (device loop1): ext4_get_first_dir_block:3548: inode #12: comm syz.1.915: directory missing '.' [ 42.173405][ T5489] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 42.183966][ T5483] FAT-fs (loop4): error, invalid access to FAT (entry 0x0fffff00) [ 42.214745][ T5483] FAT-fs (loop4): error, invalid access to FAT (entry 0x0fffff00) [ 42.223028][ T5483] FAT-fs (loop4): error, invalid access to FAT (entry 0x0fffff00) [ 42.230083][ T5495] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 ! [ 42.231578][ T5483] FAT-fs (loop4): error, invalid access to FAT (entry 0x0fffff00) [ 42.240884][ T3293] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 42.247914][ T5483] FAT-fs (loop4): error, invalid access to FAT (entry 0x0fffff00) [ 42.248112][ T5483] FAT-fs (loop4): error, invalid access to FAT (entry 0x0fffff00) [ 42.273385][ T5483] FAT-fs (loop4): error, invalid access to FAT (entry 0x0fffff00) [ 42.314543][ T30] kworker/u8:1: attempt to access beyond end of device [ 42.314543][ T30] loop4: rw=1, sector=17179852706, nr_sectors = 64 limit=512 [ 42.347944][ T3294] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 42.414412][ T5509] netlink: 'syz.4.932': attribute type 3 has an invalid length. [ 42.666854][ T5540] EXT4-fs (loop2): stripe (4) is not aligned with cluster size (4096), stripe is disabled [ 42.685871][ T5543] program syz.0.949 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 42.713599][ T5540] EXT4-fs error (device loop2): ext4_map_blocks:791: inode #3: block 2: comm syz.2.948: lblock 2 mapped to illegal pblock 2 (length 1) [ 42.735096][ T5545] program syz.0.949 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 42.737693][ T5540] loop2: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 42.753024][ T5540] EXT4-fs error (device loop2): ext4_map_blocks:791: inode #3: block 48: comm syz.2.948: lblock 0 mapped to illegal pblock 48 (length 1) [ 42.762190][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 42.762210][ C0] EXT4-fs (loop2): initial error at time 42: ext4_map_blocks:791: inode 3: block 2 [ 42.762241][ C0] EXT4-fs (loop2): last error at time 42: ext4_map_blocks:791: inode 3: block 2 [ 42.807833][ T5540] loop2: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 42.807964][ T5540] __quota_error: 29 callbacks suppressed [ 42.807975][ T5540] Quota error (device loop2): v2_write_file_info: Can't write info structure [ 42.831703][ T5540] EXT4-fs error (device loop2): ext4_acquire_dquot:7032: comm syz.2.948: Failed to acquire dquot type 0 [ 42.843096][ T5540] loop2: lost filesystem error report for type 5 error -117 [ 42.843228][ T5540] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 42.860593][ T5540] loop2: lost filesystem error report for type 5 error -117 [ 42.860767][ T5540] EXT4-fs error (device loop2): ext4_evict_inode:267: inode #11: comm syz.2.948: mark_inode_dirty error [ 42.884971][ T5540] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 42.885110][ T5540] EXT4-fs warning (device loop2): ext4_evict_inode:270: couldn't mark inode dirty (err -117) [ 42.906518][ T5540] EXT4-fs (loop2): 1 orphan inode deleted [ 42.912726][ T5540] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 42.925605][ T12] EXT4-fs error (device loop2): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:0: lblock 1 mapped to illegal pblock 1 (length 1) [ 42.940199][ T12] loop2: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 42.940386][ T12] Quota error (device loop2): remove_tree: Can't read quota data block 1 [ 42.958629][ T12] EXT4-fs error (device loop2): ext4_release_dquot:7068: comm kworker/u8:0: Failed to release dquot type 0 [ 42.986875][ T5540] EXT4-fs error (device loop2): __ext4_get_inode_loc:4885: comm syz.2.948: Invalid inode table block 1 in block_group 0 [ 42.999509][ T28] audit: type=1400 audit(42.968:396): avc: denied { setattr } for pid=5539 comm="syz.2.948" path="/176/file0" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 43.029177][ T28] audit: type=1326 audit(42.968:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5555 comm="syz.0.954" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff00d73ce59 code=0x7ffc0000 [ 43.054928][ T28] audit: type=1326 audit(42.968:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5555 comm="syz.0.954" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff00d73ce59 code=0x7ffc0000 [ 43.079721][ T5540] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 43.089453][ T28] audit: type=1326 audit(42.968:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5555 comm="syz.0.954" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff00d73ce59 code=0x7ffc0000 [ 43.129645][ T28] audit: type=1326 audit(42.968:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5555 comm="syz.0.954" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7ff00d73ce59 code=0x7ffc0000 [ 43.154740][ T28] audit: type=1326 audit(42.968:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5555 comm="syz.0.954" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff00d73ce59 code=0x7ffc0000 [ 43.179888][ T28] audit: type=1326 audit(42.968:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5555 comm="syz.0.954" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff00d73ce59 code=0x7ffc0000 [ 43.204986][ T28] audit: type=1326 audit(42.968:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5555 comm="syz.0.954" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff00d73ce59 code=0x7ffc0000 [ 43.277800][ T3294] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 43.297027][ T3294] EXT4-fs error (device loop2): __ext4_get_inode_loc:4885: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 43.321563][ T3294] loop2: lost filesystem error report for type 5 error -117 [ 43.328116][ T3294] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 43.360017][ T3294] loop2: lost filesystem error report for type 5 error -117 [ 43.369731][ T3294] EXT4-fs error (device loop2): ext4_quota_off:7316: inode #3: comm syz-executor: mark_inode_dirty error [ 43.391086][ T3294] loop2: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 43.451374][ T5581] xt_TCPMSS: Only works on TCP SYN packets [ 43.456901][ T5582] __nla_validate_parse: 2 callbacks suppressed [ 43.456916][ T5582] netlink: 8 bytes leftover after parsing attributes in process `syz.2.964'. [ 43.487513][ T5579] netlink: 'syz.4.962': attribute type 6 has an invalid length. [ 43.533170][ T5579] netlink: 164 bytes leftover after parsing attributes in process `syz.4.962'. [ 43.533350][ T5590] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 43.554056][ T5590] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 43.624958][ T5604] bond0: (slave bond_slave_1): Releasing backup interface [ 43.688077][ T5614] xt_hl: Unknown TTL match mode: 5 [ 43.776272][ T5627] EXT4-fs error (device loop0): ext4_clear_blocks:876: inode #13: comm syz.0.986: attempt to clear invalid blocks 2 len 1 [ 43.791397][ T5627] loop0: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 43.794713][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 43.810290][ C1] EXT4-fs (loop0): initial error at time 43: ext4_clear_blocks:876: inode 13 [ 43.819205][ C1] EXT4-fs (loop0): last error at time 43: ext4_clear_blocks:876: inode 13 [ 43.828858][ T5627] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 216 vs 220 free clusters [ 43.843691][ T5627] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.986: invalid indirect mapped block 1819239214 (level 0) [ 43.856599][ T5635] syz.4.991: attempt to access beyond end of device [ 43.856599][ T5635] loop4: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 43.858384][ T5627] loop0: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 43.871263][ T5627] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #13: comm syz.0.986: invalid indirect mapped block 1819239214 (level 1) [ 43.899003][ T5627] loop0: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 43.899558][ T5627] EXT4-fs (loop0): 1 truncate cleaned up [ 43.918640][ T5627] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 44.013543][ T5644] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 44.023735][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.043221][ T5644] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 44.175268][ T5660] set_capacity_and_notify: 7 callbacks suppressed [ 44.175361][ T5660] loop2: detected capacity change from 0 to 512 [ 44.189789][ T5660] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 44.200587][ T5660] EXT4-fs (loop2): 1 truncate cleaned up [ 44.207414][ T5660] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 44.212592][ T5665] xt_connbytes: Forcing CT accounting to be enabled [ 44.238948][ T3294] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.320054][ T5677] netlink: 83992 bytes leftover after parsing attributes in process `syz.2.1012'. [ 44.337002][ T5677] netlink: zone id is out of range [ 44.342241][ T5677] netlink: zone id is out of range [ 44.349160][ T5677] netlink: zone id is out of range [ 44.365973][ T5677] netlink: set zone limit has 8 unknown bytes [ 44.588574][ T5691] loop4: detected capacity change from 0 to 128 [ 44.665536][ T5693] loop4: detected capacity change from 0 to 512 [ 44.678994][ T5693] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 44.731135][ T5693] EXT4-fs (loop4): 1 truncate cleaned up [ 44.746842][ T5693] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 44.832165][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.901083][ T5698] loop2: detected capacity change from 0 to 512 [ 44.927797][ T5698] EXT4-fs: Ignoring removed orlov option [ 44.945243][ T5698] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 44.958526][ T5698] EXT4-fs error (device loop2): ext4_ext_check_inode:521: inode #16: comm syz.2.1020: pblk 0 bad header/extent: invalid magic - magic 0, entries 0, max 28(0), depth 0(0) [ 44.984783][ T5698] loop2: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117 [ 44.985002][ T5698] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.1020: couldn't read orphan inode 16 (err -117) [ 45.006126][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 45.006146][ C0] EXT4-fs (loop2): initial error at time 44: ext4_ext_check_inode:521: inode 16 [ 45.006176][ C0] EXT4-fs (loop2): last error at time 44: ext4_ext_check_inode:521: inode 16 [ 45.059691][ T5698] loop2: lost filesystem error report for type 5 error -117 [ 45.059835][ T5698] EXT4-fs (loop2): 1 orphan inode deleted [ 45.082551][ T5705] netlink: 304 bytes leftover after parsing attributes in process `syz.4.1024'. [ 45.120619][ T5698] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 45.183044][ T5698] EXT4-fs error (device loop2): ext4_check_all_de:659: inode #12: block 7: comm syz.2.1020: bad entry in directory: rec_len is too small for name_len - offset=0, inode=13, rec_len=16, size=124 fake=0 [ 45.248640][ T3294] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.292040][ T5711] loop2: detected capacity change from 0 to 512 [ 45.411435][ T5686] syz.3.1015 (5686) used greatest stack depth: 10400 bytes left [ 45.486754][ T5731] netlink: 'syz.0.1037': attribute type 28 has an invalid length. [ 45.661224][ T5754] loop0: detected capacity change from 0 to 512 [ 45.682473][ T5754] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 45.691351][ T5756] loop3: detected capacity change from 0 to 1024 [ 45.703021][ T5758] loop2: detected capacity change from 0 to 512 [ 45.713935][ T5756] EXT4-fs (loop3): stripe (4) is not aligned with cluster size (4096), stripe is disabled [ 45.743537][ T5754] FAT-fs (loop0): error, invalid access to FAT (entry 0x0fffff00) [ 45.753741][ T5758] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 45.776386][ T5754] FAT-fs (loop0): error, invalid access to FAT (entry 0x0fffff00) [ 45.785075][ T5756] EXT4-fs error (device loop3): ext4_map_blocks:791: inode #3: block 2: comm syz.3.1048: lblock 2 mapped to illegal pblock 2 (length 1) [ 45.803227][ T5758] EXT4-fs error (device loop2): ext4_get_first_dir_block:3545: inode #12: block 32: comm syz.2.1049: bad entry in directory: inode out of bounds - offset=0, inode=67108867, rec_len=2048, size=2048 fake=0 [ 45.824121][ T5754] FAT-fs (loop0): error, invalid access to FAT (entry 0x0fffff00) [ 45.832072][ T5756] loop3: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 45.832255][ T5756] EXT4-fs error (device loop3): ext4_map_blocks:791: inode #3: block 48: comm syz.3.1048: lblock 0 mapped to illegal pblock 48 (length 1) [ 45.841315][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 45.841336][ C0] EXT4-fs (loop3): initial error at time 45: ext4_map_blocks:791: inode 3: block 2 [ 45.841371][ C0] EXT4-fs (loop3): last error at time 45: ext4_map_blocks:791: inode 3: block 2 [ 45.882897][ T5754] FAT-fs (loop0): error, invalid access to FAT (entry 0x0fffff00) [ 45.891238][ T5754] FAT-fs (loop0): error, invalid access to FAT (entry 0x0fffff00) [ 45.899445][ T5758] EXT4-fs error (device loop2): ext4_get_first_dir_block:3548: inode #12: comm syz.2.1049: directory missing '.' [ 45.911903][ T5754] FAT-fs (loop0): error, invalid access to FAT (entry 0x0fffff00) [ 45.919966][ T5756] EXT4-fs error (device loop3): ext4_acquire_dquot:7032: comm syz.3.1048: Failed to acquire dquot type 0 [ 45.934728][ T5754] FAT-fs (loop0): error, invalid access to FAT (entry 0x0fffff00) [ 45.945616][ T5756] loop3: lost filesystem error report for type 5 error -117 [ 45.945842][ T5756] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 45.967960][ T3294] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.977283][ T5754] FAT-fs (loop0): error, invalid access to FAT (entry 0x0fffff00) [ 45.998923][ T5756] loop3: lost filesystem error report for type 5 error -117 [ 45.999079][ T5756] EXT4-fs error (device loop3): ext4_evict_inode:267: inode #11: comm syz.3.1048: mark_inode_dirty error [ 46.009590][ T5754] FAT-fs (loop0): error, invalid access to FAT (entry 0x0fffff00) [ 46.026045][ T5756] EXT4-fs warning (device loop3): ext4_evict_inode:270: couldn't mark inode dirty (err -117) [ 46.041888][ T5769] loop4: detected capacity change from 0 to 512 [ 46.048366][ T5756] EXT4-fs (loop3): 1 orphan inode deleted [ 46.055337][ T5756] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 46.067574][ T5769] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 46.076451][ T30] EXT4-fs error (device loop3): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:1: lblock 1 mapped to illegal pblock 1 (length 1) [ 46.098625][ T5756] EXT4-fs error (device loop3): __ext4_get_inode_loc:4885: comm syz.3.1048: Invalid inode table block 1 in block_group 0 [ 46.113009][ T2036] kworker/u8:7: attempt to access beyond end of device [ 46.113009][ T2036] loop0: rw=1, sector=17179852706, nr_sectors = 64 limit=512 [ 46.128154][ T30] EXT4-fs error (device loop3): ext4_release_dquot:7068: comm kworker/u8:1: Failed to release dquot type 0 [ 46.142209][ T5756] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 46.145138][ T5769] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 46.185299][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.198272][ T5769] EXT4-fs error (device loop4): ext4_xattr_block_get:597: inode #15: comm syz.4.1052: corrupted xattr block 32: overlapping e_value [ 46.199252][ T5779] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1054'. [ 46.221184][ T5777] loop2: detected capacity change from 0 to 512 [ 46.223500][ T3299] EXT4-fs error (device loop3): __ext4_get_inode_loc:4885: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 46.227839][ T5769] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 46.240618][ T3299] loop3: lost filesystem error report for type 5 error -117 [ 46.240706][ T3299] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 46.240774][ T3299] EXT4-fs error (device loop3): ext4_quota_off:7316: inode #3: comm syz-executor: mark_inode_dirty error [ 46.279508][ T5769] EXT4-fs error (device loop4): ext4_xattr_block_get:597: inode #15: comm syz.4.1052: corrupted xattr block 32: overlapping e_value [ 46.281075][ T5777] EXT4-fs error (device loop2): ext4_iget_extra_inode:5128: inode #15: comm syz.2.1058: corrupted in-inode xattr: e_value out of bounds [ 46.307387][ T5769] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 46.322557][ T5769] EXT4-fs error (device loop4): ext4_xattr_block_get:597: inode #15: comm syz.4.1052: corrupted xattr block 32: overlapping e_value [ 46.327418][ T5777] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.1058: couldn't read orphan inode 15 (err -117) [ 46.348083][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 46.348107][ C0] EXT4-fs (loop2): initial error at time 46: ext4_iget_extra_inode:5128: inode 15 [ 46.348137][ C0] EXT4-fs (loop2): last error at time 46: ext4_iget_extra_inode:5128: inode 15 [ 46.356250][ T5769] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=15 [ 46.364539][ T5777] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 46.373948][ T5769] EXT4-fs error (device loop4): ext4_xattr_block_find:1881: inode #15: comm syz.4.1052: corrupted xattr block 32: overlapping e_value [ 46.411294][ T3294] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.445977][ T5786] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 46.490135][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.568363][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.738787][ T5809] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1066'. [ 46.793173][ T5815] SELinux: Context system_u:object_r:netutils_exec_t:s0 is not valid (left unmapped). [ 46.796702][ T5816] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1072'. [ 46.825709][ T5816] ipvlan2: entered allmulticast mode [ 46.839227][ T5816] dummy0: entered allmulticast mode [ 46.928254][ T5830] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 46.944194][ T5830] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 46.966883][ T5830] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 46.995215][ T5830] EXT4-fs (loop2): orphan cleanup on readonly fs [ 47.003479][ T5830] EXT4-fs error (device loop2): ext4_read_inode_bitmap:169: comm syz.2.1090: Inode bitmap for bg 0 marked uninitialized [ 47.026023][ T5830] fserror_report: 2 callbacks suppressed [ 47.026110][ T5830] loop2: lost filesystem error report for type 5 error -117 [ 47.032404][ T5830] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 47.155977][ T3294] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.375707][ T5882] vhci_hcd vhci_hcd.4: invalid port number 128 [ 47.392321][ T5883] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 47.405351][ T5882] vhci_hcd vhci_hcd.4: default hub control req: 0200 v0000 i0080 l0 [ 47.441291][ T5883] EXT4-fs (loop1): 1 truncate cleaned up [ 47.471400][ T5883] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 47.535712][ T3293] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.626686][ T5914] netlink: 83992 bytes leftover after parsing attributes in process `syz.3.1121'. [ 47.661991][ T5914] netlink: zone id is out of range [ 47.667398][ T5914] netlink: zone id is out of range [ 47.673947][ T5914] netlink: zone id is out of range [ 47.742071][ T5914] netlink: set zone limit has 8 unknown bytes [ 47.888150][ T28] kauditd_printk_skb: 37 callbacks suppressed [ 47.888164][ T28] audit: type=1400 audit(47.868:438): avc: denied { write } for pid=5931 comm="dhcpcd-run-hook" name="hook-state" dev="tmpfs" ino=486 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 47.892032][ T5952] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1133'. [ 47.916487][ T28] audit: type=1400 audit(47.868:439): avc: denied { add_name } for pid=5931 comm="dhcpcd-run-hook" name="resolv.conf.sl0.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 47.916535][ T28] audit: type=1400 audit(47.868:440): avc: denied { create } for pid=5931 comm="dhcpcd-run-hook" name="resolv.conf.sl0.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 48.046244][ T28] audit: type=1400 audit(47.868:441): avc: denied { write } for pid=5931 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf.sl0.link" dev="tmpfs" ino=5040 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 48.126027][ T28] audit: type=1400 audit(47.868:442): avc: denied { append } for pid=5931 comm="dhcpcd-run-hook" name="resolv.conf.sl0.link" dev="tmpfs" ino=5040 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 48.178817][ T28] audit: type=1400 audit(47.998:443): avc: denied { write } for pid=5962 comm="rm" name="hook-state" dev="tmpfs" ino=486 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 48.215964][ T28] audit: type=1400 audit(47.998:444): avc: denied { remove_name } for pid=5962 comm="rm" name="resolv.conf.sl0.link" dev="tmpfs" ino=5040 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 48.275742][ T28] audit: type=1400 audit(47.998:445): avc: denied { unlink } for pid=5962 comm="rm" name="resolv.conf.sl0.link" dev="tmpfs" ino=5040 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 48.313225][ T28] audit: type=1400 audit(48.158:446): avc: denied { read } for pid=5979 comm="syz.4.1144" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 48.370793][ T28] audit: type=1400 audit(48.198:447): avc: denied { connect } for pid=5982 comm="syz.2.1143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 48.468564][ T6002] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 48.566222][ T6011] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 48.582776][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.617942][ T6015] SELinux: security_context_str_to_sid (system_u) failed with errno=-22 [ 48.659266][ T6011] EXT4-fs (loop3): 1 truncate cleaned up [ 48.666237][ T6018] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 48.679922][ T6011] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 48.712370][ T6018] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 48.755927][ T6023] netlink: 83992 bytes leftover after parsing attributes in process `syz.1.1157'. [ 48.778245][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 48.803592][ T6023] netlink: zone id is out of range [ 48.820699][ T6023] netlink: zone id is out of range [ 48.826880][ T6023] netlink: zone id is out of range [ 48.839916][ T6023] netlink: set zone limit has 8 unknown bytes [ 48.872804][ T6029] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1161'. [ 48.943063][ T6037] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1166'. [ 49.225928][ T6080] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1182'. [ 49.389681][ T6104] set_capacity_and_notify: 6 callbacks suppressed [ 49.389696][ T6104] loop2: detected capacity change from 0 to 512 [ 49.455318][ T6104] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 49.510577][ T3294] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.516060][ T6121] loop0: detected capacity change from 0 to 512 [ 49.530026][ T6121] SELinux: security_context_str_to_sid (system_u) failed with errno=-22 [ 49.547593][ T6124] bridge0: port 3(syz_tun) entered blocking state [ 49.556726][ T6124] bridge0: port 3(syz_tun) entered disabled state [ 49.563411][ T6124] syz_tun: entered allmulticast mode [ 49.581128][ T6124] syz_tun: entered promiscuous mode [ 49.587377][ T6124] bridge0: port 3(syz_tun) entered blocking state [ 49.593918][ T6124] bridge0: port 3(syz_tun) entered forwarding state [ 49.685023][ T6144] loop2: detected capacity change from 0 to 164 [ 49.691401][ T6142] loop3: detected capacity change from 0 to 164 [ 49.775381][ T6153] loop2: detected capacity change from 0 to 512 [ 49.794101][ T6153] EXT4-fs: Ignoring removed nobh option [ 49.831238][ T6153] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 49.860514][ T6153] EXT4-fs (loop2): 1 truncate cleaned up [ 49.874304][ T6153] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 49.909689][ T3294] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.921325][ T6170] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1216'. [ 50.018107][ T6180] netlink: 84 bytes leftover after parsing attributes in process `syz.0.1222'. [ 50.033874][ T6180] openvswitch: netlink: Key type 30 is not supported [ 50.098294][ T6194] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1228'. [ 50.159184][ T6200] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1231'. [ 50.258266][ T6210] sch_tbf: burst 6 is lower than device batadv_slave_0 mtu (1514) ! [ 50.282806][ T6217] loop4: detected capacity change from 0 to 128 [ 50.476493][ T6244] netlink: 80 bytes leftover after parsing attributes in process `syz.4.1253'. [ 50.489153][ T6244] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1253'. [ 50.524607][ T6250] tipc: Enabling of bearer rejected, failed to enable media [ 50.539569][ T6251] rdma_op ffff88810e53e580 conn xmit_rdma 0000000000000000 [ 50.604282][ T6263] loop4: detected capacity change from 0 to 256 [ 50.632888][ T6263] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 50.657580][ T6263] FAT-fs (loop4): Filesystem has been set read-only [ 51.148982][ T6303] loop1: detected capacity change from 0 to 4096 [ 51.186763][ T6309] bridge0: port 3(syz_tun) entered blocking state [ 51.196037][ T6303] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 51.227456][ T6309] bridge0: port 3(syz_tun) entered disabled state [ 51.276564][ T6309] syz_tun: entered allmulticast mode [ 51.303067][ T6309] syz_tun: entered promiscuous mode [ 51.337568][ T6309] bridge0: port 3(syz_tun) entered blocking state [ 51.344047][ T6309] bridge0: port 3(syz_tun) entered forwarding state [ 51.692071][ T6340] loop1: detected capacity change from 0 to 512 [ 51.776884][ T6340] EXT4-fs: Ignoring removed nobh option [ 51.795794][ T6340] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 51.815098][ T6275] syz.2.1266 (6275) used greatest stack depth: 10040 bytes left [ 51.843540][ T6357] tipc: Enabling of bearer rejected, failed to enable media [ 51.854428][ T6340] EXT4-fs (loop1): 1 truncate cleaned up [ 51.903367][ T6362] tipc: Started in network mode [ 51.929204][ T6362] tipc: Node identity ac14140f, cluster identity 4711 [ 51.939899][ T6360] loop3: detected capacity change from 0 to 4096 [ 51.947280][ T6362] tipc: Enabled bearer , priority 10 [ 52.176962][ T6391] netlink: 'syz.4.1321': attribute type 13 has an invalid length. [ 52.186458][ T6391] netlink: 'syz.4.1321': attribute type 12 has an invalid length. [ 52.298082][ T6411] EXT4-fs error (device loop4): ext4_iget_extra_inode:5128: inode #15: comm syz.4.1331: corrupted in-inode xattr: e_value size too large [ 52.313865][ T6411] fserror_report: 4 callbacks suppressed [ 52.313877][ T6411] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 52.321455][ T6411] EXT4-fs (loop4): Remounting filesystem read-only [ 52.330783][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 52.330806][ C0] EXT4-fs (loop4): initial error at time 52: ext4_iget_extra_inode:5128: inode 15 [ 52.330840][ C0] EXT4-fs (loop4): last error at time 52: ext4_iget_extra_inode:5128: inode 15 [ 52.419735][ T6417] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 52.472158][ T6417] EXT4-fs error (device loop2): ext4_empty_dir:3091: inode #12: block 32: comm syz.2.1333: bad entry in directory: rec_len is too small for name_len - offset=0, inode=12, rec_len=12, size=2048 fake=0 [ 52.496349][ T6417] EXT4-fs warning (device loop2): ext4_empty_dir:3094: inode #12: comm syz.2.1333: directory missing '.' [ 52.519186][ T6440] sg_write: data in/out 414685/338 bytes for SCSI command 0x0-- guessing data in; [ 52.519186][ T6440] program syz.1.1341 not setting count and/or reply_len properly [ 52.557736][ T6428] netdevsim netdevsim3 netdevsim0: IPsec offload requires 128 bit authentication [ 52.632511][ T3352] IPVS: starting estimator thread 0... [ 52.710717][ T6469] EXT4-fs: Ignoring removed orlov option [ 52.726030][ T6456] IPVS: using max 2448 ests per chain, 122400 per kthread [ 52.949647][ T6499] EXT4-fs error (device loop2): ext4_xattr_block_get:597: inode #15: comm syz.2.1366: corrupted xattr block 13: invalid checksum [ 53.004107][ T6499] SELinux: inode_doinit_use_xattr: getxattr returned 74 for dev=loop2 ino=15 [ 53.013407][ T6499] EXT4-fs error (device loop2): ext4_xattr_block_get:597: inode #15: comm syz.2.1366: corrupted xattr block 13: invalid checksum [ 53.043086][ T6499] SELinux: inode_doinit_use_xattr: getxattr returned 74 for dev=loop2 ino=15 [ 53.066133][ T3352] tipc: Node number set to 2886997007 [ 53.073335][ T6499] EXT4-fs error (device loop2): ext4_xattr_block_get:597: inode #15: comm syz.2.1366: corrupted xattr block 13: invalid checksum [ 53.087363][ T28] kauditd_printk_skb: 34 callbacks suppressed [ 53.087377][ T28] audit: type=1400 audit(53.048:482): avc: denied { read } for pid=6498 comm="syz.2.1366" name="file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 53.132665][ T6499] SELinux: inode_doinit_use_xattr: getxattr returned 74 for dev=loop2 ino=15 [ 53.142631][ T28] audit: type=1400 audit(53.128:483): avc: denied { watch watch_reads } for pid=6498 comm="syz.2.1366" path="/254/file0/file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 53.241029][ T6524] tipc: Started in network mode [ 53.247977][ T6524] tipc: Node identity ac14140f, cluster identity 4711 [ 53.263103][ T6524] tipc: Enabled bearer , priority 10 [ 53.399328][ T28] audit: type=1400 audit(53.378:484): avc: denied { write } for pid=6548 comm="syz.4.1388" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 54.266059][ T28] audit: type=1400 audit(54.238:485): avc: denied { getopt } for pid=6557 comm="syz.3.1394" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 54.346672][ T6572] EXT4-fs: Ignoring removed bh option [ 54.375432][ T3409] tipc: Node number set to 2886997007 [ 54.381741][ T6572] EXT4-fs (loop3): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 54.440057][ T28] audit: type=1400 audit(54.418:486): avc: denied { create } for pid=6585 comm="syz.2.1406" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 54.476626][ T28] audit: type=1400 audit(54.448:487): avc: denied { read } for pid=6585 comm="syz.2.1406" path="socket:[14221]" dev="sockfs" ino=14221 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 54.525767][ T6593] set_capacity_and_notify: 10 callbacks suppressed [ 54.525780][ T6593] loop2: detected capacity change from 0 to 512 [ 54.557797][ T6593] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 54.560754][ T6594] __nla_validate_parse: 6 callbacks suppressed [ 54.560768][ T6594] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1408'. [ 54.588003][ T28] audit: type=1326 audit(54.568:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6601 comm="syz.1.1415" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbaf861ce59 code=0x0 [ 54.670731][ T6609] loop0: detected capacity change from 0 to 512 [ 54.683204][ T30] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 54.720405][ T6609] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 54.744025][ T28] audit: type=1400 audit(54.718:489): avc: denied { write } for pid=6608 comm="syz.0.1417" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 54.769352][ T6609] EXT4-fs error (device loop0): ext4_empty_dir:3091: inode #12: block 32: comm syz.0.1417: bad entry in directory: rec_len is too small for name_len - offset=0, inode=12, rec_len=12, size=2048 fake=0 [ 54.814371][ T6609] EXT4-fs warning (device loop0): ext4_empty_dir:3094: inode #12: comm syz.0.1417: directory missing '.' [ 54.854974][ T6626] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1425'. [ 54.873139][ T6627] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1424'. [ 54.987768][ T28] audit: type=1400 audit(54.958:490): avc: denied { recv } for pid=3296 comm="syz-executor" saddr=10.128.0.163 src=30036 daddr=10.128.0.212 dest=43850 netif=eth0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1 [ 55.326419][ T28] audit: type=1400 audit(55.308:491): avc: denied { egress } for pid=3409 comm="kworker/1:7" saddr=fe80::1c daddr=ff02::2 netif=gretap0 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:netif_t tclass=netif permissive=1 [ 56.090295][ T6710] loop3: detected capacity change from 0 to 512 [ 56.117679][ T6710] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 56.208899][ T6710] EXT4-fs error (device loop3): ext4_readdir:265: inode #2: block 3: comm syz.3.1464: path (unknown): bad entry in directory: directory entry overrun - offset=12, inode=514, rec_len=2048, size=2048 fake=0 [ 56.258936][ T6710] EXT4-fs error (device loop3): ext4_readdir:265: inode #2: block 12: comm syz.3.1464: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=5066064, rec_len=65536, size=2048 fake=0 [ 56.280687][ T6710] EXT4-fs error (device loop3): ext4_readdir:265: inode #2: block 13: comm syz.3.1464: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=3653246737, rec_len=65536, size=2048 fake=0 [ 56.364892][ T6710] EXT4-fs error (device loop3): ext4_readdir:265: inode #2: block 16: comm syz.3.1464: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=3653245223, rec_len=65536, size=2048 fake=0 [ 56.430678][ T6710] EXT4-fs error (device loop3): ext4_map_blocks:791: inode #2: block 18: comm syz.3.1464: lblock 23 mapped to illegal pblock 18 (length 1) [ 56.506215][ T6744] loop0: detected capacity change from 0 to 128 [ 56.782061][ T6771] netlink: 596 bytes leftover after parsing attributes in process `syz.2.1493'. [ 56.842550][ T6775] x_tables: ip6_tables: time.0 match: invalid size 24 (kernel) != (user) 32 [ 57.016950][ T6795] loop4: detected capacity change from 0 to 512 [ 57.026306][ T6795] EXT4-fs: Ignoring removed bh option [ 57.048993][ T6795] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2810: inode #11: comm syz.4.1505: corrupted xattr block 95: invalid header [ 57.072900][ T6795] loop4: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 57.073080][ T6795] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.1505: bg 0: block 7: invalid block bitmap [ 57.083460][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 57.083476][ C0] EXT4-fs (loop4): initial error at time 57: ext4_expand_extra_isize_ea:2810: inode 11 [ 57.083517][ C0] EXT4-fs (loop4): last error at time 57: ext4_expand_extra_isize_ea:2810: inode 11 [ 57.124566][ T6795] loop4: lost filesystem error report for type 5 error -117 [ 57.125964][ T6795] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6679: Corrupt filesystem [ 57.143588][ T6795] loop4: lost filesystem error report for type 5 error -117 [ 57.144647][ T6795] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2972: inode #11: comm syz.4.1505: corrupted xattr block 95: invalid header [ 57.168017][ T6795] loop4: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 57.169014][ T6795] EXT4-fs warning (device loop4): ext4_evict_inode:287: xattr delete (err -117) [ 57.189923][ T6795] EXT4-fs (loop4): 1 orphan inode deleted [ 57.312557][ T6829] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1520'. [ 57.338598][ T6829] netlink: 43 bytes leftover after parsing attributes in process `syz.3.1520'. [ 57.361875][ T6829] netlink: 'syz.3.1520': attribute type 6 has an invalid length. [ 57.377199][ T6829] netlink: 'syz.3.1520': attribute type 5 has an invalid length. [ 57.388317][ T6829] netlink: 43 bytes leftover after parsing attributes in process `syz.3.1520'. [ 57.432745][ T6842] netlink: 'syz.1.1525': attribute type 25 has an invalid length. [ 57.494239][ T6849] loop3: detected capacity change from 0 to 512 [ 57.506710][ T6849] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 57.526740][ T6849] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.1530: invalid indirect mapped block 1025 (level 0) [ 57.548063][ T6849] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 57.549069][ T6849] EXT4-fs (loop3): 1 truncate cleaned up [ 57.558442][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 57.558458][ C0] EXT4-fs (loop3): initial error at time 57: ext4_free_branches:1023: inode 11 [ 57.558483][ C0] EXT4-fs (loop3): last error at time 57: ext4_free_branches:1023: inode 11 [ 57.666573][ T6868] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1538'. [ 57.789066][ T6882] loop4: detected capacity change from 0 to 256 [ 57.936625][ T6902] loop3: detected capacity change from 0 to 512 [ 57.973948][ T6904] loop0: detected capacity change from 0 to 512 [ 58.040349][ T6904] EXT4-fs error (device loop0): ext4_get_first_dir_block:3537: inode #12: comm syz.0.1557: Directory block failed checksum [ 58.117920][ T28] kauditd_printk_skb: 19 callbacks suppressed [ 58.117935][ T28] audit: type=1400 audit(58.098:511): avc: denied { append } for pid=6921 comm="syz.0.1562" name="001" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 58.123617][ T6924] usb usb7: usbfs: process 6924 (syz.0.1562) did not claim interface 0 before use [ 58.207483][ T6934] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1567'. [ 58.224560][ T6937] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1570'. [ 58.238568][ T6935] xt_hashlimit: size too large, truncated to 1048576 [ 58.300640][ T28] audit: type=1400 audit(58.278:512): avc: denied { block_suspend } for pid=6945 comm="syz.1.1574" capability=36 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 58.362936][ T6944] loop4: detected capacity change from 0 to 1024 [ 58.386484][ T6944] EXT4-fs: Ignoring removed mblk_io_submit option [ 58.428417][ T6944] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=8802c018, mo2=0002] [ 58.448539][ T28] audit: type=1400 audit(58.428:513): avc: denied { write } for pid=6943 comm="syz.4.1573" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 58.669816][ T28] audit: type=1400 audit(58.648:514): avc: denied { create } for pid=6977 comm="syz.1.1587" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 58.730056][ T28] audit: type=1400 audit(58.668:515): avc: denied { setopt } for pid=6977 comm="syz.1.1587" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 58.792704][ T6989] EXT4-fs (loop2): 1 orphan inode deleted [ 58.811623][ T30] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 58.821618][ T28] audit: type=1400 audit(58.698:516): avc: denied { getopt } for pid=6977 comm="syz.1.1587" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 58.860665][ T30] EXT4-fs error (device loop2): ext4_release_dquot:7068: comm kworker/u8:1: Failed to release dquot type 1 [ 59.212546][ T7034] EXT4-fs: Ignoring removed nobh option [ 59.261202][ T7034] EXT4-fs: Ignoring removed i_version option [ 59.373731][ T7047] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e866c018, mo2=0002] [ 59.390374][ T7047] System zones: 1-12 [ 59.420644][ T7047] EXT4-fs error (device loop3): ext4_do_update_inode:5690: inode #15: comm syz.3.1618: corrupted inode contents [ 59.444136][ T7047] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 59.444759][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 59.460341][ C0] EXT4-fs (loop3): initial error at time 59: ext4_do_update_inode:5690: inode 15 [ 59.469507][ C0] EXT4-fs (loop3): last error at time 59: ext4_do_update_inode:5690: inode 15 [ 59.481909][ T7047] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem [ 59.492205][ T7047] loop3: lost filesystem error report for type 5 error -117 [ 59.510839][ T7047] EXT4-fs error (device loop3): ext4_do_update_inode:5690: inode #15: comm syz.3.1618: corrupted inode contents [ 59.566629][ T7047] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 59.568129][ T7047] EXT4-fs error (device loop3): ext4_evict_inode:315: inode #15: comm syz.3.1618: mark_inode_dirty error [ 59.598138][ T7064] set_capacity_and_notify: 4 callbacks suppressed [ 59.598161][ T7064] loop1: detected capacity change from 0 to 512 [ 59.621695][ T7047] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 59.624783][ T7047] EXT4-fs (loop3): 1 orphan inode deleted [ 59.650643][ T7064] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 59.664144][ T7064] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 59.677865][ T7064] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended [ 59.679124][ T7072] __nla_validate_parse: 4 callbacks suppressed [ 59.679137][ T7072] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1629'. [ 59.690585][ T7047] EXT4-fs error (device loop3): __ext4_expand_extra_isize:6403: inode #18: comm syz.3.1618: bad extra_isize 6 (inode size 256) [ 59.693469][ T28] audit: type=1400 audit(59.668:517): avc: denied { write } for pid=7046 comm="syz.3.1618" name="file0" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 59.737659][ T7072] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1629'. [ 59.740715][ T28] audit: type=1400 audit(59.668:518): avc: denied { ioctl } for pid=7046 comm="syz.3.1618" path=2F3332372F66696C65302F66696C65302F233138202864656C6574656429 dev="loop3" ino=18 ioctlcmd=0x5820 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 59.749535][ T7064] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 59.776593][ T28] audit: type=1400 audit(59.668:519): avc: denied { setattr } for pid=7046 comm="syz.3.1618" name="#18" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 59.836126][ T7064] System zones: 0-2, 18-18, 34-35 [ 59.887111][ T7083] loop3: detected capacity change from 0 to 128 [ 60.098234][ T7098] capability: warning: `syz.4.1642' uses 32-bit capabilities (legacy support in use) [ 60.249642][ T7116] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1650'. [ 60.366149][ T7125] loop4: detected capacity change from 0 to 1024 [ 60.399327][ T7125] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 60.683858][ T7165] sch_tbf: burst 0 is lower than device macvtap0 mtu (1514) ! [ 60.911095][ T7197] program syz.0.1690 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 60.924131][ T7199] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1691'. [ 60.964557][ T7203] loop3: detected capacity change from 0 to 512 [ 60.988653][ T7205] loop1: detected capacity change from 0 to 164 [ 61.006932][ T7203] EXT4-fs (loop3): 1 truncate cleaned up [ 61.012989][ T7208] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 61.040852][ T7203] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1692: bg 0: block 465: padding at end of block bitmap is not set [ 61.076742][ T7205] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1695'. [ 61.086144][ T7203] EXT4-fs (loop3): Remounting filesystem read-only [ 61.092753][ T7205] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1695'. [ 61.108980][ T7205] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 61.110906][ T7203] syz.3.1692 (7203) used greatest stack depth: 9808 bytes left [ 61.168824][ T7216] loop4: detected capacity change from 0 to 128 [ 61.320049][ T7242] tipc: Enabling of bearer rejected, failed to enable media [ 61.445471][ T7253] loop2: detected capacity change from 0 to 1764 [ 61.465554][ T7253] iso9660: Bad value for 'uid' [ 61.481036][ T7253] iso9660: Bad value for 'uid' [ 61.636351][ T7277] loop0: detected capacity change from 0 to 8192 [ 61.671975][ T7289] netlink: 'syz.4.1734': attribute type 2 has an invalid length. [ 61.709985][ T7289] netlink: 14 bytes leftover after parsing attributes in process `syz.4.1734'. [ 61.972296][ T7328] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1753'. [ 61.997864][ T7328] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1753'. [ 62.020808][ T7328] netlink: 'syz.3.1753': attribute type 7 has an invalid length. [ 62.038918][ T49] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 62.038958][ T49] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 62.038989][ T49] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 62.039031][ T49] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 62.392248][ T7390] loop2: detected capacity change from 0 to 128 [ 62.450385][ T7394] SELinux: syz.0.1785 (7394) wrote to checkreqprot. This is no longer supported. [ 62.462148][ T7396] loop2: detected capacity change from 0 to 512 [ 62.681236][ T7421] netlink: 168 bytes leftover after parsing attributes in process `syz.3.1796'. [ 62.681255][ T7421] tc_dump_action: action bad kind [ 62.784654][ T7427] EXT4-fs (loop0): 1 truncate cleaned up [ 62.851870][ T7427] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1798: bg 0: block 465: padding at end of block bitmap is not set [ 62.917864][ T7427] EXT4-fs (loop0): Remounting filesystem read-only [ 64.033622][ T7368] syz.1.1772 (7368) used greatest stack depth: 9096 bytes left [ 64.133310][ T7493] netlink: 'syz.1.1824': attribute type 7 has an invalid length. [ 64.177893][ T30] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 64.189680][ T7500] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 64.196293][ T7500] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 64.208730][ T30] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 64.229778][ T7503] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(6) [ 64.236313][ T7503] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 64.243936][ T7500] vhci_hcd vhci_hcd.0: Device attached [ 64.250975][ T7503] vhci_hcd vhci_hcd.0: Device attached [ 64.271156][ T30] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 64.291689][ T7500] vhci_hcd vhci_hcd.0: pdev(3) rhport(2) sockfd(5) [ 64.298246][ T7500] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 64.309082][ T30] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 64.316328][ T7500] vhci_hcd vhci_hcd.0: Device attached [ 64.347445][ T7501] vhci_hcd: connection closed [ 64.347656][ T68] vhci_hcd vhci_hcd.3: stop threads [ 64.359472][ T7504] vhci_hcd: connection closed [ 64.360511][ T7514] vhci_hcd: connection closed [ 64.368264][ T68] vhci_hcd vhci_hcd.3: release socket [ 64.395030][ T7524] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 64.404413][ T68] vhci_hcd vhci_hcd.3: disconnect device [ 64.420464][ T68] vhci_hcd vhci_hcd.3: stop threads [ 64.425776][ T35] vhci_hcd vhci_hcd.3: vhci_device speed not set [ 64.451944][ T30] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 64.466088][ T68] vhci_hcd vhci_hcd.3: release socket [ 64.472269][ T68] vhci_hcd vhci_hcd.3: disconnect device [ 64.481121][ T68] vhci_hcd vhci_hcd.3: stop threads [ 64.496140][ T68] vhci_hcd vhci_hcd.3: release socket [ 64.505944][ T68] vhci_hcd vhci_hcd.3: disconnect device [ 64.616495][ T28] kauditd_printk_skb: 25 callbacks suppressed [ 64.616546][ T28] audit: type=1400 audit(64.598:545): avc: denied { write } for pid=7533 comm="syz.1.1843" name="file0" dev="loop1" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 64.646401][ T28] audit: type=1400 audit(64.598:546): avc: denied { write } for pid=7533 comm="syz.1.1843" name="/" dev="loop1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 64.670572][ T28] audit: type=1400 audit(64.598:547): avc: denied { write } for pid=7533 comm="syz.1.1843" name="/" dev="loop1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 64.904446][ T7560] set_capacity_and_notify: 3 callbacks suppressed [ 64.904461][ T7560] loop1: detected capacity change from 0 to 512 [ 64.921238][ T7563] netlink: 'syz.2.1865': attribute type 25 has an invalid length. [ 64.990505][ T7568] __nla_validate_parse: 2 callbacks suppressed [ 64.990520][ T7568] netlink: 108 bytes leftover after parsing attributes in process `syz.2.1857'. [ 65.150855][ T7575] x_tables: ip6_tables: time.0 match: invalid size 24 (kernel) != (user) 32 [ 65.175917][ T7577] netlink: 596 bytes leftover after parsing attributes in process `syz.1.1861'. [ 65.350883][ T7581] loop1: detected capacity change from 0 to 8192 [ 65.446204][ T28] audit: type=1400 audit(65.418:548): avc: denied { mounton } for pid=7590 comm="syz.4.1872" path="/" dev="tmpfs" ino=1889 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=lnk_file permissive=1 [ 65.584464][ T7608] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1879'. [ 65.666315][ T28] audit: type=1326 audit(65.648:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7616 comm="syz.3.1883" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52adedce59 code=0x7ffc0000 [ 65.699278][ T28] audit: type=1326 audit(65.678:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7616 comm="syz.3.1883" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52adedce59 code=0x7ffc0000 [ 65.725594][ T28] audit: type=1326 audit(65.678:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7616 comm="syz.3.1883" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52adedce59 code=0x7ffc0000 [ 65.772609][ T7621] loop0: detected capacity change from 0 to 512 [ 65.810663][ T7621] EXT4-fs: Ignoring removed bh option [ 65.821572][ T28] audit: type=1326 audit(65.678:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7616 comm="syz.3.1883" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52adedce59 code=0x7ffc0000 [ 65.846404][ T7621] EXT4-fs error (device loop0): ext4_expand_extra_isize_ea:2810: inode #11: comm syz.0.1895: corrupted xattr block 95: invalid header [ 65.846513][ T7621] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 65.846683][ T7621] EXT4-fs error (device loop0): ext4_validate_block_bitmap:432: comm syz.0.1895: bg 0: block 7: invalid block bitmap [ 65.846774][ T7621] loop0: lost filesystem error report for type 5 error -117 [ 65.865952][ C0] EXT4-fs (loop0): error count since last fsck: 2 [ 65.892973][ T7621] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6679: Corrupt filesystem [ 65.895658][ C0] EXT4-fs (loop0): initial error at time 65: ext4_expand_extra_isize_ea:2810: inode 11 [ 65.895690][ C0] EXT4-fs (loop0): last error at time 65: ext4_validate_block_bitmap:432 [ 65.928027][ T28] audit: type=1326 audit(65.678:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7616 comm="syz.3.1883" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7f52adedce59 code=0x7ffc0000 [ 65.960754][ T28] audit: type=1326 audit(65.678:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7616 comm="syz.3.1883" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52adedce59 code=0x7ffc0000 [ 65.986995][ T7621] loop0: lost filesystem error report for type 5 error -117 [ 65.988369][ T7621] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2972: inode #11: comm syz.0.1895: corrupted xattr block 95: invalid header [ 66.012128][ T7621] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 66.033726][ T7621] EXT4-fs warning (device loop0): ext4_evict_inode:287: xattr delete (err -117) [ 66.072023][ T7637] loop2: detected capacity change from 0 to 512 [ 66.090880][ T7621] EXT4-fs (loop0): 1 orphan inode deleted [ 66.118568][ T7637] EXT4-fs: Ignoring removed i_version option [ 66.118635][ T7621] EXT4-fs mount: 57 callbacks suppressed [ 66.118698][ T7621] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 66.144781][ T7642] loop1: detected capacity change from 0 to 512 [ 66.163145][ T7646] loop4: detected capacity change from 0 to 512 [ 66.181409][ T7646] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 66.212815][ T7637] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 66.227740][ T7646] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 66.241823][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 66.256588][ T7646] EXT4-fs error (device loop4): ext4_readdir:265: inode #2: block 3: comm syz.4.1894: path (unknown): bad entry in directory: directory entry overrun - offset=12, inode=514, rec_len=2048, size=2048 fake=0 [ 66.257753][ T7654] loop1: detected capacity change from 0 to 512 [ 66.288490][ T7654] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 66.308967][ T7656] usb usb7: usbfs: process 7656 (syz.3.1899) did not claim interface 0 before use [ 66.309072][ T7654] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.1896: invalid indirect mapped block 1025 (level 0) [ 66.332746][ T7646] EXT4-fs error (device loop4): ext4_readdir:265: inode #2: block 12: comm syz.4.1894: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=5066064, rec_len=65536, size=2048 fake=0 [ 66.334626][ T7654] loop1: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 66.354724][ C1] EXT4-fs (loop1): error count since last fsck: 1 [ 66.364319][ T3294] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 66.370296][ C1] EXT4-fs (loop1): initial error at time 66: ext4_free_branches:1023: inode 11 [ 66.370326][ C1] EXT4-fs (loop1): last error at time 66: ext4_free_branches:1023 [ 66.387948][ T7654] EXT4-fs (loop1): 1 truncate cleaned up [ 66.388179][ C1] : inode 11 [ 66.411758][ T7646] EXT4-fs error (device loop4): ext4_readdir:265: inode #2: block 13: comm syz.4.1894: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=3653246737, rec_len=65536, size=2048 fake=0 [ 66.433256][ T7654] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 66.433438][ T7646] EXT4-fs error (device loop4): ext4_readdir:265: inode #2: block 16: comm syz.4.1894: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=3653245223, rec_len=65536, size=2048 fake=0 [ 66.471502][ T7646] EXT4-fs error (device loop4): ext4_map_blocks:791: inode #2: block 18: comm syz.4.1894: lblock 23 mapped to illegal pblock 18 (length 1) [ 66.538203][ T3293] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 66.672150][ T7673] loop2: detected capacity change from 0 to 512 [ 67.009259][ T7703] loop3: detected capacity change from 0 to 512 [ 67.062076][ T7703] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 67.090001][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 67.118509][ T7703] EXT4-fs error (device loop3): ext4_get_first_dir_block:3537: inode #12: comm syz.3.1922: Directory block failed checksum [ 67.154280][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 67.239092][ T7729] loop4: detected capacity change from 0 to 512 [ 67.258642][ T7729] EXT4-fs (loop4): 1 orphan inode deleted [ 67.265031][ T7729] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 67.278811][ T30] EXT4-fs error (device loop4): ext4_release_dquot:7068: comm kworker/u8:1: Failed to release dquot type 1 [ 67.301838][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 67.351248][ T7740] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1935'. [ 67.479307][ T7753] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 67.498924][ T7753] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 67.527699][ T7753] EXT4-fs error (device loop2): ext4_readdir:265: inode #2: block 3: comm syz.2.1940: path (unknown): bad entry in directory: directory entry overrun - offset=12, inode=514, rec_len=2048, size=2048 fake=0 [ 67.549534][ T7753] EXT4-fs error (device loop2): ext4_readdir:265: inode #2: block 12: comm syz.2.1940: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=5066064, rec_len=65536, size=2048 fake=0 [ 67.574278][ T7753] EXT4-fs error (device loop2): ext4_readdir:265: inode #2: block 13: comm syz.2.1940: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=3653246737, rec_len=65536, size=2048 fake=0 [ 67.596480][ T7753] EXT4-fs error (device loop2): ext4_readdir:265: inode #2: block 16: comm syz.2.1940: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=3653245223, rec_len=65536, size=2048 fake=0 [ 67.618757][ T7753] EXT4-fs error (device loop2): ext4_map_blocks:791: inode #2: block 18: comm syz.2.1940: lblock 23 mapped to illegal pblock 18 (length 1) [ 68.121767][ T7795] gretap0: entered promiscuous mode [ 68.220836][ T7806] EXT4-fs: Ignoring removed i_version option [ 68.257132][ T7806] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 68.283396][ T3303] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.344644][ T3294] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.373270][ T7815] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 68.379873][ T7815] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 68.388369][ T7815] vhci_hcd vhci_hcd.0: Device attached [ 68.396061][ T7815] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(5) [ 68.402578][ T7815] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 68.411324][ T7815] vhci_hcd vhci_hcd.0: Device attached [ 68.418518][ T7815] vhci_hcd vhci_hcd.0: pdev(2) rhport(2) sockfd(7) [ 68.425042][ T7815] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 68.433333][ T7815] vhci_hcd vhci_hcd.0: Device attached [ 68.439443][ T7825] vhci_hcd: connection closed [ 68.439589][ T7816] vhci_hcd: connection closed [ 68.439625][ T12] vhci_hcd vhci_hcd.2: stop threads [ 68.444287][ T7820] vhci_hcd: connection closed [ 68.456582][ T12] vhci_hcd vhci_hcd.2: release socket [ 68.467430][ T12] vhci_hcd vhci_hcd.2: disconnect device [ 68.473139][ T12] vhci_hcd vhci_hcd.2: stop threads [ 68.479244][ T12] vhci_hcd vhci_hcd.2: release socket [ 68.485964][ T12] vhci_hcd vhci_hcd.2: disconnect device [ 68.491881][ T12] vhci_hcd vhci_hcd.2: stop threads [ 68.497689][ T12] vhci_hcd vhci_hcd.2: release socket [ 68.503229][ T12] vhci_hcd vhci_hcd.2: disconnect device [ 68.565439][ T3409] vhci_hcd vhci_hcd.2: vhci_device speed not set [ 68.979197][ T7861] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1990'. [ 68.989114][ T7861] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1990'. [ 69.023826][ T7866] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3) [ 69.030448][ T7866] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 69.044568][ T7866] vhci_hcd vhci_hcd.0: Device attached [ 69.060787][ T7866] vhci_hcd vhci_hcd.0: pdev(1) rhport(1) sockfd(5) [ 69.067483][ T7866] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 69.076055][ T7866] vhci_hcd vhci_hcd.0: Device attached [ 69.084352][ T7866] vhci_hcd vhci_hcd.0: pdev(1) rhport(2) sockfd(7) [ 69.090981][ T7866] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 69.100161][ T7866] vhci_hcd vhci_hcd.0: Device attached [ 69.106950][ T7874] vhci_hcd: connection closed [ 69.107025][ T7876] vhci_hcd: connection closed [ 69.107245][ T7868] vhci_hcd: connection closed [ 69.111794][ T30] vhci_hcd vhci_hcd.1: stop threads [ 69.128760][ T30] vhci_hcd vhci_hcd.1: release socket [ 69.134158][ T30] vhci_hcd vhci_hcd.1: disconnect device [ 69.147769][ T30] vhci_hcd vhci_hcd.1: stop threads [ 69.153084][ T30] vhci_hcd vhci_hcd.1: release socket [ 69.159919][ T30] vhci_hcd vhci_hcd.1: disconnect device [ 69.175924][ T30] vhci_hcd vhci_hcd.1: stop threads [ 69.181111][ T7883] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1996'. [ 69.181533][ T30] vhci_hcd vhci_hcd.1: release socket [ 69.196756][ T30] vhci_hcd vhci_hcd.1: disconnect device [ 69.225850][ T35] vhci_hcd vhci_hcd.1: vhci_device speed not set [ 69.323111][ T7899] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e866c018, mo2=0002] [ 69.346117][ T7899] System zones: 1-12 [ 69.355764][ T7899] EXT4-fs error (device loop2): ext4_do_update_inode:5690: inode #15: comm syz.2.2005: corrupted inode contents [ 69.379298][ T7899] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 69.380725][ T7899] EXT4-fs error (device loop2) in ext4_orphan_del:303: Corrupt filesystem [ 69.389902][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 69.389918][ C0] EXT4-fs (loop2): initial error at time 69: ext4_do_update_inode:5690: inode 15 [ 69.389953][ C0] EXT4-fs (loop2): last error at time 69: ext4_do_update_inode:5690: inode 15 [ 69.428768][ T7899] loop2: lost filesystem error report for type 5 error -117 [ 69.432412][ T7899] EXT4-fs error (device loop2): ext4_do_update_inode:5690: inode #15: comm syz.2.2005: corrupted inode contents [ 69.454291][ T7899] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 69.457380][ T7899] EXT4-fs error (device loop2): ext4_evict_inode:315: inode #15: comm syz.2.2005: mark_inode_dirty error [ 69.480518][ T7913] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2011'. [ 69.502490][ T7899] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 69.502719][ T7899] EXT4-fs (loop2): 1 orphan inode deleted [ 69.520702][ T7899] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 69.553922][ T7899] EXT4-fs error (device loop2): __ext4_expand_extra_isize:6403: inode #18: comm syz.2.2005: bad extra_isize 6 (inode size 256) [ 69.589828][ T3294] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.723823][ T7944] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 69.782824][ T7951] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e866c018, mo2=0002] [ 69.799277][ T7944] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 69.803955][ T7951] System zones: 1-12 [ 69.817822][ T7951] EXT4-fs error (device loop4): ext4_do_update_inode:5690: inode #15: comm syz.4.2028: corrupted inode contents [ 69.830951][ T7951] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 69.831132][ T7951] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem [ 69.840262][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 69.840285][ C0] EXT4-fs (loop4): initial error at time 69: ext4_do_update_inode:5690: inode 15 [ 69.840310][ C0] EXT4-fs (loop4): last error at time 69: ext4_do_update_inode:5690: inode 15 [ 69.877009][ T7951] loop4: lost filesystem error report for type 5 error -117 [ 69.877203][ T7951] EXT4-fs error (device loop4): ext4_do_update_inode:5690: inode #15: comm syz.4.2028: corrupted inode contents [ 69.899611][ T7951] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 69.899738][ T7951] EXT4-fs error (device loop4): ext4_evict_inode:315: inode #15: comm syz.4.2028: mark_inode_dirty error [ 69.923330][ T7951] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 69.923521][ T7951] EXT4-fs (loop4): 1 orphan inode deleted [ 69.945383][ T7961] netlink: 764 bytes leftover after parsing attributes in process `syz.0.2034'. [ 69.955594][ T7951] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 69.986580][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.988541][ T7951] EXT4-fs error (device loop4): __ext4_expand_extra_isize:6403: inode #18: comm syz.4.2028: bad extra_isize 6 (inode size 256) [ 69.996441][ T28] kauditd_printk_skb: 18 callbacks suppressed [ 69.996457][ T28] audit: type=1400 audit(69.968:572): avc: denied { write } for pid=7950 comm="syz.4.2028" name="file0" dev="loop4" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 70.065611][ T7970] set_capacity_and_notify: 7 callbacks suppressed [ 70.065625][ T7970] loop2: detected capacity change from 0 to 512 [ 70.093260][ T28] audit: type=1326 audit(70.068:573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7973 comm="syz.1.2040" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbaf861ce59 code=0x0 [ 70.125978][ T7970] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 70.145540][ T7970] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 70.167536][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.178543][ T7970] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended [ 70.193364][ T7970] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 70.202891][ T7970] System zones: 0-2, 18-18, 34-35 [ 70.211879][ T7970] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 70.229833][ T28] audit: type=1326 audit(70.208:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7969 comm="syz.2.2039" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe342a9ce59 code=0x7ffc0000 [ 70.263821][ T28] audit: type=1326 audit(70.208:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7969 comm="syz.2.2039" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe342a9ce59 code=0x7ffc0000 [ 70.290718][ T28] audit: type=1326 audit(70.208:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7969 comm="syz.2.2039" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe342a9ce59 code=0x7ffc0000 [ 70.317099][ T28] audit: type=1326 audit(70.208:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7969 comm="syz.2.2039" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe342a9ce59 code=0x7ffc0000 [ 70.343068][ T28] audit: type=1326 audit(70.208:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7969 comm="syz.2.2039" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=6 compat=0 ip=0x7fe342a9ce59 code=0x7ffc0000 [ 70.359923][ T3294] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.369166][ T28] audit: type=1326 audit(70.208:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7969 comm="syz.2.2039" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe342a9ce59 code=0x7ffc0000 [ 70.410812][ T28] audit: type=1326 audit(70.208:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7969 comm="syz.2.2039" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe342a9ce59 code=0x7ffc0000 [ 70.437285][ T28] audit: type=1326 audit(70.208:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7969 comm="syz.2.2039" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fe342a9ce59 code=0x7ffc0000 [ 70.462695][ T7993] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2049'. [ 70.508938][ T7997] sch_tbf: burst 0 is lower than device macvtap0 mtu (1514) ! [ 70.551587][ T8005] loop2: detected capacity change from 0 to 128 [ 70.683576][ T8024] loop4: detected capacity change from 0 to 512 [ 70.700560][ T8024] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 70.748059][ T8024] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 70.785047][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.807363][ T8034] loop4: detected capacity change from 0 to 512 [ 70.814614][ T8034] EXT4-fs: Ignoring removed oldalloc option [ 70.828110][ T8034] EXT4-fs: Ignoring removed nomblk_io_submit option [ 70.846542][ T8034] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 70.862594][ T8034] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.2066: bg 0: block 104: invalid block bitmap [ 70.877547][ T8034] loop4: lost filesystem error report for type 5 error -117 [ 70.877738][ T8034] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6679: Corrupt filesystem [ 70.885067][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 70.885092][ C0] EXT4-fs (loop4): initial error at time 70: ext4_validate_block_bitmap:432 [ 70.885115][ C0] EXT4-fs (loop4): last error at time 70: ext4_validate_block_bitmap:432 [ 70.923081][ T8034] loop4: lost filesystem error report for type 5 error -117 [ 70.923286][ T8034] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.2066: invalid indirect mapped block 1 (level 1) [ 70.953114][ T8034] loop4: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 70.953385][ T8034] EXT4-fs (loop4): 1 truncate cleaned up [ 70.977712][ T8034] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 71.006520][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.053072][ T8049] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 71.057403][ T8051] loop0: detected capacity change from 0 to 128 [ 71.137346][ T8060] loop4: detected capacity change from 0 to 256 [ 71.161757][ T8060] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 71.180342][ T8060] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 71.195425][ T8060] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 71.310217][ T8082] loop4: detected capacity change from 0 to 512 [ 71.352105][ T8082] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 71.378899][ T8089] loop0: detected capacity change from 0 to 1764 [ 71.385876][ T8089] iso9660: Bad value for 'uid' [ 71.390801][ T8089] iso9660: Bad value for 'uid' [ 71.468637][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.512328][ T8099] loop3: detected capacity change from 0 to 164 [ 71.537764][ T8099] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2095'. [ 71.537796][ T8099] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2095'. [ 71.538343][ T8099] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 71.765203][ T8135] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2109'. [ 71.821085][ T8147] netlink: 'syz.3.2112': attribute type 1 has an invalid length. [ 71.969916][ T8168] loop3: detected capacity change from 0 to 512 [ 71.993276][ T8168] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 72.086682][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.198854][ T8187] FAT-fs (loop1): error, corrupted directory (invalid entries) [ 72.219271][ T8187] FAT-fs (loop1): Filesystem has been set read-only [ 72.904843][ T8225] vhci_hcd vhci_hcd.1: default hub control req: 4010 v0001 i0005 l0 [ 73.422152][ T8282] usb usb9: usbfs: process 8282 (syz.1.2176) did not claim interface 0 before use [ 73.557452][ T8302] netlink: 'syz.2.2184': attribute type 1 has an invalid length. [ 73.644327][ T8308] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters [ 73.720958][ T8308] EXT4-fs (loop3): Remounting filesystem read-only [ 73.727544][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 73.727560][ C1] EXT4-fs (loop3): initial error at time 73: ext4_mb_generate_buddy:1317 [ 73.727586][ C1] EXT4-fs (loop3): last error at time 73: ext4_mb_generate_buddy:1317 [ 73.789793][ T8316] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.2192: inode has both inline data and extents flags [ 73.830357][ T8308] EXT4-fs (loop3): 1 truncate cleaned up [ 73.844211][ T8308] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 73.856362][ T8316] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 73.857255][ T8316] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.2192: couldn't read orphan inode 15 (err -117) [ 73.867650][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 73.867668][ C0] EXT4-fs (loop2): initial error at time 73: ext4_orphan_get:1399: inode 15 [ 73.867691][ C0] EXT4-fs (loop2): last error at time 73: ext4_orphan_get:1399: inode 15 [ 73.908461][ T8316] loop2: lost filesystem error report for type 5 error -117 [ 73.910930][ T8316] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 73.931944][ T8318] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 73.948685][ T3299] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.980837][ T3296] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.009678][ T8328] vhci_hcd vhci_hcd.1: default hub control req: 4010 v0001 i0005 l0 [ 74.025973][ T3294] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.187110][ T8352] netlink: 'syz.2.2206': attribute type 5 has an invalid length. [ 74.224831][ T8358] ================================================================== [ 74.232937][ T8358] BUG: KCSAN: data-race in ktime_get / timekeeping_update_from_shadow [ 74.241188][ T8358] [ 74.243505][ T8358] write to 0xffffffff893c34c8 of 304 bytes by interrupt on cpu 1: [ 74.251391][ T8358] timekeeping_update_from_shadow+0x40d/0x440 [ 74.257543][ T8358] __timekeeping_advance+0xa68/0xc10 [ 74.262816][ T8358] update_wall_time+0x21/0x50 [ 74.267483][ T8358] tick_do_update_jiffies64+0x169/0x1c0 [ 74.273017][ T8358] tick_nohz_handler+0x88/0x380 [ 74.277857][ T8358] __hrtimer_run_queues+0x1f8/0x510 [ 74.283051][ T8358] hrtimer_interrupt+0x257/0x810 [ 74.287979][ T8358] __sysvec_apic_timer_interrupt+0x5f/0x1c0 [ 74.294642][ T8358] sysvec_apic_timer_interrupt+0x6f/0x80 [ 74.300270][ T8358] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 74.306243][ T8358] kcsan_setup_watchpoint+0x3e8/0x450 [ 74.311611][ T8358] may_open+0x32/0x350 [ 74.315673][ T8358] path_openat+0x1a43/0x2000 [ 74.320254][ T8358] do_file_open+0x16c/0x290 [ 74.324747][ T8358] do_sys_openat2+0xa0/0x130 [ 74.329332][ T8358] __x64_sys_openat+0xf2/0x120 [ 74.334088][ T8358] x64_sys_call+0x1e39/0x3020 [ 74.338757][ T8358] do_syscall_64+0x136/0x3c0 [ 74.343350][ T8358] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.349326][ T8358] [ 74.351654][ T8358] read to 0xffffffff893c34e8 of 8 bytes by task 8358 on cpu 0: [ 74.359275][ T8358] ktime_get+0x130/0x240 [ 74.363526][ T8358] copy_process+0x18fe/0x2350 [ 74.368202][ T8358] kernel_clone+0x1c0/0x5f0 [ 74.372694][ T8358] __se_sys_clone3+0x1f5/0x230 [ 74.377447][ T8358] __x64_sys_clone3+0x31/0x40 [ 74.382116][ T8358] x64_sys_call+0x580/0x3020 [ 74.386782][ T8358] do_syscall_64+0x136/0x3c0 [ 74.391370][ T8358] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 74.397254][ T8358] [ 74.399578][ T8358] value changed: 0x000bd82711d9dd80 -> 0x000c70bd91e4c290 [ 74.406668][ T8358] [ 74.408975][ T8358] Reported by Kernel Concurrency Sanitizer on: [ 74.415211][ T8358] CPU: 0 UID: 0 PID: 8358 Comm: syz.1.2209 Not tainted syzkaller #0 PREEMPT(lazy) [ 74.424483][ T8358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 74.434526][ T8358] ================================================================== [ 76.124846][ T3877] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 76.126230][ T8336] Bluetooth: hci0: command 0x1003 tx timeout