last executing test programs: 3.569448146s ago: executing program 0 (id=4308): set_mempolicy(0x6005, &(0x7f0000000000)=0xfffffffffffffffd, 0x4) r0 = socket$kcm(0x10, 0x2, 0x0) write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[], 0xfe33) 3.384400592s ago: executing program 0 (id=4313): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff) sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)={0x38, r1, 0x601, 0x0, 0x0, {}, [@TIPC_NLA_LINK={0x24, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x5, 0x1}]}]}]}, 0x38}}, 0x0) 3.326607643s ago: executing program 0 (id=4316): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)={{0x14}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x160b, 0x0, 0x0, {0x2, 0x0, 0x8008}, [@NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @redir={{0xa}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_REDIR_REG_PROTO_MIN={0x8, 0x1, 0x1, 0x0, 0x525c067a5741a14b}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x74}, 0x1, 0x0, 0x0, 0x4000855}, 0x0) 3.255359945s ago: executing program 0 (id=4318): r0 = socket$inet6(0xa, 0x80001, 0x0) sendto$l2tp6(r0, 0x0, 0x0, 0x20000800, &(0x7f0000000600)={0xa, 0x0, 0xfffffdbb, @remote, 0x1}, 0x20) setsockopt$inet6_buf(r0, 0x29, 0x32, &(0x7f0000000000)="d2f15270c1f2824de5ea159eadf70f75a80d6c68", 0x14) 3.224793977s ago: executing program 0 (id=4319): r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10) open(&(0x7f0000000780)='./bus\x00', 0x4c07e, 0x0) 3.162874478s ago: executing program 0 (id=4320): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='cpuset.effective_mems\x00', 0x275a, 0x0) r1 = getpgrp(0xffffffffffffffff) fcntl$lock(r0, 0x25, &(0x7f0000000140)={0x0, 0x0, 0x3, 0x5, r1}) 1.044469736s ago: executing program 1 (id=4396): syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f0000000480)='./bus\x00', 0x0, &(0x7f00000000c0)={[{@noload}, {@noload}, {@lazytime}, {@quota}, {@resgid}, {@auto_da_alloc}]}, 0xff, 0x45b, &(0x7f0000000dc0)="$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") r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x0) ioctl$FITRIM(r0, 0xc0185879, 0x0) 698.130418ms ago: executing program 4 (id=4406): socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f00000000c0)=[{0x20, 0x0, 0x0, 0xfffff024}, {0x20, 0xff, 0x0, 0x8}, {0x6, 0xff, 0x0, 0xfffffffe}]}, 0x10) sendmmsg(r0, &(0x7f0000000180), 0x4000190, 0x0) 670.989039ms ago: executing program 1 (id=4407): perf_event_open$cgroup(&(0x7f0000000080)={0x5, 0x80, 0x8, 0x3, 0x3, 0xee, 0x0, 0xf6e, 0x4, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x0, 0x1}, 0x4840, 0x3, 0x1, 0x0, 0x2, 0x4, 0x2, 0x0, 0x7, 0x0, 0x4}, 0xffffffffffffffff, 0xe, 0xffffffffffffffff, 0xd) r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000080), 0xfffffebe}], 0x1) 552.191242ms ago: executing program 1 (id=4411): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) readv(r0, &(0x7f0000000000)=[{&(0x7f0000000340)=""/4096, 0x1000}], 0x1) 536.379152ms ago: executing program 3 (id=4412): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'geneve1\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="b00000001000030425bd70000000000000000400", @ANYRES32=0x0, @ANYBLOB="00130000000000008800128009000100766c616e00000000780002800600010002000000280003800c00010000000000060000000c00010000020000090000000c0021000000000001000100280004800c00010001000000ef0300000c00010005000000a30000000c00010005000000000001001c0004801dfd010002000000020000000c0001007f0000000500000008000500", @ANYRES32=r1], 0xb0}, 0x1, 0x0, 0x0, 0x4008081}, 0x0) 452.480765ms ago: executing program 2 (id=4413): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x2a, 0x1, 0x0, 0x0, 0x0, 0x9, 0x510, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x1, @perf_bp={0x0, 0xe}, 0x105902, 0x10003, 0x33f8, 0x1, 0x8, 0x20007, 0xb, 0x0, 0x80000000, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$kcm(0x2, 0x200000000000001, 0x0) setsockopt$sock_attach_bpf(r0, 0x1, 0x50, &(0x7f0000000100), 0x48) 452.072585ms ago: executing program 4 (id=4414): madvise(&(0x7f000042f000/0x800000)=nil, 0x80fd00, 0x66) r0 = syz_open_procfs$pagemap(0x0, &(0x7f0000000040)) ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f0000000140)={0x60, 0x0, &(0x7f000043f000/0x3000)=nil, &(0x7f0000f96000/0x1000)=nil, 0x7fffff7a, 0x0, 0x0, 0x1000, 0x0, 0x2, 0x0, 0x19}) 388.419137ms ago: executing program 4 (id=4415): r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x20002) r1 = fcntl$dupfd(r0, 0x406, r0) ioctl$SG_IO(r1, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffc, 0x6, 0x0, @buffer={0x300, 0x48, &(0x7f00000000c0)=""/72}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0}) 334.465819ms ago: executing program 2 (id=4416): openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', &(0x7f0000005280)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x6000) setuid(r0) 334.334209ms ago: executing program 3 (id=4417): r0 = socket$inet6(0xa, 0x2, 0x3a) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0xfffffff7}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000800)=[{{&(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000100)="8000102e7577d401", 0x8}], 0x1, &(0x7f0000000140)=ANY=[@ANYBLOB="2400000000000000290000003200000000000000000000000000000000010000ac"], 0x28}}], 0x1, 0x0) 322.78111ms ago: executing program 2 (id=4418): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18020000c1001000000000001c000000850000000e00000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0x2000000, 0xe, 0x0, &(0x7f00000004c0)="630b008646dc3f0adf33c9f7b986", 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x50) 311.71217ms ago: executing program 3 (id=4419): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a98000000060a0b040000000000000000020000026c00048018000180080001006f7366000c000280080001400000000424000180090001006d6574610000000014000280080002400000000208000340000000042c0001800a0001006c696d69740000001c0002800c00014000000000000000640c00024000000000000000010900010073797a30000000000900020073797a32"], 0xc0}}, 0x0) 298.68524ms ago: executing program 4 (id=4420): perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x2b, 0x1, 0x0, 0x0, 0x0, 0x1, 0x510, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_bp={0x0, 0xe}, 0x102260, 0x10000, 0x0, 0x0, 0x8, 0x20005, 0x0, 0x0, 0x0, 0x0, 0x2000000020000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) symlink(&(0x7f0000001640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, &(0x7f0000000500)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', 0x40) 296.3066ms ago: executing program 1 (id=4421): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000100)={0x80000000, 0x0, 0xfffffffc}, 0x10) write(r0, &(0x7f0000000000)="240000001a005f0214f9f407000904001f000000fe0000000000000008000f00fd000000", 0x24) 249.662722ms ago: executing program 1 (id=4422): r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r1 = dup(r0) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, 0x0, 0x0) 236.391973ms ago: executing program 3 (id=4423): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]}) syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0) futex(&(0x7f0000004000)=0xfffff000, 0x5, 0x0, 0x0, &(0x7f0000004000)=0x2, 0xa3020000) 230.364883ms ago: executing program 2 (id=4424): r0 = socket$inet6(0xa, 0x3, 0x2f) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000003c0)={{{@in=@remote, @in=@dev={0xac, 0x14, 0x14, 0x2a}, 0x0, 0x0, 0xffff, 0xfffd, 0xa}, {0x3, 0x200000, 0x64, 0x9, 0x0, 0x0, 0x80000000}, {0x0, 0x3, 0x42}, 0x0, 0x0, 0x1, 0x1}, {{@in6=@loopback, 0x0, 0x6c}, 0xa, @in6=@empty, 0x34ff, 0x0, 0x0, 0x3, 0x0, 0xfffffffc, 0x2}}, 0xe8) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) 158.354815ms ago: executing program 4 (id=4425): r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000800)=[@in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x2d}}, @in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1c}}], 0x20) sendmsg$inet_sctp(r0, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000380)='N', 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0xc851) 158.238265ms ago: executing program 1 (id=4426): syz_read_part_table(0x5df, &(0x7f0000000000)="$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") r0 = socket$kcm(0xa, 0x2, 0x0) setsockopt$sock_attach_bpf(r0, 0x29, 0x14, &(0x7f00000000c0), 0xb9) 143.933325ms ago: executing program 2 (id=4427): mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r0 = socket$igmp6(0xa, 0x3, 0x2) setsockopt$inet6_int(r0, 0x29, 0x7, &(0x7f0000000000)=0xffff7fff, 0x4) 123.503606ms ago: executing program 4 (id=4428): r0 = syz_clone(0x82000400, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = syz_pidfd_open(r0, 0x0) ioctl$EXT4_IOC_MIGRATE(r1, 0xff09) 42.407198ms ago: executing program 2 (id=4429): r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, 0x1f0519, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd41, 0x1, @perf_bp={0x0, 0x3}, 0x6025, 0x4005, 0xb, 0x3, 0x2, 0x20005, 0xb, 0x0, 0x0, 0x0, 0x20000006}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$perf(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x50) 42.328538ms ago: executing program 3 (id=4430): perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401f, 0x68180, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6f, 0x1, @perf_bp={0x0, 0x1}, 0x10c0e8, 0x0, 0x7, 0x4, 0x6, 0x8001, 0x7fff}, 0x0, 0xff6fbfffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) setsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, 0x0, 0x0) 0s ago: executing program 3 (id=4431): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000007300), r0) sendmsg$NFC_CMD_DEACTIVATE_TARGET(r0, &(0x7f0000007400)={0x0, 0x0, &(0x7f00000073c0)={&(0x7f0000007380)={0x24, r1, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@NFC_ATTR_TARGET_INDEX={0x8}, @NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0xc014) kernel console output (not intermixed with test programs): Interface deactivated: batadv_slave_0 [ 44.022857][ T5294] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 44.092694][ T49] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 44.123806][ T49] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 44.134907][ T49] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 44.171977][ T49] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 44.305132][ T5349] netlink: 'syz.1.890': attribute type 9 has an invalid length. [ 44.332133][ T5353] netlink: 'syz.3.892': attribute type 4 has an invalid length. [ 44.464591][ T5375] loop1: detected capacity change from 0 to 164 [ 44.478575][ T5369] usb usb8: usbfs: process 5369 (syz.3.900) did not claim interface 0 before use [ 44.524369][ T5380] bond2: down delay (6) is not a multiple of miimon (100), value rounded to 0 ms [ 44.525890][ T5380] 8021q: adding VLAN 0 to HW filter on device bond2 [ 44.771699][ T5414] loop3: detected capacity change from 0 to 1764 [ 44.794659][ T5414] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 44.795311][ T28] kauditd_printk_skb: 160 callbacks suppressed [ 44.795336][ T28] audit: type=1400 audit(1778882151.602:542): avc: denied { create } for pid=5419 comm="syz.0.925" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 44.891536][ T28] audit: type=1400 audit(1778882151.642:543): avc: denied { setopt } for pid=5419 comm="syz.0.925" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 [ 44.954716][ T28] audit: type=1400 audit(1778882151.692:544): avc: denied { bind } for pid=5429 comm="syz.0.930" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 45.135363][ T5465] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3) [ 45.141932][ T5465] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 45.171202][ T5465] vhci_hcd vhci_hcd.0: Device attached [ 45.188343][ T5472] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(6) [ 45.195013][ T5472] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 45.201060][ T5476] __nla_validate_parse: 10 callbacks suppressed [ 45.201144][ T5476] netlink: 20 bytes leftover after parsing attributes in process `syz.0.951'. [ 45.234612][ T5472] vhci_hcd vhci_hcd.0: Device attached [ 45.257396][ T5467] vhci_hcd: connection closed [ 45.257599][ T5473] vhci_hcd: connection closed [ 45.257609][ T12] vhci_hcd vhci_hcd.4: stop threads [ 45.277304][ T12] vhci_hcd vhci_hcd.4: release socket [ 45.279862][ T5483] loop2: detected capacity change from 0 to 512 [ 45.289131][ T12] vhci_hcd vhci_hcd.4: disconnect device [ 45.289231][ T12] vhci_hcd vhci_hcd.4: stop threads [ 45.314308][ T12] vhci_hcd vhci_hcd.4: release socket [ 45.328364][ T12] vhci_hcd vhci_hcd.4: disconnect device [ 45.342395][ T5483] EXT4-fs: Ignoring removed nomblk_io_submit option [ 45.349191][ T9] vhci_hcd vhci_hcd.4: vhci_device speed not set [ 45.377187][ T5483] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 45.427020][ T5483] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 45.446729][ T5483] ext4 filesystem being mounted at /188/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 45.469495][ T5499] bridge2: entered promiscuous mode [ 45.481498][ T28] audit: type=1400 audit(1778882152.292:545): avc: denied { ioctl } for pid=5500 comm="syz.1.959" path="socket:[11650]" dev="sockfs" ino=11650 ioctlcmd=0x48d5 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 45.506986][ T5499] bridge2: entered allmulticast mode [ 45.534557][ T3295] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.592427][ T5508] netlink: 32 bytes leftover after parsing attributes in process `syz.0.963'. [ 45.758427][ T5518] bond1: option min_links: invalid value (18446744073709551612) [ 45.758455][ T5518] bond1: option min_links: allowed values 0 - 2147483647 [ 45.763010][ T5518] bond1 (unregistering): Released all slaves [ 45.833347][ T5526] loop0: detected capacity change from 0 to 128 [ 46.020451][ T5540] netlink: 'syz.2.979': attribute type 13 has an invalid length. [ 46.035303][ T28] audit: type=1400 audit(1778882152.842:546): avc: denied { write } for pid=5542 comm="syz.0.981" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 46.047695][ T5540] netlink: 172 bytes leftover after parsing attributes in process `syz.2.979'. [ 46.075307][ T5540] erspan0: refused to change device tx_queue_len [ 46.077416][ T5550] netlink: 16 bytes leftover after parsing attributes in process `syz.1.983'. [ 46.101892][ T5550] netlink: 4 bytes leftover after parsing attributes in process `syz.1.983'. [ 46.139948][ T5553] bond3: option min_links: invalid value (18446744073709551612) [ 46.148038][ T5553] bond3: option min_links: allowed values 0 - 2147483647 [ 46.158321][ T5553] bond3 (unregistering): Released all slaves [ 46.302321][ T5573] bridge0: port 3(syz_tun) entered disabled state [ 46.321449][ T5573] bridge0: port 2(bridge_slave_1) entered disabled state [ 46.328730][ T5573] bridge0: port 1(bridge_slave_0) entered disabled state [ 46.374535][ T5573] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 46.384713][ T5573] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 46.416188][ T5575] netlink: 'syz.2.995': attribute type 4 has an invalid length. [ 46.442458][ T5580] bond2 (unregistering): Released all slaves [ 46.459983][ T5581] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1007'. [ 46.470116][ T310] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.485373][ T310] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.521321][ T310] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.521827][ T5591] xt_TPROXY: Can be used only with -p tcp or -p udp [ 46.552012][ T310] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 46.834940][ T5611] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1011'. [ 46.862776][ T5611] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1011'. [ 46.917067][ T5611] netlink: 22 bytes leftover after parsing attributes in process `syz.3.1011'. [ 46.937206][ T5611] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1011'. [ 47.252451][ T28] audit: type=1326 audit(1778882154.062:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5632 comm="syz.4.1022" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7916a3ce59 code=0x7ffc0000 [ 47.352940][ T28] audit: type=1326 audit(1778882154.062:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5632 comm="syz.4.1022" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7f7916a3ce59 code=0x7ffc0000 [ 47.407057][ T28] audit: type=1326 audit(1778882154.062:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5632 comm="syz.4.1022" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7916a3ce59 code=0x7ffc0000 [ 47.479437][ T28] audit: type=1326 audit(1778882154.062:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5632 comm="syz.4.1022" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7916a3ce59 code=0x7ffc0000 [ 47.515534][ T5645] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.523084][ T5645] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.578262][ T28] audit: type=1400 audit(1778882154.392:551): avc: denied { setopt } for pid=5652 comm="syz.1.1029" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 47.718895][ T5645] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 47.744525][ T5645] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 47.803551][ T5666] loop1: detected capacity change from 0 to 2048 [ 47.829333][ T5605] syz.0.1009 (5605) used greatest stack depth: 8504 bytes left [ 47.847283][ T5664] bond1: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0) [ 47.863439][ T5666] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 47.912804][ T5664] bond1 (unregistering): Released all slaves [ 47.950382][ T310] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 47.965473][ T310] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 47.978211][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.991551][ T310] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 48.002414][ T310] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 48.117302][ T5691] netlink: 'syz.1.1046': attribute type 15 has an invalid length. [ 48.302485][ T5721] xt_addrtype: ipv6 does not support BROADCAST matching [ 48.367704][ T5730] bridge_slave_1: left allmulticast mode [ 48.387445][ T5730] bridge_slave_1: left promiscuous mode [ 48.398577][ T5730] bridge0: port 2(bridge_slave_1) entered disabled state [ 48.409909][ T5730] bridge_slave_0: left allmulticast mode [ 48.417067][ T5730] bridge_slave_0: left promiscuous mode [ 48.424094][ T5730] bridge0: port 1(bridge_slave_0) entered disabled state [ 48.836212][ T5800] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD [ 48.934742][ T5815] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 49.015311][ T5825] bond1: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0) [ 49.119932][ T5825] bond1 (unregistering): Released all slaves [ 49.382612][ T5873] bond2: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0) [ 49.401368][ T5873] bond2 (unregistering): Released all slaves [ 49.664878][ T5904] bond1: option min_links: invalid value (18446744073709551612) [ 49.678840][ T5904] bond1: option min_links: allowed values 0 - 2147483647 [ 49.687179][ T5904] bond1 (unregistering): Released all slaves [ 50.006533][ T5939] loop0: detected capacity change from 0 to 512 [ 50.039559][ T5939] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 50.060570][ T5939] ext4 filesystem being mounted at /223/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 50.098628][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.120078][ T5944] bond2: option min_links: invalid value (18446744073709551612) [ 50.129173][ T5944] bond2: option min_links: allowed values 0 - 2147483647 [ 50.137621][ T28] kauditd_printk_skb: 29 callbacks suppressed [ 50.137659][ T28] audit: type=1326 audit(1778882156.952:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5948 comm="syz.2.1170" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f131a45ce59 code=0x7ffc0000 [ 50.170693][ T28] audit: type=1326 audit(1778882156.982:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5948 comm="syz.2.1170" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f131a45ce59 code=0x7ffc0000 [ 50.197922][ T28] audit: type=1326 audit(1778882156.982:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5948 comm="syz.2.1170" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f131a45ce59 code=0x7ffc0000 [ 50.206573][ T5944] bond2 (unregistering): Released all slaves [ 50.224100][ T28] audit: type=1326 audit(1778882156.982:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5948 comm="syz.2.1170" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=238 compat=0 ip=0x7f131a45ce59 code=0x7ffc0000 [ 50.255464][ T28] audit: type=1326 audit(1778882156.982:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5948 comm="syz.2.1170" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f131a45ce59 code=0x7ffc0000 [ 50.288404][ T5959] xt_policy: input policy not valid in POSTROUTING and OUTPUT [ 50.296319][ T28] audit: type=1326 audit(1778882156.982:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5948 comm="syz.2.1170" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f131a45ce59 code=0x7ffc0000 [ 50.351009][ T28] audit: type=1326 audit(1778882156.982:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5948 comm="syz.2.1170" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f131a45ce59 code=0x7ffc0000 [ 50.421991][ T28] audit: type=1326 audit(1778882156.982:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5948 comm="syz.2.1170" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f131a45ce59 code=0x7ffc0000 [ 50.481859][ T28] audit: type=1326 audit(1778882156.982:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5948 comm="syz.2.1170" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f131a45ce59 code=0x7ffc0000 [ 50.550687][ T28] audit: type=1400 audit(1778882157.362:590): avc: denied { getopt } for pid=5985 comm="syz.1.1188" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 50.733255][ T6006] IPv6: NLM_F_CREATE should be specified when creating new route [ 50.933349][ T6029] bridge2: entered promiscuous mode [ 50.953778][ T6029] bridge2: entered allmulticast mode [ 51.051832][ T6048] bridge_slave_1: left allmulticast mode [ 51.070469][ T6048] bridge_slave_1: left promiscuous mode [ 51.086345][ T6048] bridge0: port 2(bridge_slave_1) entered disabled state [ 51.129190][ T6048] bridge_slave_0: left allmulticast mode [ 51.141844][ T6048] bridge_slave_0: left promiscuous mode [ 51.151469][ T6059] loop1: detected capacity change from 0 to 256 [ 51.165377][ T6048] bridge0: port 1(bridge_slave_0) entered disabled state [ 51.179910][ T6061] loop4: detected capacity change from 0 to 128 [ 51.203089][ T6061] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 51.217981][ T6059] FAT-fs (loop1): Directory bread(block 64) failed [ 51.229550][ T6059] FAT-fs (loop1): Directory bread(block 65) failed [ 51.236439][ T6061] ext4 filesystem being mounted at /247/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 51.249720][ T6059] FAT-fs (loop1): Directory bread(block 66) failed [ 51.263100][ T6059] FAT-fs (loop1): Directory bread(block 67) failed [ 51.276837][ T6059] FAT-fs (loop1): Directory bread(block 68) failed [ 51.283940][ T6059] FAT-fs (loop1): Directory bread(block 69) failed [ 51.290761][ T6059] FAT-fs (loop1): Directory bread(block 70) failed [ 51.298249][ T6059] FAT-fs (loop1): Directory bread(block 71) failed [ 51.304953][ T6059] FAT-fs (loop1): Directory bread(block 72) failed [ 51.312156][ T6059] FAT-fs (loop1): Directory bread(block 73) failed [ 51.871464][ T3294] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 51.991175][ T6080] __nla_validate_parse: 31 callbacks suppressed [ 51.991202][ T6080] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1231'. [ 52.090749][ T6093] x_tables: ip_tables: icmp match: only valid for protocol 1 [ 52.203491][ T6113] Cannot find add_set index 0 as target [ 52.231535][ T6115] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 52.305285][ T6129] IPv6: Can't replace route, no match found [ 52.349076][ T6135] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1261'. [ 52.372587][ T6135] bridge0: port 3(vlan1) entered disabled state [ 52.389513][ T6139] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1259'. [ 52.491854][ T6148] bridge0: port 2(bridge_slave_1) entered disabled state [ 52.499120][ T6148] bridge0: port 1(bridge_slave_0) entered disabled state [ 52.598046][ T6169] netlink: 'syz.4.1276': attribute type 4 has an invalid length. [ 52.599730][ T6148] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 52.610522][ T6169] netlink: 'syz.4.1276': attribute type 30 has an invalid length. [ 52.625878][ T6148] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 52.695878][ T6149] team0: entered promiscuous mode [ 52.701454][ T6149] team_slave_0: entered promiscuous mode [ 52.714206][ T6149] team_slave_1: entered promiscuous mode [ 52.722594][ T6149] bond0: entered promiscuous mode [ 52.729069][ T6149] bond_slave_0: entered promiscuous mode [ 52.752741][ T6149] bond_slave_1: entered promiscuous mode [ 52.775714][ T6149] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 52.815881][ T310] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 52.843180][ T310] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 52.857033][ T310] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 52.881976][ T310] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 52.907280][ T6195] netlink: 'syz.3.1289': attribute type 2 has an invalid length. [ 52.918326][ T6198] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1290'. [ 52.934190][ T6198] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 52.952729][ T6201] loop0: detected capacity change from 0 to 128 [ 52.971931][ T6201] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 52, start 000000ff) [ 53.004060][ T6201] FAT-fs (loop0): Filesystem has been set read-only [ 53.060738][ T3301] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 52, start 000000ff) [ 53.167176][ T6229] netlink: 'syz.3.1305': attribute type 27 has an invalid length. [ 53.275268][ T6246] loop4: detected capacity change from 0 to 512 [ 53.284399][ T6246] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 53.321537][ T6246] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1148: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 53.357287][ T6246] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1313: bg 0: block 248: padding at end of block bitmap is not set [ 53.387873][ T6246] loop4: lost filesystem error report for type 5 error -117 [ 53.388159][ T6246] EXT4-fs error (device loop4): ext4_acquire_dquot:7034: comm syz.4.1313: Failed to acquire dquot type 1 [ 53.388189][ T6246] loop4: lost filesystem error report for type 5 error -28 [ 53.390736][ T6246] EXT4-fs (loop4): 1 truncate cleaned up [ 53.391398][ T6246] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 53.520951][ T6271] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 53.538482][ T3294] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0008-000000000000. [ 53.576818][ T6271] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 53.623172][ T6271] hsr0: entered promiscuous mode [ 53.646192][ T6271] hsr0: entered allmulticast mode [ 53.665785][ T6271] hsr_slave_0: entered allmulticast mode [ 53.689159][ T6271] hsr_slave_1: entered allmulticast mode [ 53.697935][ T6293] netlink: 'syz.1.1336': attribute type 5 has an invalid length. [ 53.712682][ T6295] loop0: detected capacity change from 0 to 256 [ 53.753816][ T6295] FAT-fs (loop0): Directory bread(block 64) failed [ 53.770201][ T6295] FAT-fs (loop0): Directory bread(block 65) failed [ 53.786256][ T6295] FAT-fs (loop0): Directory bread(block 66) failed [ 53.803286][ T6304] mmap: syz.3.1327 (6304) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 53.816668][ T6295] FAT-fs (loop0): Directory bread(block 67) failed [ 53.835375][ T6295] FAT-fs (loop0): Directory bread(block 68) failed [ 53.867121][ T6295] FAT-fs (loop0): Directory bread(block 69) failed [ 53.886643][ T6295] FAT-fs (loop0): Directory bread(block 70) failed [ 53.893613][ T6295] FAT-fs (loop0): Directory bread(block 71) failed [ 53.923029][ T6295] FAT-fs (loop0): Directory bread(block 72) failed [ 53.936483][ T6295] FAT-fs (loop0): Directory bread(block 73) failed [ 54.192232][ T6346] loop0: detected capacity change from 0 to 256 [ 54.229607][ T6346] ======================================================= [ 54.229607][ T6346] WARNING: The mand mount option has been deprecated and [ 54.229607][ T6346] and is ignored by this kernel. Remove the mand [ 54.229607][ T6346] option from the mount to silence this warning. [ 54.229607][ T6346] ======================================================= [ 54.297358][ T6346] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 54.375244][ T6371] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1374'. [ 54.413019][ T6371] netlink: 25 bytes leftover after parsing attributes in process `syz.0.1374'. [ 54.530575][ T6383] bond1 (unregistering): Released all slaves [ 54.545977][ T6386] futex_wake_op: syz.2.1380 tries to shift op by -65; fix this program [ 54.664453][ T6400] vhci_hcd vhci_hcd.2: invalid port number 96 [ 54.758304][ T6418] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1396'. [ 54.804396][ T6425] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1399'. [ 54.872352][ T6434] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1404'. [ 54.896835][ T6441] netlink: 'syz.0.1405': attribute type 1 has an invalid length. [ 54.928710][ T6446] netlink: 188 bytes leftover after parsing attributes in process `syz.4.1409'. [ 54.964034][ T6450] xt_CT: You must specify a L4 protocol and not use inversions on it [ 55.166688][ T6484] ieee802154 phy0 wpan0: encryption failed: -22 [ 55.219578][ T6489] SET target dimension over the limit! [ 55.424527][ T6518] netlink: 'syz.1.1446': attribute type 2 has an invalid length. [ 55.434104][ T6518] netlink: 'syz.1.1446': attribute type 8 has an invalid length. [ 55.453771][ T28] kauditd_printk_skb: 54 callbacks suppressed [ 55.453831][ T28] audit: type=1400 audit(1778882162.262:643): avc: denied { setopt } for pid=6522 comm="syz.4.1448" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 55.747166][ T28] audit: type=1400 audit(1778882162.552:644): avc: denied { read write } for pid=3295 comm="syz-executor" name="loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 55.810297][ T28] audit: type=1400 audit(1778882162.552:645): avc: denied { open } for pid=3295 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 55.871850][ T28] audit: type=1400 audit(1778882162.552:646): avc: denied { ioctl } for pid=3295 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=102 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 55.946698][ T6571] macvtap0: entered promiscuous mode [ 55.954262][ T28] audit: type=1400 audit(1778882162.582:647): avc: denied { map_create } for pid=6552 comm="syz.2.1463" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 55.954308][ T28] audit: type=1400 audit(1778882162.582:648): avc: denied { map_read map_write } for pid=6552 comm="syz.2.1463" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 55.954329][ T28] audit: type=1400 audit(1778882162.582:649): avc: denied { prog_load } for pid=6552 comm="syz.2.1463" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 55.954349][ T28] audit: type=1400 audit(1778882162.592:650): avc: denied { bpf } for pid=6552 comm="syz.2.1463" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 55.954441][ T28] audit: type=1400 audit(1778882162.592:651): avc: denied { perfmon } for pid=6552 comm="syz.2.1463" capability=38 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 55.954462][ T28] audit: type=1400 audit(1778882162.662:652): avc: denied { read } for pid=6558 comm="syz.1.1466" dev="nsfs" ino=4026532620 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 56.325894][ T6610] SELinux: truncated policydb string identifier [ 56.325988][ T6610] SELinux: failed to load policy [ 56.515299][ T6632] IPVS: length: 4096 != 24 [ 56.581775][ T6641] netlink: 'syz.0.1505': attribute type 3 has an invalid length. [ 56.604140][ T6641] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 56.753671][ T6666] A link change request failed with some changes committed already. Interface xfrm0 may have been left with an inconsistent configuration, please check. [ 57.227083][ T6734] ipt_REJECT: TCP_RESET invalid for non-tcp [ 57.284480][ T6736] Restarting kernel threads ... [ 57.297196][ T6736] Done restarting kernel threads. [ 57.340994][ T6746] vhci_hcd vhci_hcd.0: invalid port number 0 [ 57.373472][ T6750] sctp: [Deprecated]: syz.3.1552 (pid 6750) Use of int in maxseg socket option. [ 57.373472][ T6750] Use struct sctp_assoc_value instead [ 57.474955][ T6760] __nla_validate_parse: 4 callbacks suppressed [ 57.474974][ T6760] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1556'. [ 57.512565][ T6760] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1556'. [ 57.527887][ T6760] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1556'. [ 57.614928][ T6781] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1566'. [ 57.628280][ T6781] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1566'. [ 57.642239][ T6781] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1566'. [ 57.666114][ T6781] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1566'. [ 57.682683][ T6781] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1566'. [ 57.692170][ T6781] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1566'. [ 57.702053][ T6781] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1566'. [ 57.941572][ T6825] bridge3: entered promiscuous mode [ 57.963993][ T6831] ieee802154 phy0 wpan0: encryption failed: -22 [ 58.549126][ T6869] x_tables: arp_tables: NFQUEUE target: not valid for this family [ 58.711135][ T6879] netlink: 'syz.0.1615': attribute type 46 has an invalid length. [ 59.060768][ T6909] bond3: option downdelay: invalid value (18446744073709551609) [ 59.087038][ T6909] bond3: option downdelay: allowed values 0 - 2147483647 [ 59.101670][ T6909] bond3 (unregistering): Released all slaves [ 59.519660][ T6960] Restarting kernel threads ... [ 59.537248][ T6960] Done restarting kernel threads. [ 59.569197][ T6973] netlink: 'syz.2.1661': attribute type 8 has an invalid length. [ 59.582468][ T6976] netlink: 'syz.0.1663': attribute type 1 has an invalid length. [ 59.641976][ T6982] bridge_slave_1: entered allmulticast mode [ 59.664213][ T6982] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check. [ 59.881053][ T7013] netlink: 'syz.0.1681': attribute type 22 has an invalid length. [ 59.954108][ T7019] loop2: detected capacity change from 0 to 1024 [ 59.961972][ T7019] EXT4-fs: Ignoring removed bh option [ 59.983040][ T7019] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 60.036268][ T7033] loop0: detected capacity change from 0 to 2048 [ 60.059004][ T7033] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 60.075830][ T3295] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 60.090768][ T7039] x_tables: duplicate entry at hook 2 [ 60.092188][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 60.466263][ T28] kauditd_printk_skb: 103 callbacks suppressed [ 60.466281][ T28] audit: type=1400 audit(1778882167.272:756): avc: denied { create } for pid=7093 comm="syz.3.1719" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 60.537315][ T28] audit: type=1400 audit(1778882167.302:757): avc: denied { write } for pid=7093 comm="syz.3.1719" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 60.610500][ T28] audit: type=1400 audit(1778882167.302:758): avc: denied { nlmsg_read } for pid=7093 comm="syz.3.1719" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 60.679467][ T28] audit: type=1400 audit(1778882167.392:759): avc: denied { nlmsg_write } for pid=7109 comm="syz.1.1727" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 60.788598][ T7141] process 'syz.4.1742' launched './file0' with NULL argv: empty string added [ 60.798459][ T28] audit: type=1400 audit(1778882167.602:760): avc: denied { execute } for pid=7139 comm="syz.4.1742" name="file0" dev="tmpfs" ino=1790 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 60.871685][ T28] audit: type=1400 audit(1778882167.672:761): avc: denied { execute_no_trans } for pid=7139 comm="syz.4.1742" path="/351/file0" dev="tmpfs" ino=1790 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 60.931847][ T28] audit: type=1400 audit(1778882167.712:762): avc: denied { cpu } for pid=7146 comm="syz.1.1746" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 60.947174][ T7155] loop4: detected capacity change from 0 to 1024 [ 60.960477][ T7157] netlink: 'syz.3.1745': attribute type 5 has an invalid length. [ 60.981015][ T7155] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 61.024108][ T28] audit: type=1400 audit(1778882167.832:763): avc: denied { write } for pid=7154 comm="syz.4.1749" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 61.024368][ T7155] EXT4-fs error (device loop4): ext4_xattr_inode_iget:441: inode #11: comm syz.4.1749: missing EA_INODE flag [ 61.057866][ T28] audit: type=1400 audit(1778882167.832:764): avc: denied { write } for pid=7154 comm="syz.4.1749" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 61.070530][ T7155] EXT4-fs (loop4): Remounting filesystem read-only [ 61.080147][ T28] audit: type=1400 audit(1778882167.832:765): avc: denied { rename } for pid=7154 comm="syz.4.1749" name="file0" dev="loop4" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 61.156384][ T7155] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2860: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 61.332483][ T3294] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 61.509009][ T7216] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 61.580366][ T7221] ip6tnl1: entered allmulticast mode [ 61.842291][ T7256] netlink: 'syz.4.1798': attribute type 1 has an invalid length. [ 61.879875][ T7256] netlink: 'syz.4.1798': attribute type 3 has an invalid length. [ 62.245526][ T7298] netlink: 'syz.3.1818': attribute type 1 has an invalid length. [ 62.375499][ T7317] loop4: detected capacity change from 0 to 512 [ 62.414734][ T7317] ext4: Unknown parameter 'smackfsfloor' [ 62.446151][ T7317] tmpfs: Bad value for 'mpol' [ 62.636402][ T7352] __nla_validate_parse: 87 callbacks suppressed [ 62.636419][ T7352] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1845'. [ 62.807364][ T7381] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1858'. [ 62.817383][ T7384] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1859'. [ 62.990599][ T7414] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1877'. [ 63.067827][ T7422] bond2: entered allmulticast mode [ 63.073329][ T7422] 8021q: adding VLAN 0 to HW filter on device bond2 [ 63.364389][ T7472] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1904'. [ 63.411468][ T7472] ip6tnl3: entered allmulticast mode [ 63.513452][ T7497] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1916'. [ 63.622570][ T7517] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1927'. [ 63.640653][ T7517] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1927'. [ 63.664170][ T7523] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1930'. [ 63.763677][ T7538] netlink: 830 bytes leftover after parsing attributes in process `syz.4.1936'. [ 63.786295][ T7540] xt_TPROXY: Can be used only with -p tcp or -p udp [ 63.824000][ T7544] netlink: 'syz.2.1940': attribute type 11 has an invalid length. [ 63.855246][ T7546] bond1: entered allmulticast mode [ 63.861302][ T7546] 8021q: adding VLAN 0 to HW filter on device bond1 [ 63.869344][ T7549] netlink: 'syz.0.1951': attribute type 4 has an invalid length. [ 64.081602][ T7575] Illegal XDP return value 4294967282 on prog (id 46) dev N/A, expect packet loss! [ 64.144245][ T7581] netlink: 'syz.1.1958': attribute type 10 has an invalid length. [ 64.158816][ T7585] SET target dimension over the limit! [ 64.180920][ T7581] team0 (unregistering): Port device team_slave_0 removed [ 64.203054][ T7581] team0 (unregistering): Port device team_slave_1 removed [ 64.216389][ T7581] team0 (unregistering): Port device bond0 removed [ 64.369619][ T7602] netlink: 'syz.2.1968': attribute type 32 has an invalid length. [ 64.457830][ T7606] loop2: detected capacity change from 0 to 2048 [ 64.517890][ T7606] Alternate GPT is invalid, using primary GPT. [ 64.535685][ T7606] loop2: p1 p2 p3 [ 64.551427][ T7606] loop2: partition table partially beyond EOD, truncated [ 64.729778][ T7632] can0: slcan on ptm0. [ 64.751175][ T4077] udevd[4077]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 64.755225][ T3287] udevd[3287]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 64.777851][ T3261] udevd[3261]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 64.847063][ T7631] can0 (unregistered): slcan off ptm0. [ 65.222312][ T7689] openvswitch: netlink: ufid size 36 bytes exceeds the range (1, 16) [ 65.235695][ T7689] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 65.244482][ T7691] netlink: 'syz.0.2012': attribute type 5 has an invalid length. [ 65.507327][ T28] kauditd_printk_skb: 62 callbacks suppressed [ 65.507345][ T28] audit: type=1400 audit(1778882172.322:828): avc: denied { ioctl } for pid=7729 comm="syz.0.2032" path="socket:[18800]" dev="sockfs" ino=18800 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 65.590329][ T28] audit: type=1326 audit(1778882172.372:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7737 comm="syz.4.2035" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7916a3ce59 code=0x7ffc0000 [ 65.662211][ T28] audit: type=1326 audit(1778882172.372:830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7737 comm="syz.4.2035" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7916a3ce59 code=0x7ffc0000 [ 65.718458][ T28] audit: type=1326 audit(1778882172.382:831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7737 comm="syz.4.2035" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=136 compat=0 ip=0x7f7916a3ce59 code=0x7ffc0000 [ 65.749453][ T7762] netlink: 'syz.0.2046': attribute type 1 has an invalid length. [ 65.781735][ T28] audit: type=1326 audit(1778882172.382:832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7737 comm="syz.4.2035" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7916a3ce59 code=0x7ffc0000 [ 65.840794][ T28] audit: type=1326 audit(1778882172.382:833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7737 comm="syz.4.2035" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7916a3ce59 code=0x7ffc0000 [ 65.904155][ T28] audit: type=1400 audit(1778882172.462:834): avc: denied { create } for pid=7749 comm="syz.1.2041" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 65.972478][ T28] audit: type=1400 audit(1778882172.462:835): avc: denied { write } for pid=7749 comm="syz.1.2041" path="socket:[18207]" dev="sockfs" ino=18207 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 66.003101][ T28] audit: type=1400 audit(1778882172.502:836): avc: denied { read } for pid=7755 comm="syz.2.2044" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 66.056999][ T7795] netlink: 'syz.2.2063': attribute type 4 has an invalid length. [ 66.065627][ T28] audit: type=1400 audit(1778882172.692:837): avc: denied { connect } for pid=7773 comm="syz.2.2053" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 66.089109][ T7796] xt_TPROXY: Can be used only with -p tcp or -p udp [ 66.146373][ T7807] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 66.153215][ T7807] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 66.201850][ T7807] vhci_hcd vhci_hcd.0: Device attached [ 66.242297][ T7816] vhci_hcd vhci_hcd.0: port 0 already used [ 66.258886][ T7809] vhci_hcd: connection closed [ 66.259090][ T82] vhci_hcd vhci_hcd.0: stop threads [ 66.286005][ T82] vhci_hcd vhci_hcd.0: release socket [ 66.300306][ T82] vhci_hcd vhci_hcd.0: disconnect device [ 66.309188][ T7833] netlink: 'syz.3.2080': attribute type 10 has an invalid length. [ 66.311414][ T7837] netlink: 'syz.1.2082': attribute type 3 has an invalid length. [ 66.341356][ T7833] team0: left promiscuous mode [ 66.347505][ T7833] team_slave_0: left promiscuous mode [ 66.365197][ T7833] team_slave_1: left promiscuous mode [ 66.371215][ T7833] bond0: left promiscuous mode [ 66.377190][ T7833] bond_slave_0: left promiscuous mode [ 66.382977][ T7833] bond_slave_1: left promiscuous mode [ 66.399677][ T7833] 8021q: adding VLAN 0 to HW filter on device team0 [ 66.542734][ T7865] can0: slcan on ptm0. [ 66.597564][ T7864] can0 (unregistered): slcan off ptm0. [ 66.692430][ T7890] tc_dump_action: action bad kind [ 66.807981][ T7911] netlink: 'syz.0.2114': attribute type 29 has an invalid length. [ 66.839883][ T7912] usb usb8: usbfs: process 7912 (syz.3.2113) did not claim interface 0 before use [ 67.294003][ T7990] bond3: option arp_missed_max: mode dependency failed, not supported in mode balance-tlb(5) [ 67.318330][ T7990] bond3 (unregistering): Released all slaves [ 67.341349][ T7995] ip6erspan1: entered promiscuous mode [ 68.035671][ T8066] __nla_validate_parse: 18 callbacks suppressed [ 68.035702][ T8066] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2181'. [ 68.104999][ T8066] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2181'. [ 68.607581][ T8091] netdevsim netdevsim3 netdevsim0: entered allmulticast mode [ 68.755293][ T8105] IPv6: NLM_F_CREATE should be specified when creating new route [ 68.875529][ T8123] validate_nla: 2 callbacks suppressed [ 68.875548][ T8123] netlink: 'syz.2.2208': attribute type 15 has an invalid length. [ 68.921559][ T8123] netlink: 666 bytes leftover after parsing attributes in process `syz.2.2208'. [ 69.118859][ T8158] netlink: 1392 bytes leftover after parsing attributes in process `syz.0.2226'. [ 69.230701][ T8167] netlink: 4388 bytes leftover after parsing attributes in process `syz.4.2231'. [ 69.276390][ T8167] netlink: 4388 bytes leftover after parsing attributes in process `syz.4.2231'. [ 69.359058][ T8188] netlink: 666 bytes leftover after parsing attributes in process `syz.3.2241'. [ 69.531068][ T8206] loop1: detected capacity change from 0 to 2048 [ 69.568580][ T8206] loop1: p1 p4 [ 69.581851][ T8206] loop1: p4 size 589824 extends beyond EOD, truncated [ 69.706244][ T8230] gtp0: entered promiscuous mode [ 69.724856][ T8230] gtp0: entered allmulticast mode [ 69.884053][ T8260] loop0: detected capacity change from 0 to 512 [ 69.904019][ T8264] netlink: 196 bytes leftover after parsing attributes in process `syz.2.2278'. [ 69.929206][ T8260] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.2277: Invalid inode bitmap blk 4 in block_group 0 [ 69.949634][ T8272] loop4: detected capacity change from 0 to 164 [ 69.956444][ T8272] iso9660: Bad value for 'check' [ 69.962214][ T8270] IPv6: sit1: Disabled Multicast RS [ 69.970889][ T8260] loop0: lost filesystem error report for type 5 error -117 [ 69.975741][ T8274] ip6t_rpfilter: unknown options [ 69.989002][ T8260] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 70.038685][ T8260] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 7969 vs 220 free clusters [ 70.082938][ T8260] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.2277: Invalid inode bitmap blk 4 in block_group 0 [ 70.096375][ T8260] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem [ 70.153258][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 70.240883][ T8304] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2298'. [ 70.251175][ T8301] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2296'. [ 70.285110][ T8306] loop0: detected capacity change from 0 to 136 [ 70.319668][ T8306] Attempt to read inode for relocated directory [ 70.497256][ T8332] loop0: detected capacity change from 0 to 128 [ 70.527109][ T8332] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 70.552302][ T8332] ext4 filesystem being mounted at /436/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 70.619767][ T3301] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 70.756263][ T8367] netlink: 'syz.4.2326': attribute type 13 has an invalid length. [ 70.768145][ T8367] netlink: 'syz.4.2326': attribute type 12 has an invalid length. [ 71.248192][ T8449] xt_TCPMSS: Only works on TCP SYN packets [ 71.632438][ T8534] bridge2: entered promiscuous mode [ 72.019456][ T28] kauditd_printk_skb: 74 callbacks suppressed [ 72.019473][ T28] audit: type=1400 audit(1778882178.832:912): avc: denied { create } for pid=8593 comm="syz.0.2379" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 72.050836][ T28] audit: type=1400 audit(1778882178.862:913): avc: denied { connect } for pid=8593 comm="syz.0.2379" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 72.074185][ T28] audit: type=1326 audit(1778882178.882:914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8597 comm="syz.1.2381" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b9382ce59 code=0x7ffc0000 [ 72.132224][ T8603] xt_l2tp: v2 sid > 0xffff: 4294901760 [ 72.160198][ T28] audit: type=1326 audit(1778882178.882:915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8597 comm="syz.1.2381" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b9382ce59 code=0x7ffc0000 [ 72.217776][ T28] audit: type=1326 audit(1778882178.882:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8597 comm="syz.1.2381" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b9382ce59 code=0x7ffc0000 [ 72.260966][ T8614] loop4: detected capacity change from 0 to 512 [ 72.278325][ T8614] EXT4-fs: Ignoring removed nobh option [ 72.286052][ T8614] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 72.303378][ T28] audit: type=1326 audit(1778882178.892:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8597 comm="syz.1.2381" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=155 compat=0 ip=0x7f0b9382ce59 code=0x7ffc0000 [ 72.329909][ T8628] batadv1: entered promiscuous mode [ 72.338998][ T8628] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 72.368740][ T28] audit: type=1326 audit(1778882178.892:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8597 comm="syz.1.2381" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b9382ce59 code=0x7ffc0000 [ 72.389907][ T8614] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 72.407055][ T28] audit: type=1326 audit(1778882178.892:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8597 comm="syz.1.2381" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b9382ce59 code=0x7ffc0000 [ 72.441710][ T28] audit: type=1326 audit(1778882178.892:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8597 comm="syz.1.2381" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b9382ce59 code=0x7ffc0000 [ 72.468669][ T8637] loop1: detected capacity change from 0 to 164 [ 72.468701][ T28] audit: type=1326 audit(1778882178.892:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8597 comm="syz.1.2381" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f0b9382ce59 code=0x7ffc0000 [ 72.497321][ T8644] netlink: 'syz.0.2403': attribute type 5 has an invalid length. [ 72.508787][ T8614] EXT4-fs (loop4): 1 truncate cleaned up [ 72.523396][ T8614] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 72.610551][ T3294] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 72.785737][ T8681] netlink: 'syz.1.2421': attribute type 15 has an invalid length. [ 72.818008][ T8686] loop4: detected capacity change from 0 to 128 [ 72.856307][ T8691] ip6t_srh: unknown srh invflags 4000 [ 72.867738][ T8686] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x61417272 (sector = 1) [ 72.947390][ T8514] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x61417272 (sector = 1) [ 73.018454][ T8708] xt_CT: You must specify a L4 protocol and not use inversions on it [ 73.094244][ T8719] A link change request failed with some changes committed already. Interface wg1 may have been left with an inconsistent configuration, please check. [ 73.177209][ T8730] __nla_validate_parse: 3 callbacks suppressed [ 73.177228][ T8730] netlink: 112 bytes leftover after parsing attributes in process `syz.0.2446'. [ 73.244907][ T8730] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2446'. [ 73.275385][ T8730] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2446'. [ 73.290656][ T8747] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2453'. [ 73.293702][ T8730] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2446'. [ 73.309452][ T8749] netlink: 'syz.1.2455': attribute type 1 has an invalid length. [ 73.317483][ T8749] netlink: 244 bytes leftover after parsing attributes in process `syz.1.2455'. [ 73.320742][ T8747] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2453'. [ 73.357335][ T8755] loop2: detected capacity change from 0 to 512 [ 73.388646][ T8755] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 73.408243][ T8755] ext4 filesystem being mounted at /502/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 73.477784][ T3295] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 73.510659][ T8776] geneve1: entered promiscuous mode [ 73.775846][ T8814] netlink: 14 bytes leftover after parsing attributes in process `syz.3.2485'. [ 73.815015][ T8822] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2489'. [ 73.833389][ T8822] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2489'. [ 74.098632][ T8863] team0: entered promiscuous mode [ 74.118703][ T8863] team_slave_0: entered promiscuous mode [ 74.126352][ T8863] team_slave_1: entered promiscuous mode [ 74.137635][ T8863] bond0: entered promiscuous mode [ 74.152618][ T8863] bond_slave_0: entered promiscuous mode [ 74.158910][ T8863] bond_slave_1: entered promiscuous mode [ 74.166021][ T8863] 8021q: adding VLAN 0 to HW filter on device team0 [ 74.179751][ T8863] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 74.290070][ T8893] netlink: 'syz.0.2524': attribute type 10 has an invalid length. [ 74.365975][ T8901] netlink: 'syz.3.2528': attribute type 2 has an invalid length. [ 74.438931][ T8912] ieee802154 phy0 wpan0: encryption failed: -22 [ 74.607024][ T8941] netdevsim netdevsim0: Firmware load for './file0/../file0/file0' refused, path contains '..' component [ 74.651057][ T8947] netlink: 'syz.3.2551': attribute type 39 has an invalid length. [ 74.662933][ T8949] loop4: detected capacity change from 0 to 764 [ 74.707437][ T8949] Symlink component flag not implemented [ 74.726331][ T8949] Symlink component flag not implemented (15) [ 74.747636][ T8959] loop1: detected capacity change from 0 to 1764 [ 75.218366][ T9034] netlink: 'syz.0.2594': attribute type 5 has an invalid length. [ 75.575798][ T9099] random: crng reseeded on system resumption [ 76.126051][ T9176] loop3: detected capacity change from 0 to 256 [ 76.379978][ T9209] loop1: detected capacity change from 0 to 2048 [ 76.406186][ T9217] loop4: detected capacity change from 0 to 164 [ 76.431544][ T9217] rock: corrupted directory entry. extent=458780 out of volume (nzones=41) [ 76.453022][ T9217] rock: corrupted directory entry. extent=458780 out of volume (nzones=41) [ 76.465442][ T9209] loop1: p1 < > p4 [ 76.476436][ T9209] loop1: p4 size 722688 extends beyond EOD, truncated [ 76.489603][ T9217] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 76.612526][ T3287] udevd[3287]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 76.613055][ T4077] udevd[4077]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 76.710537][ T9252] netdevsim netdevsim0 netdevsim0: entered allmulticast mode [ 77.657175][ T28] kauditd_printk_skb: 40 callbacks suppressed [ 77.657259][ T28] audit: type=1400 audit(1778882184.472:962): avc: denied { setopt } for pid=9374 comm="syz.0.2761" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 78.019320][ T28] audit: type=1400 audit(1778882184.822:963): avc: denied { getopt } for pid=9422 comm="syz.2.2786" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 78.195446][ T28] audit: type=1400 audit(1778882185.002:964): avc: denied { read } for pid=9445 comm="syz.0.2796" name="msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 78.243106][ T9449] netlink: 'syz.4.2799': attribute type 7 has an invalid length. [ 78.249971][ T28] audit: type=1400 audit(1778882185.002:965): avc: denied { open } for pid=9445 comm="syz.0.2796" path="/dev/cpu/0/msr" dev="devtmpfs" ino=85 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1 [ 78.252607][ T9452] netlink: 'syz.3.2798': attribute type 1 has an invalid length. [ 78.286032][ T28] audit: type=1400 audit(1778882185.092:966): avc: denied { bind } for pid=9453 comm="syz.1.2800" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 78.306230][ T9449] netlink: 'syz.4.2799': attribute type 8 has an invalid length. [ 78.322537][ T9452] __nla_validate_parse: 26 callbacks suppressed [ 78.322556][ T9452] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2798'. [ 78.332838][ T28] audit: type=1326 audit(1778882185.142:967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9456 comm="syz.1.2802" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b9382ce59 code=0x7ffc0000 [ 78.383476][ T28] audit: type=1326 audit(1778882185.142:968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9456 comm="syz.1.2802" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b9382ce59 code=0x7ffc0000 [ 78.454242][ T9466] netlink: 188 bytes leftover after parsing attributes in process `syz.2.2806'. [ 78.471364][ T28] audit: type=1326 audit(1778882185.142:969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9456 comm="syz.1.2802" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b9382ce59 code=0x7ffc0000 [ 78.542678][ T28] audit: type=1326 audit(1778882185.142:970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9456 comm="syz.1.2802" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7f0b9382ce59 code=0x7ffc0000 [ 78.571590][ T28] audit: type=1326 audit(1778882185.142:971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9456 comm="syz.1.2802" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b9382ce59 code=0x7ffc0000 [ 79.120918][ T9575] netlink: 'syz.3.2859': attribute type 4 has an invalid length. [ 79.157377][ T9575] netlink: 17 bytes leftover after parsing attributes in process `syz.3.2859'. [ 79.348147][ T9612] netlink: 'syz.2.2877': attribute type 21 has an invalid length. [ 79.395897][ T9612] netlink: 156 bytes leftover after parsing attributes in process `syz.2.2877'. [ 79.527278][ T9640] syz.0.2891 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 79.560368][ T9648] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2894'. [ 79.687878][ T9667] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2905'. [ 79.806296][ T9684] netlink: 'syz.3.2913': attribute type 28 has an invalid length. [ 79.824409][ T9684] netlink: 'syz.3.2913': attribute type 29 has an invalid length. [ 79.839999][ T9684] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2913'. [ 79.850160][ T9689] netlink: 'syz.1.2915': attribute type 15 has an invalid length. [ 80.048250][ T9717] xt_hl: Unknown Hop Limit match mode: 221 [ 80.116072][ T9729] binfmt_misc: register: failed to install interpreter file ./file0 [ 80.132676][ T9731] netlink: 'syz.1.2936': attribute type 21 has an invalid length. [ 80.156305][ T9731] netlink: 'syz.1.2936': attribute type 1 has an invalid length. [ 80.172787][ T9738] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2939'. [ 80.174912][ T9731] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2936'. [ 80.226640][ T9742] openvswitch: netlink: Message has 8 unknown bytes. [ 80.229114][ T9744] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2942'. [ 80.290056][ T9751] bond5: option lacp_active: mode dependency failed, not supported in mode balance-rr(0) [ 80.311885][ T9751] bond5 (unregistering): Released all slaves [ 80.742199][ T9824] Invalid option length (0) for dns_resolver key [ 80.882509][ T9845] netlink: 'syz.1.2992': attribute type 3 has an invalid length. [ 80.890773][ T9845] netlink: 'syz.1.2992': attribute type 1 has an invalid length. [ 81.079394][ T9875] netlink: 'syz.3.3003': attribute type 3 has an invalid length. [ 81.097153][ T9875] netlink: 'syz.3.3003': attribute type 16 has an invalid length. [ 81.205436][ T9894] macvtap0: entered promiscuous mode [ 81.307380][ T9910] xt_hashlimit: max too large, truncated to 1048576 [ 81.330921][ T9910] xt_hashlimit: overflow, rate too high: 0 [ 81.394050][ T9921] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING [ 81.607576][ T9953] bridge3: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 81.782974][ T9982] loop1: detected capacity change from 0 to 1024 [ 81.800189][ T9982] EXT4-fs (loop1): stripe (4) is not aligned with cluster size (4096), stripe is disabled [ 81.839007][ T9982] EXT4-fs error (device loop1): ext4_map_blocks:791: inode #3: block 2: comm syz.1.3059: lblock 2 mapped to illegal pblock 2 (length 1) [ 81.871742][ T9982] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 81.871891][ T9982] EXT4-fs error (device loop1): ext4_map_blocks:791: inode #3: block 48: comm syz.1.3059: lblock 0 mapped to illegal pblock 48 (length 1) [ 81.881242][ C1] EXT4-fs (loop1): error count since last fsck: 1 [ 81.881265][ C1] EXT4-fs (loop1): initial error at time 1778882188: ext4_map_blocks:791: inode 3: block 2 [ 81.881301][ C1] EXT4-fs (loop1): last error at time 1778882188: ext4_map_blocks:791: inode 3: block 2 [ 81.923030][ T9982] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 81.924409][ T9982] EXT4-fs error (device loop1): ext4_acquire_dquot:7034: comm syz.1.3059: Failed to acquire dquot type 0 [ 81.947200][ T9982] loop1: lost filesystem error report for type 5 error -117 [ 81.948859][ T9982] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 81.965881][ T9982] loop1: lost filesystem error report for type 5 error -117 [ 81.968589][ T9982] EXT4-fs error (device loop1): ext4_evict_inode:267: inode #11: comm syz.1.3059: mark_inode_dirty error [ 81.987572][ T9982] loop1: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 81.988982][ T9982] EXT4-fs warning (device loop1): ext4_evict_inode:270: couldn't mark inode dirty (err -117) [ 82.016219][ T9982] EXT4-fs (loop1): 1 orphan inode deleted [ 82.023335][ T9982] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 82.036232][ T36] EXT4-fs error (device loop1): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1) [ 82.060730][T10013] loop2: detected capacity change from 0 to 512 [ 82.070736][ T36] EXT4-fs error (device loop1): ext4_release_dquot:7070: comm kworker/u8:2: Failed to release dquot type 0 [ 82.098660][T10013] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 0, start 22000003) [ 82.098774][ T9982] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 82.118659][T10013] FAT-fs (loop2): Filesystem has been set read-only [ 82.148473][ T9982] EXT4-fs error (device loop1): __ext4_get_inode_loc:4885: comm syz.1.3059: Invalid inode table block 1 in block_group 0 [ 82.171743][ T9982] loop1: lost filesystem error report for type 5 error -117 [ 82.171898][ T9982] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 82.227655][ T9982] loop1: lost filesystem error report for type 5 error -117 [ 82.228347][ T9982] EXT4-fs error (device loop1): ext4_quota_off:7318: inode #3: comm syz.1.3059: mark_inode_dirty error [ 82.256601][ T9982] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 82.698785][T10097] xt_l2tp: missing protocol rule (udp|l2tpip) [ 82.796342][ T28] kauditd_printk_skb: 62 callbacks suppressed [ 82.796436][ T28] audit: type=1326 audit(1778882189.602:1031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10109 comm="syz.2.3123" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f131a45ce59 code=0x7ffc0000 [ 82.852254][T10113] Cannot find add_set index 65532 as target [ 82.915998][ T28] audit: type=1326 audit(1778882189.642:1032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10109 comm="syz.2.3123" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f131a45ce59 code=0x7ffc0000 [ 82.954262][ T28] audit: type=1326 audit(1778882189.642:1033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10109 comm="syz.2.3123" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f131a45ce59 code=0x7ffc0000 [ 83.007124][T10127] veth0_to_bridge: entered allmulticast mode [ 83.010371][ T28] audit: type=1326 audit(1778882189.642:1034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10109 comm="syz.2.3123" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f131a45ce59 code=0x7ffc0000 [ 83.074666][T10137] loop2: detected capacity change from 0 to 128 [ 83.101231][T10137] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 83.118598][T10137] ext4 filesystem being mounted at /603/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 83.130380][T10144] netdevsim netdevsim3 netdevsim0: entered promiscuous mode [ 83.138379][ T28] audit: type=1326 audit(1778882189.642:1035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10109 comm="syz.2.3123" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7f131a45ce59 code=0x7ffc0000 [ 83.165811][ T28] audit: type=1326 audit(1778882189.642:1036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10109 comm="syz.2.3123" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f131a45ce59 code=0x7ffc0000 [ 83.187990][T10144] netdevsim netdevsim3 netdevsim0: left allmulticast mode [ 83.197964][ T28] audit: type=1326 audit(1778882189.642:1037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10109 comm="syz.2.3123" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f131a45ce59 code=0x7ffc0000 [ 83.227028][ T28] audit: type=1326 audit(1778882189.652:1038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10109 comm="syz.2.3123" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f131a45ce59 code=0x7ffc0000 [ 83.253158][ T28] audit: type=1326 audit(1778882189.652:1039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10109 comm="syz.2.3123" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f131a45ce59 code=0x7ffc0000 [ 83.280521][T10144] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 83.293466][ T3295] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 83.312901][ T28] audit: type=1400 audit(1778882190.122:1040): avc: denied { read write } for pid=10147 comm="syz.4.3140" name="qrtr-tun" dev="devtmpfs" ino=257 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 83.455915][T10164] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 83.622834][T10182] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic [ 83.736308][T10196] __nla_validate_parse: 12 callbacks suppressed [ 83.736393][T10196] netlink: 156 bytes leftover after parsing attributes in process `syz.4.3164'. [ 83.764945][T10198] binfmt_misc: register: failed to install interpreter file ./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 83.902600][T10204] loop2: detected capacity change from 0 to 1024 [ 83.948335][T10204] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 84.071539][ T3295] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 84.110135][T10238] netdevsim netdevsim0: Firmware load for './file0/file0/..' refused, path contains '..' component [ 84.171990][T10244] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3189'. [ 84.210040][T10247] Q6`Ҙ: renamed from lo [ 84.290057][T10260] xt_l2tp: v2 tid > 0xffff: 262144 [ 84.381341][T10276] SET target dimension over the limit! [ 84.581571][T10304] loop2: detected capacity change from 0 to 764 [ 84.708474][T10320] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3224'. [ 84.986116][T10354] xt_TCPMSS: Only works on TCP SYN packets [ 85.008435][T10357] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3243'. [ 85.033863][T10352] loop3: detected capacity change from 0 to 4096 [ 85.070314][T10352] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 85.122171][T10373] validate_nla: 5 callbacks suppressed [ 85.122187][T10373] netlink: 'syz.0.3249': attribute type 13 has an invalid length. [ 85.141241][T10373] gretap0: refused to change device tx_queue_len [ 85.153199][T10373] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 85.158240][T10352] EXT4-fs warning (device loop3): ext4_enable_quotas:7269: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 85.228676][T10384] netlink: 'syz.2.3255': attribute type 8 has an invalid length. [ 85.271037][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.280745][T10389] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check. [ 85.386034][T10406] netlink: 'syz.2.3266': attribute type 1 has an invalid length. [ 85.454559][T10413] netlink: 'syz.2.3269': attribute type 21 has an invalid length. [ 85.470166][T10413] netlink: 128 bytes leftover after parsing attributes in process `syz.2.3269'. [ 85.479765][T10413] netlink: 'syz.2.3269': attribute type 4 has an invalid length. [ 85.493743][T10413] netlink: 'syz.2.3269': attribute type 5 has an invalid length. [ 85.520201][T10413] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3269'. [ 85.598522][T10436] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3280'. [ 85.637160][T10436] xfrm1: entered allmulticast mode [ 85.721316][T10446] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3285'. [ 85.741313][T10450] netlink: 'syz.2.3287': attribute type 16 has an invalid length. [ 85.775491][T10450] netlink: 'syz.2.3287': attribute type 17 has an invalid length. [ 85.776683][T10454] IPv6: sit2: Disabled Multicast RS [ 85.810161][T10454] sit2: entered allmulticast mode [ 85.822882][T10450] hsr0: left promiscuous mode [ 85.834467][T10450] hsr0: left allmulticast mode [ 85.855128][T10450] hsr_slave_0: left allmulticast mode [ 85.868099][T10450] hsr_slave_1: left allmulticast mode [ 85.886239][T10450] ip6erspan0: left allmulticast mode [ 85.895379][T10450] bond2: left allmulticast mode [ 86.016247][T10480] netlink: 'syz.1.3302': attribute type 6 has an invalid length. [ 86.186815][T10507] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3313'. [ 86.236143][T10507] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3313'. [ 86.245504][T10514] netlink: 'syz.0.3315': attribute type 8 has an invalid length. [ 86.409929][T10546] IPv6: NLM_F_CREATE should be specified when creating new route [ 86.495934][T10560] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 86.682120][T10592] loop0: detected capacity change from 0 to 128 [ 86.803432][T10611] team0: entered promiscuous mode [ 86.822173][T10611] team_slave_0: entered promiscuous mode [ 86.835335][T10611] team_slave_1: entered promiscuous mode [ 86.843055][T10611] bond0: entered promiscuous mode [ 86.849141][T10613] x_tables: unsorted entry at hook 1 [ 86.849452][T10611] bond_slave_0: entered promiscuous mode [ 86.872240][T10611] bond_slave_1: entered promiscuous mode [ 86.882681][T10611] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 87.126928][T10649] loop3: detected capacity change from 0 to 164 [ 87.152062][T10649] syz.3.3369: attempt to access beyond end of device [ 87.152062][T10649] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 87.175314][T10649] syz.3.3369: attempt to access beyond end of device [ 87.175314][T10649] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 87.270927][T10661] loop0: detected capacity change from 0 to 128 [ 87.598605][T10699] loop0: detected capacity change from 0 to 512 [ 87.632242][T10699] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 0 overlaps superblock [ 87.632634][T10704] __vm_enough_memory: pid: 10704, comm: syz.3.3398, bytes: 4503599627366400 not enough memory for the allocation [ 87.652879][T10699] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 0 not in group (block 1)! [ 87.687456][T10699] EXT4-fs (loop0): group descriptors corrupted! [ 87.769208][T10721] team0: left promiscuous mode [ 87.784468][T10721] team_slave_0: left promiscuous mode [ 87.793401][T10721] team_slave_1: left promiscuous mode [ 87.802669][T10721] bond0: left promiscuous mode [ 87.807731][T10721] bond_slave_0: left promiscuous mode [ 87.815622][T10721] bond_slave_1: left promiscuous mode [ 87.824189][T10721] vlan0: left promiscuous mode [ 87.829711][T10721] macvtap0: left promiscuous mode [ 87.842163][T10721] netdevsim netdevsim0 netdevsim0: left allmulticast mode [ 87.850124][T10721] ip6erspan1: left allmulticast mode [ 87.873097][T10721] bridge2: left promiscuous mode [ 87.886666][T10721] bridge2: left allmulticast mode [ 87.907374][T10738] Cannot find del_set index 4 as target [ 87.935645][T10721] xfrm1: left allmulticast mode [ 87.954061][T10722] geneve0: entered promiscuous mode [ 87.974377][T10722] geneve0: entered allmulticast mode [ 88.019828][ T28] kauditd_printk_skb: 109 callbacks suppressed [ 88.019846][ T28] audit: type=1400 audit(1778882194.826:1150): avc: denied { mount } for pid=10749 comm="syz.2.3420" name="/" dev="gadgetfs" ino=3884 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 88.030304][T10752] raw_sendmsg: syz.1.3421 forgot to set AF_INET. Fix it! [ 88.177465][T10766] xt_connbytes: Forcing CT accounting to be enabled [ 88.212137][ T28] audit: type=1400 audit(1778882195.016:1151): avc: denied { validate_trans } for pid=10776 comm="syz.4.3433" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 88.734678][ T28] audit: type=1400 audit(1778882195.536:1152): avc: denied { getopt } for pid=10851 comm="syz.1.3470" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 88.803581][T10861] __nla_validate_parse: 8 callbacks suppressed [ 88.803600][T10861] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3473'. [ 89.277760][T10911] 8021q: adding VLAN 0 to HW filter on device bond0 [ 89.440360][ T5302] ip6_tunnel: ip6erspan0 xmit: Local address not yet configured! [ 89.608404][ T8502] ip6_tunnel: ip6erspan0 xmit: Local address not yet configured! [ 89.735884][T10958] tipc: Trying to set illegal importance in message [ 89.743043][ T28] audit: type=1400 audit(1778882196.545:1153): avc: denied { setopt } for pid=10956 comm="syz.4.3521" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 89.824304][T10963] netlink: 68 bytes leftover after parsing attributes in process `syz.4.3524'. [ 90.054617][ T28] audit: type=1400 audit(1778882196.865:1154): avc: denied { ioctl } for pid=10982 comm="syz.0.3534" path="socket:[28606]" dev="sockfs" ino=28606 ioctlcmd=0x8916 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 90.118642][ T5302] ip6_tunnel: ip6erspan0 xmit: Local address not yet configured! [ 90.148506][T10991] netlink: 8752 bytes leftover after parsing attributes in process `syz.1.3538'. [ 90.170218][ T28] audit: type=1400 audit(1778882196.975:1155): avc: denied { setopt } for pid=10994 comm="syz.4.3540" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 90.244332][T11001] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3542'. [ 90.551232][T11041] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3563'. [ 90.673772][ T28] audit: type=1326 audit(1778882197.485:1156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11054 comm="syz.1.3570" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b9382ce59 code=0x7ffc0000 [ 90.701292][ T8514] ip6_tunnel: ip6erspan0 xmit: Local address not yet configured! [ 90.727414][ T28] audit: type=1326 audit(1778882197.485:1157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11054 comm="syz.1.3570" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b9382ce59 code=0x7ffc0000 [ 90.738325][ T8514] ip6_tunnel: ip6erspan0 xmit: Local address not yet configured! [ 90.768763][ T28] audit: type=1326 audit(1778882197.515:1158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11054 comm="syz.1.3570" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b9382ce59 code=0x7ffc0000 [ 90.834872][ T28] audit: type=1326 audit(1778882197.515:1159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11054 comm="syz.1.3570" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b9382ce59 code=0x7ffc0000 [ 90.869015][T11071] validate_nla: 9 callbacks suppressed [ 90.869034][T11071] netlink: 'syz.2.3578': attribute type 27 has an invalid length. [ 90.891036][T11071] netlink: 164 bytes leftover after parsing attributes in process `syz.2.3578'. [ 91.063690][T11094] geneve2: entered promiscuous mode [ 91.076678][T11094] geneve2: entered allmulticast mode [ 91.228819][T11117] netlink: 144 bytes leftover after parsing attributes in process `syz.4.3599'. [ 91.348770][ T3398] ip6_tunnel: ip6erspan0 xmit: Local address not yet configured! [ 91.520355][T11164] wg1: entered promiscuous mode [ 91.537683][T11164] wg1: entered allmulticast mode [ 91.550462][T11168] xt_AUDIT: Audit type out of range (valid range: 0..2) [ 91.647673][T11183] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3632'. [ 91.835207][T11211] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3644'. [ 91.900209][T11219] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3647'. [ 92.225257][T11266] loop3: detected capacity change from 0 to 1024 [ 92.249455][T11266] EXT4-fs (loop3): stripe (4) is not aligned with cluster size (4096), stripe is disabled [ 92.278068][T11266] EXT4-fs error (device loop3): ext4_map_blocks:791: inode #3: block 2: comm syz.3.3672: lblock 2 mapped to illegal pblock 2 (length 1) [ 92.294317][T11266] loop3: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 92.297445][T11266] EXT4-fs error (device loop3): ext4_map_blocks:791: inode #3: block 48: comm syz.3.3672: lblock 0 mapped to illegal pblock 48 (length 1) [ 92.306558][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 92.306582][ C1] EXT4-fs (loop3): initial error at time 1778882199: ext4_map_blocks:791: inode 3: block 2 [ 92.306627][ C1] EXT4-fs (loop3): last error at time 1778882199: ext4_map_blocks:791: inode 3: block 2 [ 92.347634][T11266] loop3: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 92.349138][T11266] EXT4-fs error (device loop3): ext4_acquire_dquot:7034: comm syz.3.3672: Failed to acquire dquot type 0 [ 92.369693][T11266] loop3: lost filesystem error report for type 5 error -117 [ 92.379443][T11266] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 92.396283][T11266] loop3: lost filesystem error report for type 5 error -117 [ 92.399652][T11266] EXT4-fs error (device loop3): ext4_evict_inode:267: inode #11: comm syz.3.3672: mark_inode_dirty error [ 92.431413][T11266] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 92.432303][T11266] EXT4-fs warning (device loop3): ext4_evict_inode:270: couldn't mark inode dirty (err -117) [ 92.478102][T11266] EXT4-fs (loop3): 1 orphan inode deleted [ 92.489392][T11266] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 92.489625][ T8517] EXT4-fs error (device loop3): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:18: lblock 1 mapped to illegal pblock 1 (length 1) [ 92.538298][ T8517] EXT4-fs error (device loop3): ext4_release_dquot:7070: comm kworker/u8:18: Failed to release dquot type 0 [ 92.586796][T11314] IPVS: set_ctl: invalid protocol: 51 100.1.1.0:20003 [ 92.603010][T11266] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 92.625857][T11266] EXT4-fs error (device loop3): __ext4_get_inode_loc:4885: comm syz.3.3672: Invalid inode table block 1 in block_group 0 [ 92.650031][T11324] xt_SECMARK: invalid security context 'system_u:object_r:initctl_t:s0' [ 92.666723][T11266] loop3: lost filesystem error report for type 5 error -117 [ 92.666834][T11266] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 92.706221][T11266] loop3: lost filesystem error report for type 5 error -117 [ 92.706391][T11266] EXT4-fs error (device loop3): ext4_quota_off:7318: inode #3: comm syz.3.3672: mark_inode_dirty error [ 92.751058][T11266] loop3: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 92.760886][T11334] netlink: 'syz.0.3700': attribute type 1 has an invalid length. [ 92.864908][T11351] netlink: 'syz.1.3708': attribute type 2 has an invalid length. [ 93.029960][T11375] loop2: detected capacity change from 0 to 1024 [ 93.068391][T11375] EXT4-fs (loop2): stripe (4) is not aligned with cluster size (4096), stripe is disabled [ 93.114327][T11375] EXT4-fs error (device loop2): ext4_map_blocks:791: inode #3: block 2: comm syz.2.3720: lblock 2 mapped to illegal pblock 2 (length 1) [ 93.139148][T11375] loop2: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 93.139275][T11375] __quota_error: 55 callbacks suppressed [ 93.139296][T11375] Quota error (device loop2): qtree_write_dquot: dquota write failed [ 93.154154][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 93.154172][ C1] EXT4-fs (loop2): initial error at time 1778882199: ext4_map_blocks:791: inode 3: block 2 [ 93.154203][ C1] EXT4-fs (loop2): last error at time 1778882199: ext4_map_blocks:791: inode 3: block 2 [ 93.189169][T11375] EXT4-fs error (device loop2): ext4_map_blocks:791: inode #3: block 48: comm syz.2.3720: lblock 0 mapped to illegal pblock 48 (length 1) [ 93.205745][T11375] loop2: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 93.206086][T11375] Quota error (device loop2): v2_write_file_info: Can't write info structure [ 93.224486][T11375] EXT4-fs error (device loop2): ext4_acquire_dquot:7034: comm syz.2.3720: Failed to acquire dquot type 0 [ 93.236010][T11375] loop2: lost filesystem error report for type 5 error -117 [ 93.236144][T11375] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 93.253698][T11375] loop2: lost filesystem error report for type 5 error -117 [ 93.259590][ T28] audit: type=1326 audit(1778882200.055:1212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11389 comm="syz.3.3727" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74e158ce59 code=0x7ffc0000 [ 93.289298][T11375] EXT4-fs error (device loop2): ext4_evict_inode:267: inode #11: comm syz.2.3720: mark_inode_dirty error [ 93.332214][T11375] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 93.332352][T11375] EXT4-fs warning (device loop2): ext4_evict_inode:270: couldn't mark inode dirty (err -117) [ 93.353686][T11394] netlink: 'syz.3.3729': attribute type 1 has an invalid length. [ 93.362340][ T28] audit: type=1326 audit(1778882200.055:1213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11389 comm="syz.3.3727" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74e158ce59 code=0x7ffc0000 [ 93.399799][T11375] EXT4-fs (loop2): 1 orphan inode deleted [ 93.409296][ T36] EXT4-fs error (device loop2): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1) [ 93.414199][ T28] audit: type=1326 audit(1778882200.055:1214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11389 comm="syz.3.3727" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74e158ce59 code=0x7ffc0000 [ 93.451761][T11375] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 93.484032][ T36] loop2: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 93.485218][ T36] Quota error (device loop2): remove_tree: Can't read quota data block 1 [ 93.505151][ T28] audit: type=1326 audit(1778882200.055:1215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11389 comm="syz.3.3727" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=67 compat=0 ip=0x7f74e158ce59 code=0x7ffc0000 [ 93.516286][T11370] syz.1.3717 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 93.553982][ T36] EXT4-fs error (device loop2): ext4_release_dquot:7070: comm kworker/u8:2: Failed to release dquot type 0 [ 93.573210][T11375] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 93.582673][ T28] audit: type=1326 audit(1778882200.055:1216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11389 comm="syz.3.3727" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74e158ce59 code=0x7ffc0000 [ 93.602962][T11370] CPU: 0 UID: 0 PID: 11370 Comm: syz.1.3717 Not tainted syzkaller #0 PREEMPT(full) [ 93.602993][T11370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 93.603036][T11370] Call Trace: [ 93.603043][T11370] [ 93.603053][T11370] __dump_stack+0x1d/0x30 [ 93.603078][T11370] dump_stack_lvl+0x95/0xd0 [ 93.603099][T11370] dump_stack+0x15/0x1b [ 93.603155][T11370] dump_header+0x80/0x240 [ 93.603178][T11370] oom_kill_process+0x295/0x350 [ 93.603274][T11370] out_of_memory+0x97d/0xb80 [ 93.603337][T11370] try_charge_memcg+0x62f/0xa10 [ 93.603410][T11370] ? radix_tree_lookup+0xfa/0x140 [ 93.603436][T11370] charge_memcg+0x6d/0x120 [ 93.603459][T11370] mem_cgroup_swapin_charge_folio+0xcc/0x150 [ 93.603592][T11370] __swap_cache_prepare_and_add+0x69/0x4a0 [ 93.603617][T11370] ? alloc_pages_mpol+0x217/0x260 [ 93.603642][T11370] swap_cache_alloc_folio+0xa2/0x120 [ 93.603739][T11370] swap_cluster_readahead+0x25f/0x3c0 [ 93.603768][T11370] swapin_readahead+0xde/0x840 [ 93.603829][T11370] ? _raw_spin_unlock+0x9/0x30 [ 93.603873][T11370] ? swap_put_entries_cluster+0x46c/0x490 [ 93.603951][T11370] ? __entry_text_end+0x1d7e8/0x102179 [ 93.603978][T11370] ? __rcu_read_unlock+0x4e/0x70 [ 93.604001][T11370] ? swap_cache_get_folio+0x1e0/0x1f0 [ 93.604059][T11370] do_swap_page+0x31e/0x2180 [ 93.604085][T11370] ? css_rstat_updated+0xbb/0x280 [ 93.604109][T11370] ? __rcu_read_lock+0x36/0x50 [ 93.604177][T11370] ? pte_offset_map_rw_nolock+0x19e/0x200 [ 93.604279][T11370] handle_mm_fault+0xb30/0x2e70 [ 93.604306][T11370] ? vma_start_read+0x1c7/0x2c0 [ 93.604342][T11370] do_user_addr_fault+0x62f/0x1050 [ 93.604446][T11370] ? arch_exit_to_user_mode_prepare+0x26/0x60 [ 93.604471][T11370] ? trace_page_fault_user+0x1f/0xa0 [ 93.604537][T11370] exc_page_fault+0x62/0xa0 [ 93.604561][T11370] asm_exc_page_fault+0x26/0x30 [ 93.604583][T11370] RIP: 0033:0x7f0b937e7fbe [ 93.604601][T11370] Code: 41 51 4c 8d 9b 08 03 00 00 49 89 c9 48 89 f1 41 50 48 8b 74 24 20 49 89 d0 48 89 fa 4c 89 df e8 a8 56 00 00 8b 93 08 03 00 00 <59> 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 [ 93.604671][T11370] RSP: 002b:00007ffc70980870 EFLAGS: 00010246 [ 93.604690][T11370] RAX: 0000000000000000 RBX: 0000555594a5d500 RCX: 00007f0b937ed68e [ 93.604705][T11370] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 93.604719][T11370] RBP: 00007f0b93aa7da0 R08: 0000000000000000 R09: 0000000000000000 [ 93.604733][T11370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000016e56 [ 93.604748][T11370] R13: 00007f0b93aa5fac R14: 0000000000016b51 R15: 00007ffc709809f0 [ 93.604768][T11370] [ 93.618101][T11370] memory: usage 290300kB, limit 307200kB, failcnt 551 [ 93.699580][T11375] EXT4-fs error (device loop2): __ext4_get_inode_loc:4885: comm syz.2.3720: Invalid inode table block 1 in block_group 0 [ 93.760934][T11370] memory+swap: usage 264964kB, limit 9007199254740988kB, failcnt 0 [ 93.789314][ T28] audit: type=1326 audit(1778882200.055:1217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11389 comm="syz.3.3727" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74e158ce59 code=0x7ffc0000 [ 93.825552][T11370] kmem: usage 249620kB, limit 9007199254740988kB, failcnt 0 [ 93.844199][T11410] __nla_validate_parse: 6 callbacks suppressed [ 93.844287][T11410] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3737'. [ 93.849739][T11375] loop2: lost filesystem error report for type 5 error -117 [ 93.903102][ T28] audit: type=1326 audit(1778882200.055:1218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11389 comm="syz.3.3727" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74e158ce59 code=0x7ffc0000 [ 93.975240][T11370] Memory cgroup stats for /syz1: [ 93.975512][T11370] cache 0 [ 93.999416][T11370] rss 24576 [ 94.004974][T11370] shmem 0 [ 94.010779][T11370] mapped_file 0 [ 94.014341][T11370] dirty 0 [ 94.017288][T11370] writeback 0 [ 94.030763][T11370] workingset_refault_anon 57 [ 94.042591][T11370] workingset_refault_file 900 [ 94.051959][T11370] swap 151552 [ 94.061257][T11370] swapcached 430080 [ 94.073220][T11370] pgpgin 54027 [ 94.082105][T11370] pgpgout 54018 [ 94.089364][T11370] pgfault 96144 [ 94.093794][T11418] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3741'. [ 94.099410][T11370] pgmajfault 41 [ 94.119532][T11370] inactive_anon 0 [ 94.124966][T11370] active_anon 36864 [ 94.133235][T11370] inactive_file 0 [ 94.152751][T11370] active_file 0 [ 94.156493][T11370] unevictable 0 [ 94.160391][T11370] hierarchical_memory_limit 314572800 [ 94.169748][T11370] hierarchical_memsw_limit 9223372036854771712 [ 94.178057][T11375] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 94.197649][T11370] total_cache 0 [ 94.201439][T11370] total_rss 24576 [ 94.208922][T11375] loop2: lost filesystem error report for type 5 error -117 [ 94.209139][T11375] EXT4-fs error (device loop2): ext4_quota_off:7318: inode #3: comm syz.2.3720: mark_inode_dirty error [ 94.218004][T11370] total_shmem 0 [ 94.247981][T11375] loop2: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 94.265038][T11370] total_mapped_file 0 [ 94.311021][T11370] total_dirty 0 [ 94.330292][T11370] total_writeback 0 [ 94.343514][T11370] total_workingset_refault_anon 57 [ 94.362776][T11370] total_workingset_refault_file 900 [ 94.382946][T11370] total_swap 151552 [ 94.395187][T11370] total_swapcached 430080 [ 94.408626][T11370] total_pgpgin 54027 [ 94.421376][T11370] total_pgpgout 54018 [ 94.436745][T11370] total_pgfault 96144 [ 94.451584][T11370] total_pgmajfault 41 [ 94.464595][T11370] total_inactive_anon 0 [ 94.478002][T11370] total_active_anon 36864 [ 94.496947][T11370] total_inactive_file 0 [ 94.509565][T11370] total_active_file 0 [ 94.517837][T11370] total_unevictable 0 [ 94.529512][T11456] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3759'. [ 94.530112][T11370] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null) [ 94.544507][T11456] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3759'. [ 94.552359][T11370] ,cpuset= [ 94.560974][T11456] netlink: 'syz.3.3759': attribute type 6 has an invalid length. [ 94.569646][T11370] /,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.3717,pid=11370,uid=0 [ 94.607459][T11370] Memory cgroup out of memory: Killed process 11370 (syz.1.3717) total-vm:94036kB, anon-rss:1256kB, file-rss:22024kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000 [ 94.656215][T11465] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3764'. [ 94.863524][T11486] loop1: detected capacity change from 0 to 4096 [ 94.886497][T11486] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 94.927361][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 94.999621][ C0] ip6_tunnel: ip6erspan0 xmit: Local address not yet configured! [ 95.047197][T11507] loop1: detected capacity change from 0 to 512 [ 95.054887][T11507] EXT4-fs: Ignoring removed oldalloc option [ 95.070598][T11507] EXT4-fs: Ignoring removed orlov option [ 95.094686][T11507] EXT4-fs error (device loop1): ext4_iget_extra_inode:5128: inode #15: comm syz.1.3784: corrupted in-inode xattr: invalid ea_ino [ 95.109770][T11507] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 95.110140][T11507] EXT4-fs (loop1): Remounting filesystem read-only [ 95.125911][ C1] EXT4-fs (loop1): error count since last fsck: 1 [ 95.125933][ C1] EXT4-fs (loop1): initial error at time 1778882201: ext4_iget_extra_inode:5128: inode 15 [ 95.125986][ C1] EXT4-fs (loop1): last error at time 1778882201: ext4_iget_extra_inode:5128: inode 15 [ 95.175207][T11507] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 95.272152][T11534] netlink: 'syz.3.3806': attribute type 64 has an invalid length. [ 95.291589][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 95.317176][T11537] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3809'. [ 95.554822][T11568] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3812'. [ 95.582804][T11570] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3814'. [ 95.626650][T11568] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3812'. [ 95.656831][T11580] loop3: detected capacity change from 0 to 1024 [ 95.704121][T11580] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 95.749137][T11580] EXT4-fs error (device loop3): ext4_xattr_inode_iget:441: inode #11: comm syz.3.3819: missing EA_INODE flag [ 95.773263][T11580] EXT4-fs (loop3): Remounting filesystem read-only [ 96.481503][ T3300] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 96.536681][T11602] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3826'. [ 96.713435][T11625] bond2: option coupled_control: mode dependency failed, not supported in mode balance-rr(0) [ 96.730706][T11625] bond2 (unregistering): Released all slaves [ 97.087013][T11675] bond3: option coupled_control: mode dependency failed, not supported in mode balance-rr(0) [ 97.098777][T11675] bond3 (unregistering): Released all slaves [ 97.339016][T11698] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 97.380026][T11698] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 97.744954][T11750] netlink: 'syz.2.3898': attribute type 6 has an invalid length. [ 97.791815][T11750] netlink: 'syz.2.3898': attribute type 6 has an invalid length. [ 97.861210][T11738] loop4: detected capacity change from 0 to 8192 [ 97.909156][T11738] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 98.063579][T11781] loop4: detected capacity change from 0 to 1024 [ 98.128301][T11781] EXT4-fs (loop4): stripe (4) is not aligned with cluster size (4096), stripe is disabled [ 98.135822][ T3079] IPVS: starting estimator thread 0... [ 98.171244][T11781] EXT4-fs error (device loop4): ext4_map_blocks:791: inode #3: block 2: comm syz.4.3909: lblock 2 mapped to illegal pblock 2 (length 1) [ 98.250440][T11795] IPVS: using max 2592 ests per chain, 129600 per kthread [ 98.253955][T11781] loop4: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 98.276716][T11781] __quota_error: 16 callbacks suppressed [ 98.276737][T11781] Quota error (device loop4): qtree_write_dquot: dquota write failed [ 98.285871][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 98.285903][ C1] EXT4-fs (loop4): initial error at time 1778882205: ext4_map_blocks:791: inode 3: block 2 [ 98.285942][ C1] EXT4-fs (loop4): last error at time 1778882205: ext4_map_blocks:791: inode 3: block 2 [ 98.294405][T11804] 8021q: adding VLAN 0 to HW filter on device bond0 [ 98.342079][T11804] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 98.342471][T11781] EXT4-fs error (device loop4): ext4_map_blocks:791: inode #3: block 48: comm syz.4.3909: lblock 0 mapped to illegal pblock 48 (length 1) [ 98.387363][T11804] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 98.395576][T11781] loop4: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 98.395699][T11781] Quota error (device loop4): v2_write_file_info: Can't write info structure [ 98.406651][T11804] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 98.433431][T11804] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 98.439439][T11781] EXT4-fs error (device loop4): ext4_acquire_dquot:7034: comm syz.4.3909: Failed to acquire dquot type 0 [ 98.444424][T11804] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 98.468689][T11804] veth1_vlan: left promiscuous mode [ 98.470496][T11781] loop4: lost filesystem error report for type 5 error -117 [ 98.475307][T11781] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 98.477459][T11804] veth1_vlan: entered promiscuous mode [ 98.490440][T11781] loop4: lost filesystem error report for type 5 error -117 [ 98.495818][T11804] veth1_macvtap: left promiscuous mode [ 98.506621][T11781] EXT4-fs error (device loop4): ext4_evict_inode:267: inode #11: comm syz.4.3909: mark_inode_dirty error [ 98.512080][T11804] veth0_macvtap: left promiscuous mode [ 98.528715][T11804] veth0_macvtap: entered promiscuous mode [ 98.532855][T11781] loop4: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 98.535316][T11804] veth1_macvtap: entered promiscuous mode [ 98.535678][T11781] EXT4-fs warning (device loop4): ext4_evict_inode:270: couldn't mark inode dirty (err -117) [ 98.547456][T11804] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 98.563869][T11781] EXT4-fs (loop4): 1 orphan inode deleted [ 98.569412][T11804] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 98.582483][T11804] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 98.585263][T11781] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 98.602907][ T36] EXT4-fs error (device loop4): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1) [ 98.612168][T11804] 8021q: adding VLAN 0 to HW filter on device bond1 [ 98.621164][ T36] loop4: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 98.627689][ T36] Quota error (device loop4): remove_tree: Can't read quota data block 1 [ 98.660175][T11804] 8021q: adding VLAN 0 to HW filter on device batadv2 [ 98.671589][ T36] EXT4-fs error (device loop4): ext4_release_dquot:7070: comm kworker/u8:2: Failed to release dquot type 0 [ 98.725941][ T28] audit: type=1400 audit(1778882205.533:1235): avc: denied { write } for pid=11780 comm="syz.4.3909" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 98.758127][ T28] audit: type=1400 audit(1778882205.563:1236): avc: denied { create } for pid=11780 comm="syz.4.3909" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 98.805264][ T8514] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.815179][ T8514] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.845561][ T8514] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.860207][ T3294] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 98.873439][T11826] netlink: 'syz.2.3931': attribute type 10 has an invalid length. [ 98.881876][ T28] audit: type=1326 audit(1778882205.623:1237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11818 comm="syz.3.3927" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74e158ce59 code=0x7ffc0000 [ 98.909155][ T36] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.910655][ T61] EXT4-fs error (device loop4): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1) [ 98.929416][ T28] audit: type=1326 audit(1778882205.623:1238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11818 comm="syz.3.3927" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74e158ce59 code=0x7ffc0000 [ 98.945684][ T61] loop4: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 98.958337][ T28] audit: type=1326 audit(1778882205.623:1239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11818 comm="syz.3.3927" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7f74e158ce59 code=0x7ffc0000 [ 98.999580][ T61] Quota error (device loop4): remove_tree: Can't read quota data block 1 [ 99.015312][ T61] EXT4-fs error (device loop4): ext4_release_dquot:7070: comm kworker/u8:4: Failed to release dquot type 0 [ 99.035999][ T61] loop4: lost filesystem error report for type 5 error -117 [ 99.037493][ T3294] EXT4-fs error (device loop4): __ext4_get_inode_loc:4885: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 99.039452][ T28] audit: type=1326 audit(1778882205.623:1240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11818 comm="syz.3.3927" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74e158ce59 code=0x7ffc0000 [ 99.047087][ T3294] loop4: lost filesystem error report for type 5 error -117 [ 99.107597][ T3294] EXT4-fs error (device loop4) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 99.138351][ T3294] loop4: lost filesystem error report for type 5 error -117 [ 99.140262][ T3294] EXT4-fs error (device loop4): ext4_quota_off:7318: inode #3: comm syz-executor: mark_inode_dirty error [ 99.178493][ T3294] loop4: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 99.271870][T11860] random: crng reseeded on system resumption [ 99.316268][T11860] Unrecognized hibernate image header format! [ 99.316281][T11860] PM: hibernation: Image mismatch: architecture specific data [ 99.346360][T11868] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 99.346459][T11868] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 99.396580][T11871] __nla_validate_parse: 6 callbacks suppressed [ 99.396598][T11871] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3952'. [ 99.433180][T11878] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3956'. [ 99.559692][T11896] bond5: option packets_per_slave: mode dependency failed, not supported in mode balance-tlb(5) [ 99.572172][T11896] bond5 (unregistering): Released all slaves [ 99.602212][T11901] No such timeout policy "syz1" [ 99.623408][T11907] netlink: 'syz.3.3970': attribute type 21 has an invalid length. [ 99.674678][T11911] SELinux: syz.3.3972 (11911) wrote to checkreqprot. This is no longer supported. [ 99.675130][T11915] x_tables: duplicate underflow at hook 3 [ 99.689976][T11913] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3973'. [ 99.707658][T11913] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 99.733399][T11913] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 99.806156][T11931] netlink: 'syz.4.3979': attribute type 21 has an invalid length. [ 99.836837][T11931] netlink: 128 bytes leftover after parsing attributes in process `syz.4.3979'. [ 99.859812][T11931] netlink: 'syz.4.3979': attribute type 5 has an invalid length. [ 99.886602][T11931] netlink: 3 bytes leftover after parsing attributes in process `syz.4.3979'. [ 100.044021][T11956] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3993'. [ 100.141846][T11964] netlink: 72 bytes leftover after parsing attributes in process `syz.3.3997'. [ 100.174703][T11964] netlink: 72 bytes leftover after parsing attributes in process `syz.3.3997'. [ 100.267884][T11970] bond3 (unregistering): Released all slaves [ 100.391192][T11983] bridge0: port 3(syz_tun) entered blocking state [ 100.397729][T11983] bridge0: port 3(syz_tun) entered forwarding state [ 100.436385][T11993] SELinux: Context system_u:object_r:sshd_exec_t:s0 is not valid (left unmapped). [ 100.447062][T11983] 8021q: adding VLAN 0 to HW filter on device bond0 [ 100.455573][T11983] 8021q: adding VLAN 0 to HW filter on device team0 [ 100.474448][T11983] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 100.539219][T11983] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 100.561692][T11983] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 100.579575][T11983] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 100.590323][T11983] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 100.622151][T11983] veth1_vlan: left promiscuous mode [ 100.629359][T11983] veth0_vlan: left promiscuous mode [ 100.635314][T11983] veth0_vlan: entered promiscuous mode [ 100.660794][T11983] veth1_vlan: entered promiscuous mode [ 100.684823][T11983] veth1_macvtap: left promiscuous mode [ 100.693373][T11983] veth0_macvtap: left promiscuous mode [ 100.704621][T12011] loop3: detected capacity change from 0 to 764 [ 100.706735][T11983] veth0_macvtap: entered promiscuous mode [ 100.726410][T11983] veth1_macvtap: entered promiscuous mode [ 100.738105][T11983] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 100.746818][T11983] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 100.756511][T11983] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 100.785058][T11983] 8021q: adding VLAN 0 to HW filter on device bond2 [ 100.817360][ T8506] bridge0: port 1(bridge_slave_0) entered blocking state [ 100.824513][ T8506] bridge0: port 1(bridge_slave_0) entered forwarding state [ 100.841947][ T8506] bridge0: port 2(bridge_slave_1) entered blocking state [ 100.849100][ T8506] bridge0: port 2(bridge_slave_1) entered forwarding state [ 100.895125][T12013] bond1: Removing last arp target with arp_interval on [ 100.916147][ T8502] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.959095][ T8502] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.975955][ T8502] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.992896][ T8502] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.085757][ T9] ip6_tunnel: ip6erspan0 xmit: Local address not yet configured! [ 101.244936][T12057] vti0: entered promiscuous mode [ 101.621270][ T9] ip6_tunnel: ip6erspan0 xmit: Local address not yet configured! [ 101.801703][ T61] ip6_tunnel: ip6erspan0 xmit: Local address not yet configured! [ 102.133073][T12174] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4099'. [ 102.175326][T12182] binfmt_misc: register: failed to install interpreter file ./file1 [ 102.262085][T12194] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 102.373301][T12206] netlink: 256 bytes leftover after parsing attributes in process `syz.1.4114'. [ 102.436008][T12212] bridge5: entered promiscuous mode [ 102.448370][T12212] bridge5: entered allmulticast mode [ 102.613142][T12242] xt_cluster: node mask cannot exceed total number of nodes [ 102.627262][T12246] vhci_hcd vhci_hcd.0: invalid port number 254 [ 102.658267][T12246] vhci_hcd vhci_hcd.0: GetPortErrorCount req not supported for USB 2.0 roothub [ 102.694491][T12254] xt_limit: Overflow, try lower: 0/0 [ 102.784608][T12267] netlink: 'syz.3.4145': attribute type 3 has an invalid length. [ 102.842556][ T8502] ip6_tunnel: ip6erspan0 xmit: Local address not yet configured! [ 102.856378][T12279] netlink: 'syz.3.4151': attribute type 21 has an invalid length. [ 102.872264][ T8502] ip6_tunnel: ip6erspan0 xmit: Local address not yet configured! [ 102.892066][T12279] netlink: 'syz.3.4151': attribute type 4 has an invalid length. [ 102.905506][T12279] netlink: 'syz.3.4151': attribute type 5 has an invalid length. [ 102.936739][T12290] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 102.951908][T12290] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 103.269728][T12340] tipc: Enabling of bearer rejected, failed to enable media [ 103.391316][ T28] kauditd_printk_skb: 44 callbacks suppressed [ 103.391335][ T28] audit: type=1400 audit(1778882210.192:1285): avc: denied { read } for pid=12359 comm="syz.4.4191" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 103.455983][T12368] SELinux: Context  is not valid (left unmapped). [ 103.471746][ T3398] ip6_tunnel: ip6erspan0 xmit: Local address not yet configured! [ 103.555427][ T28] audit: type=1400 audit(1778882210.362:1286): avc: denied { ioctl } for pid=12381 comm="syz.4.4202" path="/dev/ppp" dev="devtmpfs" ino=140 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 103.698066][ T28] audit: type=1400 audit(1778882210.502:1287): avc: denied { read } for pid=12398 comm="syz.4.4212" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 103.766625][T12410] loop1: detected capacity change from 0 to 1024 [ 103.768225][ T28] audit: type=1400 audit(1778882210.562:1288): avc: denied { append } for pid=12411 comm="syz.4.4217" name="tun" dev="devtmpfs" ino=138 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 trawcon="system_u:object_r:sshd_exec_t:s0" [ 103.790178][T12410] EXT4-fs: Ignoring removed nomblk_io_submit option [ 103.803188][ T28] audit: type=1400 audit(1778882210.562:1289): avc: denied { open } for pid=12411 comm="syz.4.4217" path="/dev/net/tun" dev="devtmpfs" ino=138 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 trawcon="system_u:object_r:sshd_exec_t:s0" [ 103.835113][ T28] audit: type=1400 audit(1778882210.562:1290): avc: denied { ioctl } for pid=12411 comm="syz.4.4217" path="/dev/net/tun" dev="devtmpfs" ino=138 ioctlcmd=0x54ca scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 trawcon="system_u:object_r:sshd_exec_t:s0" [ 103.876297][T12410] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 103.900323][T12410] System zones: 0-1, 3-36 [ 103.915417][T12410] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 103.987343][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.991926][ T28] audit: type=1400 audit(1778882210.792:1291): avc: denied { read } for pid=12431 comm="syz.0.4227" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 104.060708][ T28] audit: type=1400 audit(1778882210.862:1292): avc: denied { create } for pid=12433 comm="syz.0.4228" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 104.096281][ T28] audit: type=1400 audit(1778882210.862:1293): avc: denied { write } for pid=12433 comm="syz.0.4228" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 104.121893][ C0] ip6_tunnel: ip6erspan0 xmit: Local address not yet configured! [ 104.146482][ T28] audit: type=1326 audit(1778882210.952:1294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12443 comm="syz.3.4234" exe="/root/ci2-upstream-kcsan-gce/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f74e158ce59 code=0x7ffc0000 [ 104.319339][T12470] loop2: detected capacity change from 0 to 1024 [ 104.337485][T12470] EXT4-fs (loop2): stripe (4) is not aligned with cluster size (4096), stripe is disabled [ 104.379714][T12478] loop0: detected capacity change from 0 to 128 [ 104.388174][T12478] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 104.388931][T12470] EXT4-fs error (device loop2): ext4_map_blocks:791: inode #3: block 2: comm syz.2.4244: lblock 2 mapped to illegal pblock 2 (length 1) [ 104.426376][T12478] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 104.461732][T12470] loop2: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 104.461852][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 104.477538][ C0] EXT4-fs (loop2): initial error at time 1778882211: ext4_map_blocks:791: inode 3: block 2 [ 104.487652][ C0] EXT4-fs (loop2): last error at time 1778882211: ext4_map_blocks:791: inode 3: block 2 [ 104.497729][T12470] EXT4-fs error (device loop2): ext4_map_blocks:791: inode #3: block 48: comm syz.2.4244: lblock 0 mapped to illegal pblock 48 (length 1) [ 104.512019][T12470] loop2: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 104.513460][T12470] EXT4-fs error (device loop2): ext4_acquire_dquot:7034: comm syz.2.4244: Failed to acquire dquot type 0 [ 104.533957][T12470] loop2: lost filesystem error report for type 5 error -117 [ 104.542911][T12470] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 104.543266][ T8502] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 104.552508][T12470] loop2: lost filesystem error report for type 5 error -117 [ 104.581711][T12470] EXT4-fs error (device loop2): ext4_evict_inode:267: inode #11: comm syz.2.4244: mark_inode_dirty error [ 104.597797][ T3301] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 104.610968][T12470] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 104.611226][T12470] EXT4-fs warning (device loop2): ext4_evict_inode:270: couldn't mark inode dirty (err -117) [ 104.656575][T12470] EXT4-fs (loop2): 1 orphan inode deleted [ 104.663655][T12498] bond2: (slave bond_slave_1): Device is not our slave [ 104.668434][T12470] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 104.670878][T12498] bond2: option active_slave: invalid value (bond_slave_1) [ 104.683012][ T61] EXT4-fs error (device loop2): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1) [ 104.711375][T12498] bond2 (unregistering): Released all slaves [ 104.721699][ T61] EXT4-fs error (device loop2): ext4_release_dquot:7070: comm kworker/u8:4: Failed to release dquot type 0 [ 104.887422][ T3295] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.907412][ T61] EXT4-fs error (device loop2): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1) [ 104.924175][T12527] loop3: detected capacity change from 0 to 128 [ 104.935091][ T61] loop2: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 104.936592][ T61] EXT4-fs error (device loop2): ext4_release_dquot:7070: comm kworker/u8:4: Failed to release dquot type 0 [ 105.018280][ T61] loop2: lost filesystem error report for type 5 error -117 [ 105.021069][ T3295] EXT4-fs error (device loop2): __ext4_get_inode_loc:4885: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 105.061558][ T3295] loop2: lost filesystem error report for type 5 error -117 [ 105.061683][ T3295] EXT4-fs error (device loop2) in ext4_reserve_inode_write:6383: Corrupt filesystem [ 105.079314][ T3295] loop2: lost filesystem error report for type 5 error -117 [ 105.079448][ T3295] EXT4-fs error (device loop2): ext4_quota_off:7318: inode #3: comm syz-executor: mark_inode_dirty error [ 105.101442][ T3295] loop2: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 105.338232][T12576] __nla_validate_parse: 7 callbacks suppressed [ 105.338326][T12576] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4282'. [ 105.391240][T12576] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4282'. [ 105.407483][T12576] gretap0: entered promiscuous mode [ 105.413843][T12576] gretap0: left promiscuous mode [ 105.635941][T12612] loop0: detected capacity change from 0 to 512 [ 105.667381][T12612] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 105.696776][T12612] ext4 filesystem being mounted at /809/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 105.761723][T12628] loop2: detected capacity change from 0 to 512 [ 105.777292][T12628] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 105.781222][ T3301] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.801389][T12628] EXT4-fs error (device loop2): mb_free_blocks:2049: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 105.822165][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 105.828717][ C1] EXT4-fs (loop2): initial error at time 1778882212: mb_free_blocks:2049: inode 11: block 64 [ 105.838985][ C1] EXT4-fs (loop2): last error at time 1778882212: mb_free_blocks:2049: inode 11: block 64 [ 105.841686][T12628] EXT4-fs error (device loop2): ext4_do_update_inode:5690: inode #11: comm syz.2.4305: corrupted inode contents [ 105.855324][T12637] netlink: 'syz.1.4309': attribute type 6 has an invalid length. [ 105.873132][T12628] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 105.877835][T12628] EXT4-fs error (device loop2): ext4_dirty_inode:6587: inode #11: comm syz.2.4305: mark_inode_dirty error [ 105.899237][T12628] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 105.904487][T12628] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.4305: invalid indirect mapped block 1 (level 1) [ 105.910169][T12639] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 105.914335][T12628] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 105.926878][T12639] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 105.968812][T12639] vhci_hcd vhci_hcd.0: Device attached [ 105.987572][T12646] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(6) [ 105.989556][T12651] loop1: detected capacity change from 0 to 2048 [ 105.994230][T12646] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 106.007693][T12646] vhci_hcd vhci_hcd.0: Device attached [ 106.020756][T12628] EXT4-fs error (device loop2): ext4_do_update_inode:5690: inode #11: comm syz.2.4305: corrupted inode contents [ 106.028867][T12639] vhci_hcd vhci_hcd.0: pdev(3) rhport(2) sockfd(5) [ 106.039389][T12639] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 106.042730][T12628] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 106.052397][T12639] vhci_hcd vhci_hcd.0: Device attached [ 106.055405][T12628] EXT4-fs error (device loop2) in ext4_orphan_del:303: Corrupt filesystem [ 106.089956][T12628] loop2: lost filesystem error report for type 5 error -117 [ 106.091388][T12628] EXT4-fs error (device loop2): ext4_do_update_inode:5690: inode #11: comm syz.2.4305: corrupted inode contents [ 106.110994][T12648] vhci_hcd: connection closed [ 106.111290][T12656] vhci_hcd: connection closed [ 106.116461][T12640] vhci_hcd: connection closed [ 106.121318][ T8514] vhci_hcd vhci_hcd.3: stop threads [ 106.136886][T12628] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 106.138416][T12628] EXT4-fs error (device loop2): ext4_truncate:4690: inode #11: comm syz.2.4305: mark_inode_dirty error [ 106.162117][T12660] futex_wake_op: syz.4.4317 tries to shift op by 32; fix this program [ 106.170556][ T8514] vhci_hcd vhci_hcd.3: release socket [ 106.181070][ T8514] vhci_hcd vhci_hcd.3: disconnect device [ 106.191509][T12628] EXT4-fs error (device loop2) in ext4_process_orphan:345: Corrupt filesystem [ 106.202582][ T9] usb 7-1: new low-speed USB device number 2 using vhci_hcd [ 106.209993][ T8514] vhci_hcd vhci_hcd.3: stop threads [ 106.217824][T12628] loop2: lost filesystem error report for type 5 error -117 [ 106.218010][T12628] EXT4-fs (loop2): 1 truncate cleaned up [ 106.221754][T12641] vhci_hcd: sendmsg failed!, ret=-32 for 48 [ 106.225523][ T8514] vhci_hcd vhci_hcd.3: release socket [ 106.257023][T12628] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 106.272501][ T8514] vhci_hcd vhci_hcd.3: disconnect device [ 106.281646][ T8514] vhci_hcd vhci_hcd.3: stop threads [ 106.295777][ T8514] vhci_hcd vhci_hcd.3: release socket [ 106.307242][ T8514] vhci_hcd vhci_hcd.3: disconnect device [ 106.374948][T12628] EXT4-fs error (device loop2): ext4_find_dest_de:2050: inode #2: block 13: comm syz.2.4305: bad entry in directory: directory entry too close to block end - offset=76, inode=16, rec_len=940, size=1024 fake=0 [ 106.462816][ T3295] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 106.682536][ C0] ip6_tunnel: ip6erspan0 xmit: Local address not yet configured! [ 107.021705][T12727] loop4: detected capacity change from 0 to 1024 [ 107.029557][T12723] loop1: detected capacity change from 0 to 4096 [ 107.059477][T12723] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 107.071686][T12727] EXT4-fs: Ignoring removed bh option [ 107.106839][T12723] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 107.155024][T12727] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 107.206447][ T3294] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.224955][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.332234][T12742] ipip0: entered promiscuous mode [ 107.368196][T12742] ipip0: entered allmulticast mode [ 107.385549][T12742] team0: Device ipip0 is of different type [ 107.434395][T12752] loop1: detected capacity change from 0 to 128 [ 107.761248][T12782] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 107.854089][T12782] ext4 filesystem being mounted at /887/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 107.899793][T12804] netlink: 36 bytes leftover after parsing attributes in process `syz.3.4385'. [ 107.932854][T12804] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4385'. [ 107.943868][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.953831][ T2979] Alternate GPT is invalid, using primary GPT. [ 107.965764][ T2979] loop4: p1 p2 p3 [ 107.993921][T12802] Alternate GPT is invalid, using primary GPT. [ 108.029178][T12802] loop4: p1 p2 p3 [ 108.084589][T12816] EXT4-fs: inline encryption not supported [ 108.101487][T12816] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 108.121848][T12816] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 108.149758][T12816] EXT4-fs error (device loop2): ext4_acquire_dquot:7034: comm syz.2.4391: Failed to acquire dquot type 1 [ 108.182782][T12816] loop2: lost filesystem error report for type 5 error -5 [ 108.182946][T12816] EXT4-fs (loop2): Remounting filesystem read-only [ 108.196829][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 108.196853][ C1] EXT4-fs (loop2): initial error at time 1778882214: ext4_acquire_dquot:7034 [ 108.196880][ C1] EXT4-fs (loop2): last error at time 1778882214: ext4_acquire_dquot:7034 [ 108.203670][T12824] netlink: 544 bytes leftover after parsing attributes in process `syz.3.4395'. [ 108.203715][T12824] unsupported nla_type 2060 [ 108.216262][T12816] EXT4-fs (loop2): 1 truncate cleaned up [ 108.241153][T12816] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 108.308503][ T3666] udevd[3666]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 108.315796][ T3287] udevd[3287]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 108.329488][ T3261] udevd[3261]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory [ 108.340892][T12828] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 108.362275][ T3295] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.389639][T12828] EXT4-fs (loop1): 1 truncate cleaned up [ 108.396057][ T3287] udevd[3287]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory [ 108.409965][ T4077] udevd[4077]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 108.410589][T12828] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 108.432511][ T3261] udevd[3261]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 108.498906][T12839] tipc: Started in network mode [ 108.536792][T12839] tipc: Node identity aaaaaaaaaa41, cluster identity 4711 [ 108.568223][T12839] tipc: Enabled bearer , priority 10 [ 108.644734][T12848] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4405'. [ 108.692392][ T3302] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.775745][T12854] set_capacity_and_notify: 5 callbacks suppressed [ 108.775767][T12854] loop2: detected capacity change from 0 to 1764 [ 108.832971][T12863] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4412'. [ 108.842491][ T28] kauditd_printk_skb: 54 callbacks suppressed [ 108.842522][ T28] audit: type=1400 audit(1778882215.641:1343): avc: denied { read } for pid=12859 comm="syz.1.4411" path="socket:[34339]" dev="sockfs" ino=34339 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 108.879662][T12863] vlan2: entered promiscuous mode [ 108.897131][T12863] geneve1: entered promiscuous mode [ 108.915557][T12863] vlan2: entered allmulticast mode [ 108.926517][T12863] geneve1: entered allmulticast mode [ 108.995059][ T28] audit: type=1400 audit(1778882215.801:1344): avc: denied { connect } for pid=12870 comm="syz.3.4417" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 109.164683][T12885] futex_wake_op: syz.3.4423 tries to shift op by 32; fix this program [ 109.223525][T12892] loop1: detected capacity change from 0 to 2048 [ 109.313359][T12892] ================================================================== [ 109.321524][T12892] BUG: KCSAN: data-race in __lru_add_drain_all / folio_add_lru [ 109.329121][T12892] [ 109.331461][T12892] read-write to 0xffff888237d266e8 of 1 bytes by task 12888 on cpu 1: [ 109.339718][T12892] folio_add_lru+0xaa/0x1f0 [ 109.344263][T12892] shmem_get_folio_gfp+0x7b0/0xd60 [ 109.349511][T12892] shmem_write_begin+0xfc/0x1f0 [ 109.354479][T12892] generic_perform_write+0x183/0x490 [ 109.359882][T12892] shmem_file_write_iter+0xc5/0xf0 [ 109.365019][T12892] __kernel_write_iter+0x319/0x590 [ 109.370159][T12892] dump_user_range+0xa73/0xd00 [ 109.375049][T12892] elf_core_dump+0x21a2/0x2330 [ 109.379926][T12892] coredump_write+0xacc/0xdd0 [ 109.384625][T12892] vfs_coredump+0x26dd/0x31e0 [ 109.389328][T12892] get_signal+0xd5c/0xf20 [ 109.393802][T12892] arch_do_signal_or_restart+0x96/0x480 [ 109.399386][T12892] irqentry_exit+0x145/0x5d0 [ 109.404015][T12892] asm_exc_page_fault+0x26/0x30 [ 109.408901][T12892] [ 109.411262][T12892] read to 0xffff888237d266e8 of 1 bytes by task 12892 on cpu 0: [ 109.418904][T12892] __lru_add_drain_all+0x17e/0x450 [ 109.424043][T12892] lru_add_drain_all+0x10/0x20 [ 109.428931][T12892] invalidate_bdev+0x47/0x70 [ 109.433556][T12892] bdev_disk_changed+0xe7/0xe00 [ 109.438541][T12892] loop_set_status+0x5db/0x6a0 [ 109.443354][T12892] lo_ioctl+0x671/0x13a0 [ 109.447657][T12892] blkdev_ioctl+0x387/0x460 [ 109.452192][T12892] __se_sys_ioctl+0xce/0x140 [ 109.456896][T12892] __x64_sys_ioctl+0x43/0x50 [ 109.461621][T12892] x64_sys_call+0x1563/0x3020 [ 109.466331][T12892] do_syscall_64+0x12c/0x3b0 [ 109.470958][T12892] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 109.476861][T12892] [ 109.479214][T12892] value changed: 0x0c -> 0x0f [ 109.484002][T12892] [ 109.486422][T12892] Reported by Kernel Concurrency Sanitizer on: [ 109.492582][T12892] CPU: 0 UID: 0 PID: 12892 Comm: syz.1.4426 Not tainted syzkaller #0 PREEMPT(full) [ 109.501979][T12892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 109.512053][T12892] ================================================================== [ 109.663970][T12892] Alternate GPT is invalid, using primary GPT. [ 109.670484][T12892] loop1: p1 p2 p3 [ 109.693196][ T3381] tipc: Node number set to 15444650 [ 111.243514][ T9] usb 7-1: enqueue for inactive port 0 [ 111.249051][ T9] usb 7-1: enqueue for inactive port 0 [ 111.324173][ T9] vhci_hcd vhci_hcd.3: vhci_device speed not set [ 114.364420][ C0] ip6_tunnel: ip6erspan0 xmit: Local address not yet configured!