last executing test programs: 2m50.194534931s ago: executing program 4 (id=174): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x40008d0}, 0x40) sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a900000000c0a010400000000000000000a0000060900020073797a31000000000900010073797a310000000064000380600000800c00018006000100d65b000050000b80200001800e000100636f6e6e6c696d69740000000c000280080001"], 0xb8}, 0x1, 0x0, 0x0, 0x24000840}, 0x40) 2m49.981133596s ago: executing program 4 (id=180): r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x50) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000140)=ANY=[@ANYRES32=r1, @ANYRES32=r0, @ANYBLOB='&'], 0x10) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000040)={@map=r1, 0x5, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) 2m49.955329542s ago: executing program 4 (id=181): openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x42, 0x10) openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x3a1f00, 0x0) r0 = io_uring_setup(0x63d3, &(0x7f0000000240)) io_uring_register$IORING_REGISTER_BUFFERS2(r0, 0x14, &(0x7f0000003480)={0x4, 0x0, 0x4, &(0x7f00000001c0)=[{0x0}, {0x0}, {0x0}, {0x0}], 0x0}, 0x2) 2m49.896642122s ago: executing program 4 (id=185): mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30) mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0) mount$bpf(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x2010871, &(0x7f0000000300)=ANY=[]) 2m49.590298531s ago: executing program 4 (id=190): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001bc0)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}], {0x14}}, 0x64}}, 0x0) sendmsg$NFT_MSG_GETOBJ(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000002240)={&(0x7f0000002200)={0x14, 0x15, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x20}}, 0x14}, 0x1, 0x0, 0x0, 0x20040011}, 0x24040808) 2m40.567632252s ago: executing program 4 (id=443): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_sys\x00', 0x275a, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x8}) fcntl$lock(r0, 0x26, &(0x7f0000000080)={0x0, 0x0, 0x2007, 0x1fd}) fcntl$lock(r0, 0x7, &(0x7f0000000140)={0x1, 0x1, 0x7, 0x90}) 2m40.536327726s ago: executing program 32 (id=443): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_sys\x00', 0x275a, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x8}) fcntl$lock(r0, 0x26, &(0x7f0000000080)={0x0, 0x0, 0x2007, 0x1fd}) fcntl$lock(r0, 0x7, &(0x7f0000000140)={0x1, 0x1, 0x7, 0x90}) 1m6.886526074s ago: executing program 1 (id=2892): r0 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r1, {0x0, 0xfff3}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x4c840) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000980)=@newtfilter={0x50, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r1, {0xb, 0x7}, {0x0, 0xfff3}, {0xd, 0x4}}, [@filter_kind_options=@f_fw={{0x7}, {0x24, 0x2, [@TCA_FW_MASK={0x8, 0x5, 0x2980c}, @TCA_FW_ACT={0x4}, @TCA_FW_INDEV={0x14, 0x3, 'veth1_to_team\x00'}]}}]}, 0x50}, 0x1, 0x0, 0x0, 0x20041090}, 0x0) 1m6.781066417s ago: executing program 1 (id=2903): ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000040)={0x0, 0x0, "d607f8f9951e76c13f64323723e7eecdf40c363423eb3d259266ec9c37865c6c1a4640ce1b22bb3327ef4f001d34c09f39c3539e4f8d3ee0878ae95bc7f52363c468b257ff3e24852548deb01efd54f11ed2c41d078b9cf1fc8f72566153c97e4af37017ea6b16b694bb4a6e4606c3fb19d1d2bd3c8c4e97da2213f9d5c3b90400000000000000c279f03558083906666827d61dcc3a633bffff250b5a293e3877adc1660edbc9a0307a25720a170e7f5670e419dc44febf7ddc73fd4a5a0b6c28665f7f46c7084e17c809268103a2584ab40a68e528329d82afc3612e325c1eb4a3ab2e156a97444800", "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"}) mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4) r0 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000002dc0)={0x0, 0x1e000000}, &(0x7f0000000100)=0x8) 1m6.682326171s ago: executing program 1 (id=2896): r0 = socket(0x2, 0x3, 0xff) setsockopt$inet_int(r0, 0x0, 0x2, &(0x7f0000000000)=0xffff, 0x3) setsockopt$inet_int(r0, 0x0, 0x3, 0x0, 0x0) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x2, 0x4e23, @empty}, 0x10) 1m6.605754448s ago: executing program 1 (id=2898): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x1000000) perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2b, 0x1, 0x0, 0x0, 0x0, 0x9, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x9}, 0x106200, 0x1000, 0x20da, 0x0, 0xa, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000002c0)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) link(0x0, 0x0) 1m6.538641337s ago: executing program 1 (id=2902): r0 = socket$unix(0x1, 0x2, 0x0) r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f00000001c0)=0x10) bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) 1m6.397405013s ago: executing program 1 (id=2908): r0 = socket$inet(0x2, 0x80001, 0x84) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'vlan1\x00', 0x0}) sendto$packet(r1, &(0x7f0000000040)="02030e00d3fc02000000ab5d71b9", 0x5ee, 0x2004c8a1, &(0x7f0000000080)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14) 51.417676534s ago: executing program 33 (id=2908): r0 = socket$inet(0x2, 0x80001, 0x84) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'vlan1\x00', 0x0}) sendto$packet(r1, &(0x7f0000000040)="02030e00d3fc02000000ab5d71b9", 0x5ee, 0x2004c8a1, &(0x7f0000000080)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14) 2.297152191s ago: executing program 3 (id=5187): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TCSETAW(r0, 0x5407, &(0x7f0000000040)={0x4, 0x5, 0x4, 0x4, 0xf, "03f37fe99f4da288"}) ioctl$TIOCMSET(r0, 0x5418, &(0x7f0000000000)=0x8002) openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0) 2.04722451s ago: executing program 6 (id=5196): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x9, 0x18, 0x8, 0x40, 0x40, 0x1}, 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000580), 0x1000, r0}, 0x38) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x8a, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@usrjquota, 0x22}, {@jqfmt_vfsv0}, {@noload}, {@resgid}, {@grpjquota, 0x22}, {@errors_continue}, {@resuid}, {@i_version}]}, 0xff, 0x464, &(0x7f00000004c0)="$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") bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000001600)={r0, &(0x7f0000000580), &(0x7f0000001580)=""/92}, 0x20) 1.694532252s ago: executing program 6 (id=5205): r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901) fchdir(r0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0) mount_setattr(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0x0, &(0x7f0000001dc0)={0xf, 0x5, 0x0, {r0}}, 0x20) 1.648820354s ago: executing program 6 (id=5207): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x6, 0x4) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'geneve0\x00', 0x0}) sendto$packet(r0, &(0x7f0000000180)="0b032200e0ff25a60200475400f6a13bb1000000080008004803", 0x10000, 0x0, &(0x7f0000000140)={0x11, 0x0, r1}, 0x14) 1.610469867s ago: executing program 6 (id=5209): r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x80840) syz_usb_disconnect(r0) syz_usb_connect(0x4, 0x24, &(0x7f00000000c0)=ANY=[], 0x0) ioctl$EVIOCRMFF(r0, 0xc0085508, 0x0) 1.02411957s ago: executing program 0 (id=5234): r0 = socket$inet6_udp(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x4, @remote, 0xb}, 0x1c) syz_emit_ethernet(0x7e, &(0x7f0000000300)={@local, @local, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x48, 0x11, 0x0, @remote, @local, {[], {0x4e20, 0xe22, 0x48, 0x0, @wg=@cookie={0x3, 0x2, "88c73b21f267636d01dbe5712c1c941e1cdafbbb43f09c28", "e13808ca72381f41e5fff9620915b6f78670dfaf9a2038083179cf6b7931c9b4"}}}}}}}, 0x0) 1.007938027s ago: executing program 0 (id=5235): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000440)={'batadv0\x00', 0x0}) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)={0x2c, r1, 0x1, 0x4070bd28, 0x1, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x7f}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}]}, 0x2c}}, 0x18) 987.842104ms ago: executing program 0 (id=5236): r0 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r1, {0x0, 0xfff3}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x6, 0x7}}]}}]}, 0x48}}, 0x4c840) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000077c0)=@newtfilter={0x40, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r1, {0xfff3, 0xfff3}, {0x0, 0xfff3}, {0x2, 0xfff1}}, [@filter_kind_options=@f_fw={{0x7}, {0x14, 0x2, [@TCA_FW_CLASSID={0x8, 0x1, {0xb, 0x10}}, @TCA_FW_MASK={0x8, 0x5, 0x7}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x20041090}, 0x0) 968.449851ms ago: executing program 0 (id=5237): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={0xffffffffffffffff}, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f00000002c0)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000200)=0x1, r1, 0x0, 0x2, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000180)={0x3, 0x40, 0xfa00, {{0xa, 0x4e23, 0xe, @empty, 0x2}, {0xa, 0x4e23, 0x7, @remote, 0x3}, r1, 0x7}}, 0x48) 938.644506ms ago: executing program 3 (id=5239): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x14, 0x0, 0x0, 0xfffffffd, 0x25dfdbfb, {{}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x20008084) ioctl$sock_SIOCBRDELBR(r0, 0x89a2, &(0x7f0000000000)='bridge0\x00') syz_emit_ethernet(0x56, &(0x7f0000002040)={@local, @local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "6410a6", 0x20, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x1e}, @local, {[@dstopts={0xff, 0x2, '\x00', [@padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @pad1, @calipso={0x7, 0x8, {0x2, 0x0, 0x8, 0xc}}, @ra={0x5, 0x2, 0x100}]}]}}}}}, 0x0) 906.711861ms ago: executing program 0 (id=5240): perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x65, 0x0, 0x0, 0x0, 0x0, 0x8, 0x40008, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x9, 0x26}, 0x0, 0x6, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xc0}, 0x0, 0xfffffffdffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x101002, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000740)=0xe) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000340)=0xff) 873.000595ms ago: executing program 6 (id=5241): syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000040)='./file1\x00', 0x804800, &(0x7f00000002c0)=ANY=[@ANYRES8=0x0, @ANYRES8=0x0], 0xf9, 0x1213, &(0x7f0000000600)="$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") truncate(&(0x7f0000000940)='./file1\x00', 0x2fffffd) r0 = open(&(0x7f0000000100)='./file1\x00', 0x64842, 0x0) preadv(r0, &(0x7f0000000500)=[{&(0x7f0000000080)=""/86, 0x56}], 0x1, 0xfffffff6, 0x0) 853.732222ms ago: executing program 3 (id=5242): bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000007d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r0, 0x0, 0x0}, 0x10) 797.438892ms ago: executing program 0 (id=5244): syz_clone3(&(0x7f000000dd80)={0xa00400, 0x0, 0x0, 0x0, {0x13}, 0x0, 0x0, 0x0, 0x0}, 0x58) nanosleep(&(0x7f0000000000)={0x77359400}, &(0x7f0000000080)) syz_clone3(&(0x7f000000dd80)={0xa04400, 0x0, 0x0, 0x0, {0x12}, 0x0, 0x0, 0x0, 0x0}, 0x58) semtimedop(0x0, &(0x7f0000000040)=[{0x1, 0xfff7, 0x1000}, {0x1, 0xfb3f, 0x800}, {0x4, 0x3, 0x1800}, {0x4, 0x22d1, 0x3400}, {0x2, 0x4, 0x1000}], 0x5, &(0x7f0000000100)) 797.289532ms ago: executing program 3 (id=5245): set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xe0f02, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000400)=0x2) ioctl$PPPIOCSMAXCID(r0, 0x40047451, &(0x7f0000000200)=0x97) 704.238777ms ago: executing program 3 (id=5247): perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x40000007, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_config_ext={0x8006, 0x6}, 0x0, 0x10001, 0xda, 0x4, 0xa, 0x20005, 0xa, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30) mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0) 609.629661ms ago: executing program 3 (id=5250): openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0) lsetxattr(&(0x7f00000002c0)='./file0\x00', &(0x7f00000001c0)=@known='trusted.overlay.redirect\x00', 0x0, 0x0, 0x0) capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x9, 0x5, 0x81, 0xffffffff}) listxattr(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 309.705791ms ago: executing program 2 (id=5260): unshare(0x24020400) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) r0 = socket$xdp(0x2c, 0x3, 0x0) getsockopt$XDP_MMAP_OFFSETS(r0, 0x11b, 0x1, &(0x7f00000002c0), &(0x7f00000001c0)=0x80) 268.840314ms ago: executing program 2 (id=5262): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000600001e95"], &(0x7f0000000bc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="10000000040000000800000005"], 0x50) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x1b, 0x3, 0x0, 0x0, 0x4}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{r1}, &(0x7f0000000400), &(0x7f0000000440)=r0}, 0x20) 222.685217ms ago: executing program 2 (id=5264): r0 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r1, {0x0, 0xfff3}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x4c840) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x5c, 0x2c, 0xf3f, 0x30bd29, 0xa5dfdbfd, {0x0, 0x0, 0x0, r1, {0xe, 0xfff3}, {0x0, 0xfff3}, {0xd, 0x10}}, [@filter_kind_options=@f_basic={{0xa}, {0x2c, 0x2, [@TCA_BASIC_EMATCHES={0x28, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x1c, 0x2, 0x0, 0x1, [@TCF_EM_META={0x18, 0x1, 0x0, 0x0, {{0xfff9, 0x4, 0x4}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x5, 0xe, 0x1}, {0x0, 0xc0}}}]}}]}]}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20041090}, 0x0) 204.486304ms ago: executing program 5 (id=5265): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x94, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}]}, 0x94}}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x54, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_NAT_DST={0x4}]}, 0x54}}, 0x0) 180.73238ms ago: executing program 2 (id=5266): r0 = perf_event_open(&(0x7f0000000500)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x6, 0xf4039, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x147b7e, 0x0, @perf_config_ext={0x7, 0xf60d}, 0x9092, 0x4, 0x43a1bd76, 0x2, 0x9, 0x6, 0x2, 0x0, 0x0, 0x0, 0x200b}, 0x0, 0x4000000000, 0xffffffffffffffff, 0x8) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="1808000000000000000000000000000018000000c3707bf4000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x48, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r1) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x2, &(0x7f0000000040)=ANY=[@ANYRESOCT=r0], &(0x7f0000000000)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94) 151.956995ms ago: executing program 5 (id=5267): r0 = socket(0x10, 0x803, 0x0) mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffff6, 0x4031, 0xffffffffffffffff, 0x7542d000) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000fc0)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0) 113.860649ms ago: executing program 2 (id=5268): mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xbecd6000) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) r0 = io_uring_setup(0x22, &(0x7f0000000040)={0x0, 0x1445e, 0x1d410, 0x0, 0x34c}) io_uring_register$IORING_REGISTER_BUFFERS(r0, 0xffffffff80000019, 0x0, 0x0) 113.650989ms ago: executing program 5 (id=5269): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x11, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000000000000000000000400008500000013000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_LINK_CREATE(0xa, &(0x7f0000000040)={r2, 0xffffffffffffffff, 0x24, 0x0, @val=@iter={&(0x7f0000000000)=@map_fd=r0, 0x10}}, 0x20) 79.861803ms ago: executing program 2 (id=5270): r0 = socket(0x10, 0x3, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'veth0_virt_wifi\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0xe}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x5], 0xfe, [0x1, 0x8001, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c4, 0x0, 0x0, 0x0, 0x3dc], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x1000]}}}}]}, 0x88}}, 0x20000000) 65.595151ms ago: executing program 5 (id=5271): capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x6, 0xe, 0x13e, 0x89, 0xffffffff, 0x2}) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={0xffffffffffffffff, 0x0, 0x8a, 0x0, &(0x7f0000000200)="e30080670000ec67838717bd86dde148f0630962bb87dd44fe42904fcee14db4241544716b9ea42231ed3373a3e299531fd05dacf5bb80b4b7ee0fae7aea53492b18c3e6c807bc4b5d29a0ed834a6bd8c6f412bd3fca85921504f64d9161c6e3fa3b66840b6554128686e23595ee8cbe9d0137923b47ce083b3f6179c269f30e1d4fca495e440c205ffa", 0x0, 0x7ffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0xd}, 0x50) r0 = syz_open_dev$sg(&(0x7f0000000140), 0x6f5e, 0x243) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x85) 65.102561ms ago: executing program 6 (id=5272): openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x60240) io_setup(0x6, &(0x7f0000001380)=0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000200)='fd/3\x00') io_submit(r0, 0x1, &(0x7f00000000c0)=[&(0x7f0000000100)={0x1000000, 0x0, 0x0, 0x5, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, r1}]) 30.810315ms ago: executing program 5 (id=5273): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'wg1\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x5, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0xd, 0xfffffffb, 0x7fffffff}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084) 0s ago: executing program 5 (id=5274): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000200)={@private1, 0x10100, 0x0, 0x1, 0x3, 0xfc65, 0x1}, 0x20) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000200)={@remote, 0x10100, 0x2, 0x0, 0x3, 0xfc67, 0xd6a9, 0x2000000}, 0x20) kernel console output (not intermixed with test programs): ): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 139.061418][T11001] ext4 filesystem being mounted at /370/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 139.170162][ T6393] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.201011][T11013] loop5: detected capacity change from 0 to 128 [ 139.241297][T11013] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 139.422891][T11019] loop2: detected capacity change from 0 to 8192 [ 139.442003][T11019] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 139.479363][T11029] loop0: detected capacity change from 0 to 1024 [ 139.542977][T11033] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 139.594813][T11039] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 139.617446][T11033] ext4 filesystem being mounted at /511/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 139.644467][T11037] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 139.671576][ T4500] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.700475][T11037] EXT4-fs (loop2): 1 truncate cleaned up [ 139.707160][T11037] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 139.732684][ T6427] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.784873][T11029] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 139.799517][T11045] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 139.820534][T11037] EXT4-fs (loop2): shut down requested (2) [ 139.823261][T11029] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 25 vs 161808409 free clusters [ 139.841533][T11029] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 139.841928][T11047] EXT4-fs: Ignoring removed orlov option [ 139.853862][T11029] EXT4-fs (loop0): This should not happen!! Data will be lost [ 139.853862][T11029] [ 139.853891][T11029] EXT4-fs (loop0): Total free blocks count 0 [ 139.853908][T11029] EXT4-fs (loop0): Free/Dirty block details [ 139.853921][T11029] EXT4-fs (loop0): free_blocks=2588934144 [ 139.888512][T11048] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop2 ino=12 [ 139.897619][T11047] EXT4-fs (loop3): stripe (9) is not aligned with cluster size (16), stripe is disabled [ 139.911534][T11045] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 139.926430][T11029] EXT4-fs (loop0): dirty_blocks=80 [ 139.932710][T11047] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 139.950041][T11048] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop2 ino=12 [ 139.969143][T11045] ext4 filesystem being mounted at /512/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 139.999741][T11029] EXT4-fs (loop0): Block reservation details [ 140.007482][ T6393] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 140.018781][ T4500] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 140.038732][ T6427] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 140.060035][T11029] EXT4-fs (loop0): i_reserved_data_blocks=5 [ 140.103892][T11059] EXT4-fs: Ignoring removed orlov option [ 140.131384][T11052] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 64 with error 28 [ 140.157072][T11059] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 140.166523][T11062] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2954'. [ 140.168414][T11061] usb usb8: usbfs: process 11061 (syz.2.2957) did not claim interface 0 before use [ 140.203552][T11062] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2954'. [ 140.212911][T11059] EXT4-fs (loop3): orphan cleanup on readonly fs [ 140.244548][T11059] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2956: bg 0: block 248: padding at end of block bitmap is not set [ 140.254115][T11062] geneve2: entered promiscuous mode [ 140.270017][T11059] loop3: lost filesystem error report for type 5 error -117 [ 140.270791][T11059] EXT4-fs error (device loop3): ext4_acquire_dquot:7001: comm syz.3.2956: Failed to acquire dquot type 1 [ 140.289428][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 140.289451][ C0] EXT4-fs (loop3): last error at time 2000000002: ext4_validate_block_bitmap:441 [ 140.330159][T11059] loop3: lost filesystem error report for type 5 error -117 [ 140.330620][T11059] EXT4-fs (loop3): 1 truncate cleaned up [ 140.400085][T11059] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 140.423151][T11059] EXT4-fs: Ignoring removed orlov option [ 140.440593][T11059] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 140.449438][T11059] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 140.489048][T11074] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 140.517646][T11059] EXT4-fs error (device loop3): __ext4_remount:6804: comm syz.3.2956: Abort forced by user [ 140.557420][ T28] kauditd_printk_skb: 34 callbacks suppressed [ 140.557438][ T28] audit: type=1326 audit(2000000002.580:1396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11082 comm="syz.0.2965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdda43c799 code=0x7ffc0000 [ 140.622519][T11059] EXT4-fs (loop3): Remounting filesystem read-only [ 140.629067][T11059] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 140.637500][T11074] EXT4-fs (loop5): shut down requested (2) [ 140.659999][T11059] ext4 filesystem being remounted at /325/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 140.670805][ T28] audit: type=1326 audit(2000000002.620:1397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11082 comm="syz.0.2965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7efdda43c799 code=0x7ffc0000 [ 140.701380][ T4500] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 140.713824][ T28] audit: type=1326 audit(2000000002.620:1398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11082 comm="syz.0.2965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7efdda43c502 code=0x7ffc0000 [ 140.739257][ T28] audit: type=1326 audit(2000000002.620:1399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11082 comm="syz.0.2965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7efdda3fcfce code=0x7ffc0000 [ 140.805981][ T6427] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 140.835352][ T28] audit: type=1326 audit(2000000002.620:1400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11082 comm="syz.0.2965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7efdda43c5c7 code=0x7ffc0000 [ 140.861541][ T28] audit: type=1326 audit(2000000002.620:1401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11082 comm="syz.0.2965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7efdda3fcfce code=0x7ffc0000 [ 140.925457][ T28] audit: type=1326 audit(2000000002.620:1402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11082 comm="syz.0.2965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7efdda43c42b code=0x7ffc0000 [ 140.953343][ T28] audit: type=1326 audit(2000000002.620:1403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11082 comm="syz.0.2965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7efdda3fcfce code=0x7ffc0000 [ 140.978989][ T28] audit: type=1326 audit(2000000002.620:1404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11082 comm="syz.0.2965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7efdda3fcfce code=0x7ffc0000 [ 141.003050][ T28] audit: type=1326 audit(2000000002.620:1405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11082 comm="syz.0.2965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7efdda43b607 code=0x7ffc0000 [ 141.086633][T11101] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2973'. [ 141.103436][T11103] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 141.145973][T11103] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 141.223283][ T59] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 141.317052][T11117] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 141.338745][T11129] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2986'. [ 141.366242][ T9612] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 142.105835][T11197] program syz.3.3018 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 142.256739][T11204] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3021'. [ 142.723613][T11233] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3033'. [ 142.771176][T11233] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3033'. [ 142.777876][T11235] random: crng reseeded on system resumption [ 142.803726][T11233] geneve2: entered promiscuous mode [ 142.845478][ T3391] IPVS: starting estimator thread 0... [ 142.887367][T11242] set_capacity_and_notify: 12 callbacks suppressed [ 142.887388][T11242] loop5: detected capacity change from 0 to 256 [ 142.921278][T11242] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 142.940050][T11239] IPVS: using max 2832 ests per chain, 141600 per kthread [ 143.014726][T11251] FAT-fs (loop5): error, corrupted file size (i_pos 196, 16779008) [ 143.049802][T11251] FAT-fs (loop5): Filesystem has been set read-only [ 143.077548][T11251] FAT-fs (loop5): error, corrupted file size (i_pos 196, 16779008) [ 143.149676][T11255] loop2: detected capacity change from 0 to 512 [ 143.253014][T11255] EXT4-fs (loop2): 1 orphan inode deleted [ 143.270010][ T12] EXT4-fs error (device loop2): ext4_release_dquot:7037: comm kworker/u8:0: Failed to release dquot type 1 [ 143.281912][T11255] ext4 filesystem being mounted at /392/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 143.343656][T11267] loop3: detected capacity change from 0 to 512 [ 143.387430][T11267] EXT4-fs (loop3): 1 truncate cleaned up [ 143.529159][T11284] netlink: 'syz.3.3056': attribute type 2 has an invalid length. [ 143.566728][T11287] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3058'. [ 143.598993][T11292] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3061'. [ 143.599536][T11290] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3060'. [ 143.611316][T11292] batman_adv: batadv0: Adding interface: ipvlan2 [ 143.624785][T11292] batman_adv: batadv0: The MTU of interface ipvlan2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 143.656838][T11292] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 143.668320][T11292] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 143.678865][T11292] batman_adv: batadv0: Not using interface ipvlan2 (retrying later): interface not active [ 143.761240][T11299] bond2: invalid ARP target 0.0.0.0 specified for addition [ 143.768637][T11299] bond2: option arp_ip_target: invalid value (0) [ 143.781657][T11299] bond2 (unregistering): Released all slaves [ 143.786401][T11305] program syz.2.3067 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 144.063935][T11334] loop2: detected capacity change from 0 to 512 [ 144.082806][T11334] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #15: comm syz.2.3080: inode has both inline data and extents flags [ 144.137619][T11334] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 144.137856][T11334] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.3080: couldn't read orphan inode 15 (err -117) [ 144.147084][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 144.147109][ C0] EXT4-fs (loop2): initial error at time 2000000006: ext4_orphan_get:1391: inode 15 [ 144.147144][ C0] EXT4-fs (loop2): last error at time 2000000006: ext4_orphan_get:1391: inode 15 [ 144.184962][T11334] loop2: lost filesystem error report for type 5 error -117 [ 144.543461][T11360] loop2: detected capacity change from 0 to 512 [ 144.591535][T11360] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #15: comm syz.2.3092: inode has both inline data and extents flags [ 144.623190][T11360] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 144.629943][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 144.645551][ C1] EXT4-fs (loop2): initial error at time 2000000006: ext4_orphan_get:1391: inode 15 [ 144.655000][ C1] EXT4-fs (loop2): last error at time 2000000006: ext4_orphan_get:1391: inode 15 [ 144.658498][T11360] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.3092: couldn't read orphan inode 15 (err -117) [ 144.782915][T11360] loop2: lost filesystem error report for type 5 error -117 [ 144.857458][T11377] netlink: 'syz.0.3101': attribute type 21 has an invalid length. [ 144.893865][T11377] IPv6: NLM_F_CREATE should be specified when creating new route [ 144.970016][T11377] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 144.977275][T11377] IPv6: NLM_F_CREATE should be set when creating new route [ 144.984574][T11377] IPv6: NLM_F_CREATE should be set when creating new route [ 144.991820][T11377] IPv6: NLM_F_CREATE should be set when creating new route [ 145.008273][T11385] netlink: 'syz.0.3101': attribute type 21 has an invalid length. [ 145.035546][T11385] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 145.188125][T11397] __nla_validate_parse: 3 callbacks suppressed [ 145.188142][T11397] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3109'. [ 145.221924][T11401] loop5: detected capacity change from 0 to 512 [ 145.246136][T11397] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3109'. [ 145.287487][T11397] netlink: 'syz.2.3109': attribute type 13 has an invalid length. [ 145.315468][T11397] netlink: 'syz.2.3109': attribute type 11 has an invalid length. [ 145.389101][T11405] netlink: 168 bytes leftover after parsing attributes in process `syz.2.3112'. [ 145.449656][T11409] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3114'. [ 145.533724][T11413] loop5: detected capacity change from 0 to 512 [ 145.571523][T11413] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 145.763753][T11420] netlink: 168 bytes leftover after parsing attributes in process `syz.5.3119'. [ 145.792834][T11422] loop2: detected capacity change from 0 to 256 [ 145.820136][T11422] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 145.852920][T11422] FAT-fs (loop2): error, corrupted file size (i_pos 196, 16779264) [ 145.876310][T11422] FAT-fs (loop2): Filesystem has been set read-only [ 145.901907][T11422] FAT-fs (loop2): error, corrupted file size (i_pos 196, 16779264) [ 146.021058][ T28] kauditd_printk_skb: 32 callbacks suppressed [ 146.021077][ T28] audit: type=1400 audit(2000000008.050:1437): avc: denied { watch } for pid=11433 comm="syz.5.3126" path="/syzcgroup/unified/syz5" dev="cgroup2" ino=161 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1 [ 146.212145][T11453] netlink: 'syz.5.3134': attribute type 2 has an invalid length. [ 146.260938][T11458] loop2: detected capacity change from 0 to 512 [ 146.267557][T11458] EXT4-fs: Ignoring removed oldalloc option [ 146.340117][T11458] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #15: comm syz.2.3137: inode has both inline data and extents flags [ 146.354732][T11458] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 146.355977][T11458] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.3137: couldn't read orphan inode 15 (err -117) [ 146.365612][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 146.365633][ C0] EXT4-fs (loop2): initial error at time 2000000008: ext4_orphan_get:1391: inode 15 [ 146.365664][ C0] EXT4-fs (loop2): last error at time 2000000008: ext4_orphan_get:1391: inode 15 [ 146.414551][T11458] loop2: lost filesystem error report for type 5 error -117 [ 146.446532][T11471] program syz.3.3144 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 146.530823][T11477] loop2: detected capacity change from 0 to 512 [ 146.550473][T11482] netlink: 232 bytes leftover after parsing attributes in process `syz.5.3149'. [ 146.571931][T11477] ext4 filesystem being mounted at /419/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 146.586484][ T28] audit: type=1400 audit(2000000008.610:1438): avc: denied { rename } for pid=11476 comm="syz.2.3146" name=131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D338 dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 146.621761][T11477] EXT4-fs error (device loop2): ext4_empty_dir:3075: inode #12: comm syz.2.3146: invalid size [ 146.650855][T11477] EXT4-fs (loop2): Remounting filesystem read-only [ 146.702430][ T12] EXT4-fs (loop2): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 146.718044][ T12] Quota error (device loop2): write_blk: dquota write failed [ 146.731318][ T12] Quota error (device loop2): free_dqentry: Can't write quota data block 5 [ 146.775558][T11501] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3154'. [ 146.865031][T11509] bpf: Bad value for 'uid' [ 147.241265][ T28] audit: type=1400 audit(2000000009.270:1439): avc: denied { setopt } for pid=11528 comm="syz.2.3166" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 147.262099][ T28] audit: type=1400 audit(2000000009.290:1440): avc: denied { connect } for pid=11528 comm="syz.2.3166" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 147.303671][ T28] audit: type=1400 audit(2000000009.330:1441): avc: denied { ioctl } for pid=11531 comm="syz.2.3167" path="socket:[30442]" dev="sockfs" ino=30442 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 147.524846][T11555] FAT-fs (loop3): Directory bread(block 199916) failed [ 147.560837][T11555] FAT-fs (loop3): Directory bread(block 199917) failed [ 147.568090][T11555] FAT-fs (loop3): Directory bread(block 199918) failed [ 147.603198][T11555] FAT-fs (loop3): Directory bread(block 199919) failed [ 147.610523][T11555] FAT-fs (loop3): Directory bread(block 199920) failed [ 147.617750][T11555] FAT-fs (loop3): Directory bread(block 199921) failed [ 147.625442][T11555] FAT-fs (loop3): Directory bread(block 199922) failed [ 147.633294][T11555] FAT-fs (loop3): Directory bread(block 199923) failed [ 147.880365][T11591] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 147.930402][T11591] FAT-fs (loop5): error, corrupted file size (i_pos 196, 16779264) [ 147.938387][T11591] FAT-fs (loop5): Filesystem has been set read-only [ 147.952771][T11591] FAT-fs (loop5): error, corrupted file size (i_pos 196, 16779264) [ 148.677474][T11604] program syz.3.3202 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 148.929433][T11606] batman_adv: batadv0: Adding interface: vlan2 [ 148.939957][T11606] batman_adv: batadv0: The MTU of interface vlan2 is too small (1450) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 149.008763][T11606] batman_adv: batadv0: Not using interface vlan2 (retrying later): interface not active [ 149.034238][ T28] audit: type=1400 audit(2000000011.050:1442): avc: denied { watch watch_reads } for pid=11609 comm="syz.5.3200" path="/proc/1251/net" dev="proc" ino=31324 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1 [ 149.237185][T11630] program syz.3.3213 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 149.246604][T11632] netlink: 52 bytes leftover after parsing attributes in process `syz.2.3214'. [ 149.256542][ T28] audit: type=1400 audit(2000000011.280:1443): avc: denied { setopt } for pid=11633 comm="syz.0.3215" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 149.301284][T11638] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3217'. [ 149.363348][T11645] batadv_slave_1: entered promiscuous mode [ 149.389611][T11641] batadv_slave_1: left promiscuous mode [ 149.636872][ T28] audit: type=1326 audit(2000000011.660:1444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11678 comm="syz.0.3235" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7efdda43c799 code=0x0 [ 149.859961][T11700] netlink: 156 bytes leftover after parsing attributes in process `syz.2.3245'. [ 149.892857][T11702] set_capacity_and_notify: 3 callbacks suppressed [ 149.892902][T11702] loop5: detected capacity change from 0 to 1024 [ 149.971420][T11702] ext4 filesystem being mounted at /583/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 150.350814][T11748] __nla_validate_parse: 1 callbacks suppressed [ 150.350843][T11748] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3267'. [ 150.610753][T11769] loop3: detected capacity change from 0 to 512 [ 150.635834][T11769] ext4 filesystem being mounted at /421/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 150.890812][T11786] rdma_op ffff88811c4ae580 conn xmit_rdma 0000000000000000 [ 150.907105][T11789] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3285'. [ 150.974875][T11798] loop2: detected capacity change from 0 to 512 [ 150.983599][T11798] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 150.998650][T11798] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #15: comm syz.2.3289: iget: bad i_size value: -1729382256910270454 [ 151.013338][T11798] loop2: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 151.013517][T11798] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.3289: couldn't read orphan inode 15 (err -117) [ 151.022814][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 151.022833][ C0] EXT4-fs (loop2): initial error at time 2000000013: ext4_orphan_get:1391: inode 15 [ 151.022892][ C0] EXT4-fs (loop2): last error at time 2000000013: ext4_orphan_get:1391: inode 15 [ 151.060866][T11798] loop2: lost filesystem error report for type 5 error -117 [ 151.063942][T11796] loop3: detected capacity change from 0 to 8192 [ 151.064988][T11798] EXT4-fs (loop2): Online defrag not supported for non-extent files [ 151.154683][T11803] netlink: 60 bytes leftover after parsing attributes in process `syz.3.3291'. [ 151.270844][T11815] loop2: detected capacity change from 0 to 512 [ 151.277850][T11815] EXT4-fs: Ignoring removed nobh option [ 151.287681][T11815] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 151.309862][T11815] EXT4-fs (loop2): 1 truncate cleaned up [ 151.440968][ T28] kauditd_printk_skb: 2 callbacks suppressed [ 151.440986][ T28] audit: type=1400 audit(2000000013.460:1447): avc: denied { create } for pid=11834 comm="syz.2.3306" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 151.441011][T11835] ieee802154 phy0 wpan0: encryption failed: -22 [ 151.449995][ T28] audit: type=1400 audit(2000000013.470:1448): avc: denied { write } for pid=11834 comm="syz.2.3306" path="socket:[31635]" dev="sockfs" ino=31635 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 151.501478][T11833] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3305'. [ 151.526028][T11839] loop2: detected capacity change from 0 to 1024 [ 151.590047][T11833] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3305'. [ 151.615279][T11839] ext4 filesystem being mounted at /472/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 151.699264][T11851] program syz.2.3310 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 152.136996][T11890] netlink: 104 bytes leftover after parsing attributes in process `syz.0.3326'. [ 152.384030][ T28] audit: type=1400 audit(2000000014.410:1449): avc: denied { listen } for pid=11902 comm="syz.0.3331" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 152.434041][ T28] audit: type=1400 audit(2000000014.410:1450): avc: denied { ioctl } for pid=11902 comm="syz.0.3331" path="socket:[32811]" dev="sockfs" ino=32811 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 152.501250][T11905] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3334'. [ 152.580723][ T28] audit: type=1400 audit(2000000014.600:1451): avc: denied { shutdown } for pid=11910 comm="syz.3.3336" laddr=172.20.20.170 lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 152.763606][T11918] loop3: detected capacity change from 0 to 1024 [ 152.815616][T11918] ext4 filesystem being mounted at /434/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 153.096033][T11949] netlink: 60 bytes leftover after parsing attributes in process `syz.5.3348'. [ 153.117478][T11935] chnl_net:caif_netlink_parms(): no params data found [ 153.180788][ T36] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 153.194709][ T28] audit: type=1400 audit(2000000015.220:1452): avc: denied { write } for pid=11963 comm="syz.3.3352" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 153.224870][T11935] bridge0: port 1(bridge_slave_0) entered blocking state [ 153.232237][T11935] bridge0: port 1(bridge_slave_0) entered disabled state [ 153.239458][T11935] bridge_slave_0: entered allmulticast mode [ 153.246397][T11935] bridge_slave_0: entered promiscuous mode [ 153.265000][T11935] bridge0: port 2(bridge_slave_1) entered blocking state [ 153.274334][T11935] bridge0: port 2(bridge_slave_1) entered disabled state [ 153.281754][T11935] bridge_slave_1: entered allmulticast mode [ 153.288419][T11935] bridge_slave_1: entered promiscuous mode [ 153.296334][ T36] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 153.322874][T11935] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 153.335974][ T36] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 153.351942][T11935] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 153.372618][T11935] team0: Port device team_slave_0 added [ 153.379208][T11935] team0: Port device team_slave_1 added [ 153.400735][ T36] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 153.413061][T11935] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 153.420641][T11935] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 153.447245][T11935] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 153.459063][T11935] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 153.466052][T11935] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 153.492600][T11935] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 153.519587][T11935] hsr_slave_0: entered promiscuous mode [ 153.525690][T11935] hsr_slave_1: entered promiscuous mode [ 153.531865][T11935] debugfs: 'hsr0' already exists in 'hsr' [ 153.537631][T11935] Cannot create hsr debugfs directory [ 153.588012][ T36] bridge_slave_1: left allmulticast mode [ 153.598003][ T36] bridge_slave_1: left promiscuous mode [ 153.603836][ T36] bridge0: port 2(bridge_slave_1) entered disabled state [ 153.611776][ T36] bridge_slave_0: left allmulticast mode [ 153.617459][ T36] bridge_slave_0: left promiscuous mode [ 153.623294][ T36] bridge0: port 1(bridge_slave_0) entered disabled state [ 153.680166][ T36] dvmrp6 (unregistering): left allmulticast mode [ 153.732428][ T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 153.742537][ T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 153.752455][ T36] bond0 (unregistering): Released all slaves [ 153.761103][ T36] bond1 (unregistering): Released all slaves [ 153.817410][ T36] hsr_slave_0: left promiscuous mode [ 153.823316][ T36] hsr_slave_1: left promiscuous mode [ 153.827758][ T28] audit: type=1400 audit(2000000015.850:1453): avc: denied { getopt } for pid=12011 comm="syz.3.3373" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 153.828917][ T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 153.856310][ T36] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 153.865897][ T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 153.866609][T12014] loop3: detected capacity change from 0 to 128 [ 153.873603][ T36] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 153.880981][T12014] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 153.900756][T12014] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 153.910485][ T36] veth1_macvtap: left promiscuous mode [ 153.916005][ T36] veth0_macvtap: left promiscuous mode [ 153.921920][ T36] veth1_vlan: left promiscuous mode [ 153.927159][ T36] veth0_vlan: left promiscuous mode [ 154.022027][ T36] team0 (unregistering): Port device team_slave_1 removed [ 154.042551][ T36] team0 (unregistering): Port device team_slave_0 removed [ 154.044111][T12026] vhci_hcd vhci_hcd.3: default hub control req: 8013 v0000 i0000 l31125 [ 154.148094][T11935] 8021q: adding VLAN 0 to HW filter on device bond0 [ 154.167841][T11935] 8021q: adding VLAN 0 to HW filter on device team0 [ 154.188781][ T30] bridge0: port 1(bridge_slave_0) entered blocking state [ 154.195890][ T30] bridge0: port 1(bridge_slave_0) entered forwarding state [ 154.232318][ T30] bridge0: port 2(bridge_slave_1) entered blocking state [ 154.239452][ T30] bridge0: port 2(bridge_slave_1) entered forwarding state [ 154.284304][T11935] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 154.307064][T11935] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 154.347191][ T28] audit: type=1326 audit(2000000016.360:1454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12063 comm="syz.3.3392" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4ed112c799 code=0x0 [ 154.448646][T11935] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 154.666220][T12108] syzkaller1: tun_chr_ioctl cmd 2148553947 [ 154.677789][T11935] veth0_vlan: entered promiscuous mode [ 154.685867][T11935] veth1_vlan: entered promiscuous mode [ 154.701298][T11935] veth0_macvtap: entered promiscuous mode [ 154.711252][T11935] veth1_macvtap: entered promiscuous mode [ 154.725271][T11935] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 154.742092][T11935] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 155.172069][T12181] netlink: 444 bytes leftover after parsing attributes in process `syz.6.3416'. [ 155.181472][T12181] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3416'. [ 155.299210][T12194] loop6: detected capacity change from 0 to 1024 [ 155.317279][T12194] EXT4-fs: inline encryption not supported [ 155.358836][T12194] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:4222: comm syz.6.3421: Allocating blocks 497-513 which overlap fs metadata [ 155.373152][T12194] EXT4-fs (loop6): Remounting filesystem read-only [ 155.408283][T12206] loop6: detected capacity change from 0 to 512 [ 155.424718][T12206] ext4 filesystem being mounted at /10/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 155.441597][T12206] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 96 vs 1632 free clusters [ 155.462597][T12206] EXT4-fs (loop6): Delayed block allocation failed for inode 16 at logical offset 10 with max blocks 1 with error 28 [ 155.475485][T12206] EXT4-fs (loop6): This should not happen!! Data will be lost [ 155.475485][T12206] [ 155.485606][T12206] EXT4-fs (loop6): Total free blocks count 0 [ 155.491719][T12206] EXT4-fs (loop6): Free/Dirty block details [ 155.500196][T12206] EXT4-fs (loop6): free_blocks=1536 [ 155.507793][T12206] EXT4-fs (loop6): dirty_blocks=1 [ 155.515465][T12206] EXT4-fs (loop6): Block reservation details [ 155.521609][T12206] EXT4-fs (loop6): i_reserved_data_blocks=1 [ 155.527803][T12213] EXT4-fs (loop6): Delayed block allocation failed for inode 16 at logical offset 5 with max blocks 6 with error 28 [ 155.540206][T12213] EXT4-fs (loop6): This should not happen!! Data will be lost [ 155.540206][T12213] [ 155.609644][ T28] audit: type=1400 audit(2000000017.630:1455): avc: denied { ioctl } for pid=12219 comm="syz.3.3430" path="socket:[33356]" dev="sockfs" ino=33356 ioctlcmd=0x89f1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 155.694330][ T28] audit: type=1400 audit(2000000017.670:1456): avc: denied { getopt } for pid=12225 comm="syz.6.3432" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 155.808547][T12234] SELinux: failure in selinux_parse_skb(), unable to parse packet [ 155.903914][T12238] loop2: detected capacity change from 0 to 512 [ 155.910814][T12240] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3438'. [ 155.951958][T12238] ext4 filesystem being mounted at /486/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 156.021350][T12246] loop2: detected capacity change from 0 to 512 [ 156.079895][T12246] ext4 filesystem being mounted at /487/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 156.149751][T12246] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 96 vs 1632 free clusters [ 156.184642][T12246] EXT4-fs (loop2): Delayed block allocation failed for inode 16 at logical offset 10 with max blocks 1 with error 28 [ 156.200064][T12246] EXT4-fs (loop2): This should not happen!! Data will be lost [ 156.200064][T12246] [ 156.209811][T12246] EXT4-fs (loop2): Total free blocks count 0 [ 156.216267][T12246] EXT4-fs (loop2): Free/Dirty block details [ 156.222372][T12246] EXT4-fs (loop2): free_blocks=1536 [ 156.227607][T12246] EXT4-fs (loop2): dirty_blocks=1 [ 156.232898][T12246] EXT4-fs (loop2): Block reservation details [ 156.238978][T12246] EXT4-fs (loop2): i_reserved_data_blocks=1 [ 156.246752][T12269] EXT4-fs (loop2): Delayed block allocation failed for inode 16 at logical offset 5 with max blocks 6 with error 28 [ 156.259498][T12269] EXT4-fs (loop2): This should not happen!! Data will be lost [ 156.259498][T12269] [ 156.325693][T12277] program syz.3.3452 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 156.326917][T12278] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3450'. [ 156.553206][ T28] kauditd_printk_skb: 1 callbacks suppressed [ 156.553222][ T28] audit: type=1400 audit(2000000018.580:1458): avc: denied { listen } for pid=12284 comm="syz.3.3455" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 156.643790][T12295] loop2: detected capacity change from 0 to 128 [ 156.653236][T12295] ext4 filesystem being mounted at /492/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 156.795682][ T28] audit: type=1400 audit(2000000018.820:1459): avc: denied { mount } for pid=12304 comm="syz.2.3464" name="/" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1 [ 156.899942][T12310] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3466'. [ 156.919858][T12314] dummy0: mtu less than device minimum [ 156.966152][T12318] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3470'. [ 157.134339][T12347] 9p: Bad value for 'wfdno' [ 157.289180][T12368] loop6: detected capacity change from 0 to 1024 [ 157.318677][T12368] ext4 filesystem being mounted at /25/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 157.352221][ T12] EXT4-fs error (device loop6): ext4_map_blocks:818: inode #15: comm kworker/u8:0: lblock 0 mapped to illegal pblock 0 (length 6) [ 157.366003][ T3356] kernel read not supported for file bpf-prog (pid: 3356 comm: kworker/1:2) [ 157.366834][ T12] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117 [ 157.387803][ T12] EXT4-fs (loop6): This should not happen!! Data will be lost [ 157.387803][ T12] [ 157.398225][ T12] EXT4-fs error (device loop6): ext4_map_blocks:818: inode #15: block 8: comm kworker/u8:0: lblock 8 mapped to illegal pblock 8 (length 8) [ 157.413179][ T12] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117 [ 157.426157][ T12] EXT4-fs (loop6): This should not happen!! Data will be lost [ 157.426157][ T12] [ 158.032339][ T28] audit: type=1326 audit(2000000020.060:1460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12428 comm="syz.3.3522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ed112c799 code=0x7ffc0000 [ 158.087554][ T28] audit: type=1326 audit(2000000020.060:1461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12428 comm="syz.3.3522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ed112c799 code=0x7ffc0000 [ 158.176122][ T28] audit: type=1326 audit(2000000020.090:1462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12428 comm="syz.3.3522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ed112c799 code=0x7ffc0000 [ 158.278280][ T28] audit: type=1326 audit(2000000020.090:1463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12428 comm="syz.3.3522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ed112c799 code=0x7ffc0000 [ 158.499232][ T28] audit: type=1326 audit(2000000020.090:1464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12428 comm="syz.3.3522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ed112c799 code=0x7ffc0000 [ 158.529970][ T28] audit: type=1326 audit(2000000020.090:1465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12428 comm="syz.3.3522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f4ed112c799 code=0x7ffc0000 [ 158.608428][ T28] audit: type=1326 audit(2000000020.090:1466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12428 comm="syz.3.3522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ed112c799 code=0x7ffc0000 [ 158.632764][T12443] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3528'. [ 158.652139][ T28] audit: type=1326 audit(2000000020.090:1467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12428 comm="syz.3.3522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ed112c799 code=0x7ffc0000 [ 158.754038][T12454] program syz.2.3534 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 158.867584][T12463] SELinux: failed to load policy [ 158.887733][T12471] delete_channel: no stack [ 158.989482][T12496] netem: incorrect ge model size [ 159.002049][T12496] netem: change failed [ 159.064218][T12498] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 159.081996][ T23] kernel read not supported for file /vcs (pid: 23 comm: kworker/1:0) [ 159.098529][T12509] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3560'. [ 159.180434][T12525] loop3: detected capacity change from 0 to 128 [ 159.193800][T12523] sctp: [Deprecated]: syz.5.3566 (pid 12523) Use of int in max_burst socket option. [ 159.193800][T12523] Use struct sctp_assoc_value instead [ 159.196599][T12527] loop2: detected capacity change from 0 to 512 [ 159.217198][T12525] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 159.226747][T12531] loop6: detected capacity change from 0 to 2048 [ 159.230226][T12525] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 159.277949][T12527] ext4 filesystem being mounted at /521/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 159.319737][ T23] kernel write not supported for file bpf-map (pid: 23 comm: kworker/1:0) [ 159.380846][T12545] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3575'. [ 159.390153][T12550] netlink: 232 bytes leftover after parsing attributes in process `syz.6.3573'. [ 159.483270][T12564] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12564 comm=syz.2.3584 [ 159.534308][T12575] netlink: 140 bytes leftover after parsing attributes in process `syz.2.3590'. [ 159.839464][T12622] netlink: 80 bytes leftover after parsing attributes in process `syz.6.3612'. [ 159.982099][T12642] netlink: 'syz.6.3620': attribute type 3 has an invalid length. [ 160.044589][T12647] SELinux: failed to load policy [ 161.185052][T12805] netlink: 216 bytes leftover after parsing attributes in process `syz.2.3650'. [ 161.234237][T12805] netlink: 216 bytes leftover after parsing attributes in process `syz.2.3650'. [ 161.237603][T12809] netlink: 'syz.3.3652': attribute type 14 has an invalid length. [ 161.255042][T12810] loop6: detected capacity change from 0 to 512 [ 161.272283][T12810] EXT4-fs: Ignoring removed bh option [ 161.290494][T12810] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.3651: invalid indirect mapped block 4294967295 (level 1) [ 161.320735][T12816] sock: sock_set_timeout: `syz.2.3654' (pid 12816) tries to set negative timeout [ 161.345312][T12810] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 161.349178][T12810] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.3651: invalid indirect mapped block 4294967295 (level 1) [ 161.358394][ C1] EXT4-fs (loop6): error count since last fsck: 1 [ 161.358416][ C1] EXT4-fs (loop6): initial error at time 2000000023: ext4_free_branches:1023: inode 11 [ 161.358451][ C1] EXT4-fs (loop6): last error at time 2000000023: ext4_free_branches:1023: inode 11 [ 161.391271][T12821] loop2: detected capacity change from 0 to 512 [ 161.398447][T12810] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 161.404978][T12810] EXT4-fs (loop6): 2 truncates cleaned up [ 161.417173][T12824] vhci_hcd vhci_hcd.3: default hub control req: 8013 v0000 i0000 l31125 [ 161.420763][T12810] EXT4-fs mount: 42 callbacks suppressed [ 161.420777][T12810] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 161.483500][T12821] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 161.501550][T11935] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.563306][ T6393] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.713893][T12854] xt_hashlimit: size too large, truncated to 1048576 [ 161.751753][T12869] netlink: 80 bytes leftover after parsing attributes in process `syz.0.3678'. [ 161.780152][T12869] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3678'. [ 161.813007][T12867] loop2: detected capacity change from 0 to 4096 [ 161.851285][T12867] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 161.888530][T12871] netlink: 'syz.0.3679': attribute type 13 has an invalid length. [ 161.905074][T12871] netlink: 24859 bytes leftover after parsing attributes in process `syz.0.3679'. [ 161.930927][ T6393] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.953204][T12875] loop6: detected capacity change from 0 to 256 [ 161.960301][T12875] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 161.992406][T12879] loop2: detected capacity change from 0 to 512 [ 162.009258][T12875] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 162.045922][T12879] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 162.153258][ T6393] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 162.205846][T12888] loop2: detected capacity change from 0 to 512 [ 162.228434][T12888] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 162.286189][T12888] EXT4-fs error (device loop2): ext4_init_orphan_info:618: comm syz.2.3685: orphan file block 0: bad magic [ 162.298880][T12888] loop2: lost filesystem error report for type 5 error -117 [ 162.299036][T12888] EXT4-fs (loop2): Remounting filesystem read-only [ 162.306368][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 162.306406][ C1] EXT4-fs (loop2): initial error at time 2000000024: ext4_init_orphan_info:618 [ 162.306427][ C1] EXT4-fs (loop2): last error at time 2000000024: ext4_init_orphan_info:618 [ 162.345445][T12888] EXT4-fs (loop2): mount failed [ 162.384678][T12903] batman_adv: batadv0: Adding interface: macvlan4 [ 162.389684][T12888] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3685'. [ 162.419270][T12903] batman_adv: batadv0: The MTU of interface macvlan4 is too small (1450) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 162.478408][T12903] batman_adv: batadv0: Not using interface macvlan4 (retrying later): interface not active [ 162.547380][ T28] kauditd_printk_skb: 9 callbacks suppressed [ 162.547394][ T28] audit: type=1326 audit(2000000024.570:1477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12914 comm="syz.0.3698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdda43c799 code=0x7ffc0000 [ 162.649269][ T28] audit: type=1326 audit(2000000024.570:1478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12914 comm="syz.0.3698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdda43c799 code=0x7ffc0000 [ 162.680559][ T28] audit: type=1326 audit(2000000024.570:1479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12914 comm="syz.0.3698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdda43c799 code=0x7ffc0000 [ 162.705929][ T28] audit: type=1326 audit(2000000024.570:1480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12914 comm="syz.0.3698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdda43c799 code=0x7ffc0000 [ 162.744694][ T28] audit: type=1326 audit(2000000024.610:1481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12914 comm="syz.0.3698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7efdda43c799 code=0x7ffc0000 [ 162.765755][T12930] netlink: 'syz.3.3705': attribute type 19 has an invalid length. [ 162.805333][T12930] netlink: 172 bytes leftover after parsing attributes in process `syz.3.3705'. [ 162.839517][T12939] netlink: 168 bytes leftover after parsing attributes in process `syz.5.3709'. [ 162.853013][ T28] audit: type=1326 audit(2000000024.610:1482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12914 comm="syz.0.3698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdda43c799 code=0x7ffc0000 [ 162.899443][ T28] audit: type=1326 audit(2000000024.670:1483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12914 comm="syz.0.3698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdda43c799 code=0x7ffc0000 [ 162.932741][ T28] audit: type=1326 audit(2000000024.670:1484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12914 comm="syz.0.3698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7efdda43c502 code=0x7ffc0000 [ 162.966717][ T28] audit: type=1400 audit(2000000024.750:1485): avc: denied { map } for pid=12925 comm="syz.3.3703" path="pipe:[14249]" dev="pipefs" ino=14249 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 163.001575][ T28] audit: type=1400 audit(2000000024.750:1486): avc: denied { execute } for pid=12925 comm="syz.3.3703" path="pipe:[14249]" dev="pipefs" ino=14249 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 163.414331][T12991] loop2: detected capacity change from 0 to 256 [ 163.513043][T12996] netlink: 'syz.5.3736': attribute type 9 has an invalid length. [ 163.557260][T12996] macvlan3: entered promiscuous mode [ 163.563768][T12998] loop2: detected capacity change from 0 to 1024 [ 163.576966][T12996] macvlan3: entered allmulticast mode [ 163.585307][T12998] EXT4-fs: Ignoring removed bh option [ 163.608328][T12998] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 163.801334][T12998] EXT4-fs error (device loop2): ext4_map_blocks:818: inode #3: block 1: comm syz.2.3735: lblock 1 mapped to illegal pblock 1 (length 1) [ 163.817434][T12998] loop2: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 163.817682][T12998] EXT4-fs error (device loop2): ext4_acquire_dquot:7001: comm syz.2.3735: Failed to acquire dquot type 0 [ 163.826790][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 163.826821][ C1] EXT4-fs (loop2): initial error at time 2000000025: ext4_map_blocks:818: inode 3: block 1 [ 163.826863][ C1] EXT4-fs (loop2): last error at time 2000000025: ext4_map_blocks:818: inode 3: block 1 [ 163.864940][T12998] loop2: lost filesystem error report for type 5 error -117 [ 163.876698][T13013] loop6: detected capacity change from 0 to 128 [ 163.890765][T12998] EXT4-fs error (device loop2): ext4_free_blocks:6724: comm syz.2.3735: Freeing blocks not in datazone - block = 0, count = 4096 [ 163.910321][T12998] loop2: lost filesystem error report for type 5 error -117 [ 163.911137][T12998] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.3735: Invalid inode bitmap blk 0 in block_group 0 [ 163.916648][T13013] FAT-fs (loop6): error, invalid access to FAT (entry 0x0fff0000) [ 163.918563][T12998] loop2: lost filesystem error report for type 5 error -117 [ 163.931673][T12789] EXT4-fs error (device loop2): ext4_map_blocks:776: inode #3: block 1: comm kworker/u8:12: lblock 1 mapped to illegal pblock 1 (length 1) [ 163.964156][T12998] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem [ 163.980033][T12998] loop2: lost filesystem error report for type 5 error -117 [ 163.980255][T12998] EXT4-fs (loop2): 1 orphan inode deleted [ 163.990064][T13013] FAT-fs (loop6): Filesystem has been set read-only [ 164.004788][T13013] FAT-fs (loop6): error, invalid access to FAT (entry 0x0fff0000) [ 164.010578][T12998] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 164.028735][T12789] loop2: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 164.029023][T12789] EXT4-fs error (device loop2): ext4_release_dquot:7037: comm kworker/u8:12: Failed to release dquot type 0 [ 164.109365][T12998] EXT4-fs: Remounting file system with no journal so ignoring journalled data option [ 164.119066][T12998] EXT4-fs: Cannot change quota options when quota turned on [ 164.133920][T13021] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3746'. [ 164.160322][T13024] loop3: detected capacity change from 0 to 512 [ 164.167012][T13024] EXT4-fs: Ignoring removed i_version option [ 164.177689][T13024] EXT4-fs: Ignoring removed oldalloc option [ 164.185669][T13021] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3746'. [ 164.195442][ T6393] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.218618][T13024] EXT4-fs (loop3): 1 truncate cleaned up [ 164.249216][T13024] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 164.310846][ T6427] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.501512][T12976] kexec: Could not allocate control_code_buffer [ 164.660506][T13043] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 164.954346][ T6427] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.965627][T13056] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 164.983547][T13071] 9p: Bad value for 'rfdno' [ 165.004369][T13056] ext4 filesystem being mounted at /86/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 165.101206][T11935] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 165.225590][T13101] netlink: 'syz.5.3778': attribute type 3 has an invalid length. [ 165.287833][T13118] EXT4-fs: Ignoring removed bh option [ 165.317823][T13118] EXT4-fs error (device loop6): ext4_get_branch:178: inode #11: block 4294967295: comm syz.6.3785: invalid block [ 165.352453][T13118] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 165.352709][T13118] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.3785: invalid indirect mapped block 4294967295 (level 1) [ 165.361935][ C0] EXT4-fs (loop6): error count since last fsck: 1 [ 165.361961][ C0] EXT4-fs (loop6): initial error at time 2000000027: ext4_get_branch:178: inode 11: block 4294967295 [ 165.362001][ C0] EXT4-fs (loop6): last error at time 2000000027: ext4_get_branch:178: inode 11: block 4294967295 [ 165.404310][T13118] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 165.405087][T13118] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.3785: invalid indirect mapped block 4294967295 (level 1) [ 165.430487][T13118] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 165.430899][T13118] EXT4-fs (loop6): 2 truncates cleaned up [ 165.447230][T13118] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 165.451454][T13132] team0: Device gtp0 is of different type [ 165.476075][T11935] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.803711][T13179] 9p: Bad value for 'rfdno' [ 165.812637][T13177] delete_channel: no stack [ 165.873618][T13184] tipc: Started in network mode [ 165.884876][T13184] tipc: Node identity aaaaaaaaaa38, cluster identity 4711 [ 165.904573][T13184] tipc: Enabled bearer , priority 0 [ 166.107345][T13206] bond2: option lacp_rate: invalid value (57) [ 166.191700][T13206] bond2 (unregistering): Released all slaves [ 167.014102][T13255] set_capacity_and_notify: 3 callbacks suppressed [ 167.014121][T13255] loop3: detected capacity change from 0 to 512 [ 167.030040][ T10] tipc: Node number set to 9611946 [ 167.052808][T13255] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 167.080068][T13255] ext4 filesystem being mounted at /533/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 167.171140][ T6427] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 167.292993][T13288] __nla_validate_parse: 3 callbacks suppressed [ 167.293012][T13288] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3838'. [ 167.333325][T13288] bridge_slave_1: left allmulticast mode [ 167.339010][T13288] bridge_slave_1: left promiscuous mode [ 167.347488][T13288] bridge0: port 2(bridge_slave_1) entered disabled state [ 167.355487][T13294] ieee802154 phy0 wpan0: encryption failed: -90 [ 167.366887][T13288] bridge_slave_0: left allmulticast mode [ 167.379965][T13288] bridge_slave_0: left promiscuous mode [ 167.390346][T13288] bridge0: port 1(bridge_slave_0) entered disabled state [ 167.585658][T13315] team0: Device gtp0 is of different type [ 167.595709][T13317] program syz.6.3850 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 167.671737][T13324] loop6: detected capacity change from 0 to 512 [ 167.733202][T13324] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended [ 167.820999][T13324] EXT4-fs warning (device loop6): ext4_update_dynamic_rev:1142: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 167.835948][T13324] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.3855: bg 0: block 248: padding at end of block bitmap is not set [ 167.850705][T13324] loop6: lost filesystem error report for type 5 error -117 [ 167.850979][T13324] __quota_error: 42 callbacks suppressed [ 167.850995][T13324] Quota error (device loop6): write_blk: dquota write failed [ 167.864178][ C0] EXT4-fs (loop6): error count since last fsck: 1 [ 167.864203][ C0] EXT4-fs (loop6): last error at time 2000000285: ext4_validate_block_bitmap:441 [ 167.888641][T13324] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota [ 167.900803][T13324] EXT4-fs error (device loop6): ext4_acquire_dquot:7001: comm syz.6.3855: Failed to acquire dquot type 1 [ 167.912373][T13324] loop6: lost filesystem error report for type 5 error -117 [ 167.913123][T13324] EXT4-fs (loop6): 1 truncate cleaned up [ 167.936283][T13324] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 167.961938][T13338] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3859'. [ 168.045740][T13324] syz.6.3855 (13324) used greatest stack depth: 8184 bytes left [ 168.054365][T11935] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0008-000000000000. [ 168.063963][T13348] rdma_op ffff88811b8a0580 conn xmit_rdma 0000000000000000 [ 168.141926][T13358] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3868'. [ 168.175393][T13360] loop6: detected capacity change from 0 to 1024 [ 168.241376][T13360] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 168.256715][T13360] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 168.273701][T13360] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 168.289201][T13360] EXT4-fs (loop6): This should not happen!! Data will be lost [ 168.289201][T13360] [ 168.299376][T13360] EXT4-fs (loop6): Total free blocks count 0 [ 168.305562][T13360] EXT4-fs (loop6): Free/Dirty block details [ 168.311697][T13360] EXT4-fs (loop6): free_blocks=20480 [ 168.317017][T13360] EXT4-fs (loop6): dirty_blocks=80 [ 168.324011][T13360] EXT4-fs (loop6): Block reservation details [ 168.330213][T13360] EXT4-fs (loop6): i_reserved_data_blocks=5 [ 168.396707][ T28] audit: type=1400 audit(2000000286.417:1526): avc: denied { listen } for pid=13379 comm="syz.5.3878" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 168.426099][ T28] audit: type=1400 audit(2000000286.437:1527): avc: denied { accept } for pid=13379 comm="syz.5.3878" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 168.462041][ T141] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 64 with error 28 [ 168.484990][ T28] audit: type=1400 audit(2000000286.497:1528): avc: denied { accept } for pid=13383 comm="syz.3.3881" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=socket permissive=1 [ 168.707328][T13413] loop6: detected capacity change from 0 to 256 [ 168.737948][T13413] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 168.846521][ T28] audit: type=1400 audit(2000000286.867:1529): avc: denied { unmount } for pid=9612 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1 [ 169.016905][T13434] loop3: detected capacity change from 0 to 512 [ 169.096900][T13434] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 169.192007][T13434] ext4 filesystem being mounted at /544/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 169.297240][T13434] EXT4-fs error (device loop3): ext4_do_update_inode:5569: inode #2: comm syz.3.3901: corrupted inode contents [ 169.337398][T13434] EXT4-fs error (device loop3): ext4_dirty_inode:6450: inode #2: comm syz.3.3901: mark_inode_dirty error [ 169.371984][T13434] EXT4-fs error (device loop3): ext4_do_update_inode:5569: inode #2: comm syz.3.3901: corrupted inode contents [ 169.450637][T13434] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.3901: mark_inode_dirty error [ 169.540264][T13439] EXT4-fs warning (device loop3): ext4_es_cache_extent:1082: inode #2: comm syz.3.3901: ES cache extent failed: add [0,1,22,0x1] conflict with existing [0,8,576460752303423487,0x18] [ 169.540264][T13439] [ 169.609707][ T28] audit: type=1400 audit(2000000287.627:1530): avc: denied { map } for pid=13449 comm="syz.2.3907" path="socket:[36717]" dev="sockfs" ino=36717 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 169.685051][ T6427] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 169.714186][T13456] loop2: detected capacity change from 0 to 512 [ 169.736262][T13456] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 169.750079][ T28] audit: type=1400 audit(2000000287.627:1531): avc: denied { accept } for pid=13449 comm="syz.2.3907" path="socket:[36717]" dev="sockfs" ino=36717 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 169.786683][T13456] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1142: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 169.799061][ T28] audit: type=1326 audit(2000000287.647:1532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13452 comm="syz.0.3906" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7efdda43c799 code=0x0 [ 169.827451][T13456] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3908: bg 0: block 248: padding at end of block bitmap is not set [ 169.850019][T13456] loop2: lost filesystem error report for type 5 error -117 [ 169.850243][T13456] Quota error (device loop2): write_blk: dquota write failed [ 169.864970][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 169.864990][ C0] EXT4-fs (loop2): last error at time 2000000287: ext4_validate_block_bitmap:441 [ 169.882577][T13460] loop6: detected capacity change from 0 to 128 [ 169.981538][T13456] EXT4-fs error (device loop2): ext4_acquire_dquot:7001: comm syz.2.3908: Failed to acquire dquot type 1 [ 170.020253][T13456] loop2: lost filesystem error report for type 5 error -117 [ 170.020860][T13456] EXT4-fs (loop2): 1 truncate cleaned up [ 170.054571][T13456] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 170.183553][ T6393] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0008-000000000000. [ 170.288030][T13492] loop3: detected capacity change from 0 to 512 [ 171.068781][T13531] netlink: 144 bytes leftover after parsing attributes in process `syz.0.3942'. [ 171.341864][T13541] loop3: detected capacity change from 0 to 8192 [ 171.452451][T13554] netlink: 40 bytes leftover after parsing attributes in process `syz.6.3954'. [ 171.608439][T13572] netlink: 200 bytes leftover after parsing attributes in process `syz.6.3960'. [ 171.627342][T13576] loop3: detected capacity change from 0 to 128 [ 171.890128][ T3391] kernel read not supported for file /mdstat (pid: 3391 comm: kworker/1:3) [ 171.954230][T13622] msdos: Bad value for 'uid' [ 171.980105][T13622] msdos: Bad value for 'uid' [ 172.243949][T13671] set_capacity_and_notify: 2 callbacks suppressed [ 172.243968][T13671] loop2: detected capacity change from 0 to 256 [ 172.336776][T13679] loop3: detected capacity change from 0 to 736 [ 172.494575][T13685] batadv_slave_0: entered promiscuous mode [ 172.503210][T13685] batman_adv: batadv0: Adding interface: macvtap1 [ 172.509729][T13685] batman_adv: batadv0: The MTU of interface macvtap1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 172.553086][T13685] batman_adv: batadv0: Interface activated: macvtap1 [ 172.718537][T13713] syz.2.4014 uses obsolete (PF_INET,SOCK_PACKET) [ 173.485707][T13746] loop2: detected capacity change from 0 to 128 [ 173.608334][T13753] loop6: detected capacity change from 0 to 512 [ 173.687557][T13753] EXT4-fs (loop6): 1 truncate cleaned up [ 173.719048][T13753] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 173.755052][ T23] kernel read not supported for file /mdstat (pid: 23 comm: kworker/1:0) [ 173.787439][T13753] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.4030: bg 0: block 465: padding at end of block bitmap is not set [ 173.810146][T13760] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4031'. [ 173.832173][T13760] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4031'. [ 173.833001][T13762] vhci_hcd vhci_hcd.4: USB_PORT_FEAT_U1/2_TIMEOUT req not supported for USB 2.0 roothub [ 173.850280][T13753] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 173.865121][T13760] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4031'. [ 173.890043][T13753] EXT4-fs (loop6): This should not happen!! Data will be lost [ 173.890043][T13753] [ 173.912888][T13753] EXT4-fs (loop6): Total free blocks count 0 [ 173.918914][T13753] EXT4-fs (loop6): Free/Dirty block details [ 173.942404][T13753] EXT4-fs (loop6): free_blocks=0 [ 173.947382][T13753] EXT4-fs (loop6): dirty_blocks=66 [ 173.954987][T13753] EXT4-fs (loop6): Block reservation details [ 173.964986][T13753] EXT4-fs (loop6): i_reserved_data_blocks=66 [ 173.997337][T13769] loop2: detected capacity change from 0 to 256 [ 174.020274][ T118] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 29 with max blocks 39 with error 28 [ 174.045517][ T28] kauditd_printk_skb: 22 callbacks suppressed [ 174.045571][ T28] audit: type=1400 audit(2000000292.067:1554): avc: denied { watch } for pid=13768 comm="syz.2.4037" path="/605/file0/file0" dev="loop2" ino=214 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=dir permissive=1 [ 174.131425][T13777] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4039'. [ 174.504198][T13813] netlink: 4 bytes leftover after parsing attributes in process `syz.6.4058'. [ 174.539122][ T28] audit: type=1400 audit(2000000292.557:1555): avc: denied { setopt } for pid=13816 comm="syz.5.4060" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 174.582653][ T28] audit: type=1400 audit(2000000292.587:1556): avc: denied { execute } for pid=13816 comm="syz.5.4060" name="cgroup" dev="tmpfs" ino=3972 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=lnk_file permissive=1 [ 174.804002][T13843] loop6: detected capacity change from 0 to 164 [ 174.840661][T13847] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4074'. [ 174.851204][T13843] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 174.960889][ T28] audit: type=1400 audit(2000000292.977:1557): avc: denied { bind } for pid=13854 comm="syz.5.4078" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 175.546274][T13909] loop6: detected capacity change from 0 to 512 [ 175.571767][T13909] EXT4-fs: Ignoring removed nobh option [ 175.607388][T13909] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 175.611078][T13917] loop3: detected capacity change from 0 to 512 [ 175.630100][T13917] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 175.642991][T13909] ext4 filesystem being mounted at /169/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 175.649719][T13917] EXT4-fs (loop3): 1 truncate cleaned up [ 175.658586][T13920] netlink: 72 bytes leftover after parsing attributes in process `syz.5.4107'. [ 175.668993][T13920] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4107'. [ 175.678111][T13920] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4107'. [ 175.699595][T11935] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 175.719381][T13917] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 175.764447][ T28] audit: type=1400 audit(2000000293.787:1558): avc: denied { add_name } for pid=13916 comm="syz.3.4106" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 175.832707][ T6427] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 175.858374][ T28] audit: type=1326 audit(2000000293.877:1559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13933 comm="syz.2.4114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09409bc799 code=0x7ffc0000 [ 175.903467][ T28] audit: type=1326 audit(2000000293.877:1560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13933 comm="syz.2.4114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09409bc799 code=0x7ffc0000 [ 175.928934][ T28] audit: type=1326 audit(2000000293.907:1561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13933 comm="syz.2.4114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f09409bc799 code=0x7ffc0000 [ 175.954343][ T28] audit: type=1326 audit(2000000293.907:1562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13933 comm="syz.2.4114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09409bc799 code=0x7ffc0000 [ 175.999199][ T28] audit: type=1326 audit(2000000293.907:1563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13933 comm="syz.2.4114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09409bc799 code=0x7ffc0000 [ 176.054004][T13960] netlink: 56 bytes leftover after parsing attributes in process `syz.2.4126'. [ 176.365129][T13984] netlink: 'syz.0.4138': attribute type 5 has an invalid length. [ 176.408151][T13989] loop6: detected capacity change from 0 to 1024 [ 176.431446][T13989] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 176.447585][T13992] program syz.2.4142 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 176.457635][T13989] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (30349!=20869) [ 176.491235][T13989] EXT4-fs (loop6): invalid journal inode [ 176.496930][T13989] EXT4-fs (loop6): can't get journal size [ 176.539012][T13989] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 176.590258][T11935] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 176.605737][T14007] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check. [ 176.912869][T14044] netlink: 'syz.3.4165': attribute type 1 has an invalid length. [ 177.375120][T14085] bond0: entered promiscuous mode [ 177.380355][T14085] bond_slave_0: entered promiscuous mode [ 177.386148][T14085] bond_slave_1: entered promiscuous mode [ 177.392709][T14085] bond0: left promiscuous mode [ 177.397608][T14085] bond_slave_0: left promiscuous mode [ 177.397766][T14085] bond_slave_1: left promiscuous mode [ 177.523757][T14105] loop6: detected capacity change from 0 to 128 [ 177.863192][T14149] netlink: 'syz.0.4216': attribute type 9 has an invalid length. [ 178.044159][T14165] netlink: 'syz.0.4221': attribute type 1 has an invalid length. [ 178.054929][T14164] loop6: detected capacity change from 0 to 512 [ 178.067406][T14165] 8021q: adding VLAN 0 to HW filter on device bond1 [ 178.078230][T14164] EXT4-fs: Ignoring removed nobh option [ 178.143529][T14164] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 178.157269][T14164] ext4 filesystem being mounted at /185/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 178.194830][T11935] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 179.124003][T14275] bond0: entered promiscuous mode [ 179.129087][T14275] bond_slave_0: entered promiscuous mode [ 179.167887][T14275] @0: entered promiscuous mode [ 179.178516][T14275] batadv0: entered promiscuous mode [ 179.188742][T14275] 8021q: adding VLAN 0 to HW filter on device hsr1 [ 179.207805][T14275] bond0: left promiscuous mode [ 179.217850][T14275] bond_slave_0: left promiscuous mode [ 179.227955][T14275] @0: left promiscuous mode [ 179.239100][T14275] batadv0: left promiscuous mode [ 179.519483][T14319] loop2: detected capacity change from 0 to 512 [ 179.534188][T14319] EXT4-fs (loop2): 1 truncate cleaned up [ 179.540853][T14319] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 179.566105][ T6393] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 179.576592][T14325] loop3: detected capacity change from 0 to 256 [ 179.639714][T14333] vcan0: tx drop: invalid da for name 0x00000000000000c8 [ 179.895415][T14354] loop3: detected capacity change from 0 to 256 [ 180.097226][ T28] kauditd_printk_skb: 6 callbacks suppressed [ 180.097243][ T28] audit: type=1400 audit(2000000298.117:1570): avc: denied { validate_trans } for pid=14378 comm="syz.6.4318" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 180.145800][ T23] kernel read not supported for file /vcs (pid: 23 comm: kworker/1:0) [ 180.306366][T14408] loop3: detected capacity change from 0 to 256 [ 180.393184][T14417] __nla_validate_parse: 8 callbacks suppressed [ 180.393201][T14417] netlink: 104 bytes leftover after parsing attributes in process `syz.3.4334'. [ 180.526683][T14427] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=14385 sclass=netlink_route_socket pid=14427 comm=syz.2.4340 [ 180.549471][ T28] audit: type=1326 audit(2000000298.567:1571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14429 comm="syz.6.4339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 180.562702][T14433] loop3: detected capacity change from 0 to 512 [ 180.573636][ T28] audit: type=1326 audit(2000000298.597:1572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14429 comm="syz.6.4339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 180.612778][T14433] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 180.621483][ T28] audit: type=1326 audit(2000000298.597:1573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14429 comm="syz.6.4339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 180.648732][ T28] audit: type=1326 audit(2000000298.597:1574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14429 comm="syz.6.4339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 180.662546][T14433] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.4341: iget: bad i_size value: 38620345925642 [ 180.674848][ T28] audit: type=1326 audit(2000000298.627:1575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14429 comm="syz.6.4339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=333 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 180.685641][T14433] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 180.708727][T14433] EXT4-fs (loop3): Remounting filesystem read-only [ 180.718320][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 180.718339][ C1] EXT4-fs (loop3): initial error at time 2000000298: ext4_orphan_get:1391: inode 15 [ 180.718389][ C1] EXT4-fs (loop3): last error at time 2000000298: ext4_orphan_get:1391: inode 15 [ 180.754207][T14433] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 180.792548][ T28] audit: type=1326 audit(2000000298.637:1576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14429 comm="syz.6.4339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 180.816335][ T28] audit: type=1326 audit(2000000298.637:1577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14429 comm="syz.6.4339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 180.841094][ T28] audit: type=1326 audit(2000000298.737:1578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14437 comm="syz.2.4343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09409bc799 code=0x7ffc0000 [ 180.868492][ T6427] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 180.874783][ T28] audit: type=1326 audit(2000000298.737:1579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14437 comm="syz.2.4343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f09409bc799 code=0x7ffc0000 [ 180.942376][T14448] loop3: detected capacity change from 0 to 1024 [ 180.962335][T14450] team0: No ports can be present during mode change [ 180.996886][T14448] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 181.071689][T14467] loop2: detected capacity change from 0 to 256 [ 181.093386][ T6427] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 181.224290][T14486] loop6: detected capacity change from 0 to 256 [ 181.233806][T14486] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 181.271285][T14486] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 181.654798][T14538] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4388'. [ 181.667590][T14538] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4388'. [ 182.012457][T14578] SELinux: failed to load policy [ 182.094523][T14589] syz.3.4411: attempt to access beyond end of device [ 182.094523][T14589] loop3: rw=1, sector=145, nr_sectors = 16 limit=128 [ 182.108197][T14589] syz.3.4411: attempt to access beyond end of device [ 182.108197][T14589] loop3: rw=1, sector=169, nr_sectors = 8 limit=128 [ 182.121944][T14589] syz.3.4411: attempt to access beyond end of device [ 182.121944][T14589] loop3: rw=1, sector=185, nr_sectors = 8 limit=128 [ 182.135291][T14589] syz.3.4411: attempt to access beyond end of device [ 182.135291][T14589] loop3: rw=1, sector=201, nr_sectors = 8 limit=128 [ 182.149454][T14589] syz.3.4411: attempt to access beyond end of device [ 182.149454][T14589] loop3: rw=1, sector=217, nr_sectors = 8 limit=128 [ 182.170492][T14589] syz.3.4411: attempt to access beyond end of device [ 182.170492][T14589] loop3: rw=1, sector=233, nr_sectors = 8 limit=128 [ 182.183907][T14589] syz.3.4411: attempt to access beyond end of device [ 182.183907][T14589] loop3: rw=1, sector=249, nr_sectors = 8 limit=128 [ 182.199072][T14589] syz.3.4411: attempt to access beyond end of device [ 182.199072][T14589] loop3: rw=1, sector=265, nr_sectors = 8 limit=128 [ 182.213123][T14589] syz.3.4411: attempt to access beyond end of device [ 182.213123][T14589] loop3: rw=1, sector=281, nr_sectors = 8 limit=128 [ 182.226359][T14589] syz.3.4411: attempt to access beyond end of device [ 182.226359][T14589] loop3: rw=1, sector=297, nr_sectors = 8 limit=128 [ 182.261299][T14598] netlink: 104 bytes leftover after parsing attributes in process `syz.5.4417'. [ 182.347721][T14606] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4420'. [ 182.356746][T14606] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4420'. [ 182.491029][T14620] program syz.0.4429 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 182.703888][T14663] netlink: 104 bytes leftover after parsing attributes in process `syz.2.4449'. [ 182.808665][T14671] set_capacity_and_notify: 2 callbacks suppressed [ 182.808755][T14671] loop6: detected capacity change from 0 to 8 [ 182.850047][ C0] critical medium error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 182.860732][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 182.869085][ C0] critical medium error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 182.879761][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 182.887699][T11935] loop6: unable to read partition table [ 182.903748][ C0] critical medium error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 182.914444][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 182.917418][T14684] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4458'. [ 182.931681][ C1] critical medium error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 182.934030][T14684] netlink: 200 bytes leftover after parsing attributes in process `syz.5.4458'. [ 182.942356][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 182.942418][T14671] loop6: unable to read partition table [ 182.974354][T14671] loop_reread_partitions: partition scan of loop6 (Nh*hp "o?< ʺXDbp0O{>.) failed (rc=-5) [ 182.988610][ C1] critical medium error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 182.999267][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 183.015145][ C0] critical medium error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 183.025846][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 183.033801][ T2999] loop6: unable to read partition table [ 183.049764][ C0] critical medium error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 183.060431][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 183.070564][ C0] critical medium error, dev loop6, sector 0 op 0x0:(READ) flags 0x800000 phys_seg 1 prio class 2 [ 183.081207][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 183.089085][ T2999] loop6: unable to read partition table [ 183.381605][T14734] netlink: 'syz.2.4483': attribute type 3 has an invalid length. [ 183.474617][T14736] program syz.6.4484 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 183.522693][T14738] loop2: detected capacity change from 0 to 128 [ 183.814613][T14755] netlink: 48 bytes leftover after parsing attributes in process `syz.6.4491'. [ 183.971261][T14768] loop6: detected capacity change from 0 to 128 [ 184.278918][T14791] ref_ctr_offset mismatch. inode: 0x4ca offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0x1000000 [ 184.379141][T14798] loop3: detected capacity change from 0 to 512 [ 184.387463][T14798] EXT4-fs: Ignoring removed nobh option [ 184.414802][T14798] EXT4-fs: Ignoring removed orlov option [ 184.450004][T14798] EXT4-fs error (device loop3): __ext4_iget:5378: inode #11: block 1: comm syz.3.4513: invalid block [ 184.485505][T14811] loop2: detected capacity change from 0 to 164 [ 184.500249][T14798] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 184.500973][T14798] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.4513: couldn't read orphan inode 11 (err -117) [ 184.510328][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 184.510347][ C1] EXT4-fs (loop3): initial error at time 2000000302: __ext4_iget:5378: inode 11: block 1 [ 184.510397][ C1] EXT4-fs (loop3): last error at time 2000000302: __ext4_iget:5378: inode 11: block 1 [ 184.580689][T14811] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 184.624665][T14798] loop3: lost filesystem error report for type 5 error -117 [ 184.625207][T14798] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 184.694696][T14798] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 216 vs 220 free clusters [ 184.763170][ T6427] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 184.787100][T14828] netlink: 'syz.2.4527': attribute type 1 has an invalid length. [ 184.795640][T14828] netlink: 'syz.2.4527': attribute type 2 has an invalid length. [ 184.818011][T14826] loop6: detected capacity change from 0 to 512 [ 184.844491][T14826] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 184.871659][T14826] EXT4-fs (loop6): 1 truncate cleaned up [ 184.880672][T14826] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 184.950681][T11935] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 185.147452][ T28] kauditd_printk_skb: 29 callbacks suppressed [ 185.147469][ T28] audit: type=1326 audit(2000000303.167:1609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14863 comm="syz.6.4542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 185.197117][ T28] audit: type=1326 audit(2000000303.207:1610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14863 comm="syz.6.4542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 185.243399][ T28] audit: type=1326 audit(2000000303.207:1611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14863 comm="syz.6.4542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 185.270178][ T28] audit: type=1326 audit(2000000303.207:1612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14863 comm="syz.6.4542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 185.295720][ T28] audit: type=1326 audit(2000000303.207:1613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14863 comm="syz.6.4542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 185.338393][ T28] audit: type=1326 audit(2000000303.207:1614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14863 comm="syz.6.4542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=5 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 185.399471][ T28] audit: type=1326 audit(2000000303.207:1615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14863 comm="syz.6.4542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 185.428077][ T28] audit: type=1326 audit(2000000303.207:1616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14863 comm="syz.6.4542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 185.484219][T14885] tipc: Enabling of bearer rejected, media not registered [ 185.507183][T14883] __nla_validate_parse: 6 callbacks suppressed [ 185.507200][T14883] netlink: 4560 bytes leftover after parsing attributes in process `syz.5.4551'. [ 185.522805][T14883] netlink: 4560 bytes leftover after parsing attributes in process `syz.5.4551'. [ 185.779340][T14911] dvmrp1: tun_chr_ioctl cmd 2147767520 [ 185.933000][T14935] vxcan1 speed is unknown, defaulting to 1000 [ 185.947809][T14935] vxcan1 speed is unknown, defaulting to 1000 [ 185.973217][T14935] vxcan1 speed is unknown, defaulting to 1000 [ 185.982465][T14942] netlink: 'syz.2.4576': attribute type 10 has an invalid length. [ 186.010304][T14942] team0: Device vxcan1 is of different type [ 186.075554][T14935] infiniband syz2: set down [ 186.080406][ T3356] vxcan1 speed is unknown, defaulting to 1000 [ 186.089455][ T3356] syz2: Port: 1 Link DOWN [ 186.097939][T14935] infiniband syz2: added vxcan1 [ 186.112702][T14935] RDS/IB: syz2: added [ 186.125821][T14935] smc: adding ib device syz2 with port count 1 [ 186.132143][T14935] smc: ib device syz2 port 1 has no pnetid [ 186.139357][ T3356] vxcan1 speed is unknown, defaulting to 1000 [ 186.145650][T14935] vxcan1 speed is unknown, defaulting to 1000 [ 186.215203][T14935] vxcan1 speed is unknown, defaulting to 1000 [ 186.293243][T14935] vxcan1 speed is unknown, defaulting to 1000 [ 186.366532][T14935] vxcan1 speed is unknown, defaulting to 1000 [ 186.418791][T14935] vxcan1 speed is unknown, defaulting to 1000 [ 186.430466][T14978] loop3: detected capacity change from 0 to 128 [ 186.442372][T14978] EXT4-fs: Ignoring removed nobh option [ 186.462933][T14978] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 186.488486][T14978] ext4 filesystem being mounted at /680/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 186.527956][ T28] audit: type=1400 audit(2000000304.547:1617): avc: denied { setattr } for pid=14977 comm="syz.3.4593" path="/680/mnt/file1" dev="loop3" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 186.582945][ T6427] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 186.664244][ T28] audit: type=1400 audit(2000000304.687:1618): avc: denied { ioctl } for pid=14999 comm="syz.6.4602" path="socket:[42488]" dev="sockfs" ino=42488 ioctlcmd=0x89e2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sock_file permissive=1 [ 186.716307][T15005] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4605'. [ 186.784456][T15011] vxcan1 speed is unknown, defaulting to 1000 [ 186.801804][T15015] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4609'. [ 186.871625][T15024] rdma_rxe: rxe_newlink: failed to add vxcan1 [ 186.890277][T15024] netlink: 'syz.5.4611': attribute type 10 has an invalid length. [ 186.915412][T15024] team0: Device vxcan1 is of different type [ 186.936440][T15030] loop7: detected capacity change from 0 to 7 [ 186.965720][T15030] Buffer I/O error on dev loop7, logical block 0, async page read [ 186.975495][T15032] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4615'. [ 186.984995][T15030] Buffer I/O error on dev loop7, logical block 0, async page read [ 186.989003][T15032] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4615'. [ 186.993150][T15030] loop7: unable to read partition table [ 187.009653][T15030] loop_reread_partitions: partition scan of loop7 (7x~Sj̖P@?X) failed (rc=-5) [ 187.056466][T15041] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4618'. [ 187.102409][T15048] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 187.119449][T15048] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 187.203628][T15065] loop3: detected capacity change from 0 to 764 [ 187.211840][T15065] rock: directory entry would overflow storage [ 187.218030][T15065] rock: sig=0x4654, size=5, remaining=4 [ 187.248436][T15067] loop3: detected capacity change from 0 to 512 [ 187.266743][T15067] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 187.279475][T15067] ext4 filesystem being mounted at /690/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 187.300106][ T6427] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 187.317037][T15072] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=14385 sclass=netlink_route_socket pid=15072 comm=syz.3.4633 [ 187.392686][T15063] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 187.401472][T15063] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 187.669053][T15081] macvlan0: entered promiscuous mode [ 187.675319][T15081] dummy0: entered promiscuous mode [ 187.681147][T15081] hsr1: entered promiscuous mode [ 187.686220][T15081] hsr1: entered allmulticast mode [ 187.691393][T15081] macvlan0: entered allmulticast mode [ 187.696838][T15081] veth1_vlan: entered allmulticast mode [ 187.702586][T15081] dummy0: entered allmulticast mode [ 187.771134][T15091] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 187.790362][T15091] ext4 filesystem being mounted at /697/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 187.805661][T15091] EXT4-fs error (device loop3): ext4_map_blocks:818: inode #15: block 3: comm syz.3.4641: lblock 3 mapped to illegal pblock 3 (length 3) [ 187.829989][T15091] EXT4-fs (loop3): Remounting filesystem read-only [ 187.871413][ T6427] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 187.976196][T15110] set_capacity_and_notify: 1 callbacks suppressed [ 187.976216][T15110] loop3: detected capacity change from 0 to 512 [ 188.015764][T15110] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 188.028310][T15118] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4652'. [ 188.050145][T15118] netlink: 'syz.6.4652': attribute type 1 has an invalid length. [ 188.059523][T15110] EXT4-fs (loop3): shut down requested (1) [ 188.065503][T15118] netlink: 44 bytes leftover after parsing attributes in process `syz.6.4652'. [ 188.074722][T15110] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=15 [ 188.083930][T15110] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=15 [ 188.093049][T15110] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop3 ino=15 [ 188.118036][ T6427] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 188.155705][T15132] loop2: detected capacity change from 0 to 128 [ 188.190851][T15135] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4659'. [ 188.702258][T15156] loop2: detected capacity change from 0 to 512 [ 188.713216][T15156] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 188.742602][T15156] EXT4-fs (loop2): 1 truncate cleaned up [ 188.789983][T15156] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 188.881114][ T6393] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 189.371754][T15201] loop6: detected capacity change from 0 to 128 [ 189.398949][T15203] batadv_slave_1: entered promiscuous mode [ 189.413243][T15202] batadv_slave_1: left promiscuous mode [ 190.071746][T15236] sctp: [Deprecated]: syz.3.4701 (pid 15236) Use of int in maxseg socket option. [ 190.071746][T15236] Use struct sctp_assoc_value instead [ 190.272119][T15253] sctp: [Deprecated]: syz.6.4709 (pid 15253) Use of int in maxseg socket option. [ 190.272119][T15253] Use struct sctp_assoc_value instead [ 190.296633][T15256] ipvlan0: entered promiscuous mode [ 190.304473][ T28] kauditd_printk_skb: 5 callbacks suppressed [ 190.304491][ T28] audit: type=1400 audit(2000000308.327:1624): avc: denied { bind } for pid=15257 comm="syz.6.4711" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 190.335960][T15254] ipvlan0: left promiscuous mode [ 190.506066][T15268] loop3: detected capacity change from 0 to 512 [ 190.540281][T15268] EXT4-fs: Ignoring removed bh option [ 190.567860][T15268] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 190.580003][T15268] EXT4-fs (loop3): 1 truncate cleaned up [ 190.586112][T15268] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 190.646795][T15280] veth0_vlan: left promiscuous mode [ 190.665278][ T6427] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 190.785024][T15306] __nla_validate_parse: 9 callbacks suppressed [ 190.785102][T15306] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4730'. [ 190.881874][T15317] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4738'. [ 190.964861][T15336] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4746'. [ 191.194702][ T28] audit: type=1326 audit(2000000309.217:1625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15387 comm="syz.6.4759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 191.349407][ T28] audit: type=1326 audit(2000000309.217:1626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15387 comm="syz.6.4759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 191.396883][ T28] audit: type=1326 audit(2000000309.247:1627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15387 comm="syz.6.4759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 191.422265][ T28] audit: type=1326 audit(2000000309.247:1628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15387 comm="syz.6.4759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 191.466690][ T28] audit: type=1326 audit(2000000309.247:1629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15387 comm="syz.6.4759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 191.493592][ T28] audit: type=1326 audit(2000000309.247:1630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15387 comm="syz.6.4759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 191.520486][T15412] netlink: 'syz.3.4767': attribute type 8 has an invalid length. [ 191.527374][ T28] audit: type=1326 audit(2000000309.247:1631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15387 comm="syz.6.4759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 191.532306][T15412] sch_fq: defrate 0 ignored. [ 191.561929][ T28] audit: type=1326 audit(2000000309.247:1632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15387 comm="syz.6.4759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 191.585815][ T28] audit: type=1326 audit(2000000309.247:1633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15387 comm="syz.6.4759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ebd8ac799 code=0x7ffc0000 [ 191.802106][T15432] loop2: detected capacity change from 0 to 2048 [ 191.845457][T15432] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 191.916958][T15442] netlink: 16 bytes leftover after parsing attributes in process `syz.6.4782'. [ 191.954734][ T6393] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 192.012033][T15450] loop6: detected capacity change from 0 to 512 [ 192.679622][T15507] rdma_rxe: rxe_newlink: failed to add ip6_vti0 [ 192.680830][T15514] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4814'. [ 192.865091][T15538] tap0: tun_chr_ioctl cmd 1074025677 [ 192.878486][T15538] tap0: linktype set to 768 [ 192.932482][T15550] Timeout policy `syz0' can only be used by L3 protocol number 24578 [ 193.055997][T15564] sch_tbf: peakrate 4294959103 is lower than or equals to rate 16517373851444205497 ! [ 193.105304][T15569] netlink: 128 bytes leftover after parsing attributes in process `syz.3.4840'. [ 193.122361][T15569] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 193.195343][T15578] loop3: detected capacity change from 0 to 1024 [ 193.231605][T15578] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 193.271481][T15578] ext4 filesystem being mounted at /736/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 193.328483][T15578] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.4843: bg 0: block 112: padding at end of block bitmap is not set [ 193.348018][T15578] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 21 with max blocks 44 with error 117 [ 193.360678][T15578] EXT4-fs (loop3): This should not happen!! Data will be lost [ 193.360678][T15578] [ 193.390711][ T6427] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 193.392052][T15604] loop6: detected capacity change from 0 to 512 [ 193.403009][T15608] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4857'. [ 193.415626][T15608] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4857'. [ 193.424828][T15608] netlink: 'syz.5.4857': attribute type 11 has an invalid length. [ 193.442697][T15604] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 193.460362][T15604] ext4 filesystem being mounted at /315/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 193.531219][T15604] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000. [ 193.552946][T15604] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000. [ 193.574265][T11935] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 193.633387][T15637] loop6: detected capacity change from 0 to 512 [ 193.673791][T15637] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 193.688068][T15637] ext4 filesystem being mounted at /316/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 193.698589][T15638] loop2: detected capacity change from 0 to 8192 [ 193.705729][T15637] EXT4-fs error (device loop6): ext4_do_update_inode:5569: inode #2: comm syz.6.4867: corrupted inode contents [ 193.717990][T15637] EXT4-fs error (device loop6): ext4_dirty_inode:6450: inode #2: comm syz.6.4867: mark_inode_dirty error [ 193.731501][T15637] EXT4-fs error (device loop6): ext4_do_update_inode:5569: inode #2: comm syz.6.4867: corrupted inode contents [ 193.744084][T15637] EXT4-fs error (device loop6): __ext4_ext_dirty:207: inode #2: comm syz.6.4867: mark_inode_dirty error [ 193.760980][T15643] EXT4-fs warning (device loop6): ext4_es_cache_extent:1082: inode #2: comm syz.6.4867: ES cache extent failed: add [0,1,22,0x1] conflict with existing [0,8,576460752303423487,0x18] [ 193.760980][T15643] [ 193.818984][T11935] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 193.879594][T15654] loop2: detected capacity change from 0 to 512 [ 193.894400][T15654] EXT4-fs: Ignoring removed nobh option [ 193.903344][T15658] netlink: 64 bytes leftover after parsing attributes in process `syz.3.4879'. [ 193.932453][T15654] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 193.947989][T15654] ext4 filesystem being mounted at /783/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 193.967804][T15666] loop3: detected capacity change from 0 to 128 [ 193.980283][ T6393] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 193.990543][T15666] FAT-fs (loop3): Directory bread(block 32) failed [ 193.997162][T15666] FAT-fs (loop3): Directory bread(block 33) failed [ 194.003933][T15666] FAT-fs (loop3): Directory bread(block 34) failed [ 194.010539][T15666] FAT-fs (loop3): Directory bread(block 35) failed [ 194.021426][T15666] FAT-fs (loop3): Directory bread(block 36) failed [ 194.027989][T15666] FAT-fs (loop3): Directory bread(block 37) failed [ 194.034601][T15666] FAT-fs (loop3): Directory bread(block 38) failed [ 194.041196][T15666] FAT-fs (loop3): Directory bread(block 39) failed [ 194.047809][T15666] FAT-fs (loop3): Directory bread(block 40) failed [ 194.054402][T15666] FAT-fs (loop3): Directory bread(block 41) failed [ 194.299050][T15704] netlink: 48 bytes leftover after parsing attributes in process `syz.2.4890'. [ 194.452095][T15710] rdma_rxe: rxe_newlink: failed to add ip6_vti0 [ 194.996545][T15765] vcan0: tx address claim with dest, not broadcast [ 195.242467][T15790] loop3: detected capacity change from 0 to 256 [ 195.255839][T15791] macsec2: entered promiscuous mode [ 195.315340][ T28] kauditd_printk_skb: 20 callbacks suppressed [ 195.315358][ T28] audit: type=1326 audit(2000000314.341:1654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15795 comm="syz.5.4933" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff7d52ac799 code=0x0 [ 195.529413][T15802] syz.6.4935 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 195.696112][ T28] audit: type=1400 audit(2000000314.721:1655): avc: denied { read } for pid=23 comm="kworker/1:0" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=43960 scontext=system_u:system_r:kernel_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 195.751179][T15836] loop6: detected capacity change from 0 to 512 [ 195.773419][T15836] EXT4-fs (loop6): 1 truncate cleaned up [ 195.780724][T15836] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 195.787156][T15822] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 195.802798][T15822] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 195.813006][T15836] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.4950: bg 0: block 465: padding at end of block bitmap is not set [ 195.827670][T15836] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 117 [ 195.830874][T15844] __nla_validate_parse: 1 callbacks suppressed [ 195.830889][T15844] netlink: 96 bytes leftover after parsing attributes in process `syz.2.4953'. [ 195.841719][T15836] EXT4-fs (loop6): This should not happen!! Data will be lost [ 195.841719][T15836] [ 195.878074][T11935] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 195.902580][T15850] loop6: detected capacity change from 0 to 128 [ 195.914175][T15850] EXT4-fs: Ignoring removed nomblk_io_submit option [ 195.927679][T15850] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 195.942685][T15850] ext4 filesystem being mounted at /334/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 195.969357][T11935] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 196.044532][T15860] cgroup: fork rejected by pids controller in /syz6 [ 196.240213][T18104] netlink: 44 bytes leftover after parsing attributes in process `syz.2.4964'. [ 196.269942][T18104] netlink: 43 bytes leftover after parsing attributes in process `syz.2.4964'. [ 196.278990][T18104] netlink: 'syz.2.4964': attribute type 5 has an invalid length. [ 196.294131][T18104] netlink: 43 bytes leftover after parsing attributes in process `syz.2.4964'. [ 196.560625][T19997] rdma_rxe: rxe_newlink: failed to add ip6_vti0 [ 196.742420][T20389] loop6: detected capacity change from 0 to 512 [ 196.831344][T20389] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 196.863285][T20389] ext4 filesystem being mounted at /339/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 196.875057][T20396] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4979'. [ 196.941558][T11935] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 197.389247][ T28] audit: type=1400 audit(2000000316.411:1656): avc: denied { ioctl } for pid=20436 comm="syz.6.4997" path="pid:[4026532412]" dev="nsfs" ino=4026532412 ioctlcmd=0xb702 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 197.486185][T20447] IPv6: NLM_F_REPLACE set, but no existing node found! [ 197.753024][T20459] EXT4-fs: inline encryption not supported [ 197.759059][T20459] EXT4-fs: Ignoring removed i_version option [ 197.845272][ T28] audit: type=1400 audit(2000000316.871:1657): avc: denied { connect } for pid=20469 comm="syz.5.5012" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 197.930234][T20459] EXT4-fs (loop6): 1 orphan inode deleted [ 197.936437][T20459] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 197.959670][T20459] EXT4-fs error (device loop6): ext4_add_entry:2415: inode #2: comm syz.6.5007: Directory hole found for htree leaf block 0 [ 197.987133][T20486] netlink: 'syz.2.5017': attribute type 49 has an invalid length. [ 198.046813][T11935] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.085614][T20490] EXT4-fs (loop2): 1 truncate cleaned up [ 198.091755][T20490] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 198.139030][ T6393] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.208452][T20499] netlink: 92 bytes leftover after parsing attributes in process `syz.2.5022'. [ 198.243723][T20499] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5022'. [ 198.312977][T20506] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5027'. [ 198.322090][T20506] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5027'. [ 198.438949][T20519] set_capacity_and_notify: 2 callbacks suppressed [ 198.438966][T20519] loop3: detected capacity change from 0 to 512 [ 198.501760][T20519] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 198.537507][T20519] ext4 filesystem being mounted at /778/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 198.581456][ T6427] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.671694][T20531] loop3: detected capacity change from 0 to 4096 [ 198.755603][T20541] netlink: 'syz.0.5042': attribute type 10 has an invalid length. [ 198.808746][T20541] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 199.052901][T20574] netlink: 'syz.2.5058': attribute type 4 has an invalid length. [ 199.082444][ T28] audit: type=1326 audit(2000000318.101:1658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20575 comm="syz.5.5059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7d52ac799 code=0x7ffc0000 [ 199.139025][ T28] audit: type=1326 audit(2000000318.101:1659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20575 comm="syz.5.5059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7d52ac799 code=0x7ffc0000 [ 199.180264][ T28] audit: type=1326 audit(2000000318.101:1660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20575 comm="syz.5.5059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=192 compat=0 ip=0x7ff7d52ac799 code=0x7ffc0000 [ 199.186120][T20585] : renamed from vlan0 (while UP) [ 199.233881][ T28] audit: type=1326 audit(2000000318.101:1661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20575 comm="syz.5.5059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7d52ac799 code=0x7ffc0000 [ 199.278221][ T28] audit: type=1326 audit(2000000318.111:1662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20575 comm="syz.5.5059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7ff7d52ac799 code=0x7ffc0000 [ 199.320029][ T28] audit: type=1326 audit(2000000318.111:1663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20575 comm="syz.5.5059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff7d52ac799 code=0x7ffc0000 [ 199.382565][T20594] loop3: detected capacity change from 0 to 128 [ 199.520111][T20609] netlink: 690 bytes leftover after parsing attributes in process `syz.5.5073'. [ 199.637633][T20615] : renamed from vlan0 (while UP) [ 199.719502][T20633] netlink: 'syz.5.5084': attribute type 10 has an invalid length. [ 199.730704][T20633] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 200.082314][T20668] netlink: 'syz.6.5099': attribute type 10 has an invalid length. [ 200.106378][T20668] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 200.904377][T20756] program syz.2.5143 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 200.983365][T20770] loop2: detected capacity change from 0 to 2048 [ 201.011656][T20770] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 201.073837][ T6393] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 201.195885][T20788] loop3: detected capacity change from 0 to 1024 [ 201.221585][T20788] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 201.235162][T12789] bridge_slave_1: left allmulticast mode [ 201.241152][T12789] bridge_slave_1: left promiscuous mode [ 201.255077][T20788] ext4 filesystem being mounted at /807/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 201.278041][T12789] bridge0: port 2(bridge_slave_1) entered disabled state [ 201.282656][T20788] EXT4-fs error (device loop3): ext4_map_blocks:818: inode #15: comm syz.3.5156: lblock 0 mapped to illegal pblock 0 (length 6) [ 201.319085][T12789] bridge_slave_0: left allmulticast mode [ 201.319130][T20788] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117 [ 201.336899][T12789] bridge_slave_0: left promiscuous mode [ 201.338639][T20788] EXT4-fs (loop3): This should not happen!! Data will be lost [ 201.338639][T20788] [ 201.350124][T12789] bridge0: port 1(bridge_slave_0) entered disabled state [ 201.383387][ T118] EXT4-fs error (device loop3): ext4_map_blocks:818: inode #15: block 8: comm kworker/u8:5: lblock 8 mapped to illegal pblock 8 (length 5) [ 201.413725][ T118] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 5 with error 117 [ 201.426188][ T118] EXT4-fs (loop3): This should not happen!! Data will be lost [ 201.426188][ T118] [ 201.437180][ T6427] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 201.532528][T12789] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 201.547495][T12789] bond0 (unregistering): (slave c@0): Releasing backup interface [ 201.572659][T12789] bond0 (unregistering): Released all slaves [ 201.689803][T20841] loop3: detected capacity change from 0 to 256 [ 201.751043][T12789] hsr_slave_0: left promiscuous mode [ 201.754531][T20841] FAT-fs (loop3): Directory bread(block 64) failed [ 201.763047][T12789] hsr_slave_1: left promiscuous mode [ 201.763197][T20841] FAT-fs (loop3): Directory bread(block 65) failed [ 201.768695][T12789] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 201.774991][T20841] FAT-fs (loop3): Directory bread(block 66) failed [ 201.789017][T20841] FAT-fs (loop3): Directory bread(block 67) failed [ 201.795703][T20841] FAT-fs (loop3): Directory bread(block 68) failed [ 201.797229][T12789] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 201.809961][T20841] FAT-fs (loop3): Directory bread(block 69) failed [ 201.817244][T12789] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 201.825069][T12789] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 201.827384][T20855] blkio.reset_stats is deprecated [ 201.832472][T20841] FAT-fs (loop3): Directory bread(block 70) failed [ 201.844284][T20841] FAT-fs (loop3): Directory bread(block 71) failed [ 201.852708][T20841] FAT-fs (loop3): Directory bread(block 72) failed [ 201.859533][T12789] veth1_macvtap: left promiscuous mode [ 201.859628][T20841] FAT-fs (loop3): Directory bread(block 73) failed [ 201.865063][T12789] veth0_macvtap: left promiscuous mode [ 201.880387][T12789] veth1_vlan: left promiscuous mode [ 201.998651][T12789] team0 (unregistering): Port device team_slave_1 removed [ 202.008347][T12789] team0 (unregistering): Port device team_slave_0 removed [ 202.032753][ T118] smc: removing ib device syz2 [ 202.059429][T20857] syzkaller1: tun_chr_ioctl cmd 2147767506 [ 202.063710][T20870] __nla_validate_parse: 6 callbacks suppressed [ 202.063778][T20870] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5189'. [ 202.106176][T20872] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=24 sclass=netlink_audit_socket pid=20872 comm=syz.0.5190 [ 202.213175][T20882] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5194'. [ 202.252006][T20798] chnl_net:caif_netlink_parms(): no params data found [ 202.279400][T20893] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=20893 comm=syz.0.5198 [ 202.316994][T20888] loop6: detected capacity change from 0 to 512 [ 202.356482][T20888] EXT4-fs: Ignoring removed i_version option [ 202.376395][T20888] EXT4-fs error (device loop6): ext4_get_journal_inode:5863: comm syz.6.5196: inode #196608: comm syz.6.5196: iget: illegal inode # [ 202.393243][T20798] bridge0: port 1(bridge_slave_0) entered blocking state [ 202.402659][T20898] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5199'. [ 202.411794][T20798] bridge0: port 1(bridge_slave_0) entered disabled state [ 202.421327][T20888] loop6: lost filesystem error report for type 5 error -117 [ 202.421542][T20888] EXT4-fs (loop6): no journal found [ 202.434427][ C1] EXT4-fs (loop6): error count since last fsck: 1 [ 202.434447][ C1] EXT4-fs (loop6): initial error at time 2000000321: ext4_get_journal_inode:5863 [ 202.434472][ C1] EXT4-fs (loop6): last error at time 2000000321: ext4_get_journal_inode:5863 [ 202.462503][T20798] bridge_slave_0: entered allmulticast mode [ 202.470028][T20888] EXT4-fs (loop6): can't get journal size [ 202.476115][T20798] bridge_slave_0: entered promiscuous mode [ 202.483354][T20798] bridge0: port 2(bridge_slave_1) entered blocking state [ 202.487023][T20888] EXT4-fs (loop6): warning: mounting fs with errors, running e2fsck is recommended [ 202.491303][T20798] bridge0: port 2(bridge_slave_1) entered disabled state [ 202.501345][T20888] EXT4-fs (loop6): failed to initialize system zone (-22) [ 202.514226][T20888] EXT4-fs (loop6): mount failed [ 202.522566][T20798] bridge_slave_1: entered allmulticast mode [ 202.534139][T20798] bridge_slave_1: entered promiscuous mode [ 202.557534][T20798] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 202.593563][T20798] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 202.618739][T20798] team0: Port device team_slave_0 added [ 202.625629][T20798] team0: Port device team_slave_1 added [ 202.639794][ C1] IPv4: Oversized IP packet from 172.20.20.24 [ 202.644511][T20798] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 202.660814][T20798] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 202.689774][T20798] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 202.711420][T20798] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 202.723532][T20798] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 202.750489][T20798] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 202.781405][T20798] hsr_slave_0: entered promiscuous mode [ 202.787684][T20798] hsr_slave_1: entered promiscuous mode [ 202.797410][T20798] debugfs: 'hsr0' already exists in 'hsr' [ 202.804029][T20798] Cannot create hsr debugfs directory [ 202.939601][T20798] 8021q: adding VLAN 0 to HW filter on device bond0 [ 202.953846][T20798] 8021q: adding VLAN 0 to HW filter on device team0 [ 202.964575][ T30] bridge0: port 1(bridge_slave_0) entered blocking state [ 202.971675][ T30] bridge0: port 1(bridge_slave_0) entered forwarding state [ 202.991471][T12789] bridge0: port 2(bridge_slave_1) entered blocking state [ 202.998585][T12789] bridge0: port 2(bridge_slave_1) entered forwarding state [ 203.106697][ T28] kauditd_printk_skb: 5 callbacks suppressed [ 203.106713][ T28] audit: type=1400 audit(2000000322.131:1669): avc: denied { unmount } for pid=9612 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1 [ 203.107560][T20798] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 203.289208][T20798] veth0_vlan: entered promiscuous mode [ 203.302785][T20798] veth1_vlan: entered promiscuous mode [ 203.319531][T20798] veth0_macvtap: entered promiscuous mode [ 203.332432][T20798] veth1_macvtap: entered promiscuous mode [ 203.357559][T20798] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 203.367142][T21003] bridge0: port 3(syz_tun) entered blocking state [ 203.374309][T21003] bridge0: port 3(syz_tun) entered disabled state [ 203.381378][T21003] syz_tun: entered allmulticast mode [ 203.387327][T21003] syz_tun: entered promiscuous mode [ 203.396986][T21003] bridge0: port 3(syz_tun) entered blocking state [ 203.403485][T21003] bridge0: port 3(syz_tun) entered forwarding state [ 203.421607][T20798] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 203.492667][ T28] audit: type=1400 audit(2000000322.521:1670): avc: denied { append } for pid=21016 comm="syz.3.5245" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 203.494627][T21007] loop6: detected capacity change from 0 to 8192 [ 203.538099][T21007] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 203.630646][ T28] audit: type=1400 audit(2000000322.661:1671): avc: denied { unmount } for pid=6427 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 203.653057][ T28] audit: type=1400 audit(2000000322.661:1672): avc: denied { unmount } for pid=6427 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=filesystem permissive=1 [ 203.742556][ T28] audit: type=1400 audit(2000000322.771:1673): avc: denied { unmount } for pid=6427 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=filesystem permissive=1 [ 203.861937][ T28] audit: type=1400 audit(2000000322.891:1674): avc: denied { unmount } for pid=6427 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=filesystem permissive=1 [ 203.911549][T21046] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5256'. [ 203.919953][ T28] audit: type=1400 audit(2000000322.921:1675): avc: denied { unmount } for pid=6427 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1 [ 204.246198][T11935] ================================================================== [ 204.254332][T11935] BUG: KCSAN: data-race in __xa_clear_mark / xas_find_marked [ 204.258371][T21077] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5273'. [ 204.261728][T11935] [ 204.261735][T11935] read-write to 0xffff888123b54b50 of 8 bytes by interrupt on cpu 0: [ 204.261756][T11935] __xa_clear_mark+0xf5/0x1e0 [ 204.286035][T11935] __folio_end_writeback+0xf4/0x360 [ 204.291274][T11935] folio_end_writeback_no_dropbehind+0x6d/0x1d0 [ 204.297545][T11935] folio_end_writeback+0x1c/0x70 [ 204.302500][T11935] mpage_write_end_io+0x270/0x630 [ 204.307540][T11935] bio_endio+0x38a/0x420 [ 204.311798][T11935] blk_update_request+0x338/0x740 [ 204.316835][T11935] blk_mq_end_request+0x26/0x50 [ 204.321694][T11935] lo_complete_rq+0x98/0x140 [ 204.326290][T11935] blk_done_softirq+0x77/0xb0 [ 204.330969][T11935] handle_softirqs+0xb9/0x2a0 [ 204.335682][T11935] run_ksoftirqd+0x1c/0x30 [ 204.340105][T11935] smpboot_thread_fn+0x32a/0x510 [ 204.345056][T11935] kthread+0x22a/0x280 [ 204.349126][T11935] ret_from_fork+0x150/0x360 [ 204.353727][T11935] ret_from_fork_asm+0x1a/0x30 [ 204.358499][T11935] [ 204.360826][T11935] read to 0xffff888123b54b50 of 8 bytes by task 11935 on cpu 1: [ 204.368452][T11935] xas_find_marked+0x213/0x620 [ 204.373223][T11935] filemap_get_folios_tag+0xfa/0x510 [ 204.378511][T11935] filemap_fdatawait_keep_errors+0x6c/0x190 [ 204.384492][T11935] sync_inodes_sb+0x40e/0x4c0 [ 204.389178][T11935] sync_filesystem+0x102/0x190 [ 204.393943][T11935] generic_shutdown_super+0x4c/0x220 [ 204.399246][T11935] kill_block_super+0x2a/0x70 [ 204.403933][T11935] deactivate_locked_super+0x75/0x1c0 [ 204.409325][T11935] deactivate_super+0x97/0xa0 [ 204.414010][T11935] cleanup_mnt+0x2bb/0x330 [ 204.418434][T11935] __cleanup_mnt+0x19/0x20 [ 204.422857][T11935] task_work_run+0x130/0x1a0 [ 204.427450][T11935] exit_to_user_mode_loop+0x1f4/0x6f0 [ 204.432823][T11935] do_syscall_64+0x249/0x370 [ 204.437432][T11935] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 204.443346][T11935] [ 204.445673][T11935] value changed: 0xffffff8000000000 -> 0xff80000000000000 [ 204.452774][T11935] [ 204.455096][T11935] Reported by Kernel Concurrency Sanitizer on: [ 204.461242][T11935] CPU: 1 UID: 0 PID: 11935 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) [ 204.470787][T11935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 204.480847][T11935] ================================================================== SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 204.520136][ T28] audit: type=1400 audit(2000000323.321:1676): avc: denied { write } for pid=3296 comm="syz-executor" path="pipe:[1511]" dev="pipefs" ino=1511 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1 [ 204.569989][ T28] audit: type=1400 audit(2000000323.571:1677): avc: denied { recv } for pid=6427 comm="syz-executor" saddr=10.128.0.163 src=38192 daddr=10.128.0.21 dest=22 netif=eth0 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1 [ 204.886714][T15089] bridge0: port 3(syz_tun) entered disabled state [ 204.894481][T15089] syz_tun (unregistering): left allmulticast mode [ 204.900986][T15089] syz_tun (unregistering): left promiscuous mode [ 204.907362][T15089] bridge0: port 3(syz_tun) entered disabled state [ 204.918594][T12781] bridge_slave_1: left allmulticast mode [ 204.925090][T12781] bridge_slave_1: left promiscuous mode [ 204.932195][T12781] bridge0: port 2(bridge_slave_1) entered disabled state [ 204.940540][T12781] bridge_slave_0: left allmulticast mode [ 204.946252][T12781] bridge_slave_0: left promiscuous mode [ 204.952138][T12781] bridge0: port 1(bridge_slave_0) entered disabled state [ 205.071943][T12781] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 205.081689][T12781] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 205.091457][T12781] bond0 (unregistering): Released all slaves [ 205.144509][T12781] hsr_slave_0: left promiscuous mode [ 205.150417][T12781] hsr_slave_1: left promiscuous mode [ 205.156098][T12781] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 205.163526][T12781] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 205.171238][T12781] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 205.178607][T12781] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 205.188627][T12781] veth1_macvtap: left promiscuous mode [ 205.194135][T12781] veth0_macvtap: left promiscuous mode [ 205.199598][T12781] veth1_vlan: left promiscuous mode [ 205.204835][T12781] veth0_vlan: left promiscuous mode [ 205.266681][T12781] team0 (unregistering): Port device team_slave_1 removed [ 205.275776][T12781] team0 (unregistering): Port device team_slave_0 removed [ 205.592420][T12781] bridge_slave_1: left allmulticast mode [ 205.598140][T12781] bridge_slave_1: left promiscuous mode [ 205.603990][T12781] bridge0: port 2(bridge_slave_1) entered disabled state [ 205.611777][T12781] bridge_slave_0: left allmulticast mode [ 205.617502][T12781] bridge_slave_0: left promiscuous mode [ 205.623310][T12781] bridge0: port 1(bridge_slave_0) entered disabled state [ 205.632775][T12781] bridge_slave_1: left allmulticast mode [ 205.638468][T12781] bridge_slave_1: left promiscuous mode [ 205.644318][T12781] bridge0: port 2(bridge_slave_1) entered disabled state [ 205.652109][T12781] bridge_slave_0: left allmulticast mode [ 205.657773][T12781] bridge_slave_0: left promiscuous mode [ 205.663589][T12781] bridge0: port 1(bridge_slave_0) entered disabled state [ 205.671852][T12781] bridge_slave_1: left allmulticast mode [ 205.677492][T12781] bridge_slave_1: left promiscuous mode [ 205.683209][T12781] bridge0: port 2(bridge_slave_1) entered disabled state [ 205.691021][T12781] bridge_slave_0: left allmulticast mode [ 205.696735][T12781] bridge_slave_0: left promiscuous mode [ 205.702475][T12781] bridge0: port 1(bridge_slave_0) entered disabled state [ 205.824119][T12781] batman_adv: batadv0: Removing interface: macvlan4 [ 205.833290][T12781] batman_adv: batadv0: Removing interface: vlan2 [ 205.902114][T12781] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 205.911942][T12781] bond0 (unregistering): (slave c@0): Releasing backup interface [ 205.921448][T12781] bond0 (unregistering): Released all slaves [ 206.002038][T12781] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 206.011868][T12781] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 206.021290][T12781] bond0 (unregistering): Released all slaves [ 206.111761][T12781] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 206.121619][T12781] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 206.131142][T12781] bond0 (unregistering): Released all slaves [ 206.138380][T12781] bond1 (unregistering): Released all slaves [ 206.198896][T12781] macvlan0: left promiscuous mode [ 206.204272][T12781] dummy0: left promiscuous mode [ 206.211285][T12781] hsr_slave_0: left promiscuous mode [ 206.216848][T12781] hsr_slave_1: left promiscuous mode [ 206.222452][T12781] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 206.229810][T12781] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 206.237626][T12781] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 206.245086][T12781] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 206.254332][T12781] hsr_slave_0: left promiscuous mode [ 206.260065][T12781] hsr_slave_1: left promiscuous mode [ 206.265664][T12781] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 206.273245][T12781] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 206.281480][T12781] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 206.288865][T12781] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 206.297937][T12781] hsr_slave_0: left promiscuous mode [ 206.303653][T12781] hsr_slave_1: left promiscuous mode [ 206.309172][T12781] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 206.316641][T12781] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 206.324155][T12781] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 206.331561][T12781] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 206.347292][T12781] team0: left allmulticast mode [ 206.352181][T12781] team_slave_0: left allmulticast mode [ 206.357660][T12781] team_slave_1: left allmulticast mode [ 206.363153][T12781] team0: left promiscuous mode [ 206.368105][T12781] team_slave_0: left promiscuous mode [ 206.373501][T12781] team_slave_1: left promiscuous mode [ 206.378990][T12781] veth1_macvtap: left promiscuous mode [ 206.384488][T12781] veth0_macvtap: left promiscuous mode [ 206.390027][T12781] veth1_vlan: left allmulticast mode [ 206.395336][T12781] veth1_vlan: left promiscuous mode [ 206.400612][T12781] veth0_vlan: left promiscuous mode [ 206.406487][T12781] veth1_macvtap: left promiscuous mode [ 206.412034][T12781] veth0_macvtap: left promiscuous mode [ 206.417586][T12781] veth1_vlan: left promiscuous mode [ 206.423224][T12781] veth0_vlan: left promiscuous mode [ 206.428812][T12781] veth1_macvtap: left promiscuous mode [ 206.434327][T12781] veth0_macvtap: left promiscuous mode [ 206.439964][T12781] veth1_vlan: left promiscuous mode [ 206.445194][T12781] veth0_vlan: left promiscuous mode [ 206.548421][T12781] pim6reg (unregistering): left allmulticast mode [ 206.578352][T12781] team0 (unregistering): Port device team_slave_1 removed [ 206.590003][T12781] team0 (unregistering): Port device team_slave_0 removed [ 206.641154][T12781] team0 (unregistering): Port device team_slave_1 removed [ 206.650463][T12781] team0 (unregistering): Port device team_slave_0 removed [ 206.701650][T12781] team0 (unregistering): Port device team_slave_1 removed [ 206.712081][T12781] team0 (unregistering): Port device team_slave_0 removed